Summary: If you're looking to put up collateral across various decentralized custody platforms, U.S. regulators are going to keep asking the same essential questions: Who's the legal custodian? Who really holds the keys? How are the assets separated? And what’s the plan if something goes wrong, like insolvency or a failure? Since mid-2025, the SEC, OCC, and NYDFS have each tweaked or clarified their stances, which can significantly influence how you set up smart-contract custody in conjunction with bank and trust-company "qualified custodians."

Our Trading Desk Wants to Post Collateral at Multiple Decentralized Custody Solutions: How Regulators View Smart‑Contract Custodians vs Traditional Custodians

Decision-makers hit us with two tough questions every week: can we use smart contracts to post collateral while staying compliant, and what exactly qualifies as a “custodian” from the regulators' perspective?

The quick take for today:

So, here’s the deal: a smart contract isn’t considered a legal custodian. When it comes to the SEC’s investment adviser custody rules, the “qualified custodian” label is reserved for entities like banks, trust companies, broker-dealers, FCMs, and certain foreign financial institutions--not for code. (law.cornell.edu)
On a brighter note, 2025 brought some key changes that made it easier to combine bank/trust custody with those on-chain collateral workflows. The SEC rolled back its 2023 “Safeguarding” proposal, the OCC is now allowing bank crypto-custody without needing prior non-objection, New York has tightened up requirements for sub-custody and FBO titling, and the SEC staff has expanded broker-dealer custody relief for crypto asset securities. (sec.gov)

A Handy Guide to Designing a Multi-Custodian, On-Chain Collateral Program

Let’s dive into what’s new, what’s staying the same, and how you can set up a multi-custodian, on-chain collateral program that keeps both regulators and auditors happy.

What’s Changed

Regulatory Landscape: There have been some updates in regulations that you should definitely be aware of.
Custodial Practices: The way custodians manage assets has evolved, impacting how you can structure your program.

What Hasn’t Changed

Core Compliance Requirements: Many of the foundational compliance rules still apply.
Need for Transparency: Maintaining clear and open records is as crucial as ever.

Designing Your Program

Here’s a quick rundown to help you get started:

Understand the Regulatory Requirements: Make sure you’re up to speed on the latest regulations affecting collateral programs.
Select the Right Custodians: Look for custodians with a solid reputation who can manage assets securely.
Implement On-Chain Solutions: Use blockchain technology to enhance transparency and efficiency in your collateral management.
Regular Audits: Set up a routine for audits to ensure ongoing compliance and catch any issues early.
Engage with Stakeholders: Keep an open line of communication with both regulators and auditors to make sure everyone’s on the same page.

By following these guidelines, you’ll be better equipped to manage your multi-custodian, on-chain collateral program while keeping regulatory bodies satisfied.

What changed in 2025 (and why it matters for collateral)

