Blockchain &amp; Crypto-Assets 2026

Wołoszański & Partners (WLAW) is a Warsaw-based, independent law firm the roots of whose practice date back to 2008. The firm has a dedicated team of five lawyers advising on regulatory, technology and digital-finance matters, including crypto-assets, payment services, AML compliance, token issuance, licensing of crypto-asset service providers, M&A and disputes in the digital-asset sector. WLAW is the sole Polish law firm member of Alliott Global Alliance, ranked by Chambers Global 2026 among leading law firm networks, providing clients with cross-border access through the alliance. A key example of its work is CompliancePass/Web Shield Legal Library, a joint venture with Web Shield focused on legal and regulatory analysis of companies, merchants and digital business models for onboarding and risk-assessment purposes. As part of this project, WLAW has verified more than 500 crypto-sector companies, assessing licensing status, business models, AML exposure, consumer-risk issues and regulatory red flags. Web Shield is part of G2 Risk Solutions.

1. Overview of Blockchain and Crypto-Assets

1.1 Blockchain

1.1.1 Evolution of Uses of Blockchain

Market Practices and Recent Developments

Blockchain has had a meaningful presence in Poland for over a decade, principally through cryptocurrency trading and exchange services. Business activity in virtual currencies has been a regulated activity since October 2021, when amendments implementing the 5th Anti-Money Laundering Directive (AMLD5) introduced the obligation to be entered in the Register of Activity in the Field of Virtual Currencies kept by the Director of the Tax Administration Chamber in Katowice. Until the EU Markets in Crypto-Assets Regulation (MiCA) became fully applicable on 30 December 2024, no dedicated financial-services framework applied to crypto-assets – there were no prudential rules, no conduct-of-business standards and no specific consumer-protection regime.

The past 12 months have been defined by a striking regulatory mismatch. MiCA applies directly in Poland, but the national implementing act designating the competent authority has not yet entered into force. Two earlier versions of the bill were vetoed by the President; a third was passed by the lower chamber of the Polish Parliament (Sejm) on 15 May 2026. On 21 May 2026, the Senate presented its position and did not introduce any amendments. As a result, on 22 May 2026, the bill was submitted to the President for signature; however, he has not yet made a final decision on the matter. Therefore, the final shape of the Polish implementing legislation, and the timing of its entry into force, remain uncertain. The MiCA transitional window expires on 1 July 2026. There is market evidence of Polish operators pursuing MiCA authorisation through subsidiaries in other member states.

Current Use Cases

Commercial activity is concentrated in centralised crypto-asset trading, brokerage and exchange services, custodial wallets, and stablecoin-based payment products. Tokenisation of investment products and selected real-world assets is gaining traction, often through special-purpose vehicles, and the Central Securities Depository of Poland (Krajowy Depozyt Papierów Wartościowych or KDPW) has been engaging market participants on distributed ledger technology (DLT)-based post-trade solutions. Distributed-ledger technology is also being deployed in supply-chain, energy-trading and public-procurement contexts. Non-fungible tokens have been used by cultural institutions, but commercial NFT activity has materially slowed.

Issues on the Horizon

The dominant issue is timing – whether the implementing act enters into force in time to allow Polish operators to apply for MiCA authorisations domestically. Three other strands also call for attention: the operational implementation of the “travel rule” under Regulation (EU) 2023/1113, the digital operational resilience requirements under DORA (applicable from 17 January 2025), and the new tax-transparency framework under the eighth Directive on Administrative Cooperation (DAC8), with data collection by reporting crypto-asset service providers (CASPs) starting on 1 January 2026.

Intellectual Property

Blockchain projects have largely fitted within the existing Polish IP framework. Copyright and industrial-property law apply on technology-neutral terms. Open questions on non-fungible tokens (NFTs) and token trademarks have been addressed using general IP and unfair-competition principles rather than dedicated blockchain rules.

1.1.2 Regulatory Sandbox

No Classical Regulatory Sandbox

Poland does not operate a regulatory sandbox in the classical sense – there is no formal regime allowing firms to test innovative products under selective waivers of regulatory requirements. The Polish Financial Supervision Authority (Komisja Nadzoru Finansowego or KNF) does, however, run two complementary instruments aimed at fintech and DLT projects.

Innovation Hub Programme

The Innovation Hub Programme is a free, structured consultation channel for firms developing innovative financial products. Participation does not exempt firms from any rules; its purpose is to clarify how existing law applies to a novel product or service. It is open to supervised entities, entities seeking KNF authorisation and start-ups.

Virtual Sandbox and Sandbox DLT

Within the Virtual Sandbox programme, a Sandbox DLT environment based on Hyperledger Fabric has been made available in co-operation with the KDPW. This is a technical testing platform rather than a regulatory waiver – firms can test DLT applications and integrations in a simulated environment.

MiCA and the EU DLT Pilot Regime

The Polish MiCA implementing framework does not introduce a crypto-asset sandbox. A separate sandbox-style framework exists at EU level under the DLT Pilot Regime, but it is limited to DLT market infrastructures for tokenised financial instruments rather than crypto-asset services generally. To date, no Polish permission under that regime has been publicly reported.

1.1.3 Regulation of Blockchain Technology

Government and Regulatory Attitude

Polish authorities have taken a cautious but not hostile approach to blockchain. The Ministry of Digital Affairs and the KNF have publicly supported the controlled development of DLT solutions for the financial sector, while warning retail investors about the risks of unregulated crypto-asset markets. The political controversy around the MiCA implementing act in 2025–2026 has been about supervisory powers, not about whether to permit blockchain activity. No use case is banned outright; the only restrictions concern reserved financial activities provided without authorisation.

Blockchain Outside the Crypto-Asset Perimeter

Where blockchain technology is used outside the crypto-asset perimeter, no dedicated regulatory framework applies. Sector-specific rules apply on a technology-neutral basis. Regulated financial institutions outsourcing to or using DLT-enabled solutions remain bound by, in particular, banking-law outsourcing provisions, KNF Recommendation D on IT and IT-security risk and, from 17 January 2025, the Digital Operational Resilience Act (DORA).

Data Protection and the Right to Be Forgotten

Data-protection rules apply to blockchain-based products and services in the usual way under the GDPR and the Polish Act on the Protection of Personal Data. The well-known tension between immutable ledgers and rights to rectification and erasure has not been resolved by Polish law or case law; the data-protection authority (UODO) generally follows the analytical approach of the European Data Protection Board, including on off-chain storage of personal data and the use of hashing and similar privacy-preserving techniques.

1.1.4 Smart Contracts

No Dedicated Statutory Regime

There is no statutory definition of a “smart contract” under Polish law and no dedicated enforceability regime. Whether a smart contract is legally enforceable is answered by the general rules of the Civil Code. A code-based transaction reflecting the parties’ agreement on the essential terms can be a valid contract; declarations of intent may, in principle, be expressed in any form unless a specific form is required. Code-only records may also qualify as documents for the purposes of the documentary form introduced into the Civil Code in 2016, provided that the content of the relevant declaration can be accessed and the person making it can be identified.

Practical Limits and Hybrid Structures

Several practical limits apply. Where the law requires written form, a notarial deed – for example, for real-estate transfers and certain corporate transactions – or written evidence of the transaction, such as where a receivable evidenced in writing is assigned, pure code-based execution may be insufficient on its own. Hybrid structures, with a written or notarial “wrapping” agreement governing the contractual relationship and the smart contract serving as a technical mechanism of performance, are the market norm. Consumer-protection rules – pre-contractual information, the right of withdrawal and the prohibition of unfair terms – continue to apply and cannot be excluded by reliance on code. The treatment of force majeure, mistake and fraud in fully automated transactions has not yet been tested by Polish higher courts.

