If you are an independent director on the board of a listed company in India, ESG compliance is no longer something you can leave to the management team and hope for the best. SEBI’s Business Responsibility and Sustainability Reporting (BRSR) framework has turned environmental, social, and governance disclosures from a voluntary exercise into a mandatory, auditable obligation — and the personal liability exposure for directors who fail to oversee it properly is growing with every regulatory cycle.

The problem is that most independent directors in India were appointed for their financial expertise, industry connections, or governance experience in traditional corporate law. ESG is a different beast. It involves environmental metrics, social impact indicators, supply chain disclosures, and a new vocabulary of KPIs that did not exist in Indian boardrooms five years ago. And yet, the Companies Act, 2013 explicitly includes “protection of environment” as part of a director’s statutory duty under Section 166(2) — a provision that most directors have never closely read.

This guide breaks down exactly what independent directors need to know about ESG compliance under the SEBI BRSR framework in 2026, maps the personal liability risks under Indian law, and gives you a practical compliance checklist you can use before every board meeting.

Why ESG Compliance Is Now a Personal Liability Issue for Independent Directors

The shift happened gradually, then all at once. SEBI introduced BRSR as a voluntary framework in 2021, made it mandatory for the top 1,000 listed companies by market capitalisation from FY 2022-23, and then escalated the requirements with BRSR Core — a subset of key performance indicators requiring independent third-party assurance — starting with the top 500 companies from FY 2025-26.

For independent directors, the liability angle is direct. Section 166(2) of the Companies Act, 2013 states that a director shall act in good faith in order to promote the objects of the company for the benefit of its members as a whole and in the best interests of the company, its employees, the shareholders, the community, and for the protection of environment. That last phrase — “protection of environment” — is not decorative. It is a statutory duty, and failing to discharge it can attract consequences under Section 166(7), which provides that any director who contravenes Section 166 shall be punishable with a fine of not less than one lakh rupees which may extend to five lakh rupees.

The more serious risk sits in Section 447 of the Companies Act. If ESG disclosures in the annual report contain material misstatements — for example, if a company claims compliance with environmental standards it has not actually met, or reports fabricated sustainability metrics — this can constitute fraud. Section 447 provides for imprisonment of not less than six months which may extend to ten years, along with a fine that can extend to three times the amount involved in the fraud. Independent directors are not automatically shielded from this. Section 149(12) provides that independent directors shall be held liable only in respect of acts of omission or commission by a company which had occurred with their knowledge, attributable through board processes, and with their consent or connivance or where they had not acted diligently. But “not acting diligently” on ESG oversight, when BRSR data is presented to the board and approved without scrutiny, is precisely the kind of omission that can trigger liability.

The NCLAT has made it clear in multiple rulings that the “sleeping director” defence — claiming ignorance of what the company was doing — does not exempt directors from liability for matters that came before the board or should have come before the board through proper governance processes.

SEBI BRSR Framework — What Independent Directors Must Know

BRSR replaced the older Business Responsibility Report (BRR) and is fundamentally more detailed, more quantitative, and more verifiable. Understanding its structure is essential for any director who needs to review and approve these disclosures.

BRSR vs BRSR Core — Structure and Scope

The full BRSR framework requires listed companies to report across three sections: General Disclosures (company profile, products, operations, employees), Management and Process Disclosures (policies, governance structures, stakeholder engagement), and Principle-wise Performance Disclosures covering nine principles derived from the National Guidelines on Responsible Business Conduct (NGRBCs).

The full BRSR contains approximately 140 disclosure items — 98 essential indicators that all reporting companies must complete, and 42 leadership indicators that companies are encouraged but not required to report on.

BRSR Core is a focused subset introduced by SEBI through its circular dated July 12, 2023 (SEBI/HO/CFD/CFD-SEC-2/P/CIR/2023/122). It extracts a set of key performance indicators from the broader BRSR and requires them to be subject to independent assurance — meaning a third-party assessor must verify the accuracy of these disclosures. This is a significant escalation because it moves ESG reporting from self-certification to external verification, similar to how financial statements require statutory audit.

