US lawmakers have introduced long-awaited market structure legislation in the form of the “Digital Asset Market Clarity Act of 2025” or “CLARITY Act of 2025”, for short. US Representative French Hill announced the bi-partisan market structure bill for digital assets on May 29, 2025.

The bill was drafted by the House Committee on Financial Services, who previously penned the FIT21 Act, which passed in the House of Representatives but ultimately failed to clear the Senate. The CLARITY Act follows months of hearings on the matter within the Subcommittee on Digital Assets, Financial Technology, and Artificial Intelligence.

The bill aims to remove longstanding ambiguity related to digital assets oversight by clarifying the roles of both the United States Securities and Exchange Commission (SEC) and the Commodity Futures Trading Commission (CFTC). While much can change from the point of introduction to the ultimate passage of legislation, a comprehensive framework like the CLARITY Act has the potential to reshape crypto regulation entirely by enabling clear pathways for institutional and retail adoption to scale in a legal and compliant way across the entire US market.

The bill gained momentum following a June 4th House Committee hearing titled "American Innovation and the Future of Digital Assets: From Blueprint to a Functional Framework," where industry experts and former regulators debated the legislation's merits and challenges.

“How decentralized is it?” is the new “Is it a security?”

One of the principal innovations of the proposed legislation is that instead of asking "Is crypto a security?" the CLARITY Act asks “How decentralized is this system?”. This is key because the level of decentralization would ultimately determine jurisdiction underneath either the SEC (for early-stage tokens with centralized control designated as "Investment Contract Assets."), or the CFTC (for more mature and fully decentralized blockchain network tokens designated as "Digital Commodities.")

In other words: As assets become more decentralized, they transition from SEC to CFTC jurisdiction. 

Stablecoins are singled out

The emergence of stablecoins as crypto’s killer use case warrants special consideration, as we can see recognized by the creation of a third tier of assets called Permitted Payment Stablecoins. This class of digital asset is subject to light regulation due to the asset being adopted widely by consumers warranting some level of protection.

This creates a three-tier framework for digital asset regulation:

TradFi players can get in the game

One of the biggest unlocks of such a comprehensive market structure bill is a regulatory framework for traditional finance players to get into the crypto game without exposing themselves to unnecessary regulatory and compliance risk.

Under the proposed CLARITY Act, banks would be able to custody crypto without balance sheet liability, as well as trade more complex crypto financial instruments.

Clear pathway for crypto-native companies

The bill provides concrete guidance for crypto companies that have been operating in regulatory limbo. Key provisions include:

• $75 million fundraising exemption with a 4-year maturity timeline
• Founder trading restrictions until networks reach maturity
• Provisional registration pathways allowing companies to operate while agencies develop detailed regulations

For VASPs already operating in our compliance network, these provisions validate the approach we've been advocating for: building robust compliance frameworks from day one, even when regulations are still evolving.

DeFi is clearly addressed

Decentralized finance protocols receive explicit recognition and protection under the CLARITY Act. The bill includes self-custody rights and anti-fraud enforcement while acknowledging that truly decentralized protocols operate differently from traditional financial entities. This recognition is crucial for the DeFi ecosystem's maturation and integration with traditional finance systems.

Hearing insights

Support and skepticism

During the June 4th hearing, we saw both strong support and pointed criticism:

Former SEC Commissioner Elad Roisman called the bill a "significant step forward to providing the needed clarity" to digital markets.

Former CFTC Chairman Rostin Behnam agreed that current federal law has left regulatory gaps, urging Congress to address this void with "targeted legislation."

However, former CFTC Chairman Timothy Massad raised significant concerns, particularly around anti-money laundering provisions. When directly asked if the bill addresses AML adequately, Massad responded "not sufficiently," pointing to critical gaps:

• The bill only applies Bank Secrecy Act requirements to centralized intermediaries
• Crypto assets can be transferred without going through intermediaries, creating enforcement gaps
• Treasury needs more authority over decentralized protocols and foreign platforms
• Stablecoin issuers should be required to monitor suspicious wallet activity

"We've got to give the Treasury Department and other regulators adequate tools to deal with those risks. And I don't think we've done that yet," Massad emphasized, citing examples of Russian smugglers using Tether and Hamas using crypto funding.

The AML challenge: Where traditional frameworks meet DeFi

One of the most contentious aspects of the June 4th hearing centered on anti-money laundering provisions. Democratic members pressed witnesses on whether the CLARITY Act provides adequate safeguards against illicit finance, particularly in decentralized systems.

The Core Challenge: Traditional AML frameworks rely on intermediaries like banks to monitor and report suspicious activity. DeFi protocols, by design, operate without centralized intermediaries, creating what critics see as regulatory blind spots.

Representative Lynch directly asked: "Does this bill address anti-money laundering adequately?" The responses revealed a fundamental split in thinking about crypto compliance.

Industry Perspective: UniSwap's Katherine Minarik argued that blockchain analytics provide superior tools for tracking illicit activity in real-time, claiming traditional BSA requirements are "broken and in many ways dying." She emphasized that sanctions screening requirements still apply to all US companies, and blockchain's transparency offers better visibility than traditional finance.

Regulatory Skepticism: Former regulators expressed doubt that existing frameworks adequately address decentralized systems. The concern isn't just about tracking funds after the fact, it's about preventing illicit activity before it happens.

For institutions operating in our compliance network, this debate highlights why robust Travel Rule implementation is crucial. While regulatory frameworks evolve, institutions with comprehensive compliance programs, including pre-transaction screening and counterparty verification, position themselves ahead of whatever requirements emerge.

Balanced priorities: Innovation, consumer protection, and law enforcement

The CLARITY Act aims to achieve a critical balance of three important priorities:

• Market Innovation: Providing clear pathways for crypto-native businesses to grow and thrive
• Consumer Protection: Establishing safeguards without stifling legitimate innovation
• Law Enforcement Authority: Ensuring regulators have tools to combat illicit activity

However, the hearing revealed this balance remains contentious. Critics argue the bill creates enforcement gaps in DeFi, while supporters contend it improves on the status quo by bringing centralized crypto activities under Bank Secrecy Act coverage.

A critical week ahead: June 10 committee markups

The CLARITY Act faces a pivotal moment on June 10, when both the House Financial Services Committee and House Agriculture Committee are scheduled to hold markups of the legislation. This dual committee approach reflects the bill's comprehensive scope where the Financial Services handling securities and market structure issues, while Agriculture addresses commodity futures aspects.

These markups represent the first major procedural hurdle for the legislation. Success in both committees would provide significant momentum for floor votes and eventual Senate consideration.

What to expect next

While the June 10 markups represent crucial first steps, this is only the beginning of the CLARITY Act's legislative journey. With many procedural hurdles ahead, expect the bill's contents to evolve as it moves through Congress. The June 4th hearing revealed both strong bipartisan support and areas where compromise will be necessary. Expect to see the contents of the bill change shape as it makes its way through Congress, as the finer details and subsequent implementation of the bill will be critical for its long-term potential to reshape the industry in a positive way. 