1.1.5 Industry and Trade Bodies

Industry bodies and expert organisations addressing blockchain technology in Poland include:

the Blockchain Polska Foundation, focused on knowledge-sharing, education and policy dialogue;
the Polish Chamber of Information Technology and Telecommunications (PIIT), representing the broader ICT sector and engaging in regulatory and digital-transformation initiatives;
the Polish Bank Association (ZBP), whose work on payments, digital banking and financial-sector innovation is relevant to blockchain, tokenisation and digital identity; and
the FinTech Poland Foundation, which has been active in the policy debate around the MiCA implementing legislation.

None of these bodies has supervisory or rule-making powers; their role is consultative, educational and representative.

1.2 Crypto-Assets

1.2.1 Property Considerations

Property Characterisation Under Polish Law

Polish law has not codified the property nature of crypto-assets. The Civil Code distinguishes between tangible things (rzeczy) and incorporeal rights. Crypto-assets are not tangible things, but are typically analysed as intangible assets or property rights (prawa majątkowe) where they have economic value, are transferable and can be the subject of legal transactions. This characterisation is reinforced by the tax treatment of virtual currencies and by AML legislation. With MiCA, the EU-level definition of a “crypto-asset” as a digital representation of value or of a right transferable and stored electronically using DLT or similar technology now operates alongside these domestic categories.

Enforcement of Ownership Claims

Because crypto-assets are not tangible things, the regime for vindicatory claims under the Civil Code does not apply directly. Ownership or entitlement disputes are usually pursued on contractual, unjust-enrichment or tort grounds, and may be supported by interim security measures, including measures addressed to centralised exchanges or wallet providers where appropriate. Criminal-procedure rules also allow for the securing of crypto-assets, including through orders or requests directed at virtual asset service providers (VASPs) or other intermediaries.

Transfer of Ownership

Transfer of crypto-assets is generally analysed under the general civil-law rules on the transfer of intangible assets or property rights, with the on-chain transaction serving as the technical mechanism by which control over the asset is transferred. Where the asset is held through a custodian, transfer may be reflected in the custodian’s internal records, subject to the contractual terms governing custody. Analogies to book-entry instruments may be useful in analysis, but they do not amount to direct application of the securities settlement regime.

Collateral Arrangements

Use of crypto-assets as collateral can be considered under the general civil-law rules on pledges over transferable property rights and, potentially, under the Polish law on registered pledges, although market practice is still developing and practical issues remain around identification, perfection, control and enforcement. The Polish Act on Certain Financial Collateral Arrangements, implementing Directive 2002/47/EC, is focused on cash, financial instruments and credit claims, and is not designed for general crypto-assets unless a particular token separately qualifies as an eligible financial instrument.

1.2.2 Access to Banking

Banking and Payment Partners

Polish law does not impose a specific statutory restriction on the choice of banking and payment partners by firms providing crypto-asset services in Poland; the relationship is governed primarily by the bank’s own commercial policy, AML and sanctions risk assessment and overall risk appetite. In practice, however, access to banking has been one of the most significant operational constraints for crypto-asset firms. Several banks have applied de facto restrictions on clients whose principal activity consists in crypto-asset trading or exchange, including refusing to open accounts or terminating existing relationships.

KNF Guidance and De-Risking

In 2022, a KNF communication on the application of the AML Act to co-operation with virtual-currency entities, issued in the context of EU sanctions against the Russian Federation and Belarus, called on supervised entities to apply a risk-based approach, including enhanced financial-security measures where appropriate and termination of the relationship where the relevant AML or sanctions risks could not be adequately mitigated. While the communication does not prohibit co-operation between banks and VASPs, it reinforced an already conservative approach to the segment.

Outlook Under MiCA

MiCA, the future Polish implementing legislation and the new EU AML framework may gradually reduce de-risking pressure as licensed CASPs come under an EU-wide supervisory regime. However, banking access is likely to remain dependent on each institution’s risk assessment.

1.2.3 ESG/Sustainable Finance

Poland has not adopted dedicated ESG or sustainable-finance rules for crypto-assets. EU rules apply on two levels. MiCA itself requires issuers and trading-platform operators to publish information on the environmental impact of the consensus mechanism, using the methodology developed by ESMA. Broader sustainable-finance rules – in particular the SFDR (Regulation (EU) 2019/2088) and the Taxonomy Regulation – apply to financial-market participants that include exposure to crypto-assets in their products, on the same basis as for any other underlying. Polish supervisors have not issued sector-specific ESG guidance for crypto-assets.

1.2.4 Tax

Scope and Basic Regime

Polish tax law has been updated to address digital assets, but only partially. The tax acts refer to “virtual currency”, a concept derived from Polish AML legislation, rather than to the broader MiCA concept of “crypto-assets”. The tax treatment is therefore relatively settled for mainstream exchange or payment tokens, but less certain for NFTs, utility tokens and tokenised real-world assets.

Income, VAT and Civil Law Transactions Tax

Income from the paid disposal of virtual currency is generally taxed separately at a flat 19% rate. Paid disposal includes exchanging virtual currency for fiat currency, goods, services or property rights other than virtual currency, while the exchange of one virtual currency for another is tax-neutral. Deductible costs are generally limited to documented acquisition and transaction costs. Corporate taxpayers are subject to a broadly parallel regime, subject to general CIT rules. VAT exemption applies to the exchange of virtual currency for fiat where the asset functions as a means of payment, and the sale or exchange of virtual currency is excluded from Polish tax on civil-law transactions.

Main Uncertainties and DAC8

The main uncertainties concern staking, lending, yield farming, airdrops and hard forks; the classification of NFTs, utility tokens and tokenised real-world assets; the treatment of crypto receipts in business activity; and the practical application of DAC8 reporting, particularly once reporting on crypto-asset transactions begins for the 2026 reporting period.

1.2.5 Insolvency

No dedicated insolvency regime

There is no dedicated insolvency or resolution regime for crypto-asset firms in Poland; the general Polish bankruptcy and restructuring laws apply. Three practical issues recur in proceedings involving crypto-asset operators:

the segregation of client assets, as assets belonging to clients should not form part of the bankruptcy estate if they can be legally characterised as third-party assets and remain properly segregated and identifiable, whereas clients may be left with general bankruptcy claims where segregation has not been maintained;
the technical ability of the trustee to identify, secure and dispose of the assets, which requires control over private keys and co-ordination with custodians and exchanges, alongside KYC compliance on any subsequent disposal; and
the choice of valuation date given crypto-asset volatility, which has not been definitively settled.

MiCA Wind-Down Requirements

MiCA introduces prudential, safeguarding and orderly wind-down requirements for CASPs, including an obligation to maintain a plan for orderly wind-down without undue harm to clients. As of the date of this publication, no Polish authority has been vested with a dedicated crypto-specific resolution mandate comparable to the bank-resolution framework.

1.2.6 Industry and Trade Bodies

Industry bodies specific to the crypto-asset segment include:

the Polish Bitcoin Association (Polskie Stowarzyszenie Bitcoin), one of the longest-standing organisations of this type in Poland;
the Polish Chamber of Blockchain and New Technologies (Izba Gospodarcza Blockchain i Nowych Technologii), which represents market participants active in blockchain and crypto-asset services and has been vocal in the debate on MiCA implementation; and
the FinTech Poland Foundation.

These bodies have no supervisory or rule-making powers; they participate in public consultations, conduct educational activities and provide a forum for the development of market practice.

2. Regulation

2.1 Regulators and International Alignment

Polish Financial Supervision Authority (KNF)

The KNF is the central supervisor of the Polish financial market and the most relevant regulator for crypto-asset businesses once the Polish MiCA implementing framework is in force. The KNF already supervises banks, investment firms, payment institutions and electronic-money institutions under the existing sectoral regimes, which is relevant in particular to tokenised financial instruments, payment services and e-money tokens. The Polish implementing bill designates the KNF as the national competent authority for the remaining MiCA scope, including the authorisation and supervision of ART issuers, offerors and persons seeking admission to trading of other crypto-assets, and crypto-asset service providers. Until the implementing act enters into force, however, Polish MiCA authorisations for CASPs cannot be granted domestically. The legislative process remains ongoing and the final scope of the KNF’s MiCA-related powers is subject to the outcome of that process.

