Crypto & Blockchain Company Setup & Structuring in Singapore

Singapore remains one of the most viable jurisdictions for crypto and blockchain company formation, offering a clear regulatory framework under the Monetary Authority of Singapore (MAS), a stable legal system rooted in English common law, and a well-developed ecosystem of banks, investors and service providers. Founders who approach the setup process without understanding MAS licensing thresholds, corporate structuring requirements and anti-money laundering obligations routinely face delays of six to twelve months or outright rejection. This article maps the full lifecycle of a crypto and blockchain company in Singapore - from entity selection and licensing to ongoing compliance - and identifies the structural and regulatory traps that cost international founders the most.

Singapore regulates crypto and blockchain businesses primarily through the Payment Services Act (PSA), which came into force in January 2020 and was substantially amended in 2021 and 2023. The PSA is the central statute governing Digital Payment Token (DPT) services, which is the regulatory category covering most crypto-related activities including buying and selling digital tokens, facilitating their exchange, and providing custody.

The MAS is the competent authority for licensing, supervision and enforcement. It operates under a tiered licensing model: a Money-Changing Licence, a Standard Payment Institution (SPI) licence and a Major Payment Institution (MPI) licence. For most crypto and blockchain businesses, the relevant choice is between the SPI and MPI, with the threshold determined by transaction volume and the nature of services provided.

Under the PSA, section 6, any person carrying on a payment service in Singapore must hold the appropriate licence unless an exemption applies. DPT service providers - those dealing in digital payment tokens or facilitating DPT exchanges - fall squarely within this regime. Providing DPT services without a licence exposes the company and its directors to criminal liability, including fines and imprisonment.

The Securities and Futures Act (SFA), Chapter 289, is the second major statute. It governs tokens that qualify as capital markets products, including digital tokens that constitute securities, units in collective investment schemes or derivatives. A blockchain project issuing tokens that meet the definition of a capital markets product under the SFA must obtain a Capital Markets Services (CMS) licence or rely on a specific exemption.

A common mistake made by international founders is assuming that because their token is "utility" in nature, it falls outside all regulatory perimeters. MAS applies a substance-over-form analysis. If a token confers rights to profits, ownership interests or debt obligations, it is likely a capital markets product regardless of how it is labelled in the whitepaper.

The standard vehicle for a crypto or blockchain company in Singapore is a private limited company (Pte. Ltd.) incorporated under the Companies Act (Cap. 50). This structure offers limited liability, a separate legal personality, and the ability to issue shares to investors - all of which are essential for a regulated financial services business.

A Singapore Pte. Ltd. requires at least one locally resident director, a company secretary, a registered office address and a minimum paid-up capital of SGD 1. However, MAS imposes significantly higher capital requirements for licensed entities. An SPI licence for DPT services requires minimum base capital of SGD 100,000, while an MPI licence requires SGD 250,000. These amounts must be maintained at all times, not merely at the point of application.

For groups with international operations, a holding structure is often appropriate. A common configuration places a Singapore operating entity - holding the MAS licence - beneath a holding company incorporated in Singapore or another jurisdiction such as the British Virgin Islands or Cayman Islands. The holding entity owns the intellectual property, brand and equity, while the Singapore entity carries the regulated activity and the associated compliance burden.

In practice, it is important to consider that MAS scrutinises the ultimate beneficial ownership (UBO) of any licence applicant. Opaque offshore structures with nominee shareholders or directors will trigger enhanced due diligence and are likely to delay or prevent approval. MAS expects full transparency on the ownership chain, source of funds and the fitness and propriety of all controllers and key management personnel.

A non-obvious risk is the treatment of token issuances within the corporate structure. If the Singapore entity issues tokens directly to the public, this may constitute a capital markets activity requiring a CMS licence or reliance on an exemption under the SFA, section 99. Structuring the token issuance through a separate entity - often a foundation or a special purpose vehicle in a different jurisdiction - is a common approach, but it must be documented carefully to avoid the Singapore entity being deemed to be carrying on a regulated activity without a licence.

To receive a checklist for crypto and blockchain company structuring in Singapore, send a request to info@vlolawfirm.com

The PSA licensing process is the central procedural challenge for any crypto or blockchain business in Singapore. Understanding the pathway, timelines and documentary requirements is essential before committing capital to the jurisdiction.

