Almost every share an Indian investor owns today exists not as a paper certificate but as an electronic balance in one of two registries - the National Securities Depository Limited (NSDL) or the Central Depository Services (India) Limited (CDSL). These are the depositories contemplated by the Depositories Act, 1996, and understanding how they actually operate - the chain that runs from the depository to its participants, to the beneficial owner, and back to the issuer's register - is the practical heart of the subject. This note maps that operational framework: the statutory hooks in Sections 3 to 19 of the Act, the four-cornered model of depository, participant, issuer and beneficial owner, the mechanics of dematerialisation and fungibility, and the litigation that has tested where the depository's electronic record stops and substantive ownership begins.
Two depositories, one statutory mould
India operates a multi-depository system, but in practice only two institutions hold registration as a depository under the Act. NSDL, promoted by the National Stock Exchange and institutions including IDBI and UTI, was incorporated in 1996 and became India's first electronic securities depository, commencing operations in November 1996 immediately after the Act came into force. CDSL, promoted by the Bombay Stock Exchange, was incorporated in 1999 and began operations the same year. Both are companies registered under the Companies Act and both hold a certificate of registration from the Securities and Exchange Board of India (SEBI) under Section 3 of the Depositories Act; neither is a creature of statute in the sense of being established by the Act itself. The Act is deliberately enabling rather than nominative - it does not name NSDL or CDSL but lays down the mould into which any depository must fit.
That mould is important for examination purposes. A depository is defined in Section 2(1)(e) as a company formed and registered under the Companies Act and which has been granted a certificate of registration under Section 12(1A) of the SEBI Act, 1992. The architecture of the Act assumes that the depository will not deal directly with the investing public; instead it acts through agents called participants. The relationship between the two depositories and the wider market is therefore not one of monopoly over individual securities but of parallel registries, each maintaining electronic ownership records for the securities admitted to it, with inter-depository transfers permitting a holding to move from NSDL to CDSL and vice versa. For the conceptual foundations of this scheme, see Introduction, Object and Scheme.
Getting to the starting line - registration and commencement
Before a depository can operate it must clear two distinct gates. The first is registration under Section 12(1A) of the SEBI Act. The second, peculiar to this statute, is the certificate of commencement of business under Section 3 of the Depositories Act, which provides that no depository shall act as such unless it obtains a certificate of commencement of business from SEBI, granted on the Board being satisfied that the depository has adequate systems and safeguards to prevent manipulation of records and transactions. This two-stage gate - registration plus a separate operational clearance - distinguishes depositories from ordinary intermediaries and reflects the systemic risk a registry of beneficial ownership carries. A flaw in a depository's systems is not a private loss but a market-wide one.
The Section 3 certificate is conditional and continuing: SEBI's satisfaction as to adequate systems and safeguards is not a one-time finding but a standard the depository must maintain, policed through the inspection and direction powers discussed below. The operational consequence is that both NSDL and CDSL run their core processing on audited, redundant systems with prescribed business-continuity and cyber-security standards mandated by SEBI's circulars and by the SEBI (Depositories and Participants) Regulations, 2018, which replaced the 1996 Regulations. The detailed mechanics of this gate are treated in Certificate of Commencement of Business.
The depository-participant chain
The defining operational feature of the framework is that the depository reaches the investor only through a participant. Section 4 of the Act provides that a depository shall enter into an agreement with one or more participants as its agent, and that every such agreement shall be in the form specified by the bye-laws. A participant - the familiar 'depository participant' or DP - is defined in Section 2(1)(g) as a person registered under Section 12(1A) of the SEBI Act who is described as such. In practice DPs are banks, stockbrokers, financial institutions and NBFCs that, having met SEBI's net-worth and infrastructure thresholds, are admitted by a depository to open and maintain demat accounts for the public.
The agency relationship in Section 4 is the spine of the system. The depository maintains the master ownership record; the DP is the customer-facing agent that opens the beneficial owner's account, accepts dematerialisation requests, and effects debit and credit instructions. Crucially, the agreement is mandatory and its form is dictated by the bye-laws, so the depository cannot privately re-engineer the relationship. The deeper analysis of this contract - its mandatory terms and the consequences of its breach - is taken up in Agreement between Depository and Participant. A parallel agreement under the bye-laws binds the beneficial owner to the participant, so the chain reads: depository to participant (Section 4 agency) and participant to beneficial owner.
Dematerialisation and the ISIN
The operational starting point for any holding is dematerialisation - the conversion of a physical certificate into an electronic balance. The Act offers the investor a choice at the threshold. Section 8 provides that every person subscribing to or holding securities may either receive a security certificate or hold them with a depository, and that a person already holding a certificate may, if so entitled, surrender it and opt into the depository. The corresponding exit is preserved by Section 14, under which a beneficial owner may opt out and require the issuer to issue a physical certificate within the prescribed period. The Act is therefore facilitative, not coercive, even though SEBI has since made demat compulsory for trading on stock exchanges through its regulatory powers rather than through the Act itself.
