Keyword: cryptocurrency

NY AG Accuses Bitfinex and Tether of Covering Up $851 Million Loss in Investor Funds

On April 25, 2019, New York’s Attorney General secured a preliminary injunction against Bitfinex, a cryptocurrency trading platform, and Tether, the company behind tether (USDT), one of the world’s most popular cryptocurrencies. In papers filed with the court last Wednesday, the state AG accused the companies of misleading investors about their financial well-being while using Tether’s bank account to prop up Bitfinex with $700 million in undisclosed loans. The injunction requires Bitfinex and Tether to temporarily cease drawing down Tether’s cash reserves and to turn over detailed information about their finances and client accounts to the state AG as it investigates them for financial fraud.

As we have discussed in previous blog posts, courts and regulators have determined that some virtual currencies are securities or commodities that are subject to state and federal laws and regulations. Last week’s developments serve as a reminder to cryptocurrency exchanges and token distributors alike that they may be subject to the laws and regulations of any jurisdiction in which they operate. In this case, although Bitfinex purportedly no longer permits U.S. traders to use its platform and is not a licensed exchange in New York, the state AG’s office argued that it and Tether are subject to New York law because some New York residents still use the platform, just as some New York residents own USDT. The companies’ connections to New York subject them to scrutiny under the Martin Act, New York’s powerful “blue sky” securities law that gives the state AG the authority to investigate and prosecute securities fraud regardless of fraudulent intent.

In papers submitted to the court, New York’s AG alleged that Bitfinex dipped into Tether’s cash holdings to prop itself up after $851 million was seized from one of its bank accounts. Bitfinex had deposited the cash with an entity called Crypto Capital Corp., who was engaged by Bitfinex to process its clients’ withdrawals. In late 2018, Crypto Capital reported to Bitfinex that it could no longer process withdrawals or return Bitfinex’s funds to it because they had been seized by authorities in Portugal, Poland, and the U.S. To cover up the loss, Bitfinex allegedly caused Tether to extend it a $900 million line of credit, of which Bitfinex has accessed approximately $700 million. Neither Bitfinex nor Tether publicly disclosed these transactions. The state AG alleges that Bitfinex was able to borrow the funds from Tether because the two companies are operated by the same individuals and share the same parent company.

The New York AG has accused Bitfinex and Tether of misleading investors about the security of their investments and of engaging in self-dealing by causing Tether to transfer hundreds of millions of dollars to Bitfinex, taking on enormous amounts of risk without receiving anything of value in return. Tether has long represented that it holds one U.S. dollar in reserve for each of the 2.6 billion outstanding USDT, and that holders of USDT can redeem them at any time for U.S. dollars at a rate of one USDT to one U.S. dollar. Although Tether has recently disclosed that outstanding USDT may be backed by “other assets and receivables” in addition to U.S. dollars, the state AG is investigating, among other questions, whether Tether’s transactions with Bitfinex have rendered Tether’s public statements misleading. The New York AG has also accused the companies of misleading state investigators by purporting to cooperate in the AG’s investigation while secretly transferring funds from Tether to Bitfinex.

Bitfinex responded on Friday with a forcefully worded denial of the allegations brought against it and Tether and reiterated that the companies “are financially strong – full stop.”

Although the New York AG has stated that it does not want its investigation to harm Tether investors or Bitfinex clients, it’s possible that information revealed during the investigation could affect confidence in the companies or in cryptocurrency markets generally. Bitcoin’s price fell seven percent immediately following the announcement of the AG’s investigation on Thursday, perhaps providing a window into the volatility that will come if Bitfinex’s assurances that it and Tether are financially sound are found to be misleading.

FinCEN Shows a Little Bite to Go with Its Bark

Last week, the Financial Crimes Enforcement Network (FinCEN) backed up its strong public statements about enforcing the anti-money laundering (AML) laws with respect to cryptocurrency by bringing an enforcement action against an individual for violating the Bank Secrecy Act (BSA).

FinCEN, a bureau within the U.S. Department of Treasury tasked with safeguarding the financial system from illicit use and combating money laundering, has not been shy about expressing interest in blockchain and cryptocurrency issues. In a recent speech, Director Kenneth A. Blanco explained that “FinCEN has been at the forefront of ensuring that companies doing business in virtual currency meet their AML/CFT obligations regardless of the manner in which they do business.” He added that FinCEN “will continue to work with the SEC and CFTC to ensure compliance in this space and will not hesitate to take action when we see disregard for obligations under the BSA.” But FinCEN enforcement actions involving cryptocurrency activities have been infrequent. Since its landmark action against Ripple Labs in 2015, FinCEN’s only enforcement proceeding in this area was brought in 2017 against virtual currency exchanger BTC-e and its owner.

That changed last week when FinCEN assessed a civil penalty against Eric Powers, a “peer-to-peer exchanger” of virtual currency, for violations of the BSA. In agreeing to pay a $35,350 penalty, Powers admitted that he willfully violated the BSA by failing to (i) register as a money services business (MSB), (ii) implement written policies and procedures for ensuring BSA compliance, and (iii) report suspicious transactions and currency transactions.