Standard Payment Institution (SPI) licence applies where the business';s monthly transaction volume for any single payment service does not exceed SGD 3 million, and the total monthly volume across all payment services does not exceed SGD 6 million. For early-stage crypto businesses, the SPI is typically the starting point.

Major Payment Institution (MPI) licence is required once either threshold is crossed. An MPI carries heavier ongoing obligations, including mandatory safeguarding of customer funds, enhanced AML/CFT controls and more frequent regulatory reporting.

The application process involves submitting a detailed business plan, financial projections, AML/CFT policies, technology risk management frameworks, and fit-and-proper declarations for all directors, shareholders holding 10% or more, and key management personnel. MAS reviews applications under the PSA, section 10, and has broad discretion to request additional information or impose conditions.

Processing times for DPT service provider licences have ranged from six months to over two years, depending on the complexity of the business model, the completeness of the application and MAS';s current supervisory priorities. Applicants who submit incomplete documentation or whose AML frameworks do not meet the MAS Guidelines on Licensing for Payment Service Providers (the "PSP Guidelines") face the longest delays.

During the period between application submission and licence grant, a business may operate under an exemption if it was already providing DPT services before a specified cut-off date and submitted its application within the required window. New entrants do not benefit from this transitional exemption and must obtain a licence before commencing regulated activities.

The fit-and-proper assessment is one of the most frequently underestimated requirements. MAS applies the Guidelines on Fit and Proper Criteria (FSG-G01), which require that all relevant individuals have no criminal convictions, no adverse regulatory history, demonstrated competence in the relevant field and adequate financial soundness. International founders with regulatory history in other jurisdictions must disclose this fully. Failure to disclose, even inadvertently, is treated as a serious compliance failure.

Alternative pathways exist for businesses that do not wish to hold a licence directly. Operating as an agent of a licensed payment institution, or white-labelling services through a licensed entity, allows a business to access the Singapore market without holding its own licence. However, the principal-agent relationship must be structured carefully, and the agent remains subject to MAS oversight through the principal';s compliance framework.

Anti-money laundering and counter-financing of terrorism (AML/CFT) compliance is the area where international crypto founders most frequently encounter operational difficulty in Singapore. MAS has issued the Notice PSN02 on Prevention of Money Laundering and Countering the Financing of Terrorism for DPT service providers, which sets out binding obligations that go beyond what many founders are accustomed to in less regulated jurisdictions.

Under Notice PSN02, DPT service providers must conduct customer due diligence (CDD) on all customers before establishing a business relationship, apply enhanced due diligence (EDD) to higher-risk customers and politically exposed persons, and maintain transaction monitoring systems capable of detecting unusual patterns. The Travel Rule - requiring the transmission of originator and beneficiary information for DPT transfers above SGD 1,500 - applies to licensed DPT service providers under the MAS Notice PSN02A.

The Travel Rule is a non-obvious compliance burden for many blockchain businesses. It requires technical integration with counterparty virtual asset service providers (VASPs) to exchange customer data before or simultaneously with the transfer. Businesses that have not built Travel Rule compliance into their technology stack before applying for a licence will need to retrofit it, which is both costly and time-consuming.

Technology risk management is governed by the MAS Technology Risk Management Guidelines (TRM Guidelines), which apply to all financial institutions including licensed payment service providers. The TRM Guidelines require a formal technology risk management framework, regular penetration testing, incident response procedures and board-level oversight of technology risk. For a crypto or blockchain business, where the technology layer is the core product, compliance with the TRM Guidelines is not a peripheral concern - it is central to the licence application and ongoing supervision.

A common mistake is treating AML/CFT compliance as a documentation exercise rather than an operational reality. MAS conducts thematic inspections and targeted examinations of licensed entities. Inspectors assess whether the policies described in the compliance manual are actually implemented in day-to-day operations. A well-drafted AML policy that is not reflected in actual customer onboarding procedures, transaction monitoring alerts or staff training records will not satisfy MAS.

