POSH Policy Requirements for Indian Companies

Workplaces are supposed to be safe. People should be able to come to work, do their job, and go home without fear, discomfort, or harassment.

But reality is not always this simple. Across industries and company sizes, incidents of workplace harassment still occur. When they do, the consequences are serious for employees, for the organisation, and for leadership.

To address this problem, India enacted the Prevention of Sexual Harassment (POSH) Act, 2013, formally called the Sexual Harassment of Women at Workplace (Prevention, Prohibition and Redressal) Act. The law requires organisations to create systems that prevent harassment, handle complaints fairly, and protect employees.

At first glance, POSH compliance may look like just another HR policy. In practice, it is much more than that. It is a legal obligation, a governance responsibility, and a signal of how seriously a company treats workplace safety. Yet many organisations struggle with POSH compliance — not because they intend to ignore the law, but because policies often exist only on paper.

This article explains the POSH policy requirements for Indian companies, what organisations must actually do to comply, why compliance often fails in practice, and how better policy governance can solve the problem.

Understanding the POSH Act

The POSH Act was introduced in 2013 to provide a legal framework for preventing and addressing sexual harassment at work.

The law applies to all workplaces in India, including private companies, public sector organisations, startups, educational institutions, hospitals, NGOs, and government offices. Any organisation with 10 or more employees must comply with POSH requirements.

The goal of the law is simple: create a safe working environment where employees are protected from harassment and have a fair process to report complaints. To achieve this, companies must implement several mandatory measures.

What Counts as Sexual Harassment

Under the POSH Act, sexual harassment includes any unwelcome behaviour of a sexual nature. This may include physical contact or advances, requests for sexual favours, sexually coloured remarks, showing pornography, and any other unwelcome physical, verbal, or non-verbal conduct of a sexual nature.

Harassment can happen in many contexts: inside the office, during work travel, at office events, during online meetings, and through work-related communication. The law focuses on whether the behaviour is unwelcome and creates a hostile environment.

This is why awareness and training are essential parts of POSH compliance. Reading the policy is not enough. Employees and managers need to understand how the rule applies in real situations.

Mandatory POSH Policy Requirements for Companies

To comply with the law, organisations must put specific structures in place. These requirements are not optional.

A Written POSH Policy

Every company must have a formal POSH policy that clearly explains what sexual harassment means, what behaviour is unacceptable, how employees can report complaints, how complaints will be investigated, and what actions may be taken if harassment is proven.

The policy should be easy to understand and easily accessible to employees. If employees do not know the policy exists, it cannot protect them. This is one reason a structured new joiner policy onboarding process matters: every employee must be given the POSH policy, must acknowledge it, and the company must be able to prove both.

Internal Complaints Committee (ICC)

Organisations with 10 or more employees must create an Internal Complaints Committee. This committee handles harassment complaints and conducts investigations.

The ICC must include a Presiding Officer who is a senior woman employee, at least two internal members committed to gender equality or employee welfare, and one external member from an NGO or association familiar with women’s rights. The presence of an external member ensures fairness and neutrality.

Companies often overlook this requirement or appoint members who are not properly trained. This weakens the entire complaint process.

Awareness and Training

POSH compliance is not only about having a policy document. Employees must understand the policy. Organisations must conduct regular awareness sessions that explain what sexual harassment is, how to recognise inappropriate behaviour, how to report complaints, and how investigations work.

Managers and ICC members must receive additional training on handling complaints responsibly. Without awareness, policies remain unused documents.

Complaint Handling Process

The POSH Act requires organisations to establish a formal process for handling complaints. This process must ensure confidentiality, fair investigation, protection of the complainant, and timely resolution.

The ICC must complete investigations within 90 days and provide recommendations to the employer. Companies must act on those recommendations within 60 days. Documentation is critical during this process.

Annual Reporting

Organisations must submit annual POSH reports that include the number of complaints received, complaints resolved, pending cases, and awareness programs conducted. These reports are submitted to the district officer.

Many companies fail this requirement simply because records were not properly maintained.

Why POSH Compliance Often Fails in Practice

Despite clear legal requirements, many companies struggle with compliance. The problem usually does not start with bad intentions. It starts with operational chaos. Policies exist somewhere, but the organisation cannot manage them effectively.

Policies Scattered Across Documents and Folders

In many companies, policies are stored in multiple places. Some are in HR folders. Some are in old employee handbooks. Some are buried in email attachments. Employees do not know where to find the latest version. Sometimes even HR teams are unsure which version is current. When policies are scattered, compliance breaks down.

Outdated Policies Nobody Updates

Workplace policies must evolve. Laws change. Work environments change. Remote work changes interaction patterns. But many organisations continue using POSH policies written years ago. Without regular review, policies quickly become outdated and disconnected from real workplace scenarios.

