Regulation & Compliance

BIS Quality Control Orders and Product Liability and Recall Insurance in India 2026: How Mandatory Standards Reshape Manufacturer and Importer Exposure

The widening regime of mandatory BIS Quality Control Orders, issued by line ministries under the BIS Act 2016, is making ISI and BIS certification compulsory across steel, chemicals, electronics, toys, footwear and machinery. For manufacturers and importers, non-conforming goods now carry sharper product liability, market-withdrawal and recall exposure, and the way product-liability and product-recall policies respond turns on certification status, exclusions and supply-chain liability.

Tarun Kumar Singh
Tarun Kumar SinghStrategic Risk & Compliance SpecialistAIII · CRICP · CIAFP
14 min read

Listen to this article

Audio version • 14 min read

bis-quality-control-ordersbis-act-2016product-liabilityproduct-recallisi-certificationimport-complianceregulation-compliancesupply-chain-liability

Last reviewed: June 2026

What a Quality Control Order Actually Does

A Quality Control Order is the instrument through which a product that was previously certifiable on a voluntary basis becomes one that cannot lawfully be made, imported, stored, sold or distributed in India unless it carries the relevant Bureau of Indian Standards mark. The legal architecture sits in the BIS Act 2016 and the BIS (Conformity Assessment) Regulations 2018, which give the central government the power, exercised through the relevant line ministry, to notify by order that a specified product must conform to a specified Indian Standard and bear the Standard Mark under a licence or certificate from BIS. Once a QCO is in force for a product, manufacture and import of the non-conforming article is prohibited, and the prohibition is backed by the offence and penalty provisions of the Act.

The distinction that matters commercially is between voluntary certification and compulsory certification. For most of BIS's history the bulk of Indian Standards were voluntary: a manufacturer could choose to carry the ISI mark as a quality signal but was not compelled to. A QCO converts a voluntary standard into a mandatory one for the products it covers. The conversion changes the legal character of a non-conforming product from a commercial quality question into a regulatory non-compliance, and it is that shift in legal character that drives the insurance consequences this post works through.

The scheme operates through two main routes. Domestic manufacturers obtain a BIS licence under Scheme I of the Conformity Assessment Regulations (the ISI mark scheme), involving factory assessment and sample testing. Foreign manufacturers exporting to India obtain certification under the Foreign Manufacturers Certification Scheme (FMCS), which allows an overseas factory to carry the Standard Mark on goods shipped into India. Importers, in turn, can only clear goods that already carry valid certification, which pushes the compliance obligation up the supply chain to the overseas producer and onto the importer of record.

The Expanding Footprint: Which Products Are Now In

The number of products brought under mandatory BIS certification has expanded sharply across recent years, and the expansion has been driven by multiple ministries acting in their own sectors rather than by BIS alone. The pattern matters because a manufacturer or importer operating across several product categories may face QCOs issued by different ministries on different timelines, each with its own standard, its own implementation date and its own transition provisions.

The Department for Promotion of Industry and Internal Trade and the Ministry of Steel have driven a large body of orders covering steel and steel products, where the steel QCOs now span a wide range of long products, flat products, alloy grades and downstream items. The Ministry of Chemicals and Fertilizers has issued orders covering a growing list of chemicals and intermediates, bringing industrial and specialty chemicals into mandatory certification. The Ministry of Electronics and Information Technology operates the parallel Compulsory Registration Scheme (CRS) for electronics and IT goods, which is a registration-based conformity route distinct from the ISI licence model but similar in effect. Other orders have reached consumer products including toys, footwear, household goods, and a range of machinery, components and safety equipment.

Several features of this expansion shape the risk picture:

  • Multiple issuing ministries: there is no single consolidated list a compliance team can monitor once. Orders arrive from steel, chemicals, electronics, consumer affairs, commerce and others, each publishing in the Gazette with its own dates.
  • Coverage of intermediates and inputs, not only finished consumer goods. A manufacturer of a finished article may find that an input it buys (a particular steel grade, a particular chemical) is itself now under a QCO, which makes the input supplier's certification a part of the manufacturer's own compliance chain.
  • Frequent revisions and date extensions. Implementation dates are often deferred, transition windows are adjusted, and exemptions for specified categories (small producers, research quantities, certain export-oriented production) are added or withdrawn. The position on any given product can change between the order's notification and its effective date.
  • The import dimension. For imported goods, the QCO closes the border to non-certified articles, and the burden of ensuring the overseas factory holds FMCS or CRS certification falls on the Indian importer who will be the first party exposed if certified goods cannot be cleared or if uncertified goods reach the market.

