By CertiK service

For each security service, see which jurisdictions trigger it and how attractive each market is right now.

SkyInsights — AML / KYT

Jurisdictions triggering

Norms triggering

113

High-maturity markets

Top markets for SkyInsights — AML / KYT

Country	Region	Lead regulator	Maturity	Next deadline	Days	Score
BR — Brazil	LATAM	BCB	High	2026-10-30	155	82.9
DE — Germany	EU	Bundestag	High	—	—	63.4
HK — Hong Kong	APAC	SFC	High	—	—	63.4
GB — United Kingdom	EU	FCA	High	2027-10-25	515	63.2
SG — Singapore	APAC	MAS	High	—	—	60.6
FR — France	EU	Parlement	High	—	—	57.7
AE — United Arab Emirates	MENA	CBUAE	Medium	—	—	56.8
AR — Argentina	LATAM	BCRA	Medium	—	—	56.8
TR — Türkiye	MENA	null	Medium	—	—	56.8
US — United States	NA	IRS	Medium	—	—	51.0
CA — Canada	NA	null	High	—	—	49.1
IT — Italy	EU	Parlamento Italiano	Medium	—	—	48.2
ZA — South Africa	Africa	SARS	Medium	—	—	48.2
JP — Japan	APAC	FSA	Medium	—	—	45.3
UY — Uruguay	LATAM	Parlamento	Medium	—	—	45.3
CH — Switzerland	EU	FINMA	Medium	—	—	42.5
MX — Mexico	LATAM	Congreso de la Unión	Medium	—	—	33.9
LT — Lithuania	EU	VMI	Medium	—	—	31.0
KR — South Korea	APAC	FSC	Low	—	—	27.2
NG — Nigeria	Africa	NASS	Low	—	—	27.2
BM — Bermuda	NA	BMA	Low	—	—	24.4

Norms that trigger SkyInsights — AML / KYT

US2015-06-24

NY BitLicense — 23 NYCRR Part 200 (NYDFS) — virtual currency business activity license for New York; one of the strictest crypto licenses in the US; NYDFS also grants limited-purpose trust charters as an alternative route

The regulation requires a license for virtual currency business activities involving New York or its residents. This includes transmitting, custodying, buying, selling, exchanging, or issuing virtual currency.

US2019-05-09

FinCEN Guidance FIN-2019-G001 on Application of FinCEN's Regulations to Certain Business Models Involving Convertible Virtual Currencies (CVCs) — consolidates MSB rules for exchanges, administrators, wallets, mixers, P2P; Travel Rule applies to transfers ≥ USD 3,000

This guidance consolidates existing Money Services Business (MSB) registration and AML rules for various crypto business models. It clarifies the application of the Bank Secrecy Act, including the Travel Rule, to convertible virtual currencies (CVCs).

US1970-10-26

US Bank Secrecy Act (BSA, 31 U.S.C. §5311 et seq.) + 31 CFR Part 1022 — federal AML base; exchanges and custodians register with FinCEN as Money Services Business (MSB) via Form 107; written AML program, Compliance Officer, CIP/KYC, SARs, CTRs

The Bank Secrecy Act is the foundational US anti-money laundering (AML) statute. It requires financial institutions, including crypto exchanges registered as MSBs, to implement AML programs, conduct KYC, and report suspicious and large cash transactions.

US2026-04-08

FinCEN/OFAC Joint Notice of Proposed Rulemaking (NPRM) under the GENIUS Act (2026-04-08) — 303-page rule classifying PPSIs as BSA financial institutions; AML/CFT + sanctions programs required (block/freeze sanctioned transactions); comments through 2026-06-09

This proposed rule would classify PPSIs as financial institutions under the Bank Secrecy Act. It would require them to implement AML/CFT and sanctions compliance programs.

US2025-07-17

CLARITY Act — Digital Asset Market Clarity Act of 2025 (H.R. 3633) — BILL, NOT YET LAW; proposes market structure framework; would give CFTC exclusive jurisdiction over digital-commodity spot markets (BTC, ETH) and keep SEC over investment-contract assets; House-passed Jul/2025, Senate Banking markup expected 2026

This bill proposes a regulatory framework for digital assets, splitting jurisdiction between the CFTC for digital commodities and the SEC for investment-contract assets. It regulates exchanges, brokers, and dealers.

US2025-07-18

GENIUS Act — Guiding and Establishing National Innovation for U.S. Stablecoins Act (Public Law 119-27, signed 2025-07-18) — FIRST FEDERAL CRYPTO LAW; creates Permitted Payment Stablecoin Issuer (PPSI) regime; 100% reserve, par redemption; treats PPSIs as BSA financial institutions; excludes payment stablecoins from the definition of 'security'

This law establishes a federal licensing framework for payment stablecoin issuers, known as Permitted Payment Stablecoin Issuers (PPSIs). It mandates 1:1 reserves, monthly public reserve reporting, and par value redemption.

HK2023-06-01

Guideline on Anti-Money Laundering and Counter-Financing of Terrorism (For Licensed Corporations and SFC-licensed Virtual Asset Service Providers)

This guideline outlines Anti-Money Laundering and Counter-Financing of Terrorism requirements for licensed corporations and SFC-licensed Virtual Asset Service Providers.

Estate Agents Ordinance (Cap. 511)

This ordinance establishes the Estate Agents Authority to regulate and license estate agents and salespersons in Hong Kong. It sets out the requirements for obtaining and maintaining a license to perform estate agency work.

