Home Corporate Services FinTech Licensing P2P Lending Licence
Last updated: April 2026
FinTech Licensing · P2P Lending · EU ECSPR · UK FCA · MAS

P2P Lending Licence

Litecoin bitcoin coins laptop chart — P2P Lending Licence

Peer-to-peer lending platforms connect borrowers and investors directly, bypassing traditional banks. Operating a P2P lending marketplace requires specific regulatory authorisation in every market you serve — from the EU's pan-European ECSPR framework to UK FCA authorisation, US SEC registration, and Singapore MAS CMS licencing. We guide you through every step.

EU ECSPR
pan-EU P2P passport
UK FCA
loan-based crowdfunding
MAS CMS
Singapore P2P
6–18 mo
typical timeline
At a Glance
EU frameworkECSPR (crowdfunding reg)
UKFCA P2P platform auth
USASEC + state licences
SingaporeMAS CMS licence
Timeline6–18 months
Lucerne aerial view swiss flag — P2P Lending Licence
Overview

What a P2P Lending Licence Covers

A P2P lending (peer-to-peer lending) platform facilitates direct loans between individual or institutional investors (lenders) and borrowers, without the intermediary role of a traditional bank. The platform earns revenue through origination fees, servicing fees, or a spread between borrowing and lending rates. P2P lending platforms range from consumer credit marketplaces to SME business loan platforms and property-backed lending portals.

Regulatory requirements for P2P lending platforms vary significantly by jurisdiction. In the EU, the European Crowdfunding Service Providers Regulation (ECSPR) creates a single pan-European framework covering both loan-based and investment-based crowdfunding platforms, allowing authorised platforms to operate across all 27 EU member states with a single licence. In the UK, FCA authorisation as a loan-based crowdfunding platform is required. In the US, the SEC regulates the investment side of P2P lending (notes offered to investors are securities) while state lending licences may be required for the lending side.

P2P lending platforms must address both sides of their two-sided market in their compliance programme: investor protections (risk disclosures, appropriateness assessments, investment limits for retail investors), borrower protections (fair lending, credit assessment, responsible lending policies), and operational requirements (wind-down plans, escrow arrangements, AML/KYC for both investors and borrowers).

EU Framework

EU Crowdfunding Regulation (ECSPR)

The European Crowdfunding Service Providers Regulation (ECSPR, EU 2020/1503) has been in force since November 2021 and applies fully since November 2023. It creates a harmonised framework for both lending-based and investment-based crowdfunding across the EU, replacing the fragmented national frameworks that previously applied.

Under ECSPR, a Crowdfunding Service Provider (CSP) can obtain a single authorisation from their home member state National Competent Authority (NCA) and passport this to all 27 EU member states. The €5 million per project per 12-month threshold is key: offers above this threshold are excluded from ECSPR and must comply with MiFID II and the Prospectus Regulation instead.

ECSPR requires: minimum own funds of €25,000 (rising to 0.25% of the loan book up to €1M); business continuity plan; wind-down plan; disclosure of key investment information sheets (KIIS) for each project; appropriateness assessment for retail investors; and a cap of €1,000 per project per year for non-sophisticated retail investors unless they complete an appropriateness assessment and are warned of risk.

Global Framework Comparison

P2P Lending Regulation by Jurisdiction

JurisdictionFrameworkRegulatorMin CapitalTimeline
EUECSPR — pan-EU passportHome NCA (e.g., AFM, BaFin)€25,0003–6 months
UKFCA Loan-Based CrowdfundingFCA£50,00012–24 months
USASEC registration + state licencesSEC + state regulatorsNone specified6–18 months
SingaporeMAS CMS Licence (P2P lending)MASSGD 250,0006–12 months
AustraliaASIC Credit LicenceASICAUD 5,0004–8 months
UAE (ADGM)ADGM FSRA Lending CrowdfundingFSRAUSD 250,0004–8 months
Crypto-Native P2P Lending

DeFi Lending: Regulatory Status

DeFi (Decentralised Finance) lending protocols — such as Aave, Compound, and MakerDAO — operate as automated smart contract systems that enable crypto-collateralised lending without a centralised intermediary. Users deposit crypto as collateral and borrow against it, or supply assets to earn yield from borrowers. There is no traditional P2P lender-borrower matching; all positions are managed algorithmically.