Other Relevant Authorities

The AML supervisory layer rests with the General Inspector of Financial Information (GIIF), within the Ministry of Finance, while the Director of the Tax Administration Chamber in Katowice maintains the Register of Activity in the Field of Virtual Currencies. Data protection falls to the Personal Data Protection Office (UODO). The Ministry of Finance is the policy author of the implementing legislation and of the crypto-asset tax regime. The National Bank of Poland is not designated as a supervisor of the crypto-asset market, but remains relevant to policy discussions on payment systems, stablecoins, monetary policy implications and any prospective digital zloty.

International Alignment

Polish supervisors operate in close alignment with the EU regulatory architecture. The KNF participates in the work of ESMA, EBA and the European Systemic Risk Board, including in relation to MiCA Level 2 and Level 3 measures. The AML framework is anchored in the FATF Recommendations through successive EU directives, the Transfer of Funds Regulation and the EU AML package adopted in 2024, including the creation of the new EU Anti-Money Laundering Authority (AMLA). International Organization of Securities Commissions (IOSCO) and Bank for International Settlements (BIS) standards influence the Polish approach primarily through EU-level legislation, supervisory convergence and guidance rather than through separate Polish soft law. The political controversy in Poland over the implementing act has been primarily about the scope of KNF powers, sanctions and regulatory burden, not about whether Poland should align with international standards.

2.2 Crypto-Asset Regulatory Frameworks

Classification Under MiCA

From 30 December 2024, the primary classification of crypto-assets in Poland follows MiCA. The regulation distinguishes between asset-referenced tokens (ARTs), e-money tokens (EMTs) and other crypto-assets, a residual category that includes most utility tokens and unbacked cryptocurrencies. The pre-MiCA KNF position on the issuance and trading of crypto-assets, published in December 2020, remains relevant as interpretative guidance, particularly where a token may qualify as a financial instrument. Where a crypto-asset has the features of a financial instrument, MiCA does not apply and the existing securities and investment-services framework applies instead.

Three Regulatory Layers

Three overlapping regulatory layers govern crypto-assets in Poland: MiCA, which provides the EU-wide framework for the offering and admission to trading of crypto-assets and for the authorisation and supervision of crypto-asset service providers; the AML/CFT regime under the Polish AML Act, under which activity in virtual currencies has been a regulated activity requiring entry in the Register of Activity in the Field of Virtual Currencies, with VASPs treated as obliged institutions; and the financial-instruments framework, which applies where a token qualifies as a financial instrument rather than a MiCA crypto-asset.

Regulated Activities and Reserved Issuance

Under MiCA, regulated crypto-asset services include custody and administration, operation of a trading platform, exchange of crypto-assets for funds or other crypto-assets, execution of orders, placing of crypto-assets, reception and transmission of orders, advice, portfolio management and transfer services. Issuance of ARTs generally requires authorisation under MiCA, subject to the separate regime applicable to credit institutions, while the offering of EMTs is reserved to credit institutions and authorised electronic-money institutions.

Prohibited Activities and Retail Protection

Polish law does not impose a blanket prohibition on crypto-asset activity as such. Activities become prohibited where they are carried out without the authorisation, notification, white paper or registration required under the applicable regime. The third version of the Polish MiCA implementing bill, passed by the Sejm on 15 May 2026 and approved by the Senate, would introduce significant administrative and criminal sanctions for unauthorised activity, including unauthorised provision of crypto-asset services. The bill remains subject to the further legislative process and awaits presidential signature, and its final content may differ. MiCA also introduces enhanced protections for retail holders and clients, including rules on white papers, marketing communications, withdrawal rights and the provision of certain crypto-asset services.

2.3 Regulated Firms and Legal Wrappers

Wrapper Does Not Change the Underlying Activity

Using a legal wrapper, such as an investment fund, does not change the regulatory characterisation of the underlying activity. If the fund, its manager or another entity performs a regulated crypto-asset service, offers crypto-assets, issues tokens or deals in tokens that qualify as financial instruments, the relevant MiCA, AML/CFT, payment-services or securities-law regime may still apply. The wrapper instead adds an additional layer of fund regulation, investor-protection rules, custody, valuation and disclosure requirements.

Polish Fund Framework

Polish investment funds operate under the Polish Act on Investment Funds and Management of Alternative Investment Funds, which implements the Undertakings for Collective Investment in Transferable Securities (UCITS) Directive and the Alternative Investment Fund Managers (AIFM) Directive. UCITS funds and Polish public open-ended funds cannot, in practice, take direct exposure to crypto-assets where those assets fall outside the eligible-assets framework. Indirect exposure through exchange-traded products (ETPs), structured products or other instruments may be considered only where the instrument itself is eligible under the applicable fund rules and the investment complies with diversification, liquidity, counterparty-risk and risk-management requirements.

Alternative Investment Structures

Polish specialised open-ended funds, closed-ended funds and alternative investment companies may be better placed to obtain exposure to crypto-assets, directly or indirectly, but only where this is consistent with the applicable statutory limits, constitutional documents, investment policy and risk-management framework. The manager remains responsible for valuation, liquidity management, custody arrangements, conflicts of interest, investor disclosures and regulatory reporting.

Operational Considerations for Managers

Funds and managers with crypto-asset exposure need to consider the fund’s investment policy, the regulatory classification of the asset, custody arrangements – including whether a MiCA-authorised CASP is required or appropriate for crypto-asset safekeeping and how this interacts with the statutory role of the fund depositary – valuation methodology under volatile market conditions, AIFMD risk-management requirements and investor disclosures. Managers should be prepared to document their assessment of the underlying technology, the regulatory status of the relevant assets and trading venues, custody and private-key arrangements, liquidity, valuation and investor-suitability considerations.

2.4 Token Issuance

General Framework

Token issuance from Poland is legally possible, but since 30 December 2024 it must be assessed primarily under MiCA, together with securities law and AML/CFT rules where relevant. The absence of Polish MiCA implementing legislation has materially affected issuances requiring action by the Polish competent authority. ART issuers generally require authorisation from the national competent authority; in Poland that authority is expected to be KNF once formally designated by the implementing act, subject to the separate MiCA regime applicable to credit institutions. Until then, applicants for ART authorisation cannot submit applications domestically and may need to consider authorisation in another EU member state. EMTs may be offered only by credit institutions or authorised electronic-money institutions, subject to the applicable MiCA requirements.

White Paper Requirements

MiCA imposes mandatory white-paper requirements for public offers of crypto-assets and admissions to trading on EU trading platforms. The white paper must contain prescribed information about the issuer, offeror or person seeking admission to trading, the project, the crypto-asset, the rights and obligations attached to it, the underlying technology, the risks and the principal adverse impacts of the consensus mechanism on the climate and other environment-related matters. White papers for ARTs are subject to ex ante approval by the competent authority; white papers for crypto-assets other than ARTs and EMTs must generally be notified to the competent authority before publication but are not subject to prior approval. EMT white papers are subject to a separate MiCA regime applicable to credit institutions and electronic-money institutions.

Exemptions

For crypto-assets other than ARTs and EMTs, exemptions apply, in particular, to:

offerings addressed to fewer than 150 persons per member state;
offerings addressed solely to qualified investors;
offerings with a total consideration in the EU below EUR1 million over 12 months; and
certain utility tokens providing access to goods or services that already exist or are in operation.

Marketing Communications

Marketing communications must be clearly identifiable as marketing communications, fair, clear and not misleading, consistent with the white paper and include the required risk warnings. General advertising, consumer-protection and unfair-commercial-practices rules apply alongside MiCA.

2.5 Market Abuse

MiCA Market-Abuse Framework

MiCA establishes a dedicated market-abuse framework for crypto-assets admitted to trading, or in respect of which a request for admission to trading has been made. Three categories of behaviour are prohibited: insider dealing, including trading on the basis of inside information or recommending or inducing others to trade; unlawful disclosure of inside information; and market manipulation, including transactions, orders or other behaviour that give, or are likely to give, false or misleading signals, secure the price at an abnormal or artificial level, or otherwise manipulate the market. MiCA also captures conduct specific to crypto-asset markets, including behaviour relating to the operation of the consensus mechanism where it is used to influence price or trading conditions.