Operationally, each security admitted to a depository is identified by an International Securities Identification Number (ISIN), a unique code that lets the same security be recognised across NSDL and CDSL and across borders. When an investor lodges a physical certificate for dematerialisation, the DP forwards it to the issuer or its registrar and transfer agent (RTA); on confirmation, the certificate is extinguished and an equal electronic balance is credited to the demat account. The surrender mechanics and the issuer's reciprocal duties are examined in Surrender of Certificate of Security.
Fungibility - why your shares have no numbers
Once dematerialised, a holding loses its individual identity. Section 9 provides that all securities held by a depository shall be dematerialised and shall be in a fungible form, and that the provisions of Sections 153, 153A, 153B, 187B, 187C and 372 of the Companies Act, 1956 (the older provisions on trusts on the register, beneficial interest declarations and inter-corporate holdings) shall not apply to securities so held. Fungibility is the engine of the whole system: because one dematerialised share of a company is legally interchangeable with any other of the same class, settlement can occur by netting and book-entry rather than by tracing distinctive certificate numbers. This is why a demat statement shows a quantity but no distinctive numbers - the concept of a numbered certificate has been dissolved.
India's model is therefore one of true dematerialisation rather than mere immobilisation. Under immobilisation (as in some foreign systems) physical certificates continue to exist but are locked in a vault while ownership moves by book-entry; under dematerialisation the certificate is destroyed and the electronic record is the only thing that exists. Section 9 makes this an operational reality by stripping away the company-law machinery that presupposed a numbered, individually identifiable certificate. The conceptual treatment of these depository services sits in Services of Depository.
Registered owner versus beneficial owner
The most examined distinction in the Act is the bifurcation of ownership. Section 10(1) provides that a depository shall be deemed to be the registered owner for the purpose of effecting transfer of ownership of security on behalf of a beneficial owner. Section 10(2) then provides that the depository as registered owner shall not have any voting rights or any other rights in respect of securities held by it, and Section 10(3) vests in the beneficial owner all the rights and benefits and all the liabilities in respect of those securities. The depository's name on the issuer's register is thus a formal shell: it can move the security but it can neither vote it nor enjoy a dividend. The substance of ownership - voting, dividends, bonus, liability - belongs to the beneficial owner.
The definition of 'beneficial owner' in Section 2(1)(a) reinforces this: a person whose name is recorded as such with a depository. The interplay of these defined terms is unpacked in Definitions - Depository, Participant, Beneficial Owner. The point to grasp operationally is that two different registers now coexist: the issuer's register, on which the depository appears as registered owner of an aggregate holding, and the depository's own register of beneficial owners, on which the real investors appear. It is the second register that carries every economic and governance right.
The register of beneficial owners and the issuer interface
Section 11 requires every depository to maintain a register and an index of beneficial owners in the form and manner prescribed. This register is the authoritative record of who really owns what, and it is the source from which the issuer reconstructs its shareholder base for corporate actions. Because the depository is merely the registered owner of an aggregate block, the issuer cannot, by looking only at its own register, identify the individual shareholders. The Act therefore builds a feedback loop: Section 17 obliges the depository, on request, to furnish the issuer with information about beneficial owners, and the issuer in turn relies on this to pay dividends, send notices and conduct meetings.
The operational result is the now-routine 'benpos' (beneficial position) statement - a snapshot of beneficial owners as on a record date, supplied by the depository to the issuer or its RTA so that dividends and bonus shares reach the right investors and electronic voting can be conducted. The issuer thus deals with the depository's register, not with thousands of individual certificate-holders. Section 16, considered next, sits behind this machinery as the guarantee that errors in the chain do not fall on the innocent investor.
Section 16 - the depository's indemnity
The investor's protection against operational failure is Section 16. Sub-section (1) provides that without prejudice to any other law, any loss caused to the beneficial owner due to the negligence of the depository or the participant shall be indemnified by the depository. Sub-section (2) then gives the depository a right of recovery: where the loss flows from the participant's negligence, the depository, having indemnified the beneficial owner, may recover the amount from that participant. The structure is deliberately investor-friendly. The beneficial owner has a single, solvent defendant - the depository - and need not litigate against the DP whose negligence actually caused the loss; the apportionment of fault between depository and participant is dealt with internally through the right of recovery.