For years, the US crypto industry has bemoaned the lack of clarity from regulators and displayed an appetite for following the rules if only they existed. This is our collective chance to put those rules in place for an important market in the global crypto economy, and provide the long-awaited opportunity for American crypto companies to remain competitive while ensuring that the regulatory clarity also allows international crypto firms to tap into the growing US market.

The bill's success could provide the long awaited opportunity for American crypto companies to remain competitive while ensuring regulatory clarity allows international firms to tap into the growing US market with confidence.

For institutions already building compliant crypto operations, the CLARITY Act validates the approach of implementing robust compliance frameworks before they're required. Those who've invested in comprehensive Travel Rule compliance, counterparty due diligence, and risk management systems will find themselves ahead of the curve as these requirements become standardized.

At Notabene, we've been building the infrastructure that will support this regulatory future. Our open-loop Transaction Authorization Protocol (TAP) and comprehensive compliance platform are designed for exactly the kind of regulated, interoperable crypto ecosystem that the CLARITY Act envisions.

The CLARITY Act isn't just about providing regulatory certainty, it's about building the foundation for crypto's integration into the broader financial system. For institutions ready to operate in this environment, the opportunity is enormous.

Read the full bill here

New milestone underscores widespread adoption of Notabene's transaction authorization network and the power of network effects in our rapidly growing ecosytem.

NEW YORK, May 22, 2025 — Notabene, the trust layer for global money movement, today announced it has surpassed $1 trillion in transaction volume on its platform. This significant milestone highlights the accelerating adoption of Notabene's transaction authorization infrastructure due to compounding network effects and increasing regulatory clarity across the globe.

The achievement comes as Notabene continues to power the largest Travel Rule-compliant network of regulated crypto institutions worldwide, with transaction volumes growing at an accelerating rate. The company's unique open network, powered by the TAP (Transaction Authorization Protocol) that it helped develop, creates powerful network effects, where each new financial institution that joins the platform increases the value for all participants.

"Reaching $1 trillion in transaction volume isn't just a number—it's a testament to the network effects we've built into our business model," said Alice Nawfal, Co-founder and President of Notabene. "What's most exciting is the acceleration we're seeing. The trust infrastructure we've created becomes exponentially more valuable with each new participant, which is why we're seeing volumes grow at an increasingly rapid pace. While the first $500 billion took took three and a half years, the second happened in just 6 months."

“…the first $500 billion took took three and a half years, the second happened in just 6 months."

Notabene's platform enables financial institutions to verify counterparties, confirm address ownership, and authorize transactions before execution and blockchain settlement. As regulatory requirements for crypto transactions continue to evolve globally, Notabene's pre-transaction verification approach has become essential infrastructure for VASPs and financial institutions engaging with digital assets.

The milestone comes amid growing regulatory focus on cross-border transactions, particularly with the implementation of the European Union's Transfer of Funds Regulation (TFR) and similar frameworks worldwide highlighted in the recently released 2025 State of Crypto Travel Rule Report. Notabene's unique open protocol approach to verifying counterparty trust across all regulated entities and their intermediary parties has positioned it as critical infrastructure for both crypto-native and traditional financial institutions building out their crypto strategies as demand for stablecoin services surges. 

"What makes this milestone particularly meaningful is that it represents real growth in economic activity moving across borders with confidence and trust," added Nawfal. "Each transaction flowing through our platform represents financial institutions that can now facilitate crypto transactions with certainty, unlocking new ways of orchestrating the flow of digital assets - particularly in the stablecoin space."

Notabene continues to expand its capabilities, including enhanced self-hosted wallet verification, multi-protocol support, and automated policy engine technology that enables compliant cross-border transactions at scale.

About Notabene

New York, London, April 23, 2025 — Notabene, a leading provider of Travel Rule compliance infrastructure, today released its annual State of Crypto Travel Rule: 2025 Report, revealing a decisive industry shift: compliance is no longer optional, it is the cost of doing business.

Based on survey data from 91 Virtual Asset Service Providers (VASPs) and 10 regulatory bodies, the report shows that 100% of firms plan to be Travel Rule compliant by the end of 2025. Nearly 9 in 10 expect to meet requirements in the first half of the year, reflecting a broad and urgent move toward regulatory alignment.

Compliance is now directly tied to reaching your counterparties. In the past year, VASPs have become significantly more assertive in their counterparty requirements. The report found a 431% year-over-year increase in VASPs blocking withdrawals until beneficiary information is confirmed, jumping from 2.9% in 2024 to 15.4% today. Additionally, 19.8% of VASPs now return deposits if the originator fails to provide the required Travel Rule data.

In the lead-up to the EU Transfer of Funds Regulation (TFR) enforcement date of December 30, 2024, the Notabene network saw a dramatic surge in activity from EU-based firms. Transaction volumes originating from EU Crypto Asset Service Providers increased by 200x, compared to an 8x increase in non-EU-originated volume during the same period. While 71% of EU Crypto Asset Service Providers missed this deadline, many are catching up fast. One third have implemented processes to identify and report repeat non-compliant counterparties to regulators, creating spillover pressure on global peers.

“This isn’t about checking a regulatory box. It’s about securing your place in the future of crypto finance,” said Pelle Brændgaard, CEO of Notabene. “The network of compliant institutions is growing, and those who aren’t part of it are already being left behind.”

The message from this year’s report is clear: Compliance is no longer a future requirement or a regulatory checkbox. It is now a gatekeeper for business. Firms that fail to meet expectations are being excluded from transactions, losing counterparties, and watching volumes slip away. 

Download the full report here.

ENDS

Media Contact: [email protected]

About Notabene:

Notabene is the trust layer for global money movement, powering the largest Travel Rule-compliant network of regulated crypto institutions. Our mission is to make crypto transactions a part of the everyday economy. We provide a nuanced view of the regulatory landscape by leveraging industry expertise, insights from our annual survey, and extensive research on public sector data. We aim to equip businesses and other industry stakeholders with the knowledge and tools necessary for success in a dynamic environment.

Our platform enables businesses to securely and seamlessly verify counterparties, authorize transactions, identify self-hosted wallets, and comply with global regulations. With SOC-2 certification, ISO27001 compliance, and a strong focus on privacy and user experience, Notabene ensures trust in every transaction.

Headquartered in New York, Notabene operates globally, with a presence in Switzerland, Singapore, Germany, and the United Kingdom. Trusted by over 200 companies, including Copper, Luno, Crypto.com, and Bitstamp, Notabene helps institutions build trust into every transaction while ensuring compliance with evolving regulatory frameworks.

Start for free with the world’s largest transaction authorization network at Notabene.id.