Differences From MAR

The MiCA framework is modelled on the Market Abuse Regulation (MAR), but adapted to crypto-asset markets. The concept of inside information is framed for crypto-assets and their issuers, offerors, persons seeking admission to trading and CASPs, rather than for listed issuers alone. Public disclosure is also adapted to markets where there may be no traditional issuer infrastructure, and the market-manipulation prohibition expressly covers certain technology-layer behaviour, including consensus-mechanism conduct. This differs from the traditional securities regime, where inside information and market manipulation are linked to financial instruments admitted to trading on regulated markets, multilateral trading facilities (MTFs) or organised trading facilities (OTFs) and to the issuer-disclosure framework under MAR.

Polish Enforcement

In Poland, enforcement of the MiCA market-abuse regime will depend on the Polish implementing legislation designating KNF and setting out domestic supervisory powers and sanctions. Under the implementing bill in its current form, infringements may be sanctioned by KNF with administrative fines and may also give rise to criminal liability. The final scope of these sanctions remains subject to the outcome of the legislative process. Until the Polish implementing act is in force, the EU MiCA prohibitions apply directly, but the domestic enforcement architecture remains incomplete.

Financial Instruments

The classical securities-market abuse regime under MAR continues to apply where a crypto-asset qualifies as a financial instrument. In that case, enforcement is conducted under the Polish securities-law framework, including the Act on Trading in Financial Instruments and the Act on Public Offering, which carry their own administrative and criminal sanctions.

2.6 Non-Compliance

Historical Enforcement

Historical enforcement against the Polish crypto-asset sector has been driven primarily by AML/CFT and tax authorities, rather than by a dedicated financial-services supervisor. GIIF and the tax administration have monitored compliance with the AML regime and with the obligation to be entered in the Register of Activity in the Field of Virtual Currencies, maintained by the Director of the Tax Administration Chamber in Katowice. Administrative fines are available for carrying on virtual-currency activity without entry in the register, while significantly higher sanctions may apply for breaches of AML obligations. The Polish prosecution service has also pursued criminal proceedings in connection with crypto-asset-related fraud, money laundering, market manipulation and the dissemination of false information.

Expanded KNF Toolkit Under the Implementing Act

Once the Polish MiCA implementing act enters into force, KNF will have a substantially expanded enforcement toolkit. The third version of the bill, passed by the Sejm on 15 May 2026 and approved by the Senate on 21 May 2026, would introduce significant administrative and criminal sanctions for unauthorised crypto-asset activity, breaches of MiCA obligations and obstruction of supervision. It would also give KNF additional supervisory tools, including powers relating to public warnings, temporary restrictions on activity and domains used for activity in breach of MiCA. These powers, particularly domain-blocking and account-blocking mechanisms, have been among the central controversies of the legislative process and are likely to be closely scrutinised in practice. The specific calibration of these sanctions and powers may change as the legislative process continues.

Cross-Border Enforcement and Outlook

Cross-border enforcement is supported by the MiCA co-operation framework, EU supervisory channels involving the European Securities and Markets Authority (ESMA), European Banking Authority (EBA) and, in the AML area, the Anti-Money Laundering Authority (AMLA), and by mutual-legal-assistance and information-exchange mechanisms in criminal and tax matters. Once the implementing act enters into force, KNF is expected to move from a transitional posture to active supervision and enforcement. Until then, the Polish framework remains predominantly AML/CFT- and tax-focused, complemented by criminal enforcement in cases involving fraud, money laundering or other general offences.

3. Licensing and Set-Up Requirements

3.1 Licensing Requirements

Parallel Regulatory Gateways

Two parallel regulatory gateways are relevant. Under MiCA, any person providing one or more crypto-asset services in the EU on a professional basis must generally be authorised as a CASP, unless it falls within one of the limited exemptions, benefits from the transitional regime or is otherwise permitted to provide certain crypto-asset services under MiCA without a separate CASP authorisation. Separate authorisation is required for issuing ARTs, while EMTs may be issued only by authorised credit institutions and electronic-money institutions. Under the Polish AML Act, business activity in virtual currencies has been treated as a regulated activity requiring entry in the Register of Activity in the Field of Virtual Currencies. Following the application of MiCA, that register is primarily relevant to the transitional position of existing Polish VASPs, while the AML/CFT obligations themselves continue to apply to CASPs.

Territorial Scope and Third-Country Firms

MiCA applies on a single-market basis. A firm providing crypto-asset services in the EU must be authorised in one member state and may, by way of notification, provide services in other member states. The home member state is generally linked to the place where the applicant has its registered office and effective management. A firm materially targeting Polish clients without authorisation in any member state will be in breach of MiCA and exposed to enforcement in Poland. Third-country firms may provide services to EU clients only where the service is provided at the client’s own exclusive initiative; ESMA interprets this reverse-solicitation exemption narrowly. Where a non-EU entity is effectively managed from Poland or uses Polish-based management and infrastructure to service EU clients, this may point to a need to establish an authorised EU entity and obtain a MiCA authorisation, rather than relying on a third-country structure.

Transitional Regime

The MiCA transitional regime allows entities that were lawfully providing crypto-asset services under national law before 30 December 2024 to continue doing so until 1 July 2026 or until they receive, or are refused, a CASP authorisation, whichever is sooner. Member states may shorten this 18-month window; Poland has not done so. The successive Polish bills and the KNF position confirm that the transitional regime applies to entities entered in the Register of Activity in the Field of Virtual Currencies on 30 December 2024. During the transitional period, Polish VASPs continue to operate under the national AML regime and cannot use the MiCA passport. Given the uncertain timing of the Polish implementing legislation, the practical situation of these entities after 1 July 2026 – should the implementing act not be in force by that date – remains a live regulatory concern. The KNF position of February 2026 confirmed this approach in the context of the absence of a designated competent authority for crypto-asset supervision in Poland.

3.2 Set-Up Requirements

Application Package

The CASP authorisation package under MiCA, supplemented by the ESMA Regulatory Technical Standards and Implementing Technical Standards, is comprehensive and covers, among other things, identification of the applicant, governance and internal controls, ICT-security and business continuity, prudential safeguards, fit-and-proper assessments of senior management, qualifying shareholders, AML/CFT policies, client-asset safekeeping, and conflict-of-interest arrangements.

Substance and Local Presence

MiCA requires a CASP to have its registered office in a member state in which it provides at least part of its crypto-asset services, its place of effective management in the EU, and at least one director resident in the EU. In practice, KNF is likely to expect sufficient substance, decision-making capacity and operational presence in Poland where Poland is the home member state, including locally accessible senior management and control functions such as compliance, AML, risk management, ICT security and internal audit, whether performed internally or through properly controlled outsourcing. Reliance on outsourcing, including to non-EU service providers, does not relieve the CASP of regulatory responsibility.

Prudential Safeguards

CASPs must hold prudential safeguards at all times in an amount at least equal to the higher of:

the permanent minimum capital requirement applicable under MiCA; and
one quarter of the fixed overheads of the preceding year.

The permanent minimum capital requirement amounts to:

EUR50,000 for the lower-risk services (advice, portfolio management, execution of orders, reception and transmission of orders, placing of crypto-assets and transfer services);
EUR125,000 for custody and administration of crypto-assets and exchange services (in addition to the class 1 services); and
EUR150,000 for the operation of a trading platform (in addition to all class 2 services).

Prudential safeguards may consist of own funds, an insurance policy or comparable guarantee meeting MiCA’s requirements, or a combination of these. The fixed-overheads calculation must follow MiCA and the applicable accounting framework, with only the deductions expressly permitted by MiCA.