This makes the depository the guarantor of the entire chain it has built under its Section 4 agency. The investor is insulated from the question of whether the fault lay with a careless DP, a faulty system, or the depository's own staff; from the investor's side it is one indemnity, owed by the depository. Section 16 thereby converts the agency relationship of Section 4 into a channel of accountability flowing upward to the institution best placed to prevent and absorb loss. The practical reach of this indemnity - and its limits where loss flows from forgery beyond the depository's control - continues to be litigated and clarified by SEBI's adjudication orders.
Pledge of dematerialised securities - the PTC India case
The leading authority on how the depository framework interacts with general law is PTC India Financial Services Ltd. v. Venkateswarlu Kari, 2022 SCC OnLine SC 608. A lender had advanced funds against a pledge of dematerialised shares and, on default, had itself recorded as the 'beneficial owner' of the pledged shares in the depository system under the pledge mechanism in the SEBI (Depositories and Participants) Regulations. The question was whether this re-recording amounted to a sale of the pledged securities that extinguished the debt. The Supreme Court held that it did not. The Act and the Regulations, the Court reasoned, do not over-write or undo the substantive law of pledge in Sections 176 and 177 of the Indian Contract Act, 1872; recording a pawnee as beneficial owner is an operational step that confers the power to deal, but it is not in itself the 'actual sale' that discharges the underlying debt.
The decision is important for the operational framework because it locates the depository record in its proper place - as a mechanism for effecting and recording dealings, not as a substantive determinant of rights. PTC India insists on a harmonious reading: the electronic re-designation of beneficial ownership is the demat-era equivalent of the pawnee taking steps to sell, and the pawnee's Contract Act duties (reasonable notice, accounting for surplus) survive intact. The case is the clearest judicial statement that being recorded as beneficial owner in NSDL or CDSL is a status that carries powers, not an automatic transfer of value.
The electronic record and substantive ownership
A recurring theme in the case law is that the depository's record is strong evidence of ownership but is read alongside, not in place of, substantive entitlement. The framework of Sections 10 and 11 gives the beneficial owner the rights and the depository the bare registered-owner status, and courts have been careful not to let the form of the electronic entry defeat the substance. The principle established in PTC India - that the Depositories Act does not override the Contract Act - has been applied by High Courts to insist that a holder recorded in a demat account still answers to the ordinary law governing how that holding came to be there, whether by sale, pledge, or otherwise.
For the older, pre-demat baseline, courts had long recognised under the Companies Act that the register of members is prima facie evidence of title and that rectification lies where an entry is wrong. The depository framework adapts this: the depository's register of beneficial owners performs the equivalent evidential function, and disputes about who is truly entitled are resolved by looking behind the entry to the transaction that produced it. The operational lesson is that NSDL and CDSL maintain the definitive record of who holds what, but that record is a register of beneficial ownership to be reconciled with substantive law, not an unimpeachable conveyance.
SEBI oversight - inspection, enquiry and directions
Both depositories operate under continuous SEBI supervision, and the Act equips the Board with graduated powers. Section 18 empowers SEBI, where it is satisfied that it is in the public interest or the interest of investors, to call upon any issuer, depository, participant or beneficial owner to furnish information, and to authorise inspection or enquiry into the affairs of any of them. Section 19 then empowers the Board, after such enquiry or inspection, to issue directions where this is necessary in the interest of investors or the orderly development of the securities market, or to prevent the affairs of a depository or participant being conducted in a manner detrimental to investors. These directions can require corrective measures and, in egregious cases, compensation to affected investors.
This supervisory layer is what gives operational teeth to the Section 3 requirement of adequate systems and safeguards. A depository's commencement certificate is, in effect, conditioned on its continuing to satisfy SEBI; the inspection power of Section 18 and the direction power of Section 19 are the instruments by which that condition is enforced day to day. Alongside these statutory powers, SEBI regulates DPs and depositories in fine detail through the SEBI (Depositories and Participants) Regulations, 2018 and a stream of circulars on cyber-resilience, segregation of clients' securities, and grievance redress - the regulatory texture that turns the spare statutory scheme into a working market infrastructure.
Bye-laws and the self-regulatory layer
Beyond SEBI's direct oversight, each depository is itself a rule-maker. Section 26 of the Act empowers a depository, with the previous approval of SEBI, to make bye-laws consistent with the Act and the regulations, and these bye-laws govern the conduct of participants, the form of the Section 4 agreement, the procedure for dematerialisation and rematerialisation, the records to be maintained, and the disciplinary action that may be taken against a participant. The bye-laws are therefore the operational rulebook that fleshes out the statutory skeleton, and because they require SEBI's prior approval they form a second tier of regulation nested within the first.
