Licentium

Fintech Licensing Hub

Estonia

Estonia regulates crypto under MiCA through the Crypto-Asset Market Act (Krüptovaraturu seadus, in force 1 July 2024), which moved supervision from the Financial Intelligence Unit to Finantsinspektsioon; the transitional regime ran the full 18 months to 1 July 2026 but required existing VASPs to apply by 30 December 2024, and legacy VASP licences cease after that date. Payments and e-money run under the Payment Institutions and E-money Institutions Act, supervised by Finantsinspektsioon, with the Instant Payments Regulation and DORA in force and PSD3/PSR moving toward adoption. Gambling is licensed by the Estonian Tax and Customs Board (EMTA) under the Gambling Act through a two-step activity-licence and operating-permit process, with remote gambling taxed at 7% of GGR from 2026 — and Estonia is in the euro area and banking union, levies 0% corporate tax on retained profits, and taxes individual crypto gains at a flat 22%.

Available licences

Crypto-Asset Service Provider authorisation (Finantsinspektsioon under MiCAR and the Crypto-Asset Market Act)

Custody, operation of a trading platform, exchange of crypto-assets for funds or other crypto-assets, execution, placing, reception and transmission of orders, advice, portfolio management and transfer services require Finantsinspektsioon authorisation under Article 63 MiCAR. Finantsinspektsioon is the sole CASP authority — the former FIU VASP role has ended — and an authorisation passports across the EEA.

Asset-Referenced Token (ART) issuer authorisation (Finantsinspektsioon)

Public offering or admission to trading of a token referencing a basket of values, rights or currencies requires authorisation as an ART issuer under Title III MiCAR, with reserve, custody and disclosure requirements, supervised by Finantsinspektsioon.

E-Money Token (EMT) issuer (credit institution or EMI; Finantsinspektsioon)

EMTs (including fiat-backed stablecoins) may be issued only by an authorised credit institution or e-money institution, with redemption at par and reserve-backing and audit obligations; Finantsinspektsioon is the competent authority.

Article 60 MiCAR notification route (existing financial institutions)

Credit institutions, investment firms, e-money and payment institutions, UCITS management companies, AIFMs, CSDs and market operators already authorised under EU law may provide specified crypto-asset services by notifying Finantsinspektsioon for the services their existing licence covers.

Payment Institution authorisation (Finantsinspektsioon under the Payment Institutions and E-money Institutions Act)

An activity licence to provide payment services, supervised by Finantsinspektsioon and passportable across the EEA; the seat and principal place of business must be in Estonia.

E-Money Institution authorisation (Finantsinspektsioon)

An activity licence to issue electronic money and provide related payment services, with EUR 350,000 minimum initial capital, supervised by Finantsinspektsioon; small-scale and limited-network exemptions exist.

Account Information and Payment Initiation Services (Finantsinspektsioon)

Open-banking providers — account information and payment initiation service providers — fall within the Payment Institutions and E-money Institutions Act, supervised by Finantsinspektsioon, with strong customer authentication under PSD2.

Banking authorisation (Finantsinspektsioon and the ECB/SSM)

Deposit-taking and lending require a banking licence under the Credit Institutions Act; in the banking union the European Central Bank grants the licence and directly supervises significant institutions, with Finantsinspektsioon supervising less-significant ones.

Investment firm authorisation (Finantsinspektsioon — MiFID II)

Investment services in financial instruments require authorisation under the Securities Market Act transposing MiFID II, supervised by Finantsinspektsioon.

Gambling activity licence (EMTA under the Gambling Act)

The first step of Estonia's two-stage regime: an activity licence assessing the company, owners and managers' fitness and experience to organise games of chance, toto (betting) or lotteries; issued for an unspecified term and non-transferable.

Gambling operating permit — remote and land-based (EMTA)

The second step: a per-product operating permit assessing games, systems, AML/KYC and the technical connection to EMTA; remote-gambling permits run up to five years and land-based up to twenty. Lotteries are reserved to the state-owned Eesti Loto.

Detailed overview

Estonia at a glance

Estonia combines a highly digitalised administration, a reinvestment-friendly tax system and full MiCA supervision built on Europe's earliest VASP framework. Crypto is supervised by Finantsinspektsioon (CASPs and ART/EMT issuers) under the Crypto-Asset Market Act; the transitional regime expired on 1 July 2026 and required application by 30 December 2024. Payments run under the Payment Institutions and E-money Institutions Act with Finantsinspektsioon as supervisor and the Instant Payments Regulation and DORA in force. Gambling is licensed by EMTA under the Gambling Act through a two-step process. The euro is the currency, and Estonia sits inside the euro area and banking union.