HK2011-07-07

Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615)

This ordinance establishes the anti-money laundering and counter-terrorist financing framework for Hong Kong. It is aligned with FATF recommendations, including the Travel Rule for virtual assets.

HK2026-01-02

Code of Conduct for Persons Licensed by or Registered with the Securities and Futures Commission

The text is a sitemap of the SFC website, which indicates a licensing regime for intermediaries, including virtual asset trading platform operators.

HK2025-08-01

HKMA Regulatory regime for stablecoin issuers — guidelines and explanatory notes; licensing criteria, reserves, redemption, AML, conduct; HKMA-licensed stablecoins exempt from VATP track record (for professional and retail clients)

This norm establishes a licensing regime for stablecoin issuers in Hong Kong. It covers licensing criteria, reserve management, redemption rights, and AML/conduct rules.

HK2023-05-23

Consultation Conclusions on the Proposed Regulatory Requirements for Virtual Asset Trading Platform Operators Licensed by the Securities and Futures Commission

This document proposes a comprehensive licensing and regulatory framework for centralized virtual asset trading platforms operating in or marketing to Hong Kong. It covers requirements for custody, AML/CFT, token admission, and introduces investor protection measures to allow access for retail investors.

HK2019-08-26

Banking Ordinance (Cap. 155)

This ordinance requires Authorized Institutions (AIs) to maintain adequate systems of control and comply with AML/CFT obligations under the AMLO, including customer due diligence.

United Nations (Anti-Terrorism Measures) Ordinance

This ordinance implements UN anti-terrorism measures and FATF recommendations. It prohibits financing terrorist acts, dealing with terrorist property, and requires disclosure of suspected terrorist property.

HK1997-07-18

United Nations Sanctions Ordinance (Cap. 537)

This ordinance provides the legal framework for Hong Kong to implement United Nations sanctions against persons and places, as instructed by China's Ministry of Foreign Affairs.

NG2018-07-26

Nigerian Financial Intelligence Unit (NFIU) Act 2018 — creates the NFIU as the FIU; VASPs must report large/suspicious transactions to NFIU (and, under NTAA, also to NRS)

This act establishes the Nigerian Financial Intelligence Unit (NFIU) as the central AML/CFT agency. It requires reporting entities, including VASPs, to report suspicious and threshold-based transactions to the NFIU.

AE2020-10-27

Cabinet Decision No. (74) of 2020 Regarding Terrorism Lists Regulation and Implementation of UN Security Council Resolutions on the Suppression and Combating of Terrorism, Terrorist Financing, Countering the Proliferation of Weapons of Mass Destruction and its Financing and Relevant Resolutions

This decision establishes the framework for implementing terrorism lists and UN Security Council resolutions. It focuses on combating terrorist financing and proliferation financing.

AE2022-11-01

DIFC DFSA Crypto Token regime (Rulebook 2022/2023) — extends DFSA financial regime to Crypto Tokens; maintains list of Recognised Crypto Tokens (only listed tokens may be used in DIFC); recognition with transparency, security and AML criteria

The regulation extends the DFSA's financial services regime to Crypto Tokens. It establishes a list of 'Recognised Crypto Tokens' which are the only ones permitted for use within the DIFC.

VARA Compliance and Risk Management Rulebook — cross-activity compliance, governance, risk management for VARA-licensed entities

This rulebook establishes comprehensive compliance, risk management, and AML/CFT obligations for entities licensed by VARA. It includes specific rules for handling client money and client virtual assets.

AE2025-10-29

Cabinet Resolution No. (134) of 2025 Regarding the Executive Regulations of Federal Decree by Law No. (10) of 2025 Regarding Anti-Money Laundering, and Combating the Financing of Terrorism and Proliferation

The provided text is a general webpage from the UAE Ministry of Economy. It lists categories of legislation, including AML, but does not contain the substantive text of the regulation itself.

AE2024-08-01

CBUAE Payment Token Services Regulation (PTSR) — Circular No. 2 of 2024 (effective Aug 2024) — stablecoin regime; distinguishes Dirham Payment Token (AED-backed, CBUAE-licensed issuer) from Foreign Payment Token (non-AED, CBUAE-registered issuer); licences issuance, custody/transfer, conversion; bans algorithmic stablecoins and privacy tokens as means of payment; 100% reserves; applies UAE-wide except DIFC/ADGM (but reaches VARA entities)

This regulation establishes a licensing and registration framework for payment token (stablecoin) services in the UAE. It covers issuance, custody, and conversion, distinguishing between AED-backed tokens (licensed) and foreign currency-backed tokens (registered).

AE2018-09-23

Federal Decree-Law No. (20) of 2018 on Anti-Money Laundering and Combating the Financing of Terrorism and Financing of Illegal Organisations

This decree-law establishes the framework for Anti-Money Laundering and Combating the Financing of Terrorism in the UAE. It aligns with FATF recommendations, including the Travel Rule.

AE2022-02-28

Dubai Law No. 4 of 2022 — Regulating Virtual Assets in the Emirate of Dubai; creates VARA (Virtual Assets Regulatory Authority); first dedicated VA regulator in the world; covers Dubai and its economic free zones except DIFC

This law establishes the Virtual Assets Regulatory Authority (VARA) and a mandatory licensing regime for Virtual Asset Service Providers (VASPs) in Dubai, excluding the DIFC.

