Our Expert in Liechtenstein
Payments & digital assets lawyers in Liechtenstein are guiding an unprecedented volume of licensing decisions in 2026 as three regulatory frameworks converge simultaneously: the evolution toward PSD III (the Payment Services Regulation package), the maturing domestic Token and Trustworthy Technology Services Act (TVTG, often called the Blockchain Act), and the Markets in Crypto-Assets Regulation (MiCAR) whose transitional period ends on 1 July 2026. For in-house counsel, compliance officers and fintech founders, the practical question is no longer whether Liechtenstein regulation will tighten, it is which licence to apply for, what the Finanzmarktaufsicht (FMA) expects in the application file, and how to operationalise overlapping AML/CFT, CARF and CRS reporting obligations before hard deadlines pass. This guide delivers the step-by-step playbook.
Three decisions cannot wait. First, every payment service provider (PSP) and crypto-asset service provider (CASP) operating from or into Liechtenstein must determine which regulatory authorisation it needs, or whether an existing TVTG registration is sufficient, before 30 June 2026. Second, firms relying on MiCAR transitional provisions must complete the operational upgrades required to obtain a full MiCAR-compliant CASP licence by 1 July 2026, because services delivered under transitional relief will no longer be lawful after that date. Third, compliance teams must build internal reporting infrastructure that satisfies both the FMA’s AML/CFT expectations and the new OECD Crypto-Asset Reporting Framework (CARF) obligations coming into force in 2026.
The top three operational tasks for every firm are: (1) complete a gap analysis of current policies against MiCAR Title III and Title IV requirements; (2) assemble the FMA documentary file (fitness and probity, capital plan, AML/CFT framework); and (3) map CARF reportable transactions and build the data-extraction workflow.
Liechtenstein occupies a unique position: it is a member of the European Economic Area (EEA), meaning EU regulations such as MiCAR apply once incorporated into the EEA Agreement, yet it also maintains its own pioneering domestic legislation, the TVTG, which pre-dates MiCAR by several years. The result in 2026 is a layered regulatory environment overseen by the FMA, which acts as the single competent authority for both traditional financial-services licensing and digital-asset supervision.
The TVTG, enacted in 2020, introduced a comprehensive registration regime for service providers operating on “trustworthy technology” (broadly, distributed-ledger technology). Under the TVTG, ten categories of service provider are defined, from token generators and token custodians to exchange service providers and identity verifiers. Entities performing these services in or from Liechtenstein must register with the FMA. Registration under the TVTG is distinct from a licence: it confirms that the entity meets baseline due-diligence, governance and AML/CFT requirements, but it does not by itself confer EU/EEA passporting rights. For firms whose ambitions are strictly domestic, TVTG registration remains the primary gateway. For firms seeking cross-border reach, MiCAR authorisation, discussed below, is now the critical layer.
The FMA has signalled through public guidance and its formal statement on MiCAR transitional provisions that it expects applicants to demonstrate substantive compliance, not merely paper-based policies. Industry observers expect the FMA to intensify scrutiny of governance arrangements, outsourcing controls and AML/CFT effectiveness throughout 2026. The FMA has published warnings about the risks associated with the end of MiCAR transitional provisions and has encouraged firms to begin the licensing process well ahead of the 1 July 2026 deadline. In practice, this means early engagement with the FMA, ideally through a pre-application meeting, is strongly advisable.
The EU’s legislative package reforming the payment-services framework, commonly referred to as PSD III, encompassing a new Payment Services Regulation (PSR) and a revised Payment Services Directive, represents the most significant overhaul of payment rules since PSD II. For Liechtenstein entities, the changes carry direct EEA-relevance once incorporated into the EEA Agreement. The likely practical effect will be stricter authorisation conditions, expanded scope of regulated services, stronger consumer-protection mandates and new requirements around open-banking data access.
Every entity holding or seeking a payment institution licence in Liechtenstein must monitor PSD III developments closely. The regulation is expected to affect:
Industry observers expect the FMA to issue specific Liechtenstein-focused implementation guidance once the EEA Joint Committee confirms incorporation of the revised payment-services package. Until then, prudent PSPs should treat the EU-level text as their baseline planning assumption.
