MiCA Reverse Solicitation: Can Non-EU Exchanges Serve EU Clients?

When MiCA's transitional period ends on 1 July 2026, thousands of EU users will still hold accounts on crypto exchanges that never obtained an EU licence. For those offshore platforms, one narrow legal doctrine determines whether continued contact with EU clients is lawful or a breach of EU law: MiCA reverse solicitation. Get it right, and a non-EU firm can lawfully complete a service a client genuinely asked for. Get it wrong, and the same conduct becomes the unauthorised provision of crypto-asset services — an enforcement trigger across all 27 Member States.

This guide explains exactly what the reverse-solicitation exemption permits after 1 July 2026, why the European Securities and Markets Authority (ESMA) has all but closed the loophole, and how non-EU exchanges should decide between licensing, partnering, restricting, or exiting the EU market. It is written for compliance and legal teams at third-country firms — and for EU users trying to understand why their offshore platform may suddenly stop serving them.

What reverse solicitation means under MiCA

The Markets in Crypto-Assets Regulation (MiCA, Regulation (EU) 2023/1114) requires any firm providing crypto-asset services to EU clients to be authorised as a CASP under Article 59. Reverse solicitation is the single, deliberately narrow carve-out from that rule.

Definition: a service at the client's "own exclusive initiative"

The exemption lives in Article 61(1) of MiCA, which states that where a client established or situated in the Union "initiates at its own exclusive initiative" the provision of a crypto-asset service by a third-country firm, the Article 59 authorisation requirement does not apply to that service for that client.

Two words carry all the weight: *exclusive* and *initiative*. ESMA reads "own exclusive initiative" narrowly. The client must have genuinely and independently sought out the specific service, with no prompting, promotion, or marketing from the firm or anyone acting for it. The assessment is factual — it turns on what actually happened, not on how the relationship is documented.

Reverse enquiry / passive marketing — the same concept, different names

You will see this doctrine described as "reverse solicitation," "reverse enquiry," or "passive marketing." They all point to the same idea: the firm did not push the service; the client pulled it. The label does not change the legal test. What matters is whether the chain of events that led to the service was started by the client alone, or whether the firm did anything — anywhere in the funnel — to solicit that client.

Why it matters more than ever after the 1 July 2026 deadline

Until now, many non-EU exchanges served EU users under national transitional regimes. MiCA's grandfathering period under Article 143(3) ends on 1 July 2026, and ESMA has confirmed there will be no EU-wide extension. After that date, any firm providing crypto-asset services to EU clients without a MiCA licence is in breach of EU law and must cease.

For unlicensed third-country firms, reverse solicitation becomes the *only* remaining legal basis for any EU contact. That is precisely why the term has peaked in relevance — and why ESMA has spent two years tightening it.

The exemption is a fallback, not a market-access strategy

A recurring mistake is treating reverse solicitation as a business model. It is not. ESMA frames it as a true exception — available in genuine, isolated cases, never as a substitute for authorisation.

Limited to the original transactional context

Under Article 61(2), once a client has lawfully initiated a service, the firm may offer that client crypto-assets or services *of the same type*. But ESMA construes "same type" narrowly, using a granular taxonomy based on asset category, service category, and risk. For example, two e-money tokens referencing different currencies are not the "same type," and assets transferred using different technologies are not the "same type" either.

Crucially, the exemption attaches to the *original transactional context*. Follow-on marketing — even of the same type of service — outside that context is not permitted. A firm cannot treat one client-initiated trade as a licence to start promoting its product suite to that user.

Why it cannot be relied on as a systematic strategy

In its 17 April 2026 supervisory statement (ESMA75-113276571-1679), ESMA treated reverse solicitation as a narrow exception to be construed narrowly, and reaffirmed that active marketing to EU clients by unlicensed entities remains prohibited. In our analysis, this means the exemption simply cannot scale: if a firm has thousands of "client-initiated" EU relationships, that pattern itself is evidence of solicitation. A true exception does not stretch into a steady stream of business — relying on it systematically defeats the entire premise.

