Crypto and Digital Assets Criminal Defense

Specialized criminal defense in offenses committed with cryptocurrencies, NFTs and digital assets: fraud, money laundering, MiCA Regulation and blockchain tracing.

call91 078 65 74

Last updated: 13 June 2026

Defense Keys: Crypto and Digital Assets Criminal Defense

Specialized criminal defense in offenses committed through cryptocurrencies, NFTs and digital assets, with blockchain expert support and knowledge of the MiCA Regulation (EU 2023/1114).
Recurring criminal types: Computer fraud (Arts. 248-251), money laundering (Art. 301), tax offense (Art. 305), terrorist financing (Art. 576) and corporate offense.
MiCA Regulation (EU 2023/1114): Obliges crypto-asset service providers (CASP) to KYC, traceability and reporting; non-compliance may trigger criminal imputation. A revision (informally referred to as "MiCA II") is under discussion but not yet approved.
On-chain tracing: Tools such as Chainalysis Reactor or Elliptic allow reconstructing fund flows, but their technical interpretation admits expert contradiction.
Crypto seizure: Possible even on funds in foreign exchanges through international judicial cooperation, but with reinforced procedural guarantees.

Criminal defense in crypto assets requires combining mastery of the classical Criminal Code —fraud, money laundering, tax offense, terrorist financing— with technical understanding of how blockchain networks function and of the new European regulatory framework (MiCA Regulation EU 2023/1114). The criminal lawyer assuming a crypto case must articulate a multidisciplinary defense: legal, technical (blockchain expert) and financial (fund tracing).

Recurring Criminal Typology

Criminal proceedings involving crypto assets concentrate on five major types: (1) Crypto frauds —fraudulent ICOs, rug pulls, pyramid schemes (Art. 248)—; (2) Money laundering through mixers, cross-chain bridges or conversion to fiat (Art. 301); (3) Tax offense for not declaring capital gains or using Form 721 (Art. 305); (4) Terrorist financing with privacy coins (Art. 576); and (5) Corporate and director offenses when the company holds or invests in crypto without authorization.

MiCA Regulation (EU 2023/1114)

The MiCA Regulation (EU 2023/1114), fully applicable since 30 December 2024, creates a harmonized European regime for CASPs (Crypto Asset Service Providers). Non-compliance by an EU company may generate, in addition to administrative sanctions from the CNMV, criminal liability of the legal entity and its directors. A revision of this framework (informally referred to as "MiCA II") is under discussion but has not yet been approved.

Phases of Defense in a Crypto Case

An effective defense unfolds in phases: (1) Evidence preservation —forensic capture of wallets, transactions and devices before they are altered—; (2) Typicity analysis —determining whether the facts fit a criminal type or are market contingency—; (3) Technical counter-expertise —challenging the prosecution's on-chain tracing—; (4) Patrimonial and tax strategy —reconstructing the lawful origin of funds and, where appropriate, regularizing—; and (5) Reparation —restitution or consignment that activates mitigating factors—. Each phase demands coordination between the criminal lawyer, the blockchain expert and the tax adviser.

International Dimension of the Crypto Case

Most crypto-asset proceedings have a cross-border component: exchanges based abroad, wallets without physical location, and investigated parties or victims in different countries. Spanish jurisdiction is competent when the victim resides here or the result occurred on national territory. Obtaining evidence and freezing funds outside the EU is channeled through the European Investigation Order (EIO), letters rogatory, the Budapest Convention on cybercrime and the cooperation of Europol and Eurojust.

Defrauded with Cryptocurrency? Steps to Claim

If you have been the victim of a crypto-asset fraud —a fake investment platform, a manager who disappears with the funds, wallet phishing—, the order in which you act conditions the chances of recovery. The essential steps are:

Preserve evidence immediately: transaction hashes, source and destination wallet addresses, screenshots of the platform and the conversations, bank transfer receipts and the entire recruitment process (ads, profiles, emails).
Criminal complaint (denuncia) or formal accusation (querella): the complaint before the National Police, the Guardia Civil or the court opens the investigation; the querella, more complete, allows proposing investigative measures from the outset (identification of wallet holders, requests to exchanges, tracing expert evidence).
Freezing funds at exchanges: when on-chain tracing locates the funds at a crypto-asset service provider, the court is asked to order their freezing and the production of the holder's KYC file. With CASPs authorized by the CNMV or another EU authority the request is direct; if the exchange is outside the EU, it is channeled through the European Investigation Order, the Budapest Convention or letters rogatory.
Joining the proceedings as private prosecution (acusación particular): it allows driving the investigation, proposing blockchain expert evidence and claiming civil liability (restitution of the crypto assets or equivalent compensation) within the same criminal proceedings.