BRSR Core Timeline — Who Must Comply and When

The rollout follows a phased approach based on market capitalisation:

For FY 2025-26 (reports due in 2026), the top 500 listed companies by market capitalisation must file BRSR Core with third-party assurance. These companies must obtain reasonable assurance or assessment on the BRSR Core KPIs from an independent assurance provider.

From FY 2026-27, the requirement extends to the top 1,000 listed companies. This means companies currently filing the full BRSR but not yet subject to BRSR Core assurance requirements will need to begin preparing their systems, data collection processes, and internal controls for external verification.

Value chain disclosures add another layer. SEBI has introduced requirements for listed companies to report on ESG parameters for their top upstream and downstream value chain partners. For the top 250 companies, value chain ESG disclosures are currently on a voluntary comply-or-explain basis from FY 2025-26, with the corresponding assessment or assurance obligation also voluntary from FY 2026-27. SEBI has not yet confirmed a date for making these mandatory, but the direction of travel is clear — boards should begin planning for eventual mandatory value chain reporting.

A SEBI circular issued in March 2025 introduced additional flexibility by allowing companies to choose between “assessment” and “assurance” for BRSR Core verification, and added a Green Credit indicator to the reporting framework. Independent directors should understand this distinction — assessment is a less rigorous review than full assurance, and the choice has implications for the credibility and legal defensibility of the disclosures.

The 9 ESG Principles Under BRSR (National Guidelines on RBC)

Every BRSR disclosure maps to one of the nine principles from the National Guidelines on Responsible Business Conduct, originally issued by the Ministry of Corporate Affairs. Independent directors should understand these principles because they form the substantive framework against which the company’s ESG performance is measured:

Principle 1 requires businesses to conduct and govern themselves with integrity, transparency, and accountability. Principle 2 covers providing goods and services in a sustainable and safe manner. Principle 3 addresses promoting the well-being and respecting the rights of employees and workers, including contract and temporary staff. Principle 4 deals with responsiveness to stakeholder interests. Principle 5 covers respecting and promoting human rights. Principle 6 focuses on protection and restoration of the environment. Principle 7 addresses responsible and transparent engagement in public and regulatory policy advocacy. Principle 8 covers promoting inclusive growth and equitable development. Principle 9 requires businesses to engage with and provide value to their consumers responsibly.

For independent directors, Principles 1, 5, 6, and 8 typically carry the highest liability risk — these are the areas where misstatements or inadequate compliance are most likely to result in regulatory action or stakeholder litigation.

Legal Liability Framework for Independent Directors on ESG

Understanding the exact statutory provisions that create liability is essential for any independent director who wants to protect themselves while fulfilling their governance role.

Companies Act 2013 — Sections 149, 166, 447

Section 149(12) establishes the general liability framework for independent directors. It provides that an independent director shall be held liable only for acts of omission or commission by the company which had occurred with their knowledge (attributable through board processes) and with their consent or connivance, or where they had not acted diligently. The phrase “had not acted diligently” is the operative risk for ESG — if BRSR disclosures are placed before the board and an independent director approves them without questioning inconsistencies, requesting supporting data, or ensuring adequate verification processes are in place, the diligence defence weakens significantly.

Section 166(2) creates the affirmative duty — directors must act for the protection of environment, among other stakeholder interests. This is not a passive obligation. It requires directors to actively consider environmental impact in their decision-making, not merely avoid causing harm.

Section 447 is the nuclear option. Fraud under the Companies Act includes any act, omission, concealment of any fact, or abuse of position committed with the intent to deceive, to gain undue advantage, or to injure the interests of the company, its shareholders, creditors, or any other person. If a company’s BRSR report contains fabricated environmental data, overstated sustainability achievements, or materially misleading ESG claims — and the board approved this report — directors who failed to exercise due diligence face potential fraud liability.

SEBI LODR Regulations — Regulation 34 and Annual Report Disclosures

Regulation 34 of the SEBI (Listing Obligations and Disclosure Requirements) Regulations, 2015 requires the annual report of a listed entity to contain the BRSR. This means BRSR disclosures are not a separate filing — they are an integral part of the annual report that the board collectively approves and that shareholders receive.