On June 12, 2025, the SEC decided to pull back on its 2023 proposal for the “Safeguarding Advisory Client Assets” rule. This proposal had aimed to tighten the rules around what it means to be a “qualified custodian,” which left a lot of crypto firms worried about meeting those new standards. So, the good news is that the 2009 custody rule stays in place for now. What this means for advisers is that they can keep using state and federal trust companies and banks as qualified custodians, and they can still use smart contracts as workflow tools--just not as custodians. (sec.gov)
The OCC has opened the gates for banks to dive into crypto custody without having to deal with that pesky pre-approval step. With Interpretive Letter 1183, dated March 7, 2025, they made it clear that national banks and federal savings associations can handle crypto custody, keep stablecoin reserves, and get involved in DLT--without needing a thumbs-up first, as long as their risk management is on point. Then, about two months later, they followed up with IL 1184 on May 7, 2025, which clarified that outsourcing and sub-custody are totally allowed, as long as there are some solid third-party risk controls in place. This opens the door for more tri-party setups, where a national bank acts as your legal custodian, while smart contracts handle the collateral flows. (occ.gov)
On December 17, 2025, the SEC staff made a significant change by replacing the 2020 “special purpose broker-dealer” (SPBD) model with a more flexible 15c3-3 staff statement. This new approach allows any broker-dealer to consider itself as having “possession or control” over crypto asset securities if they follow certain guidelines--think private-key protection, responding to lawful orders, and having solid transfer plans in place during resolution. This update opens the door for broker-dealers to join the crypto collateral markets without being stuck in the SPBD framework. You can check out the full details here.
The NYDFS has rolled out some updated custody guidance as of September 30, 2025. Here’s what you need to know: they’ve set some clear expectations for sub-custodians, which include getting prior DFS approval, using FBO (for the benefit of) titling, and ensuring explicit segregation both on-chain and in ledgers. Plus, there need to be contractual limits on liens and set-offs. If any part of your collateral stack interacts with a NYDFS-regulated entity (like a BitLicensee or a New York trust), you’ll need to make sure your documents and wallet setups are in line with these requirements. You can check out more details here.
SAB 121 is out of the picture. On January 24, 2025, the SEC officially ditched Staff Accounting Bulletin 121, which means the controversial treatment of on-balance-sheet liabilities for public companies holding onto customer crypto is no longer a thing. This change lets banks and public custodians ramp up their digital asset custody efforts without the heavy capital burden--something that's really important for collateral networks that had a hard time getting banks on board as primary custodians. (reuters.com)

What did not change: who is a “custodian” for advisers

For investment advisers registered with the SEC, one rule that’s crucial to keep in mind is 17 CFR §275.206(4)‑2, better known as the “Custody Rule.” This rule states that client funds and securities must be held by a “qualified custodian,” which usually includes:

a bank or savings association (like trust companies),
a registered broker‑dealer,
a futures commission merchant, or
certain foreign financial institutions.

Smart contracts, MPC networks, and DAOs aren't actually considered qualified custodians. Think of them more like risk management tools or workflow layers that operate under a custodian’s oversight--they’re not the custodians themselves. The rules about definitions and responsibilities, like segregation, statements, and surprise exams, still hold true. Make sure your setup has a clear entity that complies with the rule and is designated as the “owner” of custody while the code takes care of enforcing the policy. Check out the details here: law.cornell.edu.

How U.S. regulators frame smart‑contract custody vs traditional custody

SEC (advisers): So, here's the deal: while code can show that you've got segregation and controls in place, the "qualified custodian" has to be part of a regulated entity. If your firm has the power to move client assets on its own through a smart contract (like being a threshold signer in a Safe or having the ability to upgrade the logic), you're likely considered to have “custody.” This means you need to either keep those assets with a qualified custodian or find a way to meet an exception. Just so you know, the 2025 withdrawal didn’t create any new category for code-based custodians. (sec.gov)
SEC (broker-dealers): On December 17, 2025, the staff released a statement detailing how broker-dealers can meet the 15c3-3 “possession or control” requirement for crypto asset securities. They really highlighted the importance of having a solid response plan for chain events, complying with lawful orders, and ensuring the key material is easy to resolve. This approach works well with smart-contract vaults, as long as the broker-dealer’s policies and legal rights allow them to take those necessary steps. Check it out here: sec.gov
OCC: Banks have the option to either directly handle crypto custody or team up with sub-custodians and tech solutions (like MPC and smart-contract platforms), as long as their third-party risk programs are solid. This opens the door for hybrid models where the bank's legal custody operates above the on-chain escrow processes. (occ.gov)
NYDFS: Think of custody like a super-responsible safekeeping gig. Their 2025 guidance lays out some essentials: (i) you've got to keep things separate on-chain and in ledgers, (ii) use FBO titling, (iii) get the DFS's thumbs up for any sub-custody arrangements that comply with their standards, and (iv) be super clear about who’s holding what and under what conditions (no mixing up debtor and creditor roles). Smart contracts are totally cool--but only if they fit within a DFS-approved custodial setup. (dfs.ny.gov)
According to FinCEN, if you’re a hosted wallet provider, you’re considered a money transmitter. But if you’re using unhosted (self-custody) software, that's a different story! So, if your smart-contract setup involves "hosting"--meaning you or a vendor control the keys or can manage customer funds--you’ll likely have to meet MSB obligations in addition to any securities or banking rules that might apply. This distinction often determines whether an ops vendor can even handle those keys. You can dive deeper into this on their site: (fincen.gov).
EU signal for global programs: According to MiCA Article 75, the “custody and administration” service is a licensed CASP service that comes with specific requirements for segregation, liability, and statements--these essentials are tied to a legal entity rather than just a contract. So, if your trading desk is active in the EU, it's safe to assume you'll need a CASP custodian, even if your code is managing the assets. (judict.eu)

