MiCA deadline 2026: crypto apps shift to licensed rails

Europe’s 1 July MiCA deadline is no longer a distant compliance date for crypto apps in the EU. The European Securities and Markets Authority says the bloc’s temporary transition into the Markets in Crypto-Assets Regulation, or MiCA, is ending. Smaller apps that cannot run licensed custody and trading themselves may still keep a familiar front end. The harder question is how much of the machinery behind that app has to move to a regulated provider.

ESMA’s 17 April statement and Harneys’ legal analysis give firms little room to treat 1 July 2026 as another soft deadline. Unauthorised CASPs, short for crypto-asset service providers, are supposed to have a wind-down plan already in place. Some will close local operations. Others will try to move customers, assets and order flow onto a provider that already has permission to operate.

MiCA replaces a patchwork of national crypto rules with an EU-wide regime for firms that safeguard customer assets, transmit orders or run trading venues. Custody means holding a client’s crypto and the keys that control it. Execution means routing and completing a trade. Settlement is the final transfer of assets and cash after that trade. Firms used the transition period to keep operating while they moved from older local arrangements into MiCA authorisation. ESMA is now saying the grace period is over.

For users, the change may be visible only in the fine print. The app icon can stay the same while custody, onboarding or trade execution moves to another company. Europe could keep many of the same consumer brands and still have fewer firms handling the riskiest parts of crypto trading.

What changes on 1 July

From 1 July, unauthorised firms are supposed to be winding down rather than expanding. ESMA said firms without MiCA authorisation should already have plans to return assets, transfer customers to an authorised CASP or let them withdraw to self-hosted wallets, meaning wallets users control themselves rather than through an intermediary.

That still leaves room for survival strategies. A firm that wants to keep the interface, marketing and local customer relationship may decide the cheapest route is to outsource the regulated plumbing underneath it. CryptoSlate’s analysis described the result as a shift toward licensed rails: the app remains visible to customers, but custody, onboarding, trading or settlement increasingly sits with a regulated specialist.

Harneys read the ESMA statement as a demand for a real wind-down by the deadline, not a promise left on paper. Customers should then see narrower exit routes. Assets move to an authorised counterparty, back to the user, or out of the business line covered by MiCA.

That leaves smaller firms with a difficult calculation. They can win authorisation themselves, partner with a firm that already has it, or exit the regulated activity. The partnership route is the one that could keep more brands alive than a simple count of licences would suggest.

Why licensed rails matter

The clearest example in the current record is the 19 June announcement from Bielik.io and BitGo Europe GmbH. Bielik.io, a Warsaw-based trading platform, said it would use BitGo Europe’s regulated custody, wallet APIs, onboarding, trading and settlement services across the European Economic Area. The companies said the integration supports more than 40 digital assets.

The arrangement shows how MiCA can shift bargaining power without erasing the smaller brand. The consumer app still owns distribution and user experience. The licensed provider owns the regulated core: where assets sit, how identity checks happen, how trades are executed and how compliance gets documented. Building all of that in-house is expensive and heavy. Renting it from a licensed specialist can be a cheaper way to stay in market, but it also moves more control and more economics to the infrastructure layer.

“We believe MiCAR is creating a clearer and more consistent regulatory framework for digital assets across Europe.”
Mike Belshe, CEO and co-founder, BitGo

BitGo’s comment, in the same announcement, reads as a business pitch as well as a statement about rule clarity. If MiCA makes full-stack compliance harder for smaller apps, licensed providers can sell regulated services to several brands at once rather than competing for every end user themselves.

“When evaluating infrastructure partners, we had a clear set of priorities: the security of our users’ assets and their confidence in our platform had to come first.”
Konrad Lemańczyk, CEO and founder, Bielik.io

Lemańczyk’s explanation, also in the announcement, captures the smaller-app side of the trade. Outsourcing is partly about survival. It is also a way to tell customers the app has not gone dark, even as someone else handles the regulated functions.

Who gains, and what to watch next

MiCA’s cutoff looks less like a clean cull than a consolidation mechanism. Licensed custodians and trading providers gain leverage because they can become the regulated backbone for several smaller apps at once. Smaller firms may keep their logos, communities and front-end design, but they grow more dependent on a smaller group of authorised rails for custody, onboarding and execution.

That changes the economics of the market. When the regulated layer is concentrated, front-end apps have fewer providers to bargain with and less room to differentiate on the back office. Their value shifts toward branding, local distribution and customer experience, while the authorised provider captures more of the compliance-intensive work that MiCA is designed to supervise.

Users may want to watch for quieter signals after 1 July: rewritten terms, new disclosures or custody notices showing that an app’s assets and trading flows now sit with a licensed partner. If European customers keep seeing familiar crypto brands while more of the underlying infrastructure migrates to regulated specialists, MiCA will have changed the market’s structure even where the storefront still looks the same.

For firms that cannot secure either authorisation or a licensed partner, ESMA’s statement leaves a blunter outcome: assets returned, accounts transferred or customers sent to self-hosted wallets. That is why the deadline matters now, before the visible winners and losers are obvious.