Companies Act 2013 Insurance Obligations for Listed Indian Companies

Section 134 of the Companies Act, 2013 requires the Board of Directors of every company to attach a Board's Report to the annual financial statements, covering a specified set of matters. Several of these mandatory disclosures either directly require insurance-related information or create indirect obligations that are satisfied through having adequate insurance coverage.

Section 134(3)(n) requires a statement indicating development and implementation of a risk management policy for the company including identification of elements of risk, if any, which in the opinion of the Board may threaten the existence of the company. For listed companies, this provision is overlaid by SEBI LODR requirements (discussed separately), but even for unlisted public companies and private limited companies above the threshold size, this disclosure obligation requires the board to formally identify and document existential risks. Uninsured catastrophic risk - a fire that destroys an uninsured manufacturing facility, a product liability judgment that exceeds the company's insurance limit and net worth - is precisely the type of existence-threatening event that Section 134(3)(n) contemplates. A board that lists such risks in its Section 134 disclosure without having obtained appropriate insurance to mitigate them is inviting scrutiny from shareholders, auditors, and regulators.

Section 134(3)(c) requires the Directors' Responsibility Statement to confirm, among other things, that the directors have taken proper and sufficient care for the maintenance of adequate accounting records and for the safeguarding of the assets of the company. The phrase 'safeguarding of the assets' has been interpreted by courts and auditors to include maintaining adequate insurance on those assets. A fire that destroys a manufacturing plant that was insured for one-third of its replacement value, resulting in an underinsurance loss that materially impacts the company's financial position, would raise questions about whether the directors discharged their Section 134(3)(c) responsibility.

Section 134(3)(q) requires the Board's Report to include such other matters as may be prescribed. The Companies (Accounts) Rules, 2014, Rule 8, prescribes that the Board's Report must include a statement on conservation of energy, technology absorption, and foreign exchange earnings and outgo. While these do not directly reference insurance, the contingent liability disclosure in the financial statements (Schedule III of the Companies Act) requires disclosure of all material contingent liabilities - including uninsured claims and losses that are probable but not yet certain. The interface between the Board's Report and the contingent liability notes in the financial statements creates an accountability loop: if a material uninsured risk has crystallised into a loss that must be disclosed as a contingent liability, the absence of insurance for that risk becomes visible to shareholders and raises governance questions about the board's risk oversight.

Section 166 of the Companies Act, 2013 codifies the duties of directors, including the duty to act in good faith and in the best interests of the company, to exercise duties with reasonable care, skill and diligence, and to avoid conflicts of interest. While Section 166 does not mention insurance, its duty of care provision creates a direct link between the adequacy of the company's insurance programme and the personal liability of the directors who are responsible for maintaining it.

In several NCLT and court decisions from 2020 to 2025, the standard of 'reasonable care, skill and diligence' expected of directors under Section 166 has been assessed against what a prudent director in a similar company in a similar industry would have done. For a director of a manufacturing company, a prudent director would be expected to maintain fire, machinery breakdown, and product liability insurance at adequate levels. A director who knowingly allows the company's property insurance to lapse, or who fails to update the sum insured to reflect asset additions made in recent years, is not meeting the Section 166 standard of reasonable care.

The practical relevance is in shareholder derivative actions and oppression petitions under Sections 241-242 of the Companies Act. Minority shareholders who allege that the majority directors have mismanaged the company can point to inadequate insurance as evidence of mismanagement - particularly where a loss has occurred that would have been covered by insurance that the company should have maintained. The NCLT has accepted insurance inadequacy as a relevant (though typically not standalone) factor in oppression and mismanagement petitions.

For independent directors specifically, Section 166 creates a positive obligation to inquire about the company's risk management practices, including insurance. An independent director who simply accepts management's assurance that 'adequate insurance is in place' without having seen the insurance programme summary, the policy renewal schedule, or the results of the last insurance gap analysis may be falling below the duty of care standard. Best practice is for the board's Audit Committee or Risk Management Committee to receive an annual insurance programme report from management, covering policy types, limits, deductibles, and known coverage gaps - this demonstrates that independent directors have exercised oversight rather than merely relied on management.

