South Korea is abandoning a previously proposed rule that would have forced cryptocurrency exchanges to automatically report all transfers above 10 million won (approximately $7,300) to overseas platforms or personal wallets as suspicious transactions. Instead, under the revised policy, virtual asset service providers (VASPs) will be required to independently conduct anti-money laundering (AML) risk assessments for such transfers, a shift that hands greater compliance responsibility to the exchanges while reducing the flood of automatic reports to the regulator.
The decision emerged from recent consultations between the country’s Financial Intelligence Unit (FIU), which operates under the Financial Services Commission, and representatives of major crypto exchanges. Industry feedback directly influenced the change, as the original plan was estimated to increase annual suspicious transaction reports by a staggering 85-fold. Exchanges argued that a blanket reporting rule was operationally overwhelming and ineffective, and the FIU has now opted for a risk‑based approach where exchanges evaluate transaction patterns, wallet risk, and counterparty due diligence before flagging suspicious activities.
Under the new framework, the threshold of 10 million won remains a critical marker: transfers at or above this value to foreign exchanges or personal wallets will trigger the exchange’s own AML procedures. Users may face additional verification steps or delays for large cross‑border payments, but the change also means fewer compulsory filings to the government, potentially offering more privacy for compliant transactions. Exchanges, especially smaller ones, will need to invest in more sophisticated monitoring systems without the safety net of clear, baseline reporting requirements.
South Korea remains one of the world’s most active crypto markets, with heavy retail participation and large capital flows into overseas exchanges. The policy shift aligns with global trends such as the Financial Action Task Force’s Travel Rule, which mandates the sharing of transaction information above certain thresholds. However, the Korean model goes further by delegating risk management to the exchanges themselves. Authorities also plan to expand the Travel Rule domestically, requiring identity information for all transfers, not just those exceeding the 10 million won mark.
The FIU’s pivot reflects a pragmatic attempt to balance oversight with the operational realities of a fast‑moving industry. Other jurisdictions will be watching: if the delegated model proves effective, it could reduce the administrative load on regulators internationally while increasing exchange accountability. If gaps emerge, however, it may invite exploitation by bad actors. The final details of the enforcement decree are being finalized, and the crypto community will be monitoring how specific compliance requirements are structured.