Time is the critical factor: the sooner the destination exchange is identified, the better the chances of freezing the funds before they are dispersed through mixers or bridges into non-cooperative jurisdictions.

MiCA: End of the Transitional Period on 1 July 2026

The Spanish transitional period of the MiCA Regulation ends on 1 July 2026. From that date, only providers (CASP) authorized by the CNMV or by another European Union authority may provide crypto-asset services on the Spanish market. The CNMV also publishes a list of non-authorized entities, and the Spanish Tax Agency (AEAT) released its administrative criteria on crypto assets in April 2026.

This milestone has three criminally relevant consequences. For the investor, contracting with an unauthorized platform after that date is a first-order red flag and, in fraud proceedings, it strengthens the proof of deception where the platform pretended to be regulated. For companies in the sector, continuing to operate without authorization exposes them to administrative sanctions and, where deception of clients or concealment of the situation concurs, may lead to criminal liability of the legal entity and its directors. For the defense, having operated through an authorized CASP, with complete KYC and documented traceability, makes it easier to establish the lawful origin of the funds and the user's good faith.

Amounts and Aggravating Factors: How the Penalty Changes

In crypto-asset fraud, the defrauded amount determines the penalty leap. The basic type (Articles 248 and 249 CP; computer fraud under Article 249.1.a) CP punishes the non-consented transfer of assets through computer manipulation) carries imprisonment of six months to three years. If the amount does not exceed 400 euros, the penalty is a fine of one to three months, although, after Organic Law 1/2026, three or more prior enforceable convictions for offenses of the same nature allow imposing the penalty of the basic type.

Article 250.1 CP raises the penalty to imprisonment of one to six years plus a fine of six to twelve months when, among other circumstances, the value of the fraud exceeds 50,000 euros or affects a large number of people —the usual scenario in pyramid schemes and fraudulent ICOs—, is of special gravity given the extent of the harm, or is committed abusing personal relationships or exploiting the perpetrator's business or professional credibility (the fake investment adviser pattern). Article 250.2 CP provides for imprisonment of four to eight years plus a fine of twelve to twenty-four months when the value of the fraud exceeds 250,000 euros or certain aggravating circumstances are combined. In crypto, fixing the amount requires valuation expert evidence: given the volatility of these assets, the date at which the defrauded amount is valued (the moment of the act of disposition or a later one) is frequently the subject of technical and legal debate.

Statute of Limitations and Deadlines

Under Article 131 CP, basic fraud (maximum penalty of three years' imprisonment) becomes time-barred after five years; the aggravated forms of Article 250 CP (maximum penalties of six and eight years) become time-barred after ten years, as does money laundering under Article 301 CP. The clock starts on the day the offense is committed and, in continuing offenses —usual in crypto frauds with successive contributions by the investor—, from the last infringement (Article 132 CP).

Filing a complaint or querella against a specific person suspends the limitation period for up to six months; definitive interruption requires a reasoned judicial decision attributing presumed participation to the suspect. In practice, the real risk is usually not limitation but the volatility of the evidence: exchange KYC records and logs are kept for limited periods, funds move within hours and the domains of fraudulent platforms disappear. That is why we work to ensure that the first investigative measures —data preservation requests and fund freezing— are requested as early as possible.

balance

Penalty Chart

Type / Scenario	Criminal Penalty
Aggravated fraud (Art. 250 CP)	Imprisonment 1-6 years + fine. Applicable when special gravity by value or number of victims concurs.
Money laundering (Art. 301 CP)	Imprisonment 6 months to 6 years + fine of the amount up to triple the value.
Crypto tax offense (Art. 305 CP)	If evaded quota >€120,000: imprisonment 1-5 years + fine up to six times. Multiplication per fiscal year.

* Penalties shown are indicative. The actual penalty depends on case circumstances, applicable mitigating and aggravating factors.

shield_lock

Our Defense Strategy

gavel01

Criminal-Tax Bifurcation

Coordinate criminal defense with tax regularization (Form 721 + supplementary returns) to activate Art. 305.4 CP exemption.

gavel02

Blockchain Counter-Expert

Engage an independent blockchain expert with judicial accreditation to challenge the prosecution's tracing.

gavel03

Crypto Restitution Reparation

Restitution by transferring the crypto assets to the victim or consignment in a wallet under judicial control.