The intersection between D&O liability insurance and Section 166 is particularly important. D&O insurance exists specifically to protect directors against personal liability arising from claims that they have breached their duties under Section 166 and related provisions. A company that does not maintain D&O insurance is depriving its directors of the financial protection that would enable them to defend against such claims - which in turn may make qualified independent directors less willing to serve, undermining the board's governance capability. The SEBI LODR regulations do not mandate D&O insurance for listed companies, but SEBI's corporate governance framework and the increasing frequency of SEBI enforcement actions against directors of listed companies have made D&O insurance a practical necessity for any company with institutional shareholders.

Schedule II of the Companies Act, 2013 prescribes the useful life of various classes of fixed assets for the purpose of calculating depreciation under the Companies (Accounting Standards) Rules or Ind AS. The relationship between Schedule II depreciation and insurance may not be immediately obvious, but it creates a systematic risk of underinsurance that many Indian listed companies do not adequately manage.

Under Schedule II, assets are depreciated over their prescribed useful lives: for example, plant and machinery for general industries has a useful life of 15 years, factory buildings 30 years, and electrical installations 10 years. As assets are depreciated, their book value declines. Companies that insure their fixed assets at 'book value' - the depreciated value as it appears in the balance sheet - are almost certainly underinsured relative to the actual replacement cost.

The correct basis for property insurance in India (and globally) is reinstatement value, not book value. Reinstatement value is the cost of reconstructing or replacing the asset in its current condition (or to a new equivalent standard) at today's prices. For a factory building constructed in 2005 and depreciated to a book value of INR 2 crore in 2026, the reinstatement cost at 2026 construction prices - which have increased substantially due to material and labour cost inflation - might be INR 8-12 crore. A fire that destroys this building and is insured at INR 2 crore leaves the company with a INR 6-10 crore uninsured loss.

This is not a marginal issue for Indian listed companies. IRDAI-licensed surveyors frequently report that declared values for industrial properties in India are significantly below reinstatement values, sometimes by a factor of two to four times. The average clause in standard Indian fire policies (which provides that the insurer will pay only the proportion of the loss equal to the ratio of the insured value to the actual value) means that underinsurance directly reduces claim recovery on a proportional basis.

The board's responsibility under Sections 134 and 166 requires it to ensure that asset insurance values are reviewed and updated regularly - not simply carried forward from year to year on the basis of depreciated book values. Listed companies should commission a professional reinstatement value assessment (conducted by a qualified valuer under the Companies (Registered Valuers and Valuation) Rules, 2017) for major property assets at least every three to five years, and should reconcile the assessed reinstatement values against the insured sums at each annual renewal. The reinstatement value assessment should be documented and presented to the board, creating an audit trail of the board's exercise of oversight over insurance adequacy.

Schedule III of the Companies Act, 2013, as supplemented by the Companies (Accounts) Rules, 2014, requires companies to disclose contingent liabilities in the notes to financial statements. The interaction between contingent liability disclosure and insurance creates specific governance obligations for listed company management and their auditors.

A contingent liability, as defined under Ind AS 37 (Provisions, Contingent Liabilities and Contingent Assets), is a possible obligation whose existence will be confirmed only by the occurrence of one or more uncertain future events not wholly within the control of the entity, or a present obligation where it is not probable that an outflow of resources will be required to settle the obligation or where the amount cannot be reliably estimated. For insurance purposes, the key contingent liabilities are: pending claims against the company (product liability, employment disputes, regulatory penalties) where the outcome is uncertain; and potential losses from uninsured or underinsured risks where a loss event has occurred but the claim amount is not finalised.

For a listed company with a pending product liability claim of INR 50 crore where the company's product liability insurance limit is INR 20 crore, the INR 30 crore gap between the claim amount and the insurance limit is a contingent liability that should be disclosed in the financial statements if the outcome is probable. The auditor reviewing the financial statements will ask management to document both the insurance cover in place and the uninsured exposure, to ensure that the contingent liability note is complete and accurate.

The Companies (Accounts) Rules, 2014, Rule 8(5)(vii) requires the Board's Report to include details in respect of adequacy of internal financial controls with reference to the financial statements. The management of insurance programmes - specifically, maintaining insurance at adequate levels and ensuring that claims are properly recorded as assets or contingent receipts - is part of the internal financial controls framework. A company that maintains poor insurance records, fails to renew policies before expiry, or does not properly account for insurance recoveries in its financial statements has a weakness in its internal financial controls that the Board's Report should address.

