Hungary -- Sanctions Compliance Regulatory Overview

Hungary, as a member state of the European Union (EU) and the United Nations (UN), is directly bound by EU regulations and UN Security Council Resolutions, which are often implemented through EU law. While the U.S. Office of Foreign Assets Control (OFAC) sanctions are not directly legally binding on purely Hungarian entities without a U.S. nexus, they carry significant extraterritorial implications, and international VASPs often comply with them as a best practice for risk management.

Cryptocurrency (virtual assets) is explicitly covered under recent EU sanctions regimes and Hungary's Anti-Money Laundering and Counter-Terrorist Financing (AML/CFT) framework, meaning all sanctions compliance requirements apply to Virtual Asset Service Providers (VASPs).

I. EU Sanctions Compliance Requirements for VASPs in Hungary

EU sanctions are directly applicable in all Member States and take precedence over national law. They are implemented through Council Regulations, which define the scope, prohibitions, and listing criteria.

Legal Basis:

• Article 215 of the Treaty on the Functioning of the European Union (TFEU): Provides the legal basis for the EU to adopt restrictive measures (sanctions).
• Various Council Regulations: Specific regulations detail the sanctions regimes for particular countries or individuals (e.g., Russia, Iran, Syria, DPRK).

Key Elements and Compliance Requirements for VASPs:

1. Asset Freezes:

   • Prohibits making funds and economic resources available, directly or indirectly, to designated persons, entities, or bodies.
   • Definition of "Funds" and "Economic Resources": Recent EU sanctions regulations, particularly concerning Russia, have explicitly clarified that "funds" and "economic resources" include "crypto-assets." This means VASPs must freeze any crypto assets belonging to sanctioned individuals or entities.
   • Obligation: VASPs must immediately freeze virtual assets held by or on behalf of designated persons and report this to the competent authorities (in Hungary, typically the Hungarian National Bank - MNB, or the National Tax and Customs Administration - NAV, depending on the specific reporting requirement).

2. Prohibition on Making Funds/Economic Resources Available:

   • VASPs are prohibited from directly or indirectly making any virtual assets or related services available to, or for the benefit of, sanctioned individuals or entities. This applies to all transactions, including transfers, exchanges, or facilitation of access to virtual assets.

3. Sectoral Sanctions:

   • Some EU sanctions regimes (e.g., against Russia) include sectoral restrictions, which might impact certain crypto-related activities. For instance, prohibitions on providing certain services, or dealing with specific types of assets, apply to virtual assets as well.

4. Sanctioned Entity Screening Obligations:

   • Mandatory: VASPs in Hungary must implement robust screening procedures for all customers (during onboarding and ongoing monitoring) and transactions against EU sanctions lists.
   • EU Consolidated Sanctions List: VASPs must regularly check their customer base and transaction parties against the EU's consolidated list of persons, groups, and entities subject to EU financial sanctions. This list is updated frequently.
   • Automated Solutions: Due to the dynamic nature of crypto transactions and sanctions lists, automated screening tools are highly recommended for VASPs.

5. Geographic Restrictions:

   • Certain EU sanctions target specific geographic areas (e.g., Crimea and Sevastopol, non-government-controlled areas of Ukraine). VASPs must ensure they do not conduct or facilitate transactions that directly or indirectly benefit these regions or violate specific prohibitions related to them.

Legal References for EU Sanctions:

• EUR-Lex: Official source for EU legislation (e.g., for specific Council Regulations).
  • Example for Russia: Council Regulation (EU) No 833/2014 and Council Regulation (EU) No 269/2014. These have been amended multiple times to include crypto assets. (Search on EUR-Lex for the latest consolidated versions).
• EU Sanctions Map: Provides an overview of current EU sanctions regimes: https://www.sanctionsmap.eu/
• Consolidated Financial Sanctions List: Accessible via the EU Sanctions Map or specific Council Decisions.

II. UN Sanctions Compliance Requirements

UN Security Council Resolutions impose sanctions that are binding on all UN member states, including Hungary. These resolutions typically mandate measures like asset freezes, travel bans, and arms embargoes.

Implementation:

• UN sanctions are almost always incorporated into EU law through EU Council Regulations, making them directly applicable and enforceable in Hungary. Therefore, compliance with EU sanctions generally ensures compliance with UN sanctions.
• Obligation: VASPs must adhere to these measures, including screening against the UN Consolidated Sanctions List.

Legal References for UN Sanctions:

• UN Security Council Resolutions: https://www.un.org/securitycouncil/content/resolutions
• UN Security Council Consolidated List: https://www.un.org/sc/suborg/en/sanctions/un-sc-consolidated-list

III. OFAC Sanctions Compliance Considerations

OFAC sanctions are U.S. law and have broad extraterritorial reach. While not directly legally binding on a purely Hungarian VASP without a U.S. nexus (e.g., U.S. customers, transactions in U.S. dollars, use of U.S. financial systems, U.S. owners/operators), ignoring them carries significant risks:

• De-risking by Correspondent Banks: International banks often comply with OFAC, and a VASP failing to do so might be de-risked.
• Reputational Damage: Being associated with OFAC violations can harm a VASP's reputation.
• Risk of Secondary Sanctions: In some cases, OFAC can impose secondary sanctions on non-U.S. persons dealing with sanctioned entities.

