An Overview of the European Markets in Crypto-Assets Regulation (MiCAR)

Abstract

The EU has enacted its first, structured and complete legislation on crypto-assets, substantiated in the Markets in Crypto Assets Regulation, which has become fully effective as of the end of 2024. With this Regulation, which constitutes a new, large pillar of the Union’s financial legislation, the EU finds itself in a unique position, also on a geopolitical level, as it now constitutes the sole multi-state geographic area endowed with a homogeneous and uniform discipline (as directly applicable in the Member States) on markets in crypto-assets. This paper intends to provide an overall illustration of the structure of the MiCA Regulation and its rationale, highlighting some of its major interpretative issues, including taxonomy, definitions, and interplay with national legislations, also with the aim of stimulating further research.

Summary

1. Crypto-assets: the European Union’s response to a global phenomenon. 1.1. From the market . . . to regulation - 2. The objectives of MiCAR. - 2.1. Some reflections on what MiCAR does not regulate. 2.2. Taxonomy and objective scope of MiCAR. 2.3. The “internal” boundaries of MiCAR. - 3. The subjects governed by the Regulation. - The special regime for ARTs and EMTs issuers, between transparency and prudential supervision - 4.1. Specific obligations for issuers of ARTs. - 4.2. Reserve of assets and own funds. - 4.3. Issuers of significant ARTs. - 4.4. Issuers of EMTs (significant and non-significant) - 5. Crypto-asset service providers and the so-called ‘mifidization’ of MiCAR. - 5.1. The rules of conduct. - 6. MiCAR and market abuse. - 7. Concluding remarks.

I. Crypto-Assets: The European Union’s Response to a Global Phenomenon

Much has been written and said, in recent times, on the innovations induced, in various spheres, and in particular in the financial sector, by IT development and new technologies, and on the ethical, social, economic and legal issues they raise. In financial markets (understood in the broadest sense), full-bodied technological innovations—generically, and quite roughly, identified with the very broad term Fintech—manifest themselves in multiple and changing forms and structures. In a panorama of great complexity, two specific phenomena have recently polarized the debate on the relationship between technology and markets: on the one hand, artificial intelligence (AI) and on the other, Distributed Ledger Technology (DLT), or Blockchain.

Leaving aside the first phenomenon—now subject to a robust legislative intervention, of a horizontal nature, in Europe—in this paper we focus on the regime recently introduced in the Union concerning crypto-assets: a new legislation enacted a few years after the development—at times impetuous, even irrational—of a global crypto market, and that is now, at least in Europe, being brought back into the meshes of a regulatory approach marked by the features of (more traditional) financial regulation.

The purpose of these notes is to provide an overall illustration of the structure of the MiCA Regulation, highlighting some of what we believe to be its major interpretative issues, without, however, any claim to completeness. The complexity of the subject matter and the vastness of the fields affected by the Regulation, coupled with the very substantial Level 2 legislation to be adopted, certainly do not allow us to address all possible issues. The aim, therefore, is to provide a not entirely unqualified “guide to mariners,” also to indicate further possible avenues of research.

A. From the Market…to Regulation

In everyday language, and given the outspread of the phenomenon, colloquial terms such as ‘cryptocurrencies, digital currencies, Bitcoin,’ etc., are now widely used. However, in many legal systems, legislators, supervisory authorities, and even supranational bodies are still addressing the problems and challenges posed by crypto-assets with an attempt of hopefully providing a response that ought to be as coordinated as possible, and even based on common principles. The EU, less hesitant, is now moving ahead with a regulation designed to be comprehensive and organic.

The resounding (not entirely unexpected), failures that occurred between 2021 and 2023 showed the fragility of a market that—in stark contrast to the vaunted autonomy of technology (the well-known adage coined by Lawrence Lessing in 1999, “code is law”) and the alleged ability of markets to regulate themselves (a recurring blunder in the historical dynamics of financial markets)—is unable to develop in an orderly manner absent a structured robust, regulatory and supervisory framework. The expression ‘crypto-winter’ was coined to refer to a particularly dark phase in the development of these markets, after which the only possible solution is a legislative response that is as decisive and coordinated as possible, possibly even at transnational level.

The EU has now enacted its first, structured and complete legislation on crypto-assets, substantiated in the Markets in Crypto Assets Regulation (MiCAR or also MiCA, according to the acronyms now widespread in the literature). With this Regulation, which constitutes a new, large pillar of the Union’s financial legislation, the EU finds itself in a unique position, also on a geopolitical level, as it now constitutes the sole multi-state geographic area endowed with a homogeneous and uniform regime (as directly applicable in the Member States) on markets in crypto-assets.

In this evolution, one can read, on the one hand, the attention and care that EU institutions have devoted to a phenomenon that risks seriously affecting the interests, and therefore the protection, of users and consumers —defined, in MiCAR, by the term ‘retail holders’—as well as financial stability itself; on the other hand, the Union’s intention to become the standard-setter of the rules on crypto-assets at a global level, and to be at the forefront of their development, acting as a pole of attraction for operators in the sector: in short, a Brussels effect in crypto-assets markets.

It is, therefore, no coincidence that, unlike almost all other legislative texts that form the composite framework of EU financial law, the Regulation does not contain provisions that open up to cooperation, passporting, or even to some kind of ‘dialogue’ with third countries: a clear, fundamental choice, which, together with the speed of the legislative intervention (at least compared to other relevant jurisdictions, and even taking into account the timeframe—probably too long—for the entry into force of MiCAR, 30.12.2014) certainly does not go unnoticed.

II. The Objectives of MiCAR

Why is it necessary (and not only appropriate) to regulate crypto-assets and their markets? The question has been raised countless times, and this is not the place to re-frame the entire debate. But, to understand the reasons for the choices that moved the EU legislator, it might be useful to (very briefly) rewind the tape of history.

The birth of the crypto-asset phenomenon is famously traced back to the appearance of Bitcoin in 2009, which, at the time, presented itself as a project that was not only innovative from a technological point of view, but also in terms of its aims and objectives: in the white paper published by the promoter of the technology (the now mythical Satoshi Nakamoto, of uncertain origins and, perhaps, even existence) Bitcoin was singled out as a project whose main objective was the disintermediation of official currencies, giving rise to a means of payment issued and managed in a completely decentralized manner. Hence, also, the tendency to exhaust the entire phenomenon in that of the so-called ‘crypto-currencies’ according to a perspective that is now completely blurred, given that the phenomenon itself is certainly not limited to ‘tokenized’ means or instruments of payment. Against the backdrop of an ideological message centered on the democratization of global finance, the idea was that crypto-assets not only Bitcoin but all those emulating its design—would have freed the financial market from the burden and weight of intermediation, giving rise to much more efficient and less costly markets, without central authorities. This idea, accompanied by theorizations on smart contracts, which were initially entrusted with the ‘thaumaturgical’ mission of substituting law with computer codes, in essence vaticinated a free financial world, capable of self-regulating itself and achieving very high levels of efficiency, thanks to and by virtue of the use of distributed ledger technologies.

That utopia, however, soon turned out to be illusory because in the face of the impetuous development of these markets, in many regions of the world, risks and problems emerged that were not at all so different from those that characterize the more traditional financial industry: information opacity; protection of weak counterparties; asymmetries; market inefficiency and risks of manipulation; financial stability risks, even at systemic level; fraud and, as noted, the well-known risks related to money laundering. In fact, from the very beginning, market developments in a mostly deregulated environment were characterized by failures and even frauds. The attention of legislators and supervisory authorities was nonetheless particularly intense from the outset. The resounding defaults of the crypto winter, culminating in the failure of the ‘FTX’ exchange, were only the most obvious examples of a long series of pathological phenomena that, from the outset, should have prompted a regulatory response both in Europe and elsewhere.

The idea of moving towards regulating crypto-assets first appeared in Europe as part of the EU Commission’s ambitious Digital Finance Strategy project. In that context, on September 24, 2020, the Commission formulated the first proposal for the Regulation on markets in crypto-assets, to which two other seemingly ‘minor,’ but equally important regulations are linked: on the one hand, the satellite proposal ‘Pilot-Regime for DLT-based Market Infrastructures,’ focused on enabling the use of distributed ledger technology in capital markets, and, on the other hand, the ‘Digital Operational Resilience Act’ (so-called DORA), aimed to provide digital operational ‘robustness’ for the financial sector. After an articulated debate, and—in the meantime—the approval of the DLT Pilot Regime and DORA Regulations, in a context shaken by resounding global market failures, the pandemic, and an unstable geopolitical environment, the final text of the MiCA Regulation was published in the Official Journal on June 9, 2023, which as mentioned, became fully effective on December 30, 2024.