For companies adopting Ind AS, the interaction with Ind AS 4 (Insurance Contracts, as applied to policyholders rather than insurers) and Ind AS 37 is relevant when a significant loss has occurred and an insurance recovery is expected. Ind AS 37 requires that the insurance recovery be recognised as an asset only when it is virtually certain, not when it is merely probable. This creates a timing difference between recognising the loss (often immediate) and recognising the insurance recovery (often delayed pending claim settlement), which can have a material impact on the company's reported financial position and earnings in the periods straddling a major claim.

SEBI's Listing Obligations and Disclosure Requirements (LODR) Regulations, 2015 impose risk management disclosure obligations on listed companies that directly intersect with the adequacy and transparency of the company's insurance programme.

Regulation 21 of the SEBI LODR requires the top 1000 listed companies (by market capitalisation) to constitute a Risk Management Committee (RMC) of the board and to implement a risk management policy that includes cyber security. The RMC is required to meet at least twice a year. For insurance purposes, the RMC's mandate includes oversight of the company's risk transfer programme - specifically, whether the company has appropriately identified its key risks and obtained adequate insurance to transfer those risks where insurance is an efficient risk management tool.

Regulation 34 of SEBI LODR, read with Schedule V, requires listed companies to include a Management Discussion and Analysis (MD&A) section in the Annual Report covering, among other matters, risks and concerns. Many Indian listed companies' MD&A sections address macro-level risks (competition, regulatory changes, commodity price risks) but fail to address insurance programme adequacy as a risk in itself. An insurance gap - a significant uninsured or underinsured exposure that the company has not adequately addressed - is a material risk that should be disclosed in the MD&A if it could reasonably affect investors' assessment of the company's financial position.

Regulation 30 of SEBI LODR requires immediate disclosure of material events and information. A major property fire, a significant product liability judgment, or a cyber attack that results in material financial loss must be disclosed under Regulation 30 within the prescribed timelines. The adequacy of insurance coverage for such events is directly relevant to the materiality assessment: a fire loss of INR 100 crore that is fully insured may be material (requiring disclosure of the fire event itself) but not a financial risk to the company; the same fire loss without insurance, or with significant underinsurance, creates a material financial impact that intensifies the disclosure obligation.

For Business Responsibility and Sustainability Reports (BRSR) - mandatory for the top 1000 listed companies under SEBI's BRSR framework circular of May 2021 and subsequent amendments - the reporting on 'governance, risk and opportunity management' includes questions about whether the company has policies on risk management and operational continuity. Insurance programme adequacy is an implicit component of the BRSR operational continuity disclosure. Companies that have not integrated insurance programme review into their BRSR reporting process are likely to be underreporting on this dimension.

The Companies (Auditor's Report) Order, 2020 (CARO 2020), effective for financial years beginning 1 April 2021, substantially expanded the scope of matters on which the statutory auditor must comment in the auditor's report. Several of CARO 2020's reporting requirements directly or indirectly cover insurance, creating an annual audit checkpoint for listed companies' insurance programme adequacy.

CARO 2020, Clause 3(i)(a) requires the auditor to comment on whether the company maintains proper records showing full particulars, including quantitative details and situation of property, plant and equipment. This record-keeping requirement is the foundation for proper insurance management: a company that does not maintain complete asset registers with current values and locations cannot ensure that its property insurance is accurate. An auditor who finds gaps in the fixed asset register is implicitly also finding a potential gap in insurance accuracy, and the CARO report should reflect this.

CARO 2020, Clause 3(i)(c) requires the auditor to report whether the title deeds of immovable properties are held in the name of the company. From an insurance perspective, title ownership is critical for insurable interest: a company can only insure property in which it has an insurable interest, which includes legal ownership or a valid lease. Disputes about whether a company has insurable interest in property - arising from title defects, disputed ownership, or undisclosed encumbrances - can result in an insurer refusing to pay a claim on the grounds that the company lacked insurable interest at the time of the loss. The CARO 2020 auditor's review of title deeds and ownership serves as a partial proxy for insurable interest verification.

