If you hold cryptocurrency through an exchange or custodial service in the United States, January 16, 2025 brought important news that directly affects how your assets are protected. The New York Department of Financial Services issued new guidance to all virtual currency business entities licensed under 23 NYCRR Part 200, setting fresh expectations for how custodians safeguard customer funds. Here is what you need to know, in plain language.
The Basics
New York State is home to the BitLicense, one of the most stringent cryptocurrency regulatory frameworks in the world. Any company that wants to offer crypto services to New York residents must either hold a BitLicense or operate under a limited purpose trust charter. The NYDFS oversees these entities and regularly updates its guidance to address emerging risks.
The January 16 guidance focuses specifically on custodial arrangements, which is how exchanges and custodians hold your crypto on your behalf. When you leave Bitcoin, Ethereum, or any other digital asset on an exchange like Coinbase or Gemini, that company is acting as your custodian. The new guidance clarifies what NYDFS expects from these custodians to keep your assets safe.
The timing is significant. With Bitcoin trading around $100,000 and the total cryptocurrency market capitalization exceeding $3.5 trillion, the amount of value held in custodial arrangements has never been larger. The lessons of FTX, Celsius, and other collapsed platforms are still fresh, and regulators are determined to prevent similar failures.
Why It Matters
Custody is the most fundamental risk in cryptocurrency. Unlike traditional bank accounts, cryptocurrency deposits are not insured by the FDIC. If a custodian fails, loses your private keys, or mismanages your funds, recovery can be extremely difficult or impossible. The NYDFS guidance aims to address this by requiring custodians to maintain clear separation between customer assets and their own corporate assets.
This separation matters because commingling customer funds with corporate assets was a key factor in several high-profile crypto collapses. When FTX failed, customer funds had been used to fund the exchange’s trading arm, leaving customers with claims against a bankrupt entity rather than readily accessible digital assets.
The guidance also addresses disclosure requirements. Custodians must clearly communicate to customers how their assets are being stored, what risks are involved, and what happens in the event of the custodian’s insolvency. This transparency is designed to help customers make informed decisions about where and how they store their cryptocurrency.
Getting Started Guide
Understanding custody is the first step to protecting your crypto holdings. Here is how to evaluate whether your custodial arrangement meets the new standards.
Step 1: Check your custodian’s license status. Visit the NYDFS website and verify that your exchange or custodian holds an active BitLicense or limited purpose trust charter. Licensed entities are subject to regulatory oversight and must comply with the new custody guidance.
Step 2: Review the custody disclosures. Your custodian should clearly explain how your assets are stored, whether they use cold storage, multi-signature wallets, or third-party custodians. Look for language about asset segregation, which indicates that your funds are kept separate from the company’s own holdings.
Step 3: Understand your recovery rights. Read the terms of service to understand what happens if the custodian fails. Do you have a direct claim to specific assets, or are you a general creditor? The new guidance pushes custodians toward arrangements where customers retain direct claims to their assets.
Step 4: Consider self-custody for large holdings. For amounts you do not need immediate access to, a hardware wallet gives you full control over your private keys. This eliminates custodial risk entirely, though it places the responsibility for security squarely on your shoulders.
Common Pitfalls
The biggest mistake crypto users make is confusing regulation with insurance. A licensed custodian is subject to regulatory oversight, but that does not mean your funds are insured against loss. If a custodian is hacked or fails, you may still face losses, even if the custodian was in compliance with all NYDFS requirements.
Another common error is assuming that all crypto services are subject to the same regulations. The NYDFS guidance applies only to entities licensed in New York. Services based in other states or countries may operate under different, sometimes weaker, custody standards. Always verify which jurisdiction regulates your custodian.
Finally, do not overlook the importance of reading the fine print. Custody disclosures buried deep in terms of service agreements can contain critical information about how your assets are managed and what rights you have if something goes wrong.
Next Steps
The NYDFS custody guidance represents a positive step toward stronger consumer protection in cryptocurrency. As the regulatory landscape continues to evolve, staying informed about custody requirements will help you make better decisions about where to store your digital assets. Whether you choose custodial services, self-custody, or a combination of both, the key is understanding the risks and making deliberate choices rather than defaulting to whatever is most convenient.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Always conduct your own research before making any investment decisions.
NY setting the standard again. BitLicense already pushed half the industry out of the state and now they want more custody rules
Good overview of what NYDFS expects from custodians. The segregation of customer funds requirement should be baseline everywhere, not just New York
plain language explainer for custody regs is exactly what this space needs. most people holding on exchanges have no idea what happens to their keys
Education is still the biggest barrier to mainstream adoption
education is the barrier but NYDFS is actually forcing custody standards. most states have zero guidance and thats how you get another FTX
compliance_wonk the problem is NYDFS standards only apply to BitLicense holders. half the custody market operates under OCC charters and follows completely different rules
regwatch_elena the OCC charter loophole is wild. you can do the exact same custody business in NY under a federal charter and skip half the NYDFS requirements. its two parallel systems
segregation of customer funds sounds obvious until you realize FTX was technically doing it on paper. the NYDFS guidance forces actual on-chain proof of reserves not just accounting tricks
Segregation of customer funds should be federal law, not just a New York thing. the fact that its state by state is how exchanges game the system
Tanaka R. nailed it. if your exchange is based in Wyoming instead of New York you get basically zero oversight. same coins, same customers, different rules
devault_ the wyoming vs NY comparison is tired. wyoming has like 2 exchanges and no enforcement staff. NY actually shows up and audits. different animals entirely