What MiCA Changes About Leaving a Centralized Exchange — and What It Doesn't

TL;DR:

• MiCA changes the exchange side of the equation. From 1 July 2026, the EU transitional period for crypto-asset service providers (CASPs) reaches its end across the EU, and an exchange serving EU users needs to fit into the MiCA authorisation framework rather than rely on the old national regimes.
• MiCA does not turn self-custody into a regulated exchange. A user simply holding private keys is not a CASP. But that also means a self-custody wallet does not receive the CASP safeguards, supervision, or client-asset rules that apply to an authorised provider.
• So “leaving a CEX” becomes a clearer trade-off, not a one-way answer. A regulated CEX can offer oversight and custody safeguards; self-custody gives key control and on-chain portability. MiCA makes the difference sharper; it does not erase the difference.

This reference is about how MiCA reshapes the choice between a centralized exchange and self-custody for EU users — not how to do either. It is not investment, legal, or tax advice.

Why this question changed in 2026

If you are an EU crypto user weighing whether to move off a centralized exchange, the backdrop to that decision shifted in 2026 — and not on the self-custody side. It shifted on the exchange side.

For years, “should I leave this exchange?” was partly a question about trust: was this platform a regulated entity or an offshore black box? MiCA changes the terms of that question. The exchanges themselves now either operate within a single EU licensing regime, or lack the legal basis to keep serving EU users under MiCA. The decision is no longer “regulated vs. unregulated platform” — it is “regulated custody vs. holding your own keys.” Those are different things, and MiCA is what makes the difference clean enough to reason about.

This reference maps what MiCA actually changes on the exchange side, what it deliberately does not touch on the self-custody side, and what that leaves you weighing. A companion reference covers which exchange functions self-custody can and cannot replace; this one is about the regulatory backdrop to the choice.

What MiCA changes on the CEX side

MiCA (the Markets in Crypto-Assets Regulation) is, at its core, a licensing and conduct regime for the businesses that provide crypto services. For a centralized exchange serving EU users, three things matter most.

Authorisation became mandatory, with a hard EU-wide deadline. MiCA’s main rules came into full application on 30 December 2024, with a transitional window for firms that were already operating under national law. Under MiCA Article 143(3), those firms could continue providing services until 1 July 2026, or until their authorisation is granted or refused — whichever comes first. ESMA confirmed in an April 2026 statement that this transitional period expires across the EU on 1 July 2026, and that after that date any entity providing crypto-asset services to EU clients without a MiCA licence is in breach of EU law and must stop. (Member States could choose to end their own transitional window earlier than 1 July 2026, so some firms may have lost that bridge before then. But 1 July 2026 is the EU-wide outer limit: no Member State can extend the transition beyond it.)

Client-asset safekeeping became a legal requirement. Under MiCA Article 70, a CASP holding clients’ crypto-assets (or the means of access to them) must make arrangements to safeguard clients’ ownership rights — explicitly including in the event of the provider’s insolvency — and to prevent the use of clients’ crypto-assets for its own account. For client funds other than e-money tokens, the provider must place them with a credit institution or central bank by the end of the next business day, in an account separately identifiable from the provider’s own. This is a real, enforceable protection of ownership and a separation of client assets from the firm’s own use. It is not deposit insurance, and it is not a guarantee against market losses — it is about whose assets are whose, especially if the provider fails.

Authorisation and EU-wide service rules apply. Under MiCA Article 59, a person may not provide crypto-asset services in the Union unless authorised as a CASP (or otherwise permitted under the listed financial-sector categories). An authorised CASP may then provide crypto-asset services throughout the Union — including cross-border, under the right of establishment or the freedom to provide services — without needing a separate physical presence in each host Member State.

The net effect on the exchange side: an authorised CEX serving EU users after the transition is meant to look less like the old offshore black box and more like a supervised financial provider — licensed, with client-asset rules, answerable to a national regulator.

What MiCA does not change on the self-custody side

Here is the part that is easy to get wrong in both directions.

MiCA regulates crypto-asset service providers — not a user who is simply holding their own private keys. Pure self-custody does not become a CASP service just because someone holds crypto-assets in a wallet they control. MiCA does not impose CASP licensing, MiCA service-provider reporting, or conduct obligations on an individual for holding their own assets.

But the same fact cuts the other way, and this is the half that often gets dropped: because pure self-custody sits outside the CASP perimeter, it also does not receive any of MiCA’s CASP protections. There is no Article 70 client-asset safekeeping standing behind your own wallet, no authorised entity supervised by a national regulator, no insolvency-protection arrangement — because there is no provider in the middle. The protections in the previous section are protections of CASP clients. Self-custody is the choice to not be a CASP’s client.

One precision worth keeping: this clean exemption is about pure self-custody — holding keys. A product that also offers exchange, brokerage, transfer services, or custody-like control over others’ assets can fall within the service-provider rules on those functions. The point here is narrow: holding your own keys is not, by itself, a regulated service.

What happens when an exchange is not authorised after the transition

The 1 July 2026 deadline introduces a variable that did not exist before: an exchange’s authorisation status itself.

