If you run a startup in India and have 10 or more people working with you, the POSH Act applies to your organisation. Most startup founders understand the importance of a safe workplace — the challenge is knowing exactly what the law requires and finding the time to implement it while building a company.
The Sexual Harassment of Women at Workplace (Prevention, Prohibition and Redressal) Act, 2013 — the POSH Act — applies to every organisation that has crossed the 10-employee threshold, regardless of stage, funding status, or industry. The good news is that getting compliant is simpler than most founders expect.
The Legal Threshold: Who Needs POSH Compliance?
The POSH Act applicability is straightforward. Any organisation in India — private company, public company, NGO, partnership firm, LLP, sole proprietorship, or any other entity — with 10 or more employees must comply with the Act in full.
This includes:
- Bootstrapped startups operating out of a single room
- Funded startups with venture capital or angel investment
- Remote-first companies with distributed teams
- Companies operating from co-working spaces
- Startups with no formal HR department
The Act makes no distinction based on industry, revenue, funding stage, or work model. If you have 10 people, you must comply.
Who Counts as an “Employee”?
This is where many founders get the math wrong. When the Act says “10 employees,” it does not mean 10 names on your payroll. The definition under Section 2(f) of the POSH Act is deliberately broad. It includes:
- Permanent, full-time employees
- Contractual workers and freelancers engaged regularly
- Temporary and ad hoc staff
- Interns (paid or unpaid)
- Consultants working at or for the workplace
- Volunteers
- Daily wage and part-time workers
- Trainees and apprentices
If you are a startup with 6 full-time employees, 2 interns, and 2 regular contractors, you have 10 employees under the Act. You must comply.
Common Misconceptions About POSH for Startups
Startup founders are busy building products, raising capital, and scaling operations. It is natural for compliance to take a back seat — but some widely held assumptions about POSH can lead to unintended gaps. Here are the most common ones, and the reality behind each.
| Myth | Reality |
|---|---|
| “We are too small to worry about this” | The threshold is 10 people — not 100, not 500. Most startups cross this within their first year of operation. |
| “We do not have an HR department” | You do not need one. The founder, CEO, or any senior member can serve as the point person. The Act requires an Internal Complaints Committee (ICC), not an HR team. |
| “Our culture is informal, we do not need a formal policy” | A strong culture is a great foundation — but a documented policy gives that culture a formal framework. It ensures everyone knows where to go if an issue arises, and it protects both employees and the organisation. |
| “We will do it when we scale” | Compliance is easier to implement early, when the team is small and the culture is still forming. Waiting until later often means more complexity and more catch-up work. |
| “Remote companies are exempt” | The Act covers the “extended workplace,” which includes virtual meetings, chat platforms, emails, offsite events, and any digital space used for work. Remote companies are fully covered. |
The legal requirements for POSH compliance in India apply equally to a 10-person startup and a 10,000-person enterprise. Understanding these realities early helps founders build compliance into their culture from the start — rather than retrofitting it later.
What Startups Specifically Need to Do
POSH compliance eligibility triggers a set of concrete obligations. Here is exactly what the law requires from startups that have crossed the 10-employee threshold.
1. Constitute an Internal Complaints Committee (ICC)
The ICC is the cornerstone of compliance under the POSH Act. Every workplace must have one. The committee requires a minimum of 4 members:
- Presiding Officer — a senior woman employee of the organisation
- Two internal members — employees committed to the cause of women’s safety or with experience in social work or legal knowledge
- One external member — a person from an NGO, association, or someone familiar with issues relating to sexual harassment (this is mandatory; you cannot have an all-internal committee)
At least half the members must be women. For startups with small teams, this often means the founder and senior team members step into these roles directly.
2. Draft and Adopt a POSH Policy
Your organisation needs a written policy on the prevention, prohibition, and redressal of sexual harassment. This policy must define what constitutes sexual harassment, outline the complaint mechanism, detail the inquiry process, and specify the consequences.
3. Conduct Awareness Training
All employees — not just women, not just managers — must undergo training on the POSH Act, the organisation’s policy, and the ICC process. This is not optional and must be done regularly, not just as a one-time onboarding exercise.
4. Display ICC Details at the Workplace
The names, contact details, and roles of ICC members must be displayed prominently at the workplace. For remote companies, this means making the information easily accessible on internal platforms, intranet, or company handbooks.
5. File an Annual Report
The ICC must prepare and submit an annual report to the District Officer. This report must include the number of complaints received, the number of complaints disposed of, and the action taken. Even if there were zero complaints in the year, the report must still be filed.
Penalties Under the Act
The Act includes enforcement provisions under Sections 26 and 27:
- First offence: A fine of up to Rs 50,000 imposed by the District Officer
- Repeat offence: The fine doubles, and the organisation’s business licence or registration can be cancelled
Beyond the statutory provisions, POSH compliance is increasingly part of the due diligence process during funding rounds, client onboarding, and acquisitions. Investors and partners view it as a marker of organisational maturity. Getting compliant early strengthens your position across all these touchpoints.
The Startup Advantage
Here is the counterintuitive truth: startups are actually in the best position to get POSH compliant. Large organisations struggle with compliance because they have thousands of employees across multiple locations, complex hierarchies, and entrenched cultures resistant to change.
Startups have none of these problems. With a small team, you can:
- Constitute your ICC in a single meeting
- Roll out a policy that everyone reads the same week
- Complete awareness training for the entire company in one session
- Set the cultural tone from the very beginning
Getting compliant when you are small is faster, cheaper, and more effective than retrofitting compliance into a large organisation. It also signals to your team, your customers, and your investors that you take workplace safety seriously from day one.
How POSHready Makes It Simple
POSHready was built specifically to make POSH compliance fast and straightforward for organisations of all sizes — but startups benefit the most. The platform handles every requirement through a self-service portal that requires no legal expertise.
What you get:
- AI-generated POSH policy tailored to your organisation, ready for adoption
- Guided ICC setup that walks you step by step through constituting a legally valid committee, including external member onboarding
- Online awareness training that meets the Act’s requirements and can be completed at each employee’s own pace
- Compliance tracking and annual report generation so you never miss a filing deadline
Pricing built for startups:
- Training-only plan: Rs 700 per user for comprehensive POSH awareness training
- Full compliance plan: Rs 35,000 + Rs 500 per user covering policy, ICC setup, training, and ongoing compliance management
A startup with 15 employees can go from zero to fully compliant — policy drafted, ICC constituted, training completed, compliance documented — in under 2 hours.
Close the Gap Today
Most startup founders have the intent to build a safe, compliant workplace — what they need is the right tool to make it happen without consuming weeks of effort. POSH compliance is a legal requirement, but it is also an investment in your team’s trust and your company’s credibility.
Register on POSHready, follow the guided setup, and get your startup fully compliant today. It takes less time than your average sprint planning meeting — and it gives your team the protections they deserve.