Collateral architecture patterns that work now

Here are three design patterns we use with our clients to make sure on-chain collateralization meets U.S. regulatory standards.

Pattern A -- Off‑exchange settlement from bank/trust custody

What: Keep your assets in qualified custody at a bank or trust; use an off-exchange network to assign credit to different venues; and settle periodically while your assets stay segregated and off-site.
Who/How (live today):
- BitGo Go Network OES and Copper ClearLoop integration (e.g., Deribit): Clients can trade while keeping their assets off-exchange in qualified custody. They benefit from daily settlements or predefined flows. (businesswire.com)
- Fireblocks Off Exchange with Deribit: Here, collateral is reflected from a multi-party computation (MPC) wallet that's jointly controlled by both the client and the infrastructure provider. This setup allows the exchange to see the collateral without the need for custody. (fireblocks.com)
Why regulators like it: Legal custody is handled by a bank or trust company, which means less counterparty risk from exchanges. Everything's clear with segregation and statements. For entities under NYDFS, make sure to set up FBO titling and contractually prevent any liens beyond standard fees. (dfs.ny.gov)
Tip: Don’t forget to document your operational controls! Who gets to allocate or deallocate assets? How's daily reconciliation handled? What about emergency unwinds? Auditors will definitely want to see this.

Pattern B -- Tri‑party smart‑contract vault with custodian co‑control

What: We're talking about a smart-contract “vault” here, think of it as a Safe-style multi-sig or a programmable escrow. This thing enforces collateral rules right on the blockchain, and it makes sure that a qualified custodian is either a required signer or holds a key shard in MPC.
How:
- You’ll need the custodian to co-sign any withdrawals.
- Set up an allow-list for recipient contracts and addresses (like venues or protocols).
- Implement time-locks for any changes to parameters; plus, add a “circuit breaker” that lets a custodian pause things when there’s a lawful order or an incident.
- Keep admin upgradability under a timelocked multisig that includes outside signers (like the custodian and an independent director), or, where you can, try to avoid upgradability altogether.
Why regulators are on board: You’re showing that the custodian, not the adviser or trader, is the one truly in control of moving client assets. This fits right in with the “possession or control” ideas and the NYDFS norms for asset segregation.

Pattern C -- Hybrid: On‑chain DeFi + off‑exchange CEX

What: Let’s set aside some collateral for DeFi protocols, but keep the bulk of it safe in bank or trust custody for trading on centralized exchanges (CEX) using off-exchange routes.
How:
- Limit our DeFi exposure by using TVL/venue risk scores and making sure we have formal audits; we should also have oracle-based health checks in place before moving more collateral around.
- Implement withdrawal “cool-downs” and use a 2-of-3 multisig setup that includes the custodian key.
- Create a system for continuous on-chain reconciliation with daily checks against custodian records.
Why: This approach strikes a balance between capital efficiency (like DeFi borrowing/lending and on-chain derivatives) and maintaining compliance and operational safety for larger centralized platforms.

Goal:

Post BTC/ETH collateral to Deribit and a select DeFi money market, all while sticking to the Custody Rule.