Connect with us: LinkedIn | Twitter

Five years ago today, we began our journey with the founding of Notabene.

At the time, FATF had just introduced the Travel Rule for crypto – the first globally coordinated regulatory framework for digital asset transactions. We immediately realized that the Travel Rule wasn’t just a compliance requirement, but rather the first step in achieving global regulatory clarity. Our experience in crypto gave us the foresight to see that this regulatory clarity would one day be a turning point for the entire industry, allowing crypto to truly scale and become a part of the everyday economy. We knew that for digital assets to move beyond speculation and into real-world utility, they needed the same infrastructure and safeguards that traditional global finance relies on – without losing the openness that makes crypto transformative.

In response to FATF’s Travel Rule, a fragmented ecosystem emerged. Implementation of the Travel Rule was made difficult by multiple competing closed protocols, lack of clarity from various jurisdictions, and mismatched timeframes for the rollout of regional rules – often referred to as the Sunrise Period. While most saw it as an impossible challenge, we saw it for what it was: the unlock for integrating crypto into the global economy. So we leaned in.

Our key innovation in solving the Travel Rule problem was to build open infrastructure to facilitate counterparty trust at scale. We did this with an open protocol (TAP) and a best-in-class pre-transaction authorization platform. By embedding trust into every transaction for our customers, we created the largest active network of regulated crypto institutions in the world, trusted by leading financial institutions at the forefront of crypto, from retail exchanges and on/off ramps, to custody infrastructure providers, and payment service providers across more than 95 jurisdictions across the globe. We’ve supported nearly $1 trillion in Travel-Rule compliant transaction volume and helped define the industry standard for secure, trusted, scalable compliance.

But our ambition was never limited to innovating in the compliance and RegTech space. From the start, we saw the Travel Rule as a gateway — the first step toward the regulatory clarity needed to drive crypto adoption across the entire financial ecosystem.

Fast-forward to today, and our prediction is coming true. Regulatory clarity is finally arriving. In the EU, APAC, Latin America, and now the US, we are seeing true clarity and support emerge from governments and regulators. As predicted, this is building momentum in the industry as traditional financial institutions mature their digital asset strategies, core infrastructure is built, and consumer adoption of stablecoins continues to skyrocket. The building blocks are nearly all in place: regulation, infrastructure, product-market fit. 

Trust is the final missing piece. 

Regulatory compliance is key, but isn’t enough on its own. Counterparties don’t exchange value with each other simply because they are allowed to, they do it because they want to. They do it when they have the confidence to transact with each other in a safe and secure manner. Without real trust between counterparties, nothing scales – not institutional adoption, and not consumer adoption.

The next generation of financial infrastructure isn’t just about speed or scale. It’s about trust.

And so we will continue to evolve — expanding our work beyond compliance to help build the trust layer for global money movement. This will be the core financial infrastructure that enables institutions to verify counterparties, authorize transactions, and unlock new markets — with trust embedded from the start. It’s the foundation that will make our vision a reality.

The building blocks are in place. The opportunity is enormous. And we’re just getting started.

We’re proud of what we’ve built, and even more excited to keep building it alongside our customers and partners.

To everyone who’s helped us get here, thank you.

Here’s to the first five years of Notabene — and to everything ahead.

–Pelle and Alice, Co-Founders, Notabene

At Notabene, we believe compliance shouldn’t come at the expense of innovation. That’s why we’re working closely with global regulators to help shape smarter rules for the future of finance.

Recently, the Financial Action Task Force (FATF) solicited a second round of feedback on proposed revisions to its Recommendation 16 (R16) and the corresponding interpretive note, which covers how financial institutions share information to prevent illicit activity.

On April 15, Notabene’s Regulatory and Compliance team responded with insights based on years of experience helping VASPs comply with the Travel Rule across jurisdictions.

Read our full response here

Here’s a quick breakdown of what’s changing, what it means for the crypto industry, and what we think needs more attention.

Why Requiring Geographic Address is Ineffective 

The FATF wants cross-border payments or value transfers above the applicable threshold to always include the originator's and beneficiary's geographic addresses. Notabene raised concerns in both FATF consultations about mandating geographic addresses in originator and beneficiary data.

In our first response, Notabene argued that addresses are unreliable identifiers, difficult to verify, and not useful for sanction screening. Their inclusion raises privacy concerns and could harm financial inclusion, especially in regions without standardized address systems. Notabene proposed removing the address requirement and instead allowing a risk-based approach to selecting identifiers.

In the second feedback round, the FATF introduced flexibility by allowing country and town as alternatives when full addresses aren't available. While this has been seen as an improvement, Notabene maintained that addresses are still problematic, and suggested that the FATF provide further guidance for cases where even town-level data is unavailable. We also recommended considering more reliable, standardized alternatives like phone numbers.

Virtual Account Numbers Can’t Hide the Source

In response to the FATF’s concerns about virtual IBANs and account identifiers, Notabene initially recommended enforcing accurate country designation. The FATF’s revised proposal improves on this by clarifying that account numbers should not obscure the country of fund origin, placing responsibility on the issuing institution.

In our response, Notabene supported this shift, but pushed for a bigger rethink: it’s time to move away from relying solely on account numbers to track money and promote more transparent models like transfer requests. We recommended recognizing solutions like the Transaction Authorization Protocol (TAP), which enables better counterparty identification—especially critical in complex virtual asset transactions. TAP is a decentralized, pre-transaction messaging system that helps identify counterparties before money moves. TAP gives everyone in the payment chain the information they need before a transaction is finalized, reducing fraud and improving transparency.

Pre-Validation is a Must in Crypto Transfers

Once a transaction hits the blockchain, it’s permanent. That’s why we support the FATF’s emphasis on pre-validation measures like verifying beneficiary info before a transfer goes through.

We also recommended that when a receiving institution detects a mismatch, they should notify their counterparty right away. This small change could go a long way in stopping fraudulent or misdirected transactions before they happen.

Defining the Payment Chain from Start to Finish

The FATF’s new definition of a “payment chain” is clearer than before, but we flagged one potential issue: what happens when the first institution receiving a payment instruction isn’t directly connected to the originator?

To mitigate this, Notabene recommended that the FATF provide guidance for complex scenarios, proposing principles to ensure complete information flow. These include requiring message originators to identify all known parties, and for each agent to add any missing identifiers and resolve compliance gaps through collaboration. This would strengthen the integrity of the payment chain across varied transaction structures.

Roadmap to Full Compliance by 2030

We appreciated the FATF’s proposal for a multi-year rollout of the new standards, with a target end date of 2030.

We recommended a phased approach for the crypto industry, focused first on the highest-risk areas (like verifying beneficiary info), and allowing time for organizations to adapt and improve throughout a learning period where good-faith compliance efforts are recognized before enforcing strict technical requirements.

