UK's New Crypto Regulations: A Hidden Pitfall for Unwary Firms

The UK's Financial Conduct Authority has unveiled proposed crypto regulations that could significantly broaden the definition of custody, potentially ensnaring platforms and software providers who do not consider themselves custodians. The FCA's Cryptoasset Perimeter Guidance, published recently, outlines several technical pitfalls that firms handling client crypto assets must be aware of. A key aspect of the rules is the 24-hour threshold for custody, where any firm or crypto platform holding client assets for more than a day during trade settlement may be classified as a regulated custodian, necessitating a full safeguarding license. Validators and node operators must also exercise caution, as they will lose their exemption from regulation if they offer 'added value' features such as user dashboards or yield tools, and must instead seek approval for arranging staking. The FCA aims to enhance consumer protections and support fair, transparent markets with these new guidelines. Notably, the regulator has addressed the issue of 'shadow custody' for the first time, clarifying that if a crypto service provider can theoretically override a client's authority, it will be considered a custodian. The FCA has also set out strict requirements for stablecoin issuers, mandating that they must be established in the UK and manage the entire lifecycle of the stablecoin. The regulator is seeking feedback on these proposals until June 3, 2026, and intends to publish finalized rules later this summer, followed by the final perimeter guidance in September. The new regulations will require all entities providing crypto services to transition from the current money-laundering registration system to a more stringent approval regime under the UK's Financial Services and Markets Act. Firms that fail to apply for approval during the designated five-month window may face fines, suspensions, or even permanent closure.