The reasons justifying this massive regulatory intervention from the EU are all well described and set out in the Recitals, and clearly reflected in the body of the text: legal certainty, support to innovation, users’ protection, market integrity, financial stability, risk mitigation also in terms of the transmission channels of monetary policy, and even protection of monetary sovereignty. A mix, in short, of macro- and micro-prudential objectives, but also of informational efficiency of markets and the protection of consumers. The reasons for which, today, it has been decided to regulate crypto-assets are, therefore, multiple, articulated, but strongly interconnected, in the awareness that it is not only a matter of managing and dealing with the risks involved, but also of not hindering the development of a technology that, to the contrary, may be the harbinger of developments in a positive sense.

Awareness of the multi-dimensionality of the phenomenon, and its extreme complexity, are therefore at the heart of the MiCA Regulation: a regulatory text that stands out for the courage of its choices and the clarity of its intentions, in an international context that, by contrast, is generally still characterized, despite some interesting national experiments (see inter alia, Malta, France, Singapore, Luxembourg, Germany) by many uncertainties as to what to do and how.

This is certainly not meant to conceal difficulties and problems. The MiCA Regulation is not free of shortcomings and uncertainties: one finds in it the typical huge gaps that often characterize the texts that compose the galaxy of the Union’s financial legislation; one can readily see the compromises, the short-term choices, the tendency to postpone, and to move further down the line the definitive solution to major issues (such as those that deal with “truly” decentralized finance). All of this, however, does not draw away the fact that MiCAR constitutes, as of today, the most complete, articulated and comprehensive regime in the world for markets in crypto-assets, which gives rise to a system of rules far more advanced than the uncertain and casuistic approaches that characterize the very markets from which the phenomenon originated, starting with the United States, where there are still attempts to govern the phenomenon through a form of harsh, but stuttering, regulation by enforcement.

A. Some Reflections on What MiCAR Does Not Regulate

A preliminary remark is necessary, also in order to clear the field from any misunderstandings. The Regulation is not able to regulate all matters gravitating around the universe of crypto-assets, let alone new technologies.

Firstly, despite what, at first glance, one might gather, the MiCA Regulation does not regulate crypto-assets as such, but only their markets, i.e., the phenomena comprising their offer, negotiation and exchange, as well as the provision of services related to the foregoing Nor does one find, in MiCAR, a regulation of smart contracts, which constitute the instrument that enables the conclusion of transactions on DLT, and which represent, so to speak, the lifeblood of trading on these systems.

The regulation of these matters is, therefore, left to national legislators, being, moreover, closely connected with topics that are mostly outside the competence of the European legislator: in particular, private law, contract law, private remedies, company law, or insolvency law, to name but a few. In this sense, MiCAR represents an (almost perfect) homologue, in the sphere under discussion, of the MiFID regime and, not by chance, shows affinities with the latter in its very title (and acronym): both, in fact, aim to regulate not products but their relevant markets. Ultimately, just as one does not expect to find in MiFID a regulation of individual financial instruments as such—specifically, shares, bonds, participative financial instruments, units of collective investment undertakings, emission allowances, derivatives, etc.—similarly, one does not find a regulation of crypto-assets as such in MiCAR. As was already the case in the context of MiFID, this approach naturally runs the risk of leading to misalignments and fragmentations between national legislations, also accentuating—given the global nature of the phenomenon of crypto-assets—the problems connected with international law: these are, however, limits that, in truth, cut across almost all areas of financial regulation in the Union, and which should not come as a surprise, even if it is necessary to point out the relative shortcomings.

At the same time, the MiCA Regulation is an experiment of considerable interest, not only because it aims to regulate a new market, which in fact has arisen from (or produced by, one might say) new technologies, but also because, in doing so, it makes use, in its various areas, of the vast array of concepts, notions, approaches and methods that can be found in the context of the broader EU financial discipline. Depending on the different matters at stake, one finds in MiCAR a kind of condensation of the main foundational texts of EU financial law, starting with those on credit institutions, investment services providers, market abuse, and several others. This leads to a true exercise of cross-sectoral regulation (albeit precipitated in a single area) that has no parallel in EU financial law. For instance, with regard to the issuance of crypto-assets and their offer on the market, the model followed by MiCAR is that of public offers and of the Prospectus Regulation, although adapted and simplified to take into account an already established market practice (the so-called white paper). As for the regime applicable to crypto-asset service providers, the most obvious reference model is, instead, MiFID, from which structures, notions, regulatory and supervisory approaches are directly imported.

Regarding trading platforms, the model is once again MiFID (with respect to trading venues), which is combined under MiCAR with an adapted version of the market abuse regime, as drawn from the Market Abuse Regulation (MAR). Finally, concerning crypto-assets with a payment function (i.e., as will be seen, asset-referenced tokens and e-money tokens), the reference is (again) the prudential regulation of credit institutions and electronic money institutions. All these approaches now converge in a single text, sometimes even applying cumulatively, as for instance in the case of entities both issuing payment tokens on the market (ARTs and EMTs) and offering related services.

But even in the above-mentioned context, MiCAR’s approach is not entirely complete. The Regulation, in fact, does not govern the phenomena falling within the realm of fully decentralized finance (the so-called DeFI): the reason is that in decentralized structures it is difficult, or even impossible to identify a subject, or potentially a group of subjects, which, in the capacity of ‘issuers’ or ‘service providers’ can be the addressees of the rules now introduced. What lacks, therefore, is the reference that has always underpinned the typical regulatory approach in EU financial law, still oriented towards regulating and supervising an identified subject (or group of subjects). This distancing from decentralized finance, however, risks creating difficulties, as it could lead certain organizations to offer crypto-asset services on the market without being authorized, for the mere fact of possessing, precisely, decentralized structures. In this regard, nonetheless, the Regulation provides for a closing rule: Article 59(3) states that ‘For the purposes of paragraph 1(a), other undertakings that are not legal persons shall only provide crypto-asset services if their legal form ensures a level of protection for third parties’ interests equivalent to that afforded by legal persons and if they are subject to equivalent prudential supervision appropriate to their legal form’. Clearly, the issue concerns the interpretation of the notion of ‘undertaking/enterprise’, which will have to be better defined, both by the supervisory authorities and, possibly, by the Courts, taking into account the actual degree of decentralisation of the phenomenon.

In light of the protean nature of crypto-assets, and the multiple functions they can perform, another fundamental choice that the European legislator had to make in the context of MiCAR relates to the rules applicable to those crypto-assets which, following a functional approach, coincide with products/assets already regulated by EU financial law: one might think, for example, of a share issued by a corporation, using DLT technology: financial instrument (at least potentially), on the one hand; crypto-asset, on the other. In such case, the choice is to follow an approach marked by the so-called principle of ‘technological neutrality’: beyond the form and manner used to issue the instrument, that share remains, to all intents and purposes, an “object” already known to, and regulated by, EU financial law and, therefore, is excluded from the MiCA Regulation. In this sense, all crypto-assets that, in substance, qualify as financial instruments as defined by MiFID do not fall within the scope of the MiCA Regulation, as they are, in fact, already regulated by MiFID itself, as also now clearly stated Art. 18 the DLT Pilot Regulation, that directly modified the relevant MiFID definitions to clarify that the term “financial instrument” includes instruments issued by means of distributed ledger technology.

This principle, however, is subject to some tempering: first of all, and in partial misalignment with what has been observed above, MiCAR regulates the issuance and circulation of electronic money issued in the form of tokens, despite the fact that EU law already provides for a specific, and substantial, regime (the E-Money Directive or EMD, now in its second version). On top of that legislation, however, MiCAR introduces its own, and additional, rules, according to an approach that, while justifiable in terms of rationale, calls into question the underlying logic of the Regulation, reducing the principle of technology neutrality to a simulacrum. Secondly, it is not entirely true that the (technological) form of an instrument is (tendentially) irrelevant in terms of regulation, as the DLT raises new and complex issues that were ignored in the pivotal texts of EU financial markets law. In this sense, MiCAR is accompanied, inter alia, by the DLT Pilot Regulation, which formulates a sandbox, providing for a transitional and derogatory regime of the MiFID, MiFIR, and CSDR rules, motivated precisely by the technological peculiarities of the new phenomena.

