What corporate legal services does Corporate Legit provide?

Corporate Legit offers India Entry Services, International Taxation, Direct & Indirect Taxation, Secretarial & Corporate Legal Compliances, Foreign Direct Investment, Intellectual Property Rights, Licensing and Registration, company registration services, Merger and Amalgamation (M&A), Litigation, Virtual CFO Services, International Advisory, Audit Services, and Registration of NGOs.

What India Entry Services do you offer?

India Entry Services helps foreign companies establish operations in India. The service assists with business structuring, necessary approvals, and compliance requirements for foreign businesses seeking to enter the Indian market.

What does your Corporate Secretarial practice cover?

Our Corporate Secretarial practice handles statutory compliance requirements for companies operating in India, including corporate legal documentation, board meeting management, and regulatory filings.

What are your Corporate Restructuring services?

Corporate Legit’s restructuring services include mergers and acquisitions, demergers, and corporate restructuring activities in accordance with regulatory requirements.

What Intellectual Property services do you provide?

We provide trademark search and registration services in IP databases, along with other intellectual property protection services, to safeguard clients’ IP rights in India.

How does Corporate Legit handle taxation matters?

Our taxation practice provides advice under Direct & Indirect Taxation, including income tax planning, GST compliance, double taxation avoidance advisory, and international taxation matters, to ensure clients remain compliant with Indian tax laws

What Registration & Licensing Services do you offer?

Corporate Legit provides registration and licensing services to help businesses obtain the necessary operational permits and registrations to conduct business legally in India.

What are your Regulatory Compliance & Audit Services?

We provide Corporate Compliance services to help businesses meet their statutory obligations and remain compliant with Indian regulatory requirements, along with supporting them through audit services in India whenever needed.

Do you provide Virtual CFO Services?

Yes, Corporate Legit offers Virtual CFO services for businesses requiring financial management expertise without a full-time Chief Financial Officer.

What makes Corporate Legit’s team qualified?

The senior members of the Firm possess professional qualifications in law, accountancy, company secretarial practices and management with international class experience from working with world-class advisory firms, including Big-4 accounting firms and international law firms.

Do you assist with NGO registration?

Yes, Corporate Legit provides Registration of NGOs (Non-Government Organisation) services to help establish non-profit entities in India.

How can businesses contact Corporate Legit?

Businesses can contact Corporate Legit at +91 9990607535, email at office@thecorporatelegit.com, or visit the office at A-77, Second Floor, Sector-4, Noida 201301, New Delhi NCR, India.

April 30, 2026
Sachin Aggrawal
GST Company Laws
0

Table of Content

SaaS Company Setup in India: FEMA, GST, and Structuring Considerations

Introduction

India has become one of the most active SaaS markets in the world, both as a consumer of software products and as a production base for global SaaS companies. Over 1,500 SaaS companies are headquartered in India, and the sector is generating significant foreign investment interest from the US, Japan, Singapore, and the UK. The combination of deep engineering talent, relatively low operating costs, and a domestic market that is digitising fast has made SaaS company setup in India a serious strategic decision for both Indian founders and foreign investors. But SaaS sits at an interesting intersection of regulations. It is not manufacturing, so there is no factory licence or environmental clearance. It is not a regulated financial service, so there is no RBI licence. What it does have is a fairly specific set of requirements around GST on cross-border services, FEMA compliance when foreign revenue comes in or foreign investment is received, transfer pricing if there is a related entity abroad, and data protection obligations under the DPDPA 2023 that apply from the moment the product goes live. Getting these right from the start is far easier than fixing them two years in when a Series A investor’s legal team starts asking questions.

What Legal Structure Works Best for SaaS Company Setup in India?

A Private Limited Company is almost always the right structure for a SaaS company setup in India. It supports equity investment, allows ESOPs for talent, and handles foreign revenue and foreign investment cleanly under FEMA. LLPs cannot issue equity shares. That alone rules them out for any SaaS business planning to raise venture capital. An OPC (One Person Company) is limited to Indian resident founders. If there is even a possibility of a foreign investor joining, or a co-founder based outside India, a Private Limited Company is the only structure that works without a costly conversion later. For foreign companies setting up an India SaaS subsidiary, a Wholly Owned Subsidiary incorporated as a Private Limited Company is the standard route. 100% FDI is permitted under the Automatic Route in software and IT services. No prior government approval is required.

What Are the Steps for SaaS Company Setup in India?

