The Deadline Before The Gateway
The UK crypto regime has a 2027 start date, but the first practical deadline is this week.
The Financial Conduct Authority’s perimeter-guidance consultation closes on 3 June 2026, two days from now. The consultation is not the whole rulebook. It is the document that tells firms whether the activities they already run, or plan to run, will be inside the new authorisation perimeter. That makes it the first authorisation test for exchanges, custodians, stablecoin issuers, brokers, arrangers and staking businesses that want to keep serving the UK market.
The FCA has said crypto will be regulated in the UK from October 2027, with authorisation applications opening in September 2026. The 2027 date is therefore misleadingly distant. Firms that wait until the final regime begins will already have missed the operating timetable that matters: decide whether an activity is in scope, map the permissions needed, fix governance and controls, and submit a complete application during the window.
That sequencing matters because the consultation is about interpretation. The FCA is asking for views on how it reads the regulated activities for issuing qualifying stablecoins, operating trading platforms, dealing and arranging deals in qualifying cryptoassets, safeguarding cryptoassets and staking. Those categories are close enough to existing business models to sound familiar, but the regulatory consequence is different. Once an activity is inside FSMA, the firm is not merely complying with financial promotion or anti-money-laundering registration rules. It is entering the FCA’s ordinary authorisation, supervision and enforcement architecture.
Scope Is The First Risk
For firms, the hardest question is not whether the UK is regulating crypto. That has been settled. Parliament made the Financial Services and Markets Act 2000 (Cryptoassets) Regulations 2026 on 4 February 2026, and the FCA’s regime page says the new cryptoasset regime is expected to come into force on 25 October 2027.
The harder question is whether a particular service, bundled product or group structure will be treated as regulated activity. Staking is the obvious example. A firm may see it as a network-service feature, a yield product, a custody adjunct or a platform function. The perimeter guidance is where those distinctions begin to matter. The same is true for firms that combine trading, custody, settlement, wallet infrastructure and token admission under one retail-facing brand.
The FCA’s preparation page is blunt about what it expects firms to do now. It tells firms to review the regulated activities, check the scope of permissions against their business model and risk profile, carry out a gap analysis against expected FSMA requirements, and develop a board-level implementation plan. It also warns that poor-quality or late applications can mean rejection, delay, refusal of authorisation or, for existing firms, an inability to continue cryptoasset activity when the regime begins.
That is a regulatory message, but it is also an operational one. The FCA is effectively saying that the quality of the application will be evidence of the quality of the business. A firm that cannot explain its activity perimeter, accountability map, customer-treatment controls, market-conduct arrangements and safeguarding model by the application window will struggle to argue that it can run those controls after October 2027.
September Is The Real Start
The authorisation gateway opens on 30 September 2026 and the application period runs to 28 February 2027, according to the FCA’s preparation material. Pre-application meetings have already been available to request since 11 May, with meetings due to take place from July. That means the FCA is creating a supervised runway before formal applications begin.
This is important for two groups.
The first is firms already registered under the money-laundering regime. Their existing systems and controls may help demonstrate readiness, but the FCA says they should still assess what must change in areas including market conduct, customer treatment and senior leadership. AML registration is not being treated as a passport into the new FSMA regime.
The second is traditional financial firms that want to add cryptoasset services. For them, the challenge is not simply obtaining a new permission. It is showing that crypto activity fits within the existing business model, governance, risk appetite and systems-and-controls framework. A bank, broker or payments firm that treats tokenised services as a product extension rather than a supervised activity may find the gateway less forgiving than the innovation rhetoric suggests.
The FCA and Bank of England’s separate tokenisation statement reinforces that point. On 18 May, they said UK financial firms needed more certainty on regulation and infrastructure as tokenisation grows, and opened a discussion on wholesale-market principles. The Bank also pointed to work on settlement hours, while the PRA issued Dear CEO letters on tokenised asset exposures and innovations in deposits, e-money and stablecoins. The policy direction is permissive, but it is not light-touch. Tokenisation and crypto activity are being invited into regulated finance on the condition that firms can evidence risk management and compliance.
The UK Divergence
There is a UK-specific divergence here. The EU’s MiCA regime is already in force, creating a single directly applicable framework across member states. The UK has chosen a slower FSMA route, with the FCA building rules, guidance, authorisations and supervisory expectations into the existing financial-services structure.
That may suit the City. It allows the FCA, PRA, Bank of England and Treasury to connect crypto policy with market integrity, operational resilience, client assets, prudential treatment and financial crime rather than build a stand-alone crypto silo. But it also means firms cannot prepare by reading one perimeter document in isolation. The FCA’s notes point to a stack of consultations on stablecoin issuance, custody, prudential rules, the Handbook, admissions and disclosures, market abuse and Consumer Duty.
The 3 June consultation close is therefore a useful marker. It is the point at which firms lose the chance to shape how the FCA describes the boundary between unregulated crypto activity and authorised financial services. After that, the next phase is less about policy influence and more about execution.
For UK consumers, the regime promises higher standards and clearer accountability. For firms, it creates a narrower path than the headline dates imply. The 2027 commencement date is when the new regime bites. The authorisation contest starts now.
Discussion
Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.