POSH Training Agenda

POSH Training Agenda

Annual POSH training is a statutory employer duty under Section 19(c) of the Sexual Harassment of Women at Workplace (Prevention, Prohibition and Redressal) Act, 2013. It is not optional, it is not satisfied by circulating a PDF, and it is not a December formality — it is a structured, documented, recurring programme covering every employee including contractual staff and interns, with separate deep-dive tracks for Internal Complaints Committee (ICC) members and managers. This guide gives you a practical, module-by-module agenda you can run in 2026, plus the compliance artefacts you need to survive an audit.

What the Law Actually Requires — The Exact Provisions

Before designing any agenda, understand what the POSH Act mandates so you can test your programme against the statute, not against what your last vendor told you.

Section 19(b) requires every employer to display, at conspicuous places, the penal consequences of sexual harassment and the contact details of the ICC. Training must reference this display so employees know it exists.

Section 19(c) is the direct mandate: the employer shall organise workshops and awareness programmes at regular intervals for sensitising employees on the issues and provisions under the Act. "Regular intervals" means at minimum annually; best practice is quarterly refreshers plus onboarding.

Section 4 requires every employer with ten or more employees to constitute an ICC. If your ICC members have not been trained on inquiry procedure, their process is legally vulnerable.

Section 21 requires the ICC to prepare an annual report and submit it to the employer and the District Officer by 31 December each calendar year. ICC members must be trained to draft this report — it is not an HR function.

Section 26 sets out penalties. A first offence of non-compliance (including failure to organise workshops) carries a fine of up to Rs. 50,000. A subsequent offence doubles the fine to Rs. 1,00,000 and may trigger cancellation or withdrawal of any government licence, registration, or approval under which the business operates. For companies, Section 27 makes every person in charge of and responsible for the conduct of the business liable alongside the company itself.

Who Must Be Trained — and to What Depth

Getting the scope wrong is the single most common compliance gap. The POSH Act does not distinguish between employee types when it comes to creating a safe workplace.

All employees — full-time, part-time, fixed-term contractual, third-party contractors on your premises, interns, apprentices, and gig workers engaged through platforms but working at your sites — must receive annual sensitisation training. The definition of "aggrieved woman" under Section 2(a) extends to any woman, whether or not employed, which means clients and visitors who interact on your premises are also within the Act's ambit. Your employees need to understand this.

Managers and HR business partners need an additional track covering their specific obligations: how to receive a complaint without prejudicing the outcome, mandatory escalation timelines, interim relief measures under Section 12 (transfer, leave, work-from-home), and anti-retaliation duties.

ICC members — the Presiding Officer, internal members, and the external member who must by law be from an NGO or other relevant body under Section 4(2) — require the most rigorous training. They are quasi-judicial officers during an inquiry. An ICC that has not been trained on principles of natural justice, evidence handling, or drafting findings cannot conduct a legally sound inquiry.

Senior leadership must attend visibly. Not because they are at higher risk of non-compliance, but because their presence signals institutional commitment. An organisation where the CEO skips POSH training while requiring it of junior staff has already failed the culture test.

The 2026 Annual Training Agenda: Module by Module

Design your programme in three tracks that run in parallel or sequence depending on your logistics. Below are the recommended modules, durations, and the specific learning outcome each must achieve.

Track 1 — All Employees (Total: 2 hours 30 minutes)

Module 1: Why This Training Exists (10 minutes) Open with the legal context — Section 19(c) — and the organisation's written commitment via its POSH policy. A two-minute message from the MD or CEO, live or recorded, should frame this as a non-negotiable value, not a legal hurdle. Avoid opening with statistics; open with clarity of purpose.

Module 2: Understanding Sexual Harassment — Definitions and Forms (25 minutes) Walk through Section 2(n) of the POSH Act. Sexual harassment includes any one or more of the following unwelcome acts: physical contact or advances; a demand or request for sexual favours; making sexually coloured remarks; showing pornography; any other unwelcome physical, verbal, or non-verbal conduct of a sexual nature. Distinguish quid pro quo harassment (exchange of job benefits for compliance) from hostile environment harassment (conduct that creates an intimidating or offensive workplace). Use plain language; do not read out the statute verbatim.

Module 3: Scenarios, Grey Areas, and Case Studies (30 minutes) This is the most valuable module if done well. Prepare five to seven realistic scenarios — a WhatsApp message sent at midnight from a senior colleague, a client making repeated personal comments during a site visit, a team lunch where someone makes a joke that is dismissed as "just humour." For each scenario, run a short discussion: Is this sexual harassment under the Act? Who can complain? What happens next? Interactive delivery (live poll, breakout group, raise of hands) dramatically improves retention compared to lecture.

