The role of intermediaries in safeguarding digital assets

An article by ReedSmith

Written by Tariq Rasheed and Romin Dabir, partners at Reed Smith.

Key Takeaways

• Digital assets raise novel questions in law as to whether intermediaries can legally hold digital assets on behalf of others and, if the answer is yes, how intermediaries can do so, given that digital assets are data and often held on distributed ledgers.

• If the owner of digital assets loses his keys, he is likely to lose the corresponding digital asset, making digital assets similar to traditional bearer bonds, and the management and safekeeping of the keys to digital assets crucially important.

• Owners of digital assets increasingly make use of third party custodians rather than self-custody wallets, but the differences between digital asset custody and traditional custody and the types of custodial service provider is challenging for regulators as well as investors.

• If a third-party custodian fails, the ability of an investor to recover their assets will depend on whether the investor has a contractual or a proprietary claim against the custodian as an intermediary in respect of the digital assets.

• Claims by investors against third-party custodians are further affected by whether and how the assets were segregated, whether the custodian used sub-custodians to hold or manage the keys to the digital assets, and whether the liability of the custodian is limited or capped.

• Under English law, judgments are making it clearer that digital assets held in custody are being held in trust on behalf of investors, but whether a custodian is a trust depends not only on contractual arrangements but how the relationship works in practice.

• The approach of UK regulators to digital assets is developing but remains behind other jurisdictions such as the EU, Singapore and Switzerland, all of which have already passed into law foundational legislation or will do so in the near future.

Introduction

As the old adage, often misquoted and misunderstood, goes: “possession is nine-tenths of the law.” Leaving aside exceptions such as theft, fraud or mistake, there is an innate logic to ownership of an asset being derived from physical possession. English common law supports this view; ownership of an asset is best ascertained by identifying the person who exercises “control” over it. This control should ideally be both positive (e.g., having exclusive use of the asset) and negative (e.g., denying others from enjoying the asset).

Nevertheless, over the course of time human societies have worked hard in concocting arrangements that split ownership for a variety of reasons. An asset can be owned by multiple individuals. It is also possible for a person to hold an asset on behalf of someone else. That is, one person can be a legal owner and an entirely different person can be the beneficial owner.

There are innumerable examples. Before setting out to join a crusade, a knight passes ownership of his lands to his brother for safekeeping and expects them to be given back to him upon his return. A child inherits a hotel chain from his doting aunt and the court appoints a trustee to run the operations until the minor comes of age. School teachers pool their savings into a mutual fund that is overseen by a professional money manager who decides which securities to buy and when to sell them. A couple give legal title over their new home to the bank that has given them a loan to purchase it. And so on and so forth.

In the financial markets of common law jurisdictions, ownership is often splintered by the use of a trust (or a contractual or statutory arrangement that operates similarly to a trust). An intermediary such as a custodian or a depositary holds and safekeeps the financial asset such as a bond, share or derivative on behalf of investors. As the intermediary exercises factual control over the asset, legal ownership resides with it but with the investors having beneficial rights to the asset. Should the intermediary fail in its duties for any reason, the investors rely upon principles such bankruptcy remoteness and segregation to protect their beneficial ownership (that is, the property rights) over the asset.

Bond issuances are instructive. They can be issued in either bearer or registered form. In the former case, the bond was historically represented by a physical (typically paper) instrument. The person -- the bondholder -- possessing this instrument was entitled to interest and principal. He could sell the bond by giving the instrument to another person. Mainly since the 1990s, bearer bonds have been progressively dematerialised. This means that the physical instrument is held by a custodian. Investors participate in the bond indirectly by acquiring and trading rights against the custodian through a chain of intermediaries, with their entitlements represented in account-entry records and any transfers represented by way of book entries.

As the reader is well aware, digital assets continue to grow as a financial asset class. Not all investors want to hold (or are capable of holding) digital assets themselves and would prefer others to do so on their behalf. This raises the question as to whether intermediaries can legally hold digital assets on behalf of others. Even if the answer is yes (and it is yes at least as far as English law is concerned), this then gives rise to further questions as to how intermediaries can do so, given that digital assets are data and often held on distributed ledgers, the risks emanating from intermediary default and a rapidly evolving legal landscape.