For independent directors, this has a specific implication: when you approve the annual report at the board meeting, you are simultaneously approving the BRSR disclosures contained within it. If those disclosures are later found to be inaccurate, the approval constitutes a board process through which the omission or commission occurred — directly engaging the liability framework under Section 149(12).

SEBI can also take enforcement action for non-compliance. Under Section 15A of the SEBI Act, 1992, failure to furnish required documents or reports can attract a penalty of one lakh rupees per day, subject to a maximum of one crore rupees. Section 15HB provides a general penalty of not less than one lakh rupees (up to one crore) for contraventions where no separate penalty is specified.

Criminal and Civil Consequences of ESG Misstatements

Beyond the Companies Act and SEBI frameworks, independent directors face potential exposure under multiple statutes depending on the nature of the ESG violation.

The Environment Protection Act, 1986 provides for imprisonment up to five years and fines for non-compliance with environmental standards. The National Green Tribunal (NGT) has imposed substantial penalties on companies for environmental violations — in some cases running into hundreds of crores.

The Bharatiya Nyaya Sanhita, 2023 (replacing the Indian Penal Code) consolidates criminal breach of trust provisions under Section 316, which replaces the earlier IPC Sections 405 through 409. This can apply if directors misappropriate resources earmarked for ESG compliance or sustainability projects.

Civil liability through class action suits under Section 245 of the Companies Act is another emerging risk. While ESG-based class actions are not yet common in India, the legal infrastructure exists, and global trends suggest it is only a matter of time.

Audit Committee and Board-Level ESG Oversight Responsibilities

The audit committee plays a central role in ESG oversight, and independent directors who serve on the audit committee carry additional responsibilities.

Under SEBI LODR, the audit committee is responsible for reviewing the adequacy of internal controls and the effectiveness of the company’s risk management systems. With BRSR Core requiring third-party assurance, the audit committee must now also oversee the selection of the assurance provider, review the scope of the assurance engagement, and evaluate the assurance report’s findings.

Best practices for board-level ESG oversight include establishing a dedicated ESG or sustainability committee (or assigning ESG oversight explicitly to an existing committee), requiring quarterly ESG performance reports from management, ensuring the company has a designated ESG officer or team responsible for data collection and reporting, and reviewing the company’s ESG risk register at least annually.

Independent directors should insist on seeing the raw data behind BRSR disclosures, not just the final formatted report. Key questions to ask include: What data collection systems are in place? Who is responsible for data accuracy? Has the data been internally verified before external assurance? Are there any qualifications or limitations in the assurance provider’s report?

The board resolution approving the annual report should explicitly reference that the BRSR disclosures have been reviewed and that the board is satisfied with the adequacy of the verification processes. This creates a documented governance trail that strengthens the diligence defence if disclosures are later challenged.

Practical BRSR Compliance Checklist for Independent Directors

This is the actionable section. Use this checklist before every board meeting where BRSR disclosures or ESG matters are on the agenda.

Before the board meeting:

Request the draft BRSR report at least seven days before the meeting — not the day before. Review the BRSR Core KPIs specifically and compare year-on-year trends. Flag any metric that shows a significant improvement or deterioration without clear explanation. Check whether the assurance provider has been appointed and whether their engagement letter covers all required BRSR Core indicators. Review any regulatory correspondence from SEBI regarding BRSR compliance.

During the board meeting:

Ask management to present the key ESG metrics and explain the methodology used for data collection. Question any KPI where the company’s performance appears significantly better than industry benchmarks — this is a red flag for potential greenwashing. Confirm that value chain disclosures (where applicable) are based on actual data from suppliers and partners, not estimates or assumptions. Ensure the minutes record your specific questions and the management’s responses on ESG matters.

After the board meeting:

Follow up on any open items or commitments made by management regarding ESG data quality. Review the final BRSR report before it is included in the annual report to confirm your feedback was incorporated. Maintain personal records of all ESG-related board materials, your questions, and the responses received — this documentation is your diligence defence.

Red flags that demand immediate attention:

A sudden, unexplained improvement in environmental metrics (e.g., a 40% reduction in emissions without a corresponding capital investment or operational change). Resistance from management to engaging an independent assurance provider. BRSR disclosures that are qualitatively different from what was discussed in board meetings. Employee complaints or whistleblower reports related to environmental or social violations. Media reports about the company’s ESG practices that contradict the BRSR disclosures.

