Europe’s crypto market is approaching its most important regulatory deadline since the launch of the Markets in Crypto-Assets Regulation, with unlicensed exchanges, brokers, custodians and wallet providers facing a hard stop on serving EU clients from July 1.
The deadline marks the end of MiCA’s transitional period, the grace window that allowed crypto-asset service providers already operating under national regimes to continue while seeking full authorization under the EU’s new rulebook.
The European Securities and Markets Authority has made the position clear: after July 1, any crypto-asset service provider offering MiCA-covered services to EU clients without authorization will be in breach of EU law and must cease such services.
That means firms still relying on legacy national registrations, pending licence applications or offshore entities will have to wind down, migrate clients to authorized providers, or block EU access.
The shift could affect millions of European crypto users, not because users are being banned from holding crypto, but because the platforms they use may no longer be legally allowed to serve them.
Key Highlights
- ESMA says crypto firms without MiCA authorization must stop serving EU clients after July 1, 2026.
- Legal analysis estimates only around 200 CASPs have been authorized, compared with thousands of pre-MiCA VASPs.
- France has warned unauthorized providers could face blacklisting, website blocking and criminal penalties.
MiCA Deadline Turns Licence Status Into a User Issue
MiCA was designed to create a single, harmonised crypto market across the European Union. In principle, one authorized crypto-asset service provider can passport its licence across the bloc, replacing the fragmented pre-MiCA system of national registrations.
But as the transitional period closes, the gap between the old market and the new one has become stark.
Legal analysis by Hogan Lovells estimated that Europe had more than 3,000 registered virtual asset service providers before MiCA, with Poland alone accounting for more than 1,400 legacy registrations. By May 2026, the number of authorized CASPs had fallen to 194, including credit institutions. The firm also estimated that roughly three-quarters of the pre-MiCA VASP population could lose registration status as transitional periods expire.
ESMA’s own Interim MiCA Register, last updated on June 12, remains the official source users and firms must check. The register lists authorized crypto-asset service providers, issuers and non-compliant entities based on information provided by national competent authorities.
The key distinction for users is not whether an exchange has a recognisable brand or still operates an app. It is whether the exact legal entity serving them is authorized under MiCA.
ESMA has warned that MiCA protections apply only to the authorized EU entity, not to other companies in the same corporate group and not to offshore entities operating under the same brand.
What Happens After July 1?
From July 1, unlicensed CASPs must not continue business as usual with EU clients.
ESMA expects unauthorized firms to have already prepared and implemented wind-down plans. These plans should allow clients to recover or transfer assets without undue harm, including by moving crypto to an authorized CASP or to a self-custody wallet.
Authorized firms are also expected to manage client migration before the deadline, including proper onboarding and anti-money laundering checks.
In practice, users of non-authorized platforms may see withdrawal notices, halted deposits, restricted trading, new terms of service, re-verification requirements, or requests to migrate accounts to a licensed European entity.
The risk is highest where a platform has no MiCA licence, or where a global exchange has a MiCA-authorized subsidiary but continues to serve European users through an offshore entity. Under ESMA’s guidance, having a licence somewhere in the group is not enough if the user is not actually contracted with the authorized EU entity.
ESMA also narrowed the room for non-EU workarounds. Outside the limited reverse solicitation exception, third-country firms are not permitted to solicit EU clients or provide MiCA-covered services to them. The regulator also warned that authorized CASPs cannot outsource key services such as custody to unauthorized third-country entities.
France Signals Tough Enforcement
France has been one of the clearest regulators on the consequences of missing the deadline.
The Autorité des marchés financiers (AMF) has said that from July 1, only MiCA-authorized CASPs can provide crypto-asset services in France. Providers that continue without authorization may face a two-year prison sentence and a €30,000 fine under French law. The AMF also said it can publish blacklists, issue public warnings and seek court orders to block websites operated by unauthorized providers targeting French users.
In May, AMF President Marie-Anne Barbat-Layani stated that finalizing licence applications had become “very, very urgent.” She warned that firms without EU licences could face blacklisting and prosecution if they continue seeking EU customers after the deadline.
France is also part of a wider debate over whether MiCA’s passporting model is being applied consistently across the EU. Under MiCA, a licence issued by one member state can be used to operate across the bloc, but national regulators have raised concerns about uneven licensing standards and “regulatory shopping.”
That makes July 1 more than a compliance date. It will test whether MiCA has created a unified European crypto market or a patchwork of national enforcement approaches.
Millions of Users May Be Caught in the Transition
There is no official EU-wide public count of how many active crypto users remain on non-authorized platforms. However, industry estimates suggest the number could be significant.
Analysis shared by OKX Europe found that out of 18.5 million crypto app downloads in Europe between May 2025 and May 2026, around 7.6 million, or 41%, went to exchanges that did not appear on MiCA-authorized registers compiled from ESMA and national data.
ESMA declined to provide an estimate of users on non-authorized platforms, saying it could not share non-public information.
The app-download figure should be treated as an industry estimate rather than an official regulatory count. Still, it highlights the scale of possible disruption if users wait until the final days to check whether their platform is authorized.
For users, the immediate steps are simple: check the ESMA Interim MiCA Register or the relevant national regulator’s whitelist, confirm the legal entity named in their account agreement, and move assets if their provider is not authorized.
Compliance Gap Favors Larger Players
The sharp reduction in authorized firms reflects MiCA’s higher compliance bar.
Unlike the previous AML-focused national registrations, MiCA requires crypto firms to meet broader standards covering governance, safeguarding of client assets, prudential requirements, operational resilience, market integrity and investor protection.
That creates a more institutional market, but also raises costs.
Large exchanges, banks and well-capitalised fintech firms are better positioned to absorb licensing, legal, compliance and reporting expenses. Smaller operators, especially those registered under lighter pre-MiCA regimes, face a much harder path.
This is why the July 1 deadline is being described by lawyers and market participants as a market filter. MiCA is not simply harmonising Europe’s crypto sector; it is reducing the number of firms allowed to serve it.
Supporters argue the result will be a safer, more transparent market with clearer rules and stronger client protections. Critics warn that reduced access and fewer providers may push some users toward offshore platforms, decentralised venues, or non-compliant services beyond the EU’s regulatory reach.
Stablecoin Delistings Were the Preview
The exchange cutoff follows an earlier MiCA-driven shake-up in Europe’s stablecoin market.
After MiCA’s stablecoin rules began applying, platforms including Coinbase restricted services for stablecoins that did not meet MiCA requirements, including USDT, DAI, and several others, while continuing to support compliant assets such as USDC and EURC.
That stablecoin transition offered a preview of what is now coming for CASPs: assets and services that do not meet MiCA standards may remain available globally, but not through regulated European platforms.
The same logic now applies to exchanges, brokers and custodians. If a provider is not authorized, it cannot continue serving EU clients simply because it operated under an older national regime.
Europe Reviews MiCA as Its Deadline Arrives
The cutoff comes as the European Commission has already opened a review of MiCA, asking whether the regulation remains fit for purpose in light of market developments since it was adopted.
The consultation, launched on May 20 and open until August 31, covers questions around crypto-asset service providers, stablecoins, DeFi, tokenised assets and areas outside MiCA’s original scope.
That timing is notable. Europe is enforcing the first major phase of its crypto rulebook while also examining whether that rulebook needs to evolve.
For now, however, the July 1 deadline is fixed. Firms without authorization must exit or wind down. Users must check whether the platform holding their crypto is actually authorized. Regulators will be judged on how consistently they enforce the rules.
MiCA was meant to bring legitimacy to Europe’s crypto market. In the coming weeks, it will also decide who gets to remain in it.
