I INTRODUCTION TO THE LEGAL AND REGULATORY FRAMEWORK
Japan has one of the largest cryptoasset markets globally, and was the first country to establish a regulatory framework for cryptoassets. In addition to enabling the registration of cryptoasset exchange service providers (CAESPs) wishing to provide cryptoasset exchange services (CAES) to residents in Japan, this framework seeks to protect cryptoasset exchange customers and prevent cryptoasset-related money laundering and terrorism financing.
The cryptoasset regulatory framework in Japan has fuelled the growth of the Japanese cryptoasset market. However, this development was disrupted in January 2018 when one of the largest cryptoasset exchanges in Japan announced losses of approximately US$530 million from a cyberattack on its network, giving rise to concerns about the adequacy of the existing regulatory framework. Adding to the unease is that cryptoassets are also increasingly being used for speculative purposes, rather than as a means of settlement.
This situation eventually led to the revision of certain legislation governing cryptoassets, including the Payment Services Act (PSA) and the Financial Instruments and Exchange Act (FIEA). These revisions, the primary purpose of which is to strengthen the regulatory framework surrounding cryptoassets, came into force on 1 May 2020.
The key provisions of the revised FIEA (the FIEA Revisions) are to: (1) establish electronically recorded transferable rights and regulations applicable thereto; (2) introduce regulations governing cryptoasset derivative transactions; and (3) introduce regulations governing unfair acts in cryptoasset or cryptoasset derivative transactions.
The key provisions of the revised PSA (the PSA Revisions) are to: (1) revise the term 'virtual currency' to 'cryptoasset'; (2) enhance regulations governing cryptoasset custody services; and (3) tighten regulations governing CAES.
II SECURITIES AND INVESTMENT LAWS
i Establishment of electronically recorded transferable rights and tokenised securities
The FIEA has traditionally classified securities into: conventional securities, such as shares and bonds (Paragraph 1 Securities); and contractual rights, such as trust beneficiary interests and interests in collective investment schemes that are deemed securities (Paragraph 2 Securities). Paragraph 1 Securities, which are more liquid, have been subject to relatively more stringent disclosure and licensing (registration) requirements. Paragraph 2 Securities, being less liquid, have been subject to relatively more lenient requirements. Against this backdrop, securities issued using an electronic data processing system such as blockchain, are expected to be even more liquid than Paragraph 1 Securities. For this reason, the FIEA Revisions have introduced a new regulatory framework for securities transferable through electronic data processing systems. More specifically, under the FIEA Revisions, securities transferable by electronic data processing systems have been classified into the following three categories:
- Paragraph 1 Securities (such as shares and bonds) that are transferable through electronic data processing systems (tokenised Paragraph 1 Securities);
- contractual rights (such as trust beneficiary interests and interests in collective investment schemes) that are conventionally categorised as Paragraph 2 Securities and transferable through electronic data processing systems (also known as electronically recorded transferable rights (ERTRs)); and
- contractual rights (such as trust beneficiary interests and interests in collective investment schemes) that are conventionally categorised as Paragraph 2 Securities and are transferable through electronic data processing systems, but whose negotiability is restricted to a certain extent (non-ERTR tokenised Paragraph 2 Securities).
Definition of ERTRs
ERTRs refer to the rights conventionally treated as Paragraph 2 Securities (such as trust beneficiary rights and interests in collective investment schemes) that 'are represented by proprietary value transferable by means of an electronic data processing system (but limited only to proprietary values recorded in electronic devices or otherwise by electronic means)', excluding 'those rights specified in the relevant Cabinet Office Ordinance in light of their negotiability and other factors'. In this connection, 'those rights specified in the relevant Cabinet Office Ordinance in light of their negotiability and other factors' are generally understood to mean rights in respect of which technical measures have been taken to prevent the transfer of the proprietary value of these rights to persons other than:
- qualified institutional investors; or
- investors eligible to conduct specially permitted businesses for qualified institutional investors (the 'Article 63 Exemption') such as:
- listed companies;
- corporations with capital or net assets of ¥50 million or more; and
- individuals with investment assets (including cryptoassets) of ¥100 million or more, who have maintained their securities accounts for more than one year.
