Licentium

Licensing Hub

United Kingdom

The FCA currently registers cryptoasset firms under the MLRs 2017. The FSMA (Cryptoassets) Regulations 2026 introduce full authorisation, with applications opening 30 September 2026.

Available licences

FCA Cryptoasset Business Registration (MLRs 2017)

Current UK gateway. Registration with the Financial Conduct Authority under the Money Laundering, Terrorist Financing and Transfer of Funds Regulations 2017 for cryptoasset exchange providers and custodian wallet providers carrying on business in the UK. Substantive fit-and-proper test for the firm, officers, managers and beneficial owners; FCA examines AML governance, risk assessment, transaction monitoring, sanctions controls, beneficial ownership and management probity. Statutory three-month determination period. Part 7A Travel Rule obligations apply to cryptoasset transfers.

FCA Authorisation: Issuing Qualifying Stablecoins

Incoming Part 4A FSMA authorisation under the FSMA (Cryptoassets) Regulations 2026 for issuers of qualifying stablecoins (qualifying cryptoassets that seek or purport to maintain stable value relative to a fiat currency, supported by fiat or other backing assets). UK territorial hook for issuing activities carried on in the UK. Application window 2026-09-30 to 2027-02-28; full commencement 2027-10-25.

FCA Authorisation: Safeguarding Qualifying Cryptoassets

Incoming FCA authorisation for safeguarding qualifying cryptoassets, including custody on behalf of UK consumers. UK territorial hook expressly captures safeguarding on behalf of UK consumers where not carried on at the direction of an authorised person. Capital, conduct, custody, CASS-equivalent client-asset, systems-and-controls and Consumer Duty requirements to follow in final FCA Handbook rules.

FCA Authorisation: Operating a Qualifying Cryptoasset Trading Platform

Incoming FCA authorisation for operating a qualifying cryptoasset trading platform. Admission to trading on a qualifying cryptoasset trading platform is itself a designated activity, with disclosure-document and material-information requirements covering features, risks, stable-value mechanisms, governance, technology, conflicts, control, and underlying assets.

FCA Authorisation: Dealing in Qualifying Cryptoassets

Incoming FCA authorisation for dealing in qualifying cryptoassets as principal or as agent. Includes broker-dealer models, market-making and OTC desks where activity is carried on in or directed at the UK. Conduct, capital and custody requirements to be set out in final FCA Handbook rules.

FCA Authorisation: Arranging Deals in Qualifying Cryptoassets

Incoming FCA authorisation for arranging deals in qualifying cryptoassets, capturing introducer, matching, routing and platform-arranging models that fall short of dealing or operating a trading platform but bring two parties together for a qualifying-cryptoasset transaction.

FCA Authorisation: Qualifying Cryptoasset Staking

Incoming FCA authorisation for qualifying cryptoasset staking. UK territorial hook captures staking on behalf of UK consumers where not carried on at the direction of an authorised person. Conduct, custody and disclosure requirements to follow in final FCA Handbook rules.

Detailed overview

United Kingdom: Cryptoasset Regulation and FCA Authorisation

The United Kingdom currently regulates cryptoasset exchange providers and custodian wallet providers through FCA registration under the Money Laundering, Terrorist Financing and Transfer of Funds Regulations 2017. A person required to be on the FCA register must not act as a cryptoasset exchange provider or custodian wallet provider unless included in the appropriate register, and the FCA must maintain a register for those provider categories.

A full UK financial-services authorisation regime for cryptoasset activities has now been enacted through the Financial Services and Markets Act 2000 (Cryptoassets) Regulations 2026. The Regulations were made on 2026-02-04 and come fully into force on 2027-10-25, while preparatory FCA powers and application-processing provisions came into force earlier. The FCA states that the application period for the new regime is open from 2026-09-30 to 2027-02-28 and that firms carrying out the new cryptoasset regulated activities will need FCA authorisation, either through a new application or a variation of permission.

The new UK regime covers, among other activities, issuing qualifying stablecoins, safeguarding qualifying cryptoassets, operating a qualifying cryptoasset trading platform, dealing in qualifying cryptoassets as principal or agent, arranging deals in qualifying cryptoassets, and qualifying cryptoasset staking. Public offers and admissions to trading of qualifying cryptoassets are also brought within designated activity and disclosure controls; a public offer of a qualifying cryptoasset in the UK is unlawful unless it falls within specified exceptions.