Supervisory Fee and Timeline

The Polish implementing bill provides for an annual supervisory fee modelled on fees levied on other supervised entities; the exact methodology and cap have varied materially across successive drafts of the bill, and have been one of the central points of disagreement between the government and the Office of the President. The final calibration of the fee will depend on the outcome of the ongoing legislative process and should be verified against the act ultimately entering into force. Under MiCA, the competent authority has 25 working days to determine whether an application is complete and a further 40 working days to assess a complete application, subject to limited possibilities to suspend the period for additional information. In practice, applicants should allow for a materially longer supervisory engagement, including pre-application preparation and parallel work to align AML/CFT, ICT, governance and prudential arrangements with KNF’s expectations.

3.3 Change of Control

Change-of-Control Regime Under MiCA

MiCA establishes a change-of-control regime for CASPs modelled on the equivalent regimes applicable to credit institutions, investment firms and electronic-money institutions under EU sectoral legislation. Any natural or legal person, or persons acting in concert, intending to directly or indirectly acquire a qualifying holding in a CASP, or to further increase such a holding, must give prior notification to the home-state competent authority.

Notification Thresholds and Assessment Criteria

A qualifying holding is a direct or indirect holding representing 10% or more of the capital or voting rights, or any holding allowing significant influence over the management of the CASP. Notification is also required where an existing qualifying holding would reach or exceed 20%, 30% or 50%, or where the CASP would become a subsidiary of the proposed acquirer. The competent authority assesses the proposed acquisition against criteria including the reputation of the proposed acquirer, the reputation, knowledge, skills and experience of the persons who will direct the CASP’s business after the acquisition, the financial soundness of the proposed acquirer, the ability of the CASP to comply with MiCA on an ongoing basis and the absence of money-laundering or terrorism-financing concerns. The standard assessment period is 60 working days from acknowledgement of receipt of the complete notification.

Polish Enforcement

Under the Polish implementing bill as currently drafted, the change-of-control regime would be enforced by KNF, which may oppose the proposed acquisition where the statutory criteria are not met. Acquisitions completed without the required notification, or despite an opposition by KNF, may be subject to civil and administrative consequences, including restrictions or suspension of voting rights attached to the holding. The final scope of these enforcement powers remains subject to the outcome of the legislative process. Sectoral change-of-control rules continue to apply where the CASP holds a parallel authorisation, for example as a credit institution, investment firm or electronic-money institution.

3.4 Passporting

Single Passport for CASPs

MiCA establishes a single-passport regime for CASPs authorised in their home member state. A Polish CASP wishing to provide services in another member state, whether through the free provision of services or through a branch, would submit a notification to KNF, which transmits it to the host-state competent authority. The CASP may commence services upon receipt of confirmation that the communication has been made to the host authority, or at the latest 15 calendar days after submitting the passport notification to the home-state authority. The passport covers only the crypto-asset services for which the CASP has been authorised in Poland and cannot be used to extend the scope of authorisation. Parallel passporting mechanisms apply to ARTs and EMTs.

Polish Position

The value of a Polish passport depends on Poland completing its implementing legislation: until KNF is formally designated as the competent authority, no Polish MiCA authorisation can be granted and the passporting mechanism cannot be invoked from Poland. Given the continuing legislative uncertainty, the date on which a Polish passport will become available remains unclear. Polish entities seeking to operate cross-border in the meantime have to consider authorisation in another EU jurisdiction. CASPs authorised elsewhere in the EU may passport into Poland by notifying their home-state competent authority, without prejudice to Polish rules of general application.

Host-State Rules

Host member state rules of general application – including consumer protection, advertising, tax, data protection and language requirements – continue to apply where relevant. AML/CFT obligations will primarily follow the applicable EU AML framework and the CASP’s home-state supervision, although Polish AML rules may be relevant where the CASP has a Polish establishment or otherwise falls within the territorial scope of the Polish AML Act.

4. Cross-Border Services

4.1 Marketing

Marketing into Poland Under MiCA

Marketing of crypto-asset services into Poland is governed primarily by MiCA. EU-authorised CASPs may market their services to Polish clients on the basis of a passport notification. Third-country firms cannot actively market crypto-asset services to clients in the EU; the only narrow exemption is reverse solicitation under Article 61 of MiCA, where a Polish client initiates the relationship at their own exclusive initiative, without prior solicitation. ESMA’s Guidelines of February 2025 construe this exemption narrowly. Solicitation is understood broadly and may include direct or indirect promotion, including through affiliates, influencers, sponsorships, online campaigns, apps or EU-facing websites. The exemption applies only to the specific service or crypto-asset requested by the client, and not to follow-on offerings of other types of crypto-assets or services. Disclaimers or pre-completed “reverse solicitation” templates cannot override the factual nature of the engagement.

Marketing Communications and Supervision

Within Poland, marketing communications about crypto-assets must be fair, clear and not misleading, clearly identifiable as marketing communications, consistent with any applicable white paper, and include the prescribed risk warnings. KNF may act against misleading communications through its general investor-protection and supervisory tools and, once the Polish implementing act enters into force, is expected to receive additional powers relating to public warnings and domains used for activity in breach of MiCA. Polish advertising, consumer-protection and unfair-commercial-practices laws apply alongside MiCA, and consumer-protection enforcement may be carried out by the Office of Competition and Consumer Protection (Urząd Ochrony Konkurencji i Konsumentów or UOKiK). Polish-language requirements may apply to consumer-facing information under general Polish law.

Influencer Marketing

Influencer marketing is a particular area of practical risk. UOKiK has issued recommendations on the labelling of commercial content in social media and has treated undisclosed sponsorships as an enforcement priority. In the crypto-asset context, this overlaps with KNF’s long-standing warnings about communications targeted at retail clients and the risks of speculative crypto-asset products.

No Bespoke Polish Exemptions

There are no specific Polish exemptions from the marketing-restriction regime beyond those provided in MiCA itself. Reverse solicitation is available, but should be treated as a narrow factual exception rather than as a structural market-entry strategy.

4.2 White Labelling

White-label solutions are not a recognised way to circumvent the requirement for MiCA authorisation. Any person providing crypto-asset services in the EU on a professional basis must be authorised as a CASP, regardless of any branding or “powered by” arrangement. A white-label model may be viable only where the licensed CASP remains the actual provider of the regulated service and the white-label partner does not itself perform regulated crypto-asset services.

Where a CASP outsources operational functions to a third party, the outsourcing must comply with MiCA’s outsourcing requirements. The CASP retains full regulatory responsibility, supervisory access must not be impaired, and the outsourcing must not materially increase operational risk or undermine the quality of internal control. Branding arrangements must also be transparent: structures that obscure the identity of the regulated provider, mislead clients as to who is providing the service, or allow an unlicensed partner to carry out regulated activity may give rise to regulatory and consumer-protection consequences.

5. Decentralised Finance

5.1 Ability to Use DeFi

DeFi Permitted in Principle

Decentralised finance (DeFi) is not prohibited in Poland. Polish residents may interact with decentralised protocols and there is no general restriction on the use of such applications. The regulatory question is instead whether the relevant activity falls within the perimeter of MiCA or another regulated regime. Recital 22 of MiCA indicates that crypto-asset services provided in a fully decentralised manner without any intermediary should fall outside MiCA. Conversely, where crypto-asset services are provided only partly in a decentralised manner, MiCA may still apply. The regulation does not define “fully decentralised” in its operative provisions, and the threshold remains fact-sensitive.

Decentralisation as a Matter of Substance

EU supervisory authorities treat decentralisation as a matter of substance rather than label. The EBA and ESMA joint report of January 2025 analyses DeFi as a spectrum and highlights the relevance of identifiable intermediaries, governance arrangements, control rights, front-end operation, upgrade mechanisms, admin keys and other residual control points. As a result, DeFi structures with identifiable operators, maintainers, front-end providers, governance participants or other persons exercising material influence may fall within MiCA or other regulatory frameworks, depending on the services actually provided.

