Documents – Page 31

RTS

Document date: 13 February 2025

Commission Delegated Regulation (EU) 2025/298 of 31 October 2024

supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards specifying the methodology to estimate the number and value of transactions associated to uses of asset-referenced tokens and of e-money tokens denominated in a currency that is not an official currency of a Member State as a means of exchange

Main topics: Markets in Crypto-Assets (MiCA/MiCAR)

Relevant for: Issuers of Tokens

Topics: Crypto-assets

RTS

Document date: 13 February 2025

Commission Delegated Regulation (EU) 2025/293 of 30 September 2024

supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards specifying the requirements, templates and procedures for the handling of complaints relating to asset referenced tokens

Main topics: Markets in Crypto-Assets (MiCA/MiCAR)

Relevant for: Issuers of Asset-Referenced Tokens (ARTs)

Topics: Crypto-assets

ITS

Document date: 28 November 2024

Commission Implementing Regulation (EU) 2024/2902 of 20 November 2024

laying down implementing technical standards for the application of Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to reporting related to asset-referenced tokens and to e-money tokens denominated in a currency that is not an official currency of a Member State

Main topics: Markets in Crypto-Assets (MiCA/MiCAR)

Relevant for: Crypto-Assets Service Providers (CASPs) Issuers of Tokens

Topics: Crypto-assets

Monthly statistics

Document date: 30 May 2025

Basic statistical data on UCIs – April 2025 (only in French)

Relevant for: Investment funds and vehicles

RTS

Document date: 24 March 2025

Commission Delegated Regulation (EU) 2025/420 of 16 December 2024

supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards to specify the criteria for determining the composition of the joint examination team ensuring a balanced participation of staff members from the ESAs and from the relevant competent authorities, their designation, tasks and working arrangements

Main topics: ICT and cyber risk – for DORA entities

Relevant for: Central Securities Depositories (CSDs) Credit institutions Crowdfunding service providers Crypto-Assets Service Providers (CASPs) Data Reporting Service Providers (DRSPs) Investment firms Investment fund managers Issuers of Tokens Payment institutions/electronic money institutions/AISPs Pension fund

Topics: Cybersecurity Information and communications technology (ICT) Information security

RTS

Document date: 28 May 2025

Commission Delegated Regulation (EU) 2025/532 of 24 March 2025

supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards specifying the elements that a financial entity has to determine and assess when subcontracting ICT services supporting critical or important functions

Main topics: ICT and cyber risk – for DORA entities

Relevant for: Central Securities Depositories (CSDs) Credit institutions Crowdfunding service providers Crypto-Assets Service Providers (CASPs) Data Reporting Service Providers (DRSPs) Investment firms Investment fund managers Issuers of Tokens Payment institutions/electronic money institutions/AISPs Pension fund

Topics: Cybersecurity Information and communications technology (ICT) Information security

CSSF circular

Document date: 28 May 2025

Circular CSSF 25/893

on reporting of major ICT-related incidents and significant cyber threats under the Digital Operational Resilience Act (DORA)

Relevant for: Central Securities Depositories (CSDs) Credit institutions Crowdfunding service providers Crypto-Assets Service Providers (CASPs) Data Reporting Service Providers (DRSPs) Investment firms Investment fund managers Issuers of Tokens Payment institutions/electronic money institutions/AISPs Pension fund

Topics: Cybersecurity Information and communications technology (ICT) Information security

CSSF circular

Document date: 28 May 2025

Circular CSSF 25/892

Application of the Joint ESA Guidelines on the estimation of aggregated annual costs and losses caused by major ICT-related incidents under Regulation (EU) 2022/2554 (JC 2024 34)

Relevant for: Central Securities Depositories (CSDs) Credit institutions Crowdfunding service providers Crypto-Assets Service Providers (CASPs) Data Reporting Service Providers (DRSPs) Investment firms Investment fund managers Issuers of Tokens Payment institutions/electronic money institutions/AISPs Pension fund

Topics: Cybersecurity Information and communications technology (ICT) Information security

EU regulation

Document date: 27 May 2025

Council Implementing Regulation (EU) 2025/1081 of 26 May 2025

implementing Regulation (EU) 2024/1485 concerning restrictive measures in view of the situation in Russia

Main topics: Financial crime

Topics: International sanctions Restrictive measures Ukraine

Studies and reports

Document date: 26 May 2025

Luxembourg updates its national risk assessment of money laundering

CSSF

Main topics: Financial crime

Relevant for: Central Securities Depositories (CSDs) Credit institutions Credit servicers Crowdfunding service providers Crypto-Assets Service Providers (CASPs) Data Reporting Service Providers (DRSPs) Investment firms Investment fund managers Investment funds and vehicles Issuers of Tokens Mortgage credit intermediaries Payment institutions/electronic money institutions/AISPs Specialised PFS Support PFS Virtual Asset Service Providers (VASPs)

Topics: AML/CFT Risk assessment

Name	Description	Duration
cssf_cookies	Saves information regarding the user's consent to the use of cookies for each optional category.	1 year
ROUTEID	Technical cookie allowing load distribution.	Deleted when the browsing session ends
TBMCookie*	Security: This cookies protects the website against automated attacks.	Deleted when the browsing session ends
__utmvc	These first party cookies are set by a third party service to filter out malicious requests.	Deleted when the browsing session ends
__utmvm*	These first party cookies are set by a third party service to filter out malicious requests.	15 minutes

Name	Description	Duration
cssf_profile	This cookie adapts the website pages to the profile chosen by the visitor (professionals, markets, consumers).	1 year
pll_language	This cookie saves the user’s language choice.	1 year

Name	Description	Duration
_pk_id.#	Collects anonymous statistical data on the website consultations, such as the number of visits or the average time spent on the website. The data is processed in-house and is not shared with a third party.	1 year
_pk_ses.#	Collects anonymous statistical data for the tracking of the pages consulted during the browsing session. The data is processed in-house and is not shared with a third party.	30 minutes

Archives: Documents