How do FATF Recommendations Affect You?

Notabene welcomed the FATF’s decision to keep VASPs under the existing Regulation 15 framework while updating its interpretive note to reflect R16’s evolving information requirements. This approach ensures continuity while allowing tailored Travel Rule implementation through the Virtual Assets Contact Group (VACG).

To support this process, Notabene recommended using TAP as a testing ground for R16 application in the virtual asset space.

Leading the Future of Compliant Payments

The FATF’s proposed updates to R16 mark a turning point in global financial compliance. While traditional financial institutions may struggle with the transition due to entrenched systems, VASPs and stablecoin PSPs have a clear advantage. Operating on modern, programmable infrastructure, they are not only better equipped to meet evolving regulatory standards, but also to redefine what compliant, cross-border payments can look like in the digital age. By embracing these changes early and building compliance into their core operations, VASPs and stablecoin PSPs can lead the charge toward a more transparent, efficient, and secure global financial system.

At Notabene, we believe that regulation and innovation can go hand in hand, and that compliance tools should make financial services more accessible, not less.

Schedule time for a free consultation with our regulatory experts to learn more about the FATF’s proposed revision to R16, or about Notabene’s TAP solution for counterparty identification.

AOPP: Constraints, Limitations, and Adoption Challenges

The Address Ownership Proof Protocol (AOPP) emerged as a technical solution for cryptocurrency users to demonstrate wallet address ownership, primarily in response to regulatory requirements. Despite its promising premise, AOPP has struggled to gain widespread adoption across the cryptocurrency wallet ecosystem. This analysis examines why AOPP remains a niche protocol, which wallets have implemented it, and the fundamental limitations that have prevented it from becoming an industry standard.

A Compliance Solution for Self-Hosted Wallets

AOPP emerged as a technical solution designed to automate the process of proving ownership of self-hosted cryptocurrency wallets. By generating cryptographically signed messages without manual intervention, the protocol aimed to streamline compliance with regulations like the Financial Action Task Force's (FATF) Travel Rule. Swiss financial authorities, particularly FINMA, served as the catalyst for AOPP's development, creating a protocol that would theoretically bridge the gap between regulatory demands and cryptocurrency's decentralized nature.

Selective Adoption in a Growing Market

Years after its introduction, AOPP remains implemented in only a small segment of cryptocurrency wallets. Its current footprint in the ecosystem reveals both its niche utility and broader market hesitation:

BitBox02 is one of the protocol’s consistent supporters. This Swiss-developed hardware wallet integrated AOPP early, reflecting geographical alignment with the protocol's origins and the company's compliance-oriented approach.

Specter Wallet, with its focus on privacy and multi-signature implementations, has maintained AOPP support, positioning it as an option for users navigating both security and regulatory requirements.

What's particularly noteworthy is the pattern of reconsideration among several wallet providers. Trezor, a significant player in hardware wallets, initially implemented the protocol but subsequently removed it after user feedback. Blue Wallet and Sparrow Wallet similarly stepped back from AOPP support after community response. These adjustments highlight the complex balance wallet providers must strike between regulatory compliance tools and user preferences.

Self-Hosted Wallet Market Context

Self-hosted (non-custodial) wallets continue to gain popularity as cryptocurrency users prioritize direct control over their assets. The market for these wallets reached approximately $2.5 billion in 2024 and is projected to grow to $15 billion by 2033. Major players in this space include:

• MetaMask: Over 30 million users
• Trust Wallet: More than 60 million downloads
• Ledger: Approximately 6 million devices sold
• Trezor: A significant player in the hardware wallet segment

Notably, none of the market leaders currently support AOPP, significantly limiting its practical utility in the broader ecosystem.

A Solution Without an Audience

AOPP's limited adoption appears to stem from several structural factors that collectively explain its position in the wallet ecosystem.

Regional Orientation in a Global Market

Developed primarily for Switzerland's regulatory environment, AOPP addresses compliance frameworks that aren't universally applicable. For wallet developers serving diverse international jurisdictions, implementing a protocol designed specifically for Swiss compliance presents a challenging value proposition. This regional specificity naturally constrains AOPP's relevance for wallet providers with global user bases operating under different regulatory structures.

Development Resource Considerations

For wallet development teams, AOPP implementation requires specialized message signing and verification processes that introduce additional complexity. This technical requirement creates resource allocation questions, particularly for smaller teams and open-source projects. With limited development bandwidth, many providers have prioritized features with broader user demand over specialized compliance protocols.

User Experience Tradeoffs

Most cryptocurrency wallets already support standard message signing for Web3 interactions, a flexible approach serving multiple purposes beyond compliance. AOPP, while streamlining compliance-related verification, introduces a more structured but less common process. Wallets may prioritize flexibility and user familiarity over integrating a niche compliance-focused protocol.

The Inherent Limitations of AOPP

AOPP's trajectory reveals structural challenges that extend beyond simple market preferences to more fundamental design considerations.

The Adoption Challenge

AOPP faces a circular implementation challenge: its utility as a standard depends significantly on widespread adoption, yet achieving that adoption requires demonstrating consistent utility across use cases. With major wallet providers like MetaMask, Trust Wallet, and Ledger not implementing the protocol, AOPP lacks the critical mass necessary to function as a universal verification standard. This creates practical limitations for users, regulators, and exchanges seeking standardized verification methods.

Technical Scope Considerations

Even where AOPP is implemented, questions remain about its comprehensive effectiveness. The protocol cannot prevent all potential verification workarounds, which leads to questions about its practicality as a compliance tool. These limitations have factored into wallet providers' implementation decisions, particularly when weighing development resources against potential benefits.

Alternative Approaches in the Ecosystem

While AOPP has found limited implementation, the cryptocurrency ecosystem has naturally evolved toward verification approaches that align with both compliance needs and user expectations:

Standard Cryptographic Signatures have emerged as a widely implemented solution. Protocols like EIP-191, BIP-137, and Ed25519 provide similar proof-of-ownership capabilities with broader compatibility across wallet types. Their flexibility allows them to serve multiple purposes beyond regulatory compliance, creating natural incentives for both developers and users.

Extended Public Key Verification offers another approach that addresses regulatory goals through different technical means. By verifying xPubs, platforms can confirm wallet control while maintaining a seamless user experience—a balance that has gained traction across the ecosystem.

Micro-Transaction Verification, also known as the Satoshi Test, has emerged as another alternative that confirms wallet control by having users send specific amounts within designated time windows. This method works with virtually any wallet that can send transactions, providing broader coverage than protocol-specific approaches like AOPP.

Multi-Method Verification Systems have also gained traction, with companies like Notabene offering comprehensive solutions that combine several verification methods. These systems typically include cryptographic signature proofs similar to AOPP's approach, but complement them with alternative verification methods such as micro-transactions, visual verification through screenshots, and self-declaration options. This layered approach provides flexibility for users across different wallet types and technical expertise levels.