CeFi Firms Interacting With DeFi

Centralised finance firms in Poland may interact with DeFi protocols in connection with the services they offer, but they remain responsible for the regulated service provided to clients. A CASP using a DeFi protocol to execute client orders, source liquidity, provide staking or lending exposure, or support custody-like arrangements must consider MiCA authorisation, client-asset safeguarding, conflicts of interest, outsourcing, operational resilience, disclosure and conduct-of-business requirements. AML/CFT obligations continue to apply to client onboarding, transaction monitoring and sanctions screening, including under the EU travel rule where applicable.

5.2 DeFi Structures

No Dedicated Legal Form

There is no dedicated legal form for decentralised autonomous organisations (DAOs) or DeFi structures under Polish law. In their pure form, DAOs exist as smart contracts on a distributed ledger and have no legal personality, registered office or statutory form. Where a DeFi project requires legal identity – for example to contract with service providers, hold intellectual property or treasury assets, interact with regulated counterparties, employ or engage contributors, or operate a user-facing interface – a legal wrapper is typically used.

Choice of Wrapper

Polish-led DeFi projects commonly rely on ordinary corporate or foundation structures, either in Poland or abroad. The choice of wrapper depends on the project’s risk profile, tax position, governance model, investor expectations and the role the entity is intended to play, such as treasury holder, contracting party, protocol developer, front-end operator or governance facilitator.

Substance and Capital

There are no DeFi-specific substance or capital requirements under Polish law. The applicable requirements are those of the chosen legal wrapper. In practice, the level of substance should reflect the wrapper’s role: passive treasury vehicles may require limited substance, while front-end operators or entities interacting with regulated counterparties need appropriate management and controls.

Regulated Activity Through DAO Governance

Where the wrapper or any associated person provides crypto-asset services on a professional basis, issues or offers regulated tokens, operates a regulated trading venue or otherwise carries out regulated financial activity, the relevant MiCA, AML/CFT, securities-law or payment-services regime may apply. DAO governance does not relieve an identifiable regulated entity, operator or service provider of its compliance obligations.

5.3 Liability

Three Potential Liability Paths

There is no Polish case law definitively addressing the liability of participants in a DAO or other DeFi structure for harm caused by the protocol. Three liability paths may be available depending on the facts. Where a legal wrapper exists, claims may be brought against the wrapper under contract or tort. Where there is no wrapper but an identifiable individual or group acts as a de facto operator – for example by developing, deploying, maintaining or controlling the protocol or its user-facing interface – tort liability may be pursued against that individual or group under the Polish Civil Code. In exceptional cases, where token holders or contributors have acted together in a manner comparable to an unregistered civil-law partnership (spółka cywilna), exposure under partnership-type rules cannot be excluded, although this analysis has not yet been tested by Polish higher courts.

Regulatory Enforcement to Date

Polish regulators have not, to date, taken public enforcement action specifically against a DeFi protocol or DAO participants. Enforcement in the crypto-asset sector has so far focused mainly on AML/CFT compliance, tax issues, fraud, money laundering and other general offences, often in centralised-platform contexts.

6. Payments and Stablecoins

6.1 Payments

Payments in Crypto-Assets Are Not Prohibited

Crypto-assets are not legal tender in Poland; the Polish zloty is legal tender, but parties may contractually agree to settle obligations in crypto-assets.

Regulatory Perimeter

Intermediation of crypto-asset payments on a professional basis is likely to require CASP authorisation under MiCA, with cumulative obligations under the EU e-money framework where e-money tokens are involved. Fiat payment services remain regulated under the Polish Act on Payment Services transposing Payment Services Directive (EU) 2015/2366 (PSD2). Reform of PSD2 through the PSD3/Payment Services Regulation package is expected to recalibrate the interface between fiat payment services and e-money and crypto-asset (in particular stablecoin-based) payment arrangements.

6.2 Stablecoins

6.2.1 Fiat Currency and Algorithmic Stablecoins

MiCA does not use the term “stablecoin” in its operative provisions. Instead, it distinguishes between EMTs, which reference a single official currency, and ARTs, which reference any other value, right or combination of values or rights, including more than one official currency, commodities or other crypto-assets. Fiat-backed stablecoins will generally fall within one of these two categories, depending on the reference asset.

MiCA does not create a separate category for algorithmic stablecoins. A token that purports to maintain a stable value through an algorithmic mechanism must still be analysed against the definitions of an EMT, ART or other crypto-asset. Where the token claims to maintain a stable value but does not have an identifiable issuer and a compliant reserve of assets, it is unlikely to satisfy the authorisation and reserve requirements applicable to ARTs or EMTs. Such structures are therefore difficult to bring within the regulated stable-token framework under MiCA, but they are not subject to a standalone Polish prohibition merely because they are algorithmic.

6.2.2 Stablecoin Regulation

MiCA Framework for Fiat-Backed Stablecoins

Fiat-backed stablecoins are regulated in Poland under MiCA, which creates a bespoke EU framework for stable tokens while interacting with the existing e-money and payment-services regimes. MiCA does not use “stablecoin” as a standalone operative category. A token referencing a single official currency will generally be an e-money token (EMT), while a token referencing any other value, right or combination of values or rights – including more than one official currency, commodities or other crypto-assets – will generally be an asset-referenced token (ART).

E-Money Tokens

EMTs are treated as a DLT-based form of electronic money. They may be issued only by authorised credit institutions or electronic-money institutions and are subject both to MiCA-specific requirements and to the existing e-money and payment-services framework. In Poland, KNF already supervises credit institutions and electronic-money institutions under the existing financial-sector regimes, and the MiCA provisions on EMTs have applied since 30 June 2024. Where an EMT is classified as significant, enhanced requirements apply and the EBA has additional supervisory powers.

Asset-Referenced Tokens

ARTs are subject to a separate MiCA regime outside the traditional e-money framework. ART issuers, which may include EU-established legal persons other than credit institutions and electronic-money institutions, require authorisation by the national competent authority, must publish an approved white paper and are subject to ongoing prudential, governance, reserve-management, redemption, disclosure and reporting requirements. Significant ARTs are subject to enhanced requirements and direct EBA supervision.

Comparison With the Payments Framework

Compared with the pre-existing payments framework, MiCA adds crypto-specific obligations for EMTs and creates a new bespoke framework for ARTs. The two regimes pursue similar regulatory outcomes – reserve backing, segregation, redemption rights, governance, disclosure and consumer protection – but reach them through different legal routes. Where stablecoins are used to provide payment services, additional payment-services requirements may also be relevant.

6.2.3 Backing Assets

E-Money Tokens

For EMTs, the backing-asset regime builds on the existing e-money framework, supplemented by MiCA. Issuers must safeguard the funds received in exchange for e-money tokens, keep them segregated from their own assets and ensure that holders have a right of redemption at par value in the referenced currency at any time. The funds must be held or invested only in accordance with the safeguards and investment restrictions set out in the e-money and MiCA regimes.

Asset-Referenced Tokens

For ARTs, MiCA introduces a dedicated reserve-assets regime. Issuers must maintain a reserve of assets designed to cover the risks attached to the assets referenced by the token. The reserve must be segregated from the issuer’s own estate, protected from claims by the issuer’s creditors, held with eligible custodians and managed under a documented reserve-management policy. ART issuers are also subject to own-funds and governance requirements.

Composition and Custody Restrictions

MiCA restricts the composition and custody of backing assets for both EMTs and ARTs. In general, reserves must be held with authorised institutions and/or invested only in secure, low-risk and highly liquid assets, subject to concentration and risk-management limits. These rules are intended to ensure redemption, protect holders and reduce contagion risks.

Prohibition on Interest

Issuers of ARTs and EMTs, and CASPs, are prohibited from granting interest or any other benefit linked to the length of time for which a holder holds the token. Yield-bearing arrangements involving stablecoins, such as lending or staking products, must therefore be structured carefully and may trigger separate regulatory analysis.