Bermuda Financial Intelligence Agency (FIA) — Bermuda FIU; receives and analyzes Suspicious Activity Reports (SARs); part of Caribbean FATF (CFATF)

This text establishes Bermuda's Financial Intelligence Agency (FIA) as the central authority for receiving and analyzing Suspicious Activity Reports (SARs). It outlines the FIA's role in combating money laundering and terrorist financing.

CH2018-02-16

FINMA ICO Guidelines (2018) — establishes the functional taxonomy of tokens: payment tokens (means of payment, e.g. BTC), utility tokens (service access), asset tokens (rights like equity/debt — treated as securities); recognizes hybrid forms; basis of all Swiss crypto regulatory analysis

This guidance establishes a functional taxonomy for tokens, classifying them as payment, utility, or asset tokens. It clarifies how existing Swiss financial market laws (e.g., securities, banking, AML) apply to ICOs based on this classification.

CH2018-02-16

Guidelines for enquiries regarding the regulatory framework for initial coin offerings (ICOs)

This guidance clarifies how FINMA applies existing Swiss financial market laws to Initial Coin Offerings (ICOs). It categorizes tokens into payment, utility, and asset types to determine regulatory treatment under securities, banking, and anti-money laundering laws.

CH1997-10-10

Federal Act on Combating Money Laundering and Terrorist Financing (Anti-Money Laundering Act, AMLA)

Based on its title, this act establishes the framework for combating money laundering and terrorist financing. The provided body text contains no substantive legal articles.

CH2017-09-29

FINMA Guidance 04/2017: Initial coin offerings (ICOs)

This guidance clarifies that while no specific ICO regulation exists, existing financial market laws may apply. The applicability of AML, banking, securities, or collective investment scheme rules is assessed case-by-case.

CH1997-10-10

Swiss AMLA / GwG — Anti-Money Laundering Act — base AML/CFT law; exchanges, custodians and crypto platforms are financial intermediaries; must join an SRO recognised by FINMA (or get direct FINMA authorisation), with KYC, beneficial-owner identification, monitoring and reporting; issuing payment tokens/stablecoins = financial intermediation

This law subjects crypto exchanges, custodians, and platforms to AML/CFT rules as financial intermediaries. They must obtain direct FINMA authorisation or join a FINMA-recognised Self-Regulatory Organization (SRO).

CH2019-08-26

FINMA Guidance 02/2019: Payments on the blockchain

This guidance clarifies the application of Swiss anti-money laundering (AML) rules to supervised financial service providers for payments on the blockchain. It outlines a stringent implementation of the FATF 'Travel Rule'.

CH2015-06-03

AMLO-FINMA Article 10 (Travel Rule) — since 2019, requires transmission of originator/beneficiary information for crypto transfers; Switzerland applies one of the strictest Travel Rules (verification even for self-hosted wallets, with low threshold)

This rule implements the FATF Travel Rule for crypto-asset transfers. It requires financial intermediaries to transmit originator and beneficiary information.

IT1998-02-24

Italian TUF — Testo Unico della Finanza (Legislative Decree 58/1998) — when token is a financial instrument / security token, the capital-markets regime applies (offering, prospectus, intermediation) under CONSOB — OUTSIDE MiCA

This law establishes the general framework for financial instruments and intermediaries in Italy. It applies to crypto-assets that qualify as financial instruments (security tokens), subjecting them to licensing and conduct rules.

UIF — Unità di Informazione Finanziaria per l'Italia (Financial Intelligence Unit of Italy, within Banca d'Italia) — Italian FIU; receives and analyses Suspicious Operation Reports (SOS)

This text describes the role of Italy's Financial Intelligence Unit (UIF). The UIF is responsible for receiving and analyzing suspicious transaction reports to combat money laundering and terrorist financing.

IT2007-11-21

Italian Legislative Decree 231/2007 — Anti-Money Laundering Decree — transposed EU AML directives; basis for KYC/CDD, monitoring and reporting; brings crypto operators within obligated parties

This decree is Italy's primary anti-money laundering (AML) law, establishing obligations for customer due diligence, record-keeping, and suspicious activity reporting. It explicitly includes crypto-asset service providers as obligated entities.

IT2024-09-05

Italian Legislative Decree No. 129 of 5 September 2024 ('Decreto MiCA', effective 2024-09-14) — implements MiCA in Italy; designates CONSOB (conduct, transparency, fair dealing, market abuse, supervision of non-ART/EMT crypto) and Banca d'Italia (prudential supervision of ART/EMT issuers + AML); amends TUF and TUB (banking consolidated act); MiFID-style 'fit & proper' + IAS/IFRS + external audit + internal controls

This decree implements the EU's MiCA regulation in Italy. It designates CONSOB and the Bank of Italy as the competent national authorities for supervising crypto-asset services and issuers.

CA2007-05-17

Proceeds of Crime (Money Laundering) and Terrorist Financing Registration Regulations

This regulation establishes the requirements for certain entities to register with FINTRAC as part of Canada's anti-money laundering and anti-terrorist financing regime.

CA2001-12

Proceeds of Crime (Money Laundering) and Terrorist Financing Act

The Act establishes Canada's anti-money laundering and counter-terrorist financing (AML/CTF) framework. It requires entities to register, identify clients, keep records, and report suspicious transactions to FINTRAC.

