Crypto Gloss

KYC

Know Your Customer (KYC) is a regulatory requirement that obliges financial institutions — including cryptocurrency exchanges — to verify the identity of their customers before providing services. On centralized exchanges (CEXs) like Coinbase and Binance, KYC typically involves submitting a government-issued ID, a selfie, and proof of address before you can deposit, trade, or withdraw beyond minimal limits. KYC is closely paired with Anti-Money Laundering (AML) compliance and is mandated by the Financial Action Task Force (FATF) in most jurisdictions. Decentralized exchanges (DEXs) do not require KYC, though this regulatory gap is narrowing.

How It Works

Standard KYC Process on a Crypto Exchange

  1. Registration: Create an account with email and password.
  2. Basic KYC (Tier 1): Name, date of birth, nationality — enables small deposits and trades.
  3. Full KYC (Tier 2): Government ID (passport, driver’s license), selfie with ID, address proof — unlocks higher limits.
  4. Enhanced KYC (Tier 3): Source of funds documentation, bank statements — required for very large withdrawals or enterprise accounts.

The AML Connection

KYC is the customer-facing front end of broader Anti-Money Laundering (AML) programs. Exchanges use KYC data to:

  • Screen customers against OFAC sanctions lists and PEP (Politically Exposed Person) databases.
  • Monitor transaction patterns for suspicious activity (SAR filing).
  • Comply with the FATF Travel Rule, which requires sharing sender/receiver information for transfers above $1,000/€1,000 between regulated entities.

Non-KYC Alternatives

Option Description Risk
DEX (Uniswap, etc.) No account required; wallet connects directly Smart contract risk, no fiat on-ramp
P2P Platforms Direct user-to-user trades Counterparty risk, scams
Bitcoin ATMs Some allow small purchases without ID Higher fees, geographic limits
Privacy Coins Monero, Zcash obscure transaction trails Delisting risk on major exchanges

History

  • 1970 — US Bank Secrecy Act: Establishes financial recordkeeping requirements — the regulatory ancestor of modern KYC.
  • 2001 — USA PATRIOT Act: Expands AML requirements to include formal Customer Identification Programs (CIP) for financial institutions.
  • 2013 — FinCEN guidance: US Treasury’s Financial Crimes Enforcement Network rules that virtual currency exchangers are “money services businesses” subject to AML/KYC.
  • 2019, June — FATF Travel Rule guidance: FATF extends Travel Rule to virtual asset service providers (VASPs) globally, requiring KYC data sharing between exchanges.
  • 2021 — Binance KYC crackdown: Binance tightens KYC requirements globally under regulatory pressure, restricting services in multiple jurisdictions.
  • 2023 — EU MiCA regulation: Markets in Crypto-Assets framework requires comprehensive KYC across EU-regulated crypto businesses; fully effective 2024.

Common Misconceptions

  • “KYC means the exchange is safe.” KYC compliance reduces regulatory risk for the exchange, not user funds safety. FTX was a regulated, KYC-compliant exchange that collapsed due to fraud.
  • “DEXs will always be KYC-free.” Regulators are increasingly targeting DEX front-end operators; Uniswap Labs has already geo-blocked certain tokens under US regulatory pressure.
  • “Providing KYC data means the exchange owns your ID forever.” In most jurisdictions, exchanges have data retention obligations and policies — though data breaches (like Ledger’s 2020 breach) are a real risk.

Criticisms

  • Privacy: Centralized databases of identity documents are high-value targets. Breaches expose millions of users to identity theft and targeted phishing.
  • Financial exclusion: Strict KYC requirements exclude the unbanked — the global population crypto most often cites as a target beneficiary.
  • Jurisdiction-based inconsistency: KYC standards vary dramatically by country, creating regulatory arbitrage and pushing activities to less regulated venues.
  • Surveillance overreach: The FATF Travel Rule effectively creates a surveillance network for all cryptocurrency transactions between regulated entities, mirroring traditional financial surveillance.
  • Effectiveness questioned: Research suggests KYC/AML compliance intercepts a small fraction of illicit flows while imposing high costs on legitimate users.

Social Media Sentiment

KYC is one of the most divisive topics in crypto communities. Privacy advocates and Bitcoin cypherpunks view KYC as antithetical to cryptocurrency’s original promise. Mainstream users and institutional participants generally accept it as a necessary cost of regulated access. The phrase “KYC or no KYC” is a standard filter in peer-to-peer trading discussion on r/CryptoCurrency and r/Bitcoin.

Active communities: r/CryptoCurrency, r/Bitcoin, r/privacy, r/ethereum

Last updated: 2026-04

Related Terms

Sources

  1. FATF (2019). “Guidance for a Risk-Based Approach to Virtual Assets and Virtual Asset Service Providers.” Financial Action Task Force.
  1. Zetzsche, D. A., Buckley, R. P., Arner, D. W., & Föhr, L. (2020). “The ICO Gold Rush: It’s a Scam, It’s a Bubble, It’s a Super Challenge for Regulators.” Harvard International Law Journal, 63(2).
  1. FSB (2022). “Regulation, Supervision and Oversight of Crypto-Asset Activities and Markets.” Financial Stability Board.
  1. Foley, S., Karlsen, J. R., & Putniņš, T. J. (2019). “Sex, Drugs, and Bitcoin: How Much Illegal Activity Is Financed Through Cryptocurrencies?” Review of Financial Studies, 32(5), 1798–1853.
  1. Auer, R., & Claessens, S. (2018). “Regulating Cryptocurrencies: Assessing Market Reactions to Regulatory Announcements.” BIS Quarterly Review.