Britain is locking in a 2026-2027 crypto regime that will leave “truly decentralized” DeFi out of scope but drag any protocol with an identifiable controlling entity toward full FCA authorization.
Britain is entering the final stages of designing its crypto asset regime, with full rules expected to be finalized this year and implemented by 2027, in a framework that explicitly distinguishes between “truly decentralized” DeFi and services with an identifiable operator. HM Treasury’s draft statutory instrument for crypto assets, presented to Parliament in December 2025, creates new regulated activities under the Financial Services and Markets Act 2000 and gives the Financial Conduct Authority (FCA) broad powers over trading platforms, intermediaries, lending, staking and decentralized finance.
Skadden said in an April client note that “the UK government’s plans to regulate crypto assets are moving forward, with a view to finalizing the proposed rules this year and implementing its regime by the end of 2027,” adding that the FCA will expand its powers well beyond the current anti-money laundering registration regime. The law will impose a “strict regulatory perimeter,” requiring a UK-authorized entity for most crypto activities aimed at local consumers, while foreign firms serving only institutional clients may be left out of full authorization as long as they do not intervene with retail users.
When it comes to DeFi, both HM Treasury and the FCA have drawn a formal line between truly decentralized systems and systems with real controllers. The Treasury policy note on the future regime states that “where activities are undertaken on a ‘truly decentralized basis, that is, where there is no person carrying out the activity on a business basis’, the requirements to seek consent will not apply”, effectively leaving certain autonomous protocols out of scope.
In practice, however, this exception is limited. Skadden notes that the FCA “intends to consider whether there is ‘an identifiable controlling entity’ for any DeFi services, and if so, applies its rules to this entity,” applying a “same risk, same regulatory outcome” approach to operational resilience, financial crime and prudential requirements. A separate briefing from Latham & Watkins underlines that under the final draft regulatory instrument for crypto assets “the FCA will determine in each case whether there is an identifiable controlling person carrying out specific activities by way of business”, promising further guidance on how decentralization will be assessed.
In practical terms, this means that large DeFi front-ends, foundation-backed DAOs or protocol teams that clearly set parameters and set fees, will likely be treated as regulated businesses once the regime comes into effect on October 25, 2027. Sidley warns that “the FCA is not proposing a bespoke regime for decentralized finance; instead, the core requirements will apply where there is an ‘identifiable controlling entity’ carrying out one or more of the new regulated crypto asset activities”, bringing such players into the same prudential and behavioral net as centralized exchanges and lenders.
The UK approach fits into a broader global trend towards mainstreaming crypto within existing regulatory architectures, rather than building separate DeFi-specific silos. As Skadden notes, London’s timetable for crypto-asset regulations is now converging with U.S. efforts like the CLARITY Act and the EU’s MiCA implementation, leaving protocol designers with a clear, if demanding, choice: embrace identifiable governance and live within the perimeter, or penetrate deeper into permissionless architectures that regulators themselves admit cannot easily police.