Obtain an FCA Licence with The Payment Practice
Obtaining authorisation or registration from the Financial Conduct Authority (FCA) requires firms to demonstrate—at the point of application—that they meet all applicable threshold conditions and can operate compliantly on an ongoing basis.
The Payment Practice provides end-to-end support across the entire FCA application lifecycle, including regulatory scoping, preparation of all required documentation, access to the FCA application portal, direct engagement with the regulator, and interview readiness.
We advise on five core application types.
Payment Institution licences enable firms to provide regulated payment services such as money remittance, deliverable FX, merchant acquiring, payment processing and bill payments.
Unlike Electronic Money Institutions, Payment Institutions cannot store funds indefinitely. Any funds they come into contact with must be accompanied by a payment instruction and moved without undue delay.
Firms can operate under one of two regimes, depending on their scale, complexity and growth ambitions:
- Small Payment Institution (SPI); or
- Authorised Payment Institution (API),
Small Payment Institutions are registered with the FCA rather than fully authorised. They operate under a simplified regulatory framework, with transaction volume limits and lighter supervisory requirements. This route is typically suited to early-stage firms or UK-focused businesses with lower volumes. While there is no prescribed minimum capital requirement, firms must still demonstrate that they have appropriate systems and controls in place which are proportionate to their business model, including, anti-money laundering , governance and oversight frameworks and risk management policies and procedures
Authorised Payment Institutions are fully authorised by the FCA and operate without transaction limits. They are subject to the full regulatory framework, including capital requirements, safeguarding, governance, conduct requirements and operational resilience.
This model is designed for firms looking to scale, operate internationally or offer more complex services such as merchant acquiring. Initial capital requirements apply and vary depending on the specific payment services being provided.
Electronic money institution licences enable firms to provide services such as prepaid cards, digital wallets, stored-value products and e-money accounts. These firms can hold into customer funds indefinitely.
Firms can operate under one of two regimes, depending on their scale, complexity and growth ambitions:
- Small Electronic Money Institution (SEMI); or
- Authorised Electronic Money Institution (AEMI),
Small Electronic Money Institutions are registered rather than authorised. They operate under a simplified regulatory framework, with issuance and transaction volume limits and lighter supervisory requirements. This route is typically suited to pilot programmes or those operating at a smaller scale. While there is no prescribed minimum capital requirement, firms must still demonstrate that they have appropriate systems and controls in place which are proportionate to their business model, including anti-money laundering, governance and oversight frameworks and risk management policies and procedures.
Authorised Electronic Money Institutions are fully authorised by the FCA and operate without issuance limits. They are subject to the full regulatory framework, including capital requirements, safeguarding, governance, conduct requirements and operational resilience. This model is designed for firms looking to scale, operate internationally or deliver full e-money or card programmes. AEMI firms are subject to a minimum initial capital requirement of €350,000, along with ongoing own-funds requirements linked to e-money issuance volumes.
Open banking permissions are used by firms providing account information services and payment initiation services, allowing access to customer bank accounts via APIs rather than holding or issuing funds.
For open banking, firms may apply for either:
- Account Information Services (AIS); or
- Payment initiation services (PIS); or
- A combination of both.
AIS firms access customer account data with consent but do not initiate payments or hold funds. There is no minimum capital requirement for AIS firms, but they must hold appropriate professional indemnity insurance and demonstrate strong data security, governance and operational resilience.
PIS firms initiate payments directly from customer bank accounts but must not hold client funds. PIS authorisation is required, with a minimum initial capital requirement of €50,000, alongside mandatory professional indemnity insurance calculated in line with regulatory formulas. PIS firms are subject to a higher level of supervisory scrutiny than AIS-only providers.your sales goals.
Cryptoasset firms registered under the Money Laundering Regulations (MLRs) are permitted to carry on activities such as cryptoasset exchange services, custody wallet provision and facilitating the transfer of cryptoassets.
These firms are supervised by the FCA for anti-money laundering, counter-terrorist financing and financial sanctions compliance only. To obtain registration, firms must demonstrate a clear understanding of the risks associated with their business model and show that they have robust, tailored systems and controls in place which are proportionate to their activities, including:
- A business-wide risk assessment (BWRA) that clearly identifies and mitigates crypto-specific risks, including money laundering, terrorist financing and proliferation financing
- Anti-money laundering (AML) and financial crime controls, including customer due diligence, ongoing monitoring and suspicious activity reporting
- Blockchain analytics and transaction monitoring capabilities appropriate to the firm’s risk exposure
- Governance and oversight frameworks, including a clearly defined MLRO / nominated officer with appropriate seniority and independence
- Risk management policies and procedures tailored specifically to cryptoasset activities (not generic or group-level only)
- Travel Rule compliance, including the ability to collect, verify and transmit originator and beneficiary information with supporting systems and data flows
- Outsourcing oversight arrangements, ensuring the firm retains full responsibility and can evidence ongoing monitoring and testing of third-party providers
- Financial promotions controls to ensure communications are fair, clear and not misleading
Firms must also demonstrate that their control framework is scalable and will remain effective as the business grows, with clear plans for ongoing development and enhancement.
