Reference

Crypto compliance glossary

Short definitions for licensing, AML, and supervision terms. Educational only — confirm obligations with counsel and official regulator publications.

• AML / BSA program

  Written policies, procedures, and controls to detect and report money laundering and related crime.

• Bitcoin ATM compliance

  Control framework for kiosk operators covering KYC, fraud prevention, AML monitoring, and consumer-protection disclosures.

• CARF (Crypto-Asset Reporting Framework)

  OECD standard for tax reporting on crypto-asset transactions by reporting service providers.

• CASP (Crypto-Asset Service Provider)

  EU MiCA term for firms performing regulated crypto services such as custody or exchange.

• CLARITY Act (proposed U.S. federal legislation)

  Draft market-structure bill dividing SEC and CFTC roles for digital assets (2026 negotiations).

• CTR (Currency Transaction Report)

  Report for cash transactions above regulatory thresholds at covered financial institutions.

• DFPI (California Department of Financial Protection and Innovation)

  California’s primary financial regulator for many crypto-asset and consumer-finance licensees.

• Digital Financial Assets Law (DFAL)

  California statute regulating certain digital financial asset business activity with or on behalf of California residents.

• EU crypto sanctions package (Russia/Belarus scope, May 2026)

  EU sanctions expansion restricting Russian and Belarusian crypto-provider access, including selected digital-asset rails.

• FinCEN

  U.S. Treasury bureau administering BSA rules for money services businesses and related entities.

• GENIUS Act

  U.S. federal law establishing a payment-stablecoin framework with reserve, audit, and oversight expectations.

• KYC (Know Your Customer)

  Customer identification and verification within an AML program.

• MiCA (Markets in Crypto-Assets Regulation)

  EU regulation authorizing and supervising crypto-asset service providers (CASPs) across member states.

• MSB (Money Services Business)

  FinCEN category for transmitters, exchangers, and other money services subject to BSA obligations.

• MU2 (individual / control-person filing)

  NMLS individual form bundle covering fingerprints, background, and responsibility attestations.

• NIST Cybersecurity Framework (CSF)

  Widely used framework for organizing cybersecurity governance, identify-protect-detect-respond-recover outcomes.

• NMLS (Nationwide Multilicense Licensing System)

  System used for many state license applications, including California DFAL filings.

• OFAC (Office of Foreign Assets Control)

  U.S. Treasury office administering economic sanctions lists and compliance expectations.

• SAR (Suspicious Activity Report)

  Confidential report filed with FinCEN when potential money laundering or related crime is suspected.

• Stablecoin

  Digital asset designed to maintain a stable value, often pegged to fiat currency.

• Travel Rule

  Requirement to share originator/beneficiary information on certain funds transfers, including many crypto flows.

• UAAR (unique alphanumeric application reference)

  DFPI reference identifier associated with certain kiosk and location reporting workflows.

• VASP (Virtual Asset Service Provider)

  FATF term for businesses conducting exchange, transfer, custody, or related virtual asset activities.

Explore topic hubs and the blog for longer guides.