Today on The Ops Layer, we're tracking major regulatory shifts impacting Web3 operations. In the US, new rules under the GENIUS Act are pushing stablecoin issuers towards bank-grade KYC. Meanwhile, in the EU, MiCA's enforcement is driving a market consolidation, forcing firms to prove ongoing operational resilience, not just obtain a license.
As part of the GENIUS Act implementation we've been tracking, five U.S. financial watchdogs—including the Federal Reserve and FinCEN—published their joint proposal on Friday to classify permitted payment stablecoin issuers (PPSIs) as 'financial institutions' under the Bank Secrecy Act. The rules mandate comprehensive, bank-grade Customer Identification Programs (CIPs) for users who mint or redeem stablecoins directly.
Why it matters
This is a significant step in formalizing the operational requirements for stablecoin issuers in the U.S. For any Web3 project issuing or heavily reliant on stablecoins, this means building out a robust compliance function with processes and systems for identity verification, record-keeping, and government list screening. The rules will increase operational costs and complexity but are a prerequisite for deeper integration with the traditional financial system.
With the July 1 MiCA enforcement deadline arriving and only roughly 210 of over 1,200 firms securing full CASP authorization—a bottleneck we've noted previously—market analysis and a KuCoin EU executive highlight that the regulatory focus is now shifting. Authorities are moving beyond one-time licensing to continuous operational supervision, requiring firms to demonstrate mature governance and compliance processes. This pressure is forcing smaller apps to partner with licensed infrastructure providers to survive.
Why it matters
This marks a pivotal change for Web3 operations in Europe. Getting a license is no longer the finish line; it's the starting gun for ongoing, intensive supervision. This forces a move from a 'startup' to a 'regulated financial entity' mindset, demanding investment in robust internal controls, experienced compliance teams, and resilient infrastructure. For a COO, this means treating compliance not as a checklist, but as a core, continuous business function essential for market access.
The U.S. Senate floor vote on the CLARITY Act has slipped past its missed July 4 target to late July, with the government ethics provision we've been tracking remaining the final hurdle. However, the push for passage is broadening: the Consumer Technology Association (CTA), representing over 1,200 tech companies, is now urging the Senate to pass the bill. Senator Lummis continues to champion the legislation, calling the current risk of 'code-as-crime' an 'absurdity' that drives developers overseas.
Why it matters
The widening support from mainstream tech underscores that regulatory uncertainty is no longer just a crypto problem but a barrier to broader software innovation in the US. For Web3 operations, the continued delay prolongs legal ambiguity, complicating hiring, fundraising, and strategic planning. Passage would provide a critical safe harbor for non-custodial development, significantly de-risking open-source contributions.
The UK has passed the 'Money Laundering and Terrorist Financing (Amendment) Regulations 2026', which revises the country's AML framework for cryptoasset businesses. Taking effect on June 30, the new rules introduce updated due diligence requirements, reforms to the 'change-in-control' process for FCA-registered firms, and new obligations for cryptoasset correspondent relationships that will apply from February 2027.
Why it matters
This update imposes more stringent operational and governance burdens on crypto firms in the UK. The tightened 'change-in-control' rules, in particular, will impact M&A activity and internal restructuring, requiring proactive engagement with the FCA. As COO, you will need to ensure your compliance frameworks and due diligence processes are updated to meet these new legal standards to maintain regulatory standing.
On Monday, SEC Commissioner Hester Peirce argued that publishing open-source blockchain and DeFi code should not, by itself, subject developers to federal securities regulations. She stated that such activity is often protected by the First Amendment and that liability should fall on those who actually use the code for unlawful conduct, not the developers who created it.
Why it matters
Peirce's statement provides a strong argument from within the SEC for a nuanced regulatory approach that separates software development from financial services. While not official agency policy, this perspective could influence future enforcement and legislation, like the CLARITY Act. For Web3 organizations, it reinforces the legal argument for contributing to open-source protocols without automatically inheriting the legal liabilities of a financial intermediary.
Following the UK House of Lords' recent criticism of the Bank of England's prior stablecoin proposals as uncompetitive, the BoE has softened its regulations. In a new consultation published Monday, the Bank removed the strict individual holding limits we previously tracked and instead proposed a £40 billion (~$52.8B) total issuance limit per stablecoin. Crucially, it also increased the allowable portion of interest-bearing backing assets to 70%, directly addressing complaints about the previous 40% non-interest-bearing central bank deposit mandate. Final rules are expected by the end of 2026.
Why it matters
This updated framework provides a clearer picture of the operational and treasury management requirements for issuing regulated stablecoins in the UK. The shift from individual caps to a total issuance limit simplifies user-level compliance but places a greater burden on the issuer's treasury to manage growth and asset backing at scale. The 70% allowance for interest-bearing assets also creates a viable, though regulated, business model.
Advancing the proposal we noted over the weekend, the ENS DAO has officially begun a 'temp-check' vote on transferring control of its treasury, grants, and day-to-day operational authority to an expanded ENS Foundation. The move argues the shift is necessary to streamline decision-making and ensure long-term sustainability, addressing the inefficiencies of governing daily operations via direct token-holder votes.
Why it matters
This proposal exemplifies a major trend in DAO governance: centralizing operations within a legal foundation to improve efficiency, while leaving core protocol decisions to token holders. It's a pragmatic response to the widely acknowledged challenges of running a large-scale project via direct democracy. For Web3 COOs, the ENS model provides a critical case study on structuring a hybrid governance system that balances decentralization with operational effectiveness.