Technical measures have been taken to prevent the proprietary value of these rights from being transferred without an offer from the owner and approval from the issuer for every transfer.
The key purpose of the FIEA Revisions is to subject ERTRs to the disclosure and licensing (registration) requirements applicable to Paragraph 1 Securities.
Definition of tokenised securities
Tokenised securities refer to dematerialised (paperless) securities that are 'represented by proprietary value transferable by means of an electronic data processing system (but limited only to proprietary values recorded in electronic devices or otherwise by electronic means)'. Tokenised securities can be classified into the following rights:
- tokenised Paragraph 1 Securities (such as tokenised shares and bonds);
- ERTRs; and
- non-ERTR tokenised Paragraph 2 Securities.
Under the FIEA Revisions, rights under points (a) and (b) above are deemed Paragraph 1 Securities, while rights under point (c) are treated as Paragraph 2 Securities. This classification creates a significant difference in the disclosure and licensing (registration) requirements applicable to the respective rights.2
As a result of the application of disclosure requirements to ERTRs, issuers of ERTRs are (in principle) required, upon making a public offering or secondary distribution of ERTRs, to file a securities registration statement and issue a prospectus. A person who causes other persons to acquire ERTRs or who sells ERTRs to other persons through a public offering or secondary distribution must deliver a prospectus to the other persons in advance or at the time of the acquisition or sale.
Licensing (registration) requirements
As ERTRs are expected to constitute Paragraph 1 Securities, a person acting as a broker, agent or intermediary in respect of the sale or purchase of ERTRs or the handling of an offering of ERTRs in the course of a business is required to undergo registration as a Type I financial instruments business operator (FIBO) under the FIEA.
ii Introduction of regulations governing cryptoasset derivative transactions
Regulations governing cryptoasset derivative transactions have been introduced by the FIEA Revisions to protect users and to ensure that such transactions are appropriately conducted. More specifically, for the purposes of subjecting derivative transactions involving financial instruments or financial indicators to certain entry regulations and rules of conduct issued under the FIEA, cryptoassets have been inserted in the definition of 'financial instruments' under the FIEA Revisions. Furthermore, the prices, interest rates and other aspects of cryptoassets have been incorporated into the definition of 'financial indicators'.
As cryptoassets are now included in the definition of financial instruments, the conduct of over-the-counter derivative transactions related to cryptoassets or intermediary or brokerage activities in relation thereto will also constitute Type I financial instruments business under the FIEA.
iii Introduction of prohibitions against unfair acts in cryptoasset or cryptoasset derivative transactions
In respect of cryptoasset spot transactions and cryptoasset derivative transactions, the FIEA Revisions contain prohibitions against the following: wrongful acts; dissemination of rumours, fraudulence, assault or intimidation; and market manipulation. These prohibitions (which are without limit as to the violating party) are intended to enhance the protection of users and to prevent the obtainment of unjust benefits. Breach of these prohibitions is punishable by penalties.
Insider trading, however, is not regulated under the FIEA Revisions, owing to difficulties both with the formulation of a clear concept of cryptoasset issuers and the identification of undisclosed material facts.
III BANKING AND MONEY TRANSMISSION
i Approach of the central bank
Cryptoassets are neither deemed money nor equated with fiat currency. No cryptoasset is backed by the government or the Bank of Japan (the central bank).
ii Money transmission
Only licensed banks or registered fund transfer business operators are permitted to engage in money remittance transactions as a business. The Supreme Court, in a case precedent, has defined money remittance transactions to mean 'the planned or actual transfer of funds, as requested by customers, through utilisation of a fund transfer system without physical transportation of cash between physically distant parties'. As funds do not include cryptoassets, however, a cryptoasset remittance transaction is unlikely to be deemed a money remittance transaction.
