How Do Anti-Money-Laundering Laws Apply to Cryptocurrency Transactions?
Anti-money-laundering rules were written long before blockchains existed, built around banks, wire transfers, and cash deposits. Over the past several years, regulators in the United States have steadily extended those same obligations to businesses that handle cryptocurrency, reshaping how exchanges and other platforms operate.
The short answer
In the US, businesses that exchange, transmit, or custody cryptocurrency on behalf of customers are generally treated as money services businesses and must comply with anti-money-laundering law, most notably the Bank Secrecy Act. That means verifying customer identities, monitoring transactions for suspicious patterns, and filing reports with regulators, obligations that mirror what banks have long been required to do.
Who these rules actually apply to
Anti-money-laundering law is generally aimed at businesses, not individuals moving their own funds between their own wallets. A platform that lets customers buy, sell, or transfer crypto typically has to register as a money services business and, depending on the state, may also need a money transmitter license. An individual simply holding or spending their own crypto isn’t the one filing these reports, but nearly every transaction that touches a regulated platform passes through a business that is.
Know-your-customer requirements
- Identity verification. Platforms are generally required to collect and verify a customer’s name, address, date of birth, and an identification number before allowing significant activity.
- Ongoing monitoring. Accounts are watched for patterns associated with layering or structuring funds, not just a one-time check at signup.
- Recordkeeping. Businesses typically have to retain transaction records for a set period so that funds can be traced if investigators request it later.
Suspicious activity and currency transaction reports
When a platform’s monitoring systems flag activity that looks designed to disguise the source or destination of funds, US law generally requires filing a suspicious activity report with the Financial Crimes Enforcement Network, without notifying the customer involved. Large transactions above a reporting threshold can separately trigger currency transaction reports. These filings feed into a broader system used by law enforcement and agencies that also field public complaints, including the FTC’s collection of crypto scam reports, to identify patterns across many cases rather than acting on any single report in isolation.
How this differs from securities or tax rules
Anti-money-laundering compliance is a separate legal track from how crypto is classified for tax purposes or whether a particular token is treated as a security. A transaction can be fully compliant with anti-money-laundering rules and still generate a taxable event, and a platform can meet its verification obligations while a regulator elsewhere debates how to classify the asset itself. These frameworks overlap in practice but exist to answer different questions.
What to weigh
Anti-money-laundering law didn’t originate with cryptocurrency, but regulators have worked steadily to make sure the same identity-verification and monitoring obligations apply once digital assets pass through a business rather than staying purely peer-to-peer. Because enforcement priorities and specific reporting thresholds change over time and vary by jurisdiction, anyone trying to understand how a specific platform’s obligations work should look at current guidance rather than assume the rules are fixed.