The quick story
Europe and Germany now have a single rulebook for crypto assets. It is called MiCAR and BaFin Compliance. It replaces a patchwork of national approaches with one set of rules. National regulators apply it on the ground. The result is more certainty for builders and far less room for hand-wavy claims.
Two dates changed the launch playbook. Stablecoin rules began to apply on June 30, 2024. Most rules for other tokens and for crypto-asset service providers kicked in on December 30, 2024. That phased switch is why large exchanges and issuers adjusted products ahead of time rather than after the fact.
The European Banking Authority is still publishing the technical standards that fill in the details for significant issuers. Think reporting packs, own-funds, and supervisory colleges. This is the fine print teams must respect once they scale.
What MiCAR actually covers
MiCAR defines two core stablecoin types and then sets expectations for issuers and service providers.
E-money tokens follow a single official currency such as the euro.
Asset-referenced tokens track a basket of currencies or other assets.
Issuers must be authorised and follow rules on reserves, disclosure, governance, and complaints handling. Service providers must meet operational and conduct standards that supervisors can actually test.
BaFin is the competent authority in Germany, so if you build or operate from there, you will interact with BaFin under the MiCAR framework and any intersecting German laws.
What this means for your launch
Stablecoin teams
Plan for authorisation, a fully reserved model, recurring reserve disclosures, clear redemption terms, and evidence that your smart contracts and off-chain systems enforce what you promise. If you become “significant,” additional own-funds and reporting standards apply.
Non-stablecoin tokens
Many utility or governance tokens now sit under a disclosure and conduct regime. You will need a whitepaper that matches your code, sober marketing language, and an incident process. If your design overlaps with payments or investment services, expect extra licensing outside MiCAR.
Service providers
Exchanges, custody, and other crypto-asset services need permissions to operate in the EU and must meet safeguarding and operational standards. This is already shaping listings and delistings.
A real example: AllUnity’s euro stablecoin
In July 2025, AllUnity, a joint venture backed by DWS, Flow Traders, and Galaxy, received a BaFin Electronic Money Institution licence and launched EURAU as a fully reserved, MiCAR-compliant euro stablecoin. The public announcements are explicit on both the licence and the launch.
Softstack performed the on-chain smart-contract audit for the issuance framework. The scope covered role-based access control, lifecycle functions, blacklisting mechanisms, and upgradeability across the system. That work is documented by AllUnity and in Softstack’s case study.
Siemens digital bonds are a different lane
You may also see headlines about Siemens issuing digital bonds in Germany. Those instruments are not MiCAR stablecoins. They sit under the German Electronic Securities Act, known as eWpG, which governs electronic securities and registrar rules. Useful to know if you are doing tokenised debt rather than money-like tokens.
What good looks like under MiCAR
Here is how successful launches are aligning product, code, and operations to the rulebook.
Design
Pick the correct token type and put redemption terms in writing. The whitepaper and your contracts must tell the same story.Reserves and disclosures
Define eligible assets and custody. Publish frequent, consistent reserve reports. Tie on-chain supply to off-chain attestations.Smart contracts and keys
Map mint and burn flows, privileged roles, time-locked upgrades, and multi-party approvals. Monitor supply changes and blacklist events.Operations and incidents
Connect on-chain monitoring to an incident runbook that meets supervisor timelines. Train support and compliance on disclosure and customer communications.
This is exactly the type of evidence supervisors and banking partners ask to see.
Partner with Softstack
Softstack is a German Web3 development and auditing firm with over 1,200 zero exploit audits since 2017. We deliver transparent, hands-on support from scoping through verification. Whether you are a seed stage startup or an enterprise protocol, we help you launch with confidence.
Softstack is both a developer and an auditor. We build production-grade smart-contract systems and we audit them against the realities of MiCAR and BaFin supervision. The AllUnity engagement shows how we align role controls, lifecycle logic, reserve interfaces, and disclosures so an issuer can pass a regulated launch. Public sources confirm the licence and the launch, and our case study explains the technical depth.
If you are planning a euro stablecoin, a tokenised finance product, or any MiCAR-covered launch in Germany, we will help you design the product, ship the code, and pass the audit. That is how you go live with confidence.
Ready to get started?
Planning a MiCAR-compliant launch?
Let’s align your product design, code, reserves, and disclosures, then deliver an audit that stands up to BaFin and EBA scrutiny. Reach out and we will scope a path to mainnet that does not waste time.
📞 Book a free consultation at https://calendly.com/softstack
OR
📤 Email hello@softstack.io with a link to your code repository so we can review your codebase and get you an accurate quotation.
Would you recommend Softstack to fellow Web3 builders?
Join our Service Partner Program (SPP) and provide your network with a trustworthy partner.
✅ Up to 20 percent referral commission
✅ Fast tracked onboarding
✅ Preferential rates
✅ Over 1 million dollars in partner savings via https://deals.softstack.io
✅ Lead sharing and co marketing support
Frequently Asked Questions
1. Is MiCAR already in effect?
2. Who supervises my firm in Germany?
BaFin is the competent authority for MiCAR in Germany and coordinates with EU bodies such as ESMA and the EBA.
3. Do tokenised bonds fall under MiCAR?
No. Corporate digital bonds like Siemens are issued under Germany’s Electronic Securities Act, not under MiCAR’s stablecoin regime.
