MiCA license

Obtaining crypto licenses, white label consulting,
ICO/STO, supporting NFT marketplaces, drafting policies
for crypto projects, DAOs, and gamify projects

Crypto-assets and services related to them within the territory of the EU receive a legal framework through the EU Regulation on Markets in Crypto-Assets (MiCA). Before its adoption, a significant part of the crypto market operated outside the scope of the existing EU financial legislation. This led to regulatory disagreements between the member states. MiCA covers these gaps by implementing a unified set of rules regarding issuing crypto-assets and providing services revolving around crypto assets.

MiCA aims to increase the stability, transparency, and integrity of the market, as well as improve the protection of both investors and consumers. The regulation requires standardized and non-disclosure of information by crypto-asset issuers, implements an authorization system for crypto-related service providers, and empowers the supervising authorities to confirm that the requirements are fulfilled. Such events ease the informational asymmetry and give the needed transparency, thanks to which clients are able to get distinct and coherent information about crypto-assets and risks related to them.

The MiCA regulation was published on June 9th, 2023, and was activated on June 29th. In a year, on June 30, 2024, rules regarding stablecoins came into effect, while the rest of the rules got enabled starting with December 30th of the same year. As of 2026, MiCA has been fully implemented in all 27 EU member states. Authorized crypto-related service providers can act throughout the entire EU territory within the Euro passporting regime, while national regulators supervise the regulation fulfillment, issuing MiCA licenses, and transitional mechanisms.

Scope of MiCA: which assets and services are covered

 

MiCA license - фото 62685

MiCA applies to most crypto-assets and related services that are not already regulated by other EU financial laws. A crypto-asset is a “digital representation of a value or of a right that can be transferred and stored electronically, using distributed ledger technology or similar technology”.

Effective dates. MiCA generally applies from 30 December 2024; rules for ART and EMT have applied since 30 June 2024.

To structure the framework, MiCA groups crypto-assets into three categories:

  • E-money tokens (EMT) – tokens that reference a single official fiat currency. EMTs can be issued only by credit institutions or electronic money institutions; holders must have the right to redeem at par.
  • Asset-referenced tokens (ART) – tokens that aim to stabilise value by referencing another value or right, or a combination (including multiple currencies). Issuers must be EU legal entities, be authorised, and maintain a segregated, liquid reserve.
  • Other crypto-assets – tokens that are neither EMT nor ART (e.g., utility tokens that do not qualify as MiFID II financial instruments). Before any public offer or admission to trading, an issuer (or a person seeking admission) must draw up, notify, and publish a crypto-asset white paper and comply with marketing and conduct rules; no separate issuance licence is required in principle.

Crypto-asset services covered by MiCA license (CASP scope)

MiCA also regulates professional providers of crypto-asset services. Covered services include:

  1. Custody and administration of crypto-assets on behalf of clients.
  2. Operation of a trading platform for crypto-assets.
  3. Exchange of crypto-assets for funds.
  4. Exchange of crypto-assets for other crypto-assets.
  5. Execution of orders for crypto-assets on behalf of clients.
  6. Crypto-assets placing.
  7. Reception and transmission of crypto-assets orders .
  8. Advising on crypto-assets.
  9. Providing portfolio management of crypto-assets.
  10. Providing transfer services for crypto-assets on behalf of clients.

Third-country access and targeting EU users. Reverse solicitation is construed narrowly. By 2026, ESMA’s guidance emphasises that the assessment is factual, and contractual disclaimers do not override contrary facts. Non-EU firms that proactively solicit EU clients generally need MiCA authorisation and an EU setup.

Would you like to discuss MiCA licensing with our experts?
Send Request

MiCA Exclusions

MiCA does not apply to certain persons, instruments, or assets:

  • Persons and public bodies: intra-group providers (services only for parent/subsidiaries), liquidators in insolvency (for limited purposes), the ECB and national central banks when acting as monetary authorities, the EIB/ESM, and public international organisations (e.g., IMF, BIS).
  • Traditional financial instruments and products already regulated elsewhere: MiFID II financial instruments, deposits and structured deposits, funds (except when an instrument qualifies as an EMT), securitisation positions, insurance contracts, pension products and social security schemes.
  • Non-transferable digital assets (e.g., closed-loop loyalty points).
  • CBDCs and crypto-assets issued by public authorities in their monetary capacity (and related services by such authorities).
  • NFTs that are truly unique and non-fungible. However, fractional NFTs or large series/collections may be considered fungible in substance, so MiCA can apply.
  • Fully decentralised services without any intermediary are out of scope. However, if a project is only partially decentralised or effectively controlled (e.g., via admin keys or a centralised front-end), MiCA may still apply.

