(Utkast) Delegert kommisjonsforordning (EU) .../... av 10. oktober 2024 om utfylling av europaparlaments- og rådsforordning (EU) 2023/1114 med hensyn til tekniske reguleringsstandarder for utveksling av informasjon mellom kompetente myndigheter
Europeisk rammeverk for markeder for kryptoverdier (MiCA): utveksling av informasjon mellom myndigheter
Utkast til delegert kommisjonsforordning sendt til Europaparlamentet og Rådet for klarering 10.10.2024
Bakgrunn
BAKGRUNN (fra kommisjonsforordningen)
(1) Markets in crypto-assets are inherently cross-border markets. It is therefore necessary to ensure that competent authorities in different Member States can exchange information that enables them to effectively supervise entities operating in their respective jurisdictions.
(2) The information to be exchanged by competent authorities pursuant to Article 95(1) of Regulation (EU) 2023/1114 should therefore allow those authorities to effectively carry out their investigation, supervision and enforcement actitivites under that Regulation. Consequently, it is necessary to specify the information that competent authorities may need to exchange to be able to perform those tasks.
(3) To ensure that competent authorities can effectively monitor the issuance and offer to the public of crypto-assets other than asset-referenced tokens and e-money tokens, competent authorities should exchange information relating not only to the cryptoassets themselves, including their technical characteristics and categorisation, but also to the offer of the crypto-assets, the issuers and offerors of the crypto-assets and the persons seeking admission to trading of crypto-assets. In particular, competent authorities should exchange general information and documents allowing the identification of the relevant persons and the understanding of the crypto-asset issuance and offering, including notified crypto-asset white papers, as well as information related to identified breaches, penalties and measures, enforcement actions and relevant compliance and conduct history.
(4) Similarly, to ensure that competent authorities can effectively supervise the issuance of asset-referenced tokens, competent authorities should exchange information relating to the technical characteristics of such tokens. In addition, they should exchange information necessary to ensure that asset-referenced tokens are only issued by authorised persons , and offered by the issuer or by a person authorised by the issuer. Furthermore, in order to assess whether an issuer of asset-referenced tokens complies with Title III of Regulation (EU) 2023/1114, competent authorities should exchange information and documents on the prudential requirements and governance arrangements of the issuer, including its management body, its suitability and its shareholders as well as any imposed administrative penalties and measures, enforcement actions and information on the issuer’s relevant compliance and conduct history.
(5) Competent authorities should, in order to be able to effectively monitor the issuance of e-money tokens, exchange information relating to the technical characteristics of such tokens. Furthermore, competent authorities should exchange information to ensure that e-money tokens are issued by entities referred to in Article 48(1) of Regulation (EU) 2023/1114, to ensure that such issuers comply with the relevant requirements in Title IV of that Regulation, and to exchange information on any imposed penalties and measures, enforcement actions and information on the issuers’ relevant compliance and conduct history.
(6) To ensure effective monitoring of crypto-asset service providers, competent authorities should exchange general information, constituting documents and other documents that provide insight into the structure and operational activities of such providers. For the same reason, competent authorities should also exchange information about the authorisation process and the subsequent compliance with Title V of Regulation (EU) 2023/1114. This information should include information on the management body of crypto-asset service providers, its suitability to manage such providers, and the reputation of its members, as well as information about shareholders, imposed penalties and measures, enforcement actions and information of the providers’ relevant compliance and conduct history.
(7) Competent authorities should also exchange relevant information on suspicions of market abuse in order to discharge their supervisory duties in a comprehensive manner.
(8) Finally, competent authorities should exchange information regarding any suspicions of irregularities in the activities of natural and legal persons falling within the scope of Regulation (EU) 2023/1114, as well as details of any risks such irregularities could pose to investor protection or financial stability.
(9) The exchange of information between competent authorities in relation to investigation, supervision and enforcement activities should be carried out in compliance with the right to protection of personal data of the persons concerned, as set out in Articles 7 and 8, respectively, of the Charter of Fundamental Rights of the European Union and must comply with Regulation (EU) 2016/679 . It follows that only personal data that are necessary for the purpose of investigation, supervision and enforcement activitieses under Regulation (EU) 2023/1114 are exchanged and that those data are not kept longer than necessary for that purpose.
(10) This Regulation is based on the draft regulatory technical standards drafted by the European Securities and Markets Authority (ESMA) in close cooperation with the European Banking Authority and submitted to the Commission.
(11) ESMA has requested the advice of the Securities and Markets Stakeholder Group established in accordance with Article 37 of Regulation (EU) No 1095/2010 of the European Parliament and of the Council .
(12) ESMA has not conducted open public consultations on the draft regulatory technical standards on which this Regulation is based, nor has it analysed the potential related costs and benefits of introducing such standards, as that would have been highly disproportionate in relation to the scope and impact of those standards, taking into account that this Regulation only affects competent authorities and not market participants.
(13) The European Data Protection Supervisor was consulted in accordance with Article 42(1) of Regulation (EU) 2018/1725 of the European Parliament and of the Council and delivered an opinion on 27 May 2024,