What Swiss Asset Managers Need to Know About AML, LETA and Crypto Reporting in 2026

Last reviewed: 29 April 2026

Swiss asset manager AML 2026 crypto reporting obligations are converging on an unprecedented scale, driven by three parallel regulatory workstreams that every fund compliance officer, portfolio manager and in-house counsel must now address. The Transparency of Legal Entities Act (LETA) introduces a new beneficial-ownership register framework; the AMLA revision 2026 tightens customer due diligence and suspicious-activity reporting duties for managers of collective investment schemes; and the OECD’s Crypto-Asset Reporting Framework (CARF), together with Switzerland’s own AEOI extension to crypto assets, creates an entirely new information-exchange layer, although timing remains uncertain. With institutions such as PostFinance announcing their first crypto asset management mandates and FINMA publishing dedicated custody guidance, the operational reality for asset management compliance in Switzerland has changed fundamentally.

2026 Regulatory Landscape for Swiss Asset Managers, Quick Summary and Timeline

Three regulatory instruments demand immediate attention from Swiss asset managers in 2026:

• LETA 2026. The Transparency of Legal Entities Act requires legal entities, including structures relevant to collective investment schemes, to identify and register their beneficial owners in a central or federated register system.
• AMLA revision 2026. The revised Anti-Money Laundering Act broadens the scope of obliged entities, strengthens customer due diligence (CDD) and enhanced due diligence (EDD) requirements and reinforces internal-control obligations for fund managers.
• AEOI / CARF for crypto assets. The OECD Crypto-Asset Reporting Framework has been adopted internationally, yet the State Secretariat for International Financial Matters (SIF) has indicated that automatic exchange of information on crypto assets cannot be implemented in Switzerland before 1 January 2027.

Industry observers expect the practical effect to be a compressed compliance window: managers should treat the period from now through late 2026 as preparation time, with full reporting obligations likely crystallising in early 2027 for crypto-specific AEOI.

Timeline, Key Dates

Given the timing ambiguity around CARF and AEOI crypto 2026, the prudent approach is to build data pipelines and reporting templates now, so they can be activated as soon as a final implementation date is confirmed by SIF or Parliament.

Key Legal Obligations for Swiss Asset Managers in 2026, LETA, AMLA and AEOI/CARF

Transparency of Legal Entities Act (LETA), UBO Reporting for Collective Investment Schemes

LETA introduces a register-based approach to fund UBO reporting in Switzerland, replacing the fragmented system in which beneficial-ownership information sat within individual subscription documents and anti-money-laundering files held by financial intermediaries. Under LETA, legal entities must identify their beneficial owners, report them to a designated register and keep the information current.

For collective investment schemes, whether structured as contractual funds, SICAVs or limited partnerships for collective investment, the obligations focus on identifying the natural persons who ultimately control or benefit from the entity or its management structure. Fund administrators and management companies must ensure that subscription processes capture the information required to populate the register and that material changes (such as a change of controlling shareholder in the management company) are reported within the prescribed timeframe.

Early indications suggest that penalties for non-compliance will include administrative fines and, in serious cases, restrictions on registry or supervisory standing. Managers should treat LETA 2026 as a data-quality project: review existing investor registers, map data gaps, and align subscription agreements with new disclosure requirements.

AMLA Revision 2026, Manager Responsibilities

The AMLA revision 2026 strengthens the obligations that sit directly on asset managers as obliged entities. Key changes include:

• Customer due diligence (CDD). Managers must verify investor identity using reliable, independent sources and maintain ongoing monitoring of the business relationship, including crypto-related activity.
• Enhanced due diligence (EDD). Higher-risk relationships (politically exposed persons, complex structures, crypto-heavy portfolios) trigger additional verification, source-of-wealth documentation and senior-management sign-off.
• Internal controls and AML officer. Every regulated asset manager must designate a qualified AML officer, implement a risk-based AML policy and document the escalation process for suspicious-activity reporting (SAR).
• Delegated AML functions. Where a manager delegates operational AML tasks to a fund administrator or external compliance provider, the legal responsibility remains with the manager. Delegation agreements must specify reporting lines, data access and audit rights.

These changes make it essential for managers to revisit their Swiss fund AML checklist, update internal policies and ensure that staff are trained on the new requirements before the revised provisions take full effect.

AEOI / CARF (Crypto Reporting), What This Covers Versus Domestic Tax AEOI

The OECD’s Crypto-Asset Reporting Framework (CARF) creates a global standard for the automatic exchange of information relating to crypto-asset transactions. It targets crypto-asset service providers, including exchanges, custodians and, in some cases, managers who facilitate transactions, and requires them to collect and report data on users’ crypto dispositions, transfers and holdings.