D&O Insurance and ESG — What Independent Directors Should Verify

Directors and Officers (D&O) insurance is a critical safety net, but standard D&O policies may not adequately cover ESG-related claims.

The first issue is coverage scope. Traditional D&O policies cover claims arising from “wrongful acts” in the capacity of a director — but ESG-related claims are evolving rapidly, and policy language drafted even three years ago may not contemplate the specific types of claims that BRSR non-compliance or greenwashing allegations can generate.

The second issue is exclusions. Some D&O policies exclude claims related to environmental contamination or pollution, which could leave directors exposed if ESG liability arises from environmental misstatements in the BRSR. Other policies may exclude claims arising from regulatory proceedings initiated by SEBI, or may have sub-limits that are inadequate for the potential scale of ESG liability.

Independent directors should take three specific actions. First, request a copy of the company’s current D&O policy and review it (or have your lawyer review it) for ESG-specific coverage and exclusions. Second, ask whether the policy covers regulatory proceedings under SEBI LODR and Companies Act provisions, not just civil suits. Third, advocate for the company to obtain or upgrade its D&O coverage to explicitly include ESG-related claims, greenwashing allegations, and regulatory proceedings related to sustainability disclosures.

Common ESG Compliance Failures and How Independent Directors Get Exposed

Understanding what goes wrong helps you prevent it.

Greenwashing in BRSR reports is the most immediate risk. SEBI has increasingly signalled its concern about the quality of ESG disclosures. In early 2025, a SEBI Whole Time Member publicly highlighted specific examples of greenwashing in BRSR reports filed by listed companies — including companies that reported environmental metrics without adequate supporting data, and companies whose sustainability claims were contradicted by their actual operational practices. Independent directors who approved these reports without adequate scrutiny are exposed.

Incomplete value chain disclosures are another common failure. Companies often report their own ESG metrics accurately but provide estimated or incomplete data for their supply chain partners. When BRSR Core extends to value chain reporting, this gap will become a compliance issue, not just a reporting weakness.

“AI washing” is an emerging risk that SEBI has also flagged. Some companies are claiming AI-driven ESG monitoring capabilities or AI-powered sustainability solutions in their disclosures without substantive AI implementation. This is a form of misrepresentation that can undermine the credibility of the entire BRSR filing.

Data integrity failures at the operational level are perhaps the most dangerous because they are hardest for directors to detect. If the company’s internal systems for collecting environmental data (emissions, water usage, waste generation) are unreliable, the BRSR disclosures built on that data will be inaccurate regardless of how carefully the board reviews the final report. Independent directors should push for internal audits of the ESG data collection infrastructure, not just the final numbers.

How to Use AI Responsibly for ESG Compliance Review

AI tools can significantly enhance an independent director’s ability to review and verify ESG disclosures, but they must be used with the same caution that applies to any AI use in a governance context.

AI can be useful for benchmarking — comparing your company’s BRSR disclosures against industry peers to identify outliers that may indicate data quality issues. AI-powered tools can also scan large volumes of environmental data for inconsistencies, cross-reference BRSR claims against publicly available information (satellite imagery for environmental claims, labour databases for social metrics), and generate preliminary analysis of year-on-year ESG trends.

The risks are specific. First, AI tools that are not enterprise-grade may retain the confidential board materials you input, exposing sensitive pre-publication ESG data. Second, AI-generated analysis of ESG metrics may contain errors that, if relied upon without verification, could lead to flawed board decisions. Third, using consumer-grade AI tools for governance analysis may itself become a liability issue if board minutes record that decisions were influenced by unverified AI outputs.

The responsible approach is to use enterprise-grade AI platforms with clear data privacy commitments, treat AI analysis as a starting point for human review rather than a final conclusion, document which AI tools were used and what role their output played in the board’s decision-making, and ensure that the final ESG oversight decisions are made by qualified human professionals — not delegated to algorithms.

Industry-Specific BRSR Considerations for Board Members

Different industries face different ESG materiality profiles, and independent directors should understand which BRSR KPIs carry the highest risk in their company’s sector.