Crypto regime under MiCA — Finantsinspektsioon-led, post first-mover:

  • MiCA + national implementing law — Regulation (EU) 2023/1114 (MiCAR); the Crypto-Asset Market Act (Krüptovaraturu seadus), in force 1 July 2024
  • Competent authority — Finantsinspektsioon for CASP authorisation and ART/EMT supervision; the FIU retains AML/STR functions but no longer licenses crypto
  • Grandfathering — closed. Estonia adopted the full 18-month transitional period to 1 July 2026, but existing VASPs had to file a complete CASP application by 30 December 2024 to keep operating during review; legacy FIU licences cease after 1 July 2026 with no automatic conversion
  • History — Estonia was the first EU state to license VASPs (2017) and attracted a very large population of registrants; the 2020 and especially 2022 reforms sharply raised substance and capital requirements and revoked many licences, leaving a smaller, higher-compliance base
  • Article 60 notifications — already-authorised financial institutions may notify Finantsinspektsioon to provide crypto-asset services within their existing licence
  • AML/CFT — the MLTFPA applies, with the FIU as national centre; the EU AML package (Regulation (EU) 2024/1624 / AMLR, with AMLA in Frankfurt) applies from 10 July 2027
  • TFR / DORA — the Travel Rule (Regulation (EU) 2023/1113) applies from 30 December 2024 and DORA from 17 January 2025
  • Tax — corporate income tax is 0% on retained and reinvested profits and 22% on distributed profits (22/78) from 2025; individual crypto gains are taxed at the flat personal rate of 22% with no holding exemption, though regulated crypto-assets can since 2025 be held via an investment account for tax deferral. Crypto rates have been subject to recent change — confirm the current schedule

Payments and e-money regime (Finantsinspektsioon-led):

  • PSD2 — Directive (EU) 2015/2366; transposed by the Payment Institutions and E-money Institutions Act, supervised by Finantsinspektsioon
  • Payment Institution licensing — initial capital EUR 20,000 (money remittance), EUR 50,000 (payment initiation) and EUR 125,000 (other payment services)
  • EMD2 / E-Money Institution — Directive 2009/110/EC; EUR 350,000 initial capital; stablecoin (EMT) issuers must be licensed as EMIs
  • Instant Payments Regulation (Regulation (EU) 2024/886) — euro instant payments: receiving applicable from 9 January 2025 and sending from 9 October 2025
  • DORA (Regulation (EU) 2022/2554) — applicable from 17 January 2025
  • PSD3 / PSR — Commission proposals of 28 June 2023; provisional political agreement reached 27 November 2025, with final compromise texts published 23 April 2026 and formal adoption expected during 2026; the package will repeal PSD2 and EMD2 and fold e-money institutions into payment institutions, with PSD3 transposed nationally and the PSR directly applicable after a phased timeline
  • Banking — in the banking union the ECB grants banking licences and directly supervises significant institutions, with Finantsinspektsioon supervising less-significant ones
  • Currency: euro (since 2011); no exchange controls; e-Residency and digital signatures enable remote company management

Gambling regime — two-step EMTA licensing:

  • Gambling Act (Hasartmänguseadus) and Gambling Tax Act — the framework, administered by the Estonian Tax and Customs Board (EMTA), with the FIU active on AML
  • Two-step licensing — an activity licence (company and persons), then a per-product operating permit (games, systems and the EMTA technical connection)
  • Open market — Estonian and foreign operators alike must hold both Estonian permits; lotteries are reserved to the state-owned Eesti Loto
  • Capital — games of chance (including online casino) require EUR 1,000,000 share capital; toto (betting) similar; games of skill far lower
  • Technical requirements — the EHMA electronic reporting system connected to EMTA, HAMPI self-exclusion register integration, ISO/IEC 17025 game certification, and servers located in Estonia, a Convention-on-Cybercrime state or a state with an EMTA/FIU cooperation agreement
  • Tax — remote gambling and toto are taxed at 7% of gross gaming revenue from 2026 (up from 6% in 2024); lotteries at 22% of ticket sales; land-based tables and machines at fixed per-unit rates
  • Minimum age — 21 for games of chance (casinos), 18 for betting and lotteries (the lottery age rose to 18 from 1 January 2026); operators are AML obliged entities
  • Enforcement — EMTA blocks unlicensed domains and publishes a public list of licensed operators
  • No EU passport — gambling is licensed nationally

Last verified: July 2026. Reference rate: USD 1 = EUR 0.87 (EUR 1 = USD 1.15).

