South Korea Softens Planned Crypto Reporting Rules For Large Overseas Transfers
South Korea’s financial watchdog has walked back some of its toughest planned anti-money laundering obligations for crypto platforms, opting for a more flexible, risk-based approach to oversight of large digital asset transfers.
The Financial Intelligence Unit (FIU), a division of the Financial Services Commission (FSC), has revised its proposed amendments to the country’s Specific Financial Information Act (SFIA) – the core law governing digital assets, cryptocurrency businesses, and anti-money laundering (AML) compliance.
From Automatic Flags To Risk-Based Judgments
Under the original draft circulated in March, domestic crypto operators would have been required to automatically file suspicious transaction reports for any crypto transfer above 10 million Korean won (about 6,400 dollars) whenever the counterparty was an overseas platform or a private wallet. This obligation would have applied regardless of the underlying risk of the transaction.
Following industry pushback, the FIU has abandoned this blanket rule. Instead of treating the 10 million won threshold as an automatic trigger, regulators now want each virtual asset service provider (VASP) to run its own AML risk management system and make qualitative assessments.
An FIU official explained that relying solely on the 10 million won limit would encourage “uniform reporting without assessing risk.” To avoid that, companies will be required to implement internal processes to identify genuinely suspicious behavior, rather than mechanically flagging every large cross-border transaction.
Industry Feedback Forces A Rethink
The shift comes after a series of consultations between the FIU and major crypto exchanges. Earlier in the year, the Digital Asset Exchange Joint Council (DAXA) – a collective representing the country’s leading platforms – formally objected to the original SFIA amendments.
Drawing on input from 27 VASPs, DAXA argued that the proposed regime would be unworkable in practice. The group warned that the number of suspicious transaction reports (STRs) could explode from approximately 63,408 cases filed last year to more than 5.4 million under the new framework, based solely on data from the five largest exchanges. Such a surge, they said, would overwhelm both compliance teams and regulators, and ultimately dilute the usefulness of STRs as a risk signal.
Faced with these projections and detailed operational feedback, the FIU has moved to recalibrate its plans, emphasizing more nuanced AML controls rather than sheer volume of reports.
Eased Customer Due Diligence For Most Users
The regulator is also watering down some of its proposed customer due diligence (CDD) obligations. The initial draft required exchanges and other VASPs to apply enhanced due diligence (EDD) to a broad array of transactions considered “high-risk” or “suspicious.” That could have included rigorous checks on the origin of funds and the specific purpose of each transaction, even in relatively routine scenarios.
In its revised stance, the FIU now plans to reserve this tougher scrutiny for transactions classified as particularly high-risk. Standard CDD will still apply, but the most intrusive checks will be limited to situations where concrete red flags are present.
This recalibration is intended to balance AML objectives with user experience and operational feasibility. By focusing EDD on a narrower pool of genuinely risky activity, both regulators and companies can allocate resources more efficiently and reduce friction for ordinary users.
Relief For Smaller Players: Temporary Grace Period
Another important concession concerns financial requirements for crypto businesses seeking registration. The original draft mandated that virtual asset companies maintain a debt-to-equity ratio no higher than 200 percent in order to qualify and remain compliant.
Recognizing that smaller firms may struggle to meet this standard immediately, regulators now plan to introduce a one-year grace period for this debt-to-equity requirement. This temporary flexibility is designed to prevent otherwise viable start-ups and mid-sized platforms from being forced out of the market purely on capital structure grounds, while still signaling that balance sheet strength will matter in the medium term.
Travel Rule Expansion Still Going Ahead
Despite these relaxations, not all parts of the reform package are being softened. The government will move forward with its plan to expand the so‑called “travel rule.”
Previously, the obligation to collect and share sender and recipient information applied only to domestic crypto transfers above 1 million won between local VASPs. Under the forthcoming changes, the rule will be extended to cover smaller transactions as well, falling below the previous 1 million won threshold.
This expansion aligns with global AML standards seeking to reduce anonymity in digital asset transfers and to trace flows even when they fall below traditional reporting thresholds. While exchanges have secured flexibility on some reporting and due diligence elements, they will still need to invest in systems that capture, verify, and transmit transaction data across a wider swath of operations.