While a SaaS company setup in India uses the usual Companies Act incorporation route through MCA’s SPICe+ form, certain steps need more focused attention, something most standard incorporation guides tend to miss.

Step 1: Incorporate the Company

File SPICe+ on the MCA portal at mca.gov.in. The MoA objects clause must describe the SaaS activities specifically: development, licensing, maintenance, and support of software products, or provision of software as a service on a subscription basis. A clause that says ‘computer software and related services’ may be technically acceptable, but lacks the specificity that matters when responding to GST audit queries about the nature of services. The following documents are needed:

MoA and AoA, DIR-2, INC-9.
DSC for all proposed directors.
Registered office: NOC, utility bill not older than 2 months, and lease deed.

Minimum requirements: 2 shareholders, 2 directors with at least 1 Indian resident director. Note: If foreign nationals are signing documents outside India, those documents need to be notarised and either apostilled or consularised. This step isn’t required if the documents are signed within India on a valid Business Visa.

Step 2: INC-20A Before the First Customer

Form INC-20A must be filed with the RoC within 180 days of incorporation. Without it the company cannot commence business or exercise borrowing powers. Non-filing: Rs. 50,000 penalty on the company plus Rs. 1,000 per day on each defaulting director. File this before onboarding the first user.

How Does GST Work for a SaaS Company in India?

GST on SaaS depends on who the customer is and where they are located. Domestic sales attract 18% GST. Sales to customers outside India can qualify as zero-rated exports if the right conditions are met. This is where SaaS companies get into trouble most often. For SaaS companies based in India, invoicing overseas clients in the US, UK, or Singapore and receiving foreign currency payments qualifies as export of services under Section 16 of the IGST Act, 2017. Exports are zero-rated, so GST is effectively 0%, and businesses can either claim input tax credit refunds or supply under an LUT without upfront GST. The LUT route is almost always better for SaaS businesses because it avoids the working capital block of paying 18% GST and waiting for a refund. The LUT must be filed on the GST portal before the first export invoice is raised and renewed every financial year. However, the zero-rating only applies if the place of supply is outside India and the payment is received in foreign currency. SaaS companies that invoice through an Indian entity but bill in Indian rupees to a foreign subsidiary of an Indian company, or route payments domestically, may not qualify for zero-rating. The billing structure must be reviewed against GST export conditions before the product goes live. For domestic customers, 18% GST applies on subscription fees. Input tax credit is available to registered business customers. For B2C customers, the GST cost sits with the end user.

What FEMA Compliance Applies to SaaS Companies?

FEMA compliance for SaaS companies in India has two dimensions: receiving foreign investment and receiving foreign revenue. Both trigger reporting obligations that must be maintained from the first transaction.

Receiving Foreign Investment

When a foreign investor subscribes to shares in an Indian SaaS company, Form FC-GPR must be filed on the RBI’s FIRMS portal within 30 days of share allotment. Required documents include the FIRC from the bank, KYC of the investor, a valuation certificate from a SEBI-registered Merchant Banker or CA, and a Board Resolution approving the allotment. Each funding round, each allotment, is a separate FC-GPR filing. Companies that raise a seed round and a Series A six months later need two FC-GPR filings, one for each. Aggregating them is not permitted. Subsequent share transfers between a resident and a non-resident, for example, a founder selling secondary shares to a foreign fund, require Form FC-TRS within 60 days of the transfer or receipt of funds, whichever is earlier. This is one of the most commonly missed filings in early-stage SaaS companies.

Receiving Foreign Revenue

Foreign currency received from overseas customers must come through a bank and be supported by the correct RBI purpose code. For software and SaaS services, the applicable purpose code is P0802 (software consultancy and implementation) or P0803 (other software services and business process outsourcing). Using the wrong purpose code at the bank level creates FEMA compliance issues when the company later tries to demonstrate export revenue for tax or regulatory purposes. Once foreign revenue is received, the bank issues a Foreign Inward Remittance Certificate (FIRC). SaaS companies should maintain FIRCs systematically. They are required documentation for GST refund claims, transfer pricing records, and investor due diligence. FEMA compliance for SaaS companies in India also covers the FLA (Foreign Liabilities and Assets) return, which must be filed annually by July 15 on the RBI’s FLAIR portal for any company with outstanding foreign investment on its balance sheet.

What Transfer Pricing Obligations Apply to SaaS Companies With Foreign Related Parties?

