Detailed overview
Denmark: Finanstilsynet MiCA Authorisation under the Financial Business Act
Denmark is a full MiCA jurisdiction. The Danish framework is based on Regulation 2023/1114 and Danish implementation amendments to the Financial Business Act, Payments Act, Capital Markets Act and related financial-services legislation.
The Danish Financial Supervisory Authority, Finanstilsynet, is the practical regulator for standard crypto-asset service provider authorisation in Denmark.
Denmark should not be treated as a light-touch registration jurisdiction. Recent Finanstilsynet decisions show that Danish presence, local management, operational control, staffing, independence and effective Danish supervision are central licensing issues.
Regulator
The main regulator for a standard Danish crypto-asset service provider is Finanstilsynet.
Finanstilsynet receives CASP authorisation applications, receives Article 60 notifications from eligible financial entities, supervises authorised providers, maintains register information and exercises supervisory powers under MiCA and Danish law.
Other Danish or EU regimes may still apply where the activity involves payments, e-money, financial instruments, asset-referenced tokens, e-money tokens, AML, DORA, transfer-of-funds rules, tax reporting or non-MiCA products.
Licensing route
A legal person or other undertaking that provides crypto-asset services in the EU generally needs Finanstilsynet authorisation where Denmark is the home Member State, unless it is an eligible financial entity using the Article 60 notification route or another valid MiCA route.
The relevant crypto-asset services are custody and administration of crypto-assets for clients, operation of a crypto-asset trading platform, exchange of crypto-assets for funds, exchange of crypto-assets for other crypto-assets, execution of client orders, placing of crypto-assets, reception and transmission of orders, advice on crypto-assets, portfolio management on crypto-assets and transfer services for clients.
Transfer services are a separate MiCA service and should be included in the service-mapping analysis.
The licence perimeter applies only where the asset is within MiCA. Tokens that qualify as financial instruments, deposits, fund interests, payment instruments, insurance products, e-money outside the relevant MiCA treatment or other regulated products require separate analysis.
Article 63 authorisation
A standard unregulated Danish CASP applicant applies to Finanstilsynet through the official Virk filing process.
A credible Danish application should include a full service map, legal perimeter analysis, operating plan, business plan, constitutional documents, LEI, CVR information, contact information, domain names and social media accounts, governance package, management fit-and-proper materials, qualifying-holder information, prudential-safeguard evidence, AML and counter-terrorist-financing controls, ICT and security materials, DORA readiness, outsourcing framework, business-continuity plan, documentation of client crypto-assets and client funds, complaints procedures, custody policy, trading-platform rules where relevant, market-abuse detection procedures where relevant, exchange documentation, order-execution policy, advice and portfolio-management materials and transfer-service procedures.
Finanstilsynet may request additional information and may refuse an application where the applicant fails or is likely to fail to meet the MiCA requirements.
Article 60 notification
Article 60 is not a general shortcut for unregulated applicants. It is a notification route for specified regulated financial entities and equivalent crypto-asset services.
The Danish Article 60 route may be relevant for banks, central securities depositories, investment firms, market operators, e-money institutions, investment management companies and alternative investment fund managers.
A qualifying financial entity must notify Finanstilsynet at least 40 working days before first providing the relevant crypto-asset services. If the notification is incomplete, Finanstilsynet may suspend the deadline for up to 20 working days, and the entity may not start the service while the notification is incomplete.
A regulated entity that wants to provide non-equivalent crypto-asset services may still need full CASP authorisation.
Transitional position
Denmark’s transitional regime is narrow and late-stage.
A provider may rely on the Danish transition only if it already provided crypto-asset services in Denmark before 30 December 2024 and submitted a CASP authorisation application to Finanstilsynet no later than 30 December 2024.
A qualifying transitional provider may continue for 18 months after 30 December 2024 unless Finanstilsynet grants or refuses authorisation earlier. The practical cut-off is immediately before 1 July 2026.
A provider that did not apply by 30 December 2024 may not continue after that date until it has authorisation.
Transitional status is not a MiCA licence and should not be marketed as MiCA authorisation.