B. Taxonomy and Objective Scope of MiCAR

It is pertinent to first approach MiCAR by identifying its scope of application, in particular starting from its objective scope and from the issues of taxonomy that arise therefrom.

On this point, the Regulation takes advantage of the broad debate that, also at an international level, preceded its enactment, and of the standards adopted by some jurisdictions that, in this field, were real first movers in imagining a taxonomy of crypto-assets, most notably Switzerland. In fact, Article 3 MiCAR identifies the crypto-assets subject to its scope by adopting, as a first approximation, an approach generally in line with established practices and opinions.

First, the Regulation sets forth a general definition of crypto-assets, meaning ‘a digital representation of a value or right that can be transferred and stored electronically, using distributed ledger or similar technology’. The wording is notably very broad, as it evokes not only DLT, but also similar technologies, which may obscure the exact content of the definition and make its approach uncertain. But such a term should be viewed under a positive lens: on the one hand, in fact, the definition is not open to any technologies other than DLT, but only to those that are ‘analogous’ to it; on the other hand, it is a more than opportune, if not even necessary, provision to allow for adequate regulatory flexibility, in the face of (often unexpected and unforeseeable) evolutions of technology. Where, on the other hand, the Regulation had limited its scope of application only to a specific technological form, it would have conferred on the DLT a general legitimacy and a sort of consecration at the European level that would have been entirely undesirable and would have made itself impervious to future innovations.

Secondly, and downstream from this initial definition, MiCAR expressly defines three types of tokens, namely:

1. tokens with a payment function, named asset-referenced tokens (ART), in fact similar to the so-called stablecoins well known in the practice and specialized literature;
2. e-money tokens (EMT); and
3. utility tokens, which refer to a type of crypto-asset designed solely to provide access to a good or service supplied by its issuer.

This seemingly simple list should be approached with two major caveats: (i.) it could seem, at first, that MiCAR applies exclusively to these three types of crypto-assets, but, in fact, this is not the case (see below); (ii.) the exact scope of MiCAR must be construed primarily in the negative, i.e., by subtracting what is already covered by other EU financial law regimes.

In this last perspective, Art. 2(4) formulates a long list of assets excluded from MiCAR, specifying that MiCAR does not apply in relation to them, namely:

(i.) financial instruments; (ii.) bank deposits, including structured deposits; (iii.) funds, except where they qualify as e-money tokens; (iv.) securitization positions in the context of a securitization; (v.) non-life or life insurance products falling within the classes of insurance listed in Annexes I and II of Directive No. 2009/138/EC of the European Parliament and of the Council or reinsurance and retrocession contracts referred to in the same Directive; (vi.) pension products and schemes, as defined in subparagraphs (f.), (g.), (h.), (i.) of Article 2(4), MiCAR; and (vii.) social security schemes.

In addition to the above, MiCAR does not cover the digital euro project, which is still in the process of being developed by the ECB and the EU Commission and on which, moreover, no conclusive indications have yet emerged as to the type of technological infrastructure that will support its introduction. Despite the affinity of certain objectives (the development of payment instruments in a natively digital form), the two projects therefore remain, for the time being, on parallel tracks, also in view of the very different nature of central bank digital currencies, compared to tokens issued by private individuals.

In light of the foregoing, it can therefore be understood that, beyond the three types of tokens expressly defined, MiCAR adopts a negative approach, in terms of defining its perimeter of application: ultimately, the Regulation identifies its scope by way of exclusion from what is already regulated by other texts of EU financial law.

Moreover, and while attempting to formulate its own definition of (some) crypto-assets, this too proceeds in a negative way. Although the Regulation positively defines ARTs and EMTs, as well as utility tokens, the Regulation then makes use of an open notion, identifying, from time to time, its scope of application not limited to those three categories, but extending it to an undefined universe of tokens ‘different’ from the first two: see, emblematically, Title II of the Regulation, and, in this context, already Art. 4 which opens it, and which applies to ‘crypto-assets other than asset-referenced tokens or electronic money tokens’.

Now, this definitional approach itself is notoriously fraught with pitfalls. A significant example of this, again with regard to EU financial law, is the Alternative Investment Fund Managers Directive (AIFMD), which, having identified its own scope of application also in a negative way, carving out what was already regulated by the earlier UCITS Directive, has raised, and continues to raise, countless questions of interpretation and application, which only an intervention by the legislator, or, perhaps, by the Court of Justice, may one day resolve. It is even more insidious in a field such as that of crypto-assets, in which the evolution of markets brings ever new phenomena to the attention of the interpreter: see, below, the problem of the classification of NFTs (among the latest in the universe of crypto-assets), where, moreover, the definitional framework is further complicated by the existence of national concepts and regimes which, at times, are added to and, in part, overlap with those of EU law (see, below, the issue related to the notion of financial product in the Italian Consolidated Law on Finance, or to similar cases in other Member States).

But what decisively brings uncertainty to the current MiCAR are the definitional ambiguities that characterize some fundamental notions of EU financial market law, most especially the concept of financial instrument in MiFID.

In truth, while the boundary between MiCAR and MiFID is fundamental it is, at the same time, unclear. The reason for this, however, is not to be found in the Regulation, but in the MiFID framework itself (and before MiFID II or MiFID I, even the ISD of 1993). Central elements of this notion, in particular the ‘negotiability’ of the financial instrument, or the fact that it must be ascribable to a class of securities are, to say the least, problematic, as also emerges from a well-known ESMA report of 2019, which reconstituted, so to speak, the cultural background that, at the European level, underpinned the preparation of the proposal for the MiCA Regulation.

The complexity and breadth of the issues underlying these definitional problems, all—as should be stressed—related to MiFID, not MiCAR, cannot be fully addressed in this paper: it suffices, for our purposes, to shed light on their existence. It appears, however, evident that it is precisely the problem of the MiCAR taxonomy that constitutes the main fragility of the new regulatory system, which may render its application uncertain with respect to the other texts of EU law, in particular MiFID: indeed, a significant shortcoming. While ESMA issued interesting ‘Guidelines on the conditions and criteria for the qualification of crypto-assets as financial instruments’, as mandated by Article 2(5) MiCAR, precisely to address the interplay between MiCAR and MiFID, challenges still persist.

Without belaboring the point, suffice it to add that the fact that a given crypto-asset falls, for instance, under MiFID or MiCAR has radically different consequences in terms of the applicable regulations, supervisory tools and even the supervisory architecture applicable to it. The differences are so many and such that they cannot be diminished by the observation, as some believe, that the MiCAR and/or MiFID regimes would not, on balance, present substantial differences, or such as to raise serious concerns. This is, in fact, not the case at all and, not surprisingly, MiCAR attempts to fill the gap by providing a number of different tools to streamline definitions and taxonomy, including the mandatory submission of legal opinions in the context of the various authorization regimes, the exchange of information between the NCAs and ESMA, and a rich menu of guidelines from the European Authorities. Will this articulated armory of soft law tools be sufficient to overcome the shortcomings of an insufficient legal approach to taxonomy? Will it have a thaumaturgical effect? It will take a long time to answer this question, because the very instruments relied upon by the regulation will inevitably be problematic and in turn raise new questions of interpretation. For the time being, allow me to observe that, in some cases, these indications assign tasks to the European Authorities that directly pertain to other regulatory strains of EU financial law: in particular, to MiFID, with a solution that is, to say the least, quite original.

C. The “Internal” Boundaries of MiCAR

The relationship of mutual exclusion between MiCAR and the other founding texts of EU financial markets legislation represents what we would call the ‘external’ boundaries of the Regulation. There are, however, also ‘internal’ boundaries, which involve several elements, including the basic concept of crypto-assets adopted by MiCAR, as well as specific regulatory choices which, albeit not without uncertainty, have matured in the course of the preparatory work.

1. Bitcoin and Decentralized Crypto-assets:

It has already been mentioned that the Regulation does not apply to crypto-assets that are fully decentralized, as expressly stated in Recital (22). It follows that MiCAR, in particular, does not apply to Bitcoin, which still represents the crypto-asset with the highest capitalization in the world and whose nature remains uncertain: means of payment, investment product, hybrid token or other.