Legal custodian: When it comes to legal custodians, we're talking about big names like National Trust Bank or the NYDFS limited-purpose trust. The custodians used by the upcoming 2024 spot BTC ETFs include well-recognized players such as Coinbase Custody, Fidelity, and Gemini. Plus, BlackRock jumped on the bandwagon later with Anchorage as an additional custodian. (techcrunch.com)
Trading connectivity:
- CEX: We’ve got off-exchange settlement in play here, using the BitGo Go Network OES along with Copper ClearLoop. This setup means your funds never have to chill on an exchange. (businesswire.com)
- DeFi: Picture a smart-contract vault where the custodian holds a co-sign/MPC shard. It’s all about being allow-listed to those specific DeFi pool contracts.
Controls to paper and implement:
- Think NYDFS-style FBO titling, with segregation disclosures in place. Also, no rehypothecation by sub-custodians without getting the green light first. (dfs.ny.gov)
- Adviser authority is kept in check, limited to just allocation requests; the custodian is the one executing or co-signing actual movements.
- The surprise exam scope covers those on-chain vaults with a read-only address inventory, plus daily reconciliation of ledger balances to custodian statements as part of your accountant’s SOC workflow. (law.cornell.edu)
- Don’t forget about OFAC screening! Every allow-listed contract address and counterparty goes through it, and there’s thorough documentation screening for all inbound/outbound addresses along with country IP blocking, all according to OFAC's virtual currency guidance. (ofac.treasury.gov)

Result: The program relies on smart contracts for enforcement, while still keeping a recognized qualified custodian as the legal holder. This setup helps minimize any regulatory confusion and makes audits smoother.

Problem:

Before 2025, if you're acting as a custodian or sub-custodian, you might have to recognize customer crypto on your books due to SAB 121.

Now that SAB 121 has been revoked, teaming up with a bank or trust for custody won’t bump up a liability on your balance sheet just for protecting customer crypto. This opens the door for tri-party collateral networks and omnibus arrangements to be more practical for public companies, as long as you get the green light from your auditor’s GAAP analysis. Plus, with the OCC's 2025 letters paving the way for a bank-led custodial stack, you can keep your DeFi operations strictly non-custodial (meaning no single person has control over the keys). (reuters.com)

Where smart contracts shine--and where they don’t--in a regulator’s eyes

What They Like:

Deterministic Segregation: They appreciate having clear-cut distinctions with separate on-chain addresses, individual vaults for each customer, and that FBO-style titling in agreements matches up with SEC/NYDFS standards. You can check out more about this here.
Programmable Policy: This includes features like time-locks, allow-lists, kill-switches, and event logs that are easy to audit. All of these align with the ideas of “possession or control” and make handling incidents smoother.
Off-Exchange Risk Reduction: Keeping assets with a custodian helps lower the risks tied to CEX insolvency and cyber threats, which is a big concern for staff and regulators alike. You can find more details on this here.

What They Look Into:

Upgradability Risks: Mistakes with proxies or compromised admin keys can lead to serious issues. It's better to stick with immutability unless there's a solid reason to change it. If you have to upgrade, make sure to use standard proxies, check storage layouts, set up timelocks, and go for multisigs--stay away from EOAs. (openzeppelin.com)
“Proof of Reserves” as Audit Substitutes: The U.S. audit oversight is clear--PoR isn’t a proper audit and doesn’t provide reliable assurance. So, don’t think you can tick off your custody or audit requirements with PoR. (pcaobus.org)
Who Can Move Funds: If your advisor operations team is the only one who can pull off a vault withdrawal, you’re likely holding custody (and examining risk) no matter what the UI says. (law.cornell.edu)

Emerging best practices we implement for multi‑custodian, on‑chain collateral

Governance and Controls

Make sure that the legal custodian is a must-sign or policy approver in any vault that handles client assets.
Set up a “lawful-order path”: this means the custodian can freeze or move assets according to a court or agency order, which aligns with SEC/BD staff expectations. (sec.gov)
Implement timelocked upgrades using published hashes; any logic changes should require both off-chain board approval and a delay on-chain.

