D&O Insurance for Malaysian Startups: When You Need It
Picture this. Your Malaysian startup just closed a seed round. Eighteen months later, growth stalls, the runway shortens, and an investor alleges you misrepresented metrics in the pitch deck. The claim names you personally, not just the company, and the legal fees start before anyone has proven a thing.
This guide shows you when a Malaysian startup actually needs Directors' and Officers' (D&O) liability insurance, what it covers, and why your next funding round may make it a requirement rather than a nice-to-have.
Here's what you'll learn:
- Why directors carry personal liability under the Companies Act 2016
- The specific moments a startup should put D&O in place
- What D&O covers, including claims from investors, employees and regulators
- How claims-made policies work, and the timing traps founders miss
Why this is personal, not just a company problem
The instinct of most founders is that the company is a separate legal person, so liability stops at the company. For directors, that's only half true.
Under the Companies Act 2016, a director owes statutory duties directly. Section 213 requires a director to exercise powers for a proper purpose and in good faith in the best interest of the company, and to exercise reasonable care, skill and diligence. A director who contravenes Section 213 commits an offence and, on conviction, can face imprisonment of up to five years or a fine of up to RM3 million, or both.
Section 214 offers a defence, the business judgment rule, which protects a director who makes an informed, good-faith decision for a proper purpose without a material personal interest. That defence is real, but proving you qualify for it costs money in legal fees, and those fees are exactly what D&O is designed to fund.
What D&O insurance actually is
Directors' and Officers' liability insurance, often shortened to D&O, covers the personal legal liability of company directors and officers for alleged wrongful acts committed in their management role. It pays defence costs and, where applicable, settlements or damages.
The key word is personal. D&O responds when a claim targets an individual's conduct as a director, not when it targets the company's products or services. It sits alongside, not instead of, other business cover.
| Cover | Protects | Typical trigger |
|---|---|---|
| D&O | Directors and officers personally | Alleged wrongful management decision |
| Professional indemnity | The business | Error in professional service delivered |
| Public liability | The business | Third-party injury or property damage |
For a fuller breakdown of how the product works in general, see our guide to directors' and officers' liability insurance in Malaysia. This article focuses on the startup and funding-round angle specifically.
When a Malaysian startup actually needs D&O
Not every pre-seed startup needs D&O on day one. But several moments turn it from optional to important, and one of them turns it into a hard requirement.
You might need D&O if any of these describe you
- You're raising an institutional round. VC and PE investors frequently make D&O a condition of investment, sometimes written into the term sheet or shareholders' agreement.
- You've taken on external investors already. Once people who aren't founders hold equity, the risk of a disgruntled-investor claim exists.
- You're hiring at scale. Employment-related claims, such as alleged wrongful dismissal or discrimination, are among the most common D&O triggers.
- You operate in a regulated space. Fintech, health, and data-heavy startups face regulator scrutiny that can name directors.
- You have an independent or nominee director. Experienced directors often won't join a board without D&O in place.
The funding-round trigger
This is the one that catches founders by surprise. As your startup matures, investors increasingly treat D&O as standard diligence.
A term sheet may require the company to put a D&O policy in place before, or shortly after, completion. The reason is simple: investors who take board seats want their own personal exposure covered, and they want assurance that the founders they're backing won't be financially wiped out by a defensible claim. Treat D&O as part of your closing checklist, not an afterthought.
Closing a round soon? Don't let D&O hold up the wire.
If your term sheet mentions D&O, you'll want cover bound around completion, not weeks later. Contingent helps Malaysian founders get D&O in place on the right timeline.
What D&O covers for a startup
D&O is built around who brings the claim. For a startup, three sources matter most.
| Claim source | Example allegation |
|---|---|
| Investors / shareholders | Misrepresentation of financials or metrics during a raise; breach of duty |
| Employees | Wrongful dismissal, discrimination, or other employment-practice claims |
| Regulators / authorities | Investigation costs where a director is named in a regulatory action |
In practice, the largest early cost of any of these is legal defence, which D&O funds even when the allegation is ultimately unfounded. Some policies extend to creditors and competitors as well, depending on wording.
What D&O typically does not cover
D&O is not a blanket shield, and founders should know the limits before relying on it.
- Fraud and dishonesty that is proven, not merely alleged, is excluded.
- Bodily injury and property damage belong to public liability, not D&O.
- Professional service errors belong to professional indemnity.
- Prior known claims or circumstances you were aware of before the policy started.
How claims-made cover works, and the timing trap
D&O is almost always written on a claims-made basis. This is the single most important mechanic for a founder to understand, because it changes how you should think about timing.
A claims-made policy responds to claims first made against you during the policy period, not to incidents that happened during it. So a claim brought today is handled by today's policy, even if the underlying decision was made last year, provided the policy covers that retroactive period.
