Breaking news

Cysec Adopts EBA Guidance On Dual Regulatory Framework For Electronic Money Tokens

by THEFUTURE.TEAM

The Cyprus Securities and Exchange Commission (CySEC) has formally updated cryptoasset service providers (CASPs) and prospective applicants regarding new guidelines from the European Banking Authority (EBA). The update follows the EBA’s June 10, 2025 opinion, which addresses the regulatory treatment of electronic money tokens (EMTs) under both the Markets in Crypto-Assets (MiCA) Regulation and the existing Payment Services Directive (PSD2).

Background And Context

Triggered by the European Commission’s December 2024 request, the EBA provided both short- and long-term recommendations to manage the inherent dual nature of EMTs as regulated under MiCA (Regulation (EU) 2023/1114) and as electronic money under Directive (EU) 2015/2366 (PSD2). The authority’s opinion forms part of a strategic effort to enhance consumer protection and ensure the stability of digital payment systems across the European Union.

Eba’s Long-Term Recommendations

In its long-term strategy, the EBA advised EU policymakers to amend the MiCA Regulation to incorporate payment-related obligations for EMTs. These amendments would enhance consumer protection, enforce robust security measures for payments, and introduce capital requirements. As an alternative, the EBA proposed integrating rules for EMTs into the forthcoming legislative processes for PSD3 and Payment Services Regulation (PSR), thereby alleviating the need for CASPs to secure a separate authorisation.

Short-Term Guidance Under The Existing Regulatory Framework

In the interim, as PSD2 remains active, the EBA issued practical guidance to National Competent Authorities (NCAs) to ease the regulatory load on CASPs. Key recommendations include:

  • Considering the transfer, custody, and administration of EMTs as payment services under PSD2;
  • Classifying custodial wallets as payment accounts;
  • Excluding the exchange of crypto-assets for funds or other crypto-assets—as defined by MiCA—from being regarded as payment services, thus avoiding unnecessary secondary authorisation.

Furthermore, a transitional period until March 1, 2026, has been advised for those CASP activities that require PSD2 authorisation. During this phase, entities may either apply for authorisation or collaborate with an existing payment service provider (PSP). For authorised entities or those holding a PSP licence, NCAs are expected to temporarily de-prioritise enforcement of select PSD2 provisions, such as safeguarding requirements and disclosure obligations, while maintaining critical measures like strong customer authentication and fraud reporting.

Implications And Next Steps

CySEC has urged all relevant stakeholders to consult the full EBA opinion to fully understand the legal basis and detailed advice on navigating the complex interplay between MiCA and PSD2. The clarity provided in this guidance underscores the EU’s commitment to a balanced regulatory approach that mitigates risk without stifling innovation in the cryptoasset sector.

Signed by George Theocharides, chairman of the Cyprus Securities and Exchange Commission, this update marks a significant milestone in regulatory convergence for digital finance across Europe.

Bank Of Cyprus Launches Cybersecurity Programme For Students In Limassol

by THEFUTURE.TEAM

Bank of Cyprus launched a cybersecurity initiative in Limassol as part of its “The Young Ask and Provide Solutions” programme, involving students in simulated cyberattack scenarios. The programme focuses on practical training in cyber defense and awareness of risks linked to digital infrastructure.

Innovative Collaboration And Real-World Challenges

In partnership with the Education Ministry and non-profit organization TechIsland, the programme provided a robust platform for young minds to confront realistic cyberattack simulations. Held at the modern Limassol regional offices of the Bank of Cyprus, the interactive space enabled 60 secondary school students from across the region to collaboratively tackle the complex threats facing national digital infrastructure.

Practical Exercises And Strategic Insights

Participants took part in workshops built around cyberattack scenarios. Tasks included identifying prevention strategies, planning response measures, and proposing public awareness approaches. The exercises focused on coordination and decision-making during cyber incidents.

Empowering Tomorrow’s Leaders

According to Elli Ioannidou, the programme is designed to combine theoretical knowledge with practical experience. She said the initiative aims to help students understand real-world challenges and develop problem-solving skills. Additional input was provided by Marios Stavrou, who noted that managing cyber incidents requires coordination across multiple teams and functions.

Building A Resilient Cyber Ecosystem

Experts, including Mathaios Panteli and Tanya Romanyukha highlighted the importance of early digital skills and cybersecurity awareness. Their comments focused on preparing the future workforce skills needed for managing digital risks. The programme forms part of broader efforts to strengthen cybersecurity awareness and education in Cyprus.

The Bank of Cyprus remains committed to investing in forward-thinking initiatives that inspire youth and enhance community awareness. Through these targeted efforts, the bank is not only addressing immediate security challenges but also contributing to a future where advanced technology and robust cyber defense mechanisms coexist seamlessly.

Uol
The Future Forbes Realty Global Properties
eCredo
Aretilaw firm

Become a Speaker

Become a Speaker

Become a Partner

Subscribe for our weekly newsletter