Licentium

Licensing Hub

United States

The United States has no single crypto licence. Providers face FinCEN MSB, SEC, CFTC and OFAC rules, the GENIUS Act stablecoin regime, plus state licences like the NY BitLicense.

Available licences

FinCEN MSB Registration (BSA / AML)

Federal Bank Secrecy Act registration with FinCEN as a money services business. Persons accepting and transmitting convertible virtual currency or other value substituting for currency are money transmitters and must register as MSBs and comply with AML programme, recordkeeping, monitoring, and reporting requirements (SARs, CTRs, Travel Rule). Applies to domestic and foreign-located CVC money transmitters doing business wholly or substantially in the United States, even without U.S. physical presence; foreign-located MSBs must designate a U.S. agent for service of process.

SEC Securities Routes (Broker-Dealer / ATS / National Securities Exchange / Securities Act Registration)

Where a token, transaction, or service involves a security or investment contract under Howey, federal securities laws apply. Potential routes include Securities Act registration or exemption for offerings, broker-dealer registration, alternative trading system (ATS) operation, national securities exchange registration, transfer-agent, clearing-agency, investment-company and investment-adviser regimes, and SEC marketing and disclosure rules. Payment stablecoins issued by permitted payment stablecoin issuers under the GENIUS Act are categorically excluded from the security definition once the Act is effective.

CFTC / NFA Routes (DCM, SEF, DCO, FCM, IB, CPO, CTA)

For futures, options, swaps, leveraged retail commodity transactions, commodity pools, commodity trading advice, and market infrastructure referencing digital-asset commodities. Potential routes include designated contract market (DCM), swap execution facility (SEF), derivatives clearing organization (DCO), futures commission merchant (FCM), introducing broker, swap dealer, commodity pool operator, and commodity trading advisor registration. The CFTC retains anti-fraud and anti-manipulation authority over virtual-currency cash markets as commodities in interstate commerce.

GENIUS Act Permitted Payment Stablecoin Issuer

Federal payment-stablecoin regime under the GENIUS Act (Pub. L. 119-27). Once effective (the earlier of 18 months after 2025-07-18 or 120 days after final implementing regulations), only permitted payment stablecoin issuers may issue payment stablecoins in the United States. Permitted issuers must hold identifiable reserves backing outstanding stablecoins at least 1:1 with specified reserve assets, disclose redemption policies and fees, and publish monthly reserve composition. Digital asset service providers face restrictions on offering or selling payment stablecoins to U.S. persons unless issued by a permitted issuer.

New York BitLicense or NY Banking Law Charter

New York DFS licensing for virtual currency business activity involving New York or a New York resident, under 23 NYCRR Part 200. Applicants may apply for a BitLicense or for a charter under the New York Banking Law (such as a limited-purpose trust company) with approval to conduct virtual currency business. FinCEN registration does not eliminate the BitLicense requirement, and out-of-state businesses must obtain a BitLicense if they engage in virtual currency business activity involving New York or a New York resident.

California Digital Financial Assets Law Licence

California DFPI licensing under the Digital Financial Assets Law for digital financial asset business activity, including exchanging, storing, or transferring a digital financial asset such as a crypto asset, with or on behalf of a California resident. Beginning 2026-07-01, persons engaging in DFAL-covered activity with California residents must hold a DFAL licence or have submitted a completed DFAL licence application to continue serving California residents.

Other State Money Transmission and Virtual Currency Licences

Across remaining U.S. states, money-transmitter licences and state-specific virtual currency or digital-asset licences may be required depending on customer location, fiat rails, custody, and stablecoin distribution. State rules differ on money transmission, virtual currency activity, exemptions, stablecoins, custody, surety bonds, permissible investments, net worth, control-person approval, and consumer disclosures. A state-by-state matrix is required for any national U.S. launch.