From a regulatory standpoint, DeFi lending protocols exist in a grey area. They do not have a legal entity that can hold a P2P lending licence. They do not originate consumer credit. Most regulators have not yet issued formal guidance applying traditional P2P lending frameworks to fully decentralised protocols. However, this is changing rapidly.

The EU MiCA regulation (2024) explicitly excludes fully decentralised protocols from its scope but covers any person providing services based on DeFi protocols. Front-end operators, DAO governance token holders with significant influence, and any centralised entity facilitating DeFi access may face regulatory scrutiny. The SEC in the US has pursued enforcement actions against DeFi platforms on the basis that the protocols' governance tokens are unregistered securities.

Centralised P2P crypto lending (platforms like BlockFi and Celsius, now both bankrupt) operated differently — they took crypto deposits and lent to institutional borrowers, acting as a bank-like entity without banking licences. This model is now subject to SEC enforcement and state securities regulation in the US.

◆ MARKET LANDSCAPE

P2P Lending Adoption & Regulatory Scale

€8.2B
EU P2P Market Volume (2026)
27
ECSPR Member States
18–24 months
ECSPR License Timeline
€50K–€150K
Minimum Capital Requirement (ECSPR)
42%
Annual Regulatory Compliance Cost Growth
6
Key Regulatory Jurisdictions (CH, EU, UK, SG, US, AUS)
◆ LICENSING COSTS

P2P Lending License Cost Breakdown (2026)

ECSPR License Application & Review
EU regulatory filing, documentation, competent authority assessment
€18,000–€32,000
Compliance & Legal Infrastructure Setup
AML/KYC systems, data protection, borrower/lender agreements, T&Cs
€24,000–€48,000
Initial Capital Deposit (ECSPR Requirement)
Minimum €50K–€150K depending on jurisdiction and loan volume projection
€50,000–€150,000
Financial & Operational Systems Implementation
Loan origination system, settlement, portfolio reporting, investor dashboards
€32,000–€65,000
Insurance & Professional Services
D&O liability, fraud/cybersecurity insurance, auditor engagement, legal counsel
€16,000–€28,000
First Year Annual Compliance & Supervision
Ongoing regulatory reporting, audit, risk management, staff training
€22,000–€42,000
Total Year 1 Cost
Single-jurisdiction EU launch (ECSPR)
€162,000–€365,000
FAQ

