The Book The Digest The Register The Calendar Subscribe — $10/mo
🔐

Chapter 3 is for subscribers

Enter your subscriber password to access this chapter.

Chapter 3 · United States — The SEC Framework & Token Taxonomy · ~5,400 words

Incorrect password. Try again or subscribe for access.
or
Don't have access? Subscribe for $10/mo to unlock all chapters.
// Chapter Preview
"3.1 Securities Law Fundamentals: What Makes a Token a Security..."
← Back to Book / Chapter 3
Part I — Foundations Chapter 03 Subscriber v1.0 · March 2026

United States — The SEC Framework & Token Taxonomy

~5,400 words ~27 min read by Dave Hendricks

United States — The SEC Framework

3.1 Securities Law Fundamentals: What Makes a Token a Security

The Securities Act of 1933 and the Securities Exchange Act of 1934 were written for paper certificates and telephone trades. They were not written for Ethereum. They apply to Ethereum anyway, and understanding why requires understanding what the statutes actually cover.

The definition of "security" in Section 2(a)(1) of the Securities Act is long and includes obvious instruments like stocks and bonds, but the legal concept that matters most for tokenized assets is the investment contract. An investment contract is defined by the Supreme Court's 1946 decision in SEC v. W.J. Howey Co., which established the four-part test that every securities lawyer now calls the Howey test: (1) an investment of money; (2) in a common enterprise; (3) with an expectation of profits; (4) derived from the efforts of others. If all four elements are present, the instrument is a security, regardless of what the issuer calls it.

The Howey test has been applied to orange groves, whiskey warehouse receipts, and chinchilla breeding contracts. Applying it to crypto assets is not conceptually difficult: if you sell tokens to raise capital, promise investors that the token will appreciate as your project succeeds, and retain control over the development activity that will determine whether the project succeeds, you are selling an investment contract. The label "utility token" does not change the analysis. The economic substance does.

For tokenized traditional securities, the Howey analysis is largely redundant. A tokenized share of stock is a security because it is a stock, not because it satisfies the Howey test. A tokenized limited partnership interest is a security because limited partnership interests are enumerated in the definition of "security." The relevant question for tokenized traditional securities is not whether they are securities (they are), but how they must be registered or exempted from registration, and what obligations attach to the transfer agent, broker-dealer, and other intermediaries who handle them.

3.2 The Role of the SEC: Not Optional, Not Going Away, and Now Actually Constructive

Eight years in this space has taught me that practitioners who approach the SEC as an adversary to be avoided end up either failing or spending years in enforcement proceedings, or both. The issuers and platforms that have built durable businesses have done so by engaging with the regulatory framework honestly and building compliance into their architecture rather than around it.

This is not a compliance lecture. It is a practical observation. The SEC's jurisdiction over tokenized securities is not going away. The Commission has the statutory authority and the institutional resources to pursue enforcement against non-compliant tokenized securities offerings, and it has demonstrated repeatedly that it will use that authority. The appropriate response is not to structure around the rules, it is to understand the rules precisely and build within them.

The good news, genuinely good news as of 2026, is that the SEC under Chairman Atkins has made clear that it regards tokenized securities as a legitimate and potentially beneficial development for capital markets. The Commission is not hostile to tokenization. It is demanding that tokenization be done within the existing securities law framework, which is a reasonable demand and one that the industry should welcome, because regulatory clarity is what attracts institutional capital.

3.3 The Offering Exemptions Practitioners Actually Use

Securities offerings must be registered with the SEC or qualify for an exemption from registration. Registration is expensive (typically $500,000 to $2 million in legal, accounting, and filing costs for an S-1), slow (months to years), and imposes ongoing public reporting obligations. Most tokenized securities offerings use exemptions. Here are the ones that matter.

Reg D 506(b) is the workhorse of the private securities market and of the tokenized securities market specifically. Rule 506(b) allows an issuer to raise an unlimited amount of capital from up to 35 non-accredited investors and an unlimited number of accredited investors, without SEC registration and without general solicitation. The tradeoff is strict: no advertising, no public marketing, and investors must have a pre-existing substantive relationship with the issuer (or be found through a registered broker-dealer). Transfer restrictions apply for 6 to 12 months depending on the issuer's reporting status. 506(b) is the default structure for most tokenized real estate, private equity, and fund offerings because it is flexible, well-understood by counsel, and has no cap on offering size.