Detailed overview

United States: Federal and State Digital Asset Regulation

The United States does not operate a single consolidated “crypto licence.” Digital-asset businesses are analysed across federal AML/BSA rules, federal securities laws, federal commodities and derivatives laws, federal sanctions rules, the federal payment-stablecoin regime, and state licensing regimes. The result depends on the activity, token rights, customer location, custody model, marketing, and U.S. nexus.

At federal AML level, a crypto exchange, broker, administrator, custodian, transfer service, or similar business may be a money services business if it accepts and transmits convertible virtual currency or other value that substitutes for currency. FinCEN states that persons accepting and transmitting convertible virtual currency are money transmitters and must register with FinCEN as MSBs and comply with AML program, recordkeeping, monitoring, and reporting requirements, including SARs and CTRs. FinCEN also states that these requirements apply to domestic and foreign-located CVC money transmitters doing business wholly or substantially in the United States, even without physical presence in the United States.

State licensing is separate. FinCEN registration does not eliminate state licensing requirements. New York requires a BitLicense or approved New York banking-law charter for virtual currency business activity involving New York or a New York resident, including transmission, custody, customer exchange, customer buying/selling, or issuing / administering virtual currency. New York DFS expressly states that FinCEN registration does not affect whether a BitLicense is required. California’s Digital Financial Assets Law also becomes a major state gate: DFPI states that beginning 2026-07-01, certain crypto companies serving Californians must have a DFAL licence or have submitted a completed DFAL application, and that digital financial asset business activity includes exchanging, storing, or transferring a digital financial asset.

The securities-law overlay is central. The Securities Act definition of “security” includes an “investment contract,” and section 5 generally prohibits interstate offers and sales of securities unless a registration statement is filed / effective or an exemption applies. The Supreme Court’s Howey test treats an investment contract as a transaction or scheme involving an investment of money in a common enterprise with profits expected from the efforts of others. A platform, broker, issuer, wallet, staking programme, yield product, tokenised security, or marketplace must therefore assess whether the token itself, or the transaction around it, is a security or investment contract.

Trading and intermediation in securities tokens can require SEC registration or exemption. The Exchange Act defines “broker” as a person engaged in the business of effecting securities transactions for others, defines “dealer” as a person engaged in the business of buying and selling securities for its own account as a regular business, and defines “exchange” as an organisation or group that provides a marketplace or facilities bringing together purchasers and sellers of securities. Transactions on an unregistered securities exchange are unlawful unless the exchange is registered as a national securities exchange or exempted, and a national securities exchange must apply to the SEC and satisfy statutory requirements.

The commodities and derivatives overlay is also relevant. CFTC-regulated markets may be required where the product is a futures contract, option, swap, leveraged retail commodity transaction, or other CEA-regulated product referencing digital assets. CFTC states that designated contract markets are exchanges under CFTC oversight under CEA section 5, and any market seeking to provide a facility for non-eligible contract participants to trade futures, options on futures, or commodity options must apply for DCM designation unless an exemption or exclusion applies. CFTC also states that its cash-market oversight is limited but that it maintains anti-fraud and anti-manipulation authority over virtual currency cash markets as commodities in interstate commerce.

Payment stablecoins are now subject to a federal statutory framework under the GENIUS Act, Pub. L. 119-27. The Act is scheduled to take effect on the earlier of 18 months after 2025-07-18, or 120 days after final implementing regulations are issued. Once effective, it will be unlawful for any person other than a permitted payment stablecoin issuer to issue a payment stablecoin in the United States, and digital asset service providers will face restrictions on offering or selling payment stablecoins to U.S. persons. Permitted issuers must maintain at least 1:1 identifiable reserves, disclose redemption policies and fees, and publish monthly reserve composition. Until the effective date and final implementing regulations are confirmed, stablecoin projects should be analysed under existing BSA, securities, commodities, banking, state money-transmission, state virtual-currency, sanctions, and consumer-protection rules.