IV ANTI-MONEY LAUNDERING
To prevent cryptoasset-related money laundering and terrorism financing, the Act on Prevention of Transfer of Criminal Proceeds (APTCP) requires exchange providers to implement know-your-customer (KYC) and other preventative measures. The APTCP applies to registered exchange providers, and generally requires them to:
- verify and record the identity of customers when conducting certain transactions (that is, to implement the KYC process);
- record transactions with customers;
- report suspicious transactions to the FSA; and
- take measures to keep information regarding customer verification up to date, provide education and training for employees, and develop other systems necessary for the proper conduct of the processes described in points (a) to (c).
Under the APTCP, CAESPs must conduct the KYC process when undertaking any of the following:
- executing a master agreement with a customer for providing that customer with regular CAES, management and similar services in respect of his or her money or cryptoassets;
- transferring cryptoassets into funds or exchanging them for other kinds of assets (or transactions similar thereto), where the receipt and payment of cryptoassets exceeding ¥100,000 in value3 is involved; or
- where the exchange provider manages a customer's cryptoassets, transferring the cryptoassets at the customer's request if their value exceeds ¥100,000.
V REGULATION OF EXCHANGES
i Regulation of CAES
Definition of CAES
The PSA and APTCP were primarily intended to regulate CAES, with a particular focus on protecting customers and preventing cryptoasset-related money laundering and terrorism financing. Pursuant to the PSA, those wishing to provide exchange services have to be registered with the Prime Minister as exchange providers.4 To qualify, applicants must be either a stock company or a foreign CAESP with an office and representative in Japan. Accordingly, a foreign applicant is required to establish either a subsidiary (in the form of a stock company) or a branch in Japan as a prerequisite to registration. In addition, applicants are required to have:
- at least ¥10 million in capital as well as net assets with a positive value;
- a satisfactory organisational structure and appropriate operational systems to enable the proper provision of exchange services; and
- appropriate systems to ensure compliance with applicable laws and regulations.
The PSA also provides legislative definitions of 'cryptoasset exchange services' and 'cryptoasset'. Article 2, Paragraph 7 of the PSA defines exchange services as engagement in any of the following activities as a business:
- sale or purchase of cryptoassets,5 or the exchange of a cryptoasset for another cryptoasset;
- intermediating, brokering or acting as an agent in respect of the activities listed in point (a);
- management of customers' money in connection with the activities listed in points (a) and (b); or
- management of customers' cryptoassets for the benefit of another person.
The PSA Revisions designate the activities under point (d) above as a type of CAES. Consequently, management of cryptoassets without the sale and purchase thereof (cryptoasset custody services) is now included in the scope of CAES. Therefore, a person engaging in cryptoasset custody services must be registered as a CAESP. In this context, the FSA Administration Guidelines (revised guidelines on cryptoassets) explain the meaning of 'management of customers' cryptoassets for the benefit of another person' as follows:
although whether or not each service constitutes the management of cryptoassets should be determined based on its actual circumstances, a service constitutes the management of cryptoassets if a service provider is in a position in which it may transfer its users' cryptoassets (for example, if such service provider owns a private key with which it may transfer users' cryptoassets solely or jointly with its related parties, without the users' involvement).
Accordingly, it is understood that if a service provider merely provides its users with a cryptoasset wallet application (i.e., a non-custodial wallet) and private keys are managed by the users themselves, this service would not constitute a cryptoasset custody service.
