MiCA Regulation: Complete Guide to EU Crypto-Asset Compliance [2026]

The MiCA regulation is Regulation (EU) 2023/1114, the European Union's first harmonised legal framework for crypto-assets. It applies directly across all 27 Member States, sets uniform rules for issuers and crypto-asset service providers, and replaces the patchwork of national crypto regimes that existed before it. This guide explains MiCA end to end for 2026 readers.

If you are building a crypto business that touches EU clients, MiCA is now the rulebook you authorise under. Below we cover what it is, the three token classes, the full Title structure, the crypto-asset service provider (CASP) regime, capital requirements, white paper obligations, the application timeline, what falls out of scope, and who supervises it all. Each major sub-topic also links down to a dedicated guide where you need more depth.

What Is the MiCA Regulation? (Regulation (EU) 2023/1114)

MiCA stands for Markets in Crypto-Assets. The legal instrument is Regulation (EU) 2023/1114 of the European Parliament and of the Council of 31 May 2023 on markets in crypto-assets, published in the Official Journal as OJ L 150, 9.6.2023, pages 40 to 205. It is the EU's first comprehensive, harmonised framework covering crypto-assets that were not already caught by existing Union financial-services law.

MiCA amends Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937. In plain terms, it creates a single market rulebook for token issuance, crypto-asset services, market conduct and supervision across the bloc.

What MiCA does and why the EU introduced it

The EU introduced MiCA to replace fragmented national regimes with one set of rules, so that a crypto business authorised in one Member State can operate across the entire Union under a single licence. According to ESMA, MiCA sets requirements for transparency and disclosure on the issuance, offering and admission to trading of crypto-assets, the authorisation and supervision of crypto-asset service providers and issuers, operational governance, consumer protection, and measures to prevent market abuse.

The framework was adopted by the European Parliament and the Council and is enforced through a network of national competent authorities (NCAs), with ESMA and the European Banking Authority (EBA) writing the technical detail.

Who must comply with MiCA

MiCA applies to two broad groups: issuers and offerors of crypto-assets, and crypto-asset service providers (CASPs) that serve EU clients. If your company issues tokens to the public, seeks admission to trading, or provides any of the regulated crypto-asset services to people or businesses in the EU, you fall within scope and must meet the relevant authorisation, disclosure and conduct obligations.

MiCA is a Regulation, not a Directive (directly applicable)

This distinction matters. MiCA is a Regulation, which means it is directly applicable in every Member State without national transposition. A Directive would require each country to pass its own implementing law, creating 27 slightly different versions. Because MiCA is a Regulation, the same core text applies in Berlin, Dublin, Madrid and Paris, which is what makes a single EU-wide licence and passporting possible.

The Three Types of Crypto-Asset Under MiCA (ART, EMT, Other)

MiCA sorts crypto-assets into three buckets, each governed by its own Title. The classification matters because it determines which rulebook, which authorisation path and which issuer eligibility apply. The Article 3 definitions are the legal anchor for each class. [Source: MiCA Art. 3]

Asset-referenced tokens (ARTs) - Title III

An asset-referenced token, defined at Article 3(1)(6), is a crypto-asset that is not an e-money token and that purports to maintain a stable value by referencing another value or right or a combination thereof. In practice, an ART references a basket of assets or a non-single-currency value, so multi-reference stablecoins sit here. ARTs are governed by Title III, which sets out issuer authorisation, the reserve of assets, own-funds and redemption rules.

E-money tokens (EMTs) - Title IV

An e-money token, defined at Article 3(1)(7), is a crypto-asset that purports to maintain a stable value by referencing the value of one official currency. Single-fiat stablecoins and payment tokens fall here. EMTs are governed by Title IV, and crucially they may be issued only by an authorised credit institution or an electronic money institution, and must be redeemable at par at any time at the holder's request. You can read the full ART and EMT stablecoin rules in our dedicated guide.

Other crypto-assets and utility tokens - Title II

Everything else that is not an ART or an EMT, and is not already covered by existing financial-services law, falls into the "other crypto-assets" bucket governed by Title II. This includes utility tokens, defined at Article 3(1)(9) as a crypto-asset intended only to provide access to a good or service supplied by its issuer. Title II sets the offer-to-the-public, admission-to-trading and white paper rules for this group.