Registered cryptoasset firms are subject to ongoing supervisory engagement with the FCA and are expected to maintain effective systems and controls throughout their lifecycle. Registration is not a one-off exercise and firms must continue to meet the requirements of the MLRs on an ongoing basis.
Type 5: Crypto Authorisation (FSMA - 2027)
Cryptoasset firms will shortly be required to obtain authorisation under the Financial Services and Markets Act as part of the UK’s new regulatory regime for cryptoassets.This regime brings crypto firms into the full scope of FCA regulation, moving beyond the current Money Laundering Regulations framework and introducing requirements across prudential, safeguarding, governance, conduct and operational resilience.
Firms seeking authorisation must apply through the FCA’s gateway. The FCA expects firms to be “ready, willing and organised” at the point of application, meaning that documentation must be final, tailored to the business model and supported by clear evidence. Applications which do not meet this standard may be rejected without detailed review.
Firms must demonstrate a clear understanding of their business model and associated risks, and show that they have robust systems and controls in place which are proportionate to their activities, including:
- A fully developed regulatory business plan, including customer journeys, flow of funds and revenue model
- A clearly defined governance structure, with appropriately experienced senior management and oversight
- Prudential and financial resource models, including capital, liquidity and wind-down planning
- A comprehensive financial crime framework, including AML, sanctions and transaction monitoring controls
- A defined custody and safeguarding model, including wallet architecture, key management and client asset protections
- Operational resilience arrangements, including identification of important business services and scenario testing
- Outsourcing and third-party oversight, with clear accountability retained by the firm
- Systems and controls that are fully operational and evidenced, not draft or theoretical
The FCA has made clear that this is not a paper-based exercise. Firms must demonstrate that their controls are implemented, tested and capable of operating effectively from day one of authorisation, or have a credible and evidenced plan to be fully ready when the regime goes live.
The application window is expected to open in September 2026, with the new regime coming into force in October 2027. Firms should begin preparation well in advance, given the depth and quality of information required and the FCA’s scrutiny of applications.
How The Payment Practice supports Applicant Firms
The FCA application process is comprehensive and evidence-driven. Firms are expected to demonstrate, at the point of application, that they meet the relevant threshold conditions and are operationally ready to carry on regulated activities on an ongoing basis.
This goes well beyond completing an application form. Applicants are required to provide detailed information covering:
- Business model and programme of operations
- Customer journeys, transaction flows and flow of funds
- Governance and management arrangements
- Financial crime controls
- Safeguarding of client funds (where applicable)
- Financial resources, forecasts and wind-down planning
- Operational resilience, IT and data security
- Outsourcing arrangements and third-party dependencies
- Suitability of directors and senior management
The FCA will typically engage with firms throughout the process, issuing follow-up questions and, in many cases, requiring meetings or interviews before reaching a decision.
Our role is to guide firms through this process in a structured and proportionate way.
We support firms across the full lifecycle of an application, including:
- Identifying the appropriate licence or permissions based on your business model, growth plans and geographic footprint, including regulatory perimeter analysis and assessment of small vs fully authorised regimes
- Securing and managing access to the FCA application portal, ensuring submissions are complete, correctly structured and aligned to FCA expectations
- Preparing all application materials and supporting documentation, including programme of operations, regulatory policies and procedures, governance frameworks, risk assessments and financial models
- Designing safeguarding frameworks where required, and introducing appropriate safeguarding account providers and liquidity partners aligned to your operating model
- Managing ongoing engagement with the FCA, including responding to information requests and supervisory queries clearly and consistently
- Preparing directors and senior managers for FCA meetings and interviews, ensuring they can confidently articulate the business model, risks, controls and governance arrangements
- Supporting FCA PASS (pre-application support) engagement to improve application quality and readiness
- Assisting with broader framework build-out, including sourcing key personnel, systems, banking and liquidity providers, and supporting access to card schemes where required
Our focus is on ensuring applications are well-structured, credible and regulator-ready, reducing delays and enabling firms to enter the market on a compliant and sustainable footing.
After you submit this form, we’ll respond by email in the first instance.
Please check your spam/junk folder just in case, as automated filters can occasionally misroute messages.
If we haven’t been able to reach you by email, we’ll follow up with a phone call.
The Payment Practice
Hours
Mon | 09:00 – 17:00 | |
Tue | 09:00 – 17:00 | |
Wed | 09:00 – 17:00 | |
Thu | 09:00 – 17:00 | |
Fri | 09:00 – 17:00 | |
Sat | Closed | |
Sun | Closed |
- Home
- About Us
- Newsletters and Blogs
- FCA Licence Applications
- Variation of Permissions
- Exclusions
- Safeguarding Audit
- Safeguarding Accounts
- AML Audits
- PSR & EMR Compliance
- Ongoing Support
- Agent & PF Oversight
- FCA Remediation Support
- Business Lending Support
- Contact Us
- Privacy & Cookies Policy
- CASS Safeguarding Review
The Payment Practice