Manufacturing companies face their most significant ESG risk in Principle 6 (environment) — emissions reporting, waste management, water consumption, and energy efficiency are the KPIs most likely to attract scrutiny. BRSR Core assurance will focus heavily on quantitative environmental data in this sector.

IT and technology companies have a different risk profile. Their primary ESG exposure is typically in Principle 3 (employee well-being) — covering workforce diversity, contract worker conditions, and employee health and safety — and Principle 5 (human rights), particularly regarding data privacy and digital rights. For these companies, Principle 6 metrics are typically less material but increasingly include e-waste management and data centre energy consumption.

Financial services companies (banks, NBFCs, insurance) face ESG risk through their lending and investment portfolios. Principle 2 (sustainable products) requires disclosure of how ESG considerations are integrated into lending decisions, and the RBI’s framework on climate-related financial risks adds an additional layer of regulatory expectation.

Real estate and infrastructure companies face concentrated risk in Principle 6 (land use, construction waste, green building certifications) and Principle 8 (inclusive development, impact on local communities, rehabilitation and resettlement compliance).

Independent directors should ensure that the company’s BRSR reporting emphasis matches its actual industry risk profile. A technology company spending most of its ESG reporting effort on environmental metrics while underreporting workforce conditions may be missing its most material risks.

Disclaimer: This article is for informational and educational purposes only and does not constitute legal advice. Laws, rules, and procedures are subject to change. For advice specific to your situation, consult a qualified legal professional. Information is current as of March 2026.

Frequently Asked Questions

Are independent directors personally liable for ESG non-compliance in India?

Yes, under specific conditions. Section 149(12) of the Companies Act, 2013 provides that independent directors are liable for acts of omission or commission that occurred with their knowledge (attributable through board processes), with their consent or connivance, or where they had not acted diligently. If BRSR disclosures are approved by the board without adequate scrutiny, the diligence defence is weakened. Section 166(2) also creates an affirmative duty to act for the protection of the environment.

What is the difference between BRSR and BRSR Core?

BRSR is the full Business Responsibility and Sustainability Reporting framework containing approximately 140 disclosure items across nine principles. BRSR Core is a focused subset of key performance indicators extracted from the broader BRSR that requires independent third-party assurance or assessment. BRSR Core was introduced by SEBI in July 2023 and is being phased in starting with the top 500 listed companies.

Which companies must comply with BRSR Core in 2026?

For FY 2025-26, the top 500 listed companies by market capitalisation must file BRSR Core with third-party assurance or assessment. From FY 2026-27, this extends to the top 1,000 listed companies. All top 1,000 listed companies already file the full BRSR; BRSR Core adds the assurance requirement.

What are the penalties for incorrect BRSR disclosures?

Penalties operate at multiple levels. Under Section 15A of the SEBI Act, failure to furnish required reports can attract penalties of one lakh rupees per day, subject to a maximum of one crore rupees. Under Section 447 of the Companies Act, if false BRSR disclosures constitute fraud, imprisonment of six months to ten years and fines up to three times the fraud amount are possible. Under Section 166(7), directors who breach their duties face fines of one to five lakh rupees.

Does D&O insurance cover ESG-related claims against independent directors?

Coverage varies by policy. Standard D&O policies cover claims from “wrongful acts” as directors, but many older policies do not specifically address ESG-related claims, greenwashing allegations, or SEBI proceedings related to BRSR non-compliance. Some policies explicitly exclude environmental contamination claims. Independent directors should review their company’s D&O policy for ESG-specific coverage and advocate for upgrades if needed.

What should an independent director do if they suspect ESG data in the BRSR is inaccurate?

First, raise the concern formally at the board meeting and ensure it is recorded in the minutes. Second, request management to provide supporting data and methodology for the specific metrics in question. Third, recommend engaging an independent assurance provider to verify the disputed data. If the concern is not addressed, consider escalating to the audit committee chair, and in serious cases, recording a formal dissent in the board minutes. Maintaining a personal record of your objections is essential for your diligence defence.

Can an independent director resign to avoid ESG liability?

Resignation does not retroactively eliminate liability for decisions made during your tenure. Under Section 168 and related provisions, a director’s liability for acts during their term continues even after resignation. However, if you resign and file the proper forms (DIR-11) citing your concerns, and if you had raised objections before resigning, this strengthens your defence for actions taken during your tenure. It also demonstrates that you did not consent to or connive in the non-compliance.

