TFR monitoring
in a single inbox.
The EU Crypto Travel Rule has been fully applicable since 30 December 2024 — and unlike its FATF predecessor, it sets a hard floor at zero: every crypto-asset transfer between CASPs must carry full originator and beneficiary data, regardless of amount. The €1,000 threshold matters for self-hosted-wallet verification under Art. 14(5) / 16(2). The Commission must produce a self-hosted-wallet risk assessment by 30 June 2026 under Art. 37. EBA guidelines, ESMA cross-references and national supervisor positions continue to land. Horizon Scanner watches every source and routes findings to AML, Treasury and the licensing lead.
Scope
What TFR covers — and what we crawl for it.
Level-1 text and amendments
Regulation (EU) 2023/1113 itself plus any Council/Parliament-amending acts and recitals — surfaced from EUR-Lex the day they enter the Official Journal.
Self-hosted-wallet verification (Art. 14(5) / 16(2))
For transfers ≥ €1,000 to/from a self-hosted address, the CASP must take additional measures to verify ownership/control of the address. Acceptable verification techniques (cryptographic proof-of-ownership, micro-transfer, attestation) and supervisory expectations are tracked at source.
Sanctions and PEP screening
Travel-Rule-payload screening against EU consolidated lists, OFAC, UN, plus PEP-checks per the AML framework. EU Council adoption of new sanctions packages is surfaced same-day; EBA guidance on screening-effectiveness is cross-referenced.
Commission Art. 37 risk assessment
Article 37 mandates a Commission risk-assessment on transfers to/from self-hosted addresses by 30 June 2026. We track the Commission consultation, any leaked drafts, EBA opinions, and the final report including any proposed amendments to the thresholds.
EBA Guidelines on Travel-Rule implementation
EBA's joint guidelines (with ESMA) on internal policies and controls for CASPs implementing the TFR — including message-set standards (IVMS 101), interoperability, and transitional-period accommodations (ended 31 July 2025).
National supervisor positions
BaFin, AMF, CSSF, MFSA, FMA — all major MiCA-NCAs publish their own positions on TFR-compliance evidence required in CASP authorisation applications. Each is monitored at source.
How Horizon Scanner helps
Specifically for TFR teams.
- 01
Pre-filtered for CASP scope
TFR applies to CASPs and credit/payment institutions. We tag findings against the obliged-entity type so a CASP doesn't see PSD2-only items in their TFR queue, and a bank's payments team doesn't see CASP-specific Q&As.
- 02
Cross-mapped to AMLA and MiCA
TFR feeds into the broader AML framework (Reg. (EU) 2024/1624 AMLR applies to CASPs as obliged entities from 10 July 2027) and MiCA Art. 31 governance. We tag findings against all three frameworks where they apply and deduplicate the audit trail.
- 03
Routes to AML and Treasury
Default routing sends self-hosted-wallet RTS to the AML lead, sanctions-screening updates to compliance, message-set / interoperability questions to operations. The licensing lead gets TFR-implementation evidence items by exception.
- 04
Inspection-ready audit trail
Every action — fetch, score, route, acknowledge, escalate — is recorded immutably with timestamp and actor. 5-year retention is the default. Useful when your AML supervisor returns with a follow-up letter on Travel-Rule implementation.
Sources monitored
The regulators we crawl for TFR.
- EUR-LexRegulation (EU) 2023/1113 itself plus all amending acts and consolidated versions.
- EBAJoint EBA-ESMA guidelines on TFR implementation, opinions on self-hosted-wallet verification, message-set standards.
- ESMASupervisory briefings on CASP authorisation including TFR-compliance evidence requirements.
- CommissionArt. 37 risk-assessment consultation, delegated acts amending the regulation, Commission FAQ entries.
- BaFinTFR-implementation guidance for German CASPs and banks, supervisory expectations, MiCA-authorisation TFR-evidence requirements.
- AMF / ACPRFrench positions on TFR compliance for CASPs (AMF) and banks/payment institutions (ACPR).
- CSSFLuxembourg TFR-implementation guidance, especially for cross-border CASPs operating under MiCA passport.
- MFSAMaltese TFR-implementation supervisory letters, peer-review findings, MFSA Rulebook updates.
Custom sources can be added in minutes — supervisory blog feeds, association circulars, internal counsel memos all route through the same engine.
FAQ
What TFR buyers ask first.
Does TFR apply below €1,000?
Yes for the basic data-transmission obligation between CASPs — there is no de-minimis exemption: every transfer between CASPs must carry full originator and beneficiary data. The €1,000 threshold applies specifically to the self-hosted-wallet verification under Art. 14(5) / 16(2): below that, the CASP only needs to collect and record self-declared data on the counterparty; at or above, additional ownership/control verification kicks in.
Will the self-hosted-wallet threshold change?
Article 37 requires the Commission to deliver a risk-assessment by 30 June 2026, with possible legislative proposals to follow. We track the consultation, EBA opinions on the draft, and any proposed amendments tagged as "Art. 37 review".
How do you handle interoperability between TFR message sets?
We track the EBA-ESMA joint guidelines on message-set standards (IVMS 101 and successors), supervisory expectations on cross-protocol bridging, and operational guidance from major industry working groups. Findings are tagged "operations / interop" and routed to the operations lead by default.
What happens when AMLR (Reg. 2024/1624) applies in 2027?
TFR remains in force as the dedicated regulation for crypto-asset transfers, while AMLR (effective 10 July 2027) adds the horizontal obliged-entity framework for CASPs alongside banks and other regulated firms. We tag dual-relevant findings (e.g. EBA guidelines that touch both) once and route to both AML and Treasury without duplication.