The Path Forward: Beyond AOPP

AOPP represents a thoughtful attempt to address the regulatory challenges facing cryptocurrency users and exchanges. However, its limited adoption reflects not just technical considerations but deeper questions about how compliance mechanisms integrate with cryptocurrency's core principles and user expectations.

As the cryptocurrency industry continues to mature, verification solutions will likely evolve along paths that balance regulatory requirements with user experience priorities. While AOPP may maintain relevance in specific regulatory contexts, particularly in Switzerland, the industry appears to be moving swiftly toward more flexible, multi-method approaches to wallet verification.

Companies like Notabene have recognized this need for flexibility by developing verification systems that work across virtually any wallet type, including popular hardware wallets like Ledger and Trezor that don't support AOPP. Their approach demonstrates that compliance and security don't necessarily come at the expense of user experience, particularly when various verification methods are available depending on the specific wallet technology.

The experience with AOPP provides valuable lessons for future protocol development. It demonstrates that successful compliance tools must consider not only regulatory requirements but also technical implementation costs, user experience impacts, and alignment with the diverse expectations of the cryptocurrency community. Looking ahead, the most successful verification approaches will likely be those that provide multiple options rather than requiring wallets to implement specific protocols, ensuring that Travel Rule compliance remains accessible regardless of which wallet technology users prefer.

Notabene, a leading provider of crypto compliance solutions, today announced a new partnership with Mastercard to bring simplicity and enhanced safety to their powerful crypto compliance tools. Through a pilot program with M2, a prominent Abu Dhabi-based virtual assets service provider (VASP) regulated by the Financial Services Regulatory Authority (FSRA) within the Abu Dhabi Global Market (ADGM), Notabene will integrate Mastercard Crypto Credential into its SafeTransact platform, facilitating the secure and privacy-preserving exchange of transaction metadata for M2’s digital asset trading services.

Mastercard Crypto Credential verifies transactions among consumers and businesses using blockchain networks, providing the assurance that a user has met a set of verification standards and confirming that the recipient’s wallet supports the transferred asset. The solution simplifies the consumer experience by allowing crypto exchange users to send and receive digital assets – such as stablecoins being leveraged for remittances, a growing use case – using simple aliases, instead of the typically long and complex blockchain addresses. This empowers people to enjoy peace of mind knowing they are transacting with verified users, while reducing the risk of losing assets due to typos or incompatible assets. It also brings greater trust and certainty to crypto transactions through the exchange of metadata and Travel Rule information.

This integration between Notabene, M2 and Mastercard aims to significantly improve counterparty identification rates, ensuring compliance with the Travel Rule while reducing friction in VASP-to-VASP and cross-border transactions. By employing advanced encryption and data minimization practices, the integration will help ensure that sensitive information is protected while also enabling convenient and compliant transactions. The pilot aims to showcase how VASPs and traditional financial institutions can come together to mitigate risks associated with digital asset transfers while maintaining operational simplicity for institutions and their retail customers.

Pelle Braendgaard, CEO of Notabene, commented on the partnership: "Our collaboration with Mastercard represents a significant leap forward in making crypto transactions as safe and straightforward as traditional financial operations. By combining our expertise in crypto compliance with Mastercard's global reach and digital assets capabilities, we're setting a new standard for consumer trust in crypto payments. This partnership is not just about solving today’s compliance challenges but also lays the groundwork for supporting innovations such as self-hosted wallet integrations, further expanding the scope of secure and trusted crypto transactions."

"As the digital assets ecosystem matures, Mastercard is continuing to innovate to stay ahead while ensuring safe, compliant, and trusted interactions,” said Raj Dhamodharan, executive vice president, Blockchain & Digital Assets at Mastercard. “By integrating Mastercard Crypto Credential with Notabene’s industry-leading compliance solutions, we're enhancing connectivity and trust to foster the adoption and integration of a range of digital assets – from Bitcoin to stablecoins – into the global financial ecosystem. This partnership with Notabene and M2 expands our reach and interoperability across the crypto landscape."

In collaboration with M2, Mastercard and Notabene are demonstrating practical applications of this joint solution. Deepak Garg, Chief Compliance Officer at M2, adds: "As a leading virtual assets service provider, we are committed to staying aligned with global regulatory standards while enhancing the user experience for our customers. By partnering with Notabene and Mastercard, we can bring even more secure and compliant digital asset transactions to a global audience. This approach not only strengthens trust with our customers, but also opens new opportunities for growth by expanding the network of reliable counterparties for safe and secure transactions."

The pilot program is currently limited to select regions, including the United States, Brazil, Mexico, Argentina, and several European countries, with plans for expansion in the near future.

Interested in integrating Mastercard Crypto Credential into your transaction authorization workflow? Visit notabene.id/mastercard to learn more.

Media Contact
Clay Fain, Notabene
[email protected]

About Notabene
Notabene is the crypto industry’s premier platform for pre-transaction authorization and decision-making, empowering customers to detect and prevent high-risk activities before they occur. With SOC-2 and ISO27001 security certification and a strong focus on privacy and user experience, Notabene’s flagship product, SafeTransact, offers a comprehensive suite of features, including real-time authorization, decision-making, counterparty sanctions screening, and self-hosted wallet identification. Headquartered in New York, Notabene operates globally and has a presence in Switzerland, Singapore, Germany, and the United Kingdom.

Trusted by over 200 companies, including Copper, Luno, Crypto.com, and Bitstamp, Notabene offers a full suite of Travel Rule compliance tools to ensure compliance with global and local regulations.
www.notabene.id

About M2
Headquartered in Abu Dhabi, M2 has a mission to drive virtual asset adoption within the UAE by delivering a secure and transparent trading environment for investors. The platform provides investors with a growing suite of virtual asset products while ensuring strict regulatory compliance. Regulated by the Financial Services Regulatory Authority (FSRA) located in the Abu Dhabi Global Market (ADGM), M2 Limited and M2 Custody Limited are committed to ensuring a safe trading experience, upholding the highest standards of regulatory compliance.

www.m2.com

About Mastercard

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re building a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

www.mastercard.com

‍

DORA and the Future of Digital Resilience: What It Means for ICT Providers Like Notabene

As the financial sector becomes increasingly digital, its dependency on resilient infrastructure is under the microscope. Cyber threats are rising, and regulators are responding. The EU’s Digital Operational Resilience Act (DORA), which took effect on January 17, 2025, establishes a new, binding standard for operational security across 20 categories of financial institutions and their third-party ICT (Information and Communications Technology) service providers.

What sets DORA apart is its shift from guidance to obligation. Operational resilience is no longer a best practice—it’s a legal requirement. Systems must be secure, regularly tested, and prepared to withstand real-world attacks and disruptions.