Frequently Asked Questions

In the EU, P2P lending platforms require authorisation under the European Crowdfunding Service Providers Regulation (ECSPR, EU 2020/1503). This applies to platforms facilitating loans up to €5M per project per year. Authorisation is granted by the home member state NCA and provides a pan-EU passport for cross-border operation across all 27 member states.
Yes. UK P2P lending platforms require FCA authorisation as loan-based crowdfunding platforms under the Financial Services and Markets Act. The FCA's rules include wind-down plans, investor disclosures, appropriateness assessments for retail investors, and minimum capital of £50,000. EU ECSPR passporting no longer applies to the UK post-Brexit — UK-authorised platforms cannot passport into the EU and vice versa.
The ECSPR applies to crowdfunding offers up to €5 million per project per 12 months. Offers exceeding this amount fall outside ECSPR and must comply with MiFID II or the Prospectus Regulation instead. For most early-stage P2P platforms targeting SME borrowers, the €5M cap per project is sufficient. Platforms exceeding this threshold need to restructure their offering under MiFID II.
DeFi lending protocols (Aave, Compound, MakerDAO) operate in a regulatory grey area. They lack a legal entity that can hold a P2P licence. However, the EU MiCA regulation covers persons providing services based on DeFi protocols, and the SEC has pursued enforcement against DeFi platforms. Front-end operators and governance token holders with significant control may face regulatory scrutiny. This area is evolving rapidly in 2024–2026.
Capital requirements vary by jurisdiction: EU ECSPR requires €25,000 minimum own funds (rising to 0.25% of total loan book value, capped at €1M). UK FCA P2P lending requires £50,000. Singapore MAS CMS requires SGD 250,000 base capital. UAE ADGM requires USD 250,000. US SEC registration for investment advisers has no statutory capital minimum, but state money transmission licences may require surety bonds.
License application fees range from CHF 5,000 to CHF 15,000 depending on the canton, with additional legal and compliance consulting costs typically between CHF 20,000 and CHF 50,000. Annual regulatory fees and supervision costs average CHF 8,000 to CHF 25,000 per year. Total first-year costs generally fall between CHF 40,000 and CHF 90,000 before operational expenses.
In Switzerland, the application review typically takes 3 to 6 months after submission of a complete application package to FINMA or the cantonal authority. If deficiencies are identified, the timeline can extend to 9-12 months. In the EU under the ECSPR, approval timelines range from 4 to 8 weeks for standard applications as of 2026.
You must establish a relationship with a Swiss or EU bank that will hold client funds in segregated accounts, as direct access to central bank accounts is not available to P2P operators. Most platforms require a dedicated business account with monthly reconciliation and compliance reporting. Banks may charge between CHF 3,000 and CHF 10,000 annually for P2P-specific banking services.
Yes, Swiss and EU-regulated P2P platforms must undergo mandatory AML audits annually, with external auditors reviewing transaction monitoring systems, customer due diligence processes, and suspicious activity reporting. Non-compliance can result in fines up to CHF 1 million in Switzerland or EUR 10 million in the EU. First-time audit costs typically range from CHF 15,000 to CHF 40,000.
Required documents include a detailed business plan, risk management framework, AML/KYC policies, IT security assessment, organizational chart with CVs of key personnel, financial projections for 3 years, shareholder information, and proof of adequate capital. For FINMA applications in 2026, you must also submit a cybersecurity incident response plan and consumer dispute resolution procedures.
A P2P lending license under ECSPR or Swiss regulation requires significantly lower capital reserves (EUR 50,000 to EUR 500,000 versus EUR 1 million minimum for banks) and simpler operational requirements. However, P2P platforms still face stringent consumer protection, AML, and conduct-of-business rules similar to banks. The key difference is that P2P platforms cannot take customer deposits, limiting their operational scope.
P2P lending companies in Zug benefit from preferential cantonal corporate tax rates of approximately 11.6% combined federal and cantonal rates. Interest income and transaction fees are fully taxable, while operating costs and loan loss provisions are deductible. You should file annual tax returns with the Zug tax authority and maintain detailed records of all lending transactions for audit purposes.

P2P Lending Licence Consultation

We help P2P lending platforms navigate EU ECSPR, UK FCA, MAS, and other frameworks to launch legally and scale globally.

Get a Quote →
Quick Reference
EU frameworkECSPR
EU min capital€25,000
UK min capital£50,000
SG min capitalSGD 250,000
EU timeline3–6 months
Practitioner Insight

Practical Licensing Insight

Based on CryptoLicenses.net consulting data, 2024-2026

MH
Dr. Marcus Hartmann
Senior Licensing Consultant · LL.M. International Financial Law
22 years in financial services regulation. Advised 400+ crypto licensing mandates across 60+ jurisdictions. Based in Zug, Switzerland.
Free Consultation

Ready to Get Licensed?

Tell us about your project and we'll identify the right jurisdiction, outline the requirements, and give you a realistic cost estimate — at no charge.

  • 🇨🇭 Swiss-registered firm, Zug
  • ⚡ Response within a few hours
  • 🔒 Strictly confidential
  • ✓ 80+ jurisdictions covered

Confidential · No obligation · No spam