The Powers action does not provide much insight into one of the more difficult questions a company whose business involves virtual currency faces: whether it qualifies as an MSB that is subject to the BSA. FinCEN guidance from 2013 indicates that the BSA generally will apply to “exchangers” and “administrators” of convertible virtual currencies. Unlike many virtual currency companies, Powers seems to have clearly fit within FinCEN’s definition of an exchanger – through online postings he advertised his intention to purchase and sell bitcoin for others, and he completed purchases and sales by delivering or receiving currency in person, through the mail, or via wire transfer. But in establishing that the BSA applied to Powers, FinCEN leans heavily on the 2013 guidance. That guidance in many ways is imprecise or unclear and it continues to create uncertainty as blockchain technology and virtual currency business models continue to evolve. But the Powers assessment confirms that other entities operating in the cryptocurrency space nevertheless should continue to evaluate their BSA obligations through the lens of that guidance to the extent possible.

Unlike those assessed against Ripple and BTC-e, the financial penalty assessed against Powers was relatively small. This might be because Powers was a natural person (potentially with a lesser “ability to pay” than larger incorporated entities), conducted a fairly small-scale operation, and paid larger sums as part of an earlier civil forfeiture action brought by the Maryland U.S. Attorney. While those considerations warranted a lesser penalty in Powers’s case, FinCEN very well could apply the same law, guidance, and reasoning underlying the assessment to more extensive cryptocurrency operations. Director Blanco’s recent comments regarding FinCEN’s priorities and this latest enforcement action suggest that FinCEN likely will do just that. In other words, we wouldn’t be surprised if FinCEN brings more enforcement actions – levying more severe penalties – to enforce the BSA in the cryptocurrency industry. Persons and entities operating in this industry thus should focus on assessing their potential BSA obligations early and take affirmative steps to comply if required.

The 2019 Token Taxonomy Act: A Path to Consumer Protection and Innovation Takes Shape

We’ve previously written that the Token Taxonomy Act first introduced to Congress by Representatives Warren Davidson (R-OH) and Darren Soto (D-FL) on December 20, 2018, was a welcome legislative initiative designed to provide a regulatory “light touch” to the burgeoning digital asset industry. The bill expired, however, with the termination of the 115th Congress, leaving open the question of what any future blockchain regulatory proposals, would look like. The industry’s questions were answered on April 9, 2019 when Representatives Davidson and Soto introduced the Digital Taxonomy Act of 2019 (DTA) and the Token Taxonomy Act of 2019 (TTA) to the 116th Congress. The DTA and TTA represent expanded efforts to clarify regulation and spur blockchain innovation in the United States.

According to Representatives Davidson and Soto, the DTA is meant to add jurisdictional certainty to efforts to combat fraudulent behavior in the digital asset industry. As such, the DTA grants the FTC $25,000,000 and orders it to prepare reports on its efforts to combat fraud and deceptive behavior. The DTA also specifically carves out from its purview the authority of the CFTC to regulate digital assets as commodities subject to the Commodities Exchange Act.

The 2019 TTA, with the backing of four bipartisan representatives in addition to Davidson and Soto, is similar to last year’s model. Besides defining digital assets and exempting them from certain securities law requirements, the 2019 TTA maintains proposals to amend the Investment Advisers Act of 1940 and the Investment Company Act of 1940 so that certain regulated entities can hold digital assets. Like the 2018 version of the TTA, the 2019 TTA would also allow the sale of digital assets to qualify for the benefits of Internal Revenue Code Section 1031 like-kind exchange provisions and for the first $600 dollars of profit from digital asset sales to be tax-free.

The TTA also has important updates. The most prominent change is the definition of a “digital asset.” As we’ve previously discussed, the 2018 version of the TTA required that a digital asset’s transaction history could not be “materially altered by a single person or group of persons under common control” to qualify for exemption from securities laws. Because of the unavoidable possibility of a 51% attack, which would alter a token’s transaction history, the language created the possibility that proof of work- and proof of stake-based tokens would not be eligible for regulatory relief, thus limiting the bill’s benefits.

In the re-proposed TTA, however, the newly proposed language of Section 2(a)(20)(B)(ii) requires that the transaction history, still recorded in a mathematically verifiable process, “resist modification or tampering by any single person or group of persons under common control.” Thus, any digital asset, even those subject to 51% attacks, may be exempt from certain securities law requirements, although the language appears to require that a governance or security system underline the token’s consensus system.

Another important update is the TTA’s proposed preemption of state regulation of the digital asset industry by federal authorities. While the TTA would still permit states to retain antifraud regulatory authority, it largely strips states’ rights to regulate digital assets as securities. Representative Davidson’s press release on the bill specifically cites the “onerous” requirements of the New York BitLicense regulatory regime as a reason for the inclusion of this provision.

