Financial institutions adopt stricter monitoring than crypto exchanges
A notable gap persists between direct and indirect monitoring, with indirect exposure often subject to far higher alerting thresholds across key risk categories.
A Chainalysis analysis of crypto compliance monitoring shows that transaction surveillance standards across financial institutions and crypto firms have tightened significantly since 2020.
The report says nearly half of organisations onboarded in 2026 now operate at alerting standards that would have placed them among the top 10% for alerting strictness in 2020. Chainalysis said newer entrants are launching with more aggressive Know Your Transaction monitoring configurations, reflecting the maturation of digital asset compliance frameworks.
According to the analysis, traditional financial institutions generally apply stricter detection thresholds than crypto exchanges. Financial institutions set lower dollar-detection floors for both illicit and non-illicit categories, meaning they are alerted for smaller sums and apply a more conservative monitoring approach.
The gap is particularly visible in indirect exposure to non-illicit flows. Chainalysis said crypto exchanges set average alerting minimums of USD 950, compared with USD 150 for traditional financial institutions. For illicit funds, both groups apply tighter thresholds, with exchanges setting alerts from USD 100 and financial institutions from USD 55.
The report also highlights a persistent gap between direct and indirect exposure monitoring. Direct exposure refers to funds arriving immediately from a known illicit source, while indirect exposure covers funds that pass through intermediary addresses before arriving at the final destination. Chainalysis said direct monitoring has become more standardised, but indirect exposure thresholds often remain 10 to 20 times higher than direct thresholds in categories such as ransomware, fraud shops, scams, darknet markets, and sanctioned jurisdictions.
Regional differences also remain. Chainalysis said direct exposure monitoring is broadly uniform across regions, while indirect exposure thresholds vary more significantly. EMEA organisations generally apply the strictest and most concentrated thresholds, while APAC organisations show more lenient and varied configurations.
Chainalysis said the findings show a compliance sector in transition, with stronger direct exposure monitoring but continuing inconsistency in how organisations treat indirect risk.
Why does it matter?
The findings point to a maturing crypto compliance environment, especially as traditional financial institutions expand into digital assets. However, the persistent gap in indirect exposure shows that illicit actors may still find room to exploit inconsistent monitoring practices. As funds move through intermediary wallets and cross-regional networks, calibration of indirect risk controls is becoming a key issue for regulatory defensibility, counterparty due diligence, and institutional trust in digital asset markets.
Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our chatbot!