Reg D 506(c) is the same unlimited-size private placement, but with one critical difference: general solicitation is permitted. An issuer can advertise the offering publicly, run it on social media, post it on websites, and reach investors through any channel. The tradeoff is that every investor must be verified as accredited, not merely self-certified. The verification requirement (requiring third-party verification of income, net worth, or professional credentials) has kept 506(c) usage lower than 506(b) historically, but it is a genuinely powerful tool for tokenized offerings that want to reach a broad accredited investor audience without being confined to the issuer's existing network. With robust KYC/verification infrastructure, which tokenized securities platforms have built, the 506(c) verification burden is manageable.

Reg A+ is the framework that makes tokenized securities most interesting for issuers who want real retail participation. Reg A+ allows offerings of up to $75 million to both accredited and non-accredited investors, with SEC review of an offering circular (a lighter-touch version of an S-1), testing-the-waters provisions that allow issuers to gauge investor interest before committing to the full offering, and ongoing reporting requirements that are less burdensome than full Exchange Act reporting. Reg A+ tokenized offerings have been used for real estate funds, specialty finance vehicles, and consumer-facing products. The $75 million cap is a meaningful constraint for large offerings, but for mid-market issuers seeking to build a retail investor base, Reg A+ with tokenized infrastructure is the most attractive structure available.

Reg CF allows crowdfunding offerings of up to $5 million to retail investors through registered crowdfunding portals. The per-investor limits are tiered by income and net worth, and the offering must be conducted through a FINRA-registered intermediary. Reg CF is best suited for consumer-facing companies with broad brand appeal and a need for community capital rather than institutional capital. The $5 million cap limits its use for most real estate and private equity applications.

Reg S is the offshore exemption, covering offers and sales made to non-US persons outside the United States. Reg S does not create an exemption from applicable securities laws in the investor's home jurisdiction, but it does create a safe harbor from US registration requirements. In practice, Reg S is almost always paired with Reg D in a combined offering: the issuer raises from US accredited investors under Reg D 506(b) or 506(c) simultaneously with raising from offshore investors under Reg S, using separate tranches with different transfer restrictions. For tokenized offerings, Reg S tokens can be distinguished from Reg D tokens in the smart contract, with different transfer restriction periods and eligibility gates enforced programmatically.

3.4 The Regulatory Shift of 2025–2026: A Coherent Movement, Not Random Events

The regulatory events of 2025 and early 2026 look like a sequence of disconnected announcements. They are not. They are a coordinated shift by the new Commission leadership toward a regulatory posture that treats tokenized securities as legitimate capital markets innovation rather than as a compliance evasion scheme.

The sequence matters. In January 2026, the SEC issued a Staff Statement on Tokenization that described 5 structural models for tokenized securities and signaled the Commission's openness to each of them. Chairman Atkins stated publicly in February 2026 that transfer agents could implement tokenized recordkeeping without seeking no-action relief from the staff, a statement that removed years of uncertainty about whether existing transfer agents could operate tokenized systems legally. Commissioner Uyeda, who served as Acting Chairman before Atkins' confirmation, framed tokenization as a modernization tool consistent with the agency's mission to protect investors and promote capital formation. Commissioner Peirce, the Commission's long-standing advocate for innovation space, renewed her push for a safe harbor framework that would give early-stage token projects room to develop without immediate securities law obligations.

The DTC's December 2025 no-action letter deserves particular attention because it connects the tokenized securities world to the existing settlement infrastructure that institutional investors require. The pilot allows tokenized versions of Russell 1000 securities, US Treasury securities, and ETFs to interact with DTC's settlement and clearing systems. This is not a theoretical concession. It is the plumbing connection that enables institutional custodians to hold tokenized securities in accounts that satisfy their regulatory obligations.

The CLARITY Act, moving through Congress with bipartisan support in 2026, provides legislative clarity on the digital commodity/digital security boundary that the industry has operated without for years. The Act defines when a blockchain-based asset is a commodity subject to CFTC jurisdiction and when it is a security subject to SEC jurisdiction, using functional criteria rather than label-based criteria.