This article discusses the following:

1. whether an investor has contractual or proprietary claims following the default of its intermediary;

2. whether a trust can be used to construct an intermediary relationship for holding digital assets; and

3. the differences between omnibus and individual segregation, and the attendant risks and benefits of either model

The building blocks of digital asset custody

“Not your keys, not your coins.”

When an owner talks of having custodied his digital asset, what he usually means is that his private keys are with an intermediary. Keys are generated through the use of a string of very long, random, cryptographic characters which make them nearly impervious to replication. The public key is derived from the private key. The former is the address to which people send transactions and, indeed, any transaction can be traced to it. The latter allows the owner to initiate and authenticate transactions of his own in order to access the digital asset he has stored in his wallet on distributed ledger technology (DLT).

The owner’s wallet contains both his public and private keys and has a wallet address linked to it. It is common for the wallet address to be a cryptographically hashed version of the public key, thereby making it easier to send digital assets to and from it. A digital wallet, therefore, is not dissimilar from an actual wallet which stores objects (e.g. cash, debit and credit cards, store cards) and so allows a person to engage in transactions.

Wallets fall into one of the following three general categories:

• Hot. A hot wallet is always connected to the Internet. Whilst this makes the wallet easily accessible and so helps in permitting transactions to be executed efficiently, it also inevitably increases security threats such as hacking or phishing attacks.

• Cold. A cold wallet (also known as a hardware wallet) is a physical storage device such as a hard disk or a USB stick and so not connected to the Internet. Whilst this lowers security threats, it necessarily slows down trade execution.

• Warm. A warm wallet is a hybrid between hot and cold wallets. It is not continually connected to the Internet but can be connected when needed. It provides a greater level of security than a hot wallet since it stores private keys offline. However, it is less convenient since it requires manual intervention in order for it to be brought online.

No wallet is immune from security threats. If an owner loses his keys, he is likely to lose the corresponding digital asset. This is especially so given the pseudonymous nature of digital assets, which makes the tracing techniques used to recover traditional financial instruments far more difficult. In this regard, digital assets are very similar to traditional bearer bonds.

All this means that the management of private keys is vitally important.

Private key management

Keys can be managed in the following two ways:

1. Self (or direct) custody. The owner himself holds and is responsible for the safekeeping of his private keys. Whilst this gives the owner direct control over his digital asset, it also means he bears the attendant risks. If the owner loses access to his wallet or forgets his private keys, his digital asset will be most likely lost forever.

   Where the digital assets are held on a pooled basis, self-custody is impracticable. Furthermore, certain investor classes are mandated to appoint custodians. For instance, in the context of most fund vehicles (whether the fund vehicle itself is subject to regulation or not), a depositary is required to ensure that investors’ entitlement to their interests in the fund is properly recorded. It is expected that the use of digital assets in connection with pooled investment vehicles, both to hold the underlying property of the fund and to record the interests of investors in the fund, will be widespread.

2. Third-party custody. The owner gives his private keys to a third-party intermediary for safekeeping. For practical reasons, it is usual for the intermediary to transfer the assets to its own name and so generate new keys.

Third-party custody of digital assets has been growing in leaps and bounds. According to a report by Blockdata, the size of digital assets under custody jumped seven-fold between 2019 and 2022 from US$32 billion to US$223 billion.

Entities are offering different sorts of custodial services. Indeed, some of these services are not custody in the traditional sense but services such as the “sharding” of keys so they are held by multiple individuals for additional security. Such custody-like services can still result in some form of control (positive and/or negative) being exerted over the digital asset. As we will see later, the blurring of lines between traditional custody services and custody-like services is creating challenges for UK regulators as to the extent to which digital asset intermediaries ought to be regulated.

Third-party digital asset custody can be divided into one of the following three categories:

1. Direct custodians. These entities fit the traditional mould of intermediaries mentioned above as they exercise factual control (both positive and negative) over digital assets. They include traditional custodial banks, exchanges and digital asset managers.

2. Custodial technology services providers. These entities provide software and/or hardware devices to owners of digital assets to undertake self-custody more securely. They do not exercise positive control (which resides with the owner) but they can potentially exercise negative control. For example, an error in the programming of a wallet provider could result in the private keys being accidentally deleted or being transferred to another person.