2. Non-Fungible Tokens (NFTs):

Non-Fungible Tokens (NFTs) do not fall within the scope of MiCAR. This is stated, apparently clearly, in Article 2(3): “This Regulation does not apply to crypto assets that are unique and non-fungible with other crypto assets.”

The decision whether or not to include NFTs in the Regulation was subject of a troubled process, in which all (or almost all) possible options were examined. This is reflected in the final structure of the text that is, to say the least, unstable. The point is well illustrated by the (lengthy) Recitals 10 and 11 which can be briefly summarized as follows: (i.) fractions of a unique and non-fungible crypto-asset should not be considered unique and non-fungible; (ii.) the issuance of crypto-assets as non-fungible tokens in a large series or collection should be considered an indicator of their fungibility. The mere attribution of a unique identifier to a crypto-asset is not in itself sufficient to classify it as unique and non-fungible; (iii.) for the crypto-asset to be considered unique and non-fungible, the assets or rights represented should also be unique and non-fungible; (iv.) in any event, the exclusion of unique and non-fungible crypto-assets “from [this] scope of the Regulation is without prejudice to the qualification of such crypto-assets as financial instruments”; (v.) the Regulation should also apply to crypto-assets which appear to be unique and non-fungible, but whose de facto characteristics or features which are linked to their de facto uses would make them fungible or non-unique.

The reasons for such a complex approach are to be found in the fact that NFTs (generally) exhibit features that make them unsuitable for circulation, or exchange, on a widespread market. The two fundamental parameters that the Regulation identifies are, to this end, the uniqueness of the instrument, in conjunction with the underlying assets. A further discretional criterion consists of the (alleged) unsuitability of the NFT to perform an investment function (e.g., to the extent that the holder of the NFT is not entitled to receive a remuneration deriving from its ownership, similarly to what would be the case for a typical financial product). Where, however, that investment function is discernible, or where the non-fungibility is only apparent (because, for instance, the underlying asset is fungible), the NFT falls back into the scope of regulation, either as a crypto-asset, or as a financial instrument (or even, as a financial product within the meaning of the national laws—see below).

That said, the boundaries between NFTs and utility tokens remain uncertain, to say the least. In particular, the Regulation does not provide its own definition of “fungibility,” thus leaving the notion open to different interpretations on the basis also of the multiple national criteria—deriving mainly from private law—applicable from time to time depending on the specific instrument. We believe, in any case, that the notion must be construed as an autonomous concept of EU law, being formulated by a directly applicable Regulation, even if, inevitably, its meaning should be interpreted through a solid exercise of comparative law, aimed to identify a common ground between the traditions of the different Member States.

3. Financial Products Other Than Financial Instruments:

Considering MiCAR’s external borders, one must ask whether ‘investment products’—excluded from MiFID but issued in the form of tokens—while falling outside the scope of the Regulation may nonetheless fall under national regimes that, in certain Member States, are found in addition to EU laws. The question is, to say the least, a complex one, and the investigation would merit a breadth incompatible with the present study, not least because of its necessarily comparative slant. In order to understand the issue, it may be useful to refer, as a first approximation, to the notion of “financial product”, as set forth in Article 1(1)(u) of the Italian Consolidated Law on Finance, which defines it as “financial instruments and any other form of investment of a financial nature:” a domestic notion, used in order to apply national prospectus rules to assets that are not included in the scope of the EU regime, and which must be clearly distinguished from other concepts analyzed in the preceding sections (in particular, from the notion of financial instrument).

If the relationship between financial instrument (as per MiFID) and crypto-assets is already, in itself, complex, that between crypto-assets and financial products is even more so. This is due to the fact that the notion of financial product under Article 1(u) of the Consolidated Law on Finance is based on an exquisitely functional criterion: ultimately, it captures the economic purpose underlying the investment transaction, in order to apply national rules on public offerings and prospectuses. This concept differs from the EU notion of financial instrument, which tends to be (but is not entirely) closed, as it is pegged to a descriptive list.

Although, over time, the notion of a financial product (and its archetype, that of ‘securities’ introduced in Italy in 1983) has always raised interpretative difficulties, these difficulties are aggravated even further by MiCAR.

To clarify such a statement, a few examples should be given. Let us take the case of a crypto-asset that presents the characteristics of an equity instrument, even of a real share, but lacks one of the elements qualifying the notion of a financial instrument, for instance because it is not negotiable. Such an instrument could certainly not be covered by MiFID-derived rules, nor by EU rules on public offerings and prospectuses, because it does not qualify as a financial instrument (more precisely, as a ‘transferable security,’ a sub-category of the broader notion of the former). If, in the example at hand, the instrument was issued in cryptographic form on a DLT, one must ask what regime would be applicable to its being offered on the market and to the services possibly offered by service providers in relation to it (e.g., advisory, management, custody of the tokens, etc.). Theoretically, MiCAR itself could—or, perhaps, should—deal with this, as this particular token would then fall under the residual category of crypto-assets other than ARTs and EMTs (see above). But, one might consider that the MiCAR definition of crypto-assets is too narrow to encompass the example under discussion, and it would therefore follow that such token would not be included in the objective scope of the Regulation.

And it is here, however, that national laws, with their own, autonomous notions, could regain ground: if, in fact, a given crypto-asset is included within the scope of MiCAR, national rules can no longer have any place, because MiCAR is directly applicable throughout the EU. If, on the other hand, a crypto-asset falls outside the scope of the Regulation, domestic regimes might potentially apply: in Italy, for example, one would then have to question whether the instrument could be qualified as a financial product.

The consequences are not insignificant. To return to the example, if that tokenized share were to be considered a crypto-asset within the meaning of MiCAR, its offer to the public would be subject to the comparatively lighter regime of the white paper, instead of the stringent prospectus rules and, above all, it would not require prior authorization. A similar argument could also be made, for instance, regarding debt securities issued by corporations, lacking the elements proper to the notion of a financial instrument, as well as for shares in limited liability companies, where their issuance in the form of tokens is envisaged in the future.

These problems are not only exclusively found in the Italian legal system. Rather, similar issues can also be identified in other EU Member States: for example, and to limit ourselves to a few cases only, in Germany, with reference to the so-called Vermögensanlage; in Austria, with regard to the notion of Veranlagung; or in Belgium, where there is a complex, and articulated, regime applicable to investment products other than MiFID-like financial instruments, i.e., the so-called “beleggingsinstrument” (“instrument de placement”), referred to in Article 3(§1) of the Law of July 11, 2018 on public offers of investment instruments and the admission of investment instruments to trading on regulated markets.

In our opinion, and while acknowledging the extreme complexity of the issue, the absorbing scope of MiCAR, and its suitability to regulate, in fact, any crypto-asset that is not already subject to other EU legislative regimes, allow to conclude that national regimes ought to be disapplied in cases similar to those described. Therefore—for instance, with regard to the Italian legal system—any instrument for the raising of capital, issued in cryptographic form using DLT, shall be regulated by MiCAR, unless it qualifies as a MiFID financial instrument, in which case the latter regime will apply in conjunction with EU prospectus rules. National categories, such as the “financial product” one, should therefore no longer have place in the context under discussion. Problems, however, do not stop there, because concepts under domestic law add further complexity to the landscape in other aspects as well. Consider, for example, NFTs: a non-fungible token that falls within MiCAR’s cases of exemption would not be regulated under the Regulation but, on the other hand, could be qualified as a financial product under national regimes. For instance, and referring again to the Italian case, where the NFT is neither subject to MiFID nor MiCAR, the notion of financial product could be applicable.

These divergences between different interpretations of the notion of financial instrument, financial products (and the like), and crypto-assets demonstrate how central the issue of taxonomy is to the correct application of these regimes.

The above examples are, however, only the most immediate and obvious, as it is almost inevitable that far more complex and difficult cases will arise in practice.

This is not, moreover, an entirely new concern, although it is now exacerbated by MiCAR. For example, in Italy, both the supervisory practice of Consob and the jurisprudence of the Corte Suprema di Cassazione have already concluded that, under certain circumstances, Bitcoin (which, with reference to its placing on the market, is certainly excluded from MiCAR, because it is issued in a fully decentralized form) may qualify as a financial product (not a financial instrument), subject to the relevant regulation of public offerings. Although the arguments to reach this conclusion are not, in our view, agreeable, they are precedents that cannot be avoided, expressing the tensions of a system which, as a result of the dissemination of crypto-assets, struggles to find solid criteria for their classification and consequent subjection to the applicable regimes.