Crypto Fraud Defence: Scams, On-Chain Tracing, MiCA & Asset Seizure

Crypto-related criminal cases combine classical offences — fraud (Arts. 248-250 CP), money laundering (Art. 301 CP), tax fraud (Art. 305 CP) and criminal organisation (Art. 570 bis CP) — with the technical reality of blockchain: pseudonymous wallets, mixers, cross-chain bridges, stablecoins and DeFi protocols. There is no autonomous "crypto offence": prosecutors must fit the facts into an existing criminal type and prove the on-chain flow with admissible expert evidence. Defence therefore demands both criminal-law expertise and independent blockchain forensics.

Penalty Table: Crypto-Asset Offences

Offence	Article	Description	Penalty
Basic crypto fraud	Arts. 248-249	Deception inducing the transfer of crypto-assets (fake broker, fake platform)	6 months – 3 years
Aggravated fraud	Art. 250	Special gravity, multiplicity of victims or high amount	1 – 6 years
Money laundering with crypto	Art. 301	Concealing illicit origin via mixers, bridges or exchanges	6 months – 6 years + fine
Crypto tax fraud	Art. 305	Evaded quota over €120,000 per fiscal year (Form 721)	1 – 5 years + fine
Computer damage / DeFi exploit	Art. 264	Exploit damaging systems or data (smart-contract attack)	6 months – 3 years
Criminal organisation	Art. 570 bis	Structured group running crypto fraud at scale	2 – 8 years

Key Defence Strategies

Independent Blockchain Counter-Expert

Chainalysis, Elliptic or TRM tracing graphs are interpretations, not certainties. An accredited own expert can challenge address clustering heuristics, mixer assumptions and the attribution of a wallet to a specific person.

Market Contingency vs. Deception

A loss is not a crime. Many crypto disputes are investment risk, protocol failure or contractual breach — civilly reproachable but criminally atypical. The defence isolates genuine deception (Art. 248) from ordinary market loss.

Good Faith & KYC Diligence

Documented KYC, lawful source of funds, Form 721 reporting and declared capital gains rebut the knowledge element of laundering and fraud. Willful blindness must be proven, not presumed.

Criminal-Tax Bifurcation

Voluntary tax regularisation can activate the Art. 305.4 CP exemption, while the administrative track (CNMV/SEPBLAC) is handled separately from the criminal process, where defences may diverge.

Key Case Law

TS doctrineSufficient deception in digital environments

The Supreme Court accepts that the appearance of a legitimate trading platform or broker can constitute the 'sufficient deception' of Art. 248: the victim's error is measured against the credibility of the staged operation, not against the abstract diligence of an expert investor.

TS doctrineBlockchain tracing as expert evidence

On-chain tracing is valid evidence but subject to expert contradiction. Traceability of a flow to a wallet does not, by itself, prove the intent (dolo) of its holder; the prosecution must still establish knowledge and control.

TS doctrineSelf-laundering and tax fraud in concurrence

Using undeclared crypto gains to make further investments may integrate self-laundering (Art. 301.1) in concurrence with tax fraud (Art. 305), creating double criminal exposure that the defence must dismantle element by element.

gavel

Why Choose Us?

Need a criminal defense lawyer for this type of offense? Here's how we work:

check

Independent Blockchain Expert ReportTechnical contradiction of Chainalysis/Elliptic reports by an accredited own expert.

check

Crypto Typicity AnalysisCorrectly subsume the facts: many conducts are not fraud but mere market contingency.

check

User Good Faith DefenseEstablish diligence in KYC, tax declaration (Form 721) and lawful origin of funds.

workspace_premium

+15 Years of ExperienceTeam dedicated exclusively to criminal law before Spanish courts and tribunals.

support_agent

Direct AttentionYour case is handled directly by a senior lawyer of the firm.

Consult My Casearrow_forward

quiz

FAQs

Is buying and selling crypto a crime?expand_more

Not in itself. It is when used to defraud, launder, evade taxes or finance illicit activities. Administrative regulation (MiCA) does not turn every breach into a crime.

Is there an obligation to declare crypto to the Tax Agency?expand_more

Yes. Form 721 (informative on balances in foreign exchanges) and declaration of capital gains in personal income tax. Omitting relevant amounts may be a tax offense.