ART vs EMT - key differences at a glance

How MiCA Is Structured: The Titles I to IX

MiCA is organised into nine Titles. Understanding the structure helps you find the rule that applies to your activity and shows how token issuance, services, market abuse and supervision fit together. The framework also signposts annexes that carry hard figures, most importantly Annex IV on capital.

Title-by-title map of Regulation (EU) 2023/1114

The following map reflects the structure of Regulation (EU) 2023/1114. Title I and Title IX article ranges are confirmed; the opening article numbers for Titles III to VIII should be cited by Title rather than by a specific article number until each is verified against the EUR-Lex consolidated text.

1. Title I, Subject matter, scope and definitions (Articles 1 to 3): what is in and out of scope, plus the Article 3 definitions.
2. Title II, Crypto-assets other than ARTs or EMTs: offers to the public, admission to trading, the white paper obligation and its exemptions.
3. Title III, Asset-referenced tokens: authorisation to issue ARTs, reserve of assets, own funds, governance, redemption rights and the "significant" ART regime.
4. Title IV, E-money tokens: issuance only by credit or e-money institutions, redemption at par, reserve and safeguarding, and the "significant" EMT regime.
5. Title V, Crypto-asset service providers: authorisation, the 10 crypto-asset services, capital under Annex IV, conduct, custody and passporting.
6. Title VI, Market abuse: prohibitions on insider dealing, unlawful disclosure of inside information and market manipulation.
7. Title VII, Competent authorities, EBA and ESMA: supervisory powers, cooperation, penalties and the central registers.
8. Title VIII, Delegated acts and implementing acts.
9. Title IX, Transitional and final provisions (Articles 140 to 149): grandfathering under Article 143, and entry into force and application under Article 149. [Source: MiCA Art. 149]

Annexes that matter (Annex IV capital)

The annexes carry the operational detail that the body text refers to. The one most businesses ask about is Annex IV, which sets the minimum permanent capital for each class of crypto-asset service provider. We map those figures in full in the CASP capital section below.

The MiCA CASP Regime: Crypto-Asset Service Providers (Title V)

Title V is the core of MiCA for most operating businesses. If you run a crypto exchange, custody service, brokerage, advisory or transfer service for EU clients, you are a crypto-asset service provider and you authorise under Title V. This pillar explains the regime; for the step-by-step application, see how to get a CASP licence under MiCA.

What is a CASP and how authorisation works

A CASP is a legal person authorised to provide one or more of the 10 crypto-asset services. Authorisation is granted by the national competent authority (NCA) of the Member State where the CASP has its registered office, and that single authorisation is valid for the entire Union. [Source: ESMA] This is also where the line between a MiCA CASP and a FATF VASP becomes relevant; see VASP vs CASP under MiCA for the distinction.

The 10 crypto-asset services (Article 3(1)(16))

The complete list of regulated services is set out at Article 3(1)(16):

1. Providing custody and administration of crypto-assets on behalf of clients
2. Operation of a trading platform for crypto-assets
3. Exchange of crypto-assets for funds
4. Exchange of crypto-assets for other crypto-assets
5. Execution of orders for crypto-assets on behalf of clients
6. Placing of crypto-assets
7. Reception and transmission of orders for crypto-assets on behalf of clients
8. Providing advice on crypto-assets
9. Providing portfolio management on crypto-assets
10. Providing transfer services for crypto-assets on behalf of clients

MiCA capital requirements - Annex IV classes

A CASP must hold prudential safeguards equal to the higher of two figures: the permanent minimum capital for its class under Annex IV, or one quarter of the previous year's fixed overheads. The three classes are cumulative, meaning a higher class includes everything below it. [Source: MiCA Annex IV]

The rule of thumb: you hold the higher of your class figure or one quarter of fixed overheads, whichever is greater. A larger operation with high running costs may therefore need more capital than the headline class figure suggests.

How CASP capital differs from ART/EMT issuer capital

CASP capital under Annex IV is separate from, and lower than, the own-funds rules that apply to stablecoin issuers. ART issuers under Title III face additional, higher own-funds requirements tied to a percentage of the asset reserve. We do not state that percentage here because the exact figure needs verification against EUR-Lex before publication; treat it qualitatively as a separate, higher own-funds requirement. Conflating CASP capital with ART issuer capital is a common error, and the two must be kept distinct.