Sanctions compliance is a live U.S. gating issue. OFAC states that all U.S. persons must comply with OFAC regulations regardless of whether a transaction is denominated in fiat or virtual currency, and that U.S. persons, including virtual currency exchanges and wallet hosts, are generally prohibited from facilitating prohibited transactions, including virtual currency transactions in which blocked persons have an interest.

Regulators: FinCEN for BSA / MSB registration and AML; OFAC for sanctions; SEC for securities, broker-dealer, exchange, ATS, investment-company, investment-adviser, and disclosure issues; CFTC for commodity derivatives, DCMs, SEFs, commodity intermediaries, swaps, futures, and anti-fraud / anti-manipulation authority; federal banking agencies for bank and stablecoin issuer routes; state regulators for money transmission, virtual currency business activity, trust-company charters, and digital financial asset licensing.

Question presented and assumptions

Question presented: What United States legal/regulatory entry should be added to the Licentium jurisdiction hub for cryptoasset / digital-asset licensing and market-entry purposes?

Assumptions: The intended hub entry is for firms providing exchange, brokerage, custody, hosted wallets, stablecoin issuance, stablecoin distribution, token issuance, token listing, staking, lending, yield, transfer, payments, OTC, market-making, tokenised securities, derivatives, or digital-asset platform services to U.S. customers or from the United States. No facts are supplied about U.S. incorporation, U.S. staff, state customer footprint, New York or California residents, token rights, stablecoin redemption claim, reserve design, custody architecture, staking control, broker functions, derivatives or leverage, sanctions exposure, or whether the activity involves securities, commodities, payment stablecoins, money transmission, banking, or investment management.

Jurisdiction profile

The United States is a federal system. Federal statutes are enacted by Congress and published in public laws and the United States Code; the House Office of the Law Revision Counsel’s online U.S. Code pages used here state that they contain laws in effect on 2026-05-06 for the cited provisions. Federal regulations are published in the Federal Register and codified in the Code of Federal Regulations. The eCFR is a continuously updated official-government online version, but it states that it is not an official legal edition of the CFR and that the official published CFR is updated annually. For this session, eCFR was used as a current official-government consolidation and finding aid, with its non-official-legal-edition status disclosed.

Federal case law is binding according to court hierarchy. The Supreme Court’s Howey decision is cited from the U.S. Reports PDF hosted by the Library of Congress. No commercial citator was used. Later-treatment checking was limited to official materials; the SEC’s 2026 Commission interpretive release expressly states that the release does not supersede or replace Howey and that Howey remains binding legal precedent.

Administrative materials are cited only from issuing government bodies: FinCEN, SEC, CFTC, OFAC, New York DFS, and California DFPI. Binding statutes and regulations control over agency guidance. Agency guidance, interpretive releases, FAQs, circulars, press releases, and customer advisories are treated as official administrative materials, not as substitutes for statutory text or binding regulation unless issued with binding legal effect.

Executive summary

  • The United States should be described as a multi-regime jurisdiction, not a single crypto-licence jurisdiction: federal AML/MSB, SEC securities, CFTC commodities / derivatives, OFAC sanctions, federal stablecoin, and state licensing layers may apply simultaneously.
  • Under FinCEN’s CVC guidance, persons accepting and transmitting convertible virtual currency are money transmitters and must register as MSBs and comply with AML program, recordkeeping, monitoring, SAR and CTR obligations.
  • The MSB perimeter can reach foreign-located CVC money transmitters doing business wholly or substantially in the United States, even without U.S. physical presence.
  • MSBs must maintain effective AML programmes reasonably designed to prevent use of the business for money laundering and terrorist financing, commensurate with the risks posed by the business.
  • Securities analysis turns on statutory definitions and Howey. The Securities Act definition includes “investment contract,” and Howey asks whether there is an investment of money in a common enterprise with profits expected from the efforts of others.
  • Token offerings involving securities generally require registration or an exemption under Securities Act section 5, and platforms or intermediaries involving securities may require broker-dealer, exchange, ATS, or other SEC analysis.
  • Digital-asset commodities, futures, options, swaps, and leveraged or margined products may trigger CFTC / CEA analysis. CFTC states that DCMs are futures exchanges under CFTC oversight and that markets for non-eligible contract participants to trade futures or commodity options must apply for DCM designation unless an exemption or exclusion applies.
  • The GENIUS Act creates a federal payment-stablecoin regime but has a delayed effective date: earlier of 18 months after 2025-07-18 or 120 days after final implementing regulations.
  • Once operative, the GENIUS Act will make it unlawful for persons other than permitted payment stablecoin issuers to issue payment stablecoins in the United States, and it imposes 1:1 reserve, redemption, fee disclosure, and monthly reserve-publication requirements.
  • State licensing remains material. New York DFS states that virtual-currency business activity involving New York or New Yorkers requires a BitLicense or approved banking-law charter route and that FinCEN registration does not remove BitLicense requirements; California DFPI states that certain crypto companies serving Californians must have, or have applied for, a DFAL licence by 2026-07-01.