Employees Are Not Aware of Policies

A policy that employees have never seen is not useful. Many organisations distribute policies only once during onboarding. After that, employees rarely see them again. Over time, employees forget what the policy says or how complaints should be reported. This leads to silence when issues occur.

Lack of Accountability

In some companies, policy governance is unclear. Who owns the POSH policy? Who ensures employees read it? Who tracks policy acknowledgements? If responsibility is not clearly assigned, policies slowly fade into the background. Compliance becomes reactive instead of proactive.

Manual Compliance Tracking

Many HR teams track policy compliance manually. They rely on spreadsheets, email confirmations, or internal checklists. This approach becomes difficult to manage as companies grow. Manual tracking leads to missing acknowledgements, lost records, incomplete training logs, and difficulty during audits. Without reliable tracking, organisations cannot prove compliance. We covered the same pattern in why companies fail policy compliance.

Leadership Ignoring Policy Governance

Policies only work when leadership takes them seriously. If executives treat policies as formalities, employees will do the same. A strong compliance culture requires leadership to support policy enforcement, encourage reporting of issues, and invest in proper compliance systems. Without leadership commitment, even well-written policies fail.

Consequences of Poor POSH Compliance

Ignoring POSH requirements creates serious risks. These risks are not limited to legal penalties. They affect the entire organisation.

Legal and Regulatory Risk

Failure to comply with POSH requirements can result in penalties under the law. More importantly, mishandled harassment complaints can escalate into legal disputes that damage the organisation. Courts increasingly expect companies to demonstrate strong internal processes.

Audit Failures

During internal audits, ISO certifications, or regulatory inspections, organisations must show proof of policy implementation. If records are missing or incomplete, companies struggle to demonstrate compliance. Auditors often ask for policy documents, training records, complaint registers, and annual POSH reports. Without organised systems, producing these records becomes difficult.

Inconsistent Decision Making

When policies are unclear or poorly managed, managers handle situations differently. One team may escalate an issue immediately. Another team may ignore it. This creates confusion and perceptions of unfairness. Clear policies ensure consistent decisions across the organisation.

Employee Trust Erosion

Employees need to believe that their workplace is safe. If harassment complaints are ignored or mishandled, trust breaks down. Talented employees may leave. Company reputation may suffer. Recruitment becomes harder. Workplace culture can deteriorate quickly when employees feel unsupported.

Why Policy Governance Matters

Policies are not just documents. They are operational systems that guide behaviour across the company.

Good policy governance ensures that policies are easy to access, regularly updated, clearly understood, properly acknowledged by employees, and consistently enforced. This requires more than a folder of documents. It requires structured policy management.

How Modern Policy Management Platforms Help

Many organisations are now moving away from manual policy management. Instead, they use centralised systems designed specifically for policy governance. Platforms like PolicyCentral.ai help companies manage policies in a structured and transparent way.

Maintain a Single Source of Truth

All policies are stored in one central location. Employees always access the latest version. This eliminates confusion caused by outdated documents.

Track Policy Acknowledgements

Organisations can see which employees have read and acknowledged policies. This creates accountability and provides clear compliance records.

Monitor Compliance

HR and compliance teams can monitor policy adoption across departments. If employees have not acknowledged a policy, reminders can be sent automatically.

Simplify Audits

Centralised systems make it easier to produce documentation during audits. Training records, policy versions, and acknowledgement logs are all easily accessible.

Improve Policy Governance

Leadership gains visibility into policy compliance across the organisation. This allows companies to identify gaps early and address them before problems escalate.

Building a Culture of Compliance

POSH compliance is not only about meeting legal requirements. It is about creating a workplace where employees feel respected and protected.

Organisations that take policy governance seriously tend to build stronger cultures. This requires a combination of clear policies, employee awareness, leadership commitment, and structured policy management. When these elements work together, compliance becomes part of daily operations instead of a last-minute requirement. Companion read on the broader HR policy stack: HR policies every Indian company should have in 2026.

Key Takeaways for Organisations

The POSH Act was created to protect employees and ensure safe workplaces across India. Compliance with this law is not optional. It is a legal responsibility and a moral one.

But real compliance goes beyond writing a policy document. Organisations must ensure that policies are visible, understood, enforced, and properly tracked. When policies are scattered, outdated, or ignored, the system breaks down. Employees lose trust. Investigations become difficult. Legal and reputational risks increase.

Modern organisations are beginning to recognise that policy governance needs the same level of attention as finance, security, and operations. Centralised policy management systems help bring structure to this process. By ensuring that policies are accessible, acknowledged, and monitored, companies can move from reactive compliance to proactive governance. And in the case of POSH, that shift makes workplaces safer for everyone.

Frequently Asked Questions