3. Hybrid service providers. Hybrid service providers include entities who provide both direct custodial services and, separately, other technology services. This captures entities who are providing “multi-signature” (or multi-sig) services. A shared custody service is created due to the private key comprising different “shards” and different shards being capable of being shared by the owner and the service provider. The service provider is not capable of exercising unilateral positive control but it can potentially exercise negative control by, say, losing its part, or shard, of the private key.

Determining the nature of the investor’s claims against its intermediary

2022 saw high-profile failures of digital asset exchanges and lending platforms such as BlockFi, Celsius Network, FTX and Voyager Digital. FTX’s failure has raised vexing questions regarding conflicts of interest, market conduct and operational resilience. It has also demonstrated that integrated business models – currently prevalent across the ecosystem – can result in complex and sometimes reinforcing risk profiles.

Unsurprisingly, insolvency risk is receiving special attention. Were an intermediary to fail, the investor would understandably expect to extract his digital assets from the insolvent estate (subject to first discharging any outstanding liabilities owed to the intermediary and other parties). However, under English law, this ability depends on whether the investor’s relationship with his intermediary functions on a title transfer (i.e. a debtor-creditor) or proprietary basis.

In the former case, the term “custody” is misnomer as all property rights (that is, legal and beneficial title) over the digital assets are transferred by the investor to the intermediary against a contractual obligation for the intermediary to deliver equivalent digital assets to the investor. Should the intermediary fail, the investor can only claim against the intermediary for breach of this contractual obligation owed to him. In the absence of having been provided security, the investor will most likely rank as an unsecured creditor in the insolvent estate.

In the latter case, where the investor has a proprietary claim, the intermediary acts as the investor’s trustee. Since the investor’s digital assets should have been ring-fenced from the intermediary’s assets (and, where individual segregation applies, from the assets of other investors), the investor should be able to exercise its beneficial rights and have the keys transferred to it. In other words, the investor’s keys should be “bankruptcy (or “insolvency”) remote”.

The key difference, therefore, between the two intermediary relationships is whether the investor has a contractual or a proprietary claim against the intermediary in respect of the digital asset.

Although a trust is clearly more beneficial, title transfer arrangements are significantly more commonplace. They tend to be cheaper for investors due to the intermediary being given the flexibility to use the digital assets for its own purposes (e.g. by generating revenue through transaction and DLT validation activities or selling the digital assets to third parties) whilst only having an obligation to transfer the keys of equivalent digital assets to the investor at contractually pre-agreed times. In fact, title transfer arrangements may well be a necessity if the intermediary is offering market-making or prime brokerage services which require it to have full title over the digital assets.

The following issues further affect the investor’s claims against the intermediary:

1. Segregation. Whether the intermediary has in fact segregated the digital assets and, if so, whether such segregation is on an omnibus or individual basis. Where it is the latter, the investor is exposed to shortfalls in the holdings of other investors with which it shares an omnibus account (please see under “Segregation” below);

2. Sub-custodians. Whether the intermediary uses other parties (sometimes referred to as sub-custodians) to either hold or manage the keys of digital assets. As discussed above, hybrid service providers are commonplace and even direct intermediaries routinely use the services of specialist entities such as wallet or multi-sig service providers. If a sub-custodian were to lose the private keys, then clearly this would impinge upon the intermediary’s ability to return them to the investor. This is especially so if the intermediary only has a contractual (rather than a proprietary) claim of its own against the sub-custodian. In such circumstances, the investor’s proprietary claim against the intermediary would be significantly weakened in practice; and

3. Liability limitations. Whether the intermediary’s liability has been contractually limited or capped. Whilst there are certain liabilities which an intermediary cannot contract out of (e.g., losses resulting from the intermediary’s fraud), there are many others which can be watered down (e.g., losses resulting from sub-custodian default, losses resulting from hacking).