If the SaaS company has a related entity abroad, whether a parent company, a sales subsidiary, or a holding company, every transaction between the two entities is a related-party transaction subject to transfer pricing under Sections 92 to 92F of the Income Tax Act. This is more common than founders realise. An Indian SaaS company that has a US LLC as its holding entity, or that provides development services to a Singapore-incorporated parent, has intercompany transactions that must be priced at arm’s length and documented in an annual Transfer Pricing study. Form 3CEB, the Accountant’s Report on International Transactions, must be filed with the income tax return for entities with specified international transactions above Rs. 1 crore. The Indian Income Tax department actively audits SaaS companies with foreign parent entities, particularly on the question of how development services rendered by the Indian entity to the foreign entity are priced. Low-balling the price to keep profits in the foreign entity and out of India’s tax net is the precise pattern that transfer pricing audits are designed to catch.

What Data Protection Compliance Does a SaaS Company Need?

The Digital Personal Data Protection Act, 2023 (DPDPA) applies to any SaaS company that processes personal data of individuals in India, regardless of where the company is incorporated or where its servers are located. Key obligations:

Obtain explicit, purpose-specific consent before collecting personal data
Provide a clear privacy notice in plain language before or at the time of collection
Implement security safeguards proportionate to the sensitivity and volume of data
Honour data erasure requests from data principals
Report personal data breaches to the Data Protection Board of India

SaaS companies processing health, financial, or children’s data carry additional obligations. The DPDPA has not yet been fully notified in terms of all enforcement provisions, but the consent and privacy notice requirements apply from the date a SaaS product is live and collecting user data. Building compliance into the product from the MVP stage is significantly less expensive than retrofitting it under regulatory pressure.

Conclusion

A SaaS company setup in India is operationally straightforward compared to manufacturing or financial services. There is no sector-specific licence, no RBI authorisation, no factory clearance. What there is: a GST export structure that must be set up correctly before the first foreign invoice, FEMA reporting that starts from the first foreign investment and runs continuously, transfer pricing documentation if there is any related entity abroad, and DPDPA compliance from the moment user data is collected. None of these is difficult. All of them are easy to miss. CorporateLegit handles SaaS company setup in India from incorporation to GST LUT filing, FEMA compliance for SaaS companies in India, transfer pricing framework design, and ongoing annual compliance. If you are setting up a SaaS business in India and want the foundation built correctly, reach out to CorporateLegit.

FAQ

1. What legal structure should a SaaS company use in India?

A Private Limited Company. It supports equity funding, allows ESOPs, and handles foreign investment cleanly under FEMA. LLPs cannot issue equity shares, which rules them out for any SaaS business planning to raise venture capital.

2. How does GST apply to SaaS services sold to foreign customers?

If the customer is outside India and payment is received in foreign currency, the supply qualifies as a zero-rated export of services under Section 16 of the IGST Act. The LUT (Letter of Undertaking) route allows invoicing without collecting GST upfront and avoids the working capital cost of paying 18% and claiming a refund. The LUT must be filed before the first export invoice.

3. What FEMA filings are required when a SaaS company receives foreign investment?

Form FC-GPR must be filed on RBI’s FIRMS portal within 30 days of allotting shares to the foreign investor. Each allotment is a separate filing. For secondary share transfers involving a non-resident, Form FC-TRS must be filed within 60 days. FLA returns must be filed annually by July 15 for any company with outstanding foreign investment.

4. What is the correct RBI purpose code for SaaS revenue from foreign customers?

P0802 for software consultancy and implementation, or P0803 for other software services and BPO. The purpose code must be specified at the bank when the foreign currency is received. Using the wrong code creates compliance issues in GST refund claims, transfer pricing documentation, and investor due diligence.

5. Does transfer pricing apply to Indian SaaS companies with a foreign parent?

Yes. Any transaction between the Indian SaaS company and a foreign related entity, whether development services, royalties, or management fees, must be priced at arm’s length and documented in an annual Transfer Pricing study. Form 3CEB must be filed with the income tax return for entities with international transactions above Rs. 1 crore.

6. Does the DPDPA apply to SaaS companies in India?

Yes. The Digital Personal Data Protection Act, 2023, applies to any SaaS company processing personal data of individuals in India, regardless of where the company is incorporated or hosted. Consent, privacy notice, security safeguards, breach reporting, and data erasure obligations apply from the moment the product collects user data.