For ICT providers like Notabene, which supports financial institutions and VASPs with compliance infrastructure, the message is clear: trust begins with security, and resilience is now essential.

What DORA Means for ICT Providers

DORA introduces a unified framework that ensures every link in the financial services supply chain is built for resilience. Key requirements include:

• Resilience testing by default: ICT vendors must undergo penetration testing, simulated threat scenarios, and security assessments to demonstrate that they can handle operational disruption.
• Faster, clearer incident reporting: When incidents occur, financial institutions are required to report them promptly. Their ICT partners must support these disclosures with detailed technical input.
• Stricter oversight of third-party vendors: Institutions are expected to evaluate and continuously monitor their ICT providers to ensure alignment with both regulatory and contractual standards.

For companies serving banks, VASPs, and other regulated institutions, meeting these expectations signals more than compliance. It shows preparedness and earns trust.

Notabene’s Security-First Mindset

At Notabene, security isn’t an afterthought or a reactive measure—it has always been foundational. Long before DORA came into effect, we invested in the infrastructure, policies, and safeguards that operational resilience requires.

Here’s how we go beyond the baseline:

Bank-grade due diligence

Our infrastructure undergoes rigorous reviews by global financial institutions. We align with the same standards they apply to their own systems.

Third-party audits and continuous testing

We work with independent security firms to conduct regular penetration tests, vulnerability scans, and compliance checks. These audits help us proactively identify and mitigate risk.

Global compliance alignment

We maintain SOC 2 and ISO 27001 certifications, and follow industry-leading practices in encryption, access controls, and system integrity.

Resilient by design

Our incident response protocols are structured for speed and transparency:

• Real-time threat detection to identify anomalies early
• Streamlined escalation processes to coordinate responses internally and externally
• Client-facing communication tools to share timely updates and mitigation plans

We’ve built these systems not because regulations demanded it, but because our clients do.

Why DORA Compliance Matters for Financial Institutions & VASPs

With DORA now in force, regulated institutions are reevaluating their partnerships. Compliance checklists are no longer enough—they need demonstrable resilience, backed by action and transparency.

This shift will raise expectations across the board. Financial institutions will gravitate toward ICT providers who can prove operational readiness through certifications, audits, and clear governance.

At Notabene, we’re already there. Security and trust are embedded in everything we do. And as compliance becomes a foundational layer of financial infrastructure, we’re proud to support our clients in meeting and exceeding evolving standards.

DORA is reshaping how financial institutions and technology partners think about operational resilience. ICT providers that fail to meet its expectations will be left behind. But for those who embrace it, there’s an opportunity to lead with trust, security, and readiness.

For Notabene, DORA is not a challenge—it’s validation. The systems we’ve built were designed with this level of scrutiny in mind from the very beginning.

Let’s talk about how we can help your institution stay ahead of these expectations and build resilience that lasts.

As crypto compliance reaches its tipping point due to key jurisdictions enforcing Travel Rule regulations such as the European Union, Turkey, Seychelles, South Africa, and others – the Travel Rule has become a critical focus for Virtual Asset Service Providers (VASPs). The requirement to securely share and verify sender and recipient information along with crypto transactions is a foundational step toward fostering trust in the ecosystem. However, the methods employed to meet these requirements vary widely—and not all are sustainable.

One approach, the email-based method for data exchange, has gained traction among some platforms and VASPs. While this method might seem efficient on the surface, it faces significant scalability, security, and operational challenges that limit its effectiveness in the long term. 

Why do email-based solutions fall short? And what critical decisions should VASPs make in order to future-proof their compliance operations? 

Let's explore.

Operational Scalability: The Breaking Point

At the heart of the Travel Rule is the exchange of information between originating and beneficiary VASPs. Email-based systems satisfy this basic minimum requirement and typically follow a process like this:

1. The originator VASP sends a notification email to the beneficiary VASP.
2. The beneficiary receives the email, verifies their identity (often through a code or similar mechanism), and accesses the shared information.
3. The information is presented in a downloadable file, such as a JSON object.

While this process may work for VASPs with low transaction volumes, its scalability crumbles under the real-world demands that come with substantial daily transaction volume:

• Manual Verification: Each transaction requires individual attention, from opening emails to entering verification codes. For VASPs handling hundreds or thousands of transactions daily, this approach is operationally infeasible.
• File Processing Overload: Beneficiaries often receive raw data files, leaving them responsible for integrating the information into their systems. This creates additional friction and inefficiency.
• Lack of Automation: Without robust integration options, email-based solutions force compliance teams into repetitive manual workflows, increasing the risk of human error and missed deadlines.

In today’s fast-paced crypto environment, these limitations make it clear that email-based methods cannot support the industry’s growing needs.

Security and Privacy Risks

Another critical challenge for email-based solutions is ensuring data security and privacy—an area of increasing scrutiny in jurisdictions like the EU, where compliance is non-negotiable. Key concerns include:

• Data Exposure: Email, while widely used, is not inherently secure. Even with encrypted attachments, the transmission of sensitive customer information via email introduces vulnerabilities.
• PII Handling: Downloading and storing Personally Identifiable Information (PII) on local machines can lead to unintended breaches. Once the data leaves the secure confines of a system, it’s much harder to track and control.
• End-to-End Encryption: True end-to-end encryption, where data is encrypted from the point of origin to its final destination, is often missing in email-based systems. This leaves a critical gap in protecting sensitive information.

In fact, email-based systems are particularly vulnerable to cyberattacks, making them a less secure option for handling sensitive information. According to a Forbes article, in 2023, more than 94% of organizations reported email security incidents.

Poor User Experience for Beneficiaries

While many email-based systems focus on the needs of the originating VASP, they often neglect the beneficiary’s experience. This creates friction and decreases the likelihood of successful data exchange:

• Cumbersome Processes: Beneficiaries are required to open emails, verify their identity, and process files manually. For smaller VASPs with limited resources, this process can be overwhelming.
• No Response Mechanism: Many email-based systems lack a way for beneficiaries to confirm or reject transactions, leaving originating VASPs in the dark about the status of their requests.
• No process for handling missing information: These systems often fail to address scenarios where information is incomplete or inaccurate. Beneficiaries have no standardized way to request corrections or additional details, further complicating the process and risking regulatory non-compliance. This lack of flexibility increases frustration for compliance teams and hampers successful collaboration between VASPs.

The Path Forward: Scalable Alternatives

To overcome these challenges, VASPs need to embrace solutions designed for scalability, security, and efficiency. Key features of a robust Travel Rule compliance system include:

• Automation: Eliminating manual processes through API integrations and automated workflows reduces friction and increases scalability.
• Real-Time Verification: Direct communication between VASPs enables faster responses and better alignment with regulatory requirements.
• End-to-End Encryption: Protecting data at every stage of the process ensures compliance with GDPR and other privacy regulations.
• Feedback Mechanisms: Allowing beneficiaries to confirm or reject transactions creates a complete compliance loop, enhancing trust and transparency.

