
The joint proposal from five U.S. agencies requires stablecoin issuers to collect names, addresses, and IDs before opening accounts. Small issuers face a steep compliance cost; the secondary-market carveout leaves room for exchanges.
U.S. regulators proposed Thursday requiring stablecoin issuers to verify customer identities before opening accounts, a rule that treats them as financial institutions under the Bank Secrecy Act. The Federal Reserve Board, FinCEN, FDIC, OCC, and NCUA published a joint 117-page notice seeking public comment. Comments are due 60 days after the notice appears in the Federal Register.
The proposal implements provisions of the Guiding and Establishing National Innovation for U.S. Stablecoins Act, known as the GENIUS Act, passed earlier this year. It formally designates “permitted payment stablecoin issuers” as financial institutions subject to BSA requirements. Issuers must collect a customer’s name, address, date of birth or formation, and identification number before opening an account relationship. Procedures must be risk-based, taking into account the issuer’s size, business model, customer base, account types, and methods used to open accounts.
NCUA Chairman Kyle Hauptman said in a statement: “This is the next step to ensure that permitted payment stablecoin issuers are fully integrated into Bank Secrecy Act regulations.” He added that the rule “mirrors existing customer identification requirements used by credit unions” and “reinforcing our commitment to preventing money laundering and terrorist financing.” The proposal follows two earlier NCUA rulemakings on payment stablecoins, one covering operational risk management standards and another on applications from issuers under NCUA jurisdiction.
The rule draws a sharp line between direct customer relationships and secondary market activity. When a user establishes a formal relationship with an issuer through issuance, redemption, custody, or reserve management, the identification rules apply. Simply holding or transferring a stablecoin on the secondary market does not create an account relationship for the issuer. The agencies wrote that applying CIP requirements to every transfer “could be impractical” because issuers often lack direct contact with users in secondary transactions.
That carveout matters for operational costs. An issuer that only provides the token infrastructure and lets exchanges handle distribution can avoid building a full Customer Identification Program. An issuer offering direct redemption or custody must design procedures meeting the prescribed standards. Building a CIP from scratch is expensive, especially for smaller issuers. The risk-based approach means a small issuer with few staff must still design procedures that pass regulatory review. Big issuers such as Circle (USDC) or Tether (USDT) already operate under bank-like compliance systems. The incremental cost for them is smaller. The result is a compliance moat that smaller rivals find harder to cross.
The rule applies to all permitted payment stablecoin issuers, not just those under federal supervision. The GENIUS Act allows issuers with no more than $10 billion in outstanding stablecoins to operate under certified state regulatory regimes. The customer identification proposal explicitly covers those state-licensed issuers as well. That means state-certified issuers must comply with federal CIP standards, narrowing the gap between the two regulatory tracks.
The proposal arrives after a bipartisan group of senators led by Cynthia Lummis asked Treasury Secretary Scott Bessent to preserve a role for state regulators under the GENIUS Act. In a June 16 letter, they requested clearer guidance on how states can obtain certification for their own stablecoin regulatory frameworks. The customer identification proposal suggests federal standards will apply regardless, a dynamic that could shape which state frameworks receive Treasury certification.
The 60-day comment window opens a forum for industry pushback. Small issuers face a choice: build compliance infrastructure or limit direct services. The secondary-market carveout preserves some breathing room for exchanges and users who never contact the issuer directly. The direct issuance and redemption channels, where margins are highest, now carry a federal ID requirement. The effective date will be set in the final rule after regulators review comments.
Prepared with AlphaScala editorial tooling from the source reporting linked above. Indexable analysis may include a cited Alpha Score value. Publishing checks screen each story before release. Educational coverage, not personalized advice.