+91 99614 11863 +91 94969 61863 info@spotonz.com
WhatsApp Free Consultation

Whistleblower Policy and Vigil Mechanism — Section 177 Companies Act 2013

By SPOTON Team · June 2026 · 5 min read

Company Law June 2026 5 min read SPOTON Team
Business Registration and Licences in Kerala

A Whistleblower Policy (also called Vigil Mechanism) is a corporate governance tool that allows employees and directors to report suspected fraud, unethical conduct or legal violations without fear of retaliation. Section 177(9) of the Companies Act 2013 makes a Vigil Mechanism mandatory for certain companies. Here is the complete guide.

Who Must Have a Vigil Mechanism?

Under Section 177(9), the following companies must establish a Vigil Mechanism:

  • All listed companies
  • Companies accepting deposits from the public
  • Companies that have borrowed money from banks and public financial institutions exceeding ₹50 crore

For listed companies, SEBI LODR Regulations 2015 additionally require the Vigil Mechanism/Whistleblower Policy to be disclosed on the company's website.

What Should a Vigil Mechanism Policy Cover?

  • Scope — types of concerns that can be reported (financial fraud, ethical violations, regulatory non-compliance, harassment)
  • Who can raise concerns — employees, directors, vendors, other stakeholders
  • How to raise concerns — dedicated hotline, email, online form, or written complaint to the designated person (Whistle-Blowing Officer or Audit Committee)
  • Investigation procedure — timeline, authority, confidentiality
  • Protection from victimisation — explicitly stating that whistleblowers will not face retaliation
  • Direct access to Audit Committee Chairperson for serious concerns
  • Annual disclosure — number of complaints received, addressed and pending

Audit Committee Oversight

The Audit Committee is responsible for overseeing the Vigil Mechanism. Under Section 177(9), in exceptional cases, complainants must have direct access to the Audit Committee Chairperson. The Audit Committee reviews the functioning of the mechanism and reports to the Board.

Protections for Whistleblowers

The policy must provide:

  • Confidentiality of the complainant's identity to the extent possible
  • Protection from adverse employment action (termination, demotion, harassment) as a result of raising a complaint
  • Prohibition on frivolous complaints — misuse can result in action against the complainant

Disclosure Requirements

Listed companies must disclose their Vigil Mechanism/Whistleblower Policy on their website (SEBI LODR Regulation 46). Annual reports must confirm the establishment and functioning of the mechanism. Audit Committee must review at least annually.

A paper policy is not enough — the mechanism must actually work: SEBI and ROC have penalised companies for having a policy that does not function. SPOTON drafts Vigil Mechanism policies and advises boards on governance best practices. Call +91 99614 11863.

Conclusion

A well-functioning Vigil Mechanism is both a legal requirement and a valuable corporate governance tool — catching compliance failures and fraud before they escalate. SPOTON provides corporate governance advisory including Vigil Mechanism policy drafting for listed and public companies. Contact us for expert company law and governance services.

Share this article:

Need Expert Help?

Our CAs & CSs are ready — free consultation.

We'll contact you shortly!

More Articles

View All Posts

Contact Us

+91 99614 11863 WhatsApp Us info@spotonz.com

Need Professional Assistance?

Our team of CAs, CSs and CMAs is ready to help — free consultation.

Book Free Consultation WhatsApp Now
Chat with us