It is not unusual for the intermediary documentation to be unclear or even contradictory regarding the nature of the intermediary relationship. If a dispute between the parties arises (and assuming that English law governs the relationship), it is a matter of construction as to whether the investor has proprietary or contractual rights against the intermediary in respect of the digital assets. Unsurprisingly, in a recent paper (the “ISDA Digital Assets Bankruptcy Risks Whitepaper”) the International Swaps and Derivatives Association, Inc. (“ISDA”) recommended that parties establish at the outset the key aspects of the intermediary relationship such as its governing law, the nature of the investor’s claim and whether and how sub-custodians will be used and the sort of segregation being offered. (1)

The digital assets working group of the International Institute for the Unification of Private Law (“UNIDROIT”) in fact has recommended that an intermediary relationship should be presumed to be based on custody (in the sense of a trust) where an intermediary holds digital assets on behalf of investors, unless the contractual terms specifically contemplate a title transfer (or another form of) structure. (2) In the Law Commission’s consultation paper on digital assets (the “Law Commission Digital Assets Consultation Paper”), while it sees merit in UNIDROIT’s suggestion, the Law Commission has hesitated from recommending a law change to accommodate it due, in part, to the desire for safeguarding the diversity of custody and custody-like services that the digital asset industry offers to customers. (3)

Applying a trust to intermediary relationships

A trust relationship provides a key benefit to an investor; namely, that the keys of his digital asset should be bankruptcy remote. Furthermore, being trustees, intermediaries are subject to certain irreducible obligations, including a duty of care.

The value of these benefits naturally raises the question as to whether intermediary relationships over digital assets can be treated as trusts.

Thankfully, there is ever-increasing consensus within the legal industry that English law recognises digital assets as being the subject-matter of property rights and so capable of being held on trust. (4)

The Law Commission Digital Assets Consultation Paper summarises the following “three certainties” necessary for creating a trust under English law:

1. a clear intention by the relevant party or parties for the custodian to hold its title to specified crypto-token entitlements on trust for one or more beneficiaries (and resulting in the grant of equitable property claims in such entitlements to those beneficiaries);

2. sufficient identification of the beneficiaries that are the objects of the trust; and

3. sufficient identification of the crypto-token entitlements constituting the property interests that will be the subject matter of the trust

The Law Commission’s assessment is that digital asset intermediary relationships can satisfy these requirements. In particular, the commission has analysed Ruscoe v Cryptopia (5) where the New Zealand High Court recognised the existence of a series of trusts over digital assets held in connection with customer trading accounts (and to a limited extent the intermediary’s own trading activity) at the Cryptopia exchange. The court was satisfied that the first of the “three certainties” (i.e., certainty of intention) was established by a combination of factors, including the structure and content of the internal database maintained by Cryptopia to track client account balances, as well as the fact that Cryptopia did not intend to, and in fact never did, use digital assets held on behalf of and in support of its customers’ trading balances to engage in trading for its own account. This judgement can be contrasted from Quonine Pte Ltd v B2C2 (6) where the Singapore Court of Appeal did not recognise a trust structure in connection with customer account balances held at the Quonine exchange for a variety of reasons, including Quonine’s market-making activities, the lack of sufficient digital tokens being actually segregated and the exchange’s risk disclosures which expressly warned its customers of the substantial losses they could suffer if Quonine became insolvent.

As is demonstrated by these judgements, whether a particular arrangement with an intermediary is considered a trust depends not just on contractual terms governing that arrangement but also how it functions in practice. This only highlights the importance for investors to conduct wide-ranging due diligence before entering into a relationship with an intermediary.

Segregation

Where an arrangement with an intermediary is intended to operate as a trust, the intermediary ought to segregate the investor’s digital assets. Broadly, there are two segregation models:

1. Individual segregation. The investor’s digital assets are segregated not only from the assets of the intermediary (i.e., house assets) but also the assets of other investors; and

2. Omnibus segregation. The investor’s digital assets are segregated from house assets but pooled with the assets of other investors (or a sub-set of them).

Given the additional complexities arising by virtue of individual segregation, it is typically a more expensive model than omnibus segregation. On the other hand, it offers the investor greater protection as it is not subject to the risk of shortfall.

If done properly, segregation using either of these two models should occur not just at the level of the intermediary’s books and records but also at the intermediary’s wallet level. In other words, where an investor has opted for individual segregation, the intermediary’s books and records should identify certain digital tokens attributable to the investor. To replicate the book entry records, there should be a wallet on the relevant DLT in the intermediary’s name but recognising the investor’s beneficial entitlement to the assets held within it.