FINTRAC MSB guidance — registration and obligations for Money Services Businesses including dealers in virtual currency

This guidance defines Money Services Businesses (MSBs), including virtual currency dealers, and details their AML/CFT obligations in Canada. Requirements include registration with FINTRAC, implementing a compliance program, KYC, transaction reporting, and record-keeping.

CA2000-06-29

Canada Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA) — federal AML/CFT framework; since 2020-06 'dealers in virtual currency' are Money Services Businesses (MSBs) and must register with FINTRAC; KYC, monitoring, recordkeeping, suspicious/large reports

This act classifies dealers in virtual currency as Money Services Businesses (MSBs). It requires them to register with FINTRAC and comply with federal AML/CFT obligations, including KYC and transaction reporting.

CA2007-10-29

Proceeds of Crime (Money Laundering) and Terrorist Financing Administrative Monetary Penalties Regulations

This regulation establishes the administrative monetary penalties for non-compliance with Canada's anti-money laundering and counter-terrorist financing (AML/CFT) framework.

CA2001-09-27

Proceeds of Crime (Money Laundering) and Terrorist Financing Suspicious Transaction Reporting Regulations

This regulation establishes the requirements for reporting suspicious transactions related to money laundering and terrorist financing to FINTRAC.

CA2010-12-10

Money-Services Businesses Act

This act establishes a mandatory licensing regime for money-services businesses (MSBs) operating in Quebec. The scope explicitly includes the operation of cryptoasset automated teller machines.

ZA1933-06-15

Currency and Exchanges Act 9 of 1933 + Exchange Control Regulations — base of South African exchange control administered by SARB FinSurv; a High Court ruling suggested crypto fell OUTSIDE exchange control, SARB appealed and is moving to close the loophole via 2026 draft regulations

This act establishes the legal basis for South Africa's exchange control system, which governs cross-border capital flows. The SARB administers the system by appointing Authorised Dealers to manage foreign exchange transactions.

ZA2025-10-01

FSCA Information Request 2 of 2025 (October 2025) — requires all licensed and provisional CASPs to submit operational and risk data (AML, custody, stablecoins, reserves, consumer protection, cross-border activity); basis for evolving the regulatory framework

Requires licensed and provisional CASPs to submit operational and risk data. The request covers AML, custody, stablecoins, reserves, consumer protection, and cross-border activity.

ZA2026-01-14

General Laws (Anti-Money Laundering and Combating Terrorism Financing) Amendment Bill, 2025

This is a proposed bill to amend general laws concerning Anti-Money Laundering and Combating Terrorism Financing. The specific impact on crypto-assets is not detailed in the provided text.

ZA2001-12-03

Financial Intelligence Centre Act 38 of 2001 (FICA) — base AML/CFT law; since December 2022, CASPs are 'accountable institutions' under Schedule 1 Item 22, with CDD/KYC, monitoring, recordkeeping and suspicious/cash transaction reporting to the FIC; an FSP CASP providing advice/intermediation also registers under Item 12 (double registration possible)

This law designates Crypto Asset Service Providers (CASPs) as 'accountable institutions' under its AML/CFT framework. It imposes duties including customer due diligence (CDD/KYC), transaction monitoring, and reporting to the Financial Intelligence Centre (FIC).

ZA2024-12-13

FIC Directive 9 of 2024 (Travel Rule) — issued 2024-12-13, effective 2025-04-30; implements FATF Recommendation 16; CASPs must collect/transmit originator and beneficiary data; data collection from zero threshold (all transactions); full identity verification above ZAR 5,000; non-compliance triggers administrative sanctions (s.45C FICA)

This directive implements the FATF's Travel Rule (Recommendation 16) for Crypto Asset Service Providers (CASPs). It mandates the collection and transmission of originator and beneficiary data for all transactions.

ZA2023-12-01

FIC compliance guidance for CASPs (2023) — clarifies CASP definitions and AML/CFT obligations under FICA Item 22; companion document to Directive 9

This guidance clarifies definitions for Crypto Asset Service Providers (CASPs) and their corresponding Anti-Money Laundering and Counter-Terrorist Financing (AML/CFT) obligations under the FIC Act.

ZA2026-02-21

SARB Draft Regulations 2026 — proposed amendments to bring crypto into the capital flow management regime under the Currency and Exchanges Act; signalled in the 2026 Budget Speech; movement to criminalize undeclared crypto at borders

This proposes amendments to include crypto-assets in the capital flow management regime under the Currency and Exchanges Act. It also signals a move to criminalize undeclared crypto at borders.

UY1995-03-30

Uruguay Law No. 16,696 — BCU Organic Charter (Carta Orgánica del Banco Central del Uruguay) — modified by the LAV to include PSAV financieros (PSAVF) as Supervised Entities of the SSF, granting BCU authorization, regulation, supervision and sanction powers

This law is the Organic Charter of the Central Bank of Uruguay. It was amended to bring Virtual Asset Service Providers (VASPs) under its regulatory scope, requiring them to obtain authorization to operate.

SENACLAFT — Secretaría Nacional para la Lucha contra el Lavado de Activos y el Financiamiento del Terrorismo (Uruguay) — national AML/CFT policy body; coordinates supervision and enforcement

This text is the homepage for Uruguay's national AML/CFT body, SENACLAFT. It does not contain specific regulatory requirements for crypto-assets.