These events are not random. They represent a deliberate regulatory recalibration driven by new leadership, industry engagement, and the demonstrated success of institutional tokenization programs.

On March 17, 2026, the SEC and CFTC jointly published Release No. 33-11412 in the Federal Register. It supersedes the 2019 Staff Framework and provides the clearest single-document taxonomy the industry has ever had. Chapter 3A covers it in full.

The Token Taxonomy — SEC/CFTC Release No. 33-11412

3A.1 Why This Release Matters

Most regulatory guidance in the crypto and digital securities space has been produced by staff, not commissioners. Staff guidance, no matter how detailed, does not carry the legal weight of Commission action. It can be reversed by the next Director of Corporation Finance without any notice-and-comment process. It does not bind courts. It doesn't show up in the Federal Register. For 8 years, the industry built compliance programs on staff guidance, no-action letters, and the 2019 Staff Framework, all of which had those limitations. Release No. 33-11412 is different.

Release Nos. 33-11412; 34-105020; File No. S7-2026-09 was published jointly by the Securities and Exchange Commission and the Commodity Futures Trading Commission in the Federal Register on March 17, 2026. It is a Commission-level interpretive release, not staff guidance. Both agency chairs signed it. It was preceded by a 300+ submission public comment process through the joint SEC-CFTC Project Crypto initiative, established in January 2026. It supersedes the 2019 SEC Staff Framework for Investment Contract Analysis of Digital Assets, the document that had governed (imperfectly) the industry's primary classification analysis for 7 years. Federal Register publication gives it the weight of official agency interpretation that courts and compliance departments can rely on.

The contrast with the prior administration's approach is worth naming explicitly. Chairman Gensler operated a policy of deliberate ambiguity: no clear taxonomy, no formal rulemaking on digital asset classification, enforcement actions as the primary communication channel for regulatory expectations. When the Atkins Commission announced Release 33-11412, it acknowledged in the accompanying press release that "the former administration refused to recognize that most crypto assets are not themselves securities." That's a repudiation in official regulatory language, and it signals the scope of the shift that this release represents. Clarity is now the policy. The five-category taxonomy is how that clarity is implemented.

3A.2 The Five-Category Token Taxonomy

The release establishes 5 mutually exclusive categories for crypto assets. Every crypto asset falls into one of them. The categories determine regulatory jurisdiction, registration requirements, and ongoing compliance obligations.

Category 1: Digital Commodities. A digital commodity is a crypto asset whose value derives from the programmatic operation of a functional crypto system (and from supply and demand dynamics), but not from the essential managerial efforts of identifiable persons. The word "functional" is load-bearing: the system must actually be operational for its stated purpose, not merely promised to be operational at some future date. Digital commodities are under CFTC jurisdiction for market manipulation and fraud purposes, not SEC jurisdiction for securities registration. The release explicitly names the assets in this category, which is the most practically useful thing the release does: Bitcoin (BTC), Ether (ETH), Solana (SOL), XRP, Cardano (ADA), Polkadot (DOT), Avalanche (AVAX), Chainlink (LINK), Stellar (XLM), Tezos (XTZ), Dogecoin (DOGE), Hedera (HBAR), Litecoin (LTC), Bitcoin Cash (BCH), Shiba Inu (SHIB), Aptos (APT), Algorand (ALGO), and Lbry Credits (LBC) are all named as digital commodities. This list resolves years of market uncertainty about whether these assets carried securities law risk. For custodians, exchanges, and fund managers who hold these assets, the classification is now unambiguous.

Digital commodities may include staking rewards and governance rights without losing their commodity classification, provided those rights are intrinsic to the protocol's operation rather than constituting an investment return generated by a central enterprise's managerial efforts. This is a meaningful clarification for institutional holders of ETH and SOL who participate in proof-of-stake consensus.