Note: Where crypto-assets have no identifiable issuer, Titles II-IV do not apply, but CASP rules can still apply to service providers dealing with such assets. Title II also grants retail buyers of non-ART/EMT tokens a 14-day withdrawal right when purchasing directly from the offeror or its placing CASP.

Main MiCA provisions: requirements for market participants (2026 update)

MiCA license - фото 62687

Single EU authorisation for CASPs

MiCA license for crypto exchanges replaces the fragmented system of national permits with a unified authorization procedure for crypto-asset service providers (CASPs). After authorizing within its EU member state, the company can provide services within the territory of all 27 EU members under the passportization principle. One of the key priorities up to 2026 is the completion of the transitional phases, established by national regimes, and the necessity for current market participants to get a MiCA license for crypto exchanges to keep providing services in the EU.

The main requirements for CASPs are:

  • EU presence and corporate control. The company must be registered in the EU, have a physical office, and have effective local management in the EU territory. Requirements regarding professional aptitude and a clean business reputation (fit and proper) are applied to the key function holders.
  • Own capital. Minimum requirements for the initial capital are usually equal to 50000–150000 EUR, depending on the scope of services provided. Higher requirements may be applied to big companies that keep significant volumes of clients’ assets.
  • Inner management systems. Documented policies and risk-management policies, internal management, business continuity, conflict-of-interest handling, price formation, clients’ orders processing and implementation, complaint management, data protection, and cybersecurity must be maintained.
  • AML/CFT and the travel rule. Anti-money Laundering and Combating the Financing of Terrorism (AML/CFT) requirements are implemented towards the CASP. This includes KYC (know your customer) procedures and the obligation to collect and provide information on the originator and beneficiary during crypto transactions, in accordance with the ES travel rules.
  • Conduct & transparency: communications must be fair, clear, and not misleading; fees and pricing principles must be disclosed; market-abuse-style prohibitions apply to insider dealing, unlawful disclosure, and manipulation.

Without covering these terms, getting a MiCA crypto license is legally impossible. 

Token issuance (non-EMT/ART)

Public offerings of tokens that are neither EMTs nor ARTs require a compliant crypto-asset white paper (similar in function to a prospectus), notified to the national authority prior to the offer or admission to trading on crypto-asset trading platforms. MiCA crypto license applicants must be identifiable EU legal entities; anonymous primary sales are therefore not compatible with this model. Limited exemptions may apply (e.g., small offers or qualified-investor-only offers).

Stablecoins (EMTs/ARTs)

  • Backing and redemption: EMTs and ARTs must be backed by reserves, and holders have the right to redeem them. Issuers must also meet financial and transparency requirements.
  • Rules for larger tokens: highly volatile stablecoins face strict rules. By 2026, The EBA will continue monitoring and supervising tokens that could become systemically important.
  • Who can issue them: only companies established in the EU may issue ARTs and EMTs (with EMT issuance restricted to banks and authorised e-money institutions under MiCA’s perimeter).

Supervision and enforcement (what to watch in 2026)

NCAs (and, for important EMT/ART, the EBA) can deploy the full toolkit with MiCA license fully applicable: public notices, orders to cease infringements, withdrawals or suspensions of authorisations, administrative fines, and periodic penalty payments where they are relevant. ESMA has also stressed that regulated status should not be used to create confusion regarding regulated entities that integrate regulated and unregulated products offered on the same platform.

Enforcement for regulated entities (integrated)

In addition to EU-level powers, national frameworks specify how the MiCA crypto license issuer breaches are pursued and sanctioned. Using Ireland as an illustrative example, MiCA is given direct effect and enforced through the Central Bank’s Administrative Sanctions Procedure (ASP). Individuals and firms that commit prescribed contraventions may face public statements, cease-and-desist orders, monetary penalties, profit-based fines, and management measures, including withdrawal or suspension of CASP authorisation.