Practical scenario one: A European crypto exchange seeking to expand into Southeast Asia establishes a Singapore Pte. Ltd. and applies for an MPI licence. The application is delayed by eight months because the AML/CFT framework submitted does not address the Travel Rule or provide evidence of a technology solution for compliance. After engaging specialist compliance counsel and rebuilding the framework, the application proceeds.

Practical scenario two: A blockchain infrastructure company providing smart contract development services to third parties concludes, after legal analysis, that its activities do not constitute DPT services under the PSA because it does not hold customer funds or facilitate token exchanges. It operates without a licence, relying on a legal opinion documenting the basis for the exemption. This is a defensible position if the legal analysis is sound and the business model does not drift into regulated territory.

Practical scenario three: A token issuance project structures its Singapore entity as a technology services provider to a Cayman Islands foundation that conducts the token sale. The Singapore entity provides development and marketing services under a services agreement. This structure is common, but it requires careful documentation to ensure that the Singapore entity is not deemed to be carrying on a regulated activity, and that the services agreement reflects arm';s-length commercial terms.

To receive a checklist for MAS AML/CFT compliance for DPT service providers in Singapore, send a request to info@vlolawfirm.com

Securing a corporate bank account is one of the most practically challenging steps for a crypto or blockchain company in Singapore, even after obtaining an MAS licence. Singapore';s major banks - DBS, OCBC and UOB - apply stringent due diligence to crypto-related businesses, and many international founders encounter refusals or prolonged onboarding processes.

The practical approach is to engage a bank early in the setup process, ideally before or simultaneously with the MAS licence application. Banks want to see a clear business model, a credible compliance framework, experienced management and evidence of regulatory engagement. A company that has already submitted its MAS licence application and can demonstrate a substantive compliance infrastructure is in a materially stronger position than one approaching the bank cold.

Alternative banking solutions include digital banks licensed in Singapore, such as those holding a Digital Full Bank or Wholesale Bank licence, and payment accounts with licensed payment institutions. These alternatives are increasingly viable for operational purposes, though they may not satisfy all counterparty requirements for institutional transactions.

Singapore';s tax framework is broadly favourable for crypto and blockchain businesses. The Inland Revenue Authority of Singapore (IRAS) treats digital tokens according to their economic substance. DPT transactions may be subject to Goods and Services Tax (GST) depending on the nature of the token and the transaction. Under the GST Act (Cap. 117A), the supply of DPTs that function as a medium of exchange is treated as an exempt supply from January 2020, meaning no GST is charged but input tax credits are not fully recoverable. Security tokens and utility tokens may be treated differently.

Corporate income tax in Singapore is levied at 17% on chargeable income, with partial exemptions available for qualifying companies in their first three years. Singapore does not impose capital gains tax, which is relevant for crypto businesses that hold digital assets on their balance sheet. However, the characterisation of gains as income versus capital is a factual question, and businesses that trade actively in digital assets are likely to have those gains treated as income.

Transfer pricing is a significant consideration for groups with cross-border structures. Where a Singapore entity provides services to or receives services from related entities in other jurisdictions, the pricing of those transactions must comply with the IRAS Transfer Pricing Guidelines and the arm';s-length principle under the Income Tax Act (Cap. 134), section 34D. MAS-licensed entities that are part of international groups should document their intercompany arrangements carefully from the outset.

Many underappreciate the interaction between Singapore';s regulatory framework and the tax treatment of token issuances. If a Singapore entity issues tokens and receives proceeds, the tax treatment of those proceeds depends on whether the tokens are characterised as debt, equity, prepayments for services or something else. Each characterisation has different tax and accounting consequences, and the position should be established before the token issuance, not after.

Obtaining an MAS licence is the beginning of the compliance journey, not the end. Licensed DPT service providers are subject to ongoing obligations that require dedicated internal resources or external compliance support.

Annual audited financial statements must be filed with MAS and with the Accounting and Corporate Regulatory Authority (ACRA) under the Companies Act. MAS may impose additional reporting requirements as licence conditions, including periodic returns on transaction volumes, customer numbers and AML/CFT metrics.

The PSA, section 27, requires licensed payment service providers to notify MAS of material changes to their business, including changes to ownership, key management personnel, business activities and technology systems. Failure to notify MAS of a material change is a breach of licence conditions and can result in licence suspension or revocation.