Definition of cryptoasset
A cryptoasset is defined in Article 2, Paragraph 5 of the PSA as:
- a proprietary value that may be used to pay an unspecified person the price of any goods purchased or borrowed or any services provided, where the proprietary value may be:
- sold to or purchased from an unspecified person, provided the sale and purchase is recorded on electronic or other devices through electronic means; and
- transferred through an electronic data processing system; or
- a proprietary value that may be exchanged reciprocally for the proprietary value specified in point (a) with an unspecified person, where the proprietary value may be transferred through an electronic data processing system.
ii Principal regulations applicable to the operation of exchange providers
CAESPs are required to:
- take the measures necessary to ensure the safe management of information available to them;
- provide sufficient information to customers;
- take the measures necessary for the protection of customers and the proper provision of services;
- segregate the property of customers from their own property and subject such segregation to regular audits by a certified public accountant or audit firm; and
- establish internal management systems to enable the provision of fair and appropriate responses to customer complaints, and implement measures for the resolution of disputes through financial alternative dispute resolution proceedings.
iii Additional regulations under the PSA Revisions
Under the PSA Revisions, the following changes are proposed to be made to the current regulatory system governing CAESPs, both to enhance user protection and to clarify the rules relating to CAESPs:
- expansion of grounds on which applications for registration as a CAESP may be rejected;
- introduction of a system of advance notification for any proposed amendment to certain aspects of the relevant cryptoasset, such as its name;
- introduction of regulations governing advertisements and solicitation in respect of exchange services;
- introduction of disclosure requirements where cryptoassets are exchanged (or where certain similar transactions are undertaken) via the grant of credit to users;
- enhancement of the obligation on CAESPs to preserve users' assets; and
- grant of rights to users to enable their receipt of preferential payment when claiming for the return of cryptoassets.
With respect to point (e) above, a CAESP is required under the PSA Revisions to both manage the money of users separately from its own money, and to entrust users' money to a trust company or any other similar entity in accordance with the provisions of the relevant Cabinet Office Ordinance. In other words, a CAESP is required not only to manage the money of users in bank accounts separately from its own, but also to entrust such money to a trust company or trust bank, acting as trustee.
In addition, a CAESP is required to manage the entrusted cryptoassets, in principle, by using a cold wallet that has never been and will never be connected at any time to the internet (totally offline wallet) or through other methods by taking technical safety management measures equivalent to a totally offline wallet.6 A CAESP may exceptionally manage cryptoassets through other methods, such as using multi-signature hot wallets, if these methods are necessary for ensuring users' convenience and smooth performance of cryptoasset exchange services. However, the yen equivalent of the entrusted cryptoassets managed by the other methods must not exceed 5 per cent of the yen equivalent of the total entrusted cryptoassets.
VI REGULATION OF MINERS
As the mining of cryptoassets does not fall within the definition of CAES, mining activities are not regulated under existing Japanese regulations. However, interests in mining schemes formulated as collective investment scheme interests or interests in cloud mining schemes may be deemed securities under the FIEA and could therefore be subject to its provisions.
VII REGULATION OF ISSUERS AND SPONSORS
i Regulation of initial coin offering tokens and token issuers
Tokens issued by way of an initial coin offering (ICO) take many forms, and the Japanese regulations applicable to a token vary depending on the ICO scheme involved.
A token that falls within the definition of a cryptoasset will be subject to cryptoasset-related regulations under the PSA. A token that is subject to the PSA must be sold by or through a CAESP.
The Japan Virtual and Crypto Asset Exchange Association (JVCEA), a self-regulatory organisation established under the PSA, published a draft of self-regulatory rules and guidelines for ICOs of cryptoasset-type tokens entitled Rules for Selling New Crypto Assets (the ICO Rules). Based on the ICO Rules, ICOs may be categorised into two types: (1) where a CAESP issues new tokens and sells these tokens by itself; and (2) where a token issuer delegates the sale of newly issued tokens to CAESPs. Generally, in addition to ensuring the security of newly issued tokens, including the blockchain, smart contract, wallet tool and other aspects thereof, the ICO Rules require that the following be satisfied for all ICOs:
- maintenance of a business structure that facilitates review of the business for which funds are raised via an ICO;
- disclosure of information on the token issuer, the token issued, the proposed use of proceeds raised and other matters;
- segregation of the management of ICO proceeds (both fiat and cryptoassets) from the management of the issuer's own funds;
- proper accounting treatment and financial disclosure of ICO proceeds; and
- proper valuation of newly issued tokens.