Why this matters at exit and renewal
Two consequences flow from claims-made wording. First, you need continuous cover: if you let a policy lapse, a claim that arrives during the gap may not be covered by anyone.
Second, when you wind down, sell, or exit a company, claims can still surface afterward. A run-off (or extended reporting) provision keeps cover alive for claims made after the policy ends but relating to the period when directors were in office. Founders selling a startup should negotiate run-off as part of the deal.
| Term | What it means for you |
|---|---|
| Claims-made basis | Covers claims first made during the policy period |
| Retroactive date | How far back covered conduct can have occurred |
| Run-off / extended reporting | Keeps cover for claims after exit or wind-down |
Addressing the objections founders raise
Three objections come up in nearly every founder conversation. Each has a straight answer.
"We're too small and nothing has happened." D&O is about who can sue you, not how big you are. A single investor or former employee is enough, and claims-made cover only protects you if it's in place before the claim arrives.
"I haven't done anything wrong." D&O funds your defence regardless of whether the allegation holds up. The cost of proving you were right is the exposure, not just the cost of being wrong.
"It's another expense we can't justify." If an investor requires it, the round depends on it. And the alternative is paying defence costs personally, which can dwarf an annual premium. For how D&O fits the wider cover stack, see our comprehensive SME insurance guide for business owners.
Putting D&O in place: a founder's checklist
| Step | Why it matters |
|---|---|
| Check your term sheet and shareholders' agreement for a D&O clause | Investor requirements drive timing |
| Confirm the retroactive date covers your relevant history | Claims-made cover hinges on it |
| Match the limit to round size and board composition | Bigger rounds raise exposure |
| Disclose known circumstances honestly at application | Non-disclosure can void a claim |
| Plan run-off cover before any exit or wind-down | Claims can surface after you leave |
FAQ
What is D&O insurance for a startup?
D&O insurance covers the personal legal liability of a startup's directors and officers for alleged wrongful acts in their management role. It pays defence costs and, where applicable, settlements. For founders, it protects personal assets against claims from investors, employees and regulators that name the individual rather than only the company.
Do Malaysian startups need D&O insurance?
Not every early-stage startup needs it on day one, but it becomes important once you take external investment, hire at scale, or operate in a regulated sector. Many investors require D&O as a condition of a funding round, which turns it from optional to mandatory at that point.
Do investors require D&O insurance?
Often, yes. Venture and private-equity investors frequently make D&O a condition of investment, written into the term sheet or shareholders' agreement. Investors taking board seats want their own exposure covered and want assurance that founders won't be financially wiped out by a defensible claim.
What does D&O insurance cover?
D&O covers personal liability for alleged wrongful management acts, including claims by investors over misrepresentation or breach of duty, employee claims such as wrongful dismissal, and regulator-related defence costs. It funds legal defence even when the allegation is unproven. It does not cover proven fraud, bodily injury, or professional service errors.
What is a claims-made basis?
A claims-made policy responds to claims first made against you during the policy period, not to when the underlying event occurred. This means you need continuous cover, since a lapse can leave a claim uninsured, and you may need run-off cover so claims surfacing after an exit are still handled.
What's the difference between D&O and professional indemnity?
D&O protects directors and officers personally for management decisions, such as an investor alleging breach of duty. Professional indemnity protects the business for errors in the professional services it delivers, such as faulty advice or a software defect. Many startups need both because they cover different risks.
Does D&O cover the company or the individual?
D&O primarily protects individual directors and officers, though policies often include cover for the company when it indemnifies its directors or is itself named in certain claims. The defining feature is its focus on personal management liability, which other business policies don't address.
When should a founder buy D&O insurance?
The natural triggers are an institutional funding round, taking on external investors, scaling hiring, or appointing an independent director. If your term sheet requires D&O, aim to have cover bound around completion. Because it's claims-made, putting it in place before a dispute arises is what makes it effective.
Contingent Conclusion
For a startup founder, directors' liability is personal under the Companies Act 2016, and the cost of defending even a baseless claim can land on you rather than the company.
As your raise progresses and your board grows, D&O shifts from optional to expected, and getting claims-made cover in place before a dispute, not after, is what makes it worth having.
Contingent helps Malaysian businesses find the right coverage for their specific risks. Whether you're comparing options or need a second opinion on existing cover, our team can help.
Get a quote · or WhatsApp us directly
Disclaimer: This article provides general guidance on D&O insurance for Malaysian businesses as of June 2026. Insurance terms, coverage, and availability vary by insurer and risk profile. References to the Companies Act 2016 are general and may be amended; this is not legal advice. Always consult a qualified insurance professional or legal adviser before making coverage decisions.