Corporate governance requirements for MAS-licensed entities are more demanding than for ordinary Singapore companies. The board of directors is expected to provide active oversight of risk management, compliance and technology. MAS expects that at least one director has relevant financial services or technology experience, and that the board receives regular management information on compliance metrics, AML alerts and technology incidents.

The risk of inaction on compliance matters is concrete. MAS has publicly reprimanded and imposed civil penalties on licensed payment service providers that failed to maintain adequate AML/CFT controls. In more serious cases, MAS has revoked licences. A company that allows its compliance framework to deteriorate after licence grant - because founders shift focus to product development or fundraising - faces the prospect of regulatory action that can halt operations entirely.

A non-obvious risk for growing crypto businesses is the trigger for upgrading from an SPI to an MPI licence. The transaction volume thresholds are monitored on a rolling monthly basis. A business that crosses the threshold must notify MAS and apply for an MPI licence promptly. Operating above the SPI thresholds without an MPI licence is a breach of the PSA, section 6, and exposes the company to enforcement action.

For businesses considering a future fundraising round or acquisition, the MAS licence is a regulated asset that requires careful management in the context of corporate transactions. A change of control - defined under the PSA as an acquisition of 20% or more of the voting shares - requires prior MAS approval under section 14. Founders who negotiate share purchase agreements without building in the MAS approval condition risk completing a transaction that is void or that triggers enforcement action.

We can help build a strategy for structuring your crypto or blockchain business in Singapore and managing the MAS licensing process. Contact info@vlolawfirm.com to discuss your situation.

What is the most significant practical risk for a crypto company applying for an MAS licence in Singapore?

The most significant practical risk is submitting an application with an AML/CFT framework that does not meet MAS';s operational expectations. MAS does not assess compliance frameworks purely on paper - it expects evidence that the policies are implemented in actual customer onboarding, transaction monitoring and staff training. Applications that describe robust controls but cannot demonstrate operational implementation are frequently returned for revision, adding months to the process. Engaging compliance specialists who have worked with MAS-licensed entities before submitting the application materially reduces this risk. The cost of getting the application right the first time is substantially lower than the cost of revising and resubmitting.

How long does it take and how much does it cost to set up a licensed crypto company in Singapore?

From incorporation to licence grant, the realistic timeline for a new DPT service provider is twelve to twenty-four months, depending on the complexity of the business model and the quality of the application. Incorporation itself takes one to three business days through ACRA';s online portal. Legal and compliance advisory fees for preparing and submitting an MAS licence application typically start from the low tens of thousands of USD, with more complex applications or those requiring significant compliance infrastructure build-out running considerably higher. Ongoing compliance costs - including a compliance officer, AML technology, audit and regulatory reporting - represent a material operational expense that must be budgeted from the outset.

Should a crypto business hold the MAS licence in the Singapore operating entity or use a separate structure?

The answer depends on the business model and the group';s international footprint. Holding the licence in the Singapore operating entity is the most straightforward approach and is appropriate where the Singapore entity is the primary customer-facing business. Where the group has significant intellectual property, a token issuance component or operations in multiple jurisdictions, a holding structure that separates the licensed entity from the IP-holding and token-issuing entities is often more appropriate. The key constraint is that the licensed entity must actually carry on the regulated activity - MAS will not grant a licence to a shell. Any structure must be designed so that the Singapore entity has genuine substance, including staff, management and operational decision-making.

Singapore offers a credible and well-structured environment for crypto and blockchain company formation, but the regulatory requirements under the PSA and SFA are substantive and operationally demanding. Founders who invest in proper structuring, a complete MAS licence application and a functioning compliance framework from the outset are in a materially stronger position than those who treat compliance as a secondary concern. The cost of errors - in time, money and regulatory standing - is high enough to justify specialist legal and compliance support at every stage of the process.

Our law firm VLO Law Firms has experience supporting clients in Singapore on crypto, blockchain and payment services regulatory matters. We can assist with corporate structuring, MAS licence applications, AML/CFT framework development, ongoing compliance support and corporate transactions involving licensed entities. To receive a consultation, contact: info@vlolawfirm.com

To receive a checklist for crypto and blockchain company setup and MAS licensing in Singapore, send a request to info@vlolawfirm.com