Module 4: Hybrid and Digital Workplaces — The 2026 Reality (15 minutes) Section 2(o) defines "workplace" broadly enough to include any place the employee visits during the course of employment, including transportation. In 2026, this encompasses your Teams channels, Slack DMs, company email, video calls, and even WhatsApp groups used for work. A comment made during a Friday evening Teams call is no less covered because it occurred off-premises. Your training must explicitly state that digital channels are workplaces and that screenshots and chat logs are admissible evidence.

Cover AI-generated content specifically. An employee generating and circulating an AI-manipulated image of a colleague is covered by the Act. This is not a fringe scenario in 2026.

Module 5: Bystander Intervention (15 minutes) Research consistently shows that bystander intervention is the most effective cultural lever in preventing harassment. Train employees to recognise warning signs, to distract or disrupt during an incident without escalating, to support a target after the fact, and to report what they witnessed through your anonymous channel. The "3D" framework — Direct, Distract, Delegate — is a practical tool that most employees can apply immediately.

Module 6: How to Raise a Complaint (15 minutes) Many employees do not report because they do not know the process, fear retaliation, or believe nothing will happen. Cover: who to approach (ICC members' names and contact details — mandatory per Section 19(b)), the written complaint requirement under Section 9 within three years of the incident (extendable by the ICC for sufficient cause), the confidentiality obligation on the ICC and employer under Section 16, and the explicit anti-retaliation protection under Section 13(3)(ii). Make it concrete: what does the complaint form look like, where is it on your intranet, who acknowledges receipt and in what timeframe?

Module 7: ICC — Composition, Process, and Timelines (10 minutes) Employees do not need to know inquiry procedure in detail, but they must know that the ICC has 60 days to complete the inquiry under Section 11(4), that interim measures are available from day one, and that the ICC's report goes to the employer within 10 days of inquiry completion under Section 13(1). Transparency about timelines reduces the perception that complaints disappear into a void.

Module 8: Q&A and Written Acknowledgement (20 minutes) Provide a confidential question option — a physical folded slip or anonymous digital form — for employees who will not speak up in the room. Close by having every participant sign the POSH policy acknowledgement form. This signature is your evidence of training completion for audit purposes.

Track 2 — Managers and HR Business Partners (Additional 60 minutes)

Run this immediately after Track 1 for the relevant audience.

• Receiving a complaint correctly: Do not investigate informally, do not discourage the complainant, do not promise confidentiality you cannot guarantee from third parties. Your job is to listen, document, and refer to the ICC within your organisation's defined SLA (typically 24–48 hours).
• Interim relief under Section 12: You have the power to recommend transfer, leave with pay, or work-from-home as interim measures before inquiry completion. Understand when to exercise this.
• Confidentiality obligations: Section 16 prohibits publication of the identity of the aggrieved woman, respondent, witnesses, and the substance of the complaint. A manager who discusses the matter with uninvolved colleagues has breached the Act.
• Documentation discipline: Every conversation, every referral, every interim measure must be time-stamped and recorded. In litigation, the absence of records is treated as absence of action.

Track 3 — ICC Members (Additional 3.5 hours, delivered by external expert)

Section 4(2)(c) requires the external member of the ICC to be from an NGO, association, or body committed to the cause of women, or a person familiar with issues relating to sexual harassment. That external member — and ideally all ICC members — should themselves be trained annually by a qualified practitioner. Attendance at this session must be formally certified.

Inquiry Methodology (45 minutes): The inquiry under POSH is quasi-judicial; principles of natural justice apply. The respondent must be given a copy of the complaint and an opportunity to respond. Both parties have the right to present witnesses. Neither party may be accompanied by a lawyer unless both parties agree and the ICC permits (Rule 7(6) of the POSH Rules, 2013).

Evidence Collection and Handling (30 minutes): Documentary evidence (emails, chats, CCTV records, call logs), physical evidence, and digital evidence. Chain of custody matters. Who retains the originals? Where are copies stored? For how long? (Rules require records to be maintained for three years.)

Witness Management (20 minutes): How to summon witnesses, how to protect their identity from the parties where possible, how to record testimony, what to do when a witness turns hostile.

Drafting the Findings Report (30 minutes): The ICC's findings report is the most scrutinised document in any POSH matter. It must clearly state: the complaint and response, evidence examined, findings of fact, whether sexual harassment occurred on a balance of probabilities, and the recommended action or compensation. Vague language ("we found some merit in the complaint") has been overturned by courts.

Writing the Section 21 Annual Report (20 minutes): The report to the District Officer must include: number of complaints received during the calendar year, number disposed, number pending, and the nature of cases. Train your ICC Presiding Officer to maintain a running register throughout the year so December filing is not a scramble.

Confidentiality and Record-Keeping (15 minutes): Every member signs a confidentiality undertaking. Records are sealed. Digital copies are encrypted. Access is restricted to ICC members and the employer's legal counsel.

Worked Example: The Real Cost of Skipping Proper Training

A 350-employee software services company in Pune — hybrid workforce, 220 remote — circulated a POSH policy PDF in January 2025 and called it "annual training." No live session, no ICC training, no attendance register.