What counts as "solicitation" (and kills the exemption)

ESMA's guidelines define solicitation broadly and in a technology-neutral way. Any promotion, advertisement, or offer of crypto-asset services — by the firm directly or by a third party acting on its behalf — can defeat the exemption. The following all count:

Websites, country domains, and local-language pages

A website accessible to EU users, an EU country-code domain (such as `.de` or `.fr`), or pages in an EU official language with no clear non-EU rationale are all treated as solicitation signals. The medium is irrelevant; the reach into the EU is what matters.

Targeted ads, SEO, retargeting, and affiliate/influencer marketing

Geo-targeted advertising, EU-oriented search engine optimisation, retargeting campaigns, affiliate arrangements, and influencer promotion that reaches EU audiences are explicitly within scope. Importantly, solicitation by a third party acting on the firm's behalf is attributed to the firm — so an affiliate or influencer driving EU signups can break the exemption for the platform.

App push notifications, in-platform prompts, and event sponsorships

ESMA's list extends to mobile-app push notifications, in-platform prompts and offers, roadshows, sponsorships, press releases, brochures, and messaging-platform outreach. Even general brand advertising can be solicitation if it reaches an EU audience.

Why disclaimers and "tick-box" confirmations do not override the facts

Many platforms try to engineer the exemption with a checkbox — "I confirm I am accessing this service on my own initiative." ESMA is unambiguous: disclaimers cannot override the facts. If outreach occurred, a contractual statement to the contrary does not cure it. The exemption is established by actual conduct, not by paperwork.

ESMA's final guidelines — what changed in 2025–2026

The 26 February 2025 guidelines and their scope

ESMA published its final Guidelines on reverse solicitation under MiCA (ESMA35-1872330276-2030) on 26 February 2025, following a December 2024 final report. They were translated into all EU official languages and apply 60 days after that publication (around 27 April 2025). The guidelines flow from a mandate in Article 61(3) of MiCA and address two things: when a third-country firm is *deemed to solicit* EU clients, and the supervisory practices NCAs should use to detect and prevent circumvention of the exemption.

The practical effect was to convert a vaguely worded exemption into a tightly policed exception with a long, explicit list of conduct that defeats it.

The April 2026 supervisory statement and supervisory convergence across NCAs

ESMA's 17 April 2026 statement went further, tying reverse solicitation directly to the end of the transitional period. Framed around supervisory convergence and the harmonised application of MiCA, it called on all 27 national competent authorities to take action against unauthorised firms, confirmed that those firms must stop onboarding and marketing to EU clients, and required orderly, pre-prepared wind-down plans for firms that do not obtain authorisation. The message to non-EU platforms was direct: get licensed, partner, or exit — reverse solicitation will not carry an EU book of business.

| Milestone | Date | Reference |

|---|---|---|

| MiCA final guidelines on reverse solicitation published | 26 Feb 2025 | ESMA35-1872330276-2030 |

| Guidelines apply (60 days after publication in all EU languages) | ~27 Apr 2025 | ESMA35-1872330276-2030 |

| ESMA supervisory statement on end of transitional periods | 17 Apr 2026 | ESMA75-113276571-1679 |

| End of MiCA grandfathering / transitional period | 1 Jul 2026 | MiCA Art. 143(3) |

Practical compliance for non-EU firms relying on the exemption

If a third-country firm genuinely intends to operate within the exemption — rather than around it — three disciplines matter.

Controlling third-party and affiliate marketing reach into the EU

Because solicitation by third parties is attributed to the firm, the perimeter must extend to every affiliate, marketing partner, and influencer. Practical controls include:

• Contractually prohibiting EU-targeted promotion in all affiliate and marketing agreements.
• Geo-blocking EU IP ranges and disabling EU-language onboarding flows.
• Removing EU country-code domains and EU-targeted SEO and ad campaigns.
• Auditing influencer and social activity for EU reach on an ongoing basis.

Record-keeping that proves client-initiated contact

The burden of demonstrating genuine client initiative falls on the firm. That means keeping detailed, contemporaneous records showing how each EU relationship began — and being able to show the absence of any marketing touchpoint. Where the firm cannot evidence that contact was truly client-initiated, it should assume the exemption does not apply.

