CLPAI 2026.1 Methodology

Home Knowledge base Crypto Market Abuse Rules Under MiCA: Insider Dealing and Manipulation

Crypto market abuse · MiCA Title VI

Crypto Market Abuse Rules Under MiCA: Insider Dealing and Manipulation

MiCA did not just licence crypto firms — it imported a market-abuse regime. Insider dealing, unlawful disclosure of inside information, and market manipulation are all prohibited for crypto-assets, and CASPs running trading venues have to detect and report it.

Crypto market integrity and abuse monitoring — MiCA Title VI

By Jana Bistrikova · AML & Financial Crime Editor · Published 2026-05-11 · Last reviewed 2026-05-11

Crypto market abuse rules under MiCA are the prohibitions in Title VI of Regulation (EU) 2023/1114— modelled on the EU Market Abuse Regulation — that prohibit insider dealing, unlawful disclosure of inside information, and market manipulation in relation to crypto-assets admitted to trading, and that require persons professionally arranging or executing crypto-asset transactions to prevent and detect such abuse.

Quick facts

ParameterValue
Legal basisMiCA Regulation (EU) 2023/1114, Title VI —
Inside informationDefined in the unlawful-disclosure rule; disclosure obligations in the market-manipulation rule
Insider dealing prohibitionthe inside-information disclosure rule — prohibits dealing, attempting, recommending, or inducing others to deal on inside information
Unlawful disclosurethe market-abuse prevention rule — prohibits unlawful disclosure of inside information
Market manipulationthe market-abuse reporting rule — prohibits manipulative trading and conduct
Prevention and detection dutythe market-abuse supervision rule — persons professionally arranging or executing crypto-asset transactions must prevent and detect market abuse
Supervisory guidanceESMA Guidelines on supervisory practices to prevent and detect market abuse under MiCA (2025)

MiCA imported a market-abuse regime

When most teams think about MiCA, they think about authorisation — getting the CASP licence, meeting the capital floor, building the governance file. Fewer realise that MiCA also imported a market-abuse regime. Title VI of the Regulation applies insider-dealing, unlawful-disclosure, and market-manipulation rules to crypto-assets, closely modelled on the EU Market Abuse Regulation (MAR) that governs traditional securities markets.

For a CASP operating a trading platform, this is not background reading. Title VI creates active obligations to prevent and detect abuse — and a supervisor reviewing the firm will expect those obligations to be operationalised, not just acknowledged in a policy.

The three prohibitions

MiCA Title VI prohibits three categories of conduct in relation to crypto-assets admitted to trading:

ConductMiCA articleWhat it covers
Insider dealingThe inside-information disclosure ruleDealing on inside information — plus attempting, recommending, or inducing others to deal
Unlawful disclosure of inside informationThe market-abuse prevention ruleDisclosing inside information outside the normal exercise of employment, profession, or duties
Market manipulationThe market-abuse reporting ruleManipulative transactions, orders, and conduct that distort the market

Underpinning all three is the concept of inside information, defined in the unlawful-disclosure rule — broadly, precise information that is not public, relating to a crypto-asset, which if made public would likely have a significant effect on that crypto-asset’s price. The market-manipulation rule sets out how inside information must be disclosed.

How broad is the insider-dealing prohibition?

The inside-information disclosure rule is wider than “don’t trade on a tip.” It prohibits:

  • Dealing on inside information
  • Attempting to deal on inside information
  • Recommending that another person deal on inside information
  • Inducing another person to deal on inside information

It also reaches a wide set of people. The prohibition applies in particular to any person who possesses inside information as a result of their employment, profession, or duties — and, specifically, to persons with access to inside information through their role in the DLT or similar technology. That last point matters for crypto: validators, protocol developers, and others connected to the distributed ledger can hold inside information and fall within scope.

The duty CASPs cannot skip — prevention and detection

For a CASP operating a trading platform, the obligation that drives real work is The market-abuse supervision rule. It requires persons professionally arranging or executing crypto-asset transactions to maintain effective arrangements, systems, and procedures to prevent and detect market abuse.

In practice this means a CASP trading platform needs:

  1. Trade surveillance — monitoring of orders and transactions for patterns indicating insider dealing or manipulation
  2. Alerting and triage — a process that surfaces suspicious activity for review, with documented escalation
  3. Suspicious-transaction-and-order reporting — a channel for reporting to the competent authority where the firm has reasonable grounds to suspect market abuse
  4. Record-keeping — evidence of the surveillance performed and the decisions taken

A written market-abuse policy with no operational surveillance behind it does not satisfy the market-abuse supervision rule. Detection has to be a working capability.

ESMA’s supervisory guidelines

ESMA published guidelines in 2025 on supervisory practices to prevent and detect market abuse under MiCA, following its final report on the same. The guidelines aim to establish consistent, efficient supervisory practices across competent authorities for detecting insider dealing, unlawful disclosure, and market manipulation.

The practical consequence for a CASP: the surveillance model should be built with reference to those guidelines. A firm that designs its market-abuse arrangements in a vacuum risks a model the supervisor considers inadequate against the now-published expectations.

Who needs to care, and how much

The depth of market-abuse obligation scales with the firm’s activity:

  • Class 3 trading-platform CASPs — full the market-abuse supervision rule obligations. Surveillance, alerting, reporting, record-keeping all need to be operational. This is core compliance, not a side workstream.
  • Class 2 CASPs (custody, exchange, execution) — persons professionally executing transactions are in scope of the prevention-and-detection duty; the surveillance obligation applies to the firm’s executing activity.
  • Class 1 CASPs (advice, reception/transmission) — lighter footprint, but the Title VI conduct prohibitions still apply to the firm and its people, and inside-information handling still needs a process.