Regulator: Financial Conduct Authority. Current route: FCA cryptoasset business registration under the UK money-laundering regulations, plus UK financial-promotion compliance. Future route: FCA authorisation under the FSMA cryptoasset regime from 2027-10-25.

Question presented and assumptions

Question presented: What United Kingdom legal/regulatory entry should be added to the Licentium jurisdiction hub for cryptoasset licensing and market-entry purposes?

Assumptions: The intended hub entry is for firms providing cryptoasset exchange, custody, brokerage, trading-platform, staking, stablecoin, token-offer, or UK-facing promotional services. No specific facts are supplied about corporate establishment, client location, token type, custody model, fiat payment flow, or whether the token is a security, e-money, deposit, fund interest, or derivative.

Jurisdiction profile

The United Kingdom’s authoritative legislation source for statutes and statutory instruments is legislation.gov.uk; the principal regulator for cryptoasset AML registration and the incoming cryptoasset authorisation regime is the Financial Conduct Authority. The FCA also publishes official administrative materials on cryptoasset registration, financial promotions, Travel Rule expectations, and the new cryptoasset regime.

Hierarchy for this analysis: Acts of Parliament and statutory instruments are binding; FCA rules made under statutory powers are binding when in force; FCA webpages, consultations, guidance, and implementation timelines are official administrative materials but are not treated as substitutes for operative legislation unless they reproduce or implement binding requirements. No case law is relied on in this session.

Executive summary

  • Current cryptoasset exchange providers and custodian wallet providers carrying on business in the UK fall within the Money Laundering Regulations 2017 and must be on the FCA register unless an applicable exception applies.
  • The FCA must refuse cryptoasset-business registration where the applicant, its officers, managers, or beneficial owners are not fit and proper; the statutory factors include regulatory compliance, money-laundering / terrorist-financing risk, skills and experience, and probity.
  • For FCA MLR registration applications by cryptoasset exchange providers and custodian wallet providers, the FCA’s specified determination period is three months from receipt of the application or further required information.
  • UK cryptoasset financial promotions currently have a specific Article 73ZA route for promotions relating only to qualifying cryptoassets when communicated by, or in limited non-real-time cases on behalf of, an FCA-registered person.
  • The FSMA Cryptoassets Regulations 2026 create the incoming full authorisation regime; full commencement is 2027-10-25, while preparatory powers for FCA rules, guidance, directions, and applications are already provided for.
  • The new regulated activities include issuing qualifying stablecoins, safeguarding qualifying cryptoassets, operating trading platforms, dealing as principal or agent, arranging deals, and staking.
  • The new regime has UK territorial hooks for UK stablecoin issuing activity, UK-consumer sale/subscription activity without an authorised intermediary, and safeguarding or staking on behalf of UK consumers.
  • Cryptoasset businesses must comply with Part 7A Travel Rule requirements for cryptoasset transfers, including information-accompanying-transfer rules and risk-based unhosted-wallet information requests.

Analysis by issue

Current UK route: FCA registration under the Money Laundering Regulations

Conclusion: For current operations before the full FSMA cryptoasset regime, the practical UK gateway is FCA cryptoasset-business registration where the firm is a cryptoasset exchange provider or custodian wallet provider carrying on business in the UK.

Rule: Regulation 8 applies the MLRs to “relevant persons” acting in the course of business in the UK, and the listed relevant persons include “cryptoasset exchange providers” and “custodian wallet providers.” Regulation 14A defines a cryptoasset exchange provider to include, by way of business, exchanging or arranging cryptoassets for money, money for cryptoassets, cryptoasset-for-cryptoasset exchanges, and operating automated crypto-fiat exchange machines. Regulation 14A defines a custodian wallet provider as a firm or sole practitioner that safeguards cryptoassets or private cryptographic keys on behalf of customers. Regulation 56 states that, unless included in the appropriate register or covered by an exception, a person required to be registered “must not act as” a cryptoasset exchange provider or custodian wallet provider.