Critics have been quick to point out that the bills, while well intentioned, leave many unanswered questions and therefore may not provide the regulatory certainty the bills’ authors hope to effect. And even a perfect bill would face an uphill battle in getting enacted these days. But the digital asset industry should nonetheless take comfort in the growing contingent of legislators who take seriously the imperative to balance consumer protection and blockchain innovation.

The Beat Goes On: Division of Investment Management Seeks Input on the Impact of the Custody Rule on Digital Currency – and Vice Versa

As part of its ongoing examination of the Custody Rule, the SEC’s Division of Investment Management is seeking views from the securities industry members and the public on two issues regarding the Custody Rule: (1) the application of that rule to trading that is not handled on a delivery versus payment basis, and (2) the application of the rule to digital assets. In a March 12, 2019 letter to the President and CEO of the Investment Adviser Association published on the SEC’s website (“the Custody Release”), the Division seeks input to expand on its Guidance Update from early 2017. Both issues are important in view of the increasing complexity of types of securities that registered investment advisers are purchasing on behalf of their customers and, as discussed below, the issues overlap in a way that might predict an important use case for blockchain technology.

The Custody Rule

The Custody Rule under the Investment Advisers Act of 1940 provides that it is a fraudulent, deceptive or manipulative act, practice or course of business for a registered investment adviser to have “custody” of client funds or securities unless they are maintained in accordance with the requirements of the Custody Rule. The definition of custody includes arrangements where the adviser has authority over and access to client securities and funds.

By way of context, we note that although the Custody Rule applies only to registered investment advisers, its concepts are relevant for non-registered advisers and other intermediaries as well, since their clients or customers have a practical interest in assuring that: managed assets are appropriately safeguarded; and the absence of appropriate custody arrangements may preclude a client from investing with a particular adviser.

Also, as the Custody Release notes, the Division previously issued a letter inviting engagement on questions relating to the application of the Investment Company Act of 1940, including the custody provisions of that Act, to cryptocurrencies and related products.

The Custody Rule and DVP Arrangements

The Custody Release points out that when an investment adviser manages funds pursuant to delivery versus payment arrangements – that is, when transfers of funds or securities can only be conducted together with a corresponding transfer of securities or funds – then it provides certain protections to customers from misappropriation by the adviser. The Release seeks to assist the Division in gathering information on payment practices that do not involve delivery versus payment, seeking input on, among other things: the variety of instruments that trade on that basis; the risk of misappropriation or loss associated with such trading; and how such trades appear on client accounts statements.

The Custody Rule and Digital Assets

The Custody Release also asks about the extent to which evolving technologies, such as blockchain/distributed ledger technology, provide enhanced client protection in the context of non-delivery versus payment trading. That question presents a good lead-in to the second part of the Custody Release, which seeks to learn “whether and how characteristics particular to digital assets affect compliance with the Custody Rule.” These characteristics include:

– the use of distributed ledger technology to record ownership;

– the use of public and private cryptographic keys to transfer digital assets;

– the “immutability” of blockchains;

– the inability to restore or recover digital assets once lost;

– the generally anonymous nature of DLT transactions; and

– the challenges posed to auditors in examining DLT and digital assets.

With these characteristics in mind, the Division asks are fairly open-ended about the challenges faced by investment advisers in complying with the Custody Rule with respect to digital assets, including:

– to what extent are investment advisers construing digital assets as funds or securities?

– are investment advisers including digital assets in calculating regulatory assets under management in considering with they need to register with the SEC?

– how can concerns about misappropriation of digital assets be addressed?

– what is the process for settlement of digital asset transactions, either with or without an intermediary?

The most forward-looking question asked in the Release is whether digital ledger technology can be used for evidencing ownership of securities. The answer to this question – which could represent a direct application of the blockchain’s ability to record ownership and its immutability – could pave the way to resolving custody concerns with respect to any asset class transacted in by investment advisers on behalf of their clients. It certainly points the way to an important possible use of blockchain technology – to demonstrate custody in a way that is immutable, anonymous and auditable. Technologists, get to work!

The Custody Release’s questions are a significant next step in drawing digital assets into the embrace of investment adviser regulation, but a positive step nonetheless.

Appellate Court – Selling Bitcoin in Florida Requires a Money Services Business License

Following a recent opinion by a Florida appellate court, virtual currency dealers who do business in, from, or into Florida – even individuals in the business of selling their own virtual currency for cash – may be required to obtain a “money services business” license from Florida’s Office of Financial Regulation and maintain costly anti-money laundering programs in accordance with Florida and federal law or face criminal penalties.

On January 30, Florida’s Third District Court of Appeal reinstated criminal charges against Florida resident Michell Espinoza for money laundering and “unlawfully engaging in the business of a money transmitter and/or payment instrument seller without being registered with the State of Florida.” State v. Espinoza, No. 3D16-1860, slip op. (Fla. Dist. Ct. App. Jan. 30, 2019). The trial court had previously dismissed the charges against Espinoza, agreeing with his argument that selling Bitcoin does not qualify as “money transmitting” under Florida law because Bitcoin is not “money,” among other reasons. State v. Espinoza, No. F14-2923 (Fl. Cir. Ct. July 22, 2016). The appellate court disagreed and determined that even a person in the business of selling his own Bitcoin for cash is a “money transmitter” and “payment instrument seller” under Florida law and is therefore required to be licensed as a “money services business.”