Have questions about your specific situation? Book a free 15-minute discovery call with our licensed advisers, no commitment. Book a Call

MiCA Passporting: One Authorisation, All 27 EU Member States

Passporting is the commercial heart of MiCA. A single authorisation lets you serve clients across the entire Union, which is why MiCA is described as a "single licence" regime. For the operational mechanics, see single EU licence passporting.

How the single licence works via notification

A CASP authorised under Title V in its home Member State can provide its authorised services cross-border across all 27 Member States via notification, without applying for a second authorisation. [Source: ESMA] You notify the relevant authorities of your intent to operate in additional Member States, and your existing licence carries the rights with it. This is the same principle that lets, for example, a firm with BaFin crypto authorisation in Germany serve clients elsewhere in the bloc.

Passporting a notified white paper Union-wide

The passport principle also extends to disclosure documents. A white paper for non-ART or non-EMT crypto-assets that has been notified to the home NCA can then be used to offer those assets Union-wide, without re-notifying in every Member State. This reduces the compliance burden of a multi-country offer to a single notified document.

MiCA White Paper Requirements and Exemptions

A crypto-asset white paper is the core disclosure document under MiCA for public offers and admissions to trading. The rules differ by token class, and there are clear thresholds below which no white paper is required. For deeper coverage, see our white paper disclosure requirements guide.

What a crypto-asset white paper must contain

For other crypto-assets under Title II, the offeror or person seeking admission to trading must draw up, notify the NCA, and publish a crypto-asset white paper. It must contain general information on the issuer or offeror, the project and the use of funds, the offer and admission to trading, the rights and obligations attached to the asset, the underlying technology, and the related risks. [Source: EUR-Lex] For non-ART and non-EMT assets, no prior NCA approval is required: the white paper is notified and published, after which the asset can be offered Union-wide.

White paper exemptions (Article 4(2)-(3))

Under Article 4(2) to (3), no white paper is required where any of the following applies:

• the offer is to fewer than 150 natural or legal persons per Member State acting on their own account;
• the total consideration of the offer in the Union does not exceed €1,000,000 over 12 months;
• the offer is addressed solely to qualified investors and the asset can only be held by qualified investors;
• the crypto-assets are offered for free, are created as mining or validation rewards, are utility tokens for an existing good or service, or are limited to a closed merchant network.

ART and EMT issuer obligations (higher bar)

Issuer obligations rise sharply for stablecoins. ART issuers under Title III need prior authorisation to issue (unless the issuer is an authorised credit institution), an NCA-approved white paper, a segregated reserve of assets, own funds, and redemption rights at all times. EMTs under Title IV may be issued only by an authorised credit institution or e-money institution, and must be redeemable at par. These rules are explored in the ART and EMT stablecoin rules guide.

MiCA Timeline and Key Application Dates

MiCA applied in phases, and one date still matters in 2026: the grandfathering window closing on 1 July 2026. All dates below come from Article 149 (entry into force and application) and Article 143 (transitional measures).

Entry into force and phased application (2023-2024)

• 29 June 2023: entry into force, the twentieth day after publication in the Official Journal on 9 June 2023. Certain enabling provisions apply from this date. [Source: MiCA Art. 149]
• 30 June 2024: Titles III and IV apply, bringing the ART and EMT stablecoin rules into force.
• 30 December 2024: general application of the rest of MiCA, including the Title V CASP regime.

The exact enumeration of articles that apply early from 29 June 2023 should be confirmed against EUR-Lex before listing specific article numbers. For a fuller breakdown, see MiCA key dates and transition periods.

The grandfathering / transition window to 1 July 2026

Under Article 143, CASPs that lawfully provided services under national law before 30 December 2024 may continue to do so until 1 July 2026 or until they are granted or refused an authorisation, whichever comes first. Importantly, this is a national option, not a uniform EU date: Member States may decline the transitional regime altogether, or shorten it where their prior national framework was less strict than MiCA. A simplified procedure under Article 143(6) is available for entities already authorised under national law at 30 December 2024, for applications filed between 30 December 2024 and 1 July 2026, though the competent authority must still verify compliance with the relevant chapters of Title V.

What MiCA Does Not Cover: NFTs, DeFi and Out-of-Scope Assets

MiCA is broad but not unlimited. Several categories fall outside its scope, either because they are unique assets, because they are already covered by other financial law, or because there is no intermediary to authorise.

