Home/Services/Application for Authorisation

01 · Licensing & Authorisation

Application for Authorisation

End-to-end guidance through the regulatory application process — from readiness assessment and business planning to submission and follow-up with the regulator.

At a glance

Typical timeline9–12 months
RegulatorFCA (UK)
Initial capitalfrom €350,000
PermissionsEMI / e-money

Overview

Authorisation, without the guesswork.

Securing an Electronic Money Institution licence is a demanding, evidence-heavy process. We translate the regulator’s expectations into a clear plan and a complete, defensible application — so you can focus on building your product.

From your first scoping call to post-authorisation obligations, our team works as an extension of yours: precise, commercially aware, and accountable for the outcome.

The service in detail

Authorisation is not a form-filling exercise — it is a demonstration that your firm is fit, funded and properly controlled. We build that case with you, end to end.

Who it’s for

Fintech founders and payments teams seeking EMI, PI or small-EMI permissions in the UK, EU or Canada — whether applying for the first time, restructuring, or extending permissions into new markets.

What we handle

Regulatory perimeter analysis and permissions scoping
Regulatory business plan, financial forecasts and capital adequacy
Safeguarding arrangements and wind-down planning
AML/CFT framework, policies and governance documentation
Submission on Connect and management of regulator queries

Process & timelines

From scoping to authorisation.

Indicative timelines for a well-prepared application — roughly 9–12 months end to end. Actual duration varies by jurisdiction, licence type and regulator.

Months 1–3
Phase 01

Document preparation & approval

Full build-out of the documentation suite with you, reviewed and signed off before submission. Preparation quality here is the single biggest driver of speed.

Readiness & scoping
Business plan & financials
Full documentation suite
Client review & sign-off
Months 4–9
Phase 02

Review & query management

Submission and the regulator's review. The statutory clock pauses for each information request, so a well-prepared file typically resolves in six to nine months.

Submission via regulator portal
Query & requirement management
Specialist / in-depth reviews
In-principle approval
Months 9–12
Phase 03

Pre-commencement & authorisation

Final conditions — capital injection, safeguarding account and final signed documents — then formal authorisation and go-live under ongoing supervision.

Pre-licensing conditions
Final signed documentation
Formal authorisation
Commencement of operations

What we prepare

The full documentation suite.

A complete, regulator-ready pack. Applications are typically built on four core compliance programmes, plus the business and operational documentation that underpins them.

Illustrative for an EMI authorisation — the exact set is tailored to your licence type and jurisdiction (for example, CASS-based safeguarding items apply in the UK and may differ elsewhere).

01

AML/CTF Programme

The firm's approach to customer due diligence, monitoring, screening and suspicious activity reporting.

13 documents
AML/CTF Policy
Business-Wide Risk Assessment Procedure
BWRA Matrix & Controls
Customer Due Diligence Procedure
Customer Risk Assessment Matrix
Transaction Monitoring Procedure
Ongoing Monitoring Procedure
Sanctions Policy
Suspicious Activity Reporting Procedure
Anti-Bribery & Corruption Policy
Anti-Tax Evasion Policy
Anti-Fraud Policy
Countries & Territories Risk Matrix

+ supporting forms and registers

02

Safeguarding Programme

The firm's approach to customer funds segregation, reconciliation, protection and governance.

5 documents
Safeguarding Policy
Client Funds Reconciliation Procedure
CASS Resolution Pack Procedure
CASS Master Document
Safeguarding Training & Awareness Programme

● CASS items apply to UK safeguarding — equivalent arrangements vary by jurisdiction. + supporting forms and registers

03

Governance Framework

The firm's structure, reporting lines, responsibilities and internal control environment.

11 documents
Governance Policy
Outsourcing Policy
Internal Audit Programme
Whistleblowing Policy
Complaints Procedure
Complaints Register
Consumer Duty Policy
Wind-Down Plan
Risk & Compliance Committee Charter
Safeguarding Committee Charter
Internal Audit Committee Charter

+ supporting forms and registers

04

IT & Cybersecurity Programme

The firm's approach to systems, security controls, access management and incident response.

14 documents
Information Security Policy
IT Governance & Strategy
IT Architecture & Funds Flow Overview
IT & Security Risk Assessment & Methodology
Operational & Tech Risk Management Framework
Business Continuity & Disaster Recovery Plan
Incident Management Policy & Procedure
Regulatory & Internal Incident Reporting Standard
IT Operations & Service Management Procedures
Change & Release Management Policy
Access Control & User Management Policy
Logging, Monitoring & SIEM Standard
Outsourcing & Third-Party Risk Management Policy
Vulnerability Management & Security Testing Policy

+ supporting standards and registers

Business & Operational Documentation

The commercial and operational backbone of the application — how the business runs and is governed.

8 documents
Business Plan
Programme of Operations
Financial Projections
Funds Flow Diagrams
Organisational Structure Chart
Governance Structure Chart
Client Journey Chart
Three Lines of Defence Model Chart

+ supporting documentation and charts

Applies across

United KingdomUnited KingdomEuropean UnionEuropean UnionCanadaCanadaEMIPSPMSB

Secure your licence,
secure your future.

Book a scoping call and we’ll map your fastest, most defensible path to authorisation.