The charges against Espinoza stem from a sting operation in 2013, in which undercover detectives contacted Espinoza through a Bitcoin exchange site, LocalBitcoins.com. Espinoza posted on that site that he would sell Bitcoins for cash through in-person transactions. Espinoza was not licensed or registered as a “money services business” with Florida or federal regulators. An undercover detective met Espinoza several times and paid him a total of $1500 cash for Bitcoin, earning Espinoza a profit. During those transactions, the undercover detective allegedly made clear his desire to remain anonymous and said he was involved in illicit activity. For example, the undercover detective allegedly told Espinoza that he needed the Bitcoin to buy stolen credit card numbers from Russians.

The Florida appellate court’s determination that Bitcoins are “monetary value” and “payment instruments” under Florida law fits within a line of cases finding that Bitcoin qualifies as “money” for the purposes of money laundering and anti-money laundering laws. For example, in 2014 Judge Rakoff, a United States District Judge for the Southern District of New York, found that Bitcoin clearly qualifies as “money” or “funds” for the purposes of the federal money transmitter statute because “Bitcoin can be easily purchased in exchange for ordinary currency, acts as a denominator of value and is used to conduct financial transactions.” United States v. Faiella, 39 F. Supp. 3d 544, 545 (S.D.N.Y. 2014) (citing SEC v. Shavers, 2013 WL 4028182, at *2 (E.D. Tex. Aug. 6, 2013)). Some states have also codified virtual currency into their anti-money laundering regulations. For example, after the trial court determined that Bitcoin was not a “monetary instrument” that could be laundered under Florida’s money laundering statute, the Florida legislature amended the statutory definition of “monetary instruments” to explicitly include the term “virtual currency.” Fla. Stat. § 896.101(2)(f) (2017). Other states, however, have taken a different approach. Pennsylvania’s Department of Banking and Securities (“DoBS”), for example, recently published guidance that virtual currency, including Bitcoin, is not considered money under Pennsylvania law. “Money Transmitter Act Guidance for Virtual Currency Businesses,” Pennsylvania Department of Banking and Securities (Jan. 23, 2019).

The Florida appellate court found that Espinoza was operating as a “money transmitter” and therefore was a “money services business,” simply by engaging in the business of selling his own Bitcoin for cash and not otherwise acting as a middleman between parties. The trial court had applied the more common and narrow understanding that a “money transmitter” operates “like a middleman in a financial transaction, much like how Western Union accepts money from person A, and at the direction of person A, transmits it to person or entity B,” as explained by the appellate court.

To reach its conclusion, the Florida appellate court looked to the text of Florida’s money services business statute – which the court believes is critically different from federal regulations. Under both federal and Florida state law, a “money services business” is defined to include a “money transmitter.” Compare 31 C.F.R. § 1010.100(ff) with Fla. Stat. § 560.103(22). According to the Florida appellate court, the federal definition of “money transmitter” includes a third-party requirement. Under federal regulations, a “money transmitter” means a person engaged in the “acceptance of currency, funds or other value that substitutes currency from one person and the transmission of currency, funds, or other value that substitutes for currency to another location or person by any means.” 31 C.F.R. § 1010.100(ff)(5(i)(A) (emphasis added). In comparison, the Florida statute defines a “money transmitter” as an entity “which receives currency, monetary value, or payment instruments for the purpose of transmitting the same by any means.” Fla. Stat. § 560.103(23). The Florida appellate court found that, in contrast to the federal regulations, the Florida statute’s “plain language clearly contains no third party transmission requirement in order for an individual’s conduct to fall under the ‘money transmitter’ definition” and, as such “decline[d] to add any third party or ‘middleman’ requirement.”

The appellate court’s interpretation of the text of Florida’s statute is disputable. From a statutory interpretation perspective, the middleman requirement is arguably inherent in the plain meaning of the word “transmit,” which is defined by Merriam-Webster as “to send or convey from one person or place to another.” (Notably, Pennsylvania’s DoBS recently issued guidance interpreting the word “transmitting” in a comparable state statute to include a third-party requirement. See “Money Transmitter Act Guidance for Virtual Currency Businesses,” Pennsylvania DoBS (Jan. 23, 2019) (interpreting statute that “[n]o person shall engage in the business of transmitting money by means of a transmittal instrument for a fee or other consideration with or on behalf of an individual without first having obtained a license from the [DoBS]” to impose a third-party requirement).) It would, therefore, be reasonable to interpret Florida’s statute as consistent with federal regulations. Moreover, the Florida appellate court’s interpretation of the statute could have broad and troubling consequences. Although dicta in the Florida appellate court’s decision make it seem like the court is making a distinction between “merely selling [one’s] own personal bitcoins” and “marketing a business,” the court’s statutory interpretation leaves open the possibility that the mere act of selling one’s own property – without registering as a “money services business” – could be a crime.