As noted in Section II.i, where distributions are made to token holders on the profits of a token issuer's business and calculated based on the ratio of a token holder's token ownership, the token involved may constitute an ERTR and consequently subject the token issuer to the provisions of the FIEA.
As ERTRs are expected to constitute Paragraph 1 Securities, a broker, an agency or an intermediary selling or purchasing ERTRS or handling a public offering of ERTRs in the course of business will be required to undergo registration as a Type I FIBO.
In addition, any ERTR issuer that solicits the acquisition of ERTRs (i.e., undertaking a security token offering (STO)) will be required to undergo registration as a Type II FIBO, unless it qualifies as a specially permitted business for qualified institutional investors.
Prepaid card-type tokens
Tokens that are similar to prepaid cards, in the sense of being usable as consideration for goods or services provided by token issuers, may be regarded as prepaid payment instruments, and accordingly could be subject to applicable regulations under the PSA. (A token subject to the prepaid payment instrument regulations under the PSA would not simultaneously be subject to the PSA regulations applicable to cryptoasset (and vice versa).)
ii Regulation of sponsors
As one of the primary purposes of cryptoasset regulation in Japan is the protection of cryptoasset exchange customers, sponsors of ICO issuers are not regulated by the PSA or other laws in respect of cryptoassets.
VIII CRIMINAL AND CIVIL Penalties
i Penal provisions applicable to exchange providers
The existing penal provisions found in the PSA are applicable to CAESPs. The following is a summary of some of the major violations under the PSA, and the penalties applicable for these violations.
- Imprisonment with penal labour for a term not exceeding three years or a fine not exceeding ¥3 million, or both, can be imposed for:
- providing exchange services without registration;
- registration through fraudulent means; or
- name lending.
- Imprisonment with penal labour for a term not exceeding two years or a fine not exceeding ¥3 million, or both, can be imposed for:
- a violation of the obligation to segregate customers' funds and cryptoassets from an exchange provider's funds and cryptoassets; or
- a violation of any order for the suspension of exchange services.
- Imprisonment with penal labour for a term not exceeding one year or a fine not exceeding ¥3 million, or both, can be imposed for:
- failure to give public notice of a business assignment, merger, demerger, company split or discontinuance of business, or dissolution in respect of an exchange provider, or giving false public notice thereof;
- a violation of the obligation to prepare and maintain books and documents, or the preparation of false books or documents;
- failure to submit the required report (and any required attachment thereto) for each business year to the Prime Minister, or submission of a report containing false statements;
- failure to comply with an order of the Prime Minister to submit reports or materials, or the submission of false reports or materials; or
- refusal to respond to questions or provision of false responses at an on-site inspection, or refusing to provide cooperation in respect of the inspection.
- Imprisonment with penal labour for a term not exceeding six months or a fine not exceeding ¥500,000, or both, can be imposed for any false statement in a registration application or attachments thereto.
- A fine not exceeding ¥1 million is imposable for violating an order for the improvement of business operations.
- Imprisonment for a term not exceeding six months or a fine not exceeding ¥500,000, or both, is imposable for any failure to make the required disclosure regarding advertisement or solicitation in respect of CAES.
- Imprisonment for a term not exceeding one year or a fine not exceeding ¥3 million, or both, is imposable for any misrepresentation or any representation under a cryptoasset exchange agreement that will likely lead to an inaccurate understanding of the nature or other aspects of a cryptoasset.