UY2017-12-20

Uruguay Law No. 19,574 (Ley Integral contra el Lavado de Activos) — base AML/CFT law; defines obligated entities, CDD/KYC, monitoring and reporting duties; PSAVs are obligated entities (LAV reinforces AML focus for financial services)

This is Uruguay's foundational Anti-Money Laundering and Counter-Terrorist Financing (AML/CFT) law. It defines obligated entities and their duties for customer due diligence (CDD), monitoring, and suspicious transaction reporting.

UY2025-08-21

BCU draft regulation of the RNMV for PSAVF (2025-08-21) — proposed modification of the Recopilación de Normas del Mercado de Valores: prior BCU authorization required, minimum equity of 1,500,000 UI, BCU sight deposit of 50,000 UI, regulator guarantee of at least 2,000,000 UI, cybersecurity/custody/AML requirements; transition period until 2026-06-30

This is a proposed regulation for Virtual Asset Service Providers (PSAVF). It establishes a prior authorization regime with minimum capital, guarantee, cybersecurity, custody, and AML requirements.

UY2017-12-20

Law No. 19,574 of 2017 - Comprehensive Law against Money Laundering

The law's title indicates a comprehensive anti-money laundering framework. The provided text does not contain the law's articles, so its specific scope is undetermined.

SG1992-12-30

Singapore Corruption, Drug Trafficking and Other Serious Crimes (Confiscation of Benefits) Act 1992 (CDSA) — base penal AML law; criminalizes money laundering; basis for suspicious transaction reporting to STRO

This Act is Singapore's foundational anti-money laundering (AML) law. It criminalizes money laundering from serious crimes and establishes the Suspicious Transaction Reporting Office (STRO).

SG2002-07-08

Singapore Terrorism (Suppression of Financing) Act 2002 (TSOFA) — terrorism financing pillar of AML/CFT

This act establishes the legal framework for prohibiting the financing of terrorism in Singapore. Its broad definition of 'property' includes digital and electronic assets, making it applicable to crypto-assets.

SG2025-06-30

Notice FAA-N06 on Prevention of Money Laundering and Countering the Financing of Terrorism - Financial Advisers

This text announces the cancellation of MAS Notice FAA-N06, which concerns AML/CFT obligations for financial advisers. The cancellation is scheduled to take effect on July 1, 2025.

KoFIU — Korea Financial Intelligence Unit (under FSC) — FIU receiving and analysing STRs; administers VASP registration

This text describes the role of the KoFIU in administering South Korea's AML/CFT framework. This includes receiving Suspicious Transaction Reports (STRs), Customer Due Diligence (CDD), and managing the registration of Virtual Asset Service Providers (VASPs).

GB2017-07-19

UK Payment Services Regulations 2017 (PSRs) — payment services associated with e-money tokens

This regulation establishes an authorization regime for UK payment institutions. It sets out operational, safeguarding, and conduct of business requirements for payment services, which can include those related to e-money tokens.

GB2011-02-09

UK Electronic Money Regulations 2011 (EMRs) — if a fiat-referenced token qualifies as e-money, EMRs/PSRs regime applies and the token is excluded from the 'qualifying cryptoasset' financial-promotion category

This regulation establishes an authorization and prudential supervision regime for electronic money issuers. It applies to fiat-referenced crypto-tokens if they meet the legal definition of e-money.

GB2023-08-17

FCA expectations for UK cryptoasset businesses complying with the Travel Rule — guidance including sunrise issue and transfers to non-equivalent jurisdictions

This guidance sets expectations for UK cryptoasset businesses to comply with the Travel Rule. It requires the collection, verification, and sharing of information for cryptoasset transfers to combat illicit finance.

GB2023-06-08

FCA FG23/3 — Finalised non-handbook guidance on cryptoasset financial promotions — practical application including store-of-value claims, rates of return, on/off-ramp

This guidance clarifies rules for communicating or approving financial promotions for qualifying cryptoassets in the UK. It focuses on ensuring promotions are fair, clear, and not misleading, covering various models like stablecoins and yield products.

GB2025-05-28

CP25/14: Stablecoin issuance and cryptoasset custody

This consultation paper proposes rules for the issuance of qualifying stablecoins and the custody of qualifying cryptoassets in the UK.

GB2025-11-01

Bank of England — Proposed regulatory regime for sterling-denominated systemic stablecoins (CP 2025) — systemic GBP stablecoins get dual supervision: prudential by BoE + conduct/AML by FCA; Special Administration Regime for orderly wind-down

This consultation paper proposes a regulatory regime for sterling-denominated systemic stablecoins in the UK. It focuses on prudential requirements like backing assets, capital, and redemption rights to ensure financial stability.

GB2017-06-22

UK Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (MLRs 2017) — base AML regime; since Jan/2020 cryptoasset exchange providers and custodian wallet providers must register with FCA for AML/CTF; operating without registration is a criminal offence

This regulation establishes the UK's anti-money laundering (AML) and counter-terrorist financing (CTF) regime. It requires cryptoasset exchange providers and custodian wallet providers to register with the FCA.

GB2023-09-01

UK MLRs 2017 Part 7A — Travel Rule for crypto transfers (in force 2023-09-01); inserted by 2022 amendment; obliges crypto firms to collect, transmit and store originator/beneficiary data with sanctions screening

This regulation implements the FATF Travel Rule for UK cryptoasset businesses. It mandates the collection, verification, and transmission of originator and beneficiary information with cryptoasset transfers.