4. Certain Utility Tokens:

As seen above, according to the MiCAR definition, utility tokens are those which only grant the right to access a good or service. In this regard, it has long been debated whether tokens that give access to already available goods or services should be treated differently from tokens that, on the other hand, serve to collect resources for the development of new projects. Generally speaking, the main argument for excluding tokens from the rules governing their issuance in the first case has been based on the fact that, in such a hypothesis, the purchase of the utility token would constitute a situation analogous to that of the purchase of a good or service, without any ‘financial’ component to justify the application of special rules.

MiCAR only partly follows this logic: utility tokens that ‘provide access to an existing or operated good or service’ are exempt from the rules contained in Title II on public offerings, but not from the entire regime. But the exception does not apply where the offeror makes known in any communication its intention to seek admission to trading on a trading platform. The Regulation therefore addresses the matter by adopting a middle-ground solution, considering the various positions proposed in literature.

III. The Subjects Governed by the Regulation

Less problematic, although not free of interpretative uncertainties, are the topics pertaining to the subjective scope of MiCAR: it applies, on the one hand, to issuers of crypto-assets and, on the other, to crypto-asset service providers (with a specific, and more stringent, regime for ARTs and EMTs).

For the former, the Regulation only provides for transparency and disclosure obligations, which are based, primarily, on the preparation and publication of a white paper, as a condition for being able to proceed with the offer on crypto-asset markets. For the latter, on the other hand, the Regulation outlines a general regime, based on rules that recall the usual regulatory obligations for EU investment service providers: initial authorization, prudential rules, and rules of conduct and transparency.

Nonetheless, entities that issue and, at the same time, provide services in relation to ARTs and EMTs are subject to a specific regime, which combines transparency obligations at issuance with rules typical to service providers. More precisely, for issuers of ARTs and EMTs, the requirement to publish a white paper on the occasion of a public offering is complemented by a structured regime whereby: (i.) the issuance of these types of tokens constitutes a reserved activity; (ii.) access to the activity is reserved only to entities that are authorized by the competent authority, in the case of e-money tokens, as credit institutions or e-money institutions and, in the case of asset-referenced tokens, as credit institutions or based on the provisions of MiCAR itself; and (iii.) these entities are subject to a particularly dense and detailed prudential regime.

Articles 4–5 MiCAR govern the prerequisites for a person to offer to the public or request admission to trading of crypto- assets (other than asset-referenced tokens and e-money tokens) in the EU. In particular, it is necessary that the issuer meets the following requirements: (a.) it is a legal person; (b.) it has drawn up an information document containing mandatory disclosures on crypto-assets (the so-called crypto-asset white paper); (c.) it has notified the crypto-asset white paper to the competent authority; (d.) it has published the white paper; (e.) it has drafted marketing communications in relation to such crypto-assets in accordance with Article 7; (f.) it has published any marketing communications in relation to such crypto-assets following the rules laid out in Article 9; and (g.) it complies with the obligations under MiCAR for offerors or persons seeking admission to trading.

The white paper lends itself, in the context of MiCAR, to interesting considerations in terms of its ‘cultural’ origins. On the one hand, in the course of the preparatory work on the Regulation it became increasingly clear that the white paper’s reference model is the prospectus. Compared to the initial proposal, in which the Regulation envisaged de minimis rules as to the structure and content of the white paper, the final outcome brings the two instruments very close together, even if, as we shall see, there are significant differences.

On the other hand, however, it should be noted that the white paper is an instrument that was born and developed by the market, starting from the phenomenon of Initial Coin Offerings, which characterized, both in the United States and in other systems, the phenomenon of crypto-assets especially in the years 2018 and following, also arousing much interest in the literature, both legal and economic. In this sense, the white paper regime can be said to be a perhaps almost unique case of a concretization, at a regulatory level (and, moreover, in a directly applicable EU Regulation) of a market practice.

The affinity between the white paper and the prospectus can be found, firstly, in relation to the structure and content of the information document, which must be drafted according to essentially rigid requirements, established by the Regulation itself. A second element of connection can be identified with regard to similar cases of exemptions provided for in both regimes. In particular, the white paper regime does not apply to: (a.) an offer made to “fewer than 150 natural or legal persons per Member State where such persons act on their own account”; (b.) an offer to the public of a crypto-asset in the Union, the total consideration of which, over a period of 12 months from the beginning of the offer, “does not exceed EUR 1,000.000 or the equivalent amount in another official currency or in crypto-assets”; (c.) an offer of a crypto-asset addressed exclusively “to qualified investors where the crypto-asset can only be held by such qualified investors” (referred to in Annex II, Section I, points 1 to 4 of MiFID).

A significant divergence from the Prospectus Regulation is, however, represented by the publication regime: there is, in fact, no requirement for the approval of the white paper by the competent authority but a mere notification procedure. This is a noteworthy distinctive element, which distances MiCA regime from that of the prospectus, the publication of which is instead subject to the pre-approval of the competent authority. In this regard, the Regulation requires the white paper to clearly state that it has not been approved by any competent authority and that, therefore, the person publishing it—the offeror, the person asking for admission to trading or the operator of the trading platform—is solely responsible for its content.

Notwithstanding the foregoing, the issue of the taxonomy of crypto-assets emerges, once again, in the context of the rules under discussion. In particular, the notification of the white paper—to be made at least twenty days prior to its publication on the website of the offeror or entity making the request for admission to trading—must be accompanied by a statement indicating the reasons why the token should not be considered a crypto-asset excluded from the scope of MiCAR (e.g., a financial instrument under MiFID II), an e-money token or an asset-referenced token. In essence, MiCAR entrusts the issuer with the task of qualifying the token: an exercise that is anything but easy, as emerges from the analysis already carried out, and for which it will be essential to wait for the completion of the regime (also through soft law measures), but which might still lead to disputes or, at least, differences of opinion, both between players and authorities, and between the different authorities of the Member States. It is not, in fact, improbable that, given the complexity of the subject, and the vastly different nature of tokens, the interpretative approaches may, in the end, and notwithstanding the measures envisaged by MiCAR, turn out to be different.

Similarly, to the Prospectus Regulation, MiCAR also contains rules on liability. Article 15 provides, in particular, that the offeror and the person seeking admission to trading or the operator of a trading platform and the members of its administrative, management or supervisory body shall be liable to the holder of the crypto-asset for any loss suffered as a result of the breach of the white paper requirements. There is, however, one important and noteworthy difference. In the context of MiCAR, the burden of proving that: (i.) the above-mentioned entities have violated the Regulation by providing information that is not complete, fair or clear, or that is misleading; and (ii.) that such information had an impact on the holder’s decision to purchase, sell or exchange the token, is upon the holder of the crypto-asset. This will inevitably lead to a significant reduction of the concrete protective scope of the liability regime, as it is likely to subject the plaintiff to a particularly onerous burden. This (questionable) approach, in fact, ends up shifting protection to the level of public enforcement, in contrast to recent developments in prospectus regulation, and attempts to identify a common approach to liability in the EU or even at supranational levels.

Notwithstanding the above, another peculiarity of the MiCAR regime, compared to prospectus rules, lies in the fact that crypto-asset offerors are subject to rules of conduct which, in the context of EU law, are generally only applicable to service providers (in particular, such standards derive from the MiFID regime). More specifically, offerors and persons seeking admission to trading in crypto-assets are required to: (a.) act honestly, fairly and professionally; (b.) communicate with crypto-asset holders and potential holders in a manner that is fair, clear and not misleading; (c.) identify, prevent, manage and disclose any conflicts of interest that may arise; (d.) maintain all their security access protocols and systems in accordance with Union standards. These entities must also act in the best interests of crypto-asset holders and ensure equal treatment, unless preferential treatment of certain investors is provided for in the white paper and, if applicable, in marketing communications.