While we watch to see whether Espinoza will appeal this decision to the Florida Supreme Court, virtual currency dealers should be aware that selling virtual currency in, from or into Florida may require a money services business license and the maintenance of an anti-money laundering program.

Blockvest II: Court Reverses Itself and Grants the SEC a Preliminary Injunction in the Face of Manifest Fraud

As we previously discussed, the SEC suffered a rare defeat in Securities and Exchange Commission v. Blockvest, LLC et al. on November 27, when Judge Curiel of the U.S. District Court for the Southern District of California issued a denial (the “November Order”) of its motion for a preliminary injunction against Defendants’ future violations of Section 17(a) of the Securities Act of 1933 (“Section 17(a)”), despite manifest evidence of fraudulent representations in the Defendants’ website postings. The November Order attracted intense scrutiny and on December 17, the SEC moved for partial reconsideration of the November Order. Last week, on February 14, the court granted, in part, the SEC’s motion for reconsideration (the “February Order” and, together with the November Order, the “Orders”), relying on purported new evidence and an argument that the court apparently had overlooked. It is fair to ask whether the new evidence motivated the reversal.

As Judge Curiel recited, under the Federal Rules of Civil Procedure, a motion for reconsideration is appropriate, among other reasons, if the district court is “presented with newly discovered evidence.” Judge Curiel stated that the standard for granting a preliminary injunction requires the SEC to show: “(1) a prima facie case of previous violations of federal securities laws, and (2) a reasonable likelihood that the wrong will be repeated.” Based upon these standards, the court concluded that reconsideration in this case was warranted “based upon a prima facie showing of Defendants’ past securities violation and newly developed evidence which support the conclusion that there is a reasonable likelihood of future violations.” However, it is not clear what “newly developed evidence” formed the basis for this conclusion.

In applying the Howey test to the tokens offered by Blockvest, the court agreed with the SEC that “the Howey test is unquestionably an objective one.” The court disputed the SEC’s assertion that in the November Order the court had applied a “subjective test” by relying solely on the beliefs of some individual investors. Rather, the court stated that it had “objectively inquire[d] into the ‘terms of promotional materials, information, economic inducements or oral representations at the seminars, or in other words, an inquiry into the ‘character of the instrument or transaction offered’ to the ‘purchasers.’”

The court emphasized that in the November Order it had denied the motion for a preliminary injunction “because there were disputed factual issues as to the nature of the investment offered to alleged investors.” Nonetheless, the court acknowledged that in denying the SEC’s motion for a preliminary injunction, it did not “directly address” an alternate theory originally presented by the SEC that the promotional materials presented on Defendants’ website, in the whitepaper posted online, and on social media accounts concerning the ICO of the token constituted an offer of unregistered securities that contained materially false statements and therefore violated Section 17(a). The court again applied the Howey test to find that the tokens being offered were securities. The court also rejected the defendants’ arguments that applied state law to interpret “offer” narrowly to require a manifestation of an intent to be bound, finding that “offer” is broadly defined under the securities laws.

The court also found that the SEC had satisfied the required showing that there is a reasonable likelihood of future violations, one of the elements of injunctive relief. In support of its ruling, the court cited the misrepresentations in Defendants’ website postings that had been detailed in the November Order and which were manifestly fraudulent. Based upon this information, addressed by the SEC in supplemental briefing, the court granted partial reconsideration of the November Order.

Also factored into the February Order were the findings that defense counsel had moved to withdraw as counsel because “the firm found it necessary to terminate representation due to, inter alia, Defendants instructing counsel to file certain documents that counsel could not certify under Rules of Civil Procedures 11… and Defendants have yet to find substitute counsel.” The court stated its concerns that Defendants would resume their prior alleged fraudulent conduct, in light of its order allowing defense counsel to withdraw.

Given the severity of the fraudulent representations as alleged in the SEC’s action, which included false claims of approval by federal regulators and a wholly fabricated federal agency, it was surprising that the court had originally denied the SEC’s request for a preliminary injunction; the need to shut down ongoing fraud and protect investors often drives a court’s rulings on requests for interim relief in these cases. It appears that in reversing itself, the court rethought its reasoning based on the information and arguments that the SEC had originally presented. In one telling ruling in the new decision, the court declined to accept new arguments raised by defendants in opposition to the motion for reconsideration because they had not previously raised them. It appears that the SEC can shrug off its original loss and continue to seek to shut down this alleged fraud with all the power of the federal securities laws.

The Token Taxonomy Act: A Fatal Drafting Ambiguity

As we’ve previously written, the Token Taxonomy Act (TTA) is an ambitious and potentially impactful piece of legislation that, by exempting digital tokens from the securities laws, might remove regulatory inhibitions from the maturing digital token industry. The bill is not without fault, however. As it stands, the language of the bill requiring that a digital token’s consensus be inalterable is ambiguously written and the SEC could use a strict interpretation to preclude many digital assets from qualifying as digital tokens.