Can the Tax Agency seize my cryptocurrencies?expand_more

Yes, if they are in an exchange with seat or representation in Spain. If they are in a private wallet with keys controlled by the holder, material seizure is more complex but criminal liability persists.

Is blockchain evidence reliable at trial?expand_more

Yes, but admits expert contradiction. The interpretation of transactions, mixers and bridges is not exact and may be technically challenged.

What if I have been defrauded with crypto?expand_more

Criminal complaint for fraud (Art. 248) and, in parallel, civil action are appropriate. On-chain tracing and identification of the destination exchange are key for recovery.

Is holding undeclared cryptocurrency a crime?expand_more

Not declaring it is a tax infringement; it becomes a tax offense (Art. 305 CP) when the evaded quota in a fiscal year exceeds €120,000. Form 721 reports balances in foreign exchanges and its omission also carries its own penalties.

What should I do if I receive a court summons over a crypto case?expand_more

Always attend assisted by a lawyer, do not testify without having studied the case, and preserve all technical information: wallets, keys, purchase receipts and exchange KYC. Well-preserved technical evidence is often decisive.

When does cryptocurrency fraud become time-barred?expand_more

The basic type becomes time-barred after five years and the aggravated forms of Article 250 CP (for example, fraud exceeding €50,000) after ten (Article 131 CP). In continuing offenses the period runs from the last infringement. Even so, report immediately: electronic evidence and funds disappear long before the offense is time-barred.

What changes with MiCA on 1 July 2026?expand_more

The Spanish transitional period ends: from that date only providers (CASP) authorized by the CNMV or another EU authority may provide crypto-asset services. Before investing, verify the authorization and check the list of non-authorized entities published by the CNMV; dealing with an unauthorized platform is a red flag and relevant circumstantial evidence in potential fraud proceedings.

Is it worth joining crypto fraud proceedings as a private prosecutor?expand_more

In most cases, yes: it allows driving the investigation, proposing on-chain tracing expert evidence, requesting the freezing of funds at exchanges and claiming civil liability within the same criminal proceedings. Procedural passivity often ends with the case being shelved for lack of a known perpetrator.

We also serve

Madrid Alicante Marbella Seville Málaga Bilbao Zaragoza

View all locations →

listTable of Contents

shieldClaves de la Defensa: Crypto and Digital Assets Criminal Defense

Specialized criminal defense in offenses committed through cryptocurrencies, NFTs and digital assets, with blockchain expert support and knowledge of the MiCA Regulation (EU 2023/1114).
Recurring criminal types: Computer fraud (Arts. 248-251), money laundering (Art. 301), tax offense (Art. 305), terrorist financing (Art. 576) and corporate offense.
MiCA Regulation (EU 2023/1114): Obliges crypto-asset service providers (CASP) to KYC, traceability and reporting; non-compliance may trigger criminal imputation. A revision (informally referred to as "MiCA II") is under discussion but not yet approved.
On-chain tracing: Tools such as Chainalysis Reactor or Elliptic allow reconstructing fund flows, but their technical interpretation admits expert contradiction.
Crypto seizure: Possible even on funds in foreign exchanges through international judicial cooperation, but with reinforced procedural guarantees.

gavelElements of the Crime

check_circleTypified OperationThe conduct must fit into a classical criminal type (fraud, money laundering, tax) — there is no autonomous offense for using crypto.
check_circleTraceability of the FlowThe prosecution must establish the on-chain flow between the suspect and the criminal operation, with admissible technical expert evidence.
check_circleKnowledge and IntentIntent or, where appropriate, willful blindness. Documented good faith is effective defense.

gavelPenal Consequences

Aggravated fraud (Art. 250 CP)

Imprisonment 1-6 years + fine. Applicable when special gravity by value or number of victims concurs.

Money laundering (Art. 301 CP)

Imprisonment 6 months to 6 years + fine of the amount up to triple the value.

Crypto tax offense (Art. 305 CP)

If evaded quota >€120,000: imprisonment 1-5 years + fine up to six times. Multiplication per fiscal year.

articleRelated Articles

linkRelated Services

account_treeCrypto Scams

Explore all practice areasarrow_forward

Do you need specialised legal assistance?

The judicial system is complex. We have the criminal-law specialisation and technical resources required to take on the defence.

Contact Alonso Sala

Call: +34 91 078 65 74