On April 8, 2026, the U.S. Treasury’s Financial Crimes Enforcement Network (FinCEN) and Office of Foreign Assets Control (OFAC) jointly issued a Notice of Proposed Rulemaking (NPRM), which, for the first time, defines Permissible Payment Stablecoin Issuers (PPSIs) as financial institutions under the Bank Secrecy Act. This marks the most concrete enforcement action by the U.S. in the stablecoin sector since the passage of the GENIUS Act in July 2025.
According to the proposal summary, issuers must establish comprehensive Anti-Money Laundering and Countering the Financing of Terrorism (AML/CFT) programs. Core requirements include implementing risk-based compliance programs, allocating more resources to high-risk customers and transaction activities, and establishing transaction control mechanisms with the technical capacity to block, freeze, and reject suspicious transactions. Issuers must also comply with OFAC sanctions obligations by conducting real-time transaction screening. Notably, the proposal specifies that stablecoin token contracts must be programmed to allow transactions to be intercepted, frozen, or destroyed in response to law enforcement directives. FinCEN also requires issuers’ AML programs to be able to pause flagged transactions and to focus on high-risk customers and activities.
Why Require Stablecoin Issuers to Have Freezing and Burning Capabilities
Mandating freezing and burning capabilities essentially imports the account control logic of traditional finance into the blockchain environment. The rationale is straightforward: if stablecoins are widely used for payments and value storage, their issuers should bear the same AML and sanctions compliance obligations as traditional financial institutions. The programmability of stablecoins provides a technical window for this—by embedding blacklist mechanisms in smart contracts, issuers can block the flow of funds at the address level.
In practice, leading stablecoin issuers have already implemented similar mechanisms. Tether, the issuer of USDT, has long maintained a blacklist of addresses, freezing funds totaling hundreds of millions of dollars. Circle, the issuer of USDC, has directly embedded blacklist features in its smart contracts, allowing it to instantly freeze any wallet address without third-party approval. The proposal formalizes these "industry practices" as federal regulatory requirements, meaning all stablecoin issuers operating in the U.S. must pre-program such control features into their token contracts, eliminating the option to claim technological neutrality as a reason to avoid regulatory responsibility.
What Does Bank-Level AML Compliance Mean for Issuers
By defining issuers as financial institutions under the Bank Secrecy Act, the proposal effectively elevates stablecoin issuers to the same legal status as banks. Issuers will need to establish full AML/CFT programs, including Customer Due Diligence (CDD), Suspicious Activity Reports (SAR), transaction monitoring, and sanctions screening systems. More importantly, issuers’ compliance obligations will not be limited to direct customer relationships—they will also extend to secondary market transactions, meaning issuers must monitor the flow of tokens between decentralized exchanges and on-chain wallets.
This requirement is highly complex in practice. Traditional financial institutions control customer identity information through account systems, and transaction monitoring revolves around these accounts. Stablecoin issuers, however, do not directly control end-user wallets on-chain, making the concept of "customer" ambiguous. The proposal attempts to resolve this contradiction through a risk-based approach: issuers are not required to verify the identity of every on-chain transaction, but must establish monitoring systems to identify high-risk addresses and suspicious transaction patterns, and take freezing actions when necessary. As a result, on-chain data analysis capabilities will become a core compliance asset for stablecoin issuers.
How Secondary Market Monitoring Impacts the On-Chain Ecosystem
Monitoring secondary market transactions is the most technically challenging aspect of the proposal. Once stablecoins leave the issuer’s contract address, they circulate freely on the blockchain, moving through decentralized exchanges, cross-chain bridges, and DeFi protocols. Issuers must monitor token flows in the secondary market without direct control—essentially requiring on-chain tracking and address risk assessment capabilities.
Currently, mainstream solutions rely on on-chain analytics tools that analyze historical transaction behaviors to identify links to sanctioned addresses, darknet markets, mixers, or hacking incidents. Implementation of the proposal will accelerate the maturity of this technology stack: issuers will need to deploy real-time monitoring systems to assess the risk of token-holding addresses and counterparties, and issue freezing commands upon detecting suspicious activity. For DeFi protocols, this means adapting to issuer blacklist mechanisms or facing the risk of funds being frozen.
How the Proposal Reshapes the Decentralization Narrative of Stablecoins
Since their inception, stablecoins have existed in a tension between centralization and decentralization. While USDT and USDC operate on public blockchains, their issuers retain ultimate control over token contracts, including minting, burning, and address freezing. The proposal’s mandatory requirements effectively codify this centralized authority into law—freezing capabilities are no longer an optional business design, but a statutory compliance obligation.
This fundamentally challenges the decentralization narrative of stablecoins. Supporters argue that AML compliance is the price of stablecoins entering mainstream finance, and that bank-level regulation is the foundation for their legal status. Critics counter that stablecoins with freezing and burning capabilities are, in essence, controlled digital dollars, fundamentally at odds with the core crypto values of immutability and permissionlessness. When issuers are granted unilateral control over user assets, holders no longer possess truly self-custodied crypto assets, but rather on-chain certificates anchored to regulatory oversight. This narrative shift will deeply impact user trust in stablecoins and may drive exploration of privacy-focused or algorithmic stablecoin alternatives.