Technical Hardening

Aim for immutability when it comes to your core vault logic. If that's not possible, go for UUPS or Transparent proxies while making sure to use CI storage-layout diffing and clearly defined __gap slots. Check out this guide from OpenZeppelin for more details.
Embrace the CCSS (v9.0) for key management and aim for SOC 2 Type II for your organization’s overall controls. Make sure your custodian and any MPC vendor are on the same page with this. More info is available at Crypto Consortium.
Keep an eye on continuous on-chain reconciliation against your custodian statements; don’t forget to export signed reports to keep your auditor happy during those surprise exams.

Regulatory Touchpoints

NYDFS Programs: Make sure to pre-clear any sub-custody arrangements, spell out flow FBO titling and lien language in your third-party agreements, and keep your disclosures up-to-date and public on your website. Check out more details here.
OFAC: You need to put in place address screening, IP geo-controls, and procedures for blocked property when dealing with virtual currency. Remember to document all this in your sanctions program. More info is available here.
CFTC Retail “Actual Delivery” Rule: If you're offering leverage to U.S. retail clients, keep in mind that you have to deliver full control within 28 days without keeping a lien. Be sure to structure your collateral and liens accordingly. You can find out more details here.

Commercial Structure

Consider using off-exchange settlement to tap into CEX liquidity while avoiding custodial risk at the venue. Look into options like BitGo/Copper or Fireblocks/Deribit. Don't forget to check your custodian’s legal standing (like whether they're a bank or trust), their insurance coverage, and any relevant DFS or charter details. (businesswire.com)
It's smart to diversify your custodians to steer clear of single-point concentration risk. This is a key takeaway from the ETF scene, where several issuers lean heavily on a small group of custodians. Some are even planning to bring in additional federally chartered trust banks by 2025. (forbes.com)

Decision matrix: smart‑contract vs traditional custodian for your use case

If you’re an SEC-registered investment adviser handling client crypto, here's what you need to know:
- Always use a qualified custodian for holding all funds and securities. When it comes to smart contracts, think of them as tools for policy enforcement only. Also, make sure you have proper statements, fund segregation, and surprise exam coverage in place. (law.cornell.edu)
If you’re a broker-dealer dealing with crypto asset securities:
- Make sure your custody operations are in sync with the staff statement from December 17, 2025 (this covers key safeguarding, compliance with lawful orders, and resolvability). Remember, smart contracts shouldn’t get in the way of these essential capabilities. Check it out here: (sec.gov)
If you're a NYDFS BitLicensee or a NY trust:
- Make sure to adhere to the 2025 DFS custody letter: you'll need prior approval for sub-custody, handle FBO titling properly, keep any liens strictly to fees, and ensure customer disclosure is crystal clear. (dfs.ny.gov)
If you're a national bank or federal thrift:
- You can hold onto crypto and bring in outside help without needing prior non-objection; just make sure to include third-party risk controls and keep the board involved. (occ.gov)
If you're working in the EU:
- Make sure to use a licensed CASP for custody (check out MiCA Art. 75). It’s all about legal segregation and liability. Just remember, while smart contracts can be helpful, they don’t take the place of the CASP. (judict.eu)

Checklist: launching a multi‑custodian, on‑chain collateral program in 60-90 days

1) Legal and Governance

Pick primary custodian(s) that have bank or trust charters, and double-check if they're DFS compliant for New York operations.
For paper tri-party control: the adviser shouldn't be able to move collateral on their own; the custodian needs to co-sign or hold the MPC shard.
Don’t forget to update your ADV, customer agreements, DFS disclosures, and BD procedures where needed. (dfs.ny.gov)

2) Smart-contract controls

Aim for an immutable core whenever you can. If not, consider using UUPS or a Transparent proxy with a timelock. Don’t forget to include a custodian and an independent signer on your governance multisig. Check out more details on the OpenZeppelin Readiness Guide.
It’s a good idea to encode allow-lists for the venues and protocols you’re using. Also, add an emergency pause feature that the custodian can trigger in case of a lawful order. For more information, take a look at this statement from the SEC.

