Compare firms
Knowledge / jurisdiction

How to Get a Crypto Licence in Lithuania Under MiCA

By Editorial Team · Reviewed by Editorial Team · 2026-07-15
In short

You apply to the Bank of Lithuania for MiCA CASP authorisation, evidencing capital, a local AML function, governance and ICT-resilience controls. A specialist firm prepares the file and manages the regulator dialogue.

Quick facts
  • Licensing authority: the Bank of Lithuania (the central bank), acting as the MiCA competent authority.
  • Licence type: MiCA CASP (crypto-asset service provider) authorisation, replacing the old national VASP register.
  • Core evidence: own-funds capital, a local AML/MLRO function, fit-and-proper governance, and DORA ICT-resilience controls.
  • Passporting: a CASP authorisation is designed to passport across EU member states after notification.
  • Cost: no single published figure — it varies by service scope, capital tier and AML/ICT build-out.

Which authority issues a crypto licence in Lithuania?

The Bank of Lithuania is the authority that issues a crypto licence in Lithuania. Under the EU Markets in Crypto-Assets Regulation (MiCA), a crypto-asset service provider is authorised as a CASP by the national competent authority, and in Lithuania that role sits with the central bank rather than a separate registrar. So when people search for a “Lithuanian crypto licence”, the concrete thing they’re applying for is MiCA CASP authorisation from the Bank of Lithuania.

This matters because the old model was different. Before MiCA, Lithuania ran a national virtual-asset registration regime, and a large number of Virtual Asset Service Provider (VASP) companies registered under it. That register is being replaced. The licence you apply for today is a supervised authorisation, not a light-touch registration.

What does a Lithuanian CASP application have to evidence?

A CASP application evidences four things: capital, a local AML function, governance, and ICT resilience. None of these is a box-tick. The file has to show the regulator a real operating business, not a shell.

  • Capital. Your minimum own-funds requirement follows the CASP class you apply for, which depends on the services you authorise — custody, exchange, transfer, placing, and so on. Higher-risk service sets carry a higher capital tier.
  • Local AML/MLRO substance. You need a real anti-money-laundering function with a Money Laundering Reporting Officer who is actually in Lithuania and actually responsible. Regulators across the Baltics tightened substance expectations well before MiCA, and a nominee-on-paper arrangement doesn’t pass.
  • Governance. Fit-and-proper directors, a board that can run the business, clear reporting lines, and documented policies covering conflicts, risk and complaints.
  • ICT resilience. MiCA-authorised firms fall under the Digital Operational Resilience Act (DORA), so the file has to address ICT risk management, incident reporting and third-party outsourcing controls.

The first sentence of the regulator’s assessment is usually the same question: does this applicant actually intend to operate here, and can it?

How does the VASP-to-CASP transition work?

The VASP-to-CASP transition moves existing registered providers onto the new authorisation regime within a set window. MiCA replaced the patchwork of national VASP registers — Lithuania’s included — with a single CASP framework. Providers that were registered under the old rules don’t keep those rights indefinitely; they have to apply for full CASP authorisation during the transition arrangements, or wind down.

For a new entrant, that’s mostly good news. You skip the legacy step and apply straight for the authorisation everyone will end up holding. For an existing Virtual Asset Service Provider company, the practical question is timing: leaving the transition to the last month, when the regulator’s queue is full, is how a smooth migration turns into a scramble.

Why is Lithuania the busiest EU entry point?

Lithuania is the busiest EU entry point because it pairs a large existing VASP base with a regulator that has processed fintech applications at volume. It isn’t the only MiCA route — Poland (KNF), the Czech Republic (CNB) and Estonia (Finantsinspektsioon) all authorise CASPs too — but Lithuania has handled more crypto and e-money filings than most peers, and the local advisory market is deep.

There’s also the passport. A MiCA CASP authorisation is designed to passport across EU member states, so one Lithuanian licence can support operating into other members after notification. Founders read that as: file once, in a fast-moving competent authority, then expand.

What drives cost and timeline?

Cost and timeline track scope, not a fixed price list. The Bank of Lithuania doesn’t publish a single “a licence costs X” figure, and neither should anyone else. What actually moves the number is the service set you authorise, the capital tier that comes with it, and how much AML and ICT build-out your setup needs from scratch. A complete, well-evidenced file moves faster than one that triggers rounds of regulator questions. Ask any firm for a fixed quote against your specific service list, and treat a headline number quoted before that scoping as a marketing figure.

Frequently asked

Which authority issues a crypto licence in Lithuania?

The Bank of Lithuania. It acts as the national competent authority under MiCA and grants CASP authorisation, so the licence comes from the central bank rather than a separate registrar.

Is the old Lithuanian VASP registration still valid?

MiCA replaced national VASP regimes with CASP authorisation, subject to transition arrangements. Existing Virtual Asset Service Provider companies must move to the CASP regime within the applicable window or wind down.

How much does a Lithuanian crypto licence cost?

There is no single fee. It depends on the CASP services you authorise, your capital tier, and how much AML and ICT build-out you need. Ask for a fixed quote against your service list.

Can a Lithuanian CASP licence passport across the EU?

Yes. MiCA CASP authorisation is designed to passport across EU member states after notification, so one Lithuanian authorisation can support operating into other members.

Sources

Editorial explainer, not legal advice. Confirm current rules with the named regulator or a qualified firm. See the CLBR ranking and methodology.