Application: A UK hub entry should not describe the current UK route simply as a broad “crypto licence.” The precise current formulation is FCA registration for cryptoasset exchange providers and custodian wallet providers under the MLRs. Exchange, brokerage, conversion, crypto-to-crypto dealing/arranging, custodial wallet, and private-key custody models require a regulatory-perimeter review against regulation 14A. Pure software, non-custodial technology, token issuance, payment, investment, or securities-token models may fall outside this MLR registration category but may trigger other UK financial-services regimes.

Limitations / counterarguments: The MLR route is not a full conduct/prudential authorisation equivalent to MiCA-style CASP authorisation. It is an AML/CTF registration and supervision gateway. Security tokens, e-money tokens, deposit-like arrangements, derivatives, funds, payment services, and investment activities can trigger separate UK regulatory regimes not fully analysed here.

FCA registration quality threshold and timing

Conclusion: The FCA gateway is substantive: applicants and key persons must satisfy a statutory fit-and-proper test, and the FCA has a three-month determination period for cryptoasset exchange provider and custodian wallet provider applications once the application or further required information is received.

Rule: Regulation 58A requires the FCA to refuse registration if the applicant, officers, managers, or beneficial owners are not fit and proper; the FCA must consider compliance history, ML/TF risk, skills and experience, and probity. Regulation 59 specifies a three-month period for FCA decision notice timing where the applicant is a cryptoasset exchange provider or custodian wallet provider.

Application: A UK insert should signal that registration is not automatic. A firm should expect the FCA to examine AML governance, risk assessment, policies, transaction monitoring, sanctions controls, source-of-funds controls, beneficial ownership, management probity, and operational readiness. The hub should avoid suggesting a fixed approval result from statutory timing alone, because the timing runs from receipt of application or further required information and does not guarantee approval.

Limitations / counterarguments: The statutory three-month period is not a commercial service-level guarantee. Missing information or FCA follow-up can affect timing and outcome.

Current UK financial promotions

Conclusion: UK-facing qualifying-cryptoasset promotions require a valid financial-promotion route. The current Article 73ZA route is narrow and tied to FCA-registered persons.

Rule: Article 73ZA of the Financial Promotion Order provides that the financial promotion restriction does not apply to a communication relating only to qualifying cryptoassets if it is communicated by a registered person, or on behalf of a registered person where the communication is non-real-time and the registered person prepared its content. The FCA’s cryptoassets page also identifies financial promotions as a live FCA resource area for cryptoasset firms. The 2026 Cryptoassets Regulations provide for Article 73ZA to be omitted in the future regime.

Application: A hub entry should warn that UK marketing is a separate gating issue. A non-UK crypto firm may still face UK financial-promotion restrictions if its website, app, paid advertising, influencer content, onboarding flows, referral campaigns, or offer materials are communicated to UK users. The safe website wording should say “financial-promotion compliance required” rather than implying that offshore status avoids UK rules.

Limitations / counterarguments: This session does not reproduce the FCA Handbook’s detailed cryptoasset financial-promotion rules, risk warnings, cooling-off rules, client categorisation, or appropriateness requirements. Those should be checked separately when drafting UK-facing marketing copy.

Incoming full FSMA cryptoasset authorisation regime

Conclusion: From 2027-10-25, the UK will move to a fuller FCA authorisation regime for specified cryptoasset activities. Firms should prepare during the FCA application window from 2026-09-30 to 2027-02-28.

Rule: The 2026 Regulations state that they come into force fully on 2027-10-25 and earlier for preparatory FCA rulemaking, guidance, directions, and applications. The FCA states that the application period is open from 2026-09-30 to 2027-02-28, and that firms carrying out the new cryptoasset regulated activities will need FCA authorisation through a new application or variation of permission.

The new regulated activities include issuing qualifying stablecoin, safeguarding qualifying cryptoassets, operating a qualifying cryptoasset trading platform, dealing as principal, dealing as agent, arranging deals, and qualifying cryptoasset staking. A qualifying cryptoasset is defined as a cryptoasset that is fungible, transferable, not solely a record of value or contractual rights, and not excluded; a qualifying stablecoin is a qualifying cryptoasset that seeks or purports to maintain stable value in relation to a fiat currency and is supported by fiat currency or other assets held for that purpose.

