MiCA Regulation (crypto-asset services)

What is the MiCA Regulation?

The MiCA Regulation is the common European Union framework for crypto-assets and crypto-asset services. MiCA stands for Markets in Crypto-Assets Regulation. Its legal basis is Regulation (EU) 2023/1114 of the European Parliament and of the Council of 31 May 2023. The regulation establishes rules for the issuance, public offering, admission to trading, and provision of services related to crypto-assets within the EU.

MiCA was introduced to address a gap in financial regulation. Before MiCA, many crypto-assets and crypto businesses operated outside harmonised EU rules unless they qualified as financial instruments under MiFID II or fell within other sector-specific regimes. MiCA creates a dedicated system for crypto-assets that are not already regulated under existing financial services legislation. In practice, this means that businesses providing crypto-asset services in the EU may need authorisation, governance arrangements, prudential safeguards, conduct rules, and disclosures tailored to the crypto sector.

MiCA is particularly important for crypto-asset service providers, often referred to as CASPs. These entities may operate trading platforms, exchange crypto-assets for funds or other crypto-assets, execute orders, provide custody and administration, place crypto-assets, receive and transmit orders, provide advice, manage portfolios, or transfer crypto-assets on behalf of clients. The regulation also sets separate requirements for issuers of asset-referenced tokens and e-money tokens, with stricter obligations due to the potential risks for holders and the wider market.

What do crypto-asset services include under MiCA?

MiCA defines crypto-asset services by reference to a closed list of regulated activities. Under Regulation (EU) 2023/1114, these services include custody and administration of crypto-assets on behalf of clients, operation of a trading platform for crypto-assets, exchange of crypto-assets for funds, exchange of crypto-assets for other crypto-assets, execution of orders, placing of crypto-assets, reception and transmission of orders, providing advice on crypto-assets, providing portfolio management on crypto-assets, and providing transfer services for crypto-assets on behalf of clients.

These categories matter because a business model must be assessed against the regulatory definitions rather than against market terminology. For example, a platform describing itself as a software provider may still be treated as a regulated operator if, in substance, it enables order matching or controls access to client assets. Likewise, a wallet solution may fall within custody if the provider has the means to control or access clients’ crypto-assets or the related cryptographic keys.

MiCA also distinguishes between different types of crypto-assets. In simplified terms, the regulation addresses utility tokens, asset-referenced tokens, and e-money tokens. The classification has direct consequences for compliance obligations, disclosure standards, capital requirements, governance, reserve assets, redemption rights, and supervision. Some crypto-assets remain outside MiCA, including crypto-assets that are unique and not fungible with other crypto-assets, where the legal and factual assessment supports non-fungibility, although this point can be contentious in practice where a project is structured as a collection or series. In borderline cases, both the design of the token and the way it is marketed may affect the legal assessment.

When is MiCA relevant in practice?

MiCA is relevant whenever a business plans to launch, market, list, intermediate, safeguard, or advise on crypto-assets in the EU. It is not limited to large exchanges. Start-ups, fintech companies, token issuers, payment businesses, investment groups, and technology providers may all need to analyse whether their activity falls within MiCA. The regulation is also relevant to entities outside the EU if they offer crypto-asset services or crypto-assets in the Union or otherwise create a sufficient EU nexus under the applicable rules.

For private clients, MiCA can affect the level of transparency and safeguards offered by service providers. For businesses, the regulation has strategic consequences. It may determine whether a licence is required, which competent authority will supervise the activity, what corporate structure is appropriate, what internal controls must be implemented, and how products can be marketed across the EU. Once authorised in one Member State, a CASP may in principle use passporting rights to provide services in other Member States, subject to the regulatory procedure laid down in MiCA.

The timing of compliance is also significant. The rules for issuers of asset-referenced tokens and e-money tokens began to apply from 30 June 2024, while the broader MiCA framework, including most CASP rules, applies from 30 December 2024, as set out in Article 149 of Regulation (EU) 2023/1114. Transitional arrangements may differ in practice at national level to the extent permitted by MiCA, so businesses should verify local transitional measures and supervisory guidance.

Early legal analysis can help identify whether a token falls within MiCA, whether another regime applies instead, and whether the planned service model creates licensing risk. A prompt review often reduces the risk of unlawful activity, defective white papers, enforcement action, contractual disputes, civil liability, or avoidable restructuring costs.

How can a law firm support MiCA compliance?

Legal support in the area of MiCA typically begins with regulatory mapping. This includes classification of the crypto-asset, assessment of the service model, and verification of whether the activity falls within MiCA, MiFID II, PSD2, the Electronic Money Directive, AML rules, sanctions requirements, consumer law, or data protection obligations. In many projects, the key issue is not only whether MiCA applies, but how multiple regulatory regimes interact.

Support may also include preparation for CASP authorisation, review of governance arrangements, internal policies, outsourcing structures, client documentation, complaint handling, conflicts of interest procedures, prudential safeguards, ICT controls, and cross-border service models. For token issuers, legal work often focuses on white paper requirements, marketing communications, token design, reserve asset arrangements, redemption mechanisms, and engagement with regulators.

Depending on the project, support in the field of crypto-asset services may include in particular:

classification of crypto-assets and assessment of regulatory status under MiCA and adjacent regimes,
analysis of whether a business qualifies as a crypto-asset service provider,
advice on CASP authorisation and passporting within the EU,
drafting and review of white papers, terms and conditions, and client documentation,
design of governance, compliance, AML, and outsourcing frameworks,
support in dealings with supervisory authorities,
review of marketing, consumer disclosures, and risk warnings,
assessment of liability, enforcement exposure, and contractual risk in crypto projects.

If you need legal assistance with MiCA Regulation or crypto-asset services, contact us.

MiCA Regulation (crypto-asset services)