Category 2: Digital Collectibles. A digital collectible is a crypto asset designed for collection or use by the holder, representing artwork, music, video, trading cards, in-game items, or cultural artifacts (including memes and internet trends). The defining characteristics are the absence of passive yield and the absence of rights in a business enterprise. Value derives from cultural, aesthetic, or entertainment significance rather than from an enterprise's financial performance. The release explicitly addresses meme coins: they are digital collectibles, not securities. CryptoPunks, Chromie Squiggles, Fan Tokens, WIF, and VCOIN are named. Creator royalties coded into NFT smart contracts do not convert a collectible into a security. The one exception to watch: fractionalized digital collectibles (where fractional NFTs represent shares of a single collectible) may satisfy the Howey test and could constitute securities, depending on how they are structured and marketed.

Category 3: Digital Tools. A digital tool is a crypto asset that performs a specific practical function for its holder: a membership credential, event ticket, access badge, title instrument, or identity badge. Digital tools are often "soul-bound," meaning non-transferable or subject to significant transfer restrictions, and their value derives entirely from functional utility. Ethereum Name Service (ENS) domains and CoinDesk Consensus Ticket NFTs are named as examples. No rights in a business enterprise; no passive yield; not securities.

Category 4: Stablecoins. The release formally adopts the Commission's prior staff position on covered stablecoins and extends it. Payment stablecoins regulated under the GENIUS Act (enacted in 2025) are categorically excluded from the definition of "security" after the Act's effective date. A covered stablecoin, defined as a stablecoin designed to maintain a stable value relative to a reference asset and fully backed by high-quality liquid assets, does not involve a securities transaction when offered or sold. The critical exception: stablecoins that pay interest, yield, or investment returns do not qualify for non-security treatment. Foreign permitted payment stablecoin issuers registered with the Comptroller of the Currency generally qualify. Practitioners advising on stablecoin products need to apply the yield test carefully: a stablecoin that starts as a non-security can become a security through the addition of yield features.

Category 5: Digital Securities. A digital security is a financial instrument that is enumerated in the definition of "security" under the Securities Act or Exchange Act and that is formatted as or represented by a crypto asset, with ownership records maintained on or through a crypto network. This is what The Token Playbook is about. Digital securities come in 2 structural variants: instruments tokenized directly by or on behalf of the issuer, and instruments tokenized by unaffiliated third parties creating on-chain representations of an issuer's traditional security. The key principle, stated explicitly in the release: "a security is a security regardless of whether it exists in on-chain or off-chain format." Tokenization does not change the legal classification. It changes the record-keeping format. The compliance obligations that attach to the security, including registration or exemption requirements, transfer agent obligations, and broker-dealer involvement in distribution, follow the security into its tokenized form.

One critical distinction that practitioners must internalize: a non-security crypto asset that is subject to an investment contract (because it was sold with promises about an identifiable enterprise's managerial efforts) is NOT a digital security. It is a digital commodity (or other non-security category asset) that happens to be temporarily subject to an investment contract. When the investment contract ends, the asset reverts to its underlying classification. This distinction matters for enforcement posture and for how project founders should structure their compliance programs.

3A.3 The Investment Contract Framework: Creation and Termination

The most practically useful section of Release 33-11412 for project founders and their counsel is the detailed guidance on how investment contracts attach to non-security crypto assets and how they end.

An investment contract is created when a non-security crypto asset is offered with explicit, unambiguous representations or promises, made prior to or contemporaneously with the offer or sale, that an identifiable enterprise will undertake essential managerial efforts from which purchasers can reasonably expect to receive profits. The source of those representations matters: they must come through authorized channels (the issuer's website, official social media accounts, whitepapers, SEC filings, or authorized representatives). Statements by community members, forum posts, and social media commentary by third parties do not create investment contracts unless they are expressly authorized by the issuer. This is the release's answer to one of the most persistent compliance questions in the space: a founder who trains their community to say bullish things about a token's future value is creating authorization problems. A project where organic community members speculate about price is not necessarily in an investment contract situation.

The release's guidance on termination is the most important new content in the document for the practitioners who are currently sitting on old token positions or advising projects with legacy ICO-era compliance questions. Investment contracts end through exactly 3 paths.

Fulfillment occurs when the promised essential managerial efforts are completed. The network becomes functional. The promised work is done. The purchasers' expectation of profits from the enterprise's efforts has been satisfied because the enterprise has done what it said it would do. At that point, the investment contract terminates. The token doesn't become a security; it returns to whatever its underlying classification was (typically a digital commodity, if the network is now functional).

