How to Access the EU Crypto Market Without a MiCA Licence – What is Possible, What is Not, and What to Watch Out For
Access to the EU crypto market is possible without holding a MiCA licence – for example, via white-label or partnership arrangements with a licensed CASP. The key point is that regulatory responsibility, processes and boundaries are clearly defined and remain with the licensed provider.
MiCA has been fully in force since mid-2024. For companies seeking to offer crypto-asset services in the EU, this means that authorisation as a CASP—Crypto-Asset Service Provider—is generally required. Custody, trading, transfers and stablecoin settlement are all regulated activities that require a licence.
And yet, the question many FinTechs ask—particularly those based outside the EU—is not “How do we obtain a MiCA licence?”, but rather: “Do we actually need one?”. The answer is more nuanced than a simple yes or no.
What MiCA actually prohibits—and what it does not
MiCA regulates who is allowed to provide regulated crypto services in the EU. It does not regulate who may acquire customers in the EU, provide technology, or act as a distribution partner of a licensed provider.
This is not a loophole—it is a recognized regulatory structure, well established in payments, securities and insurance. Outsourcing is permitted. Distribution models are permitted. Third-party branding is permitted. What cannot be delegated is the regulatory responsibility itself—that remains with the CASP.
The two core models
For non-EU companies looking to enter the European crypto market, there are essentially two structural approaches.
The first is the white-label or co-branding model. The non-licensed entity operates under its own or a shared brand towards EU customers, while a licensed CASP provides the regulated services. The non-licensed entity manages distribution, customer relationships and the frontend—but does not perform regulated activities.
The second is the operational partner model. Here, the non-licensed entity acts in the background as an operational service provider to the CASP, under the CASP’s brand and within its regulatory perimeter. It may provide technology, run processes and develop markets, but does not act as an independent service provider towards customers.
What is clearly permissible in such structures
Permissible elements include maintaining your own branding and frontend, provided it is transparent who delivers the regulated services; conducting distribution and customer acquisition on behalf of the CASP; supporting onboarding processes, as long as the final KYC decision remains with the CASP; providing technical integration and operational services under an outsourcing agreement; and implementing revenue-sharing models or service fee arrangements between the parties.
What does not work—and what regulators focus on
The most common mistake is the effective transfer of regulatory responsibility to the non-licensed entity. This typically occurs in three areas.
First, AML decision-making: the final onboarding decision must remain with the CASP and must be taken there in practice—not just formally.
Second, handling of client funds: the non-licensed entity must not, at any point, hold, safeguard or control customer assets. This is a strict boundary.
Third, regulatory communication: reporting obligations and interaction with supervisory authorities rest exclusively with the CASP.
Why jurisdiction matters
MiCA is harmonized across the EU, but supervisory practice is not yet fully aligned. National authorities differ in their experience with complex CASP structures, their risk appetite and their expectations regarding the substance of the licensed entity.
The choice of CASP—and therefore indirectly the jurisdiction—is therefore a strategic decision, not an administrative one. It affects the regulatory defensibility of the overall structure, the speed of market entry and the long-term sustainability of the model.
What is currently evolving
MiCA is a relatively new framework. The EBA and ESMA are developing additional guidelines, and early enforcement cases will shape how authorities assess borderline structures. What may be tolerated today could be evaluated differently within the next 12 to 18 months.
This is not an argument against such structures—it is an argument for robust regulatory design from the outset. Cooperation agreements, outsourcing documentation, KYC responsibilities and the governance structure of the CASP must be designed to withstand regulatory scrutiny—not only today, but as supervisory expectations mature.
What this means for you
There are legitimate ways to access the European crypto market without holding your own MiCA licence. However, these are not paths that should be pursued without regulatory guidance.
The key questions are: Which model fits your business and risk appetite? Which CASP is the right partner—and in which jurisdiction? How must contracts and processes be structured to ensure regulatory robustness? And how will the structure evolve if you decide to pursue your own licence later?
These are not theoretical questions. They determine whether your EU market entry is sustainable—or whether you will need to rebuild your setup in two years’ time.
Contact us
msg for banking supports FinTechs in preparing for bank and partner onboarding—from documentation to communication with the bank.
You must login to post a comment.