GB2002-07-24

UK Proceeds of Crime Act 2002 (POCA) — base money-laundering criminal law; underpins Suspicious Activity Reports to the NCA

This is the UK's foundational criminal law against money laundering. It underpins the Suspicious Activity Reports (SARs) regime and provides powers for the civil recovery and forfeiture of illicit assets, including cryptoassets.

AR2023-05-10

UIF Resolution 78/2023 - Guidelines for Anti-Money Laundering and Counter-Terrorist Financing Risk Management and Minimum Compliance for Obligated Subjects in the Capital Market

This resolution provides guidelines for Anti-Money Laundering and Counter-Terrorist Financing (AML/CFT) risk management. It establishes minimum compliance requirements for obligated subjects within the capital market.

AR2000-04-13

Argentine Law No. 25,246 — base AML/CFT law (Encubrimiento y Lavado de Activos); created the UIF (Unidad de Información Financiera); reformed by Law 27,739 in 2024 to include PSAVs as obligated entities

This law establishes the foundational AML/CFT framework in Argentina. It created the Financial Information Unit (UIF) and defined the duty to report for obligated parties.

AR2025-03-14

CNV General Resolution No. 1058/2025 — FULL PSAV REGULATION; imposes registration, cybersecurity, asset custody, AML, and risk-disclosure duties; requires ANNUAL SYSTEMS AUDIT; sets adequacy deadlines; CNV may suspend/revoke registrations; unregistered PSAVs may be judicially blocked

This regulation establishes a mandatory registration regime for Virtual Asset Service Providers (VASPs) in Argentina. It imposes comprehensive duties including AML, cybersecurity, asset segregation, and public proof-of-reserves.

AR2024-03-25

CNV General Resolution No. 994/2024 — creates the Argentine PSAV Registry; mandatory registration BEFORE operating for natural and legal persons providing crypto services (exchange crypto/fiat, crypto/crypto, transfer, custody, administration, financial-service offerings on VAs)

This resolution creates a mandatory registry for Virtual Asset Service Providers (VASPs) operating in Argentina or targeting its residents. Registration is required before operating and is for AML/CFT control purposes by the Financial Information Unit (FIU).

MX2012-10-17

Mexican Federal Law for the Prevention and Identification of Operations with Resources of Illicit Origin (LFPIORPI / Ley Antilavado) — DOF 2012, in force 2013, reformed 2025 — the habitual/professional commercialization or exchange of virtual assets by entities other than those regulated under Ley Fintech is 'vulnerable activity' (art. 17 §XVI); requires SPPLD registration, KYC, recordkeeping and reports to SAT; basis under which exchanges effectively operate in Mexico

This law classifies the habitual or professional exchange of virtual assets as a 'vulnerable activity'. It imposes AML/CFT obligations, including registration, customer identification (KYC), and reporting to tax authorities.

DE2017-06-30

BDSG — Bundesdatenschutzgesetz (German Federal Data Protection Act) — domestic GDPR complement; governs personal data in KYC/onboarding

This is Germany's Federal Data Protection Act, which complements the GDPR. It governs the processing of personal data, impacting crypto services during KYC and client onboarding.

DE2023-10-17

EU DAC8 Directive 2023/2226 — implements OECD CARF in EU; automatic exchange of crypto-asset tax information

This directive establishes a framework for the mandatory automatic exchange of tax-relevant information on crypto-assets among EU Member States. It requires crypto-asset service providers to perform due diligence on users and report their transaction data to national tax authorities.

DE2017-06-23

GwG — Geldwäschegesetz (Anti-Money Laundering Act) — central AML/CFT law; after FinmadiG, CASPs and ART issuers are explicitly obliged entities (§2 GwG) with KYC, monitoring and FIU reporting duties

This is Germany's central Anti-Money Laundering (AML) and Counter-Terrorist Financing (CFT) law. It defines obliged entities, including crypto-asset service providers, and mandates risk management, customer due diligence (KYC), monitoring, and reporting obligations.

DE2023-05-22

Regulation on enhanced due diligence requirements for the transfer of crypto assets (Crypto Asset Transfer Regulation - KryptoWTransferV)

This regulation establishes enhanced due diligence requirements for the transfer of crypto-assets. It focuses on anti-money laundering (AML) obligations.

DE2021-06-12

WpIG — Wertpapierinstitutsgesetz (Securities Institutions Act) — prudential regime for investment firms providing security-token services

This act establishes the prudential and licensing framework for investment firms in Germany. It includes specific provisions for firms providing crypto-asset services, such as qualified crypto custody.

DE2024-12-27

FinmadiG — Finanzmarktdigitalisierungsgesetz (Financial Market Digitalization Act, 27/12/2024) — umbrella law implementing MiCA, TFR and DORA in Germany; Article 1 creates the KMAG; subsequent articles amend KWG, WpHG, WpIG, KAGB, HGB, GwG, ZAG

This is an umbrella law implementing the EU's MiCA, TFR, and DORA regulations in Germany. It creates the KMAG (Crypto Markets Supervision Act) and amends various existing financial laws.

DE1961-07-10

KWG — Kreditwesengesetz (Banking Act) — defines Kryptowerte and kryptografische Instrumente (§1(11)); historical basis for crypto custody licensing (Kryptoverwahrgeschäft)

This is Germany's primary Banking Act, which defines crypto-assets (Kryptowerte) and establishes a licensing regime for financial services. It specifically regulates crypto-asset custody (Kryptoverwahrgeschäft) as a licensed activity.