Analysis by issue

Federal AML/BSA route: FinCEN MSB registration and compliance

Conclusion: The federal AML starting point for many U.S.-facing crypto businesses is FinCEN money services business analysis, especially money-transmitter analysis for accepting and transmitting convertible virtual currency or other value that substitutes for currency.

Rule: FinCEN guidance states that an MSB is a person “wherever located” doing business wholly or substantially in the United States and functioning, among other things, as a money transmitter. The guidance states that money transmission services include accepting currency, funds, or other value that substitutes for currency from one person and transmitting currency, funds, or other value that substitutes for currency to another location or person by any means.

FinCEN further states that persons accepting and transmitting value that substitutes for currency, including virtual currency, are money transmitters. Persons accepting and transmitting CVC are required to register with FinCEN as MSBs and comply with AML programme, recordkeeping, monitoring, and reporting requirements, including SARs and CTRs. FinCEN states that these requirements apply equally to domestic and foreign-located CVC money transmitters doing business wholly or substantially in the United States, even if the foreign entity has no physical U.S. presence.

MSB compliance is substantive. The eCFR text for 31 CFR §1022.210 states that each MSB must develop, implement and maintain an effective AML programme reasonably designed to prevent the MSB from being used to facilitate money laundering and terrorist financing; the programme must be risk-commensurate, written, and include policies, procedures and internal controls. MSBs must register with FinCEN whether or not state-licensed, and foreign-located MSBs doing business in the United States must designate a U.S. agent for service of process.

Application: A U.S.-facing exchange, broker, OTC desk, custodial wallet, hosted wallet, stablecoin transfer platform, payment processor, crypto-to-fiat service, crypto-to-crypto service, or issuer with redemption / transmission functionality should be reviewed for MSB status. Pure software development, self-custody tooling, non-custodial interfaces, miners / validators, and users may fall differently, but the key question is whether the person, as a business, accepts and transmits value for others.

Limitations / counterarguments: FinCEN guidance does not itself create new legal obligations; it consolidates and explains existing regulations. The result depends on precise custody, transfer, settlement, counterparty, redemption, and control facts. State licensing, SEC/CFTC status, banking status, and OFAC obligations remain separate.

Travel Rule, SARs, and operational AML controls

Conclusion: A U.S.-facing crypto MSB needs operational AML infrastructure, not merely FinCEN form registration.

Rule: For transmittals of funds of $3,000 or more, 31 CFR §1010.410(f), as shown in the eCFR current consolidation, requires a transmittor’s financial institution to include specified information in a transmittal order, including the transmittor’s name, account number if applicable, address, amount, execution date, recipient financial institution, recipient information received with the order, and the transmittor financial institution identifier.

The MSB AML programme rule requires customer-identification procedures where applicable, report filing, record creation and retention, and response to law-enforcement requests. MSBs are also subject to suspicious activity reporting requirements; failure to satisfy these requirements may violate the BSA and regulations.