CARO 2020, Clause 3(ix) covers the company's borrowings and defaults. Where a company has borrowed against specific assets (machinery, property) and the lender has required insurance as a condition of the loan (a standard requirement in project finance and equipment finance), the auditor should verify that the required insurance is in place. A default on the insurance requirement is a technical default under the loan agreement that the auditor should flag in the CARO report, as it creates a potential acceleration risk on the borrowing.

CARO 2020, Clause 3(xix) requires the auditor to comment on whether a company that has been sanctioned working capital limits from banks has utilised the funds for the purpose for which the funds were obtained. Insurance premiums are a recognised operational expense, and a company that uses working capital lines to pay insurance premiums (rather than operational expenses) should have documented this in its working capital utilisation disclosures. Conversely, a company that foregoes insurance renewal because it lacks working capital to pay the premium is creating an uninsured risk that the auditor should be aware of.

Beyond the specific CARO clauses, the auditor's assessment of going concern risk - required under SA 570 of the Standards on Auditing - must consider whether the company has adequate insurance to recover from a major loss event. A manufacturing company whose only plant is uninsured against fire faces an existential risk that is directly relevant to the going concern assessment. Auditors in India have been increasingly attentive to this intersection since the NCLAT's guidance on auditor responsibilities in insolvency-adjacent situations, and the absence of major asset insurance is now a standard item in the going concern risk assessment checklist used by major audit firms.

The Companies Act, 2013 contains significant penalty provisions for directors, and while inadequate insurance is not itself an offence under the Act, there are circumstances where inadequate insurance contributes to a loss that triggers director liability.

Section 447 of the Companies Act, 2013 criminalises fraud by officers of the company - including directors. Fraud is defined as 'any act, omission, concealment of any fact or abuse of position committed by any person or any other person with the connivance in any manner, with intent to deceive, to gain undue advantage from, or to injure the interests of, the company or its shareholders or its creditors or any other person, whether or not there is any wrongful gain or wrongful loss.' While an uninsured loss resulting from genuine neglect is not Section 447 fraud, a situation where directors knowingly misrepresented insurance status to shareholders, creditors, or lenders - for example, representing in a bank loan application that assets are fully insured when they are not - could bring the directors within the scope of Section 447.

More commonly, the penalty exposure for directors arises through the civil route. Shareholders who suffer loss because a company was inadequately insured and a major loss has wiped out a significant portion of shareholder value can bring an oppression and mismanagement petition under Sections 241-242, seeking among other remedies the personal liability of directors for losses arising from their mismanagement. The NCLT has the power under Section 242 to order a director to repurchase shares from minority shareholders at fair value, to remove a director from office, or to impose other remedies - including, in principle, ordering a director to compensate the company for losses arising from the director's breach of duty.

For listed companies, SEBI has enforcement powers under the SEBI Act, 1992 and the SEBI LODR Regulations that can target directors for risk management failures. SEBI's Adjudicating Officer mechanism can impose monetary penalties on directors who have failed to comply with SEBI LODR risk management disclosure obligations - including failures to disclose material insurance gaps or uninsured losses in the mandatory disclosures. SEBI's enforcement actions have progressively focused on the adequacy of risk management disclosures, not merely technical compliance with disclosure timelines.

The D&O insurance policy is the primary mechanism for protecting directors against these penalty exposures. A well-structured D&O policy for a listed Indian company covers: defence costs for NCLT and NCLAT proceedings; defence costs for SEBI investigations and adjudication; settlements of shareholder derivative actions (subject to insurability under Indian law); and regulatory investigation costs before CBI, ED, or other government agencies. The policy should include Side A coverage (which protects individual directors when the company is unable to indemnify them, for example during insolvency) as well as Side B (company reimbursement of directors it has indemnified) and Side C (securities entity coverage for securities law claims against the company itself).

For directors of listed companies who are personally exposed to these risks, the adequacy of the D&O policy is not merely an insurance procurement question - it is a personal financial protection matter. Directors should review their D&O policy independently of management, understand the coverage terms (including exclusions for fraud, criminal acts, and willful misconduct), and ensure that the policy limit is adequate for the complexity and risk level of the company and its regulatory environment. A D&O policy for a major listed Indian company should typically have a limit of no less than INR 50-100 crore, with higher limits appropriate for companies in SEBI's enforcement-intensive sectors such as financial services, pharmaceuticals, and infrastructure.