tw-fintech-compliance

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Translation

Chinese

Taiwan Fintech Compliance

台湾金融科技合规

Framework

框架

IRON LAW: In Fintech, Regulation Comes BEFORE Product

Unlike most tech products where you can launch and iterate, financial
services in Taiwan require LICENSING FIRST. Operating without the proper
license is a criminal offense (not just a fine). Determine your regulatory
category and licensing requirements BEFORE writing code.

IRON LAW: In Fintech, Regulation Comes BEFORE Product

Unlike most tech products where you can launch and iterate, financial
services in Taiwan require LICENSING FIRST. Operating without the proper
license is a criminal offense (not just a fine). Determine your regulatory
category and licensing requirements BEFORE writing code.

FSC Regulatory Framework

FSC监管框架

金融監督管理委員會 (FSC) oversees all financial services in Taiwan:

Category	Governing Law	License Required	FSC Division
Electronic payment	電子支付機構管理條例	電子支付機構許可	Banking Bureau
Third-party payment	第三方支付服務業管理辦法	Registration (lighter)	Banking Bureau
P2P lending	金融科技發展與創新實驗條例 (sandbox) or crowd-funding rules	Case-by-case	Securities Bureau
Robo-advisory	證券投資信託及顧問法	Investment advisory license	Securities Bureau
Insurance tech	保險法	Insurance broker/agent license	Insurance Bureau
VASP (crypto)	虛擬資產服務提供者管理辦法 (2024)	VASP registration + AML compliance	Securities Bureau
Open banking	金融機構間資料共享指引	API partnership with banks	Banking Bureau

**金融监督管理委员会（FSC）**负责监管台湾所有金融服务：

类别	适用法规	所需许可	FSC主管部门
电子支付	《电子支付机构管理条例》	电子支付机构许可	银行局
第三方支付	《第三方支付服务业管理办法》	注册备案（要求较低）	银行局
P2P借贷	《金融科技发展与创新实验条例》（沙盒）或众筹规则	视个案而定	证券局
智能投顾	《证券投资信托及顾问法》	投资顾问许可	证券局
保险科技	《保险法》	保险经纪/代理许可	保险局
VASP（加密货币）	《虚拟资产服务提供者管理办法》（2024）	VASP注册备案 + AML合规	证券局
开放银行	《金融机构间资料共享指引》	与银行达成API合作	银行局

Electronic Payment vs Third-Party Payment

电子支付 vs 第三方支付

Feature	Electronic Payment (電子支付)	Third-Party Payment (第三方支付)
Stored value	Yes (e-wallet)	No (pass-through only)
P2P transfer	Yes	No
Capital requirement	NT$500M+	NT$5M
License	FSC approval (12-18 months)	Registration (1-3 months)
Examples	LINE Pay Money, JKoPay, icash Pay	綠界 ECPay, 藍新 NewebPay

特性	电子支付	第三方支付
储值功能	是（电子钱包）	否（仅资金中转）
P2P转账	是	否
资本金要求	新台币5亿以上	新台币500万
许可要求	FSC审批（12-18个月）	注册备案（1-3个月）
示例	LINE Pay Money、JKoPay、icash Pay	绿界ECPay、蓝新NewebPay

VASP (Crypto) Regulations (2024+)

VASP（加密货币）监管规则（2024年起）

Requirement	Detail
Registration	Must register with FSC as VASP
AML/CFT	Full compliance with 洗錢防制法
KYC	Identity verification for all users
Custody	Customer asset segregation required
Marketing	Restrictions on advertising (no promises of returns)
Reporting	Suspicious transaction reports (STR) to 調查局

要求	详情
注册备案	必须向FSC注册为VASP
反洗钱/反恐怖融资	完全符合《洗钱防制法》
KYC要求	对所有用户进行身份验证
资产托管	需对客户资产进行隔离托管
营销限制	广告受限（不得承诺收益）
报告义务	向调查局提交可疑交易报告（STR）

AML/KYC Requirements (All Financial Services)

适用于所有金融服务的AML/KYC要求

KYC Level	When Required	Data Collected
Simplified	Low-risk, small transactions	Name, ID number, DOB
Standard	Account opening, most transactions	+ Address, occupation, source of funds
Enhanced	High-risk customers, PEPs, large transactions	+ Detailed source of wealth, ongoing monitoring

Ongoing obligations:

Transaction monitoring (unusual patterns)
Suspicious Transaction Reports (STR) to 法務部調查局
Sanctions screening (OFAC, UN, EU lists)
Record keeping: 5+ years after account closure

KYC等级	适用场景	收集资料
简化级	低风险、小额交易	姓名、身份证号、出生日期
标准级	开户、大多数交易	+ 地址、职业、资金来源
增强级	高风险客户、政治公众人物（PEP）、大额交易	+ 详细资产来源、持续监控