Best Practice: Many international VASPs, including those operating in Hungary, voluntarily screen against OFAC's Specially Designated Nationals (SDN) and Blocked Persons List as part of their robust compliance programs.

Legal References for OFAC Sanctions:

• OFAC Website: https://home.treasury.gov/policy-issues/office-of-foreign-assets-control-sanctions-programs-and-information
• SDN List: https://home.treasury.gov/policy-issues/office-of-foreign-assets-control-sanctions-programs-and-information/specially-designated-nationals-and-blocked-persons-list-sdn-human-readable-lists

IV. Hungarian Country-Specific Sanctions Compliance Framework for VASPs

Hungary implements EU and UN sanctions through its national legal framework, primarily via its AML/CFT laws. The Hungarian National Bank (Magyar Nemzeti Bank - MNB) is the primary supervisory authority for VASPs.

1. Hungarian AML/CFT Framework:

• Act LIII of 2017 on the Prevention and Combating of Money Laundering and Terrorist Financing (2017. évi LIII. törvény a pénzmosás és terrorizmus finanszírozása megelőzéséről és megakadályozásáról): This is the core Hungarian law implementing the EU's 5th and 6th Anti-Money Laundering Directives.
• Obligations for VASPs: VASPs are defined as "service providers for virtual asset-related activities" and are subject to the same AML/CFT obligations as traditional financial institutions. These include:
  • Customer Due Diligence (CDD): Identifying and verifying customers and beneficial owners.
  • Ongoing Monitoring: Monitoring transactions and customer relationships.
  • Risk Assessment: Implementing a risk-based approach to identify and mitigate ML/TF risks, including sanctions risks.
  • Reporting Obligations: Reporting suspicious transactions to the Hungarian Financial Intelligence Unit (FIU), which is part of the National Tax and Customs Administration (NAV).
  • Sanctions Compliance: The AML law implicitly requires compliance with international sanctions regimes by mandating comprehensive risk management and customer due diligence.

2. Sanctioned Entity Screening Obligations (Specific to Hungary):

• Under Act LIII of 2017, VASPs must conduct comprehensive due diligence, which explicitly includes screening against sanctions lists. While the Act doesn't specify which lists, it's understood to mean the legally binding EU (and by extension UN) lists. Prudent VASPs will also include OFAC lists.
• Internal Controls: VASPs must have robust internal policies, procedures, and controls to detect and prevent sanctions violations.

3. Country-Specific Sanctions Lists:

• Hungary generally does not maintain a separate national sanctions list for international purposes that would diverge significantly from or add to the EU's consolidated lists. Instead, it fully implements and enforces EU sanctions.
• There are no specific "crypto-sanctions lists" maintained by Hungary; rather, existing sanctions apply to all forms of "funds" and "economic resources," which now explicitly include virtual assets under EU law.

Legal References for Hungarian AML/CFT:

• Act LIII of 2017: Searchable on Hungary's National Legal Database (Nemzeti Jogszabálytár - NJT).
  • Direct link (might require Hungarian language skills): https://njt.hu/jogszabaly/2017-53-20-22.1
• Magyar Nemzeti Bank (MNB): The MNB is the financial supervisor. Its website contains guidance and regulations for financial service providers, including VASPs.
  • MNB website: https://www.mnb.hu/

V. Penalties for Violations in Hungary

Violations of sanctions compliance or AML/CFT regulations in Hungary can lead to significant administrative, civil, and criminal penalties.

1. Administrative Penalties:

• By the MNB: The Hungarian National Bank can impose substantial fines on VASPs and their management for non-compliance with AML/CFT and sanctions regulations. These fines can range from thousands to millions of Forints, depending on the severity and recurrence of the violation. The MNB also has powers to issue warnings, restrict activities, or even withdraw operating licenses.
• Reference: Act LIII of 2017 grants the MNB its supervisory and penalty-imposing powers.

2. Criminal Penalties:

• Hungarian Criminal Code (2012. évi C. törvény a Büntető Törvénykönyvről - Act C of 2012 on the Criminal Code):
  • Terrorist Financing (Btk. 317. §): Directly financing terrorism or making funds available to terrorist organizations (including virtual assets) carries severe prison sentences.
  • Money Laundering (Btk. 399. §): Engaging in money laundering activities, which could include processing illicit funds through virtual assets, is punishable by imprisonment.
  • Violation of International Sanctions: While not a standalone article for "sanctions violation," acts that circumvent international sanctions, especially those related to terrorist financing, proliferation, or other serious offenses, can be prosecuted under relevant sections of the Criminal Code.
  • Reference: Act C of 2012 on the Criminal Code. Searchable on NJT.
    • Direct link: https://njt.hu/jogszabaly/2012-100-20-22.1

Summary for VASPs in Hungary:

VASPs operating in Hungary must prioritize robust compliance with:

1. EU Sanctions: Directly applicable and interpreted to include virtual assets.
2. UN Sanctions: Implemented via EU law.
3. Hungarian AML/CFT Law (Act LIII of 2017): Requires comprehensive due diligence, ongoing monitoring, and screening against sanctions lists.
4. OFAC Sanctions: While not directly legally binding, essential for managing international risk and maintaining banking relationships.

Implementing strong, automated screening tools, maintaining up-to-date internal policies, and conducting regular training for staff are crucial to ensure compliance and avoid severe penalties.