CySEC MiCA reporting requirements are becoming an important compliance priority for crypto companies operating in Cyprus. The Cyprus Securities and Exchange Commission has proposed a new Directive that would require Crypto-Asset Service Providers to submit financial and prudential data under the EU Markets in Crypto-Assets Regulation.
The proposed Directive is currently open for public consultation and follows an earlier CySEC survey on MiCA-related fees and reporting obligations. The consultation deadline is January 12, 2026. Responses must be submitted by email in Word format and should indicate whether the respondent is an individual, company, or formal industry group.
#New Reporting Rules for Crypto-Asset Service Providers
Under the proposed framework, authorised CASPs will be required to provide regular regulatory updates in line with MiCA. These reports will include audited annual financial statements and key financial documents such as trial balance reports, balance sheets, and profit and loss statements.
The reporting structure is aligned with existing prudential standards for investment firms. This reflects CySEC’s broader approach to strengthening financial supervision and ensuring that crypto businesses meet clear regulatory expectations.
Category 1 CASPs are expected to report annually, while Category 2 and Category 3 CASPs will be required to report on a quarterly basis. If audited financial results differ from previously submitted data, CASPs will have five months from the end of the financial year to update the information.
#CySEC Reviews MiCA Applications and Emerging Market Risks
CySEC is also closely reviewing MiCA license applications before granting approvals. According to CySEC Chair Dr. George Theocharides, crypto-asset service providers, including major platforms such as Revolut and eToro, are subject to detailed regulatory assessment before receiving authorisation.
The regulator is also monitoring the use of artificial intelligence by investment firms, as well as risks linked to stablecoins and prop trading. These areas remain under close attention because of their potential impact on investor protection and financial stability.
At the same time, CySEC continues to address investor fraud and the role of online financial promotion. The regulator is monitoring finfluencers and issuing guidance to help ensure that marketing communications comply with EU standards.
#Stricter Compliance Environment for Cyprus Crypto Businesses
The new CySEC MiCA reporting requirements form part of a wider regulatory shift in Cyprus. The regulator is increasing supervision of funds, investment firms, and crypto-asset service providers as EU financial rules become more demanding.
In 2024, CySEC carried out more than 850 audits, imposed fines of €2.76 million, and revoked several licenses. These actions show that the regulator is taking a more active approach to enforcement and ongoing supervision.
Several major EU frameworks will continue to influence compliance in Cyprus, including MiCA, DORA, AIFMD II, and the EU AML Package. Together, these regulations are reshaping how financial and crypto companies manage reporting, governance, investor protection, cybersecurity, and anti-money laundering obligations.
Despite stricter oversight, Cyprus remains an active jurisdiction for financial services and crypto licensing. The market continued to grow, with 80 new companies authorised and many businesses preparing or submitting MiCA applications under the new regulatory framework.
#Conclusion
CySEC MiCA reporting requirements mark another step toward stronger crypto regulation in Cyprus. For CASPs, compliance will increasingly depend on accurate reporting, transparent financial records, strong governance, and readiness for ongoing regulatory supervision.
Crypto companies planning to operate in Cyprus should review their reporting systems, financial controls, and MiCA compliance framework in advance. As CySEC continues to strengthen oversight, early preparation will be essential for avoiding regulatory risks and maintaining market access.