For the broker advising a manufacturing or importing client, the first task is no longer to assume product certification is a settled background fact. It is to establish, product line by product line, which articles are under a live QCO, whether the certification is held and current, and where in the supply chain the certification obligation actually sits.

How Non-Compliance Translates Into Liability and Loss

A QCO breach is not a single risk. It produces a cluster of distinct exposures that arrive on different timelines and engage different insurance responses, and the value of mapping them separately is that each has its own trigger and its own coverage answer.

Regulatory and penal exposure

The BIS Act 2016 carries offence provisions for improper use of the Standard Mark and for manufacture or sale of non-conforming goods that are subject to mandatory certification, with monetary penalties and, for repeat or serious conduct, imprisonment provisions and powers to seize and confiscate non-conforming stock. These are regulatory penalties and the costs of seizure and confiscation, and they are generally outside the indemnity of a product-liability policy, which responds to legal liability for injury and damage rather than to fines imposed for the insured's own regulatory breach. This is a deliberate feature of liability cover, and it means the penal exposure of a QCO breach is largely a retained, uninsured exposure that compliance, not insurance, has to manage.

Market-withdrawal and recall exposure

Where non-certified or sub-standard goods have already reached distribution or the market, the practical consequence is withdrawal and recall. The goods may have to be pulled from shelves, recovered from distributors and customers, quarantined and either re-worked, re-certified, destroyed or re-exported. The direct costs (logistics of recovery, notification, storage, disposal or rectification, and the lost value of the stock) are recall costs, and whether they are insured depends entirely on whether the manufacturer or importer holds a product-recall policy and on how that policy's trigger is drafted. A QCO-driven withdrawal that is purely a regulatory non-compliance, with no actual bodily injury or property damage and no demonstrable safety defect, may fall outside a recall policy whose trigger requires accidental contamination or a safety hazard. This is the single most important coverage question in the QCO context and the next section addresses it directly.

Product liability exposure

Where a non-conforming product actually causes injury or damage (a sub-standard electrical component that fails and causes a fire, a toy that injures a child, a chemical off-specification that damages a customer's process), the manufacturer or importer faces a product liability claim. Under the Consumer Protection Act 2019, the product liability provisions allow a complainant to claim against a product manufacturer, a product seller and a product service provider for harm caused by a defective product, and a deviation from a mandatory standard is strong evidence of a defect. The Act's product liability chapter substantially strengthened the consumer's position, and non-conformity with a QCO standard maps closely onto the statutory tests of manufacturing defect, design defect and non-conformance with express warranty. A QCO breach therefore raises the probability and the value of product liability claims, and the product-liability policy is the cover that responds to that exposure.

Business interruption and contractual exposure

A stop-sale, a border hold on imported goods, or a recall can interrupt the business and trigger liabilities to customers under supply contracts (failure to deliver, supply of non-conforming goods, indemnities given to downstream buyers). These contractual exposures sit partly in product liability, partly in recall, and partly outside insurance altogether depending on the contract terms and the policy wordings, and they need to be read together rather than assumed to be covered.

Reading the Product-Liability and Product-Recall Triggers Against a QCO Event

The central insurance question in the QCO context is whether the policies a manufacturer or importer holds actually respond to a non-compliance-driven loss, and the answer turns on the precise trigger language. This is where brokers add the most value, because the default assumption that "we have product liability and recall cover, so we are protected" is frequently wrong for a pure QCO event.