Estonia is a euro-area, digital-first jurisdiction: crypto runs under MiCAR and the Crypto-Asset Market Act with Finantsinspektsioon as authority, payments sit under the Payment Institutions and E-money Institutions Act, and gambling is a two-step EMTA regime — all supported by a 0% tax on retained corporate profits.

Is there a crypto licence in Estonia?

Yes. Estonia applies MiCAR through the Crypto-Asset Market Act, with Finantsinspektsioon authorising and supervising CASPs and ART/EMT issuers. The transitional regime expired on 1 July 2026, so operating now requires a Finantsinspektsioon authorisation, a valid MiCA passport, or an Article 60 notification.

The legal foundation:

  • Regulation (EU) 2023/1114 (MiCAR) — the directly applicable EU framework for offerings, admission and crypto-asset services
  • Crypto-Asset Market Act (Krüptovaraturu seadus) — implements MiCAR and designates Finantsinspektsioon, in force 1 July 2024
  • MLTFPA — AML/CFT obligations and FIU reporting
  • Regulation (EU) 2023/1113 — Travel Rule for crypto-asset transfers

Structure:

  • An Estonian private limited company (OÜ), which the e-Residency programme and digital filings make straightforward to incorporate and manage remotely
  • MiCAR own-funds floors by class — EUR 50,000 (Class 1), EUR 125,000 (Class 2), EUR 150,000 (Class 3) — with the higher of the floor or a fixed-overheads measure
  • Fit-and-proper management and qualifying shareholders, AML systems, a white paper for in-scope offerings, and custody, conflicts, complaints and market-abuse arrangements, filed through the Finantsinspektsioon self-service portal

Operational reality:

  • Estonia offers EU credibility, a digital administration and a 0% tax on retained profits, but the modern CASP regime is far more demanding than the early VASP model
  • The reclassification from an AML matter (FIU) to a financial-services authorisation (Finantsinspektsioon) raises the governance, capital and ICT bar considerably
  • New activity should be structured through a Finantsinspektsioon authorisation, a valid passport or an Article 60 notification — not the closed transitional regime

Official CASP roadmap: Finantsinspektsioon does not publish a single consolidated roadmap document, but it runs all CASP applications through its self-service portal, has published applicant guidance and held information sessions, and confirmed on 23 March 2026 that legacy VASP licences cease to be valid after 1 July 2026 — after which crypto-asset services may be provided only by a firm licensed by Finantsinspektsioon or another EU competent authority.

Payments & E-money (Finantsinspektsioon — PSD2 / EMD2)

Best for payment, remittance, acquiring, wallet and open-banking operators that want a digital, EU-credible euro-area base.

What it is: An activity licence as a payment institution or e-money institution under the Payment Institutions and E-money Institutions Act, supervised by Finantsinspektsioon and passportable across the EEA.

Who it suits: Money-remittance and transfer providers, acquirers, card and wallet issuers, payment-initiation and account-information providers, and e-money issuers (including stablecoin issuers, who must be EMIs).

Covers: The payment services under the Act — incoming and outgoing transactions, transfers, card and instrument-based payments, money remittance, payment initiation and account information — plus issuance of electronic money.

Operational requirement: An Estonian entity with its seat and principal place of business in Estonia; minimum initial capital by service type; ongoing own-funds and safeguarding of client funds; strong customer authentication; AML/CFT; DORA operational-resilience obligations; and fit-and-proper management.

Headline figures

  • Primary instruments: Payment Institutions and E-money Institutions Act (PSD2 / EMD2); Instant Payments Regulation (EU) 2024/886; DORA (Regulation (EU) 2022/2554)
  • Regulator: Finantsinspektsioon (authorisation and supervision)
  • Entry capital: payment institutions EUR 20,000 / 50,000 / 125,000 by service type; e-money institutions EUR 350,000
  • Instant payments: euro instant payments receiving from 9 January 2025 and sending from 9 October 2025
  • Reform pipeline: PSD3 / PSR — political agreement November 2025, compromise texts April 2026, adoption expected during 2026; EMD2 to be repealed and EMIs folded into payment institutions
  • Currency: euro (euro-area member); no exchange controls

Is there a gambling licence in Estonia?

Yes. EMTA licenses games of chance, toto (betting) and lotteries under the Gambling Act through a two-step activity-licence and operating-permit process, open to EU/EEA operators, with lotteries reserved to the state-owned Eesti Loto.

