The United Kingdom is taking a decisive step toward formal regulation of digital assets, announcing that all cryptoasset service providers operating in the country will be required to adhere to strict reporting obligations starting January 1, 2026.
The new rules form part of the OECD’s global Cryptoasset Reporting Framework (CARF), which seeks to increase tax transparency, harmonize cross-border data exchange, and reduce the potential for tax avoidance via cryptocurrencies.
The framework introduces significant compliance responsibilities for both domestic and foreign institutions that serve UK-based users.
All relevant firms must collect detailed user identification and transactional data for individuals and entities residing in the UK or in jurisdictions adopting CARF.
The initiative marks a major regulatory shift, aimed at aligning the crypto sector with the rigorous standards applied to conventional financial services.
For individual users, service providers will be required to collect personal information including full name, date of birth, residential address, country of residence, and a valid tax identification number.
UK residents must provide either a National Insurance number or Unique Taxpayer Reference, while non-residents must submit a TIN issued by their home jurisdiction. If a jurisdiction does not issue TINs, this requirement may be waived.
Entity users—including corporations, partnerships, trusts, and charities—will need to submit their legal business name, main address, and applicable registration or tax numbers.
In certain cases, information about controlling persons must also be collected to meet due diligence standards.
In terms of transactions, providers must log the type and quantity of cryptoassets exchanged, transaction type (buy, sell, transfer, etc.), and monetary value.
All data must be verified for accuracy through due diligence processes, with further guidance on verification expected to be published by HM Revenue & Customs (HMRC) in due course.
Failure to submit accurate and complete reports may result in financial penalties of up to £300 per user. Annual reporting to HMRC may also be mandated depending on the nature of the activity and information collected.
While enforcement begins in 2026, firms are encouraged to begin collecting the necessary information well in advance to ensure readiness when the rules come into force.
The move underscores the UK’s broader ambition to bring the cryptoasset sector into the fold of robust regulatory oversight and financial accountability.