3) Ops and Assurance

We conduct daily on-chain reconciliations with custodian statements, provide monthly reports to the board, and ensure we have auditor-ready exports for those surprise exams. (law.cornell.edu)
Our key management and operations are in sync with CCSS v9.0 and SOC 2 Type II, plus we've got vendor attestations stored away for good measure. (cryptoconsortium.org)
Our OFAC program is all set for virtual currency, covering address screening, blocking, and reporting. (ofac.treasury.gov)

4) Venue Connectivity

When it comes to CEX liquidity, it’s better to go with off-exchange settlement networks instead of using on-exchange wallets.
For DeFi, keep your risk in check by looking at the protocol's audit or formal verification status, and make sure to set up oracle-guarded health checks. You can find more on this at certora.com.

A note on UCC Article 12 (Controllable Electronic Records) for secured lending

With more states jumping on board with the 2022 UCC amendments (Article 12), lenders now have a way to perfect security interests through “control” of controllable electronic records. This is a big deal for corporate treasury and credit programs because it clears up how perfection and priority work when crypto collateral is kept in structured wallets or smart-contract vaults. This becomes especially handy when your trading desk borrows against collateral that’s already posted. Be sure to check your state’s adoption status and make sure your vault design meets the legal requirements for “control.” (uniformlaws.org)

What to watch in 2026

Broker-dealer operations are set to take a big step starting December 2025 with the staff statement through SRO exams and how rules are interpreted. You can check it out here: (sec.gov).
Banks are ramping up their custody programs under OCC 1183/1184, plus we're seeing a growth in multi-custodian networks to handle off-exchange settlements. More details can be found at (occ.gov).
The NYDFS is really digging into sub-custody chains and their disclosures--so expect to see some pretty detailed exam findings coming up. For more info, take a look at (dfs.ny.gov).
And over in the EU, the enforcement of MiCA custody rules might just set a trend for best practices in the U.S. when it comes to segregation and liability. Dive deeper into it here: (judict.eu).

How 7Block Labs can help

Custody architecture and code: We create and set up vaults that give a bank or trust full technical control but still keep things speedy. This includes features like allow-lists, timelocks, circuit breakers, and immutable cores where we can make it happen.
Document stack: We put together playbooks for custodians, sub-custodians, and tri-party operations that align with the requirements of NYDFS, SEC custody rules, OCC outsourcing, OFAC guidelines, and what auditors expect.
Assurance pipeline: We've got CCSS-aligned key ceremonies, ready-to-go SOC evidence collection, and on-chain reconciliation dashboards that your auditors and board can really use.

If your trading desk needs to make a move right away, kick things off with Pattern A (off-exchange settlement from qualified custody). Once you’ve got that in place, you can start adding in Pattern B (tri-party smart-contract vaults) as you tighten up your controls. This approach not only gives you quick capital efficiency but also keeps you compliant with current regulations.

References and Key Sources:

SEC's withdrawal of the 2023 “Safeguarding” proposal (June 12, 2025). Check it out here.
OCC IL 1183/1184 guidelines on bank crypto custody and outsourcing (Mar 7 and May 7, 2025). Read more here.
SEC staff's statement on broker-dealer custody of crypto asset securities (Dec 17, 2025). Find the details here.
NYDFS updated custody guidance (Sept 30, 2025) along with the 2023 letter. Get the scoop here.
SAB 121 revocation (Jan 24, 2025). Read about it here.
SEC custody rule text (what makes someone a “qualified custodian”). Check it out here.
MiCA Article 75 (EU custody obligations). Find the details here.
FINRA's crypto communications sweep (Jan 23, 2024). Learn more here.
Examples of off-exchange settlements (BitGo/Copper; Fireblocks/Deribit). Read more here.
PCAOB advisory on limitations of Proof of Reserves (PoR). Check it out here.
OFAC's guidance on virtual currency sanctions. Get the information here.
Resources for UCC Article 12 adoption. Explore here.

Looking for a solid implementation blueprint that suits your regulators, custodians, and venues? We’ve got you covered! In just two weeks, we’ll help you outline your target venues, define your risk appetite, and assess your audit posture, all leading to a clear, actionable architecture that's ready to go.