NFTs and unique non-fungible crypto-assets

Crypto-assets that are unique and not fungible with other crypto-assets, including digital art and collectibles, are out of scope under Recital 10 of Regulation (EU) 2023/1114. The caveat is that fractionalised NFTs or large series may be treated as fungible and fall back into scope, so the "NFT" label alone does not guarantee an exemption.

DeFi and fully decentralised services

Fully decentralised services and protocols provided without any intermediary sit outside the CASP regime, because there is no legal person to authorise. This is a recurring interpretive grey zone for decentralised finance: the precise boundary is not fixed in the Regulation, so we describe it as an interpretive question rather than a hard rule. Where a protocol has an identifiable operator or front-end, the analysis becomes more nuanced.

MiFID II instruments and other excluded products

MiCA does not apply to assets already covered by existing financial-services legislation. Under Recital 9, financial instruments under MiFID II (Directive 2014/65/EU), deposits, funds other than e-money tokens, securitisation positions, and insurance and pension products are excluded. If your token qualifies as a MiFID II financial instrument, the securities regime applies instead of MiCA.

Who Supervises MiCA: NCAs, ESMA and the EBA

Supervision under MiCA is shared between national authorities and the European supervisory bodies. Knowing who does what tells you where to apply, who keeps the registers, and when oversight escalates to the EU level.

National competent authorities (NCAs)

NCAs grant and supervise authorisations in each Member State. [Source: ESMA] You apply to the NCA of the Member State where your firm has its registered office, and that NCA remains your day-to-day supervisor. This is the front line of MiCA enforcement and the body that grants your passportable licence.

ESMA, EBA and the central registers

ESMA, working with the EBA, EIOPA and the ECB, writes the Level 2 and Level 3 technical standards that flesh out the regulation, and maintains central registers of white papers, authorised CASPs and non-compliant entities. These registers, broadly around Articles 109 to 110, give the market a single place to check who is authorised and who has been flagged.

Significant ARTs/EMTs and EBA supervision

For ARTs and EMTs that exceed EBA-defined thresholds, such as a large user base, market capitalisation or transaction volume, supervision shifts to or is shared with the EBA, and additional requirements apply. The exact thresholds and supervisory trigger need verification against the Regulation and the relevant technical standards before any figures are quoted, so we describe the "significant" regime qualitatively here.

MiCA vs AML Rules, National Regimes and Non-EU Licensing

MiCA is often confused with the EU's anti-money-laundering rules and with national crypto regimes. It is none of those: it is a market-conduct and authorisation regulation. This section draws the lines that matter.

MiCA is not the AML or Travel Rule framework

A critical distinction: MiCA does not contain the AML or Travel Rule obligations. Those live in separate instruments, the Transfer of Funds Regulation (EU) 2023/1113 and the EU's AML Regulation and Directive (AMLR/AMLD). MiCA is a market-conduct and authorisation framework, not a tax or AML instrument. Your firm will need to comply with both MiCA and the AML stack, but they are different regimes with different requirements. See our AML and KYC compliance pillar for the AML side.

MiCA vs national crypto regulation for existing licensees

Firms already holding a national crypto registration face a transition to MiCA authorisation, governed by the grandfathering window described above. Because Member States can shorten or decline the transitional regime, the practical deadline varies by country. Our MiCA vs national regulation for existing licensees guide explains how to plan that migration.

Can a non-EU firm obtain a MiCA / CASP licence?

A firm based outside the EU cannot obtain a MiCA licence remotely. It must establish an EU legal entity and obtain authorisation from an NCA in the Member State of that entity's registered office. The reverse-solicitation exemption, where an EU client approaches a non-EU provider entirely on their own initiative, is narrow and should not be relied on as a market-entry strategy. For a wider comparison of frameworks, see VASP licensing under the FATF framework.

From our practice

In our advisory work with founders and compliance teams preparing for the MiCA transition, the issues that surface most often are not the headline capital figures but the classification call (is the token an ART, an EMT, or an "other" crypto-asset), the correct CASP class for the bundle of services a business actually offers, and the timing of an application against each Member State's grandfathering window. Getting the token classification and service-class mapping right at the outset avoids re-filing and keeps the authorisation path clean. We work strictly from the primary sources cited throughout this guide rather than from secondary summaries.