Lastly, MiCAR extends the principle of the EU passport to offerors and persons seeking admission to trading of crypto-assets, which, upon notification to the competent authority of their home Member State, may carry out their activities in all European Union countries. Mutual recognition, in the context under discussion, is however destined to produce unexpected effects, as it can lead to the circulation of tokens of various kinds, presenting very distinct features, across different host Member States. Given the uncertainties in terms of taxonomy, there exists, therefore, the risk that one crypto-asset may receive a classification in the home Member State that is not perfectly aligned, or is even divergent from, that which would be found in the host Member State. This is a risk that is aggravated by the potential survival of national regimes (such as, in Italy, the regime applicable to financial products), protected, moreover, by sanctions, including those of criminal nature, which may potentially lead to nullity and/or the invalidation of the legal effects of the transactions.

IV. The Special Regime for ARTs and EMTs Issuers, between Transparency and Prudential Supervision

In the context above, MiCAR outlines a special regime for issuers of ARTs and EMTs. These two assets have elements in common, but also dissimilarities. The common element lies in their function as payment instruments: simpler EMTs, more complex ARTs.

While EMTs are, for all intents and purposes, electronic money, issued, however, on the basis of DLT technology, ARTs are more complex instruments, whose origins can be traced back to market initiatives and, above all, to the ashes of Facebook’s stablecoin project—first called Libra, then Diem and, finally, abandoned—which foresaw the issuance of a global currency that would be a true alternative to official currencies. It is precisely the debate, at times fiery, raised by that project, and some serious episodes that later characterized the crypto winter (in particular, the failure of the issuer of the algorithmic stablecoin Terra Luna in 2022) that explain the reasons for the particular stringency adopted by MiCAR on these matters. The issuance and operation of ARTs and EMTS are, on the one hand, reserved to intermediaries who either are already subject to typical EU prudential regimes, or are specially authorized entities, and, in any case, are subject to strict prudential requirements, as well as obligations on conduct of business and transparency.

In particular, pursuant to Article 16(1) MiCAR, an ART may not be offered to the public or sought to be admitted to trading unless the offeror or applicant for admission to trading is the issuer of that ART, and provided that such entity is, in addition: (a.) a legal person or an undertaking established in the Union that has received the appropriate authorization from the competent authority of its home Member State in accordance with Article 21 MiCAR; or (b.) a credit institution complying with the requirements of Article 17 MiCAR.

Thus, for ARTs, a transparency regime is further supplemented by a licensing regime, which envisages the involvement of the competent national authority, European supervisory authorities (EBA and ESMA), and the ECB, each of which issuing their respective opinions on various matters.

Exceptions to this regime are credit institutions aiming to issue ARTs: they are not subject to prior authorization by the competent authority of their home Member State but are required to notify the relevant supervisory authority (the national competent authority or the ECB, as the case may be). For credit institutions, in fact, compliance with several obligations—including licensing requirements—is already a prerequisite for the conduction of their typical activities in financial markets, as well as the subjection to direct supervision by the competent authorities

A. Specific Obligations for Issuers of ARTs

One of the main risks identified by MiCAR lies in the fact that ARTs can be widely used as a medium of exchange to settle large volumes of payment transactions. The events of the crypto-winter have highlighted the risks and issues raised by these instruments, and the danger that they may also pose risks to the stability of the system as a whole. For this reason as well, the text of the Regulation has gradually been enriched with various provisions outlining a particularly strict and pervasive regime.

Already in terms of conduct rules, issuers of ARTs are subject to more requirements than ‘ordinary’ token issuers. In addition to the duty to act honestly, fairly, and professionally and to communicate with holders and prospective holders in a fair, clear and non-misleading manner, as well as observing requirements on marketing communications and periodic reporting, ART issuers are required to comply with specific provisions on conflicts of interest, complaints handling procedures, governance arrangements, own funds, and reserve of assets. Additional requirements are provided with respect to the internal policies and procedures to be adopted by issuers, with particular emphasis on the one outlining the token stabilization mechanism.

B. Reserve of Assets and Own Funds

A particular aspect of the regime on ARTs concerns the prudential rules of own funds and asset reserves, which are aimed at ensuring the financial stability and soundness of both the issuers and the tokens themselves.

In particular, issuers of ARTs must at all times maintain own funds equal to at least the higher of: (a.) €350,000; (b.) two percent of the average amount of the asset reserve under Art. 36 MiCAR; and (c.) one quarter of the previous year’s fixed overhead.

With respect to the reserve of assets, issuers are required to establish and always maintain a reserve that is composed and managed in such a way that (a.) the risks associated with the assets to which the asset-referenced tokens relate are covered; and (b.) the liquidity risks associated with the holders’ permanent redemption rights are addressed. This reserve may only be invested “in highly liquid financial instruments with minimal market risk, credit risk and concentration risk” and the assets purchased “shall be capable of being liquidated rapidly with minimal adverse price effect” (Art. 38(1)).

The provisions concerning the maintenance of an adequate liquidity profile of the reserve were gradually enriched in the course of the preparatory works: on this point, it was correctly observed that liquidity risk brings ARTs close to money market funds and, therefore, it is no coincidence that the methodology and approach that MiCAR follows on this point is reminiscent of the rules applicable to such types of investment funds

Notwithstanding the above, however, one must radically discard the suggestion that—based on mere assonances—could lead one to assimilate ARTs to a collective investment undertaking. There are some similarities, in fact: the issuer of ARTs collects funds from the public, which are invested in the underlying reserve. But if it is true that the reserve underlying the ARTs is well identified, in terms of composition, ex-ante, and therefore could present traits of resemblance to a true and proper investment policy (according to the EU definition notion of a collective investment undertaking), the fact remains that the employment, in that reserve, of the resources collected by the issuer does not correspond to the typical purpose of a collective investment undertaking, i.e., their management with a view to generating an aggregate yield for the benefit of its investors.

In addition, the only asset right granted to token holders is the right of redemption at the current market value of the “referenced” assets, there being, however, a clear prohibition on recognizing interest or “any remuneration or any other benefit related to the length of time during which a holder of asset-referenced tokens holds such asset-referenced tokens.” Such prohibition is also extended to “net compensation or discounts, with an effect equivalent to that of interest received by the holder of asset-referenced tokens, directly from the issuer or from third parties, and directly associated to the asset-referenced tokens or from the remuneration or pricing of other products.” In addition, according to Article 38(4), “all profits or losses, including fluctuations in the value of financial instruments [in which the reserve of assets is invested] . . . and any counterparty or operational risks that result from the investment of the reserve of assets shall be borne by the issuer of the asset-referenced token.” This, of course, runs counter to the very essence of a collective investment undertaking.

Finally, the regulatory regime on ARTs provides for rules on stabilization mechanisms, auditing of the reserve of assets, custody of the reserve, its investment, and recovery and redemption plans. To avoid contamination risks, the reserve of assets is also required to be legally separated from the assets of the issuer and from the reserve of assets of other ARTs: the issuer’s creditors therefore have no claim on such reserve of assets, either under the ordinary regime or in the event of insolvency.

C. Issuers of Significant ARTs

As anticipated, one of the main risks identified by MiCAR, stemming from both asset-referenced tokens and e-money tokens, concerns their potentially widespread dissemination. For these reasons, the issuers of significant ARTs are subject to stricter rules. The distinction between significant and non-significant entities is of course reminiscent of the Single Supervisory Mechanism (SSM) for credit institutions, but the criteria used for the purpose of this distinction and the consequences thereof are different.

In particular, if the regulatory thresholds are exceeded, issuers of significant ARTs are subject to additional rules, including: (a.) maintaining a remuneration policy that promotes sound and effective risk management; (b.) implementing and maintaining a liquidity management policy and procedure to ensure resilient liquidity even under stress conditions; and (c.) implementing liquidity stress testing.

Beyond the strengthening of prudential requirements, however, worthy of note is the provision whereby, if an asset-referenced token is classified as significant, supervisory responsibilities with respect to the issuer are transferred from the competent authority of the issuer’s home Member State to the EBA. This institutional aspect constitutes one of the most significant novelties of the Regulation. As a result of this provision, in fact, the MiCA Regulation effects on the very institutional structure of European financial supervision, transforming the EBA for the first time into an agency that is no longer only a regulatory authority, but also a supervisory authority, following the model achieved, in certain areas, by ESMA.