Abandonment occurs when sufficient time passes with no issuer activity toward the promised efforts that the market reasonably concludes the promises will not be fulfilled. There is no bright-line timeline in the release, which is an acknowledged gap. But the doctrine is clear: a project that goes silent for years, with no development activity and no communication, has effectively abandoned its promises through inaction, and the investment contract terminates.

Renunciation occurs when the issuer makes a public and unambiguous announcement that the promised essential managerial efforts will not be performed. The project explicitly walks away from its obligations. This is the path that gives founders a clean break: a formal, public statement of non-performance terminates the investment contract without requiring the passage of time or the completion of the promised work.

The industry term for the fulfillment path has been the "maturation doctrine": the idea that a token sold as an investment contract in an ICO may no longer be a security once the network is live. Release 33-11412 codifies that doctrine in binding regulatory guidance. The implications for retroactive enforcement posture are significant. Projects that launched under Howey analysis, completed their development work, and have functional networks may be able to establish that their investment contracts have terminated by fulfillment. That is a conversation worth having with counsel, carefully and with full documentation of the development timeline.

3A.4 Activity-Specific Guidance: Mining, Staking, Airdrops, and Wrapping

The release addresses 4 categories of crypto activities that had been either unaddressed or addressed only in speeches and staff remarks.

On proof-of-work mining: solo mining, where an individual uses their own hardware to validate transactions and earn block rewards, is not a securities transaction. The miner is earning compensation per protocol rules, not investing money in a common enterprise run by others. Mining pool participation is similarly not a securities transaction: pool operators provide coordination infrastructure, but that coordination does not constitute the "essential managerial efforts" that Howey requires.

On proof-of-stake staking: solo staking by a validator who uses their own tokens to participate in consensus is not a securities transaction. Staking rewards are intrinsic protocol compensation. Liquid staking through protocols like Lido or Rocket Pool is addressed more carefully: the analysis turns on whether the liquid staking token itself constitutes a new security, which depends on whether the protocol adds investment return characteristics that aren't intrinsic to the underlying digital commodity.

On airdrops: free distributions of crypto assets to existing holders or eligible recipients are generally not securities transactions because there is no "investment of money," satisfying the first Howey prong. Retroactive airdrops based on prior network usage receive the same treatment. The exception: airdrops structured as compensation for services, or with conditions attached that resemble investment return arrangements, require separate analysis.

On wrapping: bridging a digital commodity into a wrapped representation on another chain (WBTC as wrapped Bitcoin on Ethereum, for example) does not create a new security if the wrapper faithfully represents the underlying asset and the wrapper protocol doesn't add investment return characteristics. Wrapping a digital commodity produces a wrapped digital commodity, not a digital security.

The release's activity guidance doesn't answer every question in these categories, but it answers the most common ones that compliance teams face. For novel structures, the answer, as always, is to get counsel to apply the framework to the specific facts.

Chapter 4 moves from the US regulatory framework to the international landscape, beginning with the European Union's MiCA regulation and the UK's parallel approach. The contrast with the US system is instructive, and the commonalities are more important than they first appear.

3.5 Chairman Atkins: TAs Can Tokenize Without No-Action Relief

In February 2026, Chairman Paul Atkins delivered remarks that cleared one of the largest remaining practical obstacles to tokenization adoption.

The question had been: can a registered transfer agent tokenize securities without seeking a specific no-action letter from the SEC authorizing that activity?

Atkins' answer: yes. Registered transfer agents operating under their existing registration can tokenize securities within the scope of their transfer agent activities. They don't need to come to the SEC for permission each time. They operate under their existing registration and the general framework of the Securities Exchange Act.

This was significant. The no-action letter process is slow, expensive, and uncertain. Removing that barrier for registered TAs meant that the transfer agent community — which collectively manages the cap tables for most of U.S. corporate securities — could move toward tokenization without waiting for individual SEC approval.

3.6 Commissioner Uyeda: Modernization Through Tokenization

Commissioner Mark Uyeda's February 2026 remarks reinforced the direction. Uyeda framed tokenization not as a disruption to be regulated cautiously, but as a modernization tool that regulators should actively support.