Conversely, where an investor has opted for omnibus segregation alongside a certain class of other investors, the intermediary’s books and records should identify certain digital tokens attributable to such class of investors, as well as each investor’s entitlement to the particular assets that investor owns. There should also be a wallet on the relevant DLT in the intermediary’s name but holding all the assets attributable to the class of investors. In the event that there are more claims by investors than the number or value of digital assets held in the wallet (e.g., due to the wallet being hacked and certain digital assets being lost), than any shortfalls will be shared between the relevant class investors, typically on a pro rata basis.

The UK’s and the EU’s regulatory trajectories (7)

MiCAR

In May 2023, the European Union (“EU”) passed the Markets in Crypto-Assets Regulation (8) (“MiCAR”) into law. MiCAR introduces a new regulatory framework for regulating the European crypto-asset industry. The regulation aims to protect consumers and investors and to mitigate risks to financial stability by, amongst other measures, requiring that crypto-asset service providers (“CASPs”) obtain authorisation in order to operate within the EU.

CASPs are entities which engage in services or activities pertaining to crypto-assets, including the operation of a crypto-asset trading platform, the execution of orders for crypto-assets on behalf of clients and the receiving and transmitting of orders for crypto-assets on behalf of clients. CASPs also include entities which provide custody and administration of crypto-assets on behalf of clients. The scope of these services betrays the umbilical cord linking MiCAR to MiFID II. In spite of these strong similarities, it is important to note that MiFID II only has the custody of financial instruments as an “ancillary service”. The fact that MiCAR makes this service into a standalone service requiring authorisation in its own right effectively means that the regulatory requirements to which a crypto-asset custodian is subject to are analogous to those to which, say, a depository under the Undertakings for the Collective Investment in Transferable Securities Directive (“UCITS”) and the Alternative Investment Fund Managers Directive (“AIFMD”) is subject to. Another point of departure is that MiCAR has clarified that security tokens (e.g. digital bonds, digital shares) will continue to be regulated by MiFID II on the basis that they fall within the “financial instruments” definition of that directive.

At a high level, intermediaries that are CASPs will be subject to organisational, conduct and prudential requirements. They will have to satisfy requirements in relation to governance and have clear policies regarding the safeguarding of funds, business continuity, complaint handling, management of conflicts of interest and outsourcing.

Unsurprisingly, segregation requirements feature heavily in MiCAR for those intermediaries offering custody services. Ownership of crypto-assets held by the custodian must be clear from a legal perspective, with those crypto-assets belonging to clients being legally distinct from those belonging to the custodian. From an operational perspective too, crypto-assets belonging to clients must be held separately from the custodian’s own assets to protect against creditor claims in the event of the intermediary’s insolvency. On the DLT, this separation must be clear. Despite these high-level requirements, the application of these rules by Member States is likely to vary.

Furthermore, MiCAR provides that a custodian is liable for the loss of client crypto-assets or the means for clients to access those assets (i.e. via their private keys) where such losses are caused by an event or incident within their control. Where a client suffers loss due a wallet being hacked, the intermediary will only avoid liability if it can demonstrate that its security measures and business continuity plans were of a reasonable standard and consistently maintained. MiCAR caps the intermediary’s liability to the market value of the relevant crypto-assets that are lost.

From a conduct perspective, intermediaries will be required to;

1. act honestly, fairly and professionally in accordance with the best interest of their clients and perspective clients;

2. provide information that is fair, clear and not misleading, with marketing communications clearly identified;

3. communicate clear warnings regarding risks associated with transactions in crypto-assets; and

4. meet prudential requirements, including holding certain amounts of capital in the form of either own funds or an insurance policy.

UK’s regulatory approach

The development of the UK’s approach to the regulation of digital assets is behind various other jurisdictions such as the EU, Singapore and Switzerland that have already passed into law foundational legislation or will do so in the near future.

Furthermore, the UK’s regulatory approach is somewhat fragmented as various initiatives are being run by different regulators.

In October 2023, His Majesty’s Treasury (HMT) provided its response to a consultation which it has conducted entitled “Future financial services regulatory regime for crypto-assets” (the “HMT Consultation”). The HMT Consultation provides helpful insight into the way the UK framework is likely to develop.

