Blog

The new PSD3 aims to transfer the regulation of the e-money business to the supervisory regime for payment services. However, the new term “e-money services” poses some difficulties of interpretation. Which specific activities will it cover in future?

In addition to MiCAR authorization, the custody of e-money tokens generally requires a license as a payment service provider under the ZAG. Which payment services are relevant in this regard, and what alternatives do affected crypto custodians have for applying for their own license?

DORA implementation: BaFin specifies requirements for simplified ICT risk management framework: BaFin provides financial companies with an overview of documentation, security measures, and processes for the simplified ICT framework, but emphasizes that the content must be tailored to each individual case in accordance with the principle of proportionality.

Opportunities and challenges: How is SupTech changing the fight against financial crime, and why are FinTech companies increasingly under scrutiny from regulators?

Stablecoins are the talk of the town. They are undoubtedly crypto assets and regulated under MiCAR. But can they also be considered monetary amounts under the ZAG in individual cases? If so, could the exception for limited networks apply to services relating to them in this case?

One AI system, two sets of rules: The compliance requirements of the GDPR and the AI Act overlap, but they are not identical. What are the differences and similarities?

Crypto custodians must comply with comprehensive compliance obligations under MiCAR regulations. This includes entering into crypto custody agreements with custody clients that contain the minimum content specified in MiCAR. But what exactly must such custody agreements cover?

In the context of public offerings of token sales designed in accordance with MiCAR, all purchasers should have the same rights. In the case of private investors, however, consumer protection may vary in individual cases due to the Rome-I-Regulation. Is the corrective measure of the Rome-I-Regulation for public offerings of financial instruments also applicable to token sales?

AI compliance in companies: When are AI models subject to the GDPR, and what challenges arise when complying with data protection regulations?

NFTs fall outside the scope of MiCAR, thus offering plenty of scope for innovative business models. But what specific use cases does the technology offer besides tokenized image usage rights, and when is an NFT actually unregulated?

MiCAR is not supposed to apply to tokens that can be classified as financial instruments within the meaning of MiFID regulation. But to which crypto assets does this exemption apply exactly? ESMA has commented on this. The principle of “in dubio pro MiFID2” applies.

From hype to obligation: To implement successful AI projects, companies must train their employees in the use of AI systems – but how can a company ensure that its employees have the necessary AI literacy?