Timeline: August Implementation, Pending Review
The revised SFIA bill, incorporating these adjustments, is scheduled to take effect on 20 August, provided it clears the remaining legal and administrative hurdles. The proposal must still pass review by the Ministry of Government Legislation and other relevant government bodies.
If approved without major further changes, VASPs will have a relatively short window to fine‑tune their AML systems, update internal policies, train compliance staff, and communicate the new rules to users before the late‑summer deadline.
Why The Shift Matters For South Korea’s Crypto Sector
The FIU’s softer stance is significant for several reasons:
1. Operational viability: Avoiding a flood of low-quality suspicious reports should help exchanges maintain manageable compliance workloads, instead of diverting resources toward box‑ticking exercises.
2. Regulatory credibility: A risk-based approach that distinguishes between routine and genuinely suspicious activity is more consistent with international best practice in AML supervision.
3. Market competitiveness: By toning down some of the most onerous requirements and granting a grace period on capital ratios, the government reduces the risk of driving crypto activity to more permissive jurisdictions.
At the same time, the firm stance on the travel rule shows that regulators still prioritize traceability and transparency in crypto transactions, particularly those with a cross-border component.
What VASPs Need To Do Next
For service providers, the new direction doesn’t mean less work; it means different work.
– Build or upgrade risk models: Exchanges need robust frameworks to assess the risk of each transaction, taking into account user profiles, counterparties, geographies, past behavior, and transaction patterns.
– Refine suspicious activity criteria: Without a simple volume threshold, compliance teams must define clear, data-driven triggers for flagging suspicious behavior.
– Enhance data collection and sharing: With a broader travel rule, platforms must ensure they can capture accurate sender/recipient details even for smaller transfers and securely share this information when required.
– Prepare for audits: Regulators are likely to test whether companies’ internal systems genuinely reflect a risk-based approach rather than simply replacing one blanket rule with another.
Firms that move early to establish transparent, well-documented controls will be better positioned when supervisors start reviewing implementation after August.
Implications For Users And Investors
For everyday users and investors, the refined rules carry mixed implications:
– Less friction on routine large transfers: High‑value transfers to overseas platforms or private wallets should no longer be automatically treated as suspicious solely because they exceed 10 million won, which could reduce delays and intrusive questioning in many legitimate cases.
– More targeted scrutiny: Users involved in genuinely risky or opaque activity can expect closer examination and documentation requests, as EDD is reserved for more narrowly defined high‑risk transactions.
– More data collected on smaller transfers: Expansion of the travel rule means users will see more personal information being collected and shared for transfers that previously passed under the radar.
Overall, while the environment remains tightly regulated, the changes suggest a more nuanced balance between oversight and usability.
Positioning Within Global Regulatory Trends
South Korea’s move fits into a broader international pattern. Authorities worldwide are searching for a middle path between draconian, one‑size‑fits‑all controls and lax regimes that invite abuse.
A pure threshold-based system can generate huge volumes of low-value alerts and reports, making it harder to spot real criminal activity. Risk-based models, although more complex to design and supervise, tend to be more effective when implemented properly. By demanding that each VASP operate its own risk management system, Korean regulators are effectively pushing the industry toward more mature compliance practices similar to those seen in traditional finance.
The insistence on an expanded travel rule also mirrors ongoing global efforts to close loopholes that allow illicit funds to move through smaller, fragmented crypto transfers.
Looking Ahead: Intersection With Crypto Taxation
These AML changes are unfolding as South Korea prepares to revisit another major pillar of digital asset regulation: taxation. A long-delayed crypto tax regime is scheduled to come into force in January 2027. Lawmakers are expected to reopen debate on the framework after a recent petition calling for its abolition cleared the threshold required to force discussion in the National Assembly.
The outcome of that debate will determine how gains on digital assets are treated from a tax perspective and how strictly reporting obligations will be enforced on investors and platforms. Combined with AML reforms under the SFIA, the tax overhaul will define the long-term regulatory environment for crypto in South Korea.
If the nation manages to pair clear, predictable tax rules with a pragmatic, risk-based AML regime, it could strengthen its position as a leading, but well-regulated, market for digital assets in Asia. If, instead, compliance costs spiral or rules remain in flux, some innovation and capital may look elsewhere.
For now, the FIU’s decision to ease the most rigid parts of its proposal is a signal that regulators are listening to industry feedback and are willing to adjust – as long as core objectives like transparency, traceability, and financial integrity are preserved.