CARF is distinct from the existing AEOI framework for traditional financial accounts. While the existing AEOI covers bank accounts, securities accounts and insurance products, CARF extends the net to crypto assets that are not already captured, including decentralised-finance tokens, stablecoins and certain NFTs used as financial instruments.

For Swiss asset managers, the practical implication is information mapping: determine which crypto holdings fall within CARF scope, identify which entity in the fund chain (manager, custodian, depositary or VASP) holds the reportable data, and build pipelines to aggregate and transmit that data when reporting obligations commence. Given SIF’s position that implementation cannot begin before 1 January 2027, the current period is an essential preparation window.

Practical Compliance Checklist and Action Timeline for Swiss Asset Managers

The following Swiss fund AML checklist is structured in three priority phases. Each item includes a responsible function and a sample policy action.

Phase 1, Immediate (0–3 months)

• Update AML policy and risk assessment (Compliance). Integrate a crypto risk matrix that scores asset classes (e.g., Bitcoin, stablecoins, DeFi tokens) by liquidity, traceability and counterparty-risk factors. Set materiality thresholds for enhanced due diligence triggers. Sample language: “The firm classifies crypto-asset exposure into three risk tiers based on blockchain transparency, custodial model and counterparty regulatory status.”
• UBO mapping and register procedures (Legal / Fund Admin). Run a gap analysis of current investor registers against LETA requirements. Identify any beneficial owners not yet captured or verified and prioritise remediation. Sample action: “Fund Admin to extract current UBO data from subscription documents and compare against LETA field requirements by [date].”
• AML officer designation and escalation plan (Compliance / HR). Confirm the AML officer appointment, document reporting lines and publish an updated escalation workflow that covers crypto-specific suspicious-activity indicators.

Phase 2, Near Term (3–6 months)

• Reporting-flow mapping (Tax / Compliance). Map which reportable data elements sit with the custodian, fund administrator, depositary and manager. For CARF-relevant data, identify wallet identifiers, transaction timestamps, counterparty VASP information and fiat-conversion values. Sample action: “Compliance to produce a data-map document showing source system, responsible party and extraction method for each CARF reporting field.”
• Vendor due diligence, custody and VASP counterparties (Operations / Legal). Review existing custody agreements against FINMA Guidance 01/2026 standards. Negotiate contractual clauses granting the manager audit rights, access to transaction data and proof of asset segregation. Sample clause: “Custodian shall provide quarterly attestation of asset segregation and on-demand access to wallet-level transaction data for reporting and audit purposes.”
• Instrument-level holdings taxonomy (Operations / IT). Create a standardised taxonomy for recording crypto holdings, including blockchain identifier, token standard (e.g., ERC-20, native chain), wallet address and custodial model. This taxonomy feeds both AML transaction monitoring and future CARF/AEOI reporting.

Phase 3, Before Reporting Starts (6–12 months)

• Staff training programme (HR / Compliance). Deliver targeted training sessions covering LETA UBO obligations, revised AMLA CDD/EDD requirements and crypto-specific red flags. Document attendance and test results for audit trail purposes.
• Data retention and audit-trail technology (IT / Operations). Confirm that systems retain all KYC records, transaction monitoring alerts and SAR filings for the minimum retention period required under AMLA. Implement tamper-proof logging for crypto-wallet data and blockchain-analytics outputs.

Sample 90-Day Sprint Plan

Reporting and UBO Obligations by Entity Type, 2026 Comparison

The scope of Swiss asset manager AML 2026 crypto reporting obligations varies depending on the legal structure and regulatory status of the entity. The following comparison table summarises the position for the most common fund structures and service-provider roles.

For open-ended funds and SICAVs with large, frequently changing investor bases, the UBO data-capture challenge is most acute. Managers should consider integrating automated investor-register checks and periodic LETA verification sweeps into their fund-administration workflows.

Onboarding, KYC and Transaction Monitoring for Crypto Investments

As crypto asset mandates expand in Switzerland, managers must adapt their onboarding and monitoring infrastructure to address the unique risks and data requirements of digital assets.