The Bottom Line

The crypto industry is at a crossroads. As compliance requirements become more stringent, the need for scalable, secure, and user-friendly solutions is greater than ever. 

Email-based Travel Rule solutions, while functional in limited scenarios, cannot support the industry’s growth or the regulatory demands of tomorrow. 

VASPs must prioritize modern, scalable platforms that address the full range of operational, security, and compliance needs. Now is not a time to settle for the bare minimum in terms of Travel Rule compliance, because security and scalability are not things you settle on. 

By considering needs beyond the most basic check-the-box requirements, VASPs can not only meet today’s compliance obligations but also build a foundation for a more efficient, secure, and compliant future for their business.

It’s official—Turkey has introduced FATF-aligned Travel Rule regulations to its cryptocurrency framework! These updates mark a major milestone for the crypto industry in the region, strengthening transparency and security for digital asset transactions. As leaders in this space, we're here to help you navigate what this means for your organization.

What You Need to Know

Travel Rule in Turkey will be in effect as of February 25, 2025.

Note: This is a summary of the new guidelines. For a full picture of Travel Rule compliance in Turkey, please visit our comprehensive Turkey jurisdiction page, or schedule time for a free consultation with our regulatory experts.

Regulating Body and Regulated Entities

The Financial Crimes Investigation Board (MASAK), under the Ministry of Treasury and Finance, is the primary regulatory authority overseeing cryptocurrency in Turkey. MASAK is responsible for implementing anti-money laundering (AML) and counter-terrorism financing (CTF) regulations, including the enforcement of the FATF-aligned Travel Rule. As such, Virtual Asset Service Providers (VASPs) in Turkey are required to register with MASAK and comply with its AML and CTF framework. Notably, MASAK has expanded the definition of regulated entities to include certain financial transactions and service providers, including e-commerce platforms and large-scale intermediary service providers.

What is the minimum threshold for the Crypto Travel Rule in Turkey?

While the Crypto Travel Rule in Turkey applies to all transfers, there is a wider scope of information that needs to be transmitted for transfers of 15,000 TL or above. Additionally, no information verification is required for transfers below 15,000 TL.

What personally identifiable information is required to be shared for the Crypto Travel Rule in Turkey?

Transfers ≥15,000 TL must include:

Originator:

• Name or entity name
• Wallet address or transaction reference number
• One of the following identifiers:
  • Address
  • Date and place of birth
  • Customer number
  • National identification number (e.g., citizenship number, passport number, or tax identification number)

Beneficiary:

• Name or entity name
• Wallet address or transaction reference number

Transfers <15,000 TL must include:

Originator and Beneficiary:

• Name or entity name
• Wallet address or a transaction reference number

Handling Missing Information

Crypto service providers must request missing details. Transfers with unresolved deficiencies will be returned or rejected, and persistent non-compliance could result in business restrictions.

Risk-Based Measures

VASPs must perform enhanced due diligence for high-risk transactions, collecting additional information and restricting transfers if necessary.

Unregistered Wallets

Transfers to and from unregistered wallets now require a customer declaration, ensuring all transactions comply with AML measures.

Implications for Compliance Teams

Businesses operating in Turkey must prepare for operational changes, such as:

✅ Updating systems to verify sender details for qualifying transactions.

✅ Implementing enhanced due diligence for high-risk transfers.

✅ Collecting declarations for unregistered wallet transactions.

What about VASPs outside of Turkey?

When dealing with foreign providers not obligated to share sender/recipient details, obtain customer declarations with similar identifiers. This means that non-Turkish VASPs will need to be prepared to respond to Travel Rule requests from any customers of Turkish VASPs, even if they are not operating in a regulated jurisdiction, or else face the potential of returned transfers, the rejection of future transactions or termination of business relationships.

Why It Matters

MASAK’s proactive measures create a more transparent and secure ecosystem for virtual assets, enabling trust between service providers and users. But with stricter requirements comes the need for robust compliance solutions.

💡 That’s where Notabene comes in. Our platform offers seamless compliance management, helping VASPs navigate these changes while reducing operational friction.

How is your team preparing for these changes?

To discuss how Notabene can support your compliance journey, schedule time for a free consultation with our regulatory experts

Notabene’s 2024 in Review: Scaling Trust, Compliance, and Innovation

As 2024 comes to a close, we reflect on a year where compliance, trust, and global connectivity reached new heights. From record-setting growth to major strides in regulatory clarity, Notabene helped pave the way for a more secure and compliant crypto ecosystem. While we celebrate this progress, we’re also looking ahead—toward a future where stablecoins and institutional adoption transform global payments.

2024 in Review

Record Platform Growth

In 2024, Notabene eclipsed $500 billion in total transaction volume, representing a 10x growth from the previous year. This includes over 32 million secure and compliant transfers across 85+ jurisdictions, and over 190 customers across the globe. We’re proud of what these numbers mean for us as a business, but just as importantly, they underscore the rapid acceleration of Travel Rule across the globe.

Of course, growth is not a singular measure of success in our space. Delivering on our core promise of helping our customers transact safely, our platform has now proactively identified and prevented over $1 billion in high-risk transactions!

Leadership in Regulatory Engagement

2024 was a pivotal year for advancing regulatory compliance in the virtual assets industry. Notabene played a critical role in supporting stakeholders worldwide by:

• Guiding 60+ customers in achieving readiness for major Travel Rule deadlines, including the EU’s Transfer of Funds Regulation (TFR)
• Facilitating regulatory sandbox sessions with the European Banking Authority (EBA) to explore solutions for compliance hurdles
• Engaging with regulators across 42 meetings in 2024 to foster industry-friendly solutions
• Responding to 14 regulatory consultations, shaping critical frameworks that impact the virtual asset ecosystem
• Producing 16 webinars, 8 conferences, and welcoming 935 new learners into our Notabene Academy Certification programs, bringing industry insights together with actionable industry activation of Travel Rule compliance and FATF guidance
• Supporting customers in making sense of new Travel Rule implementation plans across the globe including Australia, Isle of Man, Kazakhstan, New Zealand, Qatar, Seychelles, South Africa, Turkey, and beyond

Notabene continues to serve as a trusted partner, helping clients and regulators navigate the evolving landscape of compliance with innovative tools and deep expertise.

Inaugural Notabene Summit

This year, we hosted the Notabene Summit in Barcelona, a landmark event that brought together leaders in crypto, traditional finance, and regulation to collaborate on the future of compliant digital payments. The Summit featured in-depth discussions on regulatory frameworks, interoperability, and institutional trust, with insights from partners including Coinbase, Fireblocks, and Circle.

The event underscored the industry’s collective momentum in scaling global compliance solutions and driving adoption of secure, interoperable systems.

