Updated 10/05/2025
In force

Initial Legal Act
Amendments
Search within this legal act
MiCAR ToolDelegated Regulation 2025/305
Article 4

Article 4 - Delegated Regulation 2025/305

Article 4

Information about governance arrangements and internal control mechanisms and conflict of interests

1.   For the purposes of Article 62(2), points (f) and (i), of Regulation (EU) 2023/1114 applicants shall provide to the competent authority the following information on their governance arrangements and internal control mechanisms:

(a)

a detailed description of the organisational structure of the applicant, where relevant encompassing the group, including the indication of the distribution of the tasks and powers and the relevant reporting lines and the internal control arrangements implemented, together with an organisational chart;

(b)

the personal details of the heads of internal functions (management, supervisory and internal control functions), including their location and a curriculum vitae, stating relevant education, professional training and professional experience and a description of the knowledge, skills and experience necessary for the discharge of the responsibilities allocated to those heads of internal functions;

(c)

the policies and procedures that are sufficiently effective to ensure compliance with Regulation (EU) 2023/1114 in accordance with Article 68(4) of that Regulation and a detailed description of the arrangements ensuring that relevant staff are aware of the procedures to be followed for the proper discharge of their responsibilities, including a detailed description of the procedures for the applicant’s staff to report potential or actual infringements of Regulation (EU) 2023/1114 in accordance with Article 116 of that Regulation;

(d)

a detailed description of the arrangements for keeping records of the business and internal organisation of the applicant in accordance with Article 68(9) of Regulation (EU) 2023/1114, including the applicant’s record keeping arrangements in accordance with Commission Delegated Regulation establishing technical standards adopted pursuant to Article 68(10)(b) of Regulation (EU) 2023/1114;

(e)

the arrangements enabling the management body to assess and periodically review the effectiveness of the policy arrangements and procedures put in place to comply with Title V, Chapters 2 and 3, of Regulation (EU) 2023/1114 in accordance with Article 68(6) of that Regulation, including all the following:

(i)

identification of the internal control functions in charge of monitoring those policy arrangements and procedures, together with the scope of their responsibility and reporting lines to the management body of the applicant;

(ii)

indication of the periodicity of internal control functions reporting to the management body of the applicant on the effectiveness of those policy arrangements and procedures;

(iii)

explanation specifying:

(1)

how the applicant ensures that the internal control functions operate independently and separately from the functions they control;

(2)

whether the internal control functions have access to the necessary resources and information;

(3)

whether those internal control functions can report directly to the management body of the applicant both at least once a year and on an ad hoc basis, including where they detect a significant risk of failure for the applicant to comply with its obligations under Regulation (EU) 2023/1114;

(iv)

a description of the ICT systems, safeguards and controls put in place to monitor the activities of the applicant and to comply with Title V, Chapters 2 and 3, of Regulation (EU) 2023/1114, including back-up systems, and ICT systems and risk controls, where not provided in accordance with Article 9 of this Regulation;

(f)

where relevant, a description of the arrangements put in place to prevent and detect market abuse in accordance with Article 92 of Regulation (EU) 2023/1114;

(g)

whether the applicant has appointed or will appoint external auditors and, if that is the case, their name and contact details, where available;

(h)

the accounting policies and procedures by which the applicant will record and report its financial information, including the start and end dates of the applied accounting year.

2.   In accordance with Article 72 of Regulation (EU) 2023/1114 to idenitfy, prevent, manage and diclose conflicts of interest, applicants shall provide to the competent authority all the following information on the management of conflicts of interests:

(a)

a copy of the applicant’s conflicts of interest policy, together with a description of how that policy:

(i)

ensures that the applicant identifies, prevents and manages conflicts of interests in accordance with Article 72(1) of Regulation (EU) 2023/1114 and discloses conflicts of interest in accordance with Article 72(2) of that Regulation;

(ii)

is commensurate to the scale, nature and range of crypto-asset services that the applicant intends to provide and of the other activities of the group to which the applicant belongs;

(iii)

ensures that the remuneration policies, procedures and arrangements do not create conflicts of interest;

(b)

how the applicant’s conflicts of interest policy ensures compliance with Commission Delegated Regulation establishing technical standards adopted pursuant to Article 72(5) of Regulation (EU) 2023/1114, including information on the systems and arrangements put in place by the applicant to:

(i)

monitor, assess, review the effectiveness of its conflicts of interests policy and remedy any deficiencies;

(ii)

record cases of conflicts of interests, including the identification, assessment, remedy and the fact whether the case was disclosed to the client.