Entities now subject to CIMA’s regulatory oversight under the Virtual Asset Service Providers ("VASP") Regime are required to comply with CIMA’s rules and guidance applicable to VASP entities.
VASP entities are expected to have in place policies and procedures relating to, amongst others, anti-money laundering, data protection, cyber security, risk management and asset safeguards.
Entities registered with CIMA and new entities intending to conduct virtual asset services should implement appropriate policies. Please contact your Stuarts attorney for advice and assistance with the requisite drafting policies.