What MiCA asks of a CASP
The Markets in Crypto-Assets Regulation (MiCA) has been fully applicable across the EU since December 2024. A licensed or registered crypto-asset service provider (CASP) is a supervised, obliged entity: it has to operate an AML/CFT programme and be able to evidence its controls — customer due diligence, sanctions screening and transaction monitoring — to its national competent authority. Screening a wallet or a counterparty once and forgetting it is not enough; the supervisor expects a record of how and when each check was run.
The Travel Rule (Transfer of Funds Regulation)
The recast Transfer of Funds Regulation (TFR, Regulation (EU) 2023/1113) applies the FATF “travel rule” to crypto transfers. From the same date, a CASP must collect and transmit originator and beneficiary information alongside a transfer of crypto-assets, and screen that information against sanctions lists. There is no de-minimis threshold for the information itself — it applies to transfers of any value between CASPs.
Unhosted (self-hosted) wallet verification
For transfers to or from an unhosted wallet above €1,000, the TFR requires the CASP to take reasonable measures to verify that its customer owns or controls the self-hosted wallet. That means you need to know which address you are dealing with, whether it carries sanctions exposure, and how close it sits to known illicit clusters — before the transfer settles. This is exactly the check a wallet screening tool is built to run.
How Ichnos supports MiCA & Travel Rule screening
Ichnos screens the wallet and the counterparty entity in one request. The wallet is checked for sanctions exposure and illicit-cluster proximity against the OFAC SDN and EU consolidated lists — both of which publish crypto addresses directly — and the counterparty is screened for PEP and sanctions matches. You get one risk picture with a certainty tier on every match, instead of stitching a chain tool to a separate name-screening tool. See crypto sanctions screening for the list detail.
Ichnos is a screening tool, not a compliance guarantee. It runs the check properly and produces the defensible evidence; you remain the obliged entity and own the regulatory decision.
The evidence your auditor expects
Every check yields a signed, timestamped, versioned report (PDF and CSV) that records the wallet and/or entity screened, the lists and data sources it was run against, every match with its certainty tier and the reason it scored, and the exposure findings. It is designed to drop straight into a compliance file or an external AML audit — not a screenshot or a spreadsheet row. Firms seeking or holding a CySEC CASP registration in Cyprus can use the same artifact across every engagement.