The product-liability trigger

A standard product liability policy indemnifies the insured against legal liability to pay damages for accidental bodily injury or property damage to third parties caused by a product after it has left the insured's premises. The trigger is third-party injury or damage caused by the product. A QCO breach that has caused actual injury or damage fits this trigger. A QCO breach that has not yet caused any injury or damage (the goods are non-certified but have hurt no one) does not, because there is no third-party injury or damage to indemnify. The policy is not a guarantee of regulatory compliance; it is a response to harm the product causes. Brokers should be explicit with clients that holding product-liability cover does not insure against the cost of a regulatory stop-sale where no harm has occurred.

Product-liability wordings also carry exclusions that bite in the QCO context. The most relevant are:

  • The deliberate non-compliance or known-defect exclusion, which can exclude liability arising from a product the insured knew did not conform to a mandatory standard or specification. Continuing to sell goods after a QCO's effective date, knowing they are uncertified, can engage this exclusion.
  • The recall and withdrawal exclusion in the liability section, which excludes the cost of recalling or withdrawing the product itself (as opposed to the liability for harm it causes). Recall cost belongs in a recall policy, not the liability policy.
  • The fines and penalties exclusion, which removes regulatory penalties from cover.
  • Exclusions for pure financial loss unaccompanied by injury or property damage, which can exclude a customer's economic loss from receiving non-conforming goods.

The product-recall trigger

Product recall insurance is the cover specifically built for the cost and consequence of recalling or withdrawing a product. The trigger varies materially across wordings, and the variation is decisive for QCO events. Many recall policies are written as accidental contamination or product safety covers, triggering only where the recalled product presents an actual or threatened bodily injury or physical damage, or where there is malicious tampering. A recall driven purely by a certification gap, with no safety hazard, may not meet that trigger. Other policies are written more broadly to include government-mandated recall or recall ordered by a regulator, which is the extension that responds to a QCO-driven withdrawal directed or required by the authorities. A manufacturer or importer with material QCO exposure should be looking specifically for a recall wording that covers government-mandated or regulatory recall, not only safety-defect recall.

The alignment of the two covers also matters. A QCO event that involves both a safety failure and a regulatory breach (sub-standard goods that are also unsafe and cause harm) can engage product liability for the harm, recall for the recovery cost, and the regulatory penalty exposure outside both. The broker's task is to confirm the liability and recall wordings dovetail, that the recall trigger reaches regulatory and government-mandated recall, and that the sub-limits and indemnity periods on the recall side are sized to the realistic scale of a market withdrawal across the company's distribution footprint.

Supply-Chain and Vendor Liability: Where the Exposure Sits

QCO compliance is rarely a single-company question because most products are built from inputs and components sourced from others, and a certification failure anywhere in the chain can surface as the final seller's exposure. Allocating that exposure correctly, and insuring it, is a distinct piece of the advisory.

The importer as the exposed party

For imported goods, the importer of record is the party that places the product on the Indian market and is therefore the party first exposed to a stop-sale, a recall and a product liability claim. The overseas manufacturer holds the FMCS or CRS certification, but the Indian importer carries the regulatory and commercial consequence if that certification is invalid, lapses, or does not actually cover the goods shipped. The importer's protection lies partly in contract (warranties and indemnities from the overseas supplier requiring valid certification and indemnifying against the consequences of its absence) and partly in insurance (a product-liability and recall programme that responds to the importer's exposure as the seller). A recovery against an overseas supplier under a contractual indemnity is often slow and uncertain, which is why the importer's own insurance programme cannot be left to depend on it.

The component and input dimension

A manufacturer of a finished article may incorporate inputs that are themselves under a QCO. If an input supplier's certification fails, the finished-goods manufacturer can face contamination of its own production with non-conforming material, a forced recall of finished goods built around a non-conforming component, and a liability claim if the component causes harm. The manufacturer's recall and liability programme should contemplate the third-party component scenario, and the contracts with input suppliers should carry back-to-back warranties, certification obligations and indemnities so the cost of an input-driven recall can be passed up the chain. Some recall wordings offer third-party product recall or supplier extension cover, responding where the insured's product has to be recalled because of a defect in a supplied component, and this extension is worth seeking for manufacturers with concentrated input dependencies.