The proposed additional language of Section 2(a)(20)(B) of the Securities Act of 1933 reads that to qualify for the exemption, a digital token:

(i) must be recorded in a distributed, digital ledger or digital data structure in which consensus is achieved through a mathematically verifiable process; and

(ii) after consensus is reached, cannot be materially altered by a single person or group of persons under common control.

In other words, a digital token must use an inalterable and objectively verifiable process. This language is designed to include in the definition only those digital tokens that are or will be in widespread enough use so that no one single party can influence the nature of the outstanding tokens in a way that adversely affects digital token holders.

The proposed language creates the possibility that the SEC could strictly apply the requirement that a token “cannot” be materially altered. As it stands, proof-of-work and even proof-of-stake digital assets are susceptible to a 51% attack, which could alter the digital token’s consensus. “Proof-of-work” and “proof-of-stake” refer to different systems used to verify and process transactions on a blockchain.

A “51% attack” is an event in which a party takes control of the requisite computer power underlying a token’s blockchain such that the party can control the token platform’s operation. Typically, a party seeking such control needs to possess 51% of the outstanding tokens, but the threshold amount can be lower for individual digital assets. A party that has successfully executed a 51% attack can change the ledger history so that it can, for example, double-spend tokens.

The SEC could negate the potential application of the TTA because the recent 51% attack against Ethereum Classic shows that the risk of attack against proof-of-work digital assets, especially those with a low market capitalization, is real. And although the proof-of-stake system makes a 51% attack prohibitively expensive, the SEC could justifiably claim that it is theoretically possible. An irrational, non-economic actor could still stage a 51% attack against a proof-of-stake digital asset with an intent to destroy it rather than to make profit.

In the end, the ambiguity in the bill’s language might not have a deleterious effect. It is hoped that a regulator would not strictly interpret the bill’s language to exclude the intended beneficiaries because of a hypothetical possibility of a 51% attack. So, too, the digital asset industry will likely continue to innovate new and more secure protocols that could potentially eliminate the threat of 51% attacks, making potential exclusion from the bill’s benefits a moot point. Nonetheless, as the TTA undergoes revision, the potential ambiguity in the proposed language should be remedied.

FCA Proposes Guidance on Cryptoassets, but Questions Remain

In January, the UK’s Financial Conduct Authority (FCA) released a consultation on potential guidance on cryptoassets that provides useful direction on how cryptoassets fall within the current regulatory regime. This consultation, one of the publications resulting from the Cryptoasset Taskforce’s October 2018 final report, does not drastically alter the current regulatory landscape, but rather provides clarity on the FCA’s current regulatory perimeter. The consultation also references a consultation by Her Majesty’s Treasury (HMT) that is expected in early 2019, which will explore legislative changes and potentially broaden the FCA’s regulatory remit on cryptoassets.

The FCA consultation on guidance asks for responses to the questions it poses by April 2019. The FCA does not intend to publish its final guidance until this summer; the guidance noted in this consultation paper is subject to change and should not be considered the FCA’s definitive position. However, subject to the feedback that is received, the consultation gives a good indication of the FCA’s thinking with regards to the regulation and classification of cryptoassets. Some of the points highlighted in the consultation are discussed below.

Exchange Tokens / Anti-Money Laundering

The FCA has confirmed that exchange tokens, such as Bitcoin, Litecoin or Ether, do not fall within the regulatory perimeter. This had already been expressed in the Cryptoasset Taskforce’s report, but it is useful to have it repeated here.

However, exchange tokens will be caught (along with other cryptoassets) by the 5th Anti-Money Laundering Directive (5AMLD), which will be transposed into UK law by the end of 2019. HMT will formally consult on this, but the FCA expects that 5AMLD will catch exchange between cryptoassets and fiat currencies or other cryptoassets, transfer of cryptoassets, safekeeping or administration of cryptoassets and provision of financial services related to an issuer’s offer and/or sale of cryptoassets. Being caught by the 5AMLD does not, by itself, mean the cryptoasset will be subject to FCA regulation.

Security Tokens

The FCA’s discussion on the classification of security tokens is arguably the most anticipated part of its guidance on cryptoassets. The discussion makes clear that cryptoassets that fall within the definition of a security will be treated as such. However, given that cryptoassets can provide a range of rights and other characteristics, it can be difficult to determine whether they do fall within such definition. While noting that it can be difficult to categorize tokens, the guidance describes the most relevant traditional forms of specified investments that security tokens may fall into. The guidance also notes that products that derive their value from or reference cryptoassets, such as options, futures, contracts for difference and exchange-traded notes, are likely to fall within the regulatory perimeter, even if the underlying cryptoasset does not.

The FCA states in its guidance that tokens that are issued in exchange for other cryptoassets, and not for fiat currency, will not necessarily be exempt from the regulatory regime if they are considered security tokens.

Issuing of one’s own security tokens does not require the issuing company to have a regulatory licence, in the same way that issuing one’s own shares does not require a licence. However, authorization must be obtained by any exchanges in which the tokens are traded, advisers and brokers, and the financial promotions regime will need to be complied with.