6.2.4 Special Considerations

Significant Tokens Regime

MiCA introduces enhanced requirements for ARTs and EMTs classified as “significant” by the EBA. Significant tokens are subject to additional own-funds, liquidity, reserve-management, governance, reporting, recovery and redemption-planning requirements, reflecting the greater risks they may pose to financial stability, monetary policy transmission and payment systems. The EBA has a central role in the classification and supervision of significant ARTs and EMTs, while national competent authorities remain involved within the MiCA supervisory framework.

Monetary Sovereignty Safeguards

MiCA also contains specific safeguards for stable tokens that could affect monetary sovereignty. ARTs and EMTs referencing non-EU currencies are subject to additional monitoring and reporting requirements where they are used as a means of exchange in the EU, and MiCA provides mechanisms to restrict excessive use in that capacity. This is particularly relevant for USD-referenced stablecoins used for payments or settlement in the EU.

Polish Context

In practice, EU CASPs must ensure that any ART or EMT they offer, admit to trading or support complies with MiCA. Non-MiCA-compliant stablecoins may need to be restricted or delisted from EU-regulated platforms. In Poland, the National Bank of Poland and Polish supervisors are expected to monitor the systemic implications of stablecoin growth in parallel with EU-level work on the digital euro.

7. Tokenisation and Real-World Assets

7.1 Treatment

Substance Over Technology

Tokenised assets and real-world asset tokens are regulated in Poland by reference to the legal nature of the underlying asset or right, rather than by reference to the technology used to record or transfer it. If a token represents or gives rights equivalent to a financial instrument – for example a security, unit in a collective investment undertaking or derivative – the existing securities and investment-services framework applies. If the token does not qualify as a financial instrument, ART or EMT, it may fall within the residual category of “other crypto-assets” under MiCA.

No Dedicated Tokenisation Regime

Poland does not have a separate, comprehensive tokenisation regime. As a result, tokenisation projects are usually structured under existing legal frameworks, such as securities law, company law, fund regulation, contract law or property-law arrangements, depending on the asset being tokenised. The use of blockchain does not, by itself, change the legal nature of the underlying asset or remove the need to comply with the rules that would apply to the same asset in non-tokenised form.

Key Legal Issues

The key legal issues are classification, title to the underlying asset, enforceability of token-holder rights, custody, settlement, transfer restrictions, investor disclosure and regulatory perimeter analysis. For that reason, the legal architecture of the structure is generally more important than the technology used to record or transfer the token.

Wołoszański & Partners

Spektrum Tower, 19th floor
18 Twarda Street, 00-105
Warsaw (Warszawa)
Poland

+48 22 295 0890

wlaw@wlaw.pl wlaw.pl

Trends and Developments

Authors

A Member State Out of Step

More than 16 months after the Markets in Crypto-Assets Regulation (MiCA) became fully applicable across the European Union on 30 December 2024, Poland remains one of the very few member states in which the national implementing legislation needed to put the regulation into operational effect has not yet entered into force. The Polish bill on the market in crypto-assets has been before Parliament since the autumn of 2025 in three successive iterations. It has been passed by the Sejm (the lower chamber of the Polish Parliament) and twice returned unsigned by the President of the Republic, on 1 December 2025 and again on 12 February 2026. As of mid-May 2026, the third version of the bill was once again passed by the Sejm. On 21 May 2026, the Senate presented its position and approved the bill without amendments, thereby endorsing it in its entirety. The bill is currently awaiting the President’s signature, while the MiCA transitional period for legacy crypto-asset service providers is due to expire on 1 July 2026.

This state of legislative limbo is the defining theme of the Polish crypto-asset market in 2026. For practitioners advising Polish-licensed firms, foreign crypto-asset service providers (CASPs) passporting into Poland, and the country’s substantial retail-investor base, the unresolved question of when – and in what final form – the Polish Financial Supervision Authority (Komisja Nadzoru Finansowego or KNF) will become the designated competent authority under MiCA dominates almost every strategic conversation. The country’s largest crypto exchange has, in the meantime, collapsed under circumstances that have intensified the political stakes of the implementing legislation. The interaction of these threads – constitutional, political, supervisory and commercial – gives Poland in 2026 a distinctive profile within the EU.

This article maps the trends shaping the Polish market through that lens. It examines the substantive points of contention between the executive and the head of state on the implementing bill, the consequences of the Zondacrypto failure for the policy debate, the operational realities of doing crypto-asset business in a transitional regime, and the practical compliance pathways available to firms intending to remain on the Polish market once the legislative process resolves.

The Presidential Vetoes: A Battle Over Supervisory Design

The President’s principal objections

The fundamental tension that has shaped the Polish implementing process is not whether MiCA should be implemented – there is no serious dispute on that – but how the supervisory architecture should be calibrated. From the President’s perspective, the successive bills submitted for signature have demonstrated elements of regulatory overreach in relation to MiCA itself. The objective of MiCA is to harmonise the crypto-asset market across the European Union and enhance the security of users of virtual assets, while simultaneously supporting the development of an innovative market and ensuring fair competition. The President’s veto statements have framed the legislation as disproportionately expanding the sanctions regime and the costs of supervising the cryptocurrency market beyond what MiCA itself contemplates.

Three substantive areas have been at the centre of the disagreement. The first concerns the proposed mandatory supervisory fee, which would be calculated by reference to the average annual revenue of supervised entities. The precise cap has varied between iterations of the bill, but in each version it has been framed by the President as disproportionate to the costs imposed on other participants in the financial market, and as therefore undermining the principle of equal treatment of entrepreneurs in economic activity.

The second area concerns the proposed authority of the KNF to maintain a register of internet domains used for activity in breach of MiCA, and to direct that such domains be blocked. In the President’s view, the relevant provisions are insufficiently precise and could allow excessive interference in the activities of businesses. The third concerns the proposed power to block crypto-asset accounts and payment accounts, which the President has characterised as excessive in light of the parallel mechanisms already available under anti-money-laundering and counter-terrorist-financing legislation.

Status of the third bill

The third version of the bill, which was passed by the Sejm on 15 May 2026, retains the substantive supervisory architecture of its predecessors. Public commentary on the bill suggests that it is, in its core provisions, broadly similar to the earlier versions. As of the date of writing, after approval of the Senate ,its further trajectory – including particularly the question of whether the President will sign it – has not been resolved. The final form of the legislation, including the calibration of the supervisory fee, the scope of the domain-blocking register and the parameters of the account-blocking power, remains subject to the outcome of the ongoing legislative process.

What is clear is that the political question has not yet been settled. The repeated nature of the disagreement between the legislature and the head of state suggests that resolution will require a constructive process of dialogue and possible amendment, rather than a simple re-tabling of the same text. As one of our authors observed in March 2026, the legal issues identified by the President are not, in themselves, insurmountable; they are matters of calibration, susceptible to reasoned adjustment rather than wholesale rejection of the underlying regulatory concept.

The Zondacrypto Affair and Its Aftermath

In April 2026, Zondacrypto, one of the most active crypto-asset exchanges operating in the Polish market, became the subject of serious public allegations concerning delays in processing withdrawals, wallet balances and control over reserve assets. Polish press reports referred to on-chain analysis raising questions about the level of bitcoin (BTC) visible in wallets attributed to the exchange. The company’s CEO subsequently referred in a public statement to a cold-storage address which, according to him, held approximately 4,500 BTC, while also indicating that access to the relevant private keys was not under the company’s current control.

Polish prosecutors have reportedly opened an investigation concerning suspected fraud and money-laundering offences connected with the exchange. At the time of writing, no final findings have been made and the allegations remain subject to criminal proceedings.

Policy consequences

The Zondacrypto affair has reframed the political debate around the implementing legislation in important respects. Before April 2026, the public conversation centred on the President’s objections to perceived over-regulation, the cost burden on supervised entities and the proper limits of the KNF’s interventionary powers. After April, the conversation has been at least equally about the question of how to prevent a recurrence. The two narratives are not always easy to reconcile: the same provisions that one camp characterises as overreach are, from the other perspective, precisely the supervisory tools that might have permitted earlier intervention.