Application: A U.S.-facing VASP should maintain customer due diligence, beneficial ownership controls, sanctions screening, suspicious activity monitoring, blockchain analytics where appropriate, Travel Rule messaging, counterparty VASP due diligence, record retention, law-enforcement response processes, SAR escalation, CTR analysis where fiat activity is present, and independent review / training. Wallet-to-wallet, omnibus custody, hosted-to-unhosted, and cross-border flows need separate operational treatment.

Limitations / counterarguments: The eCFR is not the official legal edition of the CFR; it is a continuously updated online version. The official annual CFR / Federal Register should be checked for litigation or filing. Technical Travel Rule implementation may depend on protocol, counterparty, transfer type, threshold, and FinCEN / FATF alignment.

State licensing: New York, California, and state-by-state exposure

Conclusion: U.S. market entry requires state licensing analysis in addition to federal FinCEN registration. New York and California are high-priority examples, but not the full state survey.

Rule: New York DFS states that entities conducting virtual currency business activity in New York can apply for a BitLicense or for a charter under New York Banking Law with approval to conduct virtual currency business. DFS quotes 23 NYCRR Part 200 as covering virtual currency business activity involving New York or a New York resident, including receiving / transmitting virtual currency, custody or control for others, buying and selling virtual currency as a customer business, exchange services as a customer business, and controlling, administering, or issuing virtual currency. DFS also quotes 23 NYCRR 200.3(a): “No Person shall, without a license obtained from the superintendent…engage in any Virtual Currency Business Activity.”

DFS states that a company’s FinCEN registration does not affect whether it requires a BitLicense, and that an out-of-state business must obtain a BitLicense if it engages in virtual currency business activity involving New York or a New York resident.

California DFPI states that the Digital Financial Assets Law creates a licensing and supervisory framework for certain crypto activities and that beginning 2026-07-01, companies must be licensed by DFPI or have applied for a licence to operate in California. DFPI states that DFAL prohibits engaging in digital financial asset business activity unless licensed, and that the activity includes exchanging, storing, or transferring a digital financial asset such as a crypto asset. DFPI also states that a person engaging in digital financial business activity with or on behalf of a California resident and not exempt must submit a DFAL licence application by 2026-07-01 to continue serving California residents.

Application: A national U.S. launch should map each state where users reside, where fiat rails operate, where custody is offered, where stablecoins are issued or distributed, and where marketing is targeted. New York and California require specific attention. A business may need FinCEN MSB registration, New York BitLicense or trust-company approval, California DFAL licensing, money-transmitter licences in other states, and separate state trust / custody approvals.

Limitations / counterarguments: This session does not provide a 50-state matrix. State rules differ on money transmission, virtual currency activity, exemptions, stablecoins, custody, surety bonds, permissible investments, net worth, control-person approval, and consumer disclosures.

Securities-law overlay: token classification, offerings, broker-dealer and exchange issues

Conclusion: Tokens, staking / yield programmes, tokenised assets, and marketplace services may trigger federal securities laws where the token or transaction is a security or investment contract.

Rule: The Securities Act defines “security” to include instruments such as notes, stocks, bonds, profit-sharing interests, and “investment contract.” The 2025 GENIUS amendment adds that a security does not include a payment stablecoin issued by a permitted payment stablecoin issuer as defined in 12 U.S.C. §5901. Securities Act section 5 generally makes it unlawful to sell securities through interstate commerce or the mails unless a registration statement is effective, and unlawful to offer securities unless a registration statement has been filed, subject to exemptions.

Howey defines an investment contract as a transaction or scheme where a person invests money in a common enterprise and is led to expect profits from the efforts of the promoter or a third party; the Court also states that the test asks whether the scheme involves investment of money in a common enterprise with profits to come from the efforts of others. The SEC’s 2026 release states that it does not supersede or replace Howey and that Howey remains binding legal precedent.