Application: The hub should present the UK as a transition jurisdiction. For firms entering now, the required plan is dual-track: current MLR registration / promotion compliance, and preparation for future Part 4A authorisation if the business will conduct activities covered by the 2026 Regulations. Existing MLR-registered firms should not assume that registration alone will be sufficient after full commencement.

Limitations / counterarguments: FCA detailed policy statements and final Handbook rules for the new regime were still pending on the FCA’s published milestone timeline as of this session; the FCA page lists policy statements for summer 2026. Therefore, granular capital, conduct, custody, prudential, Consumer Duty, CASS, systems-and-controls, and market-abuse implementation details require a later update.

Public offers, admissions to trading, and disclosure

Conclusion: Token public offers and admissions to trading will be controlled under designated activity and disclosure rules. Public offers of qualifying cryptoassets in the UK are prohibited unless an exception applies.

Rule: Regulation 7 specifies designated activities for public offers of qualifying cryptoassets, including offering to the public in the UK, communicating advertisements relating to such offers, and disclosing information relating to such offers. Regulation 8 specifies designated activities for admission to trading on a qualifying cryptoasset trading platform. Regulation 10 states that it is unlawful for a qualifying cryptoasset to be offered to the public in the UK unless the offer is of a kind specified by Schedule 1 exceptions or a permitted combination of such exceptions. Regulation 13 requires a qualifying cryptoasset disclosure document to contain material information enabling an informed assessment of features, risks, stable-value mechanisms, governance, technology, conflicts, control, and underlying assets.

Application: The UK entry should distinguish operating a crypto business from offering or admitting a token. A token issuer, launchpad, exchange, or trading platform may need to analyse public-offer exceptions, disclosure-document responsibility, admission rules, advertisements, and liability for misleading or omitted disclosure. Stablecoin issuers need additional attention because the disclosure rule expressly captures stable-value mechanisms and backing arrangements.

Limitations / counterarguments: Schedule 1 offer exceptions, compensation defences, platform rulebooks, and detailed FCA designated-activity rules require a separate sub-analysis once the token-offer structure is known.

Territorial scope and overseas firms

Conclusion: The new regime has express UK territorial hooks and is not limited to UK-incorporated firms.

Rule: The 2026 Regulations amend FSMA section 418 to cover cases including issuing qualifying stablecoin where the relevant issuing conditions are carried on in the UK, regulated cryptoasset activity involving sale or subscription of a qualifying cryptoasset to or by a UK consumer without an authorised intermediary, and safeguarding or staking on behalf of a UK consumer where not carried on at the direction of an authorised person. The inserted definition of “consumer” is an individual in the UK acting outside a trade, business, or profession.

Application: The website should not frame the UK solely as a place-of-incorporation analysis. A non-UK exchange, broker, custodian, staking provider, or stablecoin issuer may need UK analysis if it targets or services UK consumers, has UK establishment functions, or uses UK-facing marketing and onboarding.

Limitations / counterarguments: The precise outcome depends on establishment, contracting chain, intermediary status, consumer/professional categorisation, custody model, and whether an authorised UK intermediary is involved.

Travel Rule

Conclusion: UK cryptoasset businesses must operate Travel Rule controls for cryptoasset transfers.

Rule: Part 7A applies to cryptoasset transfers unless excluded. For inter-cryptoasset business transfers, the originator’s cryptoasset business must ensure the transfer is accompanied by specified originator/beneficiary information, including names and account number or unique transaction identifier. For unhosted-wallet transfers, the cryptoasset business may request specified information on a risk basis and must not make the cryptoasset available to the beneficiary if requested information is not received.

Application: A UK-facing exchange or custodian should implement originator/beneficiary data capture, counterparty VASP due diligence, linked-transfer value monitoring, unhosted-wallet risk assessment, escalation, reporting, and record-retention controls.

Limitations / counterarguments: This session does not test a specific Travel Rule vendor, message standard, or operating model.

Ready to launch legally?

Book a 30-minute consultation. We'll map your licensing path and tell you exactly what's required, in plain language.

Get Started