Shares / Debt instruments

According to the consultation, if a cryptoasset has the features of a share then it will be considered a specified investment and certain activities involving it will require authorization or exemption. In determining whether a cryptoasset is classed as a share, the FCA has noted that a separate legal personality, and a body which survives a change of member, are significant but not determinative factors in classifying the cryptoasset. Other factors include whether the cryptoasset provides voting rights, control, ownership, access to a dividend based on the performance of the company or rights to distribution of capital on liquidation. Interestingly, the FCA has noted that the definition is dependent on company and corporate law.

There is a trend for token offerings to be packaged as “security token offerings” and promoted in accordance with security requirements, as ICOs are no longer attractive to investors. However, many of these “security token offerings” do not give equity rights. Calling a token a “security token” will not change the nature of the token itself. The FCA has not been clear on this subject, but arguably a security token that does not meet the company law and corporate law definition of a share can be treated as a utility token and not require the trading platform, broker or advisers to be licensed.

A cryptoasset that represents money owed to the token holder will be considered a debt instrument, and therefore will be considered a security token.

If the cryptoasset is considered a share or debt instrument, and is capable of being traded on the capital market, it will be considered a transferable security under the Markets in Financial Instruments Directive (MiFID), and the MiFID regime will apply. As with traditional securities, this does not require the security to be listed. If the cryptoasset is able to be transferred from one person to another in such a way that the transferee will acquire good legal title, it is likely a transferable security. It is important to note that a cryptoasset may be considered a share under the UK law, but not a transferable security under MiFID.

Warrants, certificates representing certain securities and rights and interests in investments

Warrants may be issued as cryptoassets in situations where an issuing entity issues A tokens, which will provide the token holder the right to subscribe for B tokens at a later date. If the B tokens represent shares or debentures (or other specified investments), then the A tokens will be considered warrants and therefore specified investments. It is important to note that for the A tokens to be warrants, the B tokens will need to be new cryptoassets issued by the issuing entity. If the A tokens provide a right to purchase B tokens from a secondary market, the A tokens will not be considered warrants.

Similarly, A tokens that provide the token holder with a contractual or property right over other investments (either in cryptoasset or traditional form) will be considered certificates representing certain securities. Cryptoassets which represent a right to or interests in other specified investments are also classified as securities.

Units in collective investment schemes

Certain cryptoassets may be considered units in a collective investment scheme, notably tokens that allow investors to invest in assets such as art or property. Provided the investments in the cryptoassets are pooled, and the income or profits that the cryptoasset holders receive are also pooled, it will likely be considered a unit in a collective investment scheme. Importantly, if the token holders have day-to-day control of the management of the investment, it will fall outside this definition.

Utility Tokens

Tokens that represent rewards, such as reward-based crowdfunding, or the access to certain services, will be considered utility tokens. Utility tokens do not have the features of securities, and therefore fall outside the regulatory perimeter. The FCA has noted that the ability to trade utility tokens on the secondary market will not affect the classification of the token – even though this may mean individuals purchase these as investments.

Payment Services and Electronic Money

The guidance confirms that the use of cryptoassets is not covered by the payment services, unless the cryptoasset is considered electronic money. However, where cryptoassets act as a vehicle for money remittance (i.e. the transfer of money from one account to another, perhaps with a currency exchange) then the fiat sides of the exchange will be caught by the payment services regulations.

While cryptoassets do not fall within the payment services regime, they may fall within the e-money one. To the extent that the cryptoasset is issued on receipt of funds (i.e. fiat currency, not other cryptoassets) and the cryptoasset is accepted by a person other than the electronic money issuer, it may be considered electronic money (unless it is excluded). This would include cryptoassets that are issued on receipt of GBP and are pegged to that currency, as long as the cryptoasset is accepted by a third party. Therefore, stablecoins that meet the definitions set out above may fall within the definition of electronic money.

Issues Outstanding

None of the guidance’s declarations is new, but the guidance does provide useful clarification. What is not clear is how utility or payment tokens wrapped in a security token wrapper but not containing traditional security/equity rights will be treated. In our view, if the token is a utility token dressed in a security token wrapper, it should not necessarily be treated as a security, for UK regulatory purposes including requiring an authorized multilateral trading facility (MTF) to carry out secondary trading. The FCA says nothing here conflicting with this, but it would be useful to have clarity in this regard.

SEC and FINRA Confirm Digital Assets a 2019 Examination Priority

Recently, the Staffs of the SEC and FINRA announced their annual examination and regulatory priorities: the SEC’s Office of Compliance, Inspections and Examinations (OCIE) issued its 2019 Examination Priorities just before its employees were sent home on furlough, and FINRA issued its 2019 Risk Monitoring and Examination Priorities Letter last week, several weeks later than its usual first-of-the-year release. The high points and overlap of the two releases are covered in an Orrick Client Alert, but for purposes of On the Chain, we will briefly discuss the two regulators’ not-surprising designation of digital currency as one of their priorities.

