標準簡介
MiCA 是由 歐盟 發布的現行有效標準,常用於金融銀行、科技、服務業等產業,並適用於歐盟、歐洲經濟區等市場。
本頁整理了 MiCA 的官方文件、目前狀態以及常見相關認證或評估機構,便於快速理解要求與落地路徑。
EU crypto market passport
MiCA creates a harmonised authorisation regime for crypto-asset service providers, allowing authorised firms to operate across the EU subject to regulatory conditions.
Stablecoin controls
Asset-referenced tokens and e-money tokens face reserve, governance, redemption, white paper, and supervision requirements, with heightened scrutiny for significant tokens.
Operational resilience link
Crypto firms often need to coordinate MiCA licensing with DORA ICT risk management, cybersecurity controls, outsourcing oversight, and incident response.
list_alt MiCA Compliance Themes
- CASP authorisation and governance arrangements
- Crypto-asset white papers and marketing communications
- Stablecoin reserve, redemption, and prudential requirements
- Market abuse prevention and conflicts management
- Client asset safeguarding and complaint handling
- DORA-aligned ICT risk and third-party oversight
誰需要合規?
Crypto-asset service providers, issuers of asset-referenced tokens, issuers of e-money tokens, trading platforms, custodians, exchange services, wallet providers, and fintechs offering crypto services to EU clients.
關鍵要求
Authorisation and governance
CASPs must obtain authorisation, maintain fit-and-proper management, implement governance controls, and meet prudential, safeguarding, and complaint-handling obligations.
White papers and disclosures
Issuers must publish compliant crypto-asset white papers and ensure marketing communications are fair, clear, and not misleading.
Stablecoin reserves and redemption
ART and EMT issuers must maintain reserve assets, redemption rights, governance arrangements, and additional controls for significant tokens.
Market abuse and conflicts
Implement controls for inside information, market manipulation, conflicts of interest, order handling, and fair treatment of clients.
實施路線圖
定義歐盟加密資產監管範圍
識別 MiCA 覆蓋的產品、服務、系統、實體、司法轄區、團隊、供應商和相關方。確認責任人、邊界、適用義務、文件和證據期望,範圍包括加密資產分類、白皮書、發行人義務、資產參考代幣、電子貨幣代幣、CASP 授權、治理、資本、託管、投訴、利益衝突、市場濫用、ICT 韌性和監管報告。
評估義務和差距
將當前實踐與預期的歐盟加密資產監管方法進行比較。審查代幣分類、白皮書治理、儲備管理、託管控制、審慎監控、適格治理、投訴處理、衝突管理、市場濫用監測、外包、ICT 控制和監管通知,並按法律暴露、財務報告影響、安全或隱私影響、客戶承諾、運營依賴和審覈準備度排列差距優先級。
實施控制和證據
部署所需程序、技術控制、評審關口、培訓、供應商流程、報告路徑和運行記錄。維護分類備忘錄、白皮書、授權文件、治理記錄、儲備報告、託管對賬、投訴日誌、衝突登記冊、交易監測警報、外包文件、ICT 證據和監管溝通作爲可追溯證據。
評審、報告並改進
開展管理評審、內部檢查、適用情況下的獨立評估、糾正措施和變更評審。當產品、供應商、法律、事件、保證期望或相關方需求變化時刷新項目。
合規檢查清單
checklist 範圍與問責
checklist 控制與記錄
checklist 監控與保證
處罰與執行
MiCA enforcement is handled by national competent authorities with EU-level coordination by ESMA and EBA. Firms risk licence refusal or withdrawal, public enforcement measures, business restrictions, and administrative fines set under the regulation and national implementation rules.
常見問題解答
誰需要 MiCA?
expand_more
MiCA 最適用於在歐盟運營或面向歐盟的加密資產發行人、要約人、交易平臺、託管方、交易所和加密資產服務提供商。具體範圍取決於產品、服務、司法轄區、客戶承諾、保證要求,以及組織在相關生態中的角色。
MiCA 是否可認證?
expand_more
MiCA 是歐盟法律授權和合規制度,不是認證。企業可能需要授權、白皮書、治理、審慎保障和持續監管。
實施時應先關注什麼?
expand_more
先定義範圍、義務、責任人,以及監管機構、審計師、客戶或治理機構期望的證據。然後對照當前控制開展差距評估,並按風險和期限確定整改優先級。
MiCA 需要哪些證據?
expand_more
有用證據包括分類備忘錄、白皮書、授權文件、治理記錄、儲備報告、託管對賬、投訴日誌、衝突登記冊、交易監測警報、外包文件、ICT 證據和監管溝通。證據應進行版本控制,能夠追溯到責任人,關聯義務和控制,並按所需評審或審覈期間保留。
項目應多久評審一次?
expand_more
應按計劃週期評審,並在法律、產品、供應商、事件、客戶承諾、報告週期或保證期望變化時評審。較高風險義務應更頻繁地監控並向管理層報告。