The Exchange Act defines “broker” as a person engaged in the business of effecting securities transactions for the account of others, “dealer” as a person engaged in the business of buying and selling securities for its own account as a regular business, and “exchange” as an organisation or group providing a marketplace or facilities for bringing together purchasers and sellers of securities. Section 5 of the Exchange Act makes it unlawful for a broker, dealer, or exchange to use an exchange facility to effect or report securities transactions unless the exchange is registered as a national securities exchange or exempted. A national securities exchange may be registered by filing an application with the SEC, and the SEC must determine that statutory requirements are satisfied.

Application: A token sale, airdrop, staking programme, yield product, tokenised share, tokenised debt instrument, fund token, revenue-sharing token, governance token with investment marketing, secondary marketplace, token ATS, or exchange listing must be analysed for securities status. Where securities are involved, potential consequences include Securities Act registration or exemption, broker-dealer registration, ATS / exchange regulation, transfer-agent, clearing, custody, investment-company, investment-adviser, marketing, and disclosure requirements.

Limitations / counterarguments: The SEC’s 2026 release is interpretive and states it does not itself create new legal obligations. It may guide SEC administration but does not replace statutes, rules, or binding case law. Classification depends on economic reality, purchaser expectations, promoter / issuer efforts, rights, transferability, decentralisation, marketing, proceeds use, functionality, network maturity, and secondary-market structure.

Stablecoins under securities law and the GENIUS Act

Conclusion: Payment stablecoins now have a federal statutory path under the GENIUS Act, but the framework is delayed and implementation-sensitive. Non-GENIUS stablecoins remain fact-sensitive under securities, commodities, banking, AML, sanctions, and state laws.

Rule: The GENIUS Act defines “digital asset” as a digital representation of value recorded on a cryptographically secured distributed ledger. It defines “digital asset service provider” as a person that, for compensation or profit, engages in the business in the United States, including on behalf of U.S. customers or users, of exchanging digital assets for monetary value, exchanging digital assets for other digital assets, transferring digital assets to a third party, acting as a digital asset custodian, or participating in financial services relating to digital asset issuance. It excludes categories such as distributed ledger protocols, self-custodial software interfaces, validation / ledger operation, and liquidity pools.

The GENIUS Act effective-date note provides that the Act and its amendments take effect on the earlier of 18 months after 2025-07-18 or 120 days after final implementing regulations. Section 5902 provides that it is unlawful for any person other than a permitted payment stablecoin issuer to issue a payment stablecoin in the United States, and beginning three years after 2025-07-18, digital asset service providers may not offer or sell a payment stablecoin to a U.S. person unless issued by a permitted issuer, subject to statutory exceptions and foreign-issuer rules.

Section 5903 requires permitted issuers to maintain identifiable reserves backing outstanding payment stablecoins at least 1:1 with specified reserve assets, disclose redemption policy and fees, and publish monthly reserve composition. Section 5913 requires primary federal payment-stablecoin regulators, Treasury, and state payment-stablecoin regulators to promulgate implementing regulations within one year after 2025-07-18.

The SEC’s 2026 release states that payment stablecoins issued by permitted payment stablecoin issuers will categorically not be securities by statute after the GENIUS Act effective date, while stablecoins other than payment stablecoins issued by permitted issuers may meet the securities definition depending on facts and circumstances.

Application: A U.S. stablecoin issuer or distributor should not rely on a generic “stablecoin is not a security” position. It should first determine whether the token is a GENIUS “payment stablecoin,” whether the issuer can be a permitted payment stablecoin issuer, whether reserves satisfy statutory asset requirements, whether redemption and fee disclosures comply, whether state or federal route applies, whether DSP distribution rules apply, and whether the token pays interest or yield. Non-payment stablecoins, algorithmic stablecoins, yield-bearing stablecoins, commodity-backed tokens, wrapped tokens, and asset-referenced tokens require separate securities, commodities, banking, state licensing, and sanctions review.

Limitations / counterarguments: The GENIUS Act is enacted but delayed in effectiveness. Final implementing regulations, state regulator rules, OCC / Federal Reserve / FDIC / NCUA interpretations, Treasury rules, and transition mechanics must be checked before publication or product launch.