Obtaining a CASP licence in Liechtenstein requires careful navigation of two overlapping frameworks: the domestic TVTG registration system and the EU-wide MiCAR authorisation process. The FMA administers both, and in practice the documentary expectations are converging. TVTG compliance remains the domestic foundation, while MiCAR authorisation is the gateway to cross-border passporting.
A TVTG registration is required for any entity performing one or more of the ten regulated TT service-provider activities within Liechtenstein. A CASP licence under MiCAR, once Liechtenstein has completed EEA incorporation, is required for any entity wishing to provide crypto-asset services across the EEA on a passported basis. The two are not mutually exclusive: a firm may hold a TVTG registration and a MiCAR CASP licence simultaneously. However, firms that rely solely on a TVTG registration without obtaining MiCAR authorisation will be unable to passport services into EU member states and other EEA countries. The decision therefore hinges on commercial strategy: domestic-only operations may proceed under TVTG alone, while cross-border ambitions demand MiCAR.
The FMA expects applicants to submit a comprehensive documentary package. Based on FMA guidance and published licensing practice, the core requirements include fitness-and-probity assessments, a detailed AML/CFT framework, and a capital plan. The following table summarises the key documents:
| Document | Why the FMA Asks | Practical Tip |
|---|---|---|
| Business plan (3-year projection) | Demonstrates commercial viability and risk awareness | Include realistic client-acquisition forecasts and stress-test scenarios; avoid overly optimistic revenue projections |
| Fitness-and-probity files for directors and key function holders | Confirms competence, integrity and experience of management | Prepare CVs, criminal-record extracts and declarations of good repute well in advance, processing times for foreign documents can exceed 4 weeks |
| AML/CFT framework (policies, risk assessment, monitoring tools) | Validates compliance with Liechtenstein Due Diligence Act (SPG) and FMA expectations | Include a completed business-wide risk assessment (BWRA), transaction-monitoring rulebook and sample suspicious-activity-report (SAR) workflow |
| Capital plan and proof of own funds | Ensures the firm meets minimum capital thresholds for the service category | Provide bank confirmations and audited financial statements; the FMA may request ongoing capital-adequacy reporting |
| IT security and operational-resilience documentation | Assesses technology risk, custody safeguards and business-continuity planning | Align documentation with DORA requirements where applicable; include penetration-test reports and disaster-recovery plans |
| Organisational chart and internal-control framework | Maps governance lines, segregation of duties and compliance-function independence | Clearly identify the compliance officer, money-laundering reporting officer (MLRO) and their reporting lines to the board |
| Outsourcing register and third-party due-diligence files | Confirms the firm retains control over outsourced critical functions | The FMA increasingly scrutinises cloud-hosting and custody sub-delegation arrangements, document oversight mechanisms |
Engaging payments & digital assets lawyers in Liechtenstein at the outset of the application process helps ensure the file meets FMA expectations on the first submission, reducing the risk of time-consuming supplementary requests.
The Markets in Crypto-Assets Regulation (MiCAR) is the EU’s flagship crypto-regulatory framework. For Liechtenstein firms, MiCAR matters because it creates the single-licence, EU/EEA-wide passporting mechanism that the TVTG alone cannot deliver. Once a firm obtains MiCAR authorisation through the FMA, it may provide the authorised crypto-asset services in any other EEA member state through a notification procedure, without establishing a local subsidiary or obtaining a separate national licence.
The transitional period under MiCAR has been critical. Member states and EEA states were permitted to allow firms already authorised or registered under national law (such as the TVTG) to continue operating under transitional relief. That relief expires on 1 July 2026. The ESMA and the FMA have both published statements warning firms about the risks of failing to secure full MiCAR authorisation before this deadline.
