Rule 9A Compliance Audit: Seven Records the Board Should Review
Reviewed on: 14 July 2026. Reviewed by Abhipra RTA Team.
A Rule 9A compliance audit should give the board evidence, not only verbal comfort. For a covered unlisted public company, the audit file should connect company status, security classes, shareholder records, ISIN, demat requests, PAS-6 support where applicable and exception closure before the board relies on the company’s demat-readiness position.
![]()
Why The Board Needs An Evidence File
Rule 9A readiness affects securities issuance, transfer, corporate actions, shareholder communication and record reconciliation. If the company’s evidence is scattered across registers, old certificates, demat request files, RTA emails and board notes, management may miss exceptions that matter during a transaction.
The audit objective is simple: the board should be able to see what was checked, what remains open, who reviewed it, and what action is needed before relying on the demat-readiness position.
Applicability And Key Dates
Rule 9A was introduced through the Companies (Prospectus and Allotment of Securities) Third Amendment Rules, 2018 dated 10 September 2018. The roadmap context treats 2 October 2018 as the practical shift date for covered unlisted public companies.
This article focuses on board-level audit records for Rule 9A readiness. It does not certify that a specific company is compliant. Applicability depends on company status, exemptions, securities issued, shareholder categories, corporate actions, PAS-6 applicability, foreign-holder facts and current law.
Rule 9A should not be confused with Rule 9B, which was later introduced for specified private companies. The 30 June 2025 Rule 9B extension is a past private-company date and should not be treated as a current Rule 9A deadline.
Seven Records The Board Should Review
The following matrix gives a practical board-review structure.
| Record | What to review | Evidence to preserve | Board question |
|---|---|---|---|
| Company status and exemption note | Whether the company was a covered unlisted public company for the relevant period. | Master data, status history, exemption analysis and professional review note. | Does Rule 9A apply for the period and transaction under review? |
| Security-class inventory | Equity, preference shares, debentures, convertibles and other securities. | Security terms, board/shareholder approvals, ISIN mapping and register extracts. | Have all security classes been included, not only equity shares? |
| Register and folio reconciliation | Register of members, security-holder registers, folios and old certificate records. | Reconciliation sheet, certificate inventory, duplicate/transmission/transfer exceptions. | Do statutory records match the company’s demat-readiness file? |
| ISIN and depository onboarding records | Whether each relevant security class has the right depository/RTA workflow. | ISIN records, RTA appointment documents, depository references and workflow notes. | Can each security class move through the correct demat process? |
| Promoter, director and KMP holding status | Demat status and exceptions for sensitive insider holdings before corporate actions. | Covered-person list, demat evidence, joint-holder review and exception closure. | Are sensitive holdings clear before rights, bonus, buyback or fresh issue events? |
| PAS-6 and reconciliation support | Whether reconciliation data and filing support are complete where applicable. | PAS-6 support data, reconciliation notes, professional inputs and filing evidence. | Can the company support its reconciliation position with documents? |
| Exception and remediation log | Open disputes, rejected demat requests, missing documents, foreign-holder issues and pending approvals. | Exception register, owner, target date, status, board updates and closure evidence. | What remains unresolved, and who is accountable for closure? |
Documents And Process
For a practical Rule 9A audit file, the company should normally compile:
- company status and exemption analysis for the relevant period;
- security-class inventory and ISIN mapping;
- register of members and security-holder registers;
- physical certificate, folio, transfer and transmission exception logs;
- RTA appointment and depository workflow records;
- promoter, director and KMP demat status review;
- shareholder communication records and demat request tracking;
- PAS-6 data support where applicable;
- foreign-holder, FEMA, valuation, KYC and beneficial ownership review where relevant; and
- board notes, professional review comments and secure document-retention evidence.
The audit file should separate closed items from open exceptions. A board note that only says “demat compliance reviewed” is weaker than a file that identifies evidence, owners, dates and unresolved risks.
Common Errors
Common errors include:
- reviewing only the register of members and ignoring other security-holder records;
- treating ISIN activation as the full compliance audit;
- missing old physical certificates, duplicate certificates, transmissions or disputed folios;
- failing to separately check promoter, director and KMP holdings before corporate actions;
- treating PAS-6 support as a clerical filing task rather than a reconciliation control;
- mixing Rule 9A unlisted public company issues with Rule 9B private-company questions;
- applying listed-company physical-security circulars mechanically to unlisted-company facts; and
- asking shareholders to email OTPs, login credentials, unmasked PAN, bank details, signatures or sensitive KYC files.
How Abhipra Can Assist
Abhipra RTA Services can support companies and professionals with Rule 9A audit-file preparation, security-class mapping, ISIN/RTA workflow, holder reconciliation, physical-record clean-up, demat request tracking, PAS-6 data preparation support and corporate-action readiness review.
Need assistance with Rule 9A audit records, shareholder reconciliation, ISIN mapping, PAS-6 support or demat-readiness remediation? Contact Abhipra RTA Services at rtaservices@abhipra.com, call 011-42390783, or contact +91-9818080700. Share the company name, CIN, company type, relevant financial year, security classes, approximate holder count and known open exceptions, if any, for a preliminary discussion. Do not email OTPs, login secrets, unmasked PAN, bank details, signatures or sensitive KYC documents until a secure submission method is provided.
Board Audit Workflow

Use this workflow for a board-ready audit file:
- Confirm company status and exemption position.
- List all security classes and ISIN/depository workflow records.
- Reconcile statutory registers, physical certificates, folios and demat data.
- Check promoter, director, KMP and other sensitive holder exceptions.
- Link PAS-6 support, shareholder communication and demat request tracking.
- Present an exception log with owner, deadline, status and closure evidence.
- Preserve the board note, professional review and secure document-retention trail.
This structure helps the board focus on evidence and unresolved risk instead of relying on informal status updates.
Source Links
- India Code portal
- MCA Companies Act and rules e-book area
- MCA Companies (Prospectus and Allotment of Securities) Third Amendment Rules, 2018
- e-Gazette G.S.R. 802(E), dated 27 October 2023
- SEBI Registrars to an Issue and Share Transfer Agents Regulations, 2025
- SEBI Master Circular for RTAs, dated 6 February 2026
- SEBI special window for transfer and dematerialisation of physical securities, dated 30 January 2026
- NSDL official website
- CDSL official website
Disclaimer
This article is for educational and informational purposes only. It is not legal advice, securities-law advice, tax advice, FEMA advice, investment advice or a compliance certification. Applicability of Rule 9A, MCA, SEBI, depository, FEMA and company-law requirements depends on the company's facts, security type, shareholder category, listed status, transaction context and current law. Please consult qualified professionals before taking corporate, legal, secretarial, tax, FEMA or investment action.