Illustrative maxima for legal persons (Ireland’s 2024 MiCA Regulations, applied in 2026):

Requirement areaMiCA article rangeMax penalty (legal persons)
(a)Crypto-assets other than ARTs/EMTsArts. 4–14€5,000,000 or 3% of annual turnover
(b)Asset-referenced tokens (ARTs)Arts. 16–17, 19, 22–23, 25, 27–41, 46–47€5,000,000 or 12.5% of annual turnover
(c)E-money tokens (EMTs)Arts. 48–51, 53–55€5,000,000 or 12.5% of annual turnover
(d)Crypto-Asset Service Providers (CASPs)Arts. 59–60, 64–83€5,000,000 or 5% of annual turnover
(e)Market-abuse prohibitions involving crypto-assetsArt. 88€2,500,000 or 2% of annual turnover
Arts. 89–92€15,000,000 or 15% of annual turnover

Notes: (1) For natural persons, Irish rules cap monetary penalties at defined figures for the same article ranges (e.g., up to €1,000,000 for Article 88 breaches and up to €5,000,000 for breaches of Articles 89–92). (2) “Annual turnover” references the most recent approved financial statements, or consolidated figures approved by the ultimate parent where applicable under the Accounting Directive. (3) ASP sanctions sit alongside separate fitness-and-probity/individual accountability regimes, which may trigger additional consequences for senior managers.

Token issuance and the White Paper

MiCA crypto regulation establishes a prospectus-like disclosure regime for public offerings of crypto-assets (other than EMT and ART) and for admission to trading. Projects planning to offer such tokens to the public must prepare and publish a crypto-asset white paper that describes the token’s features, holder rights, issuer information, technology, tokenomics, and key risks. The white paper must be notified (but not necessarily approved) to the national competent authority before the offer or admission to trading, and the issuer must be an EU-incorporated legal entity responsible for compliance.

Issuing non-EMT/ART tokens alone doesn’t require any separate authorisation. Publication of a compliant white paper is enough in most cases. However, the model requires an identifiable responsible party, which makes anonymous primary distributions and fully decentralised public TGEs conducted without a legal entity and adequate disclosures incompatible with MiCA’s public-offer framework.

Exemptions and special cases. Certain offers may be exempt, including offers addressed to fewer than 150 persons per Member State, offers where the total consideration over 12 months does not exceed EUR 1 million, or offers addressed to qualified investors only. Where a crypto-asset has no identifiable issuer (a classic example is Bitcoin), Titles II-IV do not apply, but CASP rules still apply to service providers dealing with such assets. In scenarios covered by MiCA crypto license, retail buyers may also benefit from a 14-day withdrawal right when purchasing directly from an offeror or its placing CASP.

Regulating stablecoins (EMT and ART)

  • Algorithmic “stablecoins”. MiCA’s EMT/ART categories are built around reserves and redemption. Tokens that attempt to maintain a peg without appropriate backing generally do not qualify as EMT or ART under MiCA.
  • Reserve and disclosure expectations. EMT and ART are subject to reserve, redemption, governance, and disclosure obligations, with additional requirements for tokens that reach systemic relevance.
  • 2026 supervisory focus. In 2026, the EBA continues work on significance assessments and supervisory planning for tokens that may require direct oversight.

Supervision and enforcement (2026 update)

EU regulators operate a layered supervision system under MiCA crypto regulation. Powers are split between European supervisory authorities and national competent authorities (NCAs).

At the EU level, the key authorities are the European Securities and Markets Authority (ESMA) and the European Banking Authority (EBA). ESMA supports supervisory convergence and market integrity measures, while the EBA focuses on stablecoins (ART and EMT), including prudential and reserve-related aspects and direct powers for “important” tokens.

Each Member State designates national authorities to implement MiCA domestically. NCAs grant CASP authorisations, monitor compliance, enforce breaches, and coordinate with EU bodies. Under MiCA, breaches can lead to administrative sanctions at the national level, including fines, remedial orders, suspension or withdrawal of authorisation, public notices of infringements, and management bans. Where national criminal law already applies (e.g., AML or fraud), MiCA does not displace it, and authorities may pursue criminal action in parallel.

By 2026, the transparency infrastructure is also set to improve. ESMA’s interim MiCA register is published as a collection of CSV files and updated weekly until mid-2026, when it is to be integrated into ESMA’s IT systems. The register covers published white papers, authorised CASPs, and non-compliant entities.

MiCA rollout and the transitional period

MiCA license - фото 62688
  • 9 June 2023 – Regulation (EU) 2023/1114 (MiCA) was published in the Official Journal of the EU.
  • 29 June 2023 – MiCA crypto regulation entered into force.
  • 30 June 2024 – stablecoin rules took effect. Titles III and IV governing ART and EMT became applicable.
  • 30 December 2024 – full application of MiCA. Title II on token issuance and Title V on MiCA crypto license for CASPs became applicable.
  • 1 July 2026 – in Member States that apply the transitional regime for incumbents, this date is the default end of the grandfathering period for CASPs that were providing services legally before 30 December 2024 (or earlier if an authorisation is granted or refused, or where the Member State sets a shorter period).