BR2020-01-23

Brazilian BCB Circular No. 3,978 of 2020 — AML / KYC / financial-crime compliance (covers VASPs by extension)

This regulation establishes AML/KYC and financial-crime compliance policies. Its scope extends to Virtual Asset Service Providers (VASPs) by interpretation.

BR2025-11-10

BCB Resolution No. 520 of 2025

This resolution establishes a licensing framework for Virtual Asset Service Providers (VASPs) in Brazil. It defines VASP categories, operational rules, governance, and asset segregation requirements.

BR2019-05-03

Brazilian Receita Federal Normative Instruction No. 1,888 of 2019 (crypto-asset reporting obligation to RFB)

This rule mandates the reporting of crypto-asset transactions to Brazil's federal tax authority (RFB). It applies to Brazilian exchanges and to individuals/entities transacting above a certain threshold on foreign exchanges or P2P.

BR2022-11-25

CMN Resolution No. 5,042 of November 25, 2022

This resolution establishes the guiding principles for operations in the foreign exchange market. It mandates that institutions must obtain prior authorization from the Central Bank of Brazil to operate.

BR2021-06-04

BCB Resolution No. 119 of 2021 — current AML/CFT framework for BCB-regulated institutions (replaces Circular 3,978/2020)

This resolution amends the general AML/CFT framework for financial institutions regulated by the Central Bank of Brazil. It refines client identification (KYC) and qualification procedures, such as assessing financial capacity.

BR2026-01-22

BCB Normative Instruction No. 701 of 2026 — technical-certification requirements by independent qualified firms for crypto-asset intermediation/custody licenses (anchors Res. 520 arts. 20 and 23)

This norm details the requirements for a mandatory technical certification by an independent firm. This certification is a prerequisite for entities seeking to provide crypto-asset intermediation and custody services in Brazil.

BR2025-11-10

BCB Resolution No. 521 of 2025

This regulation integrates Virtual Asset Service Providers (VASPs) into Brazil's foreign exchange market framework. It establishes rules and reporting requirements for international payments and transfers involving virtual assets.

BR2023-08-22

BCB Resolution No. 337 of August 22, 2023

This resolution amends Brazil's foreign exchange (FX) market regulations. It updates the classification codes for reporting FX operations, including adding a specific code for 'Virtual assets'.

BR2004-08-18

CVM Instruction No. 409 of August 18, 2004

This 2004 instruction establishes the general rules for the constitution, administration, operation, and registration of traditional investment funds in Brazil. It does not apply to specific fund types like private equity or real estate funds.

BR1998-03-03

Brazilian Law No. 9,613 of 1998 (Money Laundering Law) — Law 14,478 added VASPs to the list of obligated parties (art. 9)

This law establishes Brazil's general anti-money laundering (AML) framework. It defines AML crimes and subjects various entities, including Virtual Asset Service Providers (VASPs), to monitoring and reporting obligations.

BR2013-11-04

CMN Resolution No. 4,282 of November 4, 2013

This resolution establishes the high-level guidelines for the Central Bank of Brazil to regulate, oversee, and supervise payment institutions and payment arrangements. It covers principles, authorization requirements, and risk management.

BR2017-07-13

CVM Instruction No. 588, of July 13, 2017

This rule regulates public offerings of securities by small businesses through online investment crowdfunding platforms. It establishes an authorization regime for the platforms and a registration exemption for the offerings.

BR2020-08-12

BCB Resolution No. 1, of August 12, 2020

This regulation establishes the Brazilian instant payment system, Pix. It defines the rules, participants, governance, and operational framework for 24/7 real-time fund transfers.

BR2022-12-21

Brazilian Law No. 14,478 of 2022 (Virtual Assets Framework)

This law establishes a licensing framework for Virtual Asset Service Providers (VASPs) in Brazil. It also criminalizes fraud involving virtual assets and subjects VASPs to national AML/CFT regulations.

BR2018-08-14

Brazilian General Data Protection Law (LGPD - Law 13,709/2018) — governs PSAV KYC, onboarding, monitoring

This law provides general rules for the protection of personal data. It applies to any operation that processes personal data in Brazil, including for KYC and client onboarding.

BR2022-12-31

BCB Resolution No. 277 of 2022 — FX market rules (amended by Res. 521 to include crypto operations)

This resolution regulates the Brazilian foreign exchange (FX) market. It was amended to include virtual asset services, establishing an authorization regime for VASPs to operate within the FX framework.

BR2026-01-29

BCB Normative Instruction No. 704 of 2026 — procedures, documents and Sisorf models for SPSAV authorization filings, including the two-phase transition for existing operators (deadline 2026-10-30)

This norm details the procedural requirements, documents, and deadlines for virtual asset service providers (VASPs) to apply for an operating license in Brazil. It includes a specific two-phase transition plan for VASPs already in operation.

BR2016-03-16

Brazilian Law No. 13,260 of 2016 (Anti-terrorism Law) — typifies terrorism financing (CFT pillar)

This law defines terrorism and the financing of terrorism as crimes in Brazil. It establishes the legal framework and penalties for such activities.

FR2019-05-22

French CMF Articles L.54-10-1 to L.54-10-10 — heart of the PSAN regime: definition of digital assets, list of services, mandatory enregistrement for AML, optional agrément, supervision

This law establishes the French PSAN (Digital Asset Service Provider) regime. It defines digital assets and services, and creates a dual system with mandatory AML registration and an optional, more comprehensive license (agrément).

