What Is KYC in Crypto?

KYC — "Know Your Customer" — is the compliance process by which financial institutions (including crypto exchanges) verify their customers' identities. Typical KYC collects: government ID, selfie photo, address, sometimes source of funds. Almost every regulated crypto exchange — Coinbase, Binance, Kraken, OKX — requires KYC for trading, withdrawals above specific thresholds, and fiat operations.

Also known as: know your customer, identity verification

Ask Stingray anything about KYC

What KYC collects

Standard “Tier 1” KYC:

  • Government-issued photo ID (passport, driver’s license, national ID).
  • Selfie photo for liveness + face-match.
  • Residential address (via utility bill, bank statement, or ID).
  • Phone number + email verification.
  • Basic questions about occupation and source of funds.

Enhanced due diligence for larger accounts or higher-risk jurisdictions adds:

  • Proof of source of funds (bank statements, pay stubs, tax returns).
  • Business documentation if trading on behalf of an entity.
  • Politically-exposed-person (PEP) screening.
  • Sanctions list screening.
  • Beneficial ownership disclosure for corporate accounts.

Why KYC exists

Two overlapping regulatory regimes:

  • AML / CFT (anti-money-laundering, counter-terrorist-financing) — financial institutions must identify customers to flag suspicious flows and comply with sanctions.
  • FATF Travel Rule — for transfers above specific thresholds (typically $1,000-$3,000), originator and beneficiary information must travel with the transaction.

Cryptocurrency was initially designed to be pseudonymous. Regulation has progressively forced KYC onto exchange on-ramps and fiat-adjacent services. On-chain activity itself remains mostly pseudonymous, but the exchanges that gate fiat flows are KYC’d.

KYC jurisdictions

Standards vary:

  • US / EU / UK / most of Asia — comprehensive KYC required at exchanges. Many exchanges geo-block users from jurisdictions where they can’t comply.
  • Parts of Latin America, Africa, Southeast Asia — less enforcement; informal peer-to-peer trading dominates.
  • Fully KYC-exempt — shrinking list. Most decentralized exchanges don’t require KYC, but increasing regulatory pressure pushes even DEX front-ends toward selective KYC.

Major exchanges have withdrawn from or been forced out of jurisdictions where they couldn’t achieve compliant KYC (Binance from Canada, Japan; various venues from the US).

KYC’d vs pseudonymous crypto

The current practical state:

  • CEX (Binance, Coinbase, Kraken) — full KYC required.
  • DEX front-ends (Uniswap, Curve) — no KYC at protocol level. Some front-ends geo-block certain jurisdictions based on IP, but the underlying contracts are permissionless.
  • Stablecoin issuers (Circle, Tether) — KYC for direct mint/redemption above thresholds. Secondary-market transfers are pseudonymous.
  • Aggregators (1inch, CoW Swap) — typically no KYC; some jurisdictions’ front-ends implement it selectively.

This bifurcation — KYC’d on-ramps, pseudonymous on-chain — is where most crypto activity lives. Transitions between the two (withdrawing from a CEX to a self-custody wallet, or depositing to a CEX from cold storage) is where KYC compliance and on-chain transparency meet.

Risks and considerations

  • Data breach risk — every KYC’d exchange has your ID on file. Exchange breaches (Coinbase April 2025, various smaller breaches) have exposed user documents. Treat your crypto exchange account’s security like a bank.
  • Account freezes — exchanges freeze accounts that fail enhanced due diligence, have associations with sanctioned addresses, or during regulatory investigations. Freezes can take months to resolve.
  • Source-of-funds challenges — large deposits from non-bank sources (OTC desks, P2P trades, old wallets) can trigger enhanced verification that takes weeks. Plan inbound transfers accordingly.
  • Regulatory drift — KYC requirements tighten over time. Assume thresholds and documentation requirements will grow.

For users, KYC is a compliance reality. Use established exchanges with clear regulatory postures; keep records of your own KYC documents; and remember that balances on a KYC’d exchange are fully visible to your jurisdiction’s tax authority.

See also on Stingray

Related terms

AML AML — "Anti-Money Laundering" — is the set of regulations requiring financial institutions to detect, prevent, and report suspicious transactions that could … CEX A CEX (centralized exchange) is a company-operated crypto trading venue that takes custody of users' funds. MiCA MiCA (Markets in Crypto-Assets Regulation) is the European Union's comprehensive crypto regulatory framework, fully applicable since December 2024.