We can’t wait to share the details on our 2025 Summit—more information will be announced soon!

Product Innovation in Travel Rule Compliance

At Notabene, we’re continually raising the bar for what’s possible in compliance technology.

Next-Generation Self-Hosted Wallet Solutions
Our enhanced self-hosted wallet verification solutions deliver an unmatched user experience by providing four robust proof methods of verification for infinite self-hosted wallets, to seamlessly manage counterparty risk while providing a smooth user experience for our customer’s users

Introduced SafeTransact for Networks
We announced SafeTransact for Networks to improve network reachability and accelerate Travel Rule adoption by enabling a seamless VASP-to-VASP compliance layer directly on top of existing networks where trusted transactions are already occurring.

Expanded Open Protocols
We built the open-source Transaction Authorization Protocol (TAP) to further accelerate the industry’s movement towards open protocols and, along with the interoperability of our SafeGateway solution, enable more VASPs to easily connect across various protocols and networks.

Strengthened Network Security
We prioritized robust security measures to safeguard data and ensure trust across our platform. Notabene is SOC 2 compliant and ISO27001 certified, adhering to globally recognized standards for information security. Our platform incorporates advanced safeguards, including encryption, firewalls, and multi-factor authentication (MFA), ensuring the highest levels of data protection for our customers and their users.

Looking Ahead: 2025 and Beyond

With our recent $14.5 million Series B funding, led by DRW VC and supported by funds managed by Apollo, Nextblock, Wintermute, Jump Capital, Illuminate Financial, as well as participants from previous rounds, Notabene is poised to accelerate growth and innovation in 2025 and beyond. With this investment, we aim to accelerate our growth while focusing on what we believe will be a few prevailing industry trends in 2025.

Stablecoins have evolved from a niche use case to a critical component of the global payments ecosystem. Institutions and regulators are taking note, with major players entering the space and governments racing to establish clear guidelines.

For institutions, stablecoins offer a unique opportunity: fast, transparent, and cost-efficient cross-border transactions that integrate seamlessly into existing financial systems. However, they also bring new regulatory requirements that businesses must meet to operate confidently in this growing market.

Notabene is leading the way by providing tools that enable institutions to adopt stablecoins with compliance and trust at the core. With features like enhanced transaction monitoring, counterparty validation, and scalable compliance solutions, we’re helping businesses unlock the true potential of stablecoins in global payments.

With the EU’s Transfer of Funds Regulation (TFR) and MiCA taking center stage, 2024 marked a tipping point for regulatory clarity in the crypto space. As these frameworks set the tone for global compliance, momentum is building for 2025 to be a year of rapid progress.

In Europe, the December 30, 2024 enforcement of the TFR will bring uniformity to crypto asset transfers across the EU’s 27 member states (and 3 EEA members), forcing businesses inside and outside of the EU to adapt to stricter compliance requirements. Meanwhile, the U.S. is preparing to expand the Travel Rule to Registered Investment Advisers (RIAs) on January 1, 2026, signaling growing regulatory focus across major jurisdictions.

Beyond the EU and U.S., we anticipate further progress globally as more countries align their frameworks with FATF standards. The industry is entering what we call the “Dawn of the Travel Rule,” where trust and compliance will drive broader adoption of crypto assets on a global scale.

This trend isn’t just about meeting compliance mandates—it’s about unlocking opportunities for businesses operating in regulated environments. By leveraging Notabene’s solutions, companies can stay ahead of these changes, ensuring both compliance and competitive advantage.

We hear from customers all the time about the frustrating and avoidable challenges that result from closed Travel Rule protocols walled off by gatekeepers in the industry. This is why we have invested in developing decentralized protocols like TAP and solutions like SafeTransact for Networks.

Open protocols will increase the one metric that matters most to crypto businesses: reachability—the ability for VASPs and institutions to not only connect, but actually facilitate the exchange of information across different systems and networks. By removing technical and regulatory barriers, open protocols make it easier to transact securely and at scale.

We believe strongly that only open protocols can eliminate these barriers and enable institutions to transact securely and at scale—helping to realize our shared vision of a future where crypto is a part of the everyday economy. We’re beginning to see others follow our lead here towards a truly open future.

Join Us in Shaping the Future

To our customers, partners, and team: thank you for your trust and collaboration. Together, we are paving the way for a world where secure, seamless, and compliant crypto payments unlock new opportunities across borders and industries.

Ready to shape this future together? 

Book a call to learn more about our industry-leading Travel Rule solution

Contact us to learn more about partnership opportunities

Join our team as we hire across multiple departments in 2025

Here’s a roundup of what you need to know from the last week in global crypto regulatory news.

🌎 Americas

🇺🇸 United States

President-elect Trump appoints AI and crypto czar. President-elect Donald Trump has named David Sacks, a venture capitalist and former PayPal executive, as the White House’s artificial intelligence and cryptocurrency czar. Sacks is expected to lead the administration’s policies on AI and digital assets, signaling a proactive approach to emerging technologies.

President-elect Trump shifts SEC leadership. President-elect Donald Trump has nominated Paul Atkins, a former SEC commissioner and advocate for digital assets, to replace Gary Gensler as SEC chair. Atkins is expected to bring a more crypto-friendly approach to regulation.

🌍 EMEA

🇬🇧 United Kingdom

FCA unveils crypto regulation roadmap. The Financial Conduct Authority (FCA) released a detailed plan for comprehensive crypto regulations by 2026. Findings show over 12% of U.K. adults hold crypto, emphasizing the need for clear regulatory frameworks.

🇪🇺 European Union

EBA publishes explainer on AML/CFT in crypto. The European Banking Authority (EBA) released a comprehensive explainer on preventing money laundering and terrorism financing in the EU’s crypto-assets sector. The document highlights key requirements under MiCA and the latest AMLD amendments, including the implications of the grandfathering clause. This resource offers essential insights into the EBA’s efforts to align crypto compliance with EU standards.

💡Go deeper with our recent article on debunking the myth of the Grandfathering Clause for the European Travel Rule.

🇲🇦 Morocco

Morocco drafts crypto regulations. Bank Al-Maghrib introduced regulations developed with World Bank support, focusing on financial inclusion and long-term CBDC exploration.

🌏 APAC

🇹🇼 Taiwan

Taiwan accelerates AML compliance for VASPs. The Financial Supervisory Commission (FSC) moved the AML registration deadline for Virtual Asset Service Providers (VASPs) to November 30, 2024. Updated guidelines include tracking suspicious activities and unusual transactions.

🌐 Global Highlights

Global Blockchain Business Council (GBBC)

GBBC launches GSMI 5.0, mapping blockchain regulation. The latest edition of GSMI 5.0 features global regulatory developments, taxonomy for 391 key terms, and in-depth reports on sustainability, AI convergence, and decentralized finance.

Questions? Contact [email protected]