CFTC / commodities and derivatives overlay

Conclusion: Digital assets that are commodities, or products referencing digital assets, can trigger CFTC analysis, especially for futures, options, swaps, leveraged retail commodity transactions, commodity pools, commodity trading advice, and market infrastructure.

Rule: The Commodity Exchange Act defines “swap” broadly to include agreements, contracts, or transactions based on rates, currencies, commodities, securities, instruments of indebtedness, indices, quantitative measures, or other financial or economic interests, subject to exclusions. CEA section 5 governs designated contract markets, and DCMs must satisfy core principles including rule compliance, contracts not readily susceptible to manipulation, market-disruption prevention, daily publication of trading information, financial integrity, market-participant protection, recordkeeping, system safeguards, and financial resources.

CFTC states that DCMs are boards of trade or exchanges operating under CFTC oversight under CEA section 5, and that any market seeking to provide a trading facility for non-eligible contract participants to trade futures, options on futures, or commodity options must apply to the CFTC for DCM designation unless an exemption or exclusion applies. CFTC also states that its oversight of commodity cash markets is limited but that it maintains anti-fraud and anti-manipulation enforcement authority over virtual currency cash markets as commodities in interstate commerce.

Application: A platform offering bitcoin or ether futures, perpetuals, swaps, options, margin, leveraged retail commodity transactions, prediction / event products tied to crypto commodities, or structured products referencing digital assets requires CFTC / NFA analysis. Potential routes include DCM, SEF, DCO, FCM, introducing broker, swap dealer, commodity pool operator, commodity trading advisor, retail commodity transaction, or exempt / offshore access analysis.

Limitations / counterarguments: Spot trading of non-security digital assets is not equivalent to operating a CFTC-licensed derivatives exchange merely because the asset is a commodity; CFTC’s own materials distinguish limited spot-market oversight from derivatives-market regulation. The result depends on leverage, margin, financing, delivery, eligible contract participant status, product economics, platform matching, custody, and customer location.

OFAC sanctions and cross-border digital-asset activity

Conclusion: OFAC sanctions compliance must be treated as a separate U.S. gate, especially for exchanges, custodians, wallet hosts, nested services, stablecoin issuers, payment providers, and cross-border flows.

Rule: OFAC FAQ 1021 states that all U.S. persons must comply with OFAC regulations regardless of whether a transaction is denominated in traditional fiat currency or virtual currency. It further states that U.S. persons, including virtual currency exchanges, virtual wallet hosts, and other service providers, are generally prohibited from engaging in or facilitating prohibited transactions, including virtual currency transactions in which blocked persons have an interest. Non-U.S. persons may also be subject to OFAC prohibitions where they cause or conspire to cause U.S. persons to violate sanctions or engage in evasive conduct.

OFAC also published industry-specific sanctions compliance guidance for the virtual currency industry as a resource covering sanctions requirements, licensing and enforcement processes, and best practices tailored for the industry.

Application: A U.S.-facing crypto business should implement sanctions screening of customers, beneficial owners, wallet addresses, counterparties, jurisdictions, IP and geolocation data, blockchain exposure, nested services, stablecoin transfers, custody accounts, and withdrawals. It should also maintain blocking / rejection procedures, OFAC reporting procedures, escalation workflows, and sanctions controls for updates to OFAC lists and sanctioned digital-asset addresses.

Limitations / counterarguments: OFAC obligations vary by sanctions programme and nexus. Non-U.S. persons can still create U.S. sanctions exposure through U.S. persons, U.S. infrastructure, U.S.-dollar payments, U.S. stablecoins, U.S. exchanges, or causing / facilitation theories. Product-specific sanctions analysis may require checking the relevant sanctions regulations and general licences.

Ready to launch legally?

Book a 30-minute consultation. We'll map your licensing path and tell you exactly what's required, in plain language.

Get Started