FR2019-05-22

French PACTE Law n° 2019-486 of 22 May 2019 — created PSAN status (Prestataire de Services sur Actifs Numériques) and the definition of digital assets (actifs numériques = tokens + virtual currencies); pioneering, inspired MiCA

This law created the French legal framework for Digital Asset Service Providers (PSAN). It defines digital assets and establishes a dual regime of mandatory registration and optional licensing for various crypto-asset services.

French CMF Articles L.561-1 to L.561-50 — central AML/CFT regime; PSANs/PSCAs are obligated entities (L.561-2) with KYC, monitoring and Tracfin reporting duties

This law establishes the central AML/CFT regime for France. It designates Digital Asset Service Providers (PSANs) as obligated entities with KYC, transaction monitoring, and suspicious activity reporting duties to Tracfin.

FR2024-10-15

French Ordonnance n° 2024-937 of 15 October 2024 — extends AML/CFT (LCB-FT) regime to CASPs; transposes EU TFR 2023/1113 into French law; enhanced due diligence for crypto transfers

This ordinance extends the French AML/CFT regime to Crypto-Asset Service Providers (CASPs). It transposes the EU's Transfer of Funds Regulation (TFR) into national law, mandating due diligence for crypto transfers.

FR2024-10-15

French Ordonnance n° 2024-936 of 15 October 2024 — markets in crypto-assets — adapts the Code monétaire et financier to MiCA; allocates AMF/ACPR powers; creates new Title II bis Livre II CMF on legal nature of digital assets; institutes simplified procedure for registered PSANs

This ordinance adapts the French Monetary and Financial Code to the EU's MiCA regulation. It establishes the legal framework for the MiCA licensing regime in France and sets a transitional period for existing registered providers (PSANs).

JP2007-03-31

Act on Prevention of Transfer of Criminal Proceeds (Act No. 22 of 2007)

The text provides updates on Japan's Act on Prevention of Transfer of Criminal Proceeds. It imposes AML/CFT obligations, such as identity verification and suspicious transaction reporting.

JP2022-06-10

Act on Partially Amending the Payment Services Act, etc. for the Purpose of Establishing a Stable and Efficient Payment Services System

This regulation implements the 2022 amendment to the Payment Services Act, establishing a new framework for 'Electronic Payment Instruments' (stablecoins) and 'Exchange Transaction Analysis Business'.

JP2009-06-24

Japan Payment Services Act (PSA / 資金決済法) — base framework defining 'Crypto Asset' (暗号資産) and licensing the Crypto Asset Exchange Service Providers (CAESP / 暗号資産交換業者) that must register with the FSA; client-asset segregation, governance, cybersecurity, fit-and-proper for officers; world-pioneering crypto-exchange regulation (2017, after Mt. Gox)

This act establishes a foundational framework for payment services in Japan. It defines 'Crypto Asset' and creates a registration regime for Crypto Asset Exchange Service Providers (CAESPs) under the Financial Services Agency (FSA).

FCIS / FNTT (Finansinių nusikaltimų tyrimo tarnyba — Financial Crime Investigation Service of Lithuania) — supervisor of AML/CFT for VASPs/CASPs: KYC, monitoring, fit-and-proper, suspicious-transaction reporting; works alongside Lietuvos bankas in licensing

The FNTT is the AML/CFT supervisor for crypto-asset service providers (VASPs/CASPs) in Lithuania. This role includes enforcing KYC, transaction monitoring, and suspicious transaction reporting requirements.

TR2024-07-02

Law on Amendments to the Capital Markets Law (Law No. 7518)

This law establishes a comprehensive licensing and supervision framework for Crypto-Asset Service Providers (CASPs) in Türkiye. It empowers the Capital Markets Board to regulate their activities, with technical criteria for IT systems set by TÜBİTAK.

TR2008-04-09

MASAK General Communiqué No. 13 on Suspicious Transaction Reporting

This document is a general communiqué on suspicious transaction reporting, but the provided text contains no substantive articles.

Law on Payment and Securities Settlement Systems, Payment Services and Electronic Money Institutions (Law No. 6493)

This law establishes a licensing framework for payment institutions and electronic money institutions in Turkey. It regulates payment services, systems, and the issuance of electronic money.

TR1996-11-13

Law on the Prevention of Money Laundering No. 4208

This is a general anti-money laundering law from 1996. The provided text does not contain the body of the law or specify its application to crypto-assets.

TR2021-05-01

MASAK General Communiqué No. 18 (Designating Crypto Asset Service Providers as Obligated Parties)

This guidance designates Crypto Asset Service Providers (CASPs) as obligated parties under Turkey's AML/CFT framework. It requires them to implement customer identification, transaction monitoring, and Travel Rule compliance.

TR2006-10-11

Law on the Prevention of Laundering Proceeds of Crime (Law No. 5549)

This law establishes the principles and procedures for preventing the laundering of proceeds of crime in Türkiye. It defines obligated parties and imposes duties such as customer identification, suspicious transaction reporting, and record-keeping.

TR2025-02-25

MASAK Travel Rule Guidelines (Effective February 25, 2025)

This guidance clarifies AML/CFT obligations for Crypto Asset Service Providers (CASPs). It covers customer identification, enhanced due diligence, and Travel Rule implementation.