Firms currently operating under a TVTG registration must complete several operational upgrades to meet MiCAR standards:
For multi-entity groups, the MiCAR passporting process requires careful coordination. The home-state FMA authorisation covers the group entity that applies, but each entity providing services in its own name must hold its own authorisation. Groups should map their entity structures, identify which entities require MiCAR passporting and ensure that intra-group outsourcing arrangements comply with both MiCAR and DORA requirements. Early indications suggest the FMA prefers transparent group structures with clearly documented governance lines and minimal delegation chains.
The anti-money-laundering and counter-terrorist-financing obligations for digital-asset firms in Liechtenstein are anchored in the Due Diligence Act (SPG), the Due Diligence Ordinance (SPV) and the FMA’s published guidance. All TVTG-registered entities and CASP-licensed firms are designated as obliged entities, meaning they must conduct customer due diligence, monitor transactions and file suspicious-activity reports with the FIU (Financial Intelligence Unit). In 2026, these baseline duties are supplemented by two significant developments: the OECD’s Crypto-Asset Reporting Framework (CARF) and updates to the Common Reporting Standard (CRS).
CARF introduces an automatic exchange-of-information mechanism specifically targeting crypto-asset transactions. Under CARF, reporting crypto-asset service providers must collect, verify and report information on users and their crypto-asset transactions to the relevant tax authority, which then exchanges this data with partner jurisdictions. As a member of the OECD Global Forum and an early adopter of CRS, Liechtenstein has committed to implementing CARF. Industry observers expect reporting obligations to become operational for Liechtenstein entities during 2026, with the first exchanges following in 2027.
| Entity Type | AML/CFT Baseline (TVTG / FMA) | CARF & CRS Obligations (Timing / Notes) |
|---|---|---|
| TVTG-registered exchange service provider | Full CDD, ongoing monitoring, SAR filing, record-keeping (minimum 5 years) | CARF: report crypto-to-fiat and crypto-to-crypto transactions above thresholds; CRS: report where applicable to traditional financial accounts |
| MiCAR-authorised CASP | Full CDD per SPG + MiCAR-specific conduct rules; enhanced due diligence for high-risk clients | CARF: full reporting scope including transfers, exchanges and retail payments; align data-collection processes with CARF XML schema |
| Payment institution (PSP) | Full CDD under SPG; wire-transfer regulation (travel rule) compliance | CRS: standard reporting on payment accounts meeting CRS thresholds; CARF applies only if the PSP also facilitates crypto-asset transactions |
| EMI / e-money token issuer | Full CDD; safeguarding and redemption obligations; enhanced monitoring for EMT/e-money flows | CRS: standard reporting; CARF: applicable where EMTs qualify as crypto-assets under CARF definitions |
Operationally, firms should build CARF-ready data fields into their onboarding and transaction-monitoring systems now. Retrofitting reporting infrastructure after the obligation crystallises is materially more expensive and creates regulatory risk.
The following timeline provides a phased approach to licensing and compliance readiness for firms operating in or targeting Liechtenstein. Each milestone is linked to a hard regulatory deadline or a practical best-practice window.
| Step | Typical Duration | Responsible Party |
|---|---|---|
| Pre-application meeting with FMA | 2–4 weeks (scheduling + preparation) | External legal counsel + compliance officer |
| Documentary package assembly | 6–10 weeks | In-house legal, compliance, finance and IT teams |
| FMA formal application review | 3–6 months (CASP); 4–8 months (payment institution) | FMA (applicant responds to queries) |
| Supplementary information requests | 2–6 weeks per round | Legal counsel + applicant management team |
| Licence grant and post-authorisation set-up | 2–4 weeks after approval | Compliance officer, operations, IT |
| CARF reporting infrastructure build | 8–12 weeks | IT, compliance, external tax advisors |
Firms should budget for at least one full-time compliance resource dedicated to the licensing process, alongside external legal support from payments & digital assets lawyers in Liechtenstein familiar with FMA practice.
The costs of licensing in Liechtenstein vary by authorisation type, but firms should anticipate several categories of expenditure. FMA application fees are set by regulation and vary depending on the licence category. Capital requirements under MiCAR range from a minimum of EUR 50,000 to EUR 150,000 depending on the crypto-asset services offered. Compliance-programme costs, including staffing, external audit, legal counsel and IT infrastructure, typically represent the largest ongoing expense. Industry observers expect total first-year compliance costs for a mid-sized CASP to fall between EUR 200,000 and EUR 500,000, including legal fees and system build-out.
