The European securities and Markets Authority conducted a peer review to
evaluate Malta’s oversight of crypto asset service providers amid changing EU
regulations. The review examined Malta’s authorisation process, governance
frameworks, anti-money laundering measures, and supervision after
authorisation.
While Malta’s financial authority demonstrated sufficient
resources and expertise, the report raised concerns about at least one case
where a provider was authorised despite unresolved issues. These included enforcement actions, weak governance, and insufficient assessment of business
risks, IT systems, and anti-money laundering controls.
Importance of Authorisation and Cross-Border Supervision
The report highlights that authorisation is a key tool for
managing risk and ensuring compliance
Compliance
In finance, banking, investing, and insurance compliance refers to following the rules or orders set down by the government regulatory authority, either as providing a service or processing a transaction. Compliance concerning finance would also be a state of being following established guidelines or specifications. This designation can also encompass efforts to ensure that organizations are abiding by both industry regulations and government legislation. Understanding ComplianceCompliance is a
In finance, banking, investing, and insurance compliance refers to following the rules or orders set down by the government regulatory authority, either as providing a service or processing a transaction. Compliance concerning finance would also be a state of being following established guidelines or specifications. This designation can also encompass efforts to ensure that organizations are abiding by both industry regulations and government legislation. Understanding ComplianceCompliance is a
Read this Term. Since many CASPs operate cross-border,
strong and consistent supervision is necessary. National regulators must rely
on each other’s oversight to support a unified capital market.
🔎 A peer review analysing @MFSAComm approach to authorising #CryptoAsset Service Providers under #MiCA:
✅ Good supervisory engagement and resources
💡 Areas for improvement related to the assessment of authorisations were identifiedhttps://t.co/dBy1J12NnQ pic.twitter.com/O4OuYz78WE
— ESMA - EU Securities Markets Regulator 🇪🇺 (@ESMAComms) July 10, 2025
Supervisory Gaps and Recommendations
Post-authorisation actions by the MFSA were generally
appropriate, though some issues should have been addressed earlier. ESMA
ESMA
European Securities and Markets Authority (ESMA) is an independent Authority of the European Union that is responsible for the safety, security, and stability of the European Unions’ financial system and is charged with protecting the public. The European supervisory authority for the securities sector, ESMA was established on 1 January 2011. The European Securities and Markets Authority is an independent EU authority based in Paris. It aims to contribute to the effectiveness and stability of t
European Securities and Markets Authority (ESMA) is an independent Authority of the European Union that is responsible for the safety, security, and stability of the European Unions’ financial system and is charged with protecting the public. The European supervisory authority for the securities sector, ESMA was established on 1 January 2011. The European Securities and Markets Authority is an independent EU authority based in Paris. It aims to contribute to the effectiveness and stability of t
Read this Term
recommended that the MFSA revisit unresolved risks and strengthen its
evaluations of growth plans, IT resilience, and group governance.
For all EU regulators, ESMA called for better information
sharing and attention to risks such as unregulated DeFi activity, custody
operations, and user-facing interfaces. Clear risk warnings and cross-border
cooperation were also encouraged.
You may find it interesting at FinanceMagnates.com: Forex
Brokers May Cut Costs as ESMA Seeks Input on Overlapping EU Financial Reporting.
Positive Practices and MFSA’s Response
The report noted some good practices by the MFSA, such as
hiring crypto-specialised staff and engaging with the industry. The MFSA
welcomed the findings and committed to making improvements, citing its prior
experience in crypto regulation.
Malta Licenses Major Crypto Exchanges
Several well-known cryptocurrency exchanges, including Crypto.com,
OKX, Gate.io, and Gemini,
hold licenses issued by the MFSA. These
licenses allow them to operate under Malta’s regulatory framework for virtual
financial assets. The MFSA is responsible for ensuring that these companies
comply with relevant laws and regulations.
The European securities and Markets Authority conducted a peer review to
evaluate Malta’s oversight of crypto asset service providers amid changing EU
regulations. The review examined Malta’s authorisation process, governance
frameworks, anti-money laundering measures, and supervision after
authorisation.
While Malta’s financial authority demonstrated sufficient
resources and expertise, the report raised concerns about at least one case
where a provider was authorised despite unresolved issues. These included enforcement actions, weak governance, and insufficient assessment of business
risks, IT systems, and anti-money laundering controls.
Importance of Authorisation and Cross-Border Supervision
The report highlights that authorisation is a key tool for
managing risk and ensuring compliance
Compliance
In finance, banking, investing, and insurance compliance refers to following the rules or orders set down by the government regulatory authority, either as providing a service or processing a transaction. Compliance concerning finance would also be a state of being following established guidelines or specifications. This designation can also encompass efforts to ensure that organizations are abiding by both industry regulations and government legislation. Understanding ComplianceCompliance is a
In finance, banking, investing, and insurance compliance refers to following the rules or orders set down by the government regulatory authority, either as providing a service or processing a transaction. Compliance concerning finance would also be a state of being following established guidelines or specifications. This designation can also encompass efforts to ensure that organizations are abiding by both industry regulations and government legislation. Understanding ComplianceCompliance is a
Read this Term. Since many CASPs operate cross-border,
strong and consistent supervision is necessary. National regulators must rely
on each other’s oversight to support a unified capital market.
🔎 A peer review analysing @MFSAComm approach to authorising #CryptoAsset Service Providers under #MiCA:
✅ Good supervisory engagement and resources
💡 Areas for improvement related to the assessment of authorisations were identifiedhttps://t.co/dBy1J12NnQ pic.twitter.com/O4OuYz78WE
— ESMA - EU Securities Markets Regulator 🇪🇺 (@ESMAComms) July 10, 2025
Supervisory Gaps and Recommendations
Post-authorisation actions by the MFSA were generally
appropriate, though some issues should have been addressed earlier. ESMA
ESMA
European Securities and Markets Authority (ESMA) is an independent Authority of the European Union that is responsible for the safety, security, and stability of the European Unions’ financial system and is charged with protecting the public. The European supervisory authority for the securities sector, ESMA was established on 1 January 2011. The European Securities and Markets Authority is an independent EU authority based in Paris. It aims to contribute to the effectiveness and stability of t
European Securities and Markets Authority (ESMA) is an independent Authority of the European Union that is responsible for the safety, security, and stability of the European Unions’ financial system and is charged with protecting the public. The European supervisory authority for the securities sector, ESMA was established on 1 January 2011. The European Securities and Markets Authority is an independent EU authority based in Paris. It aims to contribute to the effectiveness and stability of t
Read this Term
recommended that the MFSA revisit unresolved risks and strengthen its
evaluations of growth plans, IT resilience, and group governance.
For all EU regulators, ESMA called for better information
sharing and attention to risks such as unregulated DeFi activity, custody
operations, and user-facing interfaces. Clear risk warnings and cross-border
cooperation were also encouraged.
You may find it interesting at FinanceMagnates.com: Forex
Brokers May Cut Costs as ESMA Seeks Input on Overlapping EU Financial Reporting.
Positive Practices and MFSA’s Response
The report noted some good practices by the MFSA, such as
hiring crypto-specialised staff and engaging with the industry. The MFSA
welcomed the findings and committed to making improvements, citing its prior
experience in crypto regulation.
Malta Licenses Major Crypto Exchanges
Several well-known cryptocurrency exchanges, including Crypto.com,
OKX, Gate.io, and Gemini,
hold licenses issued by the MFSA. These
licenses allow them to operate under Malta’s regulatory framework for virtual
financial assets. The MFSA is responsible for ensuring that these companies
comply with relevant laws and regulations.