Finally, there is one rule that, in the context of Union financial legislation, represents a true unicum. If, for an ART, the average number, and the estimated quarterly average aggregate value, of daily transactions associated with its use as a medium of exchange, in a single currency area, exceeds one million transactions and EUR 200,000,000 respectively, the issuer is obliged to scale down its activity (Article 23). In particular, it is required to: (a.) stop issuing the ART; and (b.) within 40 working days of reaching the threshold, submit a plan to the competent authority to ensure that the quarterly average number and the estimated average aggregate value of daily transactions are kept below one million transactions and EUR 200,000,000, respectively.

The uniqueness of this provision is obvious. Within the framework of EU law, there are, in various fields, provisions which, provide that where an economic operator exceeds certain volume thresholds, it becomes subject to special rules. In the financial sector, the most immediate reference is found in the context of credit institutions that are part of the SSM, for which the well-known distinction between significant and less significant institutions applies. A similar logic is followed in the context of the AIFM Directive, for the distinction between above- and below-threshold managers (according to the relevant definitions). To the best of our knowledge, however, there is nothing equivalent to what can be read in MiCAR so far, i.e., a rule placing a ceiling on the volume of business or the ‘growth in size’ of the entity. This unprecedented regime, justified by the Regulation with the rather intuitive objectives of safeguarding the stability of the system, and mitigating risks, poses fascinating interpretative questions, particularly with regard to its compatibility with the general principles of the Treaties, and of the Constitutions of the Member States, starting with principles and rules that protect the freedom of economic initiative.

D. Issuers of EMTs (Significant and Non-Significant)

Under MiCAR, electronic money tokens (EMTs) are considered, for all intents and purposes, as electronic money, and therefore subject, firstly, to the relevant, specific regulation, stemming from the E-money Directive. Also, for this reason, they may be offered to the public or admitted to trading provided the request comes from the issuer, which: (i.) is authorized as a credit institution or e-money institution; and (ii.) has notified—and subsequently published—a white paper to its competent authority. For MiCAR, the possibility of issuance of e-money tokens by entities other than these is therefore excluded (including those that might be allowed to issue e-money based on national laws), differently from the regime applicable to ARTs.

Although, apparently, such an approach seems in line with the principle of technological neutrality, MiCAR entails a significant deviation from it where it subjects EMTs issuers to additional and special rules, justified solely by the issuance of the crypto-asset via DLT technology. These deviations concern, in the first place, the requirement for EMTs issuers to publish a white paper at the initial offering stage, which do not have to be previously approved by competent authorities, similarly as to what has already been detailed for other categories of crypto-assets. Moreover, issuers of EMT are then subject to an additional regime in terms of prudential supervision, which generally recalls, with certain adaptations, the one applicable to issuers of ARTs. Thus, a body of rules clearly driven by the particular technology used for the provision of a service that, in substance, remains the same.

Finally, for EMTs there is also a special regime for significant issuers.

V. Crypto-Asset Service Providers and the So-Called ‘Mifidization’ of MiCAR

MiCAR’s all-round approach also includes, in Title V, an articulated regime for crypto-asset service providers, defined as those legal persons or undertakings “whose occupation or business consists in the provision of one or more crypto-asset services to clients on a professional basis” (Article 3(15)). In this respect, the so-called ‘mifidization’ of the regulation is evident, as the MiFID regime stands as the clear reference model. The services covered are, to a very large extent, those already known to MiFID, now transposed to the sphere of crypto-assets, namely: (a.) custody and administration of crypto assets on behalf of clients; (b.) operation of a crypto-asset trading platform; (c.) exchange of crypto-assets for funds; (d.) exchange of crypto-assets for other crypto-assets; (e.) execution of orders for crypto-assets on behalf of clients; (f.) placing of crypto-assets; (g.) reception and transmission of orders for crypto-assets on behalf of clients; (h.) providing advice on crypto-assets; (i.) providing portfolio management on crypto-assets; and (j.) providing transfer services for crypto-assets on behalf of clients.

Similar to what MiFID rules on investment services, MiCAR also identifies the perimeter of reserved activities by requiring them to be carried out professionally, and intended for the general public: two requirements that can be construed by applying to MiCAR the interpretative criteria already followed in the context of the MiFID regime.

Two distinct regimes are set out for market access by crypto-asset service providers: one that can be defined as ordinary, i.e., applicable to entities that are not already authorized to provide other financial services or activities, and a special regime, which instead concerns the latter (namely, a credit institution, a central securities depository, an investment firm, a market operator, an electronic money institution, a UCITS management company or an authorized alternative investment fund manager). While the former requires authorization by the competent authority, the latter are subject to a notification procedure prior to commencing operations.

But for financial entities, the extent of the services related to crypto-assets is different depending on their regime. Credit institutions are, in fact, granted the widest scope of operations in MiCAR services, as they are not precluded from carrying out any of the above-mentioned activities. In this case, the rationale for the exemption from the licensing requirement is not based on a presumption of equivalence between services but rather lies on the nature of the authorization already held by credit institutions under the current legislation, which is deemed to ensure all necessary safeguards also for transactions involving crypto-assets. As for investment firms, they may only provide, without requiring a new authorization, crypto-asset services equivalent to the MiFID investment services and activities for which they are specifically authorized.

Managers of collective investment undertakings are also covered by the exemption regime: for them as well, the facilitative regime applies to crypto-asset services equivalent to the corresponding investment services, for which they have been authorized. On the other hand, there are no specific provisions concerning limits, or conditions, under which a collective investment undertaking may invest in crypto-assets. These issues raise delicate questions, which must be solved in the light of sectoral regimes (UCITS and AIFMD) and national legislations.

Finally, one should note the reverse solicitation regime applicable to third-country investment firms providing crypto-assets services on the sole initiative of clients, again inspired by the similar MiFID regime. Accordingly, where a third-country service provider merely provides a service solely within the context of a client-initiated relationship, the authorization requirement of Article 59 MiCAR does not apply. On the other hand, in the case of an active conduct on the part of the service provider, in the form of solicitation, promotion or advertising of the service, the exception does not apply. It should be also observed that, as already noted, this is the only provision in the Regulation that refers to service providers from third countries, confirming the particularly protective approach that the Regulation takes with regard to the EU market.

A. The Rules of Conduct

In MiCAR, as in MiFID, protection of holders of the instrument is entrusted to a substantial set of rules of conduct that crypto-asset service providers must observe.

Following the MiFID model of origin, the rules of conduct to which crypto-asset service providers are subject are divided into general obligations, applicable to all crypto-asset service providers, and specific obligations, which take into account the type of service provided.

On a general level, one finds in MiCAR the obligation to act honestly, fairly, and professionally in the best interests of clients, analytical rules on transparency, information, and the obligation to identify, prevent and manage conflicts of interest. On a specific level, direct assonances with MiFID can be found in relation to advisory and portfolio management services, treated as a single unit by the Regulation in Article 81: in this respect, the proximity between the two regimes is evidenced by the suitability assessment rule. Also derived from MiFID are numerous prudential requirements. In MiCAR, the centrality of technology—an element that seems to mark a point of discontinuity with MiFID II—is singled out by the emphasis placed on the safeguards that service providers must adopt to prevent cyber risks: crypto-asset service providers must, in fact, take all reasonable steps to ensure the continuity and regularity of the provision of their crypto-asset services, including, of course, the requirements introduced by the aforementioned Regulation (EU) 2022/2554 (DORA Regulation).

Notwithstanding the above, there are, however, certain discrepancies between the MiFID and MiCAR regimes.

A first aspect relates to the rules, found in MiCAR, on custody and administration services, which here constitute reserved activities. The reason for this greater rigor of MiCAR, compared to the analogous MiFID ancillary service, arises not only from the specificities of the crypto market, but also from the lessons learned from the crypto winter, in the context of which serious structural and governance deficiencies emerged precisely with regard to the efficient and proper provision of custody. Not only for MiCAR is custody a reserved activity (and not a mere ancillary service), but it is also subject to specific and more restrictive rules. Article 75 MiCAR requires, first, a specific agreement between the service provider and the client (the content of which, however, is not fully set out in the Regulation, which instead merely indicates certain minimum elements thereof). The provision also requires service providers to carry out periodic reporting to clients and to draft a custody policy, with internal rules and procedures to ensure the custody or control of crypto-assets or the means of access to crypto-assets. It is further established that crypto-assets held in custody by the provider are legally segregated from the provider’s assets in the interest of the customers, so that the provider’s creditors have no claims on the crypto-assets held in custody, in particular in the event of insolvency (Article 75(3) and (7); Article 70(1) and (2)). Specific obligations are also formulated concerning the exercise of rights attached to crypto-assets and the return of crypto-assets to clients (Article 75(4) and (6) MiCAR).