In August 2025, an employee raised a complaint. The ICC, having never received formal training, conducted an inquiry without providing the respondent a copy of the complaint, in violation of Rule 7. The respondent challenged the ICC's report before the High Court. The court set aside the inquiry report and directed a fresh inquiry.

The company's total exposure: | Item | Cost | |---|---| | Section 26 penalty (first offence, confirmed by District Officer) | Rs. 50,000 | | Legal fees for High Court proceedings | Rs. 3,50,000 | | Compensation to aggrieved woman under settlement (equivalent to 3 months' gross salary at Rs. 1,20,000/month) | Rs. 3,60,000 | | Attrition cost: 6 employees resigned citing culture concerns; average replacement cost Rs. 1,50,000 | Rs. 9,00,000 | | Total | Rs. 16,60,000 |

Annual training cost for 350 employees, including ICC certification: Rs. 3,00,000–4,50,000. The non-compliance premium here is roughly 4x the training budget — before accounting for leadership time, reputational damage, or ESG downgrade from the organisation's investors.

Compliance Artefacts You Must Maintain

After every training cycle, generate and file the following. These are the documents asked for in labour audits, ESG diligence questionnaires, and court proceedings.

• Annual training calendar: Published at the start of the financial year, showing dates, tracks, facilitator names, and estimated attendance.
• Attendance registers: Physical or digital. Must show employee name, designation, department, date, and signature or digital acknowledgement. Incomplete registers are treated as non-training.
• Digital completion certificates: For any e-learning component, export a completion report from your LMS (Learning Management System) with timestamps.
• Trainer credentials: CV or bio of the facilitator for Track 3 ICC training. The external expert's qualifications are specifically scrutinised.
• POSH policy acknowledgement forms: Signed by every employee, including joiners mid-year (onboarding POSH training is a separate obligation).
• Section 21 annual report: Filed with the District Officer by 31 December. Keep acknowledgement of receipt.
• ICC meeting minutes: Not directly a training artefact, but essential supporting evidence that your ICC is functional, not merely constituted on paper.

Common Mistakes in POSH Training — and How to Fix Them

Mistake 1: Excluding contractual and gig workers. The Act covers all women at the workplace. Your housekeeping staff, delivery personnel, and outsourced security guards are entitled to a safe environment. Add a brief, plain-language session for non-desk workers. Fix: Include all worker categories in your annual training calendar.

Mistake 2: A PDF counts as training. It does not. Section 19(c) says "organise workshops and awareness programmes." A document lacks interactivity, cannot confirm comprehension, and generates no attendance record. Fix: Any training must include a live or synchronous element, a Q&A mechanism, and documented acknowledgement.

Mistake 3: ICC members trained only once, at constitution. ICC members who were trained in 2022 and have had no refresher are not current. Inquiry law evolves; so does digital evidence handling. Fix: Annual ICC deep-dive training is non-negotiable.

Mistake 4: Remote employees are excluded or given a watered-down session. In a hybrid workforce, this is your largest compliance gap. Fix: Run a fully equivalent online session with breakout rooms for scenarios, digital attendance, and an e-learning module for the definitional content.

Mistake 5: Training is scheduled in December only. Employees who join in February, May, or September are unprotected for most of the year. Fix: Run formal POSH training during onboarding — a 45-minute module is sufficient — with the annual deep-dive for all staff.

Mistake 6: Trainer lacks documented credentials for ICC sessions. An internal HR person running an ICC inquiry training session is not adequate for Track 3. Fix: Engage an external practitioner with verifiable credentials and obtain a formal certificate of delivery.

Key Takeaways

• Section 19(c) mandates annual workshops for all employees — not a policy document, not a newsletter, but an organised, interactive programme with documentation.
• Three training tracks: All employees (2.5 hours), managers/HR (additional 1 hour), ICC members (additional 3.5 hours by external expert). Run them separately; they have different content and depth.
• Hybrid and digital workplaces are explicitly covered by the Act's broad definition of "workplace" under Section 2(o). Your 2026 agenda must include a module on Teams, WhatsApp, Slack, email, and AI-generated content.
• The Section 21 annual report to the District Officer is due by 31 December each calendar year. ICC members must be trained to draft it accurately throughout the year, not scrambled together in the last week of December.
• Non-compliance penalties run from Rs. 50,000 (first offence) to Rs. 1,00,000 plus licence cancellation (subsequent offence) — but as the worked example shows, the real cost is litigation, attrition, and reputational damage that multiplies the statutory fine many times over.
• Your compliance artefacts — attendance registers, trainer credentials, digital completion certificates, acknowledgement forms, and filed Section 21 reports — are what transforms a training session into a defensible compliance record.
• Treat onboarding as a separate trigger: any employee joining mid-year must receive POSH orientation before they attend their first team meeting. Annual training does not backfill the onboarding gap.