持续合规义务：

交易监控（识别异常模式）
向法务部调查局提交可疑交易报告（STR）
制裁名单筛查（OFAC、联合国、欧盟名单）
记录保存：账户关闭后需保留5年以上

Regulatory Sandbox (金融科技創新實驗)

监管沙盒（金融科技创新实验）

Aspect	Detail
Purpose	Test innovative financial services without full licensing
Duration	Up to 18 months (extendable to 36)
Application	Submit to FSC with: innovation description, consumer protection plan, risk assessment
Approval time	60 business days
Scope limitation	Must define user count, transaction limits, geographic scope
Exit plan	Path to full license or orderly shutdown

方面	详情
目的	无需完整许可即可测试创新金融服务
时长	最长18个月（可延长至36个月）
申请方式	向FSC提交以下材料：创新方案说明、消费者保护计划、风险评估报告
审批时长	60个工作日
范围限制	必须明确用户数量、交易限额、地域范围
退出方案	获取完整许可或有序终止运营的路径

Open Banking (Three Phases)

开放银行（三个阶段）

Phase	Data Shared	Status
Phase 1	Product information (rates, fees)	Launched 2019
Phase 2	Customer information (with consent)	Launched 2021
Phase 3	Transaction initiation (payment, transfer)	In development

阶段	共享数据	状态
第一阶段	产品信息（利率、手续费）	2019年已上线
第二阶段	客户信息（需经同意）	2021年已上线
第三阶段	交易发起（支付、转账）	开发中

Output Format

输出格式

markdown

undefined

markdown

undefined

Fintech Compliance Assessment: {Product}

Product Classification

Service type: {payment / lending / advisory / crypto / insurance}
Regulatory category: {electronic payment / third-party / VASP / etc.}
License required: {specific license name}

Service type: {payment / lending / advisory / crypto / insurance}
Regulatory category: {electronic payment / third-party / VASP / etc.}
License required: {specific license name}

Licensing Pathway

Step	Action	Timeline	Cost
1	{step}	{months}	NT${X}

Step	Action	Timeline	Cost
1	{step}	{months}	NT${X}

AML/KYC Requirements

KYC level: {simplified / standard / enhanced}
Transaction monitoring: {required / not required}
STR reporting: {required / not required}

KYC level: {simplified / standard / enhanced}
Transaction monitoring: {required / not required}
STR reporting: {required / not required}

Key Risks

Risk	Impact	Mitigation
{regulatory risk}	H/M/L	{action}

Risk	Impact	Mitigation
{regulatory risk}	H/M/L	{action}

Recommendation

Proceed with licensing / Use sandbox / Restructure product to avoid licensing

undefined

Proceed with licensing / Use sandbox / Restructure product to avoid licensing

undefined

Gotchas

注意事项

Third-party vs electronic payment: The distinction is stored value. If your app holds customer money (e-wallet), you need the much heavier electronic payment license (NT$500M capital). If you just process payments (pass money from buyer to seller), third-party registration is sufficient.
Sandbox is not a shortcut: The sandbox exempts you from licensing temporarily, but you must still comply with AML, consumer protection, and data privacy. And you still need to get a full license to commercialize.
VASP regulation is new and evolving: The 2024 VASP rules are Taiwan's first comprehensive crypto regulation. Expect amendments and additional guidance. Build compliance infrastructure that's adaptable.
Foreign fintech entering Taiwan: Foreign companies must establish a Taiwan entity and obtain Taiwan-specific licenses. A license in another jurisdiction does not transfer.
This is educational guidance, not legal/regulatory advice: Fintech regulation is complex and penalties for non-compliance include criminal charges. Engage a regulatory affairs lawyer specializing in Taiwan financial services.

第三方支付与电子支付的区别：核心在于是否具备储值功能。若您的应用持有客户资金（电子钱包），则需办理要求更高的电子支付许可（需新台币5亿资本金）；若仅处理资金中转（从买家到卖家），则第三方支付注册备案即可满足要求。
监管沙盒并非捷径：沙盒仅能暂时豁免许可要求，但仍需遵守AML、消费者保护及数据隐私相关规定；若要商业化运营，仍需获取完整许可。
VASP监管规则仍在发展：2024年出台的VASP规则是台湾首部全面的加密货币监管法规，未来可能会有修订及补充指引，需搭建具备适应性的合规架构。
境外金融科技企业进入台湾：境外企业必须在台湾设立实体，并获取台湾专属许可；其他地区的许可无法直接通用。
本内容为教育性指引，非法律/监管建议：金融科技监管体系复杂，违规处罚包括刑事指控，建议聘请专注于台湾金融服务领域的监管事务律师。

References

参考资料

For FSC licensing application guides, see
```
references/fsc-licensing.md
```
For AML/KYC implementation checklist, see
```
references/aml-kyc-checklist.md
```

如需FSC许可申请指南，请查看
```
references/fsc-licensing.md
```
如需AML/KYC实施清单，请查看
```
references/aml-kyc-checklist.md
```