A proposal on the Ethereum Research forum suggests allowing validators to redirect up to 10% of their staking rewards to a shared pool for funding public goods, with a majority-approved rate becoming mandatory for all. The idea, floated amidst concerns about the Ethereum Foundation's funding capacity, has ignited a fierce debate, with critics like Rotki founder Lefteris Karapetsas warning it could create a 'cartel of the top stakers' and politicize the consensus layer.
Why it matters
This proposal cuts to the heart of one of Web3's biggest operational challenges: sustainable funding for core infrastructure and public goods. While potentially creating a recurring ~$120M+ annual budget, the debate highlights the immense difficulty of implementing on-chain treasury solutions without introducing new centralization vectors or governance attack surfaces. The outcome will set a major precedent for protocol-level economic design.
A debate on X, sparked by a16z crypto's Ali Yahya and CoinFund's Jake Brukhman, has brought critiques of DAO governance models to the forefront. Yahya stated plainly that 'direct democracy is a bad idea' in DAOs, citing the failures of past iterations and the prevalence of 'decentralization theater' where outcomes are controlled by a few large token holders.
Why it matters
This public criticism from major Web3 investors signals a growing consensus that early-stage DAO governance models are operationally flawed. The focus is shifting from purely on-chain voting to more practical, resilient structures. For a Web3 COO, this validates the need to design governance systems that are resistant to whale dominance and can facilitate efficient decision-making, rather than simply replicating political models that don't scale.
Taiko, an Ethereum Layer 2 network, halted block production on Monday after an attacker forged withdrawal proofs and stole approximately $1.7 million from its bridge contract. The root cause was a leaked private key for the network's SGX-based prover system, which is used to sign valid transaction blocks.
Why it matters
This is another stark reminder that in complex, multi-layered systems, the security of the overall operation is only as strong as its key management practices. Even with sophisticated technology like SGX enclaves, a single compromised key can undermine the entire protocol. For any operations team, this incident reinforces the absolute necessity of rigorous, multi-person controls and audited procedures for all privileged keys.
The Ethereum standard ERC-8126 has reached 'Final' status, establishing a standardized verification layer for AI agents operating on-chain. Building on ERC-8004 for identity, the new standard defines five categories for verification (e.g., code, wallet, media) to produce a unified risk score. This allows dApps, wallets, and marketplaces to programmatically assess the trustworthiness of an autonomous agent before interacting with it.
Why it matters
As AI agents become key actors in Web3 operations, managing their associated risks is a critical security and compliance challenge. ERC-8126 provides a foundational building block for a trust framework, enabling organizations to set policies based on an agent's verified attributes and risk profile. For a COO, this is an essential piece of infrastructure for safely deploying agents in roles that involve treasury management or other sensitive on-chain actions.
Regulators Formalize Operational Requirements Across the US, UK, and EU, regulators are moving past initial licensing to define concrete operational rules. US agencies proposed bank-grade KYC for stablecoin issuers under the GENIUS Act, the UK is implementing new AML rules with stricter due diligence, and the EU's MiCA is now being enforced with a focus on continuous operational supervision, not just one-time authorization.
DAOs Continue to Grapple with Operational Viability The tension between decentralized ideals and operational reality continues. The ENS DAO is considering a move to centralize treasury and day-to-day management into a foundation, mirroring a broader trend. Meanwhile, prominent VCs are publicly questioning the viability of direct democracy in DAOs, and a new proposal on Ethereum to fund public goods via staking rewards highlights the ongoing struggle to create sustainable, non-centralizing funding mechanisms.
The 'Code is Speech' Debate Intensifies The push for legal clarity for open-source developers is escalating. SEC Commissioner Hester Peirce argued that publishing code should be protected speech, outside the scope of securities law. This comes as the CLARITY Act, which aims to provide a safe harbor for developers, gains broader support from the tech industry, highlighting the legal risks that currently chill innovation.
AI Agent Infrastructure Matures The tooling for autonomous on-chain agents is solidifying. The finalization of ERC-8126 provides a standardized verification layer to assess agent risk, while new analysis highlights the need for verifiable on-chain identities for agents to ensure accountability, especially as they are deployed in sensitive operational roles.
Ethereum Ecosystem Debates its Future Following the Ethereum Foundation's restructuring and staff exodus, the community is debating its path forward. A new proposal to redirect validator staking rewards to fund public goods has sparked controversy over potential centralization and politicization. Concurrently, Consensys's Joseph Lubin is calling for a network of well-funded, neutral organizations to support ecosystem growth beyond the Foundation's narrower mandate.
What to Expect
2026-06-30—UK's updated Money Laundering and Terrorist Financing Regulations take effect, impacting cryptoasset businesses.
2026-07-01—EU MiCA enforcement deadline arrives, requiring full CASP authorization for all crypto firms operating in the bloc.
Late July 2026—Potential new window for a US Senate floor vote on the CLARITY Act.
2027-02-01—New UK rules for cryptoasset correspondent relationships come into force.
2027-10-25—Substantive regime for UK stablecoin issuance and cryptoasset custody is scheduled to begin.
How We Built This Briefing
Every story, researched.
Every story verified across multiple sources before publication.
🔍
Scanned
Across multiple search engines and news databases
219
📖
Read in full
Every article opened, read, and evaluated
88
⭐
Published today
Ranked by importance and verified across sources
11
— The Ops Layer
🎙 Listen as a podcast
Subscribe in your favorite podcast app to get each new briefing delivered automatically as audio.
Apple Podcasts
Library tab → ••• menu → Follow a Show by URL → paste