Enforcement risk is real and increasing. The FMA has the power to impose administrative fines, issue cease-and-desist orders, revoke registrations or licences, and, critically, suspend or withdraw passporting rights. Operating without required authorisation after 1 July 2026 would constitute an unlicensed activity, exposing both the firm and its directors to regulatory and potentially criminal sanctions. The practical mitigation is straightforward: apply early, engage transparently with the FMA, and invest in genuine compliance rather than paper-only policies.
Choosing the correct authorisation depends on the services offered and the geographic scope of operations. The following table compares the four principal authorisation types relevant to payments & digital assets lawyers in Liechtenstein advising clients in 2026:
| Authorisation Type | Scope of Permitted Services | Key Licensing & Reporting Requirements |
|---|---|---|
| Payment institution licence (PSD III / PSR) | Payment execution, payment initiation, account information services, money remittance | Own-funds requirements (calculated under PSR methodology); FMA authorisation; PSD III governance and consumer-protection rules; CRS reporting; AML/CFT under SPG |
| CASP licence (MiCAR) | Custody and administration of crypto-assets, operation of trading platforms, exchange services, portfolio management, transfer services, advice | Minimum own funds (EUR 50,000–150,000 depending on service); FMA authorisation; MiCAR conduct and prudential rules; EU/EEA passporting; CARF and AML/CFT reporting |
| EMI licence (E-Money Directive / PSD III overlap) | Issuance of electronic money, e-money token issuance (where overlapping with MiCAR EMT rules), related payment services | Higher capital requirements; safeguarding obligations; FMA authorisation; PSD III consumer-protection and redemption rules; CRS reporting |
| TVTG registration (domestic) | Ten categories of TT service provision (token generation, custody, exchange, verification, etc.), Liechtenstein domestic scope only | FMA registration (lighter than full licence); AML/CFT obligations under SPG; no EU/EEA passporting; CARF reporting where crypto transactions are involved |
Firms offering both payment and crypto-asset services will likely need to hold more than one authorisation. A combined licensing strategy, designed from the outset with FMA input, avoids duplication and reduces total compliance cost.
Global Law Experts connects in-house counsel, compliance officers and fintech founders with experienced payments & digital assets lawyers in Liechtenstein who specialise in FMA licensing, TVTG compliance, MiCAR authorisation and cross-border passporting. Whether you are preparing a first CASP application, navigating the PSD III transition, or building a CARF-ready reporting framework, our network of Liechtenstein-based specialists provides hands-on support from pre-application strategy through to post-authorisation compliance. Use the Payments & Digital Assets, Liechtenstein practice area page or the lawyer directory to find a Payments & Digital Assets lawyer in Liechtenstein and arrange a licensing-readiness consultation.
This article was produced by Global Law Experts. For specialist advice on this topic, contact Josef Bergt at Bergt Law, a member of the Global Law Experts network.
posted 11 minutes ago
posted 37 minutes ago
posted 1 hour ago
posted 1 hour ago
posted 5 hours ago
posted 5 hours ago
posted 6 hours ago
posted 6 hours ago
posted 6 hours ago
posted 7 hours ago
posted 7 hours ago
posted 7 hours ago
Find the right Advisory Expert for your business
Sign up for the latest advisor briefings and news within Global Advisory Experts’ community, as well as a whole host of features, editorial and conference updates direct to your email inbox.
Naturally you can unsubscribe at any time.
Global Law Experts is dedicated to providing exceptional legal services to clients around the world. With a vast network of highly skilled and experienced lawyers, we are committed to delivering innovative and tailored solutions to meet the diverse needs of our clients in various jurisdictions.
Global Advisory Experts is dedicated to providing exceptional advisory services to clients around the world. With a vast network of highly skilled and experienced advisors, we are committed to delivering innovative and tailored solutions to meet the diverse needs of our clients in various jurisdictions.
Send welcome message
