Latvia -- Licensing Requirements Regulatory Overview

Latvia currently operates a registration regime rather than a full licensing regime for Virtual Asset Service Providers (VASPs), primarily focused on Anti-Money Laundering (AML) and Counter-Terrorism and Proliferation Financing (CTPF) compliance. This framework is overseen by the Financial Intelligence Unit (FIU) of Latvia.

It's crucial to note that the EU's Markets in Crypto-Assets Regulation (MiCA) will eventually introduce a harmonized licensing regime across the EU, including Latvia. MiCA's VASP provisions are expected to apply from December 2024. Until then, Latvia's national registration regime remains in effect.

Regulatory Bodies

1. Financial Intelligence Unit (FIU) of Latvia (Finanšu izlūkošanas dienests - FID): The primary authority responsible for registering and supervising VASPs for AML/CTPF compliance.
   • Website: https://www.fid.gov.lv/en
   • Specific VASP section: https://www.fid.gov.lv/uzraudziba/virtualo-asentu-pakalpojumu-sniedzeji (Note: Primarily in Latvian, use a translation tool.)
2. Register of Enterprises of the Republic of Latvia (Latvijas Republikas Uzņēmumu reģistrs): Responsible for the registration of legal entities in Latvia.
   • Website: https://www.ur.gov.lv/en
3. Bank of Latvia (Latvijas Banka) / Financial and Capital Market Commission (FCMC): While not the primary regulator for VASP registration, the FCMC (now integrated into the Bank of Latvia) oversees traditional financial institutions and may interact with VASPs that offer services overlapping with regulated financial activities (e.g., e-money issuance).

Registration vs. Licensing Regime

• Current Regime (Pre-MiCA): Registration. Latvia requires entities engaged in virtual asset services to register with the FIU. This registration is primarily an AML/CTPF compliance obligation, meaning the focus is on preventing money laundering and terrorist financing, rather than prudential supervision (e.g., capital adequacy for consumer protection, market integrity, etc., which is typical of a full licensing regime).
• Future Regime (Post-MiCA): Licensing. Once MiCA fully applies to VASPs (expected December 2024), Latvia will transition to a comprehensive licensing regime under MiCA. This will involve more stringent requirements, including prudential safeguards, operational resilience, and specific disclosures, and will likely be overseen by the Bank of Latvia (FCMC).

Required Licenses/Registrations for Specific Entities

Under the current Latvian regime, the following activities fall under the definition of "virtual asset service providers" and require registration with the FIU:

1. Exchanges (Virtual Asset Exchange Service Providers):
   • Entities offering services for the exchange of virtual assets against fiat currency or one or more other virtual assets. This covers both fiat-to-crypto, crypto-to-fiat, and crypto-to-crypto exchanges.
2. Custody Providers (Virtual Asset Wallet Service Providers):
   • Entities offering services to safeguard or administer virtual assets or instruments enabling control over virtual assets on behalf of third parties. This includes custodial wallet providers.
3. Payment Processors:
   • If a payment processor facilitates transactions directly involving virtual assets (e.g., accepting crypto payments on behalf of merchants and converting them to fiat, or enabling crypto-to-crypto payments), they will likely fall under the VASP definition as an exchange or potentially another VASP activity.
   • If a payment processor only handles fiat currency and does not touch virtual assets directly, but serves crypto businesses, they would be subject to traditional payment service regulations (PSD2/EMD) and overseen by the Bank of Latvia (FCMC), not the FIU's VASP register. However, their clients would still need VASP registration.

The legal basis for this is the Law on the Prevention of Money Laundering and Terrorism and Proliferation Financing (NNTLPL).

