EST · MMXXVI
Home/Jurisdictions/Eu Mica/EMI licence for crypto firms in European Union (MiCA)
Licensing & Registration

EMI licence for crypto firms in European Union (MiCA)

Emi licence for crypto firms in European Union (MiCA). Cross-border digital-asset legal counsel for business – licensing, disputes and structuring. Talk to OBOL

EMI licence for crypto firms in European Union (MiCA)

Operating a crypto business that touches euro-denominated settlement, stablecoin issuance or fiat on-and-off ramps inside the European Union now requires two overlapping authorisations to work together: the CASP (Crypto-Asset Service Provider) authorisation under MiCA (Markets in Crypto-Assets Regulation), supervised by ESMA and national competent authorities, and, where the firm issues or redeems e-money tokens or handles client fiat, an EMI licence (Electronic Money Institution licence) under the EU's e-money regime. Getting one without the other is a structural gap that regulators are already closing. This page sets out the regulated basis for each instrument, how the two interact for a crypto firm, the inbound application process, the cross-border reality, and the decision point every operator must reach before committing capital to an EU structure.

The process above is the standard path. Your facts – the entity, the user base, the banking – change the analysis. For a scoped assessment of your EU licensing position, contact OBOLUS at info@oboluslaw.com. Map your options

What an EMI licence means for a crypto firm under MiCA

An EMI licence authorises a firm to issue electronic money – a digital store of value backed by fiat – and to provide payment services. For a crypto firm, the immediate relevance is this: if your product involves issuing an EMT (e-money token, a stablecoin pegged to a single fiat currency) or holding client fiat ahead of conversion, you are in scope of the e-money regime as well as MiCA. ESMA's position, consistent with how national competent authorities across the EU are reading the dual-instrument question, is that an EMT issuer must hold an EMI licence or a credit institution authorisation. A CASP authorisation alone does not cover it.

This matters practically. A crypto exchange that settles in USDC or a proprietary euro stablecoin, accepts euro deposits and converts them on instruction, or maintains prefunded user balances in fiat is performing e-money functions. The label the firm applies to its product is irrelevant. Substance governs classification under both the e-money regime and MiCA's token framework.

In our practice, operators routinely underestimate this overlap. They structure for CASP authorisation, pass their whitepaper review, and then discover that their treasury function or their fiat gateway requires a separate regulated entity. Rebuilding that structure post-authorisation is expensive and delays market entry.

How the CASP authorisation and the EMI licence interact

The MiCA CASP authorisation and the EMI licence are issued under distinct legal regimes, by different competent authorities, and they serve distinct purposes – but for many crypto firms they must run in parallel. The CASP authorisation covers the crypto-side activities: exchange, custody, portfolio management, advisory, transfer and settlement of crypto-assets. The EMI licence covers the fiat and e-money side: issuance, redemption and payment services.

A firm offering a fiat-to-crypto exchange, a euro-pegged stablecoin, or a crypto wallet that holds fiat balances between transactions will typically need both. The question is whether those activities sit in the same legal entity or are structurally separated. Either approach is architecturally viable. Each carries different capital consolidation implications, different supervisory relationships and different passporting mechanics.

Passporting under MiCA allows a CASP authorised in one EU member state to operate across the entire EU and EEA on a notification basis. EMI passporting works in the same direction under the e-money directive as implemented across member states. Running both instruments in one entity from a single member state therefore gives a firm full EU market access on both the crypto and payment layers – which is why the two-instrument structure is increasingly the operational template for serious EU crypto entrants.

Which crypto firms actually need an EMI licence in the EU?

Not every crypto firm operating in the EU needs an EMI licence. The need turns on whether the firm's activities engage the regulated definition of electronic money issuance or regulated payment services. The clearest positive cases are: firms issuing an EMT (a fiat-pegged stablecoin) under MiCA, firms holding prefunded client euro balances in a wallet product, and firms providing fiat payment rails as part of their exchange or remittance offering.

Firms that are purely crypto-to-crypto – no fiat on-ramps, no stablecoin issuance, no client fiat balances – will generally fall within CASP authorisation only. However, the line between "crypto settlement" and "payment service" is narrowing as regulators in several member states have adopted expansive readings of what constitutes a payment service in the digital-asset context.

A common mistake is to rely on a third-party payment processor or a banking partner to "hold" the e-money function, and to assume that arrangement removes the licensing requirement from the crypto firm. Where the crypto firm controls the user relationship, sets the account terms and decides the float, that argument is fragile. We regularly advise clients to test the substance of their banking arrangements before relying on a third-party exemption.

What does the EU inbound licensing process look like?

The inbound application process for a combined CASP and EMI structure in the EU has four main phases, and operators should plan for meaningful time at each before assuming a live date. The phases apply regardless of which member state is selected as the home jurisdiction.

Phase one – pre-application structuring. The firm selects an EU member state, establishes a local entity with genuine substance (physical presence, qualified management and a real compliance function are expected by serious NCAs), and prepares the regulatory business plan and the organisational and governance documentation. For EMI specifically, this includes the payment services programme of operations and the safeguarding policy for client funds.

Phase two – application submission. CASP authorisation is submitted to the relevant NCA (the MiCA home-state competent authority). The EMI application is submitted under the member state's implementation of the e-money regime. The two applications can run in parallel where the NCA has capacity to handle them concurrently – but in our cross-border practice we have seen member states impose a sequencing requirement, taking the EMI first.

Phase three – supervisory dialogue. Both processes involve substantive dialogue with the NCA: questions on compliance programme, AML/CFT controls, IT and cybersecurity, governance and the fitness-and-propriety assessment of key personnel. CASP applications also require alignment with ESMA's technical standards on disclosure and whitepaper obligations if the firm will issue or offer crypto-assets in addition to providing services. Timeline at this phase varies by NCA and by the completeness of the initial submission – it is typically measured in months, not weeks.

Phase four – authorisation and passporting. Once authorised, the CASP passporting notification to target member states is a procedural step. EMI passporting follows its own notification channel. Both should be filed before commercial launch in any market beyond the home state.

A freshness note on current conditions: as ESMA and national competent authorities continue refining their MiCA supervisory expectations, the NCA that offered the fastest path in earlier years may not be the fastest today. We map current NCA posture before recommending a home-state selection.

Cross-border tax and banking: what changes at EU scale

Holding both a CASP authorisation and an EMI licence in the EU does not solve the banking problem – it reframes it. European banks remain selective about crypto counterparties even where the counterparty is fully licensed. The EMI licence helps, because it demonstrates that the firm is a regulated financial institution subject to equivalent AML/CFT obligations, and many corporate banking desks treat that status differently from an unlicensed crypto firm. But it is not automatic.

In our experience, the firms that open operating accounts successfully at EU banks after EMI authorisation are those that can demonstrate stable governance, a documented compliance programme, and a management team that understands the regulatory conversation. Banks still conduct their own due diligence. Timeline from EMI authorisation to a functioning banking relationship varies by institution and by the firm's profile.

On the tax side, an EU CASP/EMI entity will be subject to corporate income tax in its home member state, and in any member state where it has sufficient substance to create a permanent establishment. The EU does not harmonise direct taxation, so the choice of home state carries real tax consequences. VAT treatment of crypto services also varies across member states, though the general principle – derived from EU Court of Justice guidance – is that exchange of crypto for fiat is exempt from VAT. Stablecoin issuance and related payment services sit in a more nuanced position. Neither figure should be assumed without jurisdiction-specific tax analysis.

For a firm structured with an operating entity in one member state and a holding entity outside the EU – a common pattern for founders outside Europe – the transfer-pricing, thin-capitalisation and controlled-foreign-corporation rules of the home member state apply. Planning that structure before entity formation is materially cheaper than correcting it after the fact.

If a prior application stalled or a banking relationship closed, a second read can surface the structural reason and the route back. Map your options

Which structure fits which operator profile?

The right EU structure depends on what the firm actually does, not on what structure is cheapest or fastest in isolation. The following profiles capture the most common decision points we work through with operators entering the EU market.

Profile A – Pure crypto-to-crypto exchange or custody provider. This operator needs a CASP authorisation from a home-state NCA, with passporting to cover the full EU user base. An EMI licence is not required unless the firm adds fiat services later. The primary timeline risk is NCA processing capacity and the completeness of the governance documentation. The primary structural risk is thin substance in the home-state entity.

Profile B – Fiat on-and-off ramp with crypto exchange. This operator needs both CASP authorisation and either an EMI licence or a banking licence, or a contractual arrangement with an existing licensed payment institution that does not transfer the regulatory risk. The dual-authorisation path is the cleaner long-term position. The timeline is longer than Profile A and the capital requirement is higher because the e-money regime imposes its own minimum own-funds requirements. Budget and timeline should reflect both instruments.

Profile C – EMT issuer (euro stablecoin). MiCA imposes specific authorisation and disclosure obligations on EMT issuers, including the requirement to hold a credit institution or EMI authorisation. This is the highest-compliance-intensity entry point into the EU market. Reserve management, redemption rights and issuer capital are all regulated. Operators in this profile should not assume that a CASP authorisation covers the issuance function.

Profile D – Token issuer making a public offer in the EU (other crypto-assets). MiCA's whitepaper and disclosure obligations apply. CASP authorisation is not required for a pure issuer, but if the firm also provides exchange or advisory services in connection with its token, the CASP perimeter is engaged. Tax treatment of token sale proceeds and the securities-versus-utility classification question require separate analysis before any public offer.

What are the most common structural mistakes when applying for an EMI licence as a crypto firm?

The most common mistake is treating the EMI application as a compliance exercise rather than a structural one. Firms submit governance documentation, appoint a compliance officer and believe the substance requirement is met. Regulators in leading EU member states – and ESMA in its MiCA supervisory expectations – look harder than that. They look at where decisions are actually made, where senior management is resident, and whether the AML/CFT programme is genuinely operationalised or is a document that lives in a folder.

