The European Banking Authority (EBA) has released comprehensive guidelines implementing the "Travel Rule"—a regulatory framework mandating that fund and crypto asset transfers include accompanying information to combat money laundering (ML) and terrorist financing (TF).
Key Objectives of the EBA Guidelines
The EBA's guidelines aim to:
- Establish a consistent EU-wide approach for Travel Rule implementation
- Enable full traceability of crypto/fiat transactions by authorities
- Prevent, detect, and investigate ML/TF risks in cross-border transfers
🔗 Effective Date: These guidelines replace previous joint guidance under Regulation (EU) 2015/847 and will be enforceable starting December 30, 2024.
Core Requirements Under the New Rules
Information Obligations:
PSPs (Payment Service Providers) and CASPs (Crypto Asset Service Providers) must attach:
- Originator's name, account number, and address
- Beneficiary's name and account number
- Value and currency of transfer
Verification Protocols:
- Special procedures for identifying transfers involving self-hosted wallets
- Risk-based measures for incomplete/missing information
Sector-Specific Measures:
Differentiated requirements for:
- Traditional PSPs and Intermediary PSPs (IPSPs)
- CASPs and Intermediary CASPs (ICASPs)
👉 Essential reading for crypto compliance teams
Regulatory Context: EU's Alignment With FATF Standards
The guidelines operationalize Regulation (EU) 2023/1113, which extended Travel Rule obligations to CASPs—bringing EU frameworks in line with Financial Action Task Force (FATF) Recommendation 16.
📌 Global Adoption: As of 2024, 35 of 135 FATF-member jurisdictions have enacted Travel Rule legislation.
Compliance Roadmap for Businesses
| Step | Action | Deadline |
|---|---|---|
| 1 | Adopt updated AML/CFT policies | Before Dec 30, 2024 |
| 2 | Implement transaction monitoring tools | Ongoing |
| 3 | Train staff on new verification procedures | Within 60 days of publication |
Industry Response: Sumsub's Compliance Guide
Sumsub and Mercuryo recently published Mastering Travel Rule Compliance—a technical paper assisting Virtual Asset Service Providers (VASPs) with:
- Understanding regulatory complexities
- Implementing cost-effective compliance solutions
- Balancing user privacy with transparency requirements
🔍 Key Insight: The guide emphasizes automated verification systems to handle high-volume transactions while meeting EBA/FATF standards.
FAQ: Addressing Common Concerns
Q: How does this affect decentralized exchanges (DEXs)?
A: The guidelines currently focus on regulated CASPs, but DEXs interacting with VASPs may face indirect obligations.
Q: What penalties apply for non-compliance?
A: Violations could lead to fines up to 5% of annual turnover or license revocation under EU AML directives.
Q: Are there exemptions for small transfers?
A: Yes—transfers under €1,000 have simplified requirements, but originator verification remains mandatory.
👉 Proven frameworks for Travel Rule success