• Relevant Law (Latvian): https://likumi.lv/ta/id/296767-no-noziedzigi-iegutu-lidzeklu-legalizacijas-un-terorisma-un-propagandas-finansesanas-preventijas-likums

Key Requirements for VASP Registration

1. Company Incorporation:
   • The applicant must be a legal entity registered in Latvia (typically a Limited Liability Company – SIA).
   • The company must have its registered office in Latvia.
2. AML/CTPF Internal Control System (ICS):
   • This is the core requirement. The company must establish a robust internal control system for AML/CTPF compliance, including:
     • Risk Assessment: A comprehensive assessment of the company's money laundering and terrorism financing risks.
     • Client Due Diligence (CDD) and Enhanced Due Diligence (EDD): Procedures for identifying and verifying clients, beneficial owners, and monitoring business relationships.
     • Transaction Monitoring: Systems for monitoring transactions for suspicious activities.
     • Reporting: Procedures for reporting suspicious transactions to the FIU.
     • Record-keeping: Maintaining records for a specified period (typically 5 years).
     • Training: Regular AML/CTPF training for employees.
3. Appointed AML Officer:
   • The company must appoint a board member or an employee (who reports directly to the board) as the responsible person for AML/CTPF compliance (the AML Officer).
   • The AML Officer must have sufficient knowledge, experience, and authority. They must be a resident of Latvia or an EU/EEA member state.
   • The FIU assesses the suitability of the appointed AML officer.
4. Fit and Proper Requirements:
   • The management board members, beneficial owners, and the AML officer must meet "fit and proper" criteria. This involves checks for criminal records, financial misconduct, and professional integrity.
   • The FIU will assess the reputation, experience, and financial soundness of these individuals.
5. Local Presence & Management:
   • While not explicitly stated as a minimum number of employees, the company must demonstrate sufficient substance and resources in Latvia to effectively manage its operations and comply with AML/CTPF obligations.
   • The company's management and decision-making processes should predominantly take place in Latvia or another EU/EEA member state.
6. Capital Requirements:
   • There is no specific minimum share capital requirement explicitly for VASP registration beyond the general company incorporation requirements for a Latvian SIA.
   • For a standard SIA, the minimum share capital is €2,800. A micro-SIA can be established with a share capital of €1 if certain conditions are met, but this is less common for regulated businesses.
   • However, while there's no prescriptive capital minimum for VASP registration, the company must demonstrate sufficient financial resources and solvency to establish and maintain its operations, comply with its AML/CTPF obligations, and cover potential operational risks. The FIU will assess the financial stability and resources of the applicant.
7. Business Plan:
   • A comprehensive business plan outlining the services, target market, operational structure, technological setup, and risk management framework.

Application Process

The application process typically involves the following steps:

1. Establish a Latvian Legal Entity: Register a Limited Liability Company (SIA) with the Register of Enterprises.
2. Develop AML/CTPF Internal Control System (ICS): Prepare a detailed AML/CTPF policy and internal procedures, tailored to the company's specific business model and risks. This is a critical and often time-consuming step.
3. Appoint AML Officer: Identify and appoint a suitable AML Officer who meets the legal requirements.
4. Prepare Application Documents: Compile all necessary documents, which generally include:
   • Application form.
   • Company registration documents.
   • Certified copy of the AML/CTPF ICS.
   • CVs, education documents, and background check information for board members, beneficial owners, and the AML officer.
   • Proof of financial resources.
   • Detailed business plan.
   • Information on IT systems and security measures.
5. Submit Application to the FIU: The complete application package is submitted to the Financial Intelligence Unit.
6. FIU Review and Due Diligence: The FIU will review the application, conduct due diligence on the company, its management, and beneficial owners, and assess the adequacy of the AML/CTPF ICS. This often involves interviews and requests for additional information.
7. Registration Decision: If the FIU is satisfied, the company will be registered as a VASP in Latvia and included in the public register of VASPs.
8. Ongoing Compliance: Once registered, the VASP must continuously comply with the AML/CTPF Law, its internal control system, and any additional requirements or guidance issued by the FIU. Regular reporting and audits may be required.

Conclusion and Future Outlook

Latvia's current VASP registration framework is focused squarely on AML/CTPF prevention. While it offers a pathway for crypto businesses to operate legally, it does not provide the same level of regulatory oversight as a full financial license.

Companies considering offering virtual asset services in Latvia should be prepared for significant AML/CTPF compliance obligations and should closely monitor the implementation of MiCA, which will introduce substantial changes to the regulatory landscape for crypto-assets across the EU from late 2024.

Disclaimer: This information is for general guidance only and does not constitute legal advice. Given the evolving nature of cryptocurrency regulation, it is highly recommended to seek professional legal counsel specializing in Latvian financial law and virtual assets before engaging in any VASP activities in Latvia.