Vendor and additional-insured arrangements

Downstream, a manufacturer that supplies large buyers, retailers or original-equipment customers is often required by contract to add the buyer as a vendor or additional insured on its product-liability programme and to indemnify the buyer against product claims. A QCO breach that triggers a downstream buyer's own withdrawal can flow back to the manufacturer through these indemnities. The manufacturer's programme has to be checked against the vendor and indemnity obligations it has accepted, because a contractual liability assumed toward a buyer may exceed the manufacturer's common-law liability and may not be covered unless the policy carries a matched contractual-liability provision.

The practical message for the broker is to read the whole chain: the overseas supplier's certification and indemnities, the input suppliers' certification and back-to-back obligations, the manufacturer's or importer's own liability and recall programme, and the downstream vendor and indemnity commitments. A QCO event can travel along this chain in either direction, and the insurance programme is only as sound as the weakest link in the contractual and coverage structure.

Broker Advisory: Building a QCO-Resilient Programme

For brokers advising manufacturers and importers exposed to the widening QCO regime, the work divides into a compliance-mapping piece and a coverage-structuring piece, and doing both well is what distinguishes a programme that responds to a real QCO event from one that merely looks adequate on paper.

Map the regulatory exposure first

  1. Build a product-by-product QCO register. For each product line, establish whether a QCO is in force or notified with a future effective date, which Indian Standard applies, whether certification (ISI licence, FMCS or CRS) is held and current, and when it expires. Treat this as a live document because orders, dates and exemptions change.
  2. Trace the input chain. Identify inputs and components that are themselves under a QCO and confirm the suppliers' certification, because an input failure becomes the manufacturer's problem.
  3. Confirm the importer-of-record position for imported lines and the status of the overseas factory's certification, and check the contractual warranties and indemnities from overseas suppliers.

Then structure the coverage

  1. Test the recall trigger against a regulatory event. Confirm the recall wording reaches government-mandated and regulator-ordered recall, not only safety-defect or accidental-contamination recall. If it does not, this is the priority gap to close.
  2. Check the liability exclusions. Read the known-defect, deliberate non-compliance, fines-and-penalties, recall and pure-financial-loss exclusions and assess how each would respond to the client's realistic QCO scenarios.
  3. Seek supplier and third-party component extensions on the recall side for manufacturers with concentrated input dependencies, and confirm contractual-liability provisions match the vendor and downstream indemnities the client has given.
  4. Size the recall sub-limits and indemnity period to the realistic scale of a withdrawal across the client's actual distribution footprint, not to a nominal figure, because recall logistics across a national distribution network are expensive.
  5. Be explicit about what insurance does not cover. Regulatory penalties, seizure and confiscation costs, and pure non-compliance stop-sales with no safety hazard and no government-mandated recall trigger are largely retained exposures, and the client should manage them through compliance rather than expect the policy to absorb them.

The honest position to give the client is that the QCO regime has shifted a meaningful part of product risk from a quality question into a regulatory-compliance question, and that the insurance programme is a backstop to compliance rather than a substitute for it. Cover responds best when the underlying compliance is sound, the certification is current, and the wordings have been tested against the specific way a QCO event would unfold for that business.

For brokers structuring product-liability and product-recall programmes against the expanding QCO regime, the decisive work is in the wording detail: whether the recall trigger reaches government-mandated recall, how the liability exclusions handle a known certification gap, and whether the supplier and vendor extensions are present. Sarvada gives commercial insurance brokers structured, searchable access to insurer policy wordings so they can compare recall triggers, liability exclusions, supplier extensions and contractual-liability provisions side by side, and check them against a client's actual QCO exposure across its product lines and supply chain. Request Access to evaluate the platform for product-liability and recall placements in the BIS certification environment.

About the Author

Tarun Kumar Singh

Tarun Kumar Singh

Strategic Risk & Compliance Specialist

  • AIII
  • CRICP
  • CIAFP
  • Board Advisor, Finexure Consulting
  • Developer of the Behavioural Underinsurance Risk Index (BURI)

Tarun Kumar Singh is a seasoned risk management and insurance professional based in Bengaluru. He serves as Board Advisor at Finexure Consulting, where he advises insurance, fintech, and regulated firms on governance, growth, and trust. His work spans insurance broker regulatory frameworks across India, UAE, and ASEAN, IRDAI compliance and Corporate Agency model reform, VC governance in insurtech, and MSME insurance gap analysis. He is the developer of the Behavioural Underinsurance Risk Index (BURI), a framework applying behavioural economics to underinsurance and insurance fraud risk.