The single most common gap we see in supervisory files is a Class 3 trading platform that built excellent matching technology and treated market-abuse surveillance as an afterthought. Title VI is part of the licence, not an add-on.

What a clean market-abuse file looks like

A Title VI file that holds up under supervisory review contains:

  1. A market-abuse policy covering the Title VI prohibitions and the firm’s own conduct rules
  2. A documented inside-information process — identification, handling, and the market-manipulation rule disclosure
  3. An operational trade-surveillance capability, with the rationale for the monitoring scenarios used
  4. An alerting, triage, and escalation procedure with named responsibilities
  5. A suspicious-transaction-and-order reporting channel to the competent authority
  6. Record-keeping evidencing surveillance performed and decisions taken
  7. Design rationale referencing the ESMA supervisory guidelines

Working with counsel on a Title VI file

The diagnostic for counsel: ask whether they can describe the specific surveillance scenarios and reporting process the firm’s trading model requires under the market-abuse supervision rule — and how that maps to ESMA’s supervisory guidelines. Counsel that treats Title VI as a one-paragraph policy item has under-scoped the obligation. The firms in our index with relevant trading-platform compliance experience are listed below.

Pitfalls and nuances

1 Assuming market abuse rules don't apply to crypto

They do. MiCA Title VI applies a market-abuse regime to crypto-assets admitted to trading. A CASP operating a trading platform that has built no market-abuse surveillance because 'crypto isn't a stock market' has a substantive compliance gap that supervisors will identify.

2 Treating the market-abuse supervision rule as a policy document, not a system

the market-abuse supervision rule requires arrangements to prevent and detect market abuse. A written policy without an actual surveillance capability — trade monitoring, alerting, escalation, reporting to the competent authority — does not satisfy the obligation. Detection has to be operational.

3 Underestimating the breadth of the insider-dealing prohibition

the inside-information disclosure rule prohibits not only dealing on inside information but also attempting to deal, recommending that others deal, and inducing others to deal. It reaches employees, advisers, and anyone with inside information through their role — including roles connected to the DLT itself.

4 No process for disclosure of inside information

the market-manipulation rule sets disclosure obligations for inside information. Issuers and the persons in scope need a process to identify inside information and disclose it properly. Ad-hoc handling of price-sensitive information — particularly around listings, delistings, and protocol events — creates exposure.

5 Ignoring the ESMA supervisory guidelines

ESMA's 2025 guidelines on supervisory practices to prevent and detect market abuse set out what competent authorities expect. A CASP that builds its surveillance without reference to those guidelines risks a model that the supervisor considers inadequate.

Frequently asked questions

Does MiCA have market abuse rules like the stock market?

Yes. MiCA Title VIimports an EU Market Abuse Regulation-style regime to crypto-assets — prohibiting insider dealing, unlawful disclosure of inside information, and market manipulation.

Which MiCA article prohibits crypto insider dealing?

the inside-information disclosure rule. It prohibits dealing on inside information, and also prohibits attempting to deal, recommending that others deal, and inducing others to deal on inside information.

Do crypto exchanges have to monitor for market abuse?

Yes. The market-abuse supervision rule requires persons professionally arranging or executing crypto-asset transactions — which includes CASPs operating trading platforms — to have arrangements to prevent and detect market abuse.

What is inside information for a crypto-asset?

the unlawful-disclosure rule defines it — broadly, precise non-public information relating to a crypto-asset that, if made public, would likely have a significant effect on the price of that crypto-asset.

Get matched

Working through a crypto-licensing decision?

Get an editorial shortlist of firms matched to your business — customer market, model, jurisdiction, and stage. Free, and not influenced by sponsorship.

Get a firm shortlist →

Sources cited

  1. Regulation (EU) 2023/1114 (MiCA), Title VI (Articles 86-92) — regulation
  2. ESMA Guidelines on supervisory practices to prevent and detect market abuse under MiCA — regulator
  3. ESMA Final Report on the Guidelines on prevention and detection of market abuse (MiCA) — official document

Practitioners covering this topic

Named lawyers from the Crypto Law Index practitioners directory whose practice intersects with this guide. Every entry is sourced from public records.

Mihhail Sherle Gofaizen & Sherle · Estonia, Lithuania, European Union MiCA CASP · Crypto AML ★ Watch Ganna Voievodina Manimama · Estonia, Lithuania, European Union, Ukraine MiCA CASP · Crypto AML ★ Watch Mark Gofaizen Gofaizen & Sherle · Estonia, Lithuania, European Union, United Arab Emirates, El Salvador MiCA CASP · Non-EU crypto ★ Watch Vasyl Ponomarev Manimama · Estonia, Lithuania, Ukraine, European Union MiCA CASP · Non-EU crypto

Firms in our index that handle this work

Firms below are ranked according to the published CLPAI methodology. Inclusion here is editorial — see our disclosure policy.

#1 Gofaizen & Sherle Estonia #2 Manimama Estonia Best for high-volume EU filings #12 Bird & Bird United Kingdom Best for Big Law backup on bet-the-company files

Related reading

CASP banking · Operating accounts · Client money

Banking Access for Licensed CASPs: What Works in the EU in 2026

Authorisation under MiCA does not solve banking. A licensed CASP still needs an operating bank account, a client-money settlement rail, and …

Complaints handling · MiCA rules

CASP Complaints Handling Under MiCA: What the Rules Require

Complaints handling looks like a minor operational item — until a supervisor asks for the procedure, the template, the records, and the lang…

Fit and proper · CASP management body

Fit and Proper for CASPs: Who Can Run a MiCA-Licensed Firm

MiCA does not just licence the firm — it assesses the people. The management body and qualifying shareholders of a CASP must be fit and prop…