MiCA/CASP license
MiCA & CASP Readiness
for Crypto Businesses
Full-scope support for MiCA authorisation — regulatory assessment, AML/CFT frameworks, governance documentation, and financial preparation for CASP applicants in the EU.
Book a ConsultationWhat is MiCA — and who does it affect?
The Markets in Crypto-Assets Regulation (MiCA) is the EU's comprehensive regulatory framework for crypto-asset service providers. It entered into force in 2023 and applies to all businesses providing crypto-asset services to clients in the EU.
MiCA introduces a harmonised licensing regime across the EU, requiring businesses to obtain CASP (Crypto-Asset Service Provider) authorisation before offering covered services.
The regulation applies regardless of where the company is incorporated — non-EU businesses targeting EU clients are equally within scope.
- Custody and administration of crypto-assets
- Operation of a trading platform
- Exchange of crypto-assets for fiat or other crypto
- Execution of orders on behalf of clients
- Placing of crypto-assets
- Reception and transmission of orders
- Providing advice on crypto-assets
- Portfolio management in crypto-assets
- Transfer services for crypto-assets
Key Regulatory Requirements for CASP Authorisation
To obtain CASP authorisation under MiCA, businesses must demonstrate operational and regulatory readiness across four core areas.
AML/CFT Compliance
A fully operational AML/CFT programme aligned with AMLD6, the Travel Rule (TFR), and FATF standards — including KYC/EDD procedures, transaction monitoring, sanctions screening, and STR/SAR reporting. Template policies are not sufficient — regulators assess whether systems are operationally functional and proportionate to the business model.
Governance & Internal Controls
Robust governance structures and management body requirements, conflicts of interest policies, complaints handling procedures, outsourcing controls, and business continuity planning. MiCA sets specific requirements for how CASPs are managed and controlled internally.
ICT & Operational Resilience
Documented ICT risk management frameworks, operational resilience policies, and vendor and outsourcing assessments. CASPs must demonstrate that their operational infrastructure is appropriately managed and can withstand disruption.
Financial Viability & Own Funds
Adequate own funds and capital adequacy calculations proportionate to the class of CASP services. Financial projections, prudential safeguarding analysis, and stress-testing are required as part of the authorisation application package.
MiCA & CASP Compliance Services
We provide end-to-end support for MiCA authorisation — from initial regulatory assessment to submission-ready documentation.
MiCA Readiness Assessment
An in-depth review of your business model, operational structure, and service offering to determine MiCA applicability, CASP licensing classification, and readiness gaps.
- Business model analysis under MiCA
- CASP service classification
- Licensing jurisdiction assessment
- Regulatory gap identification
- Roadmap to authorisation
AML/CFT Framework for CASP
Operational AML/CFT systems aligned with AMLD6, FATF standards, and the Travel Rule — built to withstand regulatory scrutiny and banking due diligence.
- AML/CFT Policies & Procedures
- Enterprise-Wide Risk Assessment (EWRA)
- KYC & Enhanced Due Diligence (EDD)
- Transaction Monitoring Framework
- Travel Rule (TFR) compliance
- Sanctions screening controls
- STR/SAR escalation framework
- MLRO support
CASP Governance & Operational Documentation
Full governance documentation package required for CASP authorisation — internal controls, operational policies, and resilience frameworks.
- Governance framework documentation
- Internal control frameworks
- Outsourcing & vendor assessments
- ICT & operational resilience documentation
- Complaints handling procedures
- Conflicts of interest policy
- Business continuity planning
Financial Documentation for MiCA Application
Complete financial documentation package required by regulators — projections, prudential calculations, and stress-testing prepared to submission standard.
- Projected Balance Sheet
- Projected Profit & Loss Statement
- Projected Cash Flow Statement
- Own funds & capital adequacy calculations
- Prudential safeguarding analysis
- Financial viability & profitability analysis
- Stress-testing & scenario analysis
- Supporting financial assumptions & methodologies
End-to-End MiCA Authorisation Support
For businesses seeking complete support from initial assessment through to submission — we coordinate the full MiCA authorisation process as a single engagement.
Business model review, CASP classification, gap analysis, roadmap
AML/CFT framework, KYC/EDD, transaction monitoring, Travel Rule, sanctions
Internal controls, outsourcing, ICT resilience, operational policies
Financial projections, capital adequacy, prudential calculations
Factors affecting the final cost of services:
- Results of the Initial Case Assessment — determining the level of specialists' involvement in preparing the application and developing the required documents.
- Necessary Classes of services within CASP.
MiCA Authorisation Process
A structured approach from initial assessment through to authorisation and ongoing compliance.
Business Model Assessment
Analysis of services, target markets, token/payment flows, and jurisdictional exposure under MiCA.
Gap Analysis
Identification of licensing triggers, AML/CFT gaps, governance deficiencies, and documentation requirements.
Documentation
Preparation of AML/CFT frameworks, governance policies, financial projections, and operational procedures.
Application Support
Coordination of the application package, regulator interaction support, and submission preparation.
Ongoing Compliance
Post-authorisation AML governance, compliance monitoring, and regulatory maintenance support.
Frequently Asked Questions
-
Who needs a MiCA licence?Any business providing crypto-asset services to clients in the EU — including exchanges, custody providers, trading platforms, and portfolio managers — requires CASP authorisation under MiCA.
-
Does MiCA apply to non-EU companies?Yes. MiCA applies to businesses offering crypto-asset services into the EU market or targeting EU clients, regardless of where the company is incorporated. Territorial scope is determined by where services are offered.
-
What is the difference between MiCA and VASP?VASP (Virtual Asset Service Provider) is the FATF terminology used globally. CASP (Crypto-Asset Service Provider) is the EU classification under MiCA. Businesses in the EU must comply with MiCA/CASP requirements in addition to any FATF-based obligations in other jurisdictions.
-
How long does MiCA authorisation take?The competent authority has up to 25 working days to assess completeness of the application, and up to 40 working days to assess the application itself. Total timeline depends on business readiness and the quality of documentation submitted.
-
Can a company operate without MiCA authorisation while applying?Transitional arrangements vary by EU member state. Full CASP authorisation under MiCA is required to continue providing services across the EU on a permanent basis.
-
What AML/CFT obligations apply under MiCA?CASPs are subject to AMLD6 and the Travel Rule (TFR). This requires a fully operational AML/CFT programme including KYC/EDD, transaction monitoring, sanctions screening, and an appointed MLRO. Template policies are not sufficient — regulators assess whether systems are operationally functional.
-
Why is financial documentation required for MiCA?MiCA requires applicants to demonstrate financial viability, adequate own funds, and capital adequacy. This involves submitting projected financial statements, prudential calculations, and stress-testing analysis as part of the authorisation application package.
Preparing for MiCA Authorisation?
Whether you are assessing your MiCA exposure, building your compliance framework, or preparing the full application package — we can support your business from assessment through to submission.