Brazil has added audit requirements for Virtual Asset Service Providers (VASPs). The move comes as the US government declared Brazil’s gangs as global terrorist organizations. Separately, Mexico and the European Union are exploring ways to target crypto money laundering on a global scale.
What Brazilian VASPs must do now
Brazil’s new rules mean every VASP operating in the country now has to submit to an audit. The details of the audit—scope, frequency, who conducts it—haven't been spelled out in the public record yet. What’s clear is that Brazil is tightening oversight on crypto firms just as the US tightens its own financial screws on local gangs.
Why the US terrorism designation matters
By labeling Brazil’s gangs as global terrorist organizations, the US government opens up a new set of financial tools. American banks and exchanges will have to screen for ties to those groups. That includes crypto transactions. The audit requirement in Brazil doesn't directly enforce US law, but it gives Brazilian regulators a better view of who's moving money—and whether any of it ends up on a US watch list.
Mexico and the EU join the push
Mexico and the European Union are exploring opportunities to target crypto money laundering on a global scale. Neither has announced specific rules yet. But the fact that they're looking—together—signals that the patchwork of national regulations may start to converge. For crypto firms operating across borders, that means more compliance headaches ahead.
What’s still unresolved is how these overlapping regimes will be enforced. Brazil’s audit rules are in place now. The US terrorist designation is in effect. Mexico and the EU are still in the exploration phase. The next concrete step will likely be a joint statement or a set of shared guidelines—but nothing’s been scheduled yet.