HMT proposes to regulate crypto-assets under the Financial Services and Markets Act 2000 (“FSMA”), as amended by the Financial Services and Markets Act 2023 (“FSMA 2023”). HMT will then be able to specify crypto-asset activities within the existing framework of the Financial Services and Markets Act 2000 (Regulated Activities) Order 2001 (“RAO”), or to designate them as part of the Designated Activities Regime (“DAR”). When such activities are carried out in relation to relevant crypto-assets, the intermediary carrying them on will be subject to regulation.

Crypto-assets will become subject to regulatory oversight through various phases, with Phase 1 focusing on fiat-based stablecoins (including their custody) and Phase 2 on other crypto-assets.

It is worthwhile to note that security tokens in digital form will continue to be regulated as “specified investments” under the RAO provided that their features mean that they are within the scope of this definition. Therefore, the existing custody rules applicable to “specified investments” will continue to apply, including the FCA’s Client Asset Sourcebook (“CASS”). (9)

As a result of this approach, intermediaries which are providing custodial services in respect of crypto-assets which constitute specified investments will need to comply with the existing requirements found in CASS. For crypto-assets that are not specified investments but nevertheless fall within the scope of the regime, new rules will be developed.

Due to this, HMT is proposing to apply and adapt Article 40 of the RAO for crypto-asset custody services, making suitable modifications to accommodate unique crypto-asset features, or putting in place new provisions where appropriate. In other words, a new regulated activity is proposed: “Safeguarding, or safeguarding and administering (or arranging the safeguarding or safeguarding and administering) of a cryptoasset other than a fiat backed stablecoin and / or means of access to a cryptoasset (e.g., a wallet or cryptographic private key)”.

This is somewhat wider than the existing Article 40 activity as it as it would capture firms that only safeguard assets (e.g., firms that solely safeguard private keys). By contrast, to fall within the existing Article 40 activity, an intermediary must both safeguard and administer specified investments.

Intermediaries conducting this new activity will need to be authorised by the FCA and, as is the case under MiCAR, will be subject to various prudential, conduct and operational resilience requirements. CASS will be used as a basis for designing bespoke custody requirements for cryptoassets. Core components of the custody provisions are expected to be the following:

1. adequate arrangements to safeguard investors’ rights to their crypto-assets (e.g. restrict commingling of investors’ assets and the firm’s own assets);

2. adequate governance and organisational arrangements to minimise risk of loss or diminution of investors’ custody assets; and

3. accurate books and records of investors’ custody assets holdings.

HMT has indicated that it intends to take a proportionate approach which would not impose full, uncapped liability on the intermediary in the event of a malfunction or hack that was not within the intermediary’s control. Whether or not the Financial Services Compensation Scheme (“FSCS”) will be applied to losses suffered by investors is not yet clear. Despite calls for HMT to legislate to extend FSCS protections to the crypto-assets held in custody, HMT has indicated that it will leave this decision to the FCA once it has considered, following a consultation.

(1) ISDA, “Navigating Bankruptcy in Digital Asset Markets: Digital Asset Intermediaries and Customer Asset Protection” dated May 2023, https://www.isda.org/2023/05/03/navigating-bankruptcy-in-digital-asset-markets-digital-asset-intermediaries-and-customer-asset-protection/

(2) UNIDROIT, “UNIDROIT PRINCIPLES ON DIGITAL ASSETS AND PRIVATE LAW” dated May 2023, https://www.unidroit.org/work-in-progress/digital-assets-and-private-law/

(3) UK Law Commission, “Digital Assets: Consultation Paper” dated 28 July 2022, https://lawcom.gov.uk/project/digital-assets/

(4) UK Jurisdictional Taskforce, “Legal Statement on Cryptoassets and Smart Contracts” dated November 2019, https://technation.io/lawtechuk-

(5) Ruscoe v Cryptopia Limited (in liquidation) [2020] NZHC 728 at [156](b)

(6) Quonine Pte Ltd v B2C2 Ltd [2020] SGCA(I) 02 at [148]

(7) NB. In this section, we have referred to digital assets as “crypto-assets” as this is the terminology used in MiCAR’s and the HMT Consultation.

(8) Regulation (EU) 2023/1114 of the European Parliament and of the Council of 31 May 2023 on markets in crypto-assets, and amending Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937

(9) The CASS provisions aim to protect investors’ rights to their assets while a firm is a going concern such that, if and when an intermediary becomes insolvent, assets are returned to investors promptly and as whole as possible.