What It Means for Crypto Projects
MiCA — the Markets in Crypto-Assets Regulation — is the EU’s comprehensive regulatory framework for crypto-assets. It was adopted by the European Parliament in April 2023 and came into full force in December 2024 after a phased implementation period. MiCA is the first major jurisdiction to create a single, comprehensive regulatory framework specifically for crypto-assets, covering everything from stablecoins to utility tokens to exchange services.
Before MiCA, crypto regulation in the EU was a patchwork: some member states had national frameworks, others had none. A crypto exchange operating in Germany faced different rules than one in France or the Netherlands. MiCA ended that fragmentation. A single CASP (Crypto-Asset Service Provider) licence issued by any EU national competent authority (NCA) is now valid across all 27 member states.
MiCA does not cover securities. If your token qualifies as a financial instrument under MiFID II — which most tokenized real estate, bonds, and fund shares do — MiCA does not apply. MiFID II applies instead. This is one of the most common points of confusion for projects entering the EU market. Always get a legal opinion on token classification before assuming MiCA is your framework.
MiCA creates three distinct token categories with different compliance obligations. Identifying which category your token falls into is the first and most important step in your MiCA compliance journey.
If your token represents ownership of an asset, profit participation, or debt — it is likely a financial instrument under MiFID II. MiCA explicitly excludes financial instruments from its scope. For tokenized real estate, bonds, fund shares, and equity: MiFID II, the Prospectus Regulation, and the EU Securitisation Regulation apply — not MiCA. The DLT Pilot Regime provides a sandbox for testing DLT-based securities settlement.
- You issue tokens to the public in the EU (public offer)
- You operate a crypto trading platform serving EU users
- You provide custody of crypto-assets for EU clients
- You issue ARTs or EMTs anywhere — targeting EU users
- You provide crypto-asset advice or portfolio management in the EU
- You operate a crypto transfer or exchange service in the EU
- You issue tokens to more than 150 persons per EU member state
- Your tokens are financial instruments (→ MiFID II instead)
- You offer to fewer than 150 persons per EU member state
- Total consideration is below €1M over 12 months (de-minimis)
- Tokens offered exclusively to qualified investors
- You issue unique, non-fungible NFTs (mostly exempt)
- Your project is fully decentralised with no identifiable issuer
- You are a credit institution already regulated under CRD
Before making any public offer of crypto-assets in the EU, issuers must publish a crypto-asset white paper. This is MiCA’s equivalent of a prospectus — not as detailed, but similarly structured and subject to regulatory oversight.
Any entity providing crypto-asset services in the EU must be authorised as a Crypto-Asset Service Provider (CASP). This is MiCA’s equivalent of a financial services licence — and the one requirement that catches the most projects off guard.
MiCA compliance is not a one-time exercise. After authorisation and launch, a range of ongoing obligations apply. These are often underestimated — and a major source of enforcement risk for projects that get the initial launch right but let ongoing compliance slip.
| Obligation | What it requires | When it applies |
|---|---|---|
| AML/KYC | CDD for all clients, EDD for high-risk, PEP/sanctions screening, Travel Rule for transfers ≥€1,000 | From day one of operations |
| MLRO appointment | Designated Money Laundering Reporting Officer with authority to file SARs independently | Before authorisation |
| Market surveillance | Monitor for insider dealing, wash trading, front-running, spoofing. Report suspected abuse to NCA | All trading platforms |
| Inside information disclosure | Publish inside information as soon as possible. Maintain insider lists | All issuers and CASPs |
| Prudential reporting | Regular financial and operational reports to NCA. Annual audited accounts | Quarterly/annually |
| Incident reporting | Notify NCA of operational incidents, security breaches, significant outages without undue delay | Within 24–72 hours of incident |
| White paper updates | Revise white paper promptly on material changes; notify investors | On material change |
| DORA compliance | ICT risk management, third-party provider oversight (from January 2025) | All CASPs |
MiCA is frequently compared to US, Singapore, and UAE crypto frameworks. The differences matter for any project deciding where to incorporate and which investor market to target.
| Feature | EU (MiCA) | USA (SEC) | Singapore (MAS) | UAE (VARA) |
|---|---|---|---|---|
| Regulatory clarity | Very high | Medium | High | Growing |
| Single licence coverage | 27 EU states | US only | Singapore only | UAE only |
| Retail investor access | Yes (with MiCA) | Very restricted | Limited | Limited |
| DeFi compatibility | Restricted | Very restricted | Permitted (limited) | Permitted (Dubai) |
| Licence timeline | 9–15 months | 2–4 months (Reg D) | 3–6 months | 2–5 months |
| Stablecoin framework | Comprehensive (MiCA) | Evolving | PS Act (limited) | VARA (growing) |
MiCA is the most comprehensive crypto regulatory framework in the world — and the only one that provides a single licence covering a major economic bloc of 450 million people. The compliance cost is higher than most alternatives, and the timeline is longer. But for projects that want to reach European retail investors at scale with genuine regulatory certainty, there is no substitute. The question is not whether to comply with MiCA — it is when and how.
Need help with MiCA compliance?
Our advisory team helps token issuers and platforms navigate MiCA requirements — from token classification to white paper drafting and CASP application.
Share this content:
