Central Asia & CIS

Kazakhstan (AIFC) — Money Service Provider Authorization (AFSA) 2026

The AIFC Money Service Provider (MSP) authorization from AFSA is one of the world's most forward-thinking payment licenses — zero corporate tax guaranteed until 2066, English common law framework, digital asset payment services explicitly authorized (October 2025), cross-border fund transfers permitted, and a new comprehensive PMS framework in force since 2025. Over 4,000 firms from 85+ countries operate from the AIFC.

REGULATOR

AFSA (Astana Financial Services Authority)

FRAMEWORK

PMS Rules (April 2025)

CORPORATE TAX

0% (until 2066)

LAST UPDATED

March 2026

— Last updated: March 2026 · 10 min read

What is the AIFC and Why Does It Matter?

The Astana International Financial Centre (AIFC) is Kazakhstan's dedicated financial hub — a special economic zone operating under English common law with its own independent financial regulator (AFSA), its own court system, and a tax regime guaranteed at zero percent until 2066 by constitutional statute. Established in 2018, the AIFC has grown to host over 4,000 firms from more than 85 countries — making it the premier financial regulatory hub for the Eurasian corridor and a genuinely significant global financial centre.

For payment companies, money service operators, EMIs, and fintech businesses, the AIFC MSP authorization provides a uniquely compelling combination: FATF-aligned regulation, zero tax for over four decades, English common law legal infrastructure, explicit digital asset payment service authorization, and direct access to Central Asian and CIS payment markets that few other jurisdictions can match.

Why the AIFC Matters for Payment Operators

0% Tax — Guaranteed Until 2066

AIFC participants pay 0% corporate income tax, 0% individual income tax, and 0% VAT on qualifying activities — guaranteed by Kazakhstan's constitutional statute for AIFC participants until 2066. This is not a standard tax incentive subject to political change — it is constitutionally protected for over four decades.

English Common Law Framework

The AIFC operates under English common law — the same legal framework as the UK, Singapore, Hong Kong, and Cayman Islands. All contracts, regulatory documentation, and dispute resolution operate under familiar English law principles. AIFC Court decisions are enforceable in Kazakhstan's national courts.

AFSA — Independent Regulator

The Astana Financial Services Authority (AFSA) is the AIFC's independent financial regulator — separate from Kazakhstan's national financial regulators. AFSA has developed a sophisticated fintech regulatory framework that has attracted global payment operators.

Digital Asset Payment Services

From October 2025, the new PMS Rules explicitly authorize digital asset payment services — covering digital asset remittances, digital asset acquiring, and non-custodial payment initiation services involving digital assets. AIFC MSP is one of the few regulated authorizations globally to explicitly cover both traditional and digital asset payment services under a single license.

Eurasian Market Gateway

Kazakhstan's strategic position at the heart of Central Asia and the CIS provides AIFC MSP holders with commercial access to a region of 250+ million people across Russia, Kazakhstan, Uzbekistan, Azerbaijan, and surrounding markets — increasingly important as trade finance and payment corridors shift through Central Asia.

Cross-Border Fund Transfers

The AIFC MSP license explicitly authorizes the transfer of funds abroad — including royalty payments, merchant settlements, and client remittances — making it directly applicable to cross-border payment platforms and international remittance services. This explicit authorization is not available in all payment licensing jurisdictions.

Major Regulatory Overhaul — April 13, 2025

AFSA adopted a comprehensive new Providing Money Services (PMS) framework on April 13, 2025 — replacing the previous Rule 21 provisions entirely. The new framework came into force in two phases. Any guidance on the AIFC MSP predating October 2025 should be treated as potentially outdated. **Phase 1 — October 13, 2025:** New unified definitions for money services activities, revised capital requirements framework with working capital buffer obligations, digital asset integration (two new models for MSPs operating with digital assets), and regulatory perimeter clarification. **Phase 2 — January 13, 2026:** Mandatory client protection disclosures and refund provisions, formalized complaints handling framework, client money safeguarding and segregation requirements, cybersecurity obligations with mandatory policies and independent IT audits, operational resilience framework, and Strong Customer Authentication (SCA) requirements. **2026 regulatory roadmap:** AFSA has confirmed further framework development in 2026–2028 covering AML/CFT guidance updates, fintech lab framework enhancements, and targeted regulatory amendments.

Authorized Activities Under the PMS Rules (2026)

Under the new PMS Rules, "Providing Money Services" covers a comprehensive range of payment activities — significantly broader than the previous Rule 21 framework.

1
Currency Exchange: Buying and selling foreign currencies — including arranging currency exchange for clients. Covers spot FX, multi-currency conversion, and currency exchange intermediary services.
2
Payment Instruments: Selling or issuing payment instruments — covering prepaid cards, vouchers, digital payment tokens used as payment instruments, and similar stored value products.
3
Stored Value: Selling or issuing stored value — electronic money held in accounts, e-wallets, and digital stored value instruments.
4
Payment Transaction Execution: Executing payment transactions including transfers via bank/settlement accounts, direct debits, and payments via card or similar devices. Covers standard payment execution services including credit transfers, direct debits, and card payment processing.
5
Credit-Line Backed Payments: Executing payment transactions backed by a credit line — covering buy-now-pay-later (BNPL) type payment structures and credit-facilitated payment execution.
6
Money Remittance: Domestic and cross-border money remittance — including international wire transfers, mobile remittance platforms, and cross-border payment services. The PMS Rules explicitly authorize cross-border fund transfers including royalty payments, merchant settlements, and client remittances.
7
Telecom/Digital Network Initiated Transactions: Transactions initiated through telecommunications networks, digital networks, or IT systems — covering mobile payment platforms, app-initiated payments, and digital-channel payment initiation.
8
Digital Asset Payment Services (NEW — October 2025): Digital asset remittances and digital asset acquiring. Licensed MSPs can provide remittance services denominated in or settled via digital assets, and can accept digital assets as payment on behalf of merchants.
9
Non-Custodial Digital Asset Payment Initiation (NEW — October 2025): Non-custodial payment initiation services involving digital assets — covering business models comparable to MetaMask-type and Trust Wallet-type payment initiation. The entity does not hold client digital assets but initiates payment transactions on behalf of clients.

Phase 2 Compliance Requirements (January 2026)

The Phase 2 requirements represent the most significant compliance obligations ever imposed on AIFC MSP holders. Any firm applying now must build these into their compliance framework from the outset.

Requirement	Details
Client protection disclosures	Specific disclosures in client agreements — mandatory
Refund provisions	Defined refund rights and procedures in client agreements
Liability for unauthorized transactions	Clear liability framework for unauthorized payment transactions
Complaints handling	Formalized complaints procedure as regulatory obligation
Client money safeguarding	Segregation of client funds from operational funds — mandatory
Cybersecurity policies	Mandatory cybersecurity policies and governance framework
Independent IT audits	Periodic independent IT security audits required
Incident reporting	Formal incident reporting protocols to AFSA
Operational resilience	Technology governance, ongoing IT risk monitoring and testing
Strong Customer Authentication	SCA required for relevant payment transactions

Phase 2 implementation note

Firms applying for an AIFC MSP authorization in 2026 must demonstrate Phase 2 compliance readiness from the outset of their application — they cannot apply under the pre-Phase 2 framework and update later. This means the application documentation package must include cybersecurity policies, client protection frameworks, safeguarding arrangements, complaints procedures, and SCA implementation plans as standard components. Zitadelle AG prepares all Phase 2-compliant documentation as part of the full MSP application service.

Digital Asset Payment Services: The Two New Models

The October 2025 Phase 1 update introduced two specific business models for AIFC MSPs seeking to integrate digital assets into payment services. These are codified frameworks — not case-by-case approvals.

Model 1 — Digital Asset Remittance and Acquiring

This model covers MSPs that settle cross-border remittances in digital assets or accept digital assets as payment on behalf of merchants. The key regulatory distinction is that the MSP is providing a payment service — remittance or acquiring — using digital assets as the medium of exchange, not operating as a digital asset exchange or custodian. Use cases: Cross-border remittance platforms settling in stablecoins (USDT, USDC); merchant acquiring services accepting Bitcoin or Ethereum; international payment corridors using digital assets for settlement efficiency.

Model 2 — Non-Custodial Payment Initiation

This model covers MSPs providing payment initiation services where the client holds their own digital assets in a self-custodial wallet (e.g., MetaMask, Trust Wallet) and the MSP initiates payment transactions on their behalf without taking custody of the assets. Use cases: Web3 payment platforms; DeFi payment initiation services; crypto checkout solutions where clients pay directly from their own wallets; non-custodial BNPL-type crypto payment services.

Important distinction

Neither model authorizes operating a cryptocurrency exchange or holding client digital assets as a custodian — those activities remain regulated separately under AFSA's digital asset frameworks. The PMS digital asset models specifically cover payment service use cases involving digital assets, not investment or exchange activities.

Capital Requirements Under the New PMS Rules

The April 2025 PMS Rules introduced a revised capital requirements framework that is more formally structured than the previous Rule 21 provisions.

•The capital floor is now formally set under the PMS Rules with additional working capital buffer obligations
•AFSA assesses capital adequacy relative to the scope of money services activities and projected transaction volumes
•Firms providing digital asset payment services under the new models may face additional capital expectations reflecting the risk profile of those activities
•Capital must be maintained throughout the authorization period — not just at application stage
•Annual financial statements demonstrating capital adequacy are required

Capital advisory note

Zitadelle AG advises on appropriate capital positioning for AIFC MSP applications as part of the pre-application structuring phase. The capital requirement varies significantly by activity scope — a currency exchange-only MSP has different capital expectations than a full-scope MSP including digital asset remittances and cross-border transfers. We provide specific capital guidance during the initial consultation.

AIFC MSP vs. Other Global Payment Licenses

Feature	AIFC MSP (AFSA)	EU EMI (Lithuania)	Singapore MPI (MAS)	Canada MSB (FINTRAC)
Corporate tax	0% (until 2066)	~15% (Lithuania)	17%	~26%
Legal framework	English common law	Civil/EU law	English common law	Common law
Digital asset payment	Explicit (Oct 2025)	Limited	Yes (DPT — MPI)	Limited
Cross-border transfers	Explicitly authorized	Yes (SEPA)	Yes	Yes
EU passporting	No	Yes — 30 EEA	No	No
CIS market access	Excellent	Moderate	Limited	Limited
Regulator	AFSA (independent)	Bank of Lithuania	MAS	FINTRAC
Min. capital	PMS-rules based	€350,000	SGD $250,000	None
Timeline	4–8 months	6–12 months	~12 months	~6 months
Best for	Eurasian, digital asset, zero-tax	EU market access	ASEAN institutional	North American market

Why 2026 Is the Right Time to Apply

The AIFC MSP framework has matured significantly since 2018. The combination of factors in 2026 creates a compelling window for payment operators.

•PMS Rules now provide clarity and predictability that Rule 21 lacked — operators know exactly what is authorized
•Digital asset payment service authorization (October 2025) opens commercial opportunities not previously available
•4,000+ AIFC-registered firms create an ecosystem of potential commercial partners and counterparties
•AFSA's 2026–2028 roadmap signals continued regulatory development — early entrants build ahead of further framework expansion
•Zero tax until 2066 — each year of delay reduces the total duration of the tax advantage
•Phase 2 compliance (January 2026) is now a known requirement — firms building now incorporate it from the outset rather than retrofitting

How Zitadelle AG Assists

Pre-application structure assessment — activity scope selection, capital adequacy, Phase 2 compliance readiness
AIFC entity incorporation — company formation in the AIFC under the AIFC Companies Regulations
Full PMS Rules-compliant application preparation — business plan, AML/CFT framework, cybersecurity policies, client protection framework, SCA implementation plan, complaints handling procedures, safeguarding arrangements
AFSA submission and regulatory liaison — all AFSA correspondence managed by Zitadelle AG
Digital asset payment service model advisory — assessment of whether your specific digital asset payment model qualifies under Model 1 (remittance/acquiring) or Model 2 (non-custodial initiation)
Phase 2 compliance documentation — complete Phase 2-required policies and frameworks prepared as standard
Key personnel sourcing — AFSA-approvable payment professionals via HRFinEase
Post-authorization compliance support — AFSA reporting, IT audit coordination, annual capital adequacy, SCA compliance maintenance
AFSA regulatory roadmap monitoring — tracking 2026–2028 framework developments affecting MSP holders

Frequently Asked Questions

The AIFC Money Service Provider (MSP) authorization is issued by AFSA — the independent regulator of the Astana International Financial Centre (AIFC) in Kazakhstan. It authorizes regulated payment and money service activities under the new Providing Money Services (PMS) Rules (April 2025), operating under English common law with 0% corporate tax guaranteed until 2066.

Ready to obtain your AIFC Money Service Provider authorization?

Zitadelle AG provides end-to-end AIFC MSP licensing support — from AIFC entity incorporation and PMS Rules-compliant application preparation through digital asset service model advisory, Phase 2 compliance framework development, and AFSA submission management.

Related Licenses

EU EMI License (Lithuania)Bank of Lithuania EMI — €350,000 capital, 30 EEA passporting. Premier EU payment authorization. Complements AIFC MSP for EU market access.Kazakhstan AIFC Stablecoin IssuerAFSA stablecoin issuer license at the AIFC. Zero tax, English common law, digital asset issuance authorization.Singapore MPI LicenseMAS Major Payment Institution — no transaction limits, crypto DPT services permitted, SGD $250,000 capital. ASEAN institutional benchmark.Canada MSB RegistrationFINTRAC MSB — no capital requirement, crypto services, non-residents eligible. G7 credibility for North American market access.

Quick Facts

Regulator: AFSA (Astana Financial Services Authority)
Hub: AIFC (Astana International Financial Centre)
Framework: PMS Rules (April 2025)
Corporate Tax: 0% (guaranteed until 2066)
Individual Income Tax: 0%
VAT: 0%
Legal System: English common law
Digital Asset Payment: Explicitly authorized (Oct 2025)
Cross-Border Transfers: Explicitly authorized
Phase 2 (SCA + Cyber): January 2026 — mandatory
AIFC Firms: 4,000+ from 85+ countries
Timeline: 4–8 months
Updated: March 2026

Disclaimer: This page is for informational purposes only and does not constitute legal or regulatory advice. Requirements, timelines, and fees are subject to change. Always consult directly with the relevant regulatory authority or a qualified professional for the most current information. Zitadelle Advisory Group LTD is not a law firm and does not provide legal representation.