After the transition ends, the question for an EU user is no longer only “do I trust this exchange?” but also “is this provider authorised, transitioning in an orderly way, or losing its legal basis to serve my jurisdiction?” ESMA has been explicit that a firm without a MiCA licence cannot keep serving EU clients after the deadline, and that unauthorised providers are expected to have wind-down plans — including arranging the transfer of clients’ crypto-assets to an authorised CASP or to a self-hosted wallet.

That last detail is worth noting plainly, because it comes from the regulator, not from any wallet: ESMA lists moving assets to a self-hosted wallet as one of the legitimate destinations for client assets in an orderly wind-down, alongside moving to another authorised CASP. Both are treated as valid exits.

For users, ESMA’s practical guidance is to check whether a provider is actually authorised — in the ESMA register of authorised entities — rather than relying on a familiar brand name, and to note that MiCA protections attach to the specific authorised legal entity, not to other companies sharing the same brand. Authorisation status has been uneven across providers during the transition, which is exactly why the register, not the logo, is the thing to check.

The real trade-off after MiCA

Put the two sides together and the choice resolves into a genuine trade-off rather than a one-way answer.

Staying with an authorised CEX means keeping a supervised intermediary: client-asset safekeeping rules, a national regulator, easier fiat on- and off-ramps, and account-style support. The cost is that custody is not yours — your assets sit with the provider, under its arrangements, and you rely on those arrangements (and the provider’s solvency and conduct) being sound.

Moving to self-custody means holding your own keys: direct control, on-chain portability, no dependence on a single provider staying authorised or solvent. The cost is that none of MiCA’s CASP protections apply, fiat rails still route through third parties, there is no support desk for an on-chain mistake, and the operational responsibility is entirely yours.

MiCA does not tell you which to pick. What it changes is the clarity of the comparison: before, “leaving” could feel like escaping an unregulated venue; now, a regulated CEX is a supervised custodian, and moving assets into self-custody is a deliberate choice to take on key control for those assets, while no longer relying on CASP supervision for that portion. Which side fits depends on what you actually need — and many users will reasonably keep a foot on both sides. For the practical side of choosing and moving, see the overview of CEX alternatives and how to move off an exchange.

DAC8 is a separate question

One thing MiCA does not settle: your tax reporting. MiCA is market regulation — who can offer crypto services and how. DAC8 is tax transparency — what gets reported to tax authorities. They run on different tracks, and leaving a CEX does not change your reporting obligations either way: a reporting CASP may report relevant activity under DAC8 where applicable; in self-custody, the obligation to keep your own records and report where applicable does not disappear. The Playbook’s references on DAC8 and self-custody withdrawals and how exchanges report under DAC8 cover that side.

(MiCA can also affect which assets a CEX offers EU users — stablecoins in particular — but that is a separate product-availability question, not part of the custody trade-off here.)

Before you decide

A short way to ground the choice in fact rather than brand:

1. Check authorisation, not the logo. Confirm the specific legal entity serving you is in the ESMA register of authorised CASPs — and remember the licence attaches to that entity, not to every company sharing the brand.
2. Know what the protection is. MiCA’s client-asset rules protect ownership and separation of assets; they are not deposit insurance or a hedge against market loss.
3. Know what self-custody gives up. Holding your own keys means none of those CASP protections apply — that is the trade for control.
4. Separate the tax question. Whatever you decide about custody, treat DAC8 reporting as its own track.

FAQ

Does MiCA require me to move my crypto off an exchange? No. MiCA is a licensing and conduct regime for service providers, not an instruction to users. It changes what an EU exchange must do to operate legally; it does not tell an individual to leave one. The decision stays yours.

What actually happens on 1 July 2026? That date is the EU-wide outer limit of the transitional period for crypto-asset service providers. After it, an entity providing crypto-asset services to EU clients without a MiCA licence is in breach of EU law and must stop. Some Member States may have ended their own transitional window earlier, but none can extend past 1 July 2026.

Is my crypto on a MiCA-authorised exchange now insured? Not in the deposit-insurance sense. MiCA’s Article 70 requires an authorised provider to safeguard clients’ ownership rights — including in the event of the provider’s insolvency — and to keep client assets separate from its own. That protects whose assets are whose; it is not a guarantee against market losses and not the same as bank deposit insurance.

Does MiCA regulate my self-custody wallet? Holding your own private keys is not, by itself, a crypto-asset service, so pure self-custody falls outside MiCA’s CASP licensing. The flip side is that self-custody also does not receive MiCA’s CASP safeguards — there is no authorised provider in the middle to supervise or to stand behind your wallet.

How do I tell whether an exchange is actually MiCA-authorised? Check the ESMA register of authorised entities rather than relying on a familiar brand name. MiCA protections attach to the specific authorised legal entity in the EU — not to other companies that share the same brand, and not to non-EU group entities.

If I move to self-custody, do I still have tax reporting obligations? Yes. MiCA is market regulation; DAC8 is tax transparency, and they run on separate tracks. Leaving an exchange does not end your reporting obligations — in self-custody, the responsibility to keep your own records and report where applicable does not disappear. See the Playbook’s DAC8 references for that side.