Reverse solicitation vs MiCA authorization vs partnering with a licensed CASP

It bears repeating: reverse solicitation is not a substitute for CASP authorization. The stable routes to the EU market are obtaining a MiCA licence (which confers a full passport across all Member States) or partnering with an already-authorised CASP. Reverse solicitation is a fallback for incidental, genuinely client-driven cases — not a foundation to build EU revenue on.

Risks of getting it wrong: enforcement, liability, and forced exit

The consequences of over-relying on the exemption are serious. Providing crypto-asset services to EU clients without authorisation after 1 July 2026 is a breach of EU law. NCAs — now coordinated through ESMA's supervisory convergence and harmonised application of MiCA — can order firms to stop, pursue penalties, and require client wind-down. Beyond regulatory action, firms face contractual and civil exposure to clients, reputational damage that complicates any later licence application, and the operational cost of an unplanned, disorderly market exit. A "reverse solicitation strategy" that ESMA views as systematic is, in effect, a documented admission of unauthorised activity.

Decision framework: license, partner, restrict, or exit the EU

Non-EU firms generally fall into one of four paths:

• **License.** Apply for CASP authorisation in an EU Member State. Best for firms with material, ongoing EU demand that want a durable, passportable presence.

• **Partner.** Route EU activity through an authorised CASP. Faster than licensing for firms that want EU access without building their own regulated entity.

• **Restrict.** Stay outside the EU perimeter, rely on the reverse-solicitation exemption only for genuinely incidental, client-initiated cases, and invest heavily in marketing controls and record-keeping. Viable only at small scale.

• **Exit.** Implement an orderly wind-down of EU clients with a robust plan, as ESMA expects. The cleanest option for firms with limited EU exposure or no appetite for EU regulation.

The right answer depends on EU revenue concentration, risk tolerance, and licensing capacity — but for any firm with a meaningful EU client base, reverse solicitation alone is not a survivable strategy past 1 July 2026.

Frequently Asked Questions

Can a non-EU exchange still serve EU clients after 1 July 2026?

Only in narrow, genuinely client-initiated cases under the Article 61 reverse-solicitation exemption. Any active marketing, advertising, or promotion reaching EU users defeats the exemption, and ESMA treats reverse solicitation as a narrow exception to be construed narrowly — which in our analysis means it cannot be relied on as a systematic basis for serving the EU. For ongoing EU business, the firm must obtain a CASP licence or partner with an authorised CASP.

What is "own exclusive initiative" under MiCA Article 61?

It means the EU client sought out the specific crypto-asset service entirely on their own, without any solicitation, prompting, or marketing from the firm or anyone acting on its behalf. ESMA interprets it narrowly and assesses it factually, based on what actually happened.

Do disclaimers or tick-box confirmations establish reverse solicitation?

No. ESMA's guidelines are explicit that disclaimers cannot override the facts. A checkbox stating the client acted on their own initiative is meaningless if any solicitation actually occurred. The exemption depends on conduct, not contractual language.

What kinds of marketing count as solicitation under ESMA's guidelines?

Solicitation is defined broadly and technology-neutrally: websites accessible to EU users, EU country-code domains, EU-language pages, targeted ads, SEO, retargeting, affiliate and influencer marketing, push notifications, in-app prompts, sponsorships, and even general brand advertising that reaches EU audiences. Solicitation by a third party acting for the firm is attributed to the firm.

When did ESMA's reverse-solicitation guidelines take effect?

ESMA published the final guidelines (ESMA35-1872330276-2030) on 26 February 2025, and they apply 60 days after publication in all EU official languages — around 27 April 2025. ESMA's 17 April 2026 supervisory statement (ESMA75-113276571-1679) reinforced them ahead of the 1 July 2026 deadline.

Stay ahead of MiCA enforcement with FinlexPro

Reverse solicitation is one narrow doctrine inside a fast-moving regulatory landscape. FinlexPro lets compliance, legal, and product teams search 2,700+ EU regulatory documents — including the full text of MiCA, ESMA guidelines, and supervisory statements — alongside free tools like our [CASP authorization checklist](/tools/casp-authorization-checklist) and [MiCA capital calculator](/tools/mica-capital-calculator). If your firm is weighing whether to license, partner, restrict, or exit the EU before 1 July 2026, start with the primary sources — and let FinlexPro help you read them in context.