Index
⚖️ Regulatory Compliance¶
Comprehensive guide to Mobius Systems regulatory alignment.
Compliance Overview¶
Mobius Systems is designed for regulatory compatibility across major jurisdictions:
| Jurisdiction | Status | Documentation |
|---|---|---|
| 🇺🇸 United States | ✅ Compatible | US Framework |
| 🇪🇺 European Union | ✅ Compliant | EU Framework |
| 🇬🇧 United Kingdom | ✅ Compatible | UK Framework |
| 🌐 International | ✅ Compatible | International Standards |
US Framework¶
Securities Law (SEC)¶
Classification: MIC is a utility token, not a security.
| Howey Test Element | MIC Status |
|---|---|
| Investment of money | ❌ Earned through work |
| Common enterprise | ❌ Decentralized coordination |
| Expectation of profits | ❌ Governance utility |
| Efforts of others | ❌ Self-earned rewards |
Conclusion: MIC does not meet Howey test criteria.
Commodities (CFTC)¶
Classification: Not a commodity derivative.
| Factor | Status |
|---|---|
| Underlying asset | None (pure utility) |
| Futures/options | Not applicable |
| Leverage | Not applicable |
Banking (Federal Reserve)¶
Classification: Compatible with existing frameworks.
| Requirement | Implementation |
|---|---|
| Capital adequacy | N/A (not a bank) |
| Liquidity | Transparent supply |
| Consumer protection | Exit rights preserved |
EU Framework¶
GDPR Compliance¶
| Principle | Implementation |
|---|---|
| Lawful basis | Consent (civic oath) |
| Purpose limitation | Governance only |
| Data minimization | Hash-only attestations |
| Storage limitation | Ledger data permanent (public interest) |
| Integrity | Cryptographic verification |
| Confidentiality | Encryption at rest/transit |
AI Act Compliance¶
Classification: High-risk AI system (governance domain)
| Requirement | Implementation |
|---|---|
| Risk management | Continuous MII monitoring |
| Data governance | Provenance tracking |
| Technical documentation | Complete system docs |
| Record-keeping | Immutable ledger |
| Transparency | Public deliberation logs |
| Human oversight | Guardian council, overrides |
| Accuracy | 97% drift prevention verified |
| Robustness | Multi-sentinel redundancy |
MiCA Compliance¶
Classification: Utility token
| Requirement | Status |
|---|---|
| White paper | Published |
| Issuer identification | Mobius Foundation |
| Liability provisions | Clear terms |
| Complaint handling | Appeal mechanisms |
UK Framework¶
FCA Classification¶
Status: Utility token (not e-money, not security)
Data Protection Act¶
Status: GDPR-equivalent compliance
Financial Promotion Rules¶
Status: No financial promotion claims made
International Standards¶
Basel III¶
| Requirement | Compatibility |
|---|---|
| Capital requirements | N/A (not a bank) |
| Liquidity coverage | Transparent |
| Leverage ratio | N/A |
| Disclosure | Ledger public |
FATF (Anti-Money Laundering)¶
| Requirement | Implementation |
|---|---|
| Customer due diligence | Civic oath identity |
| Transaction monitoring | Ledger analysis |
| Suspicious activity | Sentinel detection |
| Record retention | Permanent ledger |
ISO 27001 (Information Security)¶
| Control | Status |
|---|---|
| Access control | ✅ Implemented |
| Cryptography | ✅ Industry standard |
| Operations security | ✅ SOC 2 Type II |
| Incident management | ✅ Documented |
| Business continuity | ✅ Multi-region |
Compliance Documentation¶
Available Reports¶
| Report | Frequency | Access |
|---|---|---|
| SOC 2 Type II | Annual | Under NDA |
| GDPR Assessment | Annual | Public summary |
| AI Act Impact | Per deployment | Government request |
| Penetration Test | Quarterly | Summary public |
Audit Trail¶
All actions are logged with: - Timestamp - Actor (sentinel/human) - Action type - Reasoning trace - