The European Union’s Markets in Crypto-Assets Regulation – better known as MiCA – has crossed its most significant milestone yet. As of July 1, 2026, the grandfathering transitional period for crypto-asset service providers (CASPs) operating across EU member states has formally expired. Any business offering crypto exchange, custody, portfolio management, or advisory services to EU clients without a valid MiCA CASP authorisation is now operating outside the law.
For anyone tracking the evolution of digital asset regulation, the implications are sweeping. Publications covering fintech and regulatory intelligence have been flagging this deadline as the most consequential shift in European crypto compliance since the original AMLID directives – and the post-July landscape is already looking very different from what came before.
What MiCA Actually Requires
MiCA is not a light-touch registration regime. It is a full authorisation framework, modelled on the MiFID II structure that governs traditional investment firms across the EU. For CASPs, this means meeting specific requirements across governance, capital adequacy, operational resilience, cybersecurity, custody and safeguarding of client assets, and disclosure.
The authorisation must be obtained from a National Competent Authority (NCA) in any one of the 27 EU member states. Once granted, it provides EU-wide passporting rights — meaning a CASP licensed in, for example, Cyprus, Malta, or Lithuania can legally serve clients across all 27 countries without making separate applications in each jurisdiction. This passporting model is one of MiCA’s most commercially significant features and represents a major departure from the fragmented national VASP registration regimes that preceded it.
Capital requirements under MiCA vary by service class. Class I CASPs (providing advice or order reception) require a minimum of €50,000 in own funds. Class II providers (operating a trading platform or exchange) require €125,000. Class III, which includes custody and portfolio management on a discretionary basis, requires €150,000. These are baseline figures — NCAs can impose higher requirements based on individual risk assessments.
The Transitional Period: Who Was Protected and Who Was Not
The confusion around MiCA’s deadlines has been significant. The regulation technically came into full force on December 30, 2024. However, it included a grandfathering provision allowing existing VASPs – providers already operating lawfully under national regimes before that date — to continue operating for up to 18 months while they pursued MiCA authorisation.
The critical distinction is that this grandfathering was optional for member states, not mandatory. Each country chose whether to offer the full 18-month window, a shorter period, or no transitional period at all. Spain, for instance, opted for a 12-month window that expired in late 2025. Poland’s transitional period ended in May 2025. France allowed the full 18 months. The result was a patchwork of effective compliance deadlines that varied significantly depending on where a CASP was registered or operating.
As of July 1, 2026, all transitional periods across all 27 EU member states have now expired. There is no further runway. Any CASP without authorisation must either cease EU operations immediately or face enforcement action from its local NCA.
Who Is Now Authorised – and Who Isn’t
The pace of MiCA authorisation has been slower than regulators hoped. As of early 2026, approximately 40 CASPs had received full MiCA authorisation across EU member states, with the Netherlands, Germany, and Malta leading in issuances. Several high-profile applications remained under review, and a number of large exchanges were still relying on the transitional period right up to the deadline.
The European Securities and Markets Authority (ESMA) maintains a dynamic public register of authorised CASPs. Notably, it also published a list of over 35 non-compliant CASPs that were flagged by national regulators – including Italy’s CONSOB – for operating without proper authorisation or outside the scope of their existing registration.
For institutional counterparties, custodians, and banking partners operating with crypto businesses, the authorisation status of their CASP clients has become a due diligence requirement. A CASP without MiCA authorisation is now, by definition, an unregulated entity for EU purposes – and any institution onboarding or providing services to such a firm faces its own regulatory exposure.
The ESMA Perpetual Futures Ruling: An Additional Complication
The July 1 CASP deadline is not the only MiCA-related development creating urgency for crypto platforms in Europe. ESMA recently issued a public statement indicating that perpetual futures contracts are likely to fall under the definition of contracts for differences (CFDs) under MiCA and EU financial regulation more broadly.
If this classification is confirmed, the implications for leverage are severe. CFD regulations for retail clients in the EU cap leverage at 2:1 for cryptocurrency products. Several EU-based crypto platforms and newly-authorised CASPs have been offering up to 10:1 leverage on perpetual futures products, positioning them as a distinct category outside the CFD framework. An ESMA ruling that collapses this distinction would require those platforms to immediately restructure their retail offerings – or face enforcement action for breaching leverage limits.
TheCapitalVerse has published detailed analysis of both the CASP deadline and the ESMA perpetual futures issue, tracking how individual jurisdictions and platforms are responding in real time.
What This Means for Non-EU Crypto Businesses
MiCA’s reach extends beyond EU-incorporated entities. The regulation applies based on where clients are located, not where the service provider is based. A crypto exchange headquartered in Seychelles, the Cayman Islands, or Singapore is subject to MiCA if it actively markets to or accepts clients from EU member states.
This extraterritorial reach has significant practical implications. Non-EU exchanges that have not obtained MiCA CASP authorisation must either implement robust EU-client geoblocking (acceptable in practice but operationally complex), pursue authorisation through an EU-incorporated subsidiary, or exit the EU market entirely.
The third option – exit is increasingly common among mid-tier exchanges that lack the compliance resources for full MiCA authorisation. Several platforms announced EU client offboarding in late 2025 and early 2026, citing the cost and complexity of compliance as prohibitive relative to the size of their EU revenue.
For serious operators that want to maintain EU market access, the CASP authorisation route through Cyprus (CySEC), Malta (MFSA), or Lithuania (Bank of Lithuania) remains the most commercially attractive path. All three jurisdictions have developed established MiCA application processes, are open to new applicants, and offer the full EU-wide passport upon authorisation.
The Broader Regulatory Trajectory
MiCA does not exist in isolation. It sits within a broader global tightening of crypto regulation that includes the US CLARITY Act advancing through Congress, the UK’s own crypto regulatory framework under the Financial Services and Markets Act, Singapore MAS tightening its VASP requirements, and Australia’s expanded AUSTRAC Digital Currency Exchange registration regime.
The common thread across all these frameworks is a shift from self-certification and simple registration to genuine authorisation with ongoing supervisory oversight. The era of crypto businesses operating in regulatory grey zones – relying on the absence of rules rather than compliance with them — is definitively over in every major financial jurisdiction.
For businesses, investors, and professionals navigating this landscape, staying current on regulatory developments across multiple jurisdictions simultaneously has never been more important. Independent coverage of financial markets and fintech news – particularly in the regulatory licensing space – has become an operational necessity rather than an optional background read.
Conclusion
The MiCA CASP deadline of July 1, 2026 marks a genuine before-and-after moment for the European crypto industry. The transition from fragmented national VASP registrations to a single, rigorous EU-wide authorisation framework is now complete. For authorised CASPs, this creates a significant competitive moat and a passport to serve 450 million EU consumers. For the unauthorised, it means immediate legal exposure and a choice between authorisation, client offboarding, or enforcement.
The regulatory window has closed. The compliance work begins now.