How the Compliance Race Shapes the Stablecoin Market Landscape
The proposal is accelerating structural differentiation within the stablecoin market. As of April 10, 2026, the global stablecoin market cap stands at approximately $315 billion, with USDT and USDC together accounting for over 83% of the market—USDT at around $184 billion and USDC at $77 billion. In terms of trading activity, USDC’s adjusted volume has reached $2.2 trillion, far surpassing USDT’s $1.3 trillion and accounting for about 64% of the total. USDC has already obtained a MiCA license in the EU, giving it a first-mover compliance advantage in the world’s second-largest regulated financial market, with an annual growth rate of 73%.
By codifying compliance capabilities into regulation, the proposal gives USDC’s technical architecture and compliance system an institutional edge under the regulatory framework. While Tether leads in market cap, it faces greater pressure on compliance—its blacklist mechanism has been in place for years but must be further upgraded to meet FinCEN’s secondary market monitoring requirements. After the 60-day public comment period, the final rule is expected to take full effect in 2027, at which point differences in compliance costs will accelerate market consolidation around issuers with mature compliance systems. For smaller stablecoin projects, the technical and operational costs of establishing bank-level AML systems may become an insurmountable barrier to entry.
Conclusion
This Treasury proposal is just one point in the global wave of stablecoin regulation. Chronologically, the signing of the GENIUS Act in July 2025 established an initial federal regulatory framework for stablecoins; the FinCEN and OFAC proposal in April 2026 marks the first concrete enforcement step under that law. In the EU, MiCA regulations have entered full implementation, also requiring stablecoin issuers to maintain 1:1 reserves and freezing capabilities. In Asia, Hong Kong passed its stablecoin legislation in August 2025, requiring issuers to obtain approval from the Hong Kong Monetary Authority and imposing strict KYC and AML requirements.
The convergence of multi-jurisdictional regulatory frameworks is driving stablecoin issuers toward globally harmonized compliance standards. Key regulatory directions to watch include: the development of cross-border enforcement coordination mechanisms, especially for executing freeze orders internationally; compliance adaptation for DeFi protocols—how to meet issuers’ secondary market monitoring requirements without sacrificing decentralization; and the technological contest between privacy-preserving solutions and AML monitoring. For the crypto industry, deepening stablecoin regulation will redefine the compliance boundaries of the entire ecosystem—stablecoins are no longer "crypto dollars" operating outside regulatory oversight but are becoming core components of global financial compliance infrastructure.
Quick Reference Table: Key Provisions of the Treasury AML Proposal
| Category | Specific Requirement |
|---|---|
| Legal Status | Defines Permissible Payment Stablecoin Issuers as financial institutions under the Bank Secrecy Act |
| AML/CFT Program | Establishes risk-based anti-money laundering and counter-terrorist financing programs, with greater resources allocated to high-risk customers and activities |
| Transaction Control Capabilities | Token contracts must have technical features to block, freeze, and reject suspicious transactions |
| Sanctions Compliance | Comply with OFAC sanctions requirements and conduct real-time transaction screening |
| Secondary Market Monitoring | Issuers must monitor and assess the risk of token flows on-chain |
| Public Comment Period | 60 days, during which the industry can submit feedback |
| Expected Effective Date | Full implementation in 2027 |
Frequently Asked Questions (FAQ)
Q1: Can users appeal to unfreeze stablecoins after they are frozen?
Freezing is typically triggered by issuers based on law enforcement directives or internal risk assessments. Users may submit appeal materials to the issuer or relevant authorities. However, the proposal itself does not specify a particular appeals process; related mechanisms depend on each issuer’s internal procedures.
Q2: Does the proposal apply to all stablecoins?
The proposal targets "Permissible Payment Stablecoin Issuers," meaning entities that are compliant and registered in the U.S. and authorized to issue payment stablecoins. Decentralized or algorithmic stablecoins that do not involve a centralized issuer are not directly covered by the proposal.
Q3: Do USDT and USDC already have the capabilities required by the proposal?
Both issuers have already embedded blacklist mechanisms in their smart contracts, enabling address freezing. The core change in the proposal is elevating these capabilities from "business choices" to "legal obligations," along with adding systematic secondary market monitoring requirements.
Q4: Does holding stablecoins affect user asset security?
From an asset security perspective, freezing mechanisms primarily target addresses suspected of illegal activity, so ordinary users are not affected. However, from an asset autonomy perspective, stablecoins are no longer "unfreezable" crypto assets—issuers retain unilateral control rights.
Q5: What is the impact of the proposal on DeFi protocols?
When interacting with stablecoins, DeFi protocols must adapt to issuers’ blacklist mechanisms. If a protocol does not have logic to handle blacklisted addresses, there is a risk of funds being frozen. Protocol developers should monitor the proposal’s progress and make technical adjustments accordingly.