The legal foundation:

  • Gambling Act (Hasartmänguseadus) — the framework for all gambling
  • Gambling Tax Act — gambling taxation
  • Estonian Tax and Customs Board (EMTA) — licensing, supervision and enforcement, with the FIU on AML

Structure:

  • An activity licence assesses the company, owners and managers; an operating permit then authorises each product and confirms systems
  • Games of chance (including online casino) require EUR 1,000,000 share capital; gambling must be the operator's sole activity
  • Operators must connect the EHMA reporting system to EMTA, integrate the HAMPI self-exclusion register, certify games to ISO/IEC 17025 and locate servers in Estonia or an approved state

Gambling — Remote (online) operating permit (EMTA)

Best for well-capitalised operators able to meet Estonia's technical, certification and reporting requirements; the regime is transparent but exacting.

What it is: An EMTA operating permit (following an activity licence) to provide remote games of chance or toto under the Gambling Act, for up to five years.

Who it suits: EU/EEA operators able to meet the EUR 1,000,000 capital requirement and integrate Estonian systems.

Covers: The remote products specified in the permit; a single remote permit can cover multiple websites.

Operational requirement: EHMA connection to EMTA, HAMPI integration, ISO/IEC 17025 certification, approved server location, AML/KYC and monthly tax declarations.

Headline figures

  • Primary instruments: Gambling Act (Hasartmänguseadus); Gambling Tax Act
  • Regulator: Estonian Tax and Customs Board (EMTA)
  • Costs: EUR 1,000,000 share capital for games of chance; remote operating-permit state fee around EUR 3,200, plus a higher activity-licence state fee
  • Tax: 7% of gross gaming revenue on remote gambling and toto (from 2026); 22% of ticket sales on lotteries; fixed per-unit rates on land-based tables and machines
  • Player protection: minimum age 21 for casino games, 18 for betting and lotteries; HAMPI self-exclusion; ID verification
  • Term: remote operating permits up to five years; lotteries reserved to the state-owned Eesti Loto

Costs and timelines at a glance

  • Crypto: MiCAR via the Crypto-Asset Market Act, Finantsinspektsioon for CASPs/ARTs/EMTs; own-funds floors EUR 50,000 / 125,000 / 150,000 by class; EUR 3,300 application fee; Article 63 timeline of a 25-working-day completeness check plus a 40-working-day decision; transitional regime closed 1 July 2026 (application cut-off 30 December 2024)
  • Payments primary instruments: Payment Institutions and E-money Institutions Act (PSD2 / EMD2); Instant Payments Regulation (EU) 2024/886; DORA
  • Payments regulator: Finantsinspektsioon; banking licences via the ECB/SSM (banking-union member)
  • Reform pipeline: PSD3 / PSR — agreement November 2025, compromise texts April 2026, adoption expected during 2026
  • Gambling: two-step EMTA regime under the Gambling Act; EUR 1,000,000 capital for games of chance; remote gambling tax 7% of GGR (2026)
  • Tax: corporate income tax 0% on retained profits and 22% on distributions; individual crypto gains taxed at the flat 22%
  • Currency: euro (euro-area and banking-union member); no exchange controls
  • FX: USD 1 = EUR 0.87 (EUR 1 = USD 1.15)

Who Estonia suits and who it does not

Suitable for

  • Crypto exchanges, custodians and token issuers wanting a MiCAR CASP authorisation from a digital, EU-credible supervisor, with EEA passporting and a 0% tax on retained profits
  • Founders who value remote incorporation and management through e-Residency and Estonia's digital administration
  • Already-licensed banks, investment firms, payment and e-money institutions that can add crypto-asset services through the Article 60 notification route
  • Payment, remittance, acquiring, wallet and open-banking operators (and stablecoin issuers via the EMI route) seeking a euro-area base
  • Well-capitalised gambling operators able to meet the EUR 1,000,000 capital, EHMA/HAMPI and certification requirements in a transparent regime

Not suitable for

  • Firms expecting the old light-touch Estonian VASP model — the FIU regime is gone, and Finantsinspektsioon applies full financial-services standards
  • Providers relying on a former FIU registration — the transitional window closed on 1 July 2026, and entry required application by 30 December 2024
  • Payment or e-money firms expecting to avoid EU prudential, safeguarding, DORA or AML obligations
  • Thinly capitalised gambling operators — Estonian games-of-chance licensing requires EUR 1,000,000 capital and a two-step EMTA process
  • Operators seeking to provide lotteries — these are reserved to the state-owned Eesti Loto

Ready to launch without the regulatory guesswork?

Book a 30-minute consultation with a senior advisor and talk through your route.

Get Started