Local substance
Local substance is a central Danish licensing issue.
Finanstilsynet has refused CASP applications where the applicant lacked sufficient physical or managerial presence in Denmark, lacked adequate Danish staffing, lacked a natural connection to Denmark, outsourced core functions outside Denmark and the EU, or did not have enough competence, control or independence in the Danish company.
A Danish applicant should be prepared to show that Finanstilsynet can supervise the business effectively from Denmark.
Outsourcing is possible, but it must not empty the Danish applicant of management, competence, control or operational substance.
A structure with only a Danish company shell and most decision-making, staff, systems, management and control outside Denmark is high risk.
DeFi and decentralisation
Finanstilsynet has published guidance on decentralised crypto-asset services.
A crypto-asset service that is offered in a fully decentralised manner may fall outside MiCA. That conclusion should not be assumed.
The use of smart contracts or blockchain infrastructure does not necessarily make an activity decentralised. An interface provider may still fall within MiCA even if the interface connects users to a decentralised protocol.
Decentralisation is assessed when the activity becomes available to the public. A provider cannot avoid MiCA merely by saying that it plans to decentralise later.
A DeFi, wallet, aggregator, protocol, interface or governance-token model should be analysed before launch.
Costs
Danish annual supervisory fees apply.
A CASP authorised under the Danish Financial Business Act pays an annual Finanstilsynet fee based on 12.5 per mille of salary, commission and remuneration costs, with a minimum of DKK 20,000.
CASPs must report the relevant cost figures to Finanstilsynet by 1 July each year.
MiCA prudential safeguards must also be maintained at all times. The required amount is at least the higher of the applicable permanent minimum capital requirement and one quarter of fixed overheads for the preceding year. Prudential safeguards may be met through own funds, insurance, a comparable guarantee or a permitted combination.
The current fee schedule should be checked before filing because Danish fee rules and supervisory cost rules may be amended.
Ongoing obligations
A Danish CASP must comply with MiCA, Danish implementation law, Finanstilsynet supervisory requirements, AML and counter-terrorist-financing obligations, DORA-related ICT requirements, transfer-of-funds rules and applicable sanctions controls.
Core obligations include governance, management suitability, qualifying-holder controls, prudential safeguards, internal controls, risk management, AML controls, ICT and security controls, outsourcing oversight, business continuity, complaints handling, conflicts management, custody safeguards, client-asset and client-fund documentation, recordkeeping, fair and non-misleading client information, cost and fee transparency, market-abuse controls where relevant and service-specific conduct rules.
AML, sanctions, travel-rule, ICT, custody, outsourcing, complaints and continuity controls should be treated as licensing evidence, not as afterthoughts.
Enforcement risk
Denmark is not a light-touch jurisdiction.
Finanstilsynet can exercise MiCA supervisory powers, inspect premises, request information, refuse applications, withdraw authorisation and require cessation of unauthorised or refused activity.
Specified MiCA breaches can be punished by fine or imprisonment for up to four months. Other operational and conduct breaches may be punished by fine. Legal persons can incur criminal liability, and economic benefit from a breach may be confiscated or considered when setting the fine.
The main enforcement risks are operating without authorisation, continuing after the transitional period without authorisation, missing the 30 December 2024 transition application condition, presenting transitional status as MiCA authorisation, using Article 60 without a proper equivalence analysis, providing services outside the authorised scope, lacking Danish substance and relying on decentralisation without a robust legal and technical basis.
An appeal does not necessarily suspend the effect of a Finanstilsynet refusal.
Practical assessment
Denmark is suitable for firms that want a MiCA authorisation through a sophisticated Nordic regulator and are prepared to build real local substance.
It is not suitable for firms looking for a paper registration, a low-substance shell, indefinite grandfathering or informal reliance on a decentralisation label.
The main execution risks are incorrect service classification, weak Danish substance, over-outsourcing, inadequate local management control, assuming Article 60 is a general shortcut, relying on transition without meeting the 30 December 2024 filing condition, underestimating Finanstilsynet’s documentation expectations and filing before AML, ICT, DORA, custody, complaints, conflicts, prudential and service-specific materials are ready.