This self-regulatory layer matters operationally because it is the bye-laws - not the Act - that prescribe the granular workflow that a DP and an investor actually experience: account-opening documentation, the form of delivery instruction slips, timelines for credits and debits, and the handling of pledges and freezes. Where a depository fails to enforce its own bye-laws and an investor suffers, the Section 16 indemnity and the Section 19 direction power stand behind the failure. The bye-laws thus complete the framework, sitting below the Act and the regulations but above the individual contracts that bind participants and beneficial owners.
Offences, penalties and adjudication
The Act is not merely facilitative; it carries an enforcement tail. Chapter VI provides for penalties and adjudication, with monetary penalties for specified defaults - failure to furnish information, returns or reports to SEBI, failure to enter into the required agreements, failure to redress investor grievances, and contravention of the Act, regulations or bye-laws. An adjudicating officer appointed by SEBI conducts an inquiry and may impose penalties, and appeals lie to the Securities Appellate Tribunal (SAT) and onward to the Supreme Court. The general residuary offence provision subjects contraventions for which no specific penalty is provided to fine, reflecting the seriousness with which integrity of the ownership record is treated.
Operationally, most enforcement against depositories and DPs proceeds through this civil-penalty and adjudication route rather than through criminal prosecution, with SAT building a body of decisions on the standard of care expected of participants and the reach of the Section 16 indemnity. The combination of SEBI's Section 18 and 19 powers, the adjudication machinery, and the appellate structure means that the depositories operate within a tightly supervised compliance environment - a necessary counterweight to the systemic importance of the registries they maintain. For the foundational rationale behind this enforcement design, return to Introduction, Object and Scheme.
Frequently asked questions
What is the difference between NSDL and CDSL?
Both are SEBI-registered depositories under the Depositories Act, 1996, performing the same core function of holding securities in dematerialised, fungible form. NSDL, incorporated in 1996 and promoted by the NSE and institutions, was India's first depository; CDSL, incorporated in 1999, was promoted by the BSE. Operationally they are parallel registries identified by ISINs, and a holding can move between them through inter-depository transfers. The Act does not name either - it lays down the registration and operational requirements (Sections 3 and 12(1A) SEBI Act) that any depository must satisfy.
Why do dematerialised shares have no distinctive certificate numbers?
Because of fungibility. Section 9 of the Act requires that all securities held by a depository be dematerialised and in a fungible form, and disapplies the old Companies Act provisions that presupposed individually numbered certificates. Once fungible, one share of a class is legally interchangeable with any other of the same class, so settlement happens by netting and book-entry rather than by tracing certificate numbers. A demat statement therefore shows only a quantity, not distinctive numbers - the numbered certificate has been dissolved.
If the depository is the registered owner, who actually owns my shares?
You do, as the beneficial owner. Section 10 deems the depository the registered owner only for the limited purpose of effecting transfers, and expressly denies it any voting or other rights. All rights, benefits and liabilities - voting, dividends, bonus, liability - vest in the beneficial owner under Section 10(3). Two registers coexist: the issuer's register, where the depository appears as registered owner of an aggregate block, and the depository's register of beneficial owners under Section 11, which carries every real economic and governance right.
Does recording a lender as 'beneficial owner' of pledged demat shares discharge the debt?
No. In PTC India Financial Services Ltd. v. Venkateswarlu Kari (2022 SCC OnLine SC 608) the Supreme Court held that a pawnee re-recorded as beneficial owner under the pledge mechanism has merely taken an operational step conferring power to deal; it is not the 'actual sale' that extinguishes the debt. The Depositories Act and Regulations do not over-write Sections 176 and 177 of the Contract Act, so the pawnee's duties of reasonable notice and accounting for surplus survive. The depository record reflects status, not an automatic transfer of value.
Who compensates an investor if a depository participant is negligent?
The depository. Section 16(1) provides that any loss caused to the beneficial owner by the negligence of the depository or the participant shall be indemnified by the depository. The investor therefore has a single, solvent defendant and need not sue the DP directly. Section 16(2) then lets the depository recover from the negligent participant. The indemnity flows upward to the institution best placed to prevent and absorb loss, making the depository the guarantor of the entire chain it built through its Section 4 agency agreements.
How does SEBI keep NSDL and CDSL in check?
Through registration plus continuing supervision. A depository needs both registration under Section 12(1A) of the SEBI Act and a certificate of commencement under Section 3 of the Depositories Act, granted only on adequate systems and safeguards. SEBI may call for information and order inspection or enquiry under Section 18, and may issue corrective directions under Section 19 where investor interest or orderly market development requires it. Beyond the Act, the SEBI (Depositories and Participants) Regulations, 2018 and SEBI circulars govern DPs, cyber-resilience and grievance redress in detail, with appeals to the Securities Appellate Tribunal.