With regard to the segregation of the crypto-assets of individual customers, in addition to having to include in the request for authorization a description of the procedure for the separation of the customer’s crypto-assets and funds, the custodian service provider is required to establish a register of positions in the name of each customer, in order to keep a record of the transactions and movements carried out.

In the context of service providers, further peculiarities with respect to MiFID are scattered in the details of the rules applicable to individual services. For instance, and unlike in the MiFID regime, entities operating a trading platform are subject to verification and ‘control’ duties regarding crypto-assets, including the obligation to ‘prevent the admission to trading of crypto-assets that have an inbuilt anonymization function’ (Article 76(2) and (3), MiCAR).

Finally, there are also significance thresholds for service providers (Article 85). In terms of legal qualifications, a crypto-asset service provider is deemed significant if it has in the Union at least 15 million active users, on average, in a calendar year, such average being calculated as the average of the daily number of active users during the entire previous calendar year. Upon reaching such threshold, crypto-asset service providers shall notify the respective competent authority within two months. If the competent authority agrees that the threshold has been reached, it notifies ESMA, which then acquires certain supervisory powers, in this emulating (but not entirely replicating) the EBA, which is responsible, as noted above, for the direct supervision of issuers of significant asset-referenced tokens and significant e-money tokens.

VI. MiCAR and Market Abuse

Title VI of MiCAR, with its own rules on market abuse essentially replicates some of the basic principles contained in the Market Abuse Regulation (MAR).

It should be noted, however, that in the context of MiCAR, the rules on market abuse refer not only to the issuer, but also to the offerors and persons seeking admission to trading of crypto assets.

Notwithstanding the above, the similarities with the MAR are, also in this case, numerous, and can already be found in the notion of inside information, which is formulated in an almost identical sense (Art. 87). In MiCAR, however, the significance of the effect of disclosed information on the price of crypto-assets is measured not on the basis of the reasonable investor test as per Article 7(4) MAR, but in accordance with the ‘reasonable crypto-asset holder’ test. The multiple uses to which crypto-assets lend themselves, could therefore lead to assessments that are not exactly coincident in these two regulatory spheres.

Also, with regard to disclosure of inside information, MiCAR, while maintaining an approach that replicates the founding rules of the MAR, contains specific provisions, again justified by the particular nature of crypto-assets.

Article 30(3) provides, for example, that—subject to Article 88—issuers of ARTs (whether ‘listed’ or not) must disclose—as soon as possible and in a clear, accurate, and transparent manner disclose, in a publicly and easily accessible place, on their website—information on any event that has or may have a significant effect on the value of the ARTs, or on the relevant reserve of assets (see Article 36 MiCAR).

The purpose of this article is to provide the market and users with information on the valuation of ARTs, which in turn, as we have seen, depends on the value of the underlying reserves.

In case the token is traded on a trading platform, such a disclosure regime is in addition to the disclosure of price-sensitive information. Rules on disclosure therefore apply at two distinct but related levels, with no equivalent in MAR: on the one hand, information on any ‘event that has or is likely to have a significant impact on the value of the asset-referenced tokens or on the reserve assets’; on the other, the notion of price-sensitive information, modelled on MAR. While the former looks precisely at the value of the instrument, the latter considers instead the impact on the prices of the information itself, according to two elements that become more interconnected insofar as markets in crypto-assets develop informational efficiency. In a context of increased efficiency value and price should tend to coincide.

Delay in the disclosure of inside information is also a matter subject to specific rules, contained in Article 88(2) MiCAR, which do not entirely coincide with those under MAR: in fact, MiCAR lacks certain provisions which, instead, are crucial in the context of MAR.

In particular, MiCAR does not contemplate the so-called ‘special’ delay in disclosure (regulated in Article 17(5) and (6) MAR) provided for financial institutions. This is an omission that is not a justification, because MiCAR itself assigns to certain subjects, in particular issuers of ARTs and EMTs, a risk profile of even systemic importance. Moreover, the regulation of such entities is, as already mentioned, strongly modelled on the classic standards of prudential supervision, which would have made it logical to extend the relevant MAR rules also to the regulatory environment of markets in crypto-assets.

Another discrepancy between MAR and MiCAR concerns the absence of a provision granting the possibility of delaying the disclosure of inside information relating to the intermediate stages of protracted processes. This omission is, however, easily explained. Indeed, Article 88 MiCAR does not expressly provide for an obligation to disclose inside information relating to a stage of a protracted process, in line with the proportional approach evoked by Recital (95). The omission is, therefore, consistent with the rationale of the Regulation.

Still in the spirit of a certain simplification with respect to MAR, MiCAR does not provide for an obligation on the part of the issuer (or of the offeror) to disclose the information in the event that, having been the subject of selective disclosure, confidentiality is no longer guaranteed (Art. 17(8) MAR): once again, the reasons for this omission are not fully understandable.

With regard to the prohibitions on insider trading, MiCAR is again aligned with MAR, replicating the classic triad of prohibitions governing insider trading (in a nutshell: prohibition of trading, communication, and advice).

An additional subject on the concept of abuse (the market manipulation under MiCAR), Articles 91 and 92 describe abusive conducts and prescribes the measures necessary to prevent and detect market abuse.

As in the case of MAR, the MiCA Regulation also looks at the two areas of operation-based and information-based manipulation (Art. 12 MAR). Here too, however, there are some simplifications with respect to the reference model. The description of the kinds of manipulation is formulated in broad terms, relying on very general expressions, then specified in non-exhaustive examples (Art. 91 MiCAR). It should be noted, however, that the MAR also provides a series of non-exhaustive indicators for the specification of operation-based manipulation, which are not found in MiCAR: this is probably due to the need to maintain a high level of adaptability of MiCAR to market development. It has been rightly observed, in fact, how the technical features of crypto-assets may not only innovate known manipulative schemes, but also lead to the emergence of completely new ones.

Also, in line with the cautious proportionality approach, there are no insider register-keeping or internal dealing requirements in MiCAR. Investment recommendations are also not covered by MiCAR.

Notwithstanding the foregoing, it cannot, however, be ruled out, and indeed seems likely, that the simultaneous application of the two bodies of law may take place. For example, in the case of a credit institution whose financial instruments are traded on a MiFID trading venue and which is also an issuer of crypto assets traded on exchange platforms subject to MiCAR. Consider, in this context, a relevant event relating to the issuer that is likely to significantly affect the prices of both the financial instruments and tokens. The two regimes will cumulate, creating an obvious need for coordination, which practice and convergent supervisory approaches may suggest in the future.

VII. Concluding Remarks

There are many (perhaps too many) issues and problems that are impossible to address in this paper, but which could be further developed at a later date. To state a few, the sanctioning regime, the relationship between MiCAR, and other Union regimes, e.g., that on payment services, or the relationship between MiCAR and consumer protection regulations. The complex interplay with the CRD IV regime, e.g., in terms of the prudential treatment of crypto-assets, would also merit further investigation, together with the interaction between MiCAR and UCITS and AIFM regimes.

Ultimately, the text of the MiCA Regulation is, at least at the time of writing (November 2023), an unfinished cathedral. Since its publication, the European Supervisory Authorities and the Commission have been called upon to issue dozens of Level 2 Regulations, and, as already mentioned, a very large number of soft law instruments of a composite nature is expected: guidelines, Q&A’s, opinions, which compose a quire articulate regulatory framework that promises to be very articulate. The cross-sectoral scope of this corpus of opinions and instruments (capable of affecting many other areas of EU financial law) will also have a major impact.

At the same time, the European Union will soon also have to consider whether, and how, to address the challenges of what has not yet been directly dealt with by the Regulation, not only with regard to what has been left out of MiCAR, but also by imagining a coordinated approach to the various areas of the new digital finance legislation: not just MiCAR, but also artificial intelligence, the Digital Euro, DeFi, digital platforms, and more to come.

The path towards the construction of a comprehensive EU digital finance law has only just begun, but it already promises to be fascinating, at least on an intellectual level. Whether this immense work of the Union institutions is indeed suitable to support the development of digital markets in the EU is a different question, and one that we are unable to answer, due to our own limitations (of which we are well aware).