EU AML Package: Regulation (EU) 2024/1624 and Directive (EU) 2024/1640

Regulation (EU) 2024/1624 (the Anti-Money Laundering Regulation, or AMLR) and Directive (EU) 2024/1640 (AMLD6) form the main private-sector rulebook and Member State mechanism layer of the European Union’s 2024 AML/CFT package. Both acts were published in the Official Journal on June 19, 2024 and are listed by EUR-Lex as in force. The AMLR enters the compliance calendar through a later application date: most provisions apply from July 10, 2027, while specified categories of obliged entities are deferred to July 10, 2029. AMLD6 also has a main transposition deadline of July 10, 2027, with separate deadlines for selected beneficial-ownership and real-estate access provisions.

EU AML Package overview for crypto and financial services

The package moves much of the EU’s preventive AML/CFT framework from directive-based national implementation toward a single, directly applicable regulation for obliged entities. The AMLR is designed to harmonize private-sector requirements across the internal market, including customer due diligence, beneficial ownership checks, internal controls, enhanced due diligence, reporting duties and restrictions relevant to high-risk relationships. AMLD6 sits beside the AMLR by requiring Member States to maintain national AML/CFT architecture, including risk assessments, supervisors, financial intelligence units, beneficial ownership registers, bank account registers and cooperation channels.

For crypto markets, the AMLR ties the AML framework to definitions in the Markets in Crypto-Assets Regulation and the Transfer of Funds Regulation. Crypto-asset service providers are treated as financial obliged entities, meaning the AMLR framework is expected to apply to CASPs that provide covered crypto-asset services. This profile should be read with related CryptoSlate law profiles for MiCA, the Transfer of Funds Regulation and the AMLA Regulation.

Key provisions affecting crypto-asset service providers

• CASP coverage: The AMLR includes crypto-asset service providers within the definition of financial institutions, alongside credit institutions, payment firms, investment firms and other financial-sector entities.
• Customer due diligence: CASPs must apply customer due diligence when carrying out occasional transactions of at least EUR 1,000, and must apply at least identification-related CDD measures for below-threshold occasional transactions.
• Self-hosted-address risk controls: CASPs must identify and assess money laundering and terrorist financing risks linked to transfers to or from self-hosted addresses and apply risk-based mitigating measures.
• Correspondent crypto relationships: The AMLR includes enhanced due diligence rules for cross-border correspondent relationships involving crypto-asset services with non-EU respondent entities.
• Member State data infrastructure: AMLD6 requires national mechanisms that include access to beneficial ownership registers and automated systems covering bank, payment, securities, crypto-asset accounts and safe-deposit boxes.

Status, dates and implementation timeline

The two acts are not merely proposals. EUR-Lex records both as legal acts with an in-force status. Because publication occurred on June 19, 2024 and both acts enter into force on the twentieth day after publication, the entry-into-force date is July 9, 2024. The most important operational date for most AMLR obligations and AMLD6 national implementation is July 10, 2027.

AMLD6 repeals Directive (EU) 2015/849 with effect from July 10, 2027, with references to the repealed directive construed as references to AMLD6 and the AMLR. It also sets staggered transposition dates: Article 74 by July 10, 2025; Articles 11, 12, 13 and 15 by July 10, 2026; the main directive by July 10, 2027; and Article 18 by July 10, 2029. The AMLR likewise has a July 10, 2029 application date for the categories identified in Article 3, points (3)(n) and (o).

Editorial framing

For a crypto-law reference profile, the EU AML Package should be framed as an AML/CFT compliance and supervisory framework rather than a market-access statute. It does not replace MiCA’s authorization regime for crypto-asset service providers, and it should not be described as legal advice on how a CASP should comply. The durable crypto relevance is that the AMLR places CASPs inside a harmonized EU AML rulebook while AMLD6 builds the national supervisory, FIU and registry infrastructure that supports enforcement and information access across Member States.