What is greenwashing in the context of BRSR?

Greenwashing refers to the practice of making misleading claims about a company’s environmental performance or sustainability practices. In the BRSR context, this could include overstating emission reductions, claiming environmental certifications the company does not hold, reporting estimated data as verified data, or highlighting minor green initiatives while obscuring significant environmental impacts. SEBI has publicly flagged greenwashing as a concern in BRSR reports filed by listed companies.

How does the DPDP Act 2023 interact with ESG compliance?

If a company’s ESG data collection involves processing personal data of employees, community members, or supply chain workers, the Digital Personal Data Protection Act, 2023 applies. The company must comply with data fiduciary obligations under Section 8, including processing data only for stated purposes and maintaining security safeguards. This creates an overlap — ESG data collection must be designed to comply with both BRSR requirements and DPDP Act obligations.

What role does the audit committee play in BRSR compliance?

The audit committee oversees the integrity of the company’s financial and non-financial reporting, which includes BRSR. Under SEBI LODR, the audit committee reviews internal controls, risk management, and the adequacy of assurance processes. For BRSR Core, the audit committee should oversee the selection of the assurance provider, review the assurance engagement scope, evaluate findings, and report to the board. Independent directors on the audit committee carry heightened responsibility for BRSR oversight.

Are there industry-specific BRSR requirements?

The BRSR framework is sector-neutral — the same nine principles apply to all companies. However, the materiality of each principle varies by industry. SEBI has indicated that sector-specific guidance may be developed in future phases. In practice, companies should focus their most rigorous reporting on the principles most material to their industry — Principle 6 (environment) for manufacturing, Principle 3 (employees) for IT companies, and Principle 2 (sustainable products) for financial services.

What is the timeline for value chain ESG disclosures?

SEBI has introduced value chain disclosures under BRSR on a phased basis. For the top 250 listed companies, value chain ESG reporting is currently on a voluntary comply-or-explain basis from FY 2025-26. The corresponding assessment or assurance obligation is also voluntary from FY 2026-27. SEBI has not yet confirmed a date for making these mandatory. Companies will need to report on ESG parameters for their key upstream suppliers and downstream partners — a significant data collection challenge that boards should begin planning for now.

Can AI tools be used for BRSR report preparation?

Yes, but with caution. AI tools can assist with data aggregation, benchmarking, trend analysis, and identifying inconsistencies in ESG data. However, AI-generated analysis should not be treated as final and must be verified by qualified professionals. Enterprise-grade tools with data privacy commitments should be used — consumer-grade AI chatbots should never receive confidential pre-publication ESG data. The board should document any AI tools used in the BRSR preparation process.

What is the “sleeping director” defence and does it work for ESG?

The “sleeping director” defence is a claim by a director that they were unaware of the company’s actions and therefore should not be held liable. Indian tribunals, including the NCLAT, have consistently rejected this defence where the director was part of the board process through which the relevant decisions were made. For ESG specifically, if BRSR disclosures were presented at a board meeting the director attended, claiming ignorance of their contents is unlikely to succeed.

How should independent directors prepare for BRSR Core expansion to top 1,000 companies?

If your company falls in the top 501-1,000 bracket, you should begin preparation now for FY 2026-27 compliance. Key steps include: reviewing current BRSR disclosures for data quality and completeness, identifying which BRSR Core KPIs require the most improvement in data collection, engaging potential assurance providers to understand their requirements and timelines, ensuring the company has dedicated ESG reporting staff or has budgeted for external support, and requesting management to present a BRSR Core readiness roadmap to the board.

What is the connection between ESG compliance and the IICA independent director examination?

The Indian Institute of Corporate Affairs (IICA) online proficiency self-assessment test, which independent directors must pass and update periodically, includes questions on corporate governance and board responsibilities — areas increasingly influenced by ESG requirements. While the exam does not yet have a dedicated ESG module, governance and compliance questions now encompass ESG-related duties. Understanding ESG compliance frameworks strengthens your performance on the examination and, more importantly, your effectiveness as a board member.