His key point: the existing regulatory framework for securities was designed around paper records and batch-processing systems that operate on business days during business hours. That framework hasn't been fundamentally updated in decades. Tokenization isn't just changing the technology — it's exposing how anachronistic the operational assumptions underlying securities regulation have become.

The practical takeaway: the SEC under Atkins and Uyeda is not looking for reasons to slow tokenization down. It's looking for frameworks to accommodate it within existing law.

3.7 Commissioner Peirce: Innovation Exemptions and Bearer Asset Concerns

Commissioner Hester Peirce has been the longest-running advocate for a "safe harbor" framework — a time-limited exemption that would allow early-stage token projects to develop their networks before being subjected to full securities registration requirements.

Peirce's arguments are worth understanding even though a formal safe harbor has not yet been adopted. Her core insight: the existing securities framework was designed for centralized issuers with identifiable control persons. Token networks that are designed to be decentralized don't fit neatly into that structure.

One of her consistent concerns has been bearer assets. If a token can be held and transferred without identity verification — like physical cash — it creates significant compliance challenges around KYC, AML, and investor eligibility. The transfer agent community and the compliance infrastructure around tokenized securities exists precisely to prevent this. Properly structured tokenized securities are not bearer assets. They carry compliance rules that enforce who can hold them.

3.8 The DTC No-Action Letter: The Traditional System Meets the Chain

In December 2025, DTCC issued a no-action letter establishing a 3-year pilot program for tokenized entitlements.

Here's what that means practically: for securities in the Russell 1000, U.S. Treasuries, and ETFs — assets that are held at DTC in the traditional book-entry system — a tokenized entitlement layer can now be created and traded without requiring changes to the underlying DTC custody structure.

In other words: the underlying security stays exactly where it is. DTC holds it in its vaults, so to speak. But on top of that, a token is created that represents an entitlement to that security. That token can be transferred, used as collateral, or incorporated into DeFi protocols, as long as the compliance rules are satisfied.

This is a pragmatic bridge between the existing system and the on-chain future. It doesn't require issuers to re-register their securities on a blockchain. It doesn't require DTC to change its infrastructure. It creates a permissioned on-chain layer above the traditional system.

3.9 The CLARITY Act

The CLARITY Act is pending legislation designed to provide a clearer statutory framework for the treatment of digital assets — including tokenized securities — under U.S. law. Rather than relying on the SEC and CFTC to resolve jurisdictional questions through guidance and enforcement, the Act would establish clear statutory definitions.

The details are still being negotiated as of this writing. What matters: Congress is actively engaged. The CLARITY Act or something like it will eventually pass, and when it does, it will codify much of what the SEC has been doing through guidance. That's generally positive for the industry — statutory clarity is more durable than regulatory guidance.

3.10 SEC's 2026 Regulatory Priorities

In early 2026, the SEC removed digital assets and crypto from its list of examination priorities for 2026. This was widely read as a signal that the current SEC leadership considers crypto regulation a solved (or at least de-escalated) problem — one that doesn't require the same enforcement focus it received under the previous administration.

For tokenized securities specifically, the implication is the opposite of what it might seem. The SEC isn't stepping back from securities regulation. It's stepping back from treating crypto as a systemic threat to be regulated through aggressive enforcement. Tokenized securities — which are securities — remain squarely within the SEC's jurisdiction and will continue to be.

What's changed is the posture. The question the SEC is now asking isn't "how do we stop this?" It's "how do we build a framework that allows this to develop properly?" That's a fundamentally different conversation. And it's the one the industry has been waiting 8 years to have.

3.12 The March 17, 2026 Interpretive Release: The Clearest Map Yet

On March 17, 2026, Chairman Atkins delivered remarks at a Digital Chamber event that changed the game for crypto securities classification. At the same time, the SEC's Division of Corporation Finance Director Neil Moloney published a companion statement titled "The Last Chapter in the Book of Howey." Together, these documents announced the Commission's formal interpretive release — Release No. 33-11412 — and the first comprehensive token taxonomy in SEC history.

I've spent 8 years watching regulators issue guidance that created more ambiguity than it resolved. This was different.

What's Not a Security

Atkins announced that the interpretive release establishes 4 categories of crypto assets that are categorically not securities: digital commodities, digital collectibles, digital tools, and payment stablecoins regulated under the GENIUS Act.