- Imprisonment for a term not exceeding six months or a fine not exceeding ¥500,000, or both, is imposable for:
- any misrepresentation or representation in an advertisement concerning an exchange service that will likely lead to an inaccurate understanding of the nature or other aspects of a cryptoasset; or
- any representation under a cryptoasset exchange agreement or in an advertisement concerning an exchange service, to induce the sale or purchase of a cryptoasset or the exchange of a cryptoasset for another cryptoasset that is not for the purpose of enabling the use of the relevant cryptoasset as a means of payment but is instead for the exclusive purpose of promoting interest in a particular cryptoasset.
ii Civil fraud
The PSA contains no specific regulation for the prevention of unfair trading or sale of tokens. However, the Civil and Penal Codes of Japan, and certain consumer protection laws and regulations,7 are applicable to such activities, except where the relevant token is deemed a security under the FIEA, in which case the FIEA provisions regulating unfair trading of securities will apply.
In addition, as a result of the PSA and FIEA Revisions, the Act on Sales, etc. of Financial Instruments (ASFI) was also amended to render it applicable to acts that result in the acquisition of cryptoassets. Without these amendments to the ASFI, customers wishing to claim against CAESPs will be required to establish a claim in tort. To address this unsatisfactory situation, the revised ASFI (the ASFI Revisions) expressly impose accountability on exchange providers, including presuming the amount of damages that such service providers would owe, to reduce the burden of proof on the part of service users.
The treatment of consumption tax in respect of cryptoassets has been a hot topic in Japan. In the past, sales of cryptoassets were subject to Japanese consumption tax to the extent that the office of the transferor was located in Japan. However, following amendments to applicable tax laws, as of 1 July 2017, consumption tax cannot be imposed on a sale of cryptoassets, if the relevant cryptoasset is deemed a cryptoasset under the PSA (such as Bitcoin). Additionally, it was announced by the National Tax Agency of Japan that gains from the sale or use of cryptoassets will be treated as miscellaneous income, such that gains from the sale or use of cryptoasset cannot be offset against losses incurred elsewhere.
X OTHER ISSUES
Under the Foreign Exchange and Foreign Trade Act of Japan, a person who makes any payment from or receives any payment in Japan in excess of ¥30 million is required to notify the Minister of Finance of the payment or receipt. This notification requirement was extended to cover cryptoassets. Specifically, it was announced by the government on 18 May 2018 that the Minister of Finance must be notified of payments or receipts of cryptoassets with a market value exceeding ¥30 million as of the payment date.
XI LOOKING AHEAD
The PSA Revisions, the FIEA Revisions and the ASFI Revisions have introduced a new legal framework for the governance of cryptoassets. Although the framework imposes heavier regulatory burdens on CAESPs, it will also bring certain advantages, such as a more orderly, structured cryptoasset industry and enhanced user protection. These benefits, together with the FIEA Revisions that allow for the conduct of cryptoasset derivative transactions and STOs, are expected to facilitate greater growth in the Japanese cryptoasset market.
1 Ken Kawai is a partner, Takeshi Nagase is a senior associate and Huan Lee Tan is a foreign legal associate at Anderson Mori & Tomotsune.
2 Disclosure requirements do not apply to rights under point (c) unless these rights constitute rights in securities investment business and solicitation for interest in these rights has been conducted, as a result of which 500 persons or more come to hold the rights. Only Type II financial instruments business operators (FIBOs), and not Type I FIBOs, are permitted to handle public offerings and private placements of rights under point (c).
3 This value was originally set at ¥2 million, but has since been lowered to ¥100,000, as a result of amendments to the Order for Enforcement of the Act on Prevention of Transfer of Criminal Proceeds.
4 The registration will be carried out through the FSA and the relevant local finance bureau, which act as the Prime Minister's delegate.
5 A trust company may be entrusted with cryptoassets pursuant to the Trust Business Act without being registered as a CAESP. Trust banks, on the other hand, are not permitted to engage in entrustment of cryptoassets.
6 The revised guidelines provide that in determining whether measures equivalent to a totally offline wallet have been taken, each case will be judged based on its specific circumstances.
7 Such as the Act on Specified Commercial Transactions, the Consumer Contract Act and the Act against Unjustifiable Premiums and Misleading Representations.