KYC Fields to Capture

Traditional KYC collects identity documents, source-of-wealth declarations and tax-residency confirmations. For crypto investments, the following additional fields are essential:

• Wallet identifiers. Public addresses for all wallets used to deposit, withdraw or hold crypto assets within the fund or mandate.
• Blockchain and token type. The specific blockchain network (e.g., Ethereum, Bitcoin, Solana) and token standard (e.g., ERC-20, BEP-20, native coin) for each holding.
• Counterparty VASP information. Where crypto is received from or sent to a virtual-asset service provider, record the VASP name, jurisdiction and regulatory status, consistent with travel-rule requirements.
• Source-of-funds for token issuances. For primary-market crypto investments (e.g., token sales, ICOs), obtain documentation on the issuing entity, token economics and use-of-proceeds structure.

Transaction Monitoring and Suspicious Activity Reporting

Managers should tune their AML transaction-monitoring systems to accommodate on-chain data. This includes integrating third-party blockchain-analytics tools that can flag high-risk wallet interactions, exposure to sanctioned addresses and patterns associated with mixing or tumbling services.

Red flags that should trigger enhanced due diligence or a SAR include:

• Incoming transfers from wallets with known exposure to darknet markets or sanctioned entities.
• Rapid cycling of crypto assets through multiple wallets with no apparent economic purpose.
• Investor reluctance to disclose wallet provenance or source-of-funds for large crypto deposits.
• Transactions involving privacy coins or mixing protocols without a credible business justification.

Each SAR for crypto must include transaction details (hash, timestamp, amount), counterparty wallet addresses, and supporting KYC documentation. Managers should ensure their reporting templates capture these fields alongside the narrative explanation required by the Money Laundering Reporting Office (MROS).

Operational Changes, Custody, Vendor Contracts, Audits and Recordkeeping

FINMA Guidance 01/2026 on the custody of crypto-based assets sets clear supervisory expectations for operational controls, asset segregation and due diligence when holding crypto on behalf of clients. Managers selecting or retaining custody providers must evaluate their arrangements against these standards.

Vendor Due Diligence Checklist

When onboarding or reviewing a custodian or VASP counterparty, the following minimum due-diligence criteria apply:

• Regulatory status. Confirm that the custodian holds a FINMA licence or equivalent authorisation in its home jurisdiction and is subject to AML supervision.
• Security architecture. Evaluate the custodian’s key-management model (e.g., multi-signature, hardware security modules, MPC) and its incident-response procedures.
• Asset segregation. Verify that client crypto assets are held in segregated wallets and are legally ring-fenced from the custodian’s proprietary assets and from other clients’ assets.
• Data capabilities. Confirm that the custodian can supply wallet-level transaction data in machine-readable format, supporting the manager’s reporting obligations under CARF and AMLA.
• Insurance and capital adequacy. Assess whether the custodian maintains professional indemnity insurance or capital reserves adequate to cover potential loss events.

Recordkeeping and Data Retention

Under the AMLA revision 2026, managers must retain all KYC records, transaction-monitoring alerts, SAR filings and supporting documentation for a minimum period following the end of the business relationship. For crypto-specific records, this extends to:

• Blockchain-analytics reports and risk-scoring outputs for each wallet and transaction.
• Copies of travel-rule messages exchanged with counterparty VASPs.
• Proof-of-reserve or segregation attestations received from custodians.
• Audit logs from internal systems documenting crypto-asset valuations and holdings snapshots.

Managers should implement tamper-proof logging (e.g., write-once storage or cryptographic hash chains) for these records, ensuring they meet evidentiary standards for regulatory examinations and external audits.

Conclusion, Swiss Asset Manager AML 2026 Crypto Reporting Readiness

The convergence of LETA, the AMLA revision 2026 and the AEOI/CARF crypto reporting framework creates the most significant compliance step-change for asset management compliance in Switzerland in over a decade. The three highest-priority actions for every Swiss asset manager are: first, update AML policies and risk assessments to cover crypto-specific exposures; second, complete a UBO gap analysis against LETA requirements; and third, build CARF-ready data pipelines now, even while the final AEOI implementation date remains subject to confirmation. Managers who act decisively in this preparation window will be positioned to meet their obligations without disruption when reporting goes live.

Sources

1. FINMA, Guidance on risks associated with custody of crypto-based assets (12 January 2026)
2. SIF, Framework for the automatic exchange of information (AEOI) on crypto assets
3. Chambers & Partners, Fintech 2026: Switzerland Trends and Developments
4. PwC Switzerland, New regulation for the Swiss crypto industry
5. OECD, Automatic Exchange of Information / Crypto-Asset Reporting Framework (CARF)
6. PostFinance, Newsroom (crypto asset management mandate, February 2026)
7. Swiss Federal Office of Justice / admin.ch, Transparency of Legal Entities Act (LETA)