That's a big deal. The SEC has now officially said that Bitcoin, Ether, most major L1 tokens, NFTs, meme coins, and covered stablecoins are outside its jurisdiction for securities purposes. You don't have to argue the Howey test for those assets anymore. The taxonomy does that work for you.

What Is a Security

Atkins was equally direct about what does fall under the securities laws. One class of crypto assets: tokenized traditional securities. Stocks, bonds, fund interests, and similar instruments that have been put on-chain. Those are securities because the underlying instruments are securities. The token wrapper doesn't change that. His exact words: "We are not the Securities and Everything Commission, anymore."

The Investment Contract Problem

Here's where it gets nuanced. A non-security crypto asset — say, a digital commodity — can still be subject to the securities laws if it's sold as part of an investment contract. If a founder raises money by promising investors that their efforts will make the token valuable, that's an investment contract under Howey, even if the underlying token isn't itself a security. The release addresses this directly, with the clearest explanation of investment contract termination doctrine the industry has ever received. An investment contract ends when the promised essential managerial efforts are fulfilled, or when those promises are permanently abandoned. That's a workable framework the industry has needed for 8 years.

Three Proposed Safe Harbors

Atkins outlined 3 proposed safe harbors: a startup exemption (raise up to $5M over a 4-year runway with principles-based disclosure), a fundraising exemption (raise up to $75M in any 12-month period with a formal disclosure document), and an investment contract safe harbor (formal mechanism to exit the "security" definition once all essential managerial efforts are completed or permanently ceased). These proposals trace their lineage directly to Commissioner Peirce's Token Safe Harbor proposal, first introduced in February 2020.

What This Means for Tokenized Securities

The SEC has now drawn the clearest map in the history of crypto securities regulation. For tokenized traditional securities, the path is unambiguous. It runs through a registered transfer agent. The Commission has explicitly said that tokenized traditional securities — stocks, bonds, fund interests — are the one crypto asset class that remains squarely in their jurisdiction. That means proper issuance, proper exemptions or registration, and proper record-keeping through a compliant transfer agent. The uncertainty that defined this space for 8 years is being replaced by structure. That's worth understanding in detail.

3A.5 What the Taxonomy Means for Practitioners

Release No. 33-11412 is not a theoretical document. It is an operational one. Here is how to use it.

For tokenized securities issuers: nothing has changed about your core compliance obligations, but your regulatory position is now cleaner than it has ever been. You know exactly where you sit in the taxonomy (Category 5: Digital Securities), you know exactly what's required (registration or exemption, TA involvement, compliant transfer mechanics), and you can point institutional investors to a Commission-level document that confirms your asset class has unambiguous legal status. That clarity has real commercial value.

For registered transfer agents: Chairman Atkins' February 2026 remarks, now incorporated into the release's context, remove the no-action letter barrier. You can tokenize under your existing registration. The question is no longer "do we have permission?" The question is "do we have the technology and compliance infrastructure to execute?" That's a much better problem to have.

For founders with legacy ICO-era tokens: the fulfillment and abandonment termination doctrine is your off-ramp. Document your development history. Assess honestly whether your network is functional and your investment contract obligations have been fulfilled. If they have, work with counsel to establish that officially. If the project failed, the abandonment path gives you a clean break. The alternative — carrying an unresolved Howey analysis indefinitely — is worse than either outcome.

For custodians, exchanges, and fund managers: the named-asset list in Category 1 (Digital Commodities) resolves the compliance uncertainty that has kept institutional money out of major L1 tokens. Bitcoin, Ether, Solana, XRP, and 14 other named assets are commodities under CFTC jurisdiction, not securities under SEC jurisdiction. That's the answer your compliance teams have been waiting for. Build accordingly.

The token taxonomy is not the last word in securities tokenization regulation. There will be rulemaking on the safe harbor proposals, court decisions that interpret the release's framework, and congressional action through vehicles like the CLARITY Act that will add statutory layers. But as a foundational document — a reference point that structures every subsequent analysis — Release No. 33-11412 is the most useful thing the SEC has produced for this industry. Use it.

← Previous Ch. 2: A Brief History of Securities Tokenization Next Chapter → Ch. 4: European Union and United Kingdom