A second common mistake is applying to a member state on speed alone. Timeline does matter, but the NCA relationship and the supervisory environment matter more over the life of a licence. A faster initial authorisation from a less-resourced NCA can result in ongoing supervisory friction and reputational risk that outweigh the time saved at application.

A third mistake is filing the EMI and CASP applications without a clear passporting plan. EU regulatory authorisation without a thought-out cross-border operating model – which member states, what activities, what local substance requirements apply – produces authorisations that cannot be used at scale.

We have seen each of these play out in practice. A recent matter involved a payment-focused crypto firm that had obtained CASP authorisation in one EU member state but had not engaged the fiat-layer licensing question. By the time the firm's banking partner flagged the regulatory gap, it had already onboarded clients in several other member states. We worked through the structural options for retrofitting an EMI authorisation into the existing entity, assessed the notification obligations in each member state where the firm was already operating, and prepared the remediation submission to the home-state NCA. The matter resolved without enforcement action, but the retrofit cost – in time, fees and management distraction – was substantially higher than proper upfront structuring would have been.

AML, the Travel Rule and ESMA's supervisory expectations

Both the CASP regime and the EMI regime carry AML/CFT obligations that are non-negotiable across the EU. Under the applicable FATF-aligned provisions, a Travel Rule (the obligation to pass originator and beneficiary data with a virtual-asset transfer) applies to VASPs and, under the EU's transfer-of-funds regulation as extended to crypto-assets, to CASPs. This means that the compliance programme for an EU-licensed crypto firm must include transaction monitoring, Travel Rule data capture and transmission, and wallet screening as minimum operational requirements.

ESMA and national competent authorities are conducting thematic supervisory reviews of CASP compliance programmes. The expectation is that a firm is not merely registered but is operationally compliant from day one of authorisation. Firms that obtain authorisation before their compliance technology stack is ready create regulatory risk in the period between authorisation and operational readiness.

For EMI-licensed entities providing fiat payment services, the AML/CFT obligations are at least as demanding as for CASPs, and the transaction monitoring requirements for fiat rails are often more prescriptive. Running both regimes in one entity means maintaining a compliance programme that satisfies both supervisory frameworks simultaneously – which requires a compliance function with genuine breadth across both crypto and payments regulation.

Related at OBOLUS

FAQ

How long does a crypto licence take to obtain?

Timeline varies significantly by jurisdiction, licence type and NCA capacity. Under MiCA, a CASP authorisation is intended to be processed within a defined window after a complete application is submitted, but in practice NCA review periods depend on application quality and supervisory workload. An EMI licence runs on a separate track and adds its own processing time. Combined EU structures should be planned on a multi-month horizon. We assess current NCA processing times as part of our pre-application scoping.

Which jurisdiction is best for licensing my crypto business?

There is no single best jurisdiction. The right home state for a MiCA CASP authorisation depends on the firm's activity profile, its banking requirements, the availability of local qualified management, the NCA's current appetite and processing capacity, and the firm's tax objectives. A jurisdiction that is optimal for a pure-crypto exchange may be a poor choice for an EMT issuer. We map the full stack – licence, banking, tax and ongoing supervision – before recommending a home-state selection.

Do I need a separate custody licence?

Under MiCA, custody and administration of crypto-assets on behalf of clients is a regulated CASP activity. A firm that provides custody must include that activity in its CASP authorisation. Whether custody must sit in a separate legal entity depends on the firm's overall structure, the capital requirements applicable to its other CASP activities, and any additional requirements imposed by the home-state NCA. A combined exchange-and-custody structure in one entity is possible under MiCA but requires that the authorisation scope and the compliance programme cover both activities explicitly.

About OBOLUS

OBOLUS is an independent digital-asset law boutique acting only for businesses. We advise exchanges, custodians, token issuers and funds on licensing across 70+ jurisdictions, on disputes and on-chain asset recovery across 25+ forums, and on the tax, banking and compliance that sit around them. Digital assets are the whole of our practice. We map the licence stack across operating, custody and payment layers before you commit – so that the structure you build is the one that scales. We advise crypto exchanges, custodians, token issuers and funds across more than seventy licensing jurisdictions. To discuss your situation, contact info@oboluslaw.com or message us at t.me/oboluslaw.

Ready to map your EU licence and payment stack? Write to OBOLUS at info@oboluslaw.com or message us via t.me/oboluslaw. Map your options

By Aisha Tan, Licensing & Jurisdictions Analyst – specialising in EU MiCA CASP and EMI authorisation structures for inbound crypto operators.

This publication is general information about the law and does not constitute legal advice. It is not a substitute for advice tailored to your circumstances. OBOLUS accepts no liability for action taken or not taken on the basis of this material. For advice on your situation, contact info@oboluslaw.com.

Tell us the task — we'll map your options in 30 minutes.

Fixed-fee packages with defined scope and SLAs. The first call is free and under NDA. Business clients only.

Map your optionsinfo@oboluslaw.com · t.me/oboluslaw · reply < 2 hours