It is fair to note that the conduct under discussion straddled the transition to MiCA. Before 30 December 2024, the domestic regulatory gateway for virtual-currency businesses was essentially AML registration rather than prudential CASP supervision. After that date, MiCA applied directly, but Poland still lacked the domestic supervisory and enforcement architecture needed to make CASP authorisation and supervision operational in practice. Under that regime, virtual-currency businesses in Poland were subject to AML registration and the supervision of the General Inspector of Financial Information (GIIF), but not to the prudential, governance, client-asset segregation, conduct-of-business and orderly wind-down requirements that MiCA introduces for authorised CASPs. The case for accelerating the MiCA implementation in Poland has, in this respect, been strengthened – though the political question of how aggressive the implementing regime should be remains contested.

Operating in Transitional Limbo

The position of legacy operators

The current regulatory landscape in Poland is not a return to the pre-MiCA position. MiCA applies directly, but Poland still lacks the domestic institutional and enforcement layer needed to make authorisation and supervision fully operational. The MiCA transitional regime allows entities lawfully providing crypto-asset services under national law before 30 December 2024 to continue doing so until 1 July 2026, or until they receive – or are refused – a CASP authorisation. New entries to the Polish Register of Activity in the Field of Virtual Currencies, maintained by the Director of the Tax Administration Chamber in Katowice, have not been possible since 30 December 2024. In practice, crypto-asset activity in Poland is currently regulated primarily by AML/CFT legislation, complemented by general tax law and the application of MiCA itself to the extent that it has direct effect.

For domestic providers, this situation is operationally constrained. They are not currently able to apply for CASP authorisation under MiCA in Poland, and given that MiCA is now fully applicable in many member states, they are limited in their ability to provide cross-border services. In many of those jurisdictions, crypto-asset services may be provided only by entities that hold CASP status in another member state and have notified the relevant supervisory authorities. The MiCA passport, accessible through authorisation in another member state, has therefore become the practical route for Polish-led firms wishing to maintain a credible cross-border presence in 2025 and 2026.

Market consequences

In the absence of new national legislation, it is difficult to speak of genuine domestic market development. The sector is, instead, experiencing a period of stagnation accompanied by a generalised expectation of a regulatory breakthrough. Investors are gradually losing patience and are increasingly choosing jurisdictions that offer greater legal certainty. From the perspective of new market entrants, the indefinite wait for clarity on the future shape of Polish crypto-asset regulation, and on the approach that supervisory authorities will ultimately adopt, carries significant risk.

The KNF position of February 2026 confirmed the practical contours of the transitional period in the absence of a designated competent authority for crypto-asset supervision. Polish supervisors continue to engage with the European Banking Authority and European Securities and Markets Authority (ESMA) on cross-border matters, but the absence of domestic authorisation infrastructure is, in itself, a limitation. Several Polish banks have continued to apply conservative AML-driven policies to crypto-asset business clients, citing both the legacy supervisory environment and uncertainty about future Polish requirements.

EU-level developments still apply

For tokenised assets and stablecoins, the practical position is shaped by the application of MiCA itself, supplemented by EU-level technical standards and guidance. EU-authorised issuers of e-money tokens are accessible to Polish clients through MiCA-authorised CASPs operating into Poland by way of the passporting mechanism. Stablecoins that do not satisfy MiCA’s authorisation and reserve requirements have, in line with the EU-wide pattern, become unavailable on regulated venues. For tokenised financial instruments, the Polish framework introduced in the Act on the Development of the Financial Market of 16 August 2023, which created the distributed ledger technology (DLT)-account concept, continues to apply on a technology-neutral basis alongside the existing securities-law regime.

Two further EU-driven workstreams reshape the operational environment irrespective of the Polish implementing position. The transposition of DAC8 (Council Directive 2023/2226) introduces a reporting framework for crypto-asset service providers from 1 January 2026, with the first information exchanges scheduled to take place in 2027. In parallel, the EU AML package adopted in 2024 – including the establishment of the new Anti-Money Laundering Authority (AMLA) – is in the process of being operationalised, and CASPs of cross-border significance will come within AMLA’s direct supervisory remit when the regime is fully in effect.

Pathways to Compliance: A Practical Outlook

What firms can do today

The principal practical message for firms operating in or into the Polish market is that the European regulatory framework already provides the substantive content of what compliance will require, and that the Polish implementing legislation – when it comes – will not substantially modify the bulk of those requirements. Firms can therefore make meaningful preparation now, even before the implementing act enters into force. The preparation that matters is, in essence, MiCA preparation.

The preparatory steps that yield value irrespective of when the Polish implementing legislation enters into force are well-defined. They include:

developing internal policies and procedures aligned with MiCA’s governance, client-asset safekeeping, conflict-of-interest, complaints-handling and outsourcing requirements;
documenting prudential safeguarding arrangements and the calculation methodology for capital requirements against intended services;
preparing AML/CFT policies and designating an AML officer in a manner consistent with the EU AML package;
preparing the technical and organisational framework for compliance with the Transfer of Funds Regulation; and
documenting the orderly wind-down plan required of CASPs under MiCA.

The critical point is that this preparation cannot be merely illusory or limited to “paper compliance”. Supervisors will, in practice, expect to see that operational activities have been aligned with documented procedures. Once the Polish implementing act enters into force, these materials will be submitted as part of the relevant authorisation process; firms that have built the underlying operational infrastructure during the transitional period will be in a materially better position than those that have not.

Strategic considerations

Firms also need to decide where to seek authorisation. For some Polish-led operators, the answer will be Poland, on the assumption that the implementing legislation enters into force in time to permit domestic applications before commercial pressure forces a decision. For others, the answer has been – and will continue to be – authorisation in another EU member state, with subsequent passporting into Poland and other markets. The choice depends on a complex matrix of factors including substance, tax position, banking-relationship considerations, talent location and the firm’s existing footprint.

Where firms decide on authorisation in another member state, the key constraint to remember is that the MiCA passport is not a substitute for the substance requirements that apply at the home-state level. Reverse solicitation is available under Article 61 of MiCA, but it is narrowly construed by ESMA and is not a viable structural market-entry strategy. Firms intending to operate into Poland must either passport in or, in the case of third-country firms, accept the narrow factual confines of the reverse-solicitation exemption.

Resolution through dialogue

The legal issues that have driven the successive vetoes are not, in themselves, insurmountable. Resolving them requires consensus between the political camps of the President and the government, which in turn requires constructive dialogue and a willingness to consider amendments – particularly in the area of supervisory powers. Practical adjustments to the calibration of supervisory fees, or clearer allocations of competences between authorities with respect to blocking accounts or suspending crypto-asset transactions, should not constitute fundamental barriers to implementation. The substantive regulatory concept underlying the bill is broadly settled; what remains is the political work of agreeing the implementation details.

Outlook

By the time the next edition of this guide is published, the Polish implementing legislation will, in all probability, be in force. The questions that will then dominate are different ones:

how quickly the KNF builds the institutional capacity to process CASP authorisation applications at scale;
how the courts approach the first generation of crypto-asset-related criminal and civil cases under the new regime;
how the Zondacrypto prosecution shapes broader expectations of supervisory behaviour; and
how Polish-led firms balance the choice between domestic authorisation and authorisation elsewhere in the EU.

For the moment, Poland in 2026 is a study in legislative friction. It hosts a large and active retail market, a sophisticated developer community, a respected supervisor in the KNF and a central securities depository (KDPW) that is genuinely engaged with the underlying technology. It is also, at the time of writing, the principal MiCA implementation case study for what happens when a comprehensive European framework collides with a politically contested national legislative process and an industry crisis that crystallises in real time. The shape of the resolution will define the Polish market for the next several years.

Wołoszański & Partners

Spektrum Tower, 19th floor
18 Twarda Street, 00-105
Warsaw (Warszawa)
Poland

+48 22 295 0890

wlaw@wlaw.pl wlaw.pl

Law and Practice

Authors

Trends and Developments

Authors