Frequently Asked Questions

Does our product-liability policy cover the cost of a recall ordered because our goods are not BIS-certified?
Generally no, on two counts. First, a product-liability policy responds to legal liability for third-party bodily injury or property damage caused by the product, not to the cost of recalling or withdrawing the product itself; the recall and withdrawal cost is excluded from the liability section by design and belongs in a separate product-recall policy. Second, where the goods are non-certified but have not caused any injury or damage, the product-liability trigger is not met at all because there is no harm to indemnify. The recall cost of a regulatory stop-sale therefore depends on holding a product-recall policy whose trigger reaches government-mandated or regulator-ordered recall, and many recall wordings that are built around safety-defect or accidental-contamination triggers will not respond to a pure certification-gap withdrawal.
We import goods that are now under a QCO. Where does the exposure sit if the overseas factory's certification turns out to be invalid?
The Indian importer of record carries the first exposure. The importer is the party placing the product on the Indian market, so a border hold on uncertified goods, a stop-sale, a recall and any product liability claim fall on the importer commercially and legally, even though the certification obligation under the Foreign Manufacturers Certification Scheme sits with the overseas factory. The importer's protection is twofold: contractual warranties and indemnities from the overseas supplier requiring valid certification and indemnifying against its absence, and the importer's own product-liability and recall programme responding to its position as seller. Recovery against an overseas supplier under a contractual indemnity is often slow and uncertain, so the importer's own insurance programme should be structured to respond independently rather than relying on the supplier recovery.
Can BIS penalties and the cost of seized or confiscated stock be insured?
Largely no. The BIS Act 2016 offence provisions impose monetary penalties and, for serious or repeat conduct, imprisonment and powers to seize and confiscate non-conforming stock. Regulatory fines and penalties imposed for the insured's own breach are excluded from product-liability cover by a standard fines-and-penalties exclusion, and the value of confiscated or seized stock is a regulatory consequence rather than a third-party liability, so it sits outside liability cover. These are retained, uninsured exposures that have to be managed through compliance, not transferred to a policy. The practical implication is that the penal and confiscation side of a QCO breach is a strong reason to keep certification current rather than to treat insurance as a backstop for it.
One of our input components is now under a QCO. How does that change our recall exposure?
It introduces a third-party component exposure into your finished-goods risk. If the input supplier's certification fails, your production can be contaminated with non-conforming material, you may be forced to recall finished goods built around the non-conforming component, and you can face a liability claim if the component causes harm. Two things help. First, contractual back-to-back warranties, certification obligations and indemnities from the input supplier, so the cost of an input-driven recall can be passed up the chain. Second, a recall policy with a third-party product recall or supplier extension that responds where your product has to be recalled because of a defect in a supplied component. Manufacturers with concentrated input dependencies should seek that extension and confirm their supplier contracts carry matched obligations, because an input failure otherwise surfaces entirely as your own recall and liability cost.
How should a broker test whether a recall policy actually responds to QCO risk?
Ask one direct question of every recall wording on offer: would this respond to a regulator-ordered or government-mandated withdrawal of non-certified goods where the goods are not in fact unsafe? Many recall policies are written as accidental-contamination or product-safety covers that trigger only on an actual or threatened safety hazard or malicious tampering, and those will not respond to a pure certification-gap recall. The wording you want explicitly includes government-mandated recall or recall required by a regulator. Beyond the trigger, check that the sub-limits and indemnity period are sized to a realistic national withdrawal across the client's distribution footprint, that supplier and third-party component extensions are present where relevant, and that the liability policy's known-defect and deliberate non-compliance exclusions are understood against the client's specific QCO scenarios.

Related Glossary Terms

Related Insurance Types

Related Industries

Related Articles

Sarvada

Ready to see Sarvada in action?

Explore the platform workflow or start a product conversation with our underwriting automation team.

Explore the platform