Timor-Leste -- Custody Regulations Regulatory Overview

Based on current available information, Timor-Leste does not have a specific, comprehensive regulatory framework for cryptocurrency or digital asset custody.

Like many smaller and developing nations, Timor-Leste's financial regulatory bodies are primarily focused on traditional financial services, banking, and general anti-money laundering (AML) and combating the financing of terrorism (CFT) efforts. Specific regulations for the nuanced aspects of digital asset custody, such as those seen in more developed jurisdictions, have not yet been established.

Here's a breakdown based on the points requested:

1. Custodial License Requirements:

   • There are no specific licensing requirements for cryptocurrency custodians or digital asset service providers in Timor-Leste.
   • Any entity operating within the financial sector might fall under the general oversight of the Banco Central de Timor-Leste (BCTL), but this would be for traditional financial activities, not specifically for digital asset custody.

2. Segregation of Client Assets Rules:

   • No specific rules mandate the segregation of client digital assets from a custodian's proprietary assets.
   • In traditional financial services, such segregation is a common prudential requirement, but it has not been extended to digital assets through specific legislation.

3. Insurance/Bonding Requirements:

   • No specific insurance or bonding requirements for cryptocurrency custodians are in place.
   • Traditional financial institutions operating in Timor-Leste might have general insurance requirements, but these would not cover the specific risks associated with digital asset custody.

4. Cold Storage Mandates:

   • There are no mandates regarding the use of cold storage or specific security protocols for digital assets.
   • Best practices for digital asset security would suggest cold storage, but it is not a regulatory requirement.

5. Qualified Custodian Definitions:

   • No official definition of a "qualified custodian" specifically for digital assets exists within Timor-Leste's regulatory framework.

6. Any Pending Custody Legislation:

   • There is no publicly announced or pending legislation specifically addressing cryptocurrency custody.
   • Timor-Leste, like all countries, is subject to international AML/CTF standards, particularly through the Financial Action Task Force (FATF) and the Asia/Pacific Group on Money Laundering (APG). The FATF has issued guidance for Virtual Asset Service Providers (VASPs), which would include custodians. While Timor-Leste has enacted AML/CTF laws (e.g., Law No. 7/2021 on the Prevention and Combating of Money Laundering and Terrorist Financing), it is not clear if these explicitly define or impose specific regulatory obligations on VASPs beyond general reporting requirements. The focus is usually on identifying and reporting suspicious transactions, not on specific operational or custody-related requirements.

Regulatory References:

The primary financial regulator in Timor-Leste is the Banco Central de Timor-Leste (BCTL). Their website provides access to general financial laws and regulations.

• Banco Central de Timor-Leste (BCTL) Official Website:

  • URL: https://www.bancocentral.tl/
  • Here you can find their general legal framework, banking laws, payment system regulations, and AML/CTF directives. As of the current date, a thorough review of their "Laws and Regulations" section does not reveal any specific decrees, circulars, or laws pertaining to cryptocurrency or digital asset custody.
  • Their focus remains on traditional banking, insurance, and payment systems.

• Timor-Leste AML/CTF Law (Law No. 7/2021): While this law addresses anti-money laundering and terrorist financing, it is a general framework. For it to impact crypto custody specifically, it would need to explicitly define "virtual assets" and "virtual asset service providers" and then assign specific obligations to them beyond just reporting. Without explicit provisions, it's difficult to infer specific custody requirements. Details are typically found within the legal framework section of the BCTL or Ministry of Finance websites.

In summary: As of now, Timor-Leste has a minimal, if any, specific regulatory framework for cryptocurrency and digital asset custody. Entities operating in this space would likely fall into a grey area, potentially subject to general business laws, but without dedicated rules for the unique aspects of digital asset custody. It is always advisable for any entity considering operations in Timor-Leste to consult with local legal counsel specializing in financial and corporate law for the most up-to-date and specific guidance.