Despite a full application, MiCA licensing provides a transitional regime for incumbents in certain Member States. Under Article 143, crypto-asset service providers that provided their services legally before 30 December 2024 may continue to do so until 1 July 2026 or until they are granted or refused an authorisation, whichever is sooner. Member States may decide not to apply the transitional regime or to reduce its duration. This practically means that by 2026, the key compliance milestone for many incumbents is to secure MiCA authorisation before the applicable national window expires.

Want to explore MiCA licensing?
Send Request

Scope of MiCA

MiCA crypto regulation applies to many crypto-assets that fall outside existing European financial legislation.

The regulation covers digital assets that use distributed ledger technology or similar technology to represent value or rights capable of electronic transfer and storage.

Several major categories fall within its scope.

E-money Tokens (EMTs)

An E-money Token maintains a stable value by referring to the value of one official currency.

A euro-backed stablecoin represents a common example. Its issuer seeks to maintain a value equal to one euro for each token in circulation.

EMTs resemble electronic money in many respects, which explains the additional safeguards imposed on their issuers.

Asset-Referenced Tokens (ARTs)

Asset-Referenced Tokens seek price stability through reference to multiple assets instead of one currency.

Those assets may include:

  • Multiple official currencies.
  • Commodities.
  • Other crypto-assets.
  • A combination of different asset classes.

This category covers many stablecoin models that rely on baskets of assets instead of a single fiat currency.

Other crypto-assets

Many crypto-assets fall outside the stablecoin categories while still remaining subject to MiCA.

Examples include:

  • Utility tokens.
  • Exchange tokens.
  • Governance tokens that do not qualify as financial instruments.
  • Various digital assets issued through public offerings.

Issuers of these assets generally face disclosure obligations, including publication of a compliant white paper before a public offering or admission to trading, subject to specific exemptions.

Services under MiCA crypto regulation

MiCA regulates businesses that provide professional crypto-asset services within the European Union.

Those services include:

  • Custody and administration of crypto-assets.
  • Operation of trading platforms.
  • Exchange of crypto-assets for funds.
  • Exchange of one crypto-asset for another.
  • Execution of client orders.
  • Placement of crypto-assets.
  • Reception and transmission of orders.
  • Portfolio management.
  • Transfer services involving crypto-assets.
  • Advice relating to crypto-assets.

Each of the reregulated activities has its own operational requirements. Before applying for the MiCA crypto license, the company must determine which specific services they are to provide.

Business models tend to change over time. A company that provides only crypto storage may expand its services to include trading or consulting services. Each new activity can cause new requirements regarding the MiCA license for crypto exchanges policies fulfillment to appear.

What falls outside the MiCA license?

MiCA doesn’t regulate all the crypto-asset activities or blockchain.

Some fields keep being regulated by other legislative acts of the EU or national laws of specific states.

Examples include:

  • Financial instruments already covered by MiFID II.
  • Bank deposits.
  • Structured deposits.
  • Insurance products.
  • Securitisation positions.
  • Certain pension products.
  • Central bank digital currencies.
  • Fully decentralized activities that fall outside MiCA’s scope.
  • Some non-fungible tokens, depending on their characteristics and method of issuance.

Classification always depends on the facts behind a particular project. Labels alone carry little weight. Regulators examine the economic substance of an asset before deciding which legal framework applies.

That distinction matters because the same technology can support products that fall under very different regulatory regimes.

“Offshore” crypto hubs offer flexibility but uneven oversight. Gibraltar (FSC) and Bermuda (BMA) run formal regimes — DLT Provider and Digital Asset Business — covering exchange, custody, and more with strong investor-protection and AML rules. Many classic offshores (e.g., BVI, Seychelles) long had no dedicated crypto license, relying on simple company registration; they’re now adding light VASP registrations (e.g., BVI: quick, no minimum capital) and easy IBC setups with optional compliance support. Fiat rails may require a money transmitter or payment services license, though in some centers fiat is unregulated or covered by general financial rules. Securities laws are typically light: some (Gibraltar) can cover certain token offerings; others just restrict offers to locals. Data protection is often light-touch (Cayman and BVI have GDPR-style acts with modest enforcement). Reputable firms still follow global standards (AML/KYC, FATF Travel Rule, cybersecurity) to secure banking. Bottom line: an offshore license doesn’t guarantee market access — alignment with international norms does.

Other services

Get in touch with us

Customer reviews

Contact us

Callback