The priorities letters clearly telegraph both regulators’ intentions to examine firms’ participation in the digital assets marketplace. OCIE flags digital assets as a concern because of the market’s significant growth and risks. OCIE indicates that it will issue high-level inquiries designed first to identify market participants offering, selling, trading, and managing these assets, or considering or actively seeking to offer these products. Once it identifies those participants, OCIE will then assess the extent of their activities and examine firms focused on “portfolio management of digital assets, trading, safety of client funds and assets, pricing of client portfolios, compliance, and internal controls.”

For its part, FINRA treats digital assets under the heading of “Operational Risks,” and encourages firms to notify it if they plan to engage in activities related to digital assets, even, curiously, “where a membership application is not required.” In this context, FINRA references its Regulation Notice 18-20, July 6, 2018, which is headlined “FINRA Encourages Firms to Notify FIRNA If They Engage in Activities Related to Digital Assets.” These initiatives provide a partial explanation for the long-expected delays in FINRA granting member firms explicit authority to effect transactions in digital assets.

FINRA also states its intention to review these activities and assess firms’ compliance with applicable securities laws and regulations and related supervisory, compliance and operational controls to mitigate the risks associated with such activities. FINRA states that it will look at whether firms have implemented adequate controls and supervision over compliance with rules related to the marketing, sale, execution, control, clearance, recordkeeping and valuation of digital assets, as well as AML/Bank Secrecy Act rules and regulations. These issues are addressed in detail in FINRA’s January 2017 report on “Distributed Ledger Technology: Implications of Blockchain for the Securities Industry.”

The SEC and FINRA clearly will seek to align their concerns about firms participating in the digital asset markets and the compliance and supervision standards to which they will hold them. The regulators’ jurisdiction overlaps, but the SEC’s is broader – it extends to all issuers, while FINRA would be limited only to those issuers that are member broker-dealer firms. The SEC also has jurisdiction over investment advisers, while FINRA again is limited to those advisers who are members. And because the SEC effectively owns the definition of security, FINRA also states its intention to coordinate closely with the SEC in considering how firms determine whether a particular digital asset is a security. At the same time, FINRA has jurisdiction over any activities engaged in by broker-dealers with respect to its customers, even those that do not involve a security, meaning that a member firm’s transactions in or custody of, for example, bitcoin – declared by the SEC not to be a security – still will implicate FINRA’s oversight.

The regulators’ coordination on their digital currency reviews will likely not diminish regulatory attention, but at least it will provide industry participants some comfort that coordinated thought is being given to how best to regulate this emerging area.

Transactors in Digital Tokens – New Bill Offers Hope

On December 20, 2018, Representatives Warren Davidson (R-Ohio) and Darren Soto (D-Fla) offered some early holiday hope to digital token issuers by introducing the “Token Taxonomy Act” (the TTA). If passed, the TTA would exclude “digital tokens” from the federal securities laws and would undoubtedly have profound effects for the U.S. digital token economy. The TTA is an ambitious piece of legislation that faces an uncertain future. Nevertheless, Representatives Davidson and Soto should be commended for attempting to provide some regulatory relief and certainty to an industry that has been yearning for it.

In addition to exempting digital tokens from the securities laws, the TTA would amend the Internal Revenue Code and classify the exchange of digital tokens as like-kind exchanges under Section 1031, and allow digital tokens to be held by retirement accounts.

The TTA would also amend language in the Investment Advisers Act of 1940 and the Investment Company Act of 1940 so that state-regulated trust companies, which include broker dealers, investment advisors and investment companies, would be able to hold digital assets for customers.

According to the TTA’s authors, the intention behind the bill is to provide much-needed regulatory certainty to digital token issuers and to ensure the U.S. remains competitive against other countries like Switzerland, where blockchain startups are thriving.

However, the TTA’s benefits are hypothetical at this point, since it is likely to be opposed by the SEC. On November 30, 2018, SEC Chairman Jay Clayton opined at a New York Times-hosted event that SEC rules were made by “geniuses” and “have stood the test of time.” He stated that he did not foresee changing rules “just to fit a technology.” While he was not referring specifically to the TTA, these comments indicate an unwillingness by the SEC to change its longstanding rules to accommodate a nascent technology.

Even if the bill is passed, it would permit the SEC to determine whether a particular digital unit qualifies as a security and therefore is subject to the SEC’s regulation. The SEC thus would have the power to halt an offering and force compliance with the applicable securities laws. The TTA would spare issuers from any penalties if they have acted in good faith and take reasonable steps to cease sales. But with an unclear, and a potentially costly or lengthy, appeals process, the SEC could discourage issuers from taking the risk of attempting to qualify and sell digital tokens from the start. This provision would blunt the intended deregulatory impact of the TTA.

Although its future is uncertain, the TTA shows that there are government leaders that are listening to the concerns of the digital token issuers. If the TTA is introduced in the 116th Congress, it will be a piece of legislation worth tracking. Even if this particular bill is not enacted, it might point the way to other legislation whose passage might provide some regulatory relief to those who transact in digital tokens.