Art. 4 Information to be exchanged in relation to crypto-asset service providers | RTS on competent authority information exchange | MiCA

Where necessary for the purpose of investigation, supervision and enforcement, competent authorities shall exchange the following information concerning crypto-asset service providers:

information and documents received in the context of the application for authorisation as a crypto-asset service provider pursuant to Commission Delegated Regulation (EU) 2025/305(¹¹)Commission Delegated Regulation (EU) 2025/305 of 31 October 2024 supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards specifying the information to be included in an application for authorisation as a crypto-asset service provider (OJ L, 2025/305, 31.3.2025, ELI: http://data.europa.eu/eli/reg_del/2025/305/oj). or of the notification pursuant to Commission Delegated Regulation (EU) 2025/303(¹²)Commission Delegated Regulation (EU) 2025/303 of 31 October 2024 supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards specifying the information to be included by certain financial entities in the notification of their intention to provide crypto-asset services (OJ L, 2025/303, 20.2.2025, ELI: http://data.europa.eu/eli/reg_del/2025/303/oj)., and where relevant supplemented thereafter in the framework of supervision, including:
1. the name of the crypto-asset service provider, its legal entity identifier as referred to in Article 17 of Commission Delegated Regulation establishing technical standards adopted pursuant to Article 68(10)(b) of Regulation (EU) 2023/1114, its website’s URL, its contact email address, telephone number, and physical address, and excerpts from national registers;
2. where applicable, the crypto-asset provider’s articles of association, as referred to in Article 62(2), point (c), of Regulation (EU) 2023/1114;
3. information about the management body of the crypto-asset service provider, including:
  the names and where available, the personal identification numbers of its members;
  information on the functions that each of its members hold within the crypto-asset service provider;
  where relevant, information on any changes to the management body and the competent authority’s assessment thereof;
4. information about the members of the management body of the crypto-asset service provider necessary to assess their good repute and suitability, including where available:
  information about their work experience, skills and time committed to their duties within the management body;
  the information about their reputation referred to in Article 7, point (e) of Delegated Regulation (EU) 2025/305;
5. information about shareholders holding 10 % or more of the share capital or voting rights of the crypto-asset service provider, including their identity, the amount of their holdings, and the information about their reputation listed in Article 2, point (a), of Commission Delegated Regulation (EU) 2025/414(¹³)Commission Delegated Regulation (EU) 2025/414 of 18 December 2024 supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards specifying the detailed content of information necessary to carry out the assessment of a proposed acquisition of a qualifying holding in a crypto-asset service provider (OJ L, 2025/414, 31.3.2025, ELI: http://data.europa.eu/eli/reg_del/2025/414/oj)., and where relevant, the competent authority’s assessment of any proposed acquisitions or disposals of a qualified holding in a crypto-asset service provider, in accordance with Article 83 of Regulation (EU) 2023/1114;
6. information about the organisational structure, operational conditions and compliance with the requirements set out in Title V of Regulation (EU) 2023/1114, including:
  the programme of operations setting out the types of crypto-asset services provided, including where and how those services are marketed, pursuant to Article 62(2), point (d), of Regulation (EU) 2023/1114;
  information about the governance arrangements and internal control mechanisms pursuant to Article 62(2), points (f) and (i) of Regulation (EU) 2023/1114;
  information concerning compliance with Articles 67, 68 and 70 of Regulation (EU) 2023/1114, including risk-management and accounting procedures;
  where available, the number of clients established or situated in a given Member State to which the crypto-asset service provider is providing services, the value of the crypto-assets managed or held for those clients, and the volumes of transactions executed for those clients;
  information about any situations in which a crypto-asset service provider is suspected of not complying with the requirements set out in Title V of Regulation (EU) 2023/1114, together with an explanation of the consequent measures taken or planned by the competent authority;
information relating to the records kept by crypto-asset service providers in accordance with Articles 68(9) and 76(15) of Regulation (EU) 2023/1114;
information about the authorisation as a crypto-asset service provider, including where the authorisation was refused or the application for authorisation was retracted, and information on any withdrawal of the authorisation pursuant to Article 64 of Regulation (EU) 2023/1114;
information on any penalty issued pursuant to Regulation (EU) 2023/1114, including criminal penalties, administrative measures or enforcement actions in relation to a crypto-asset service provider;
any other information necessary for cooperation among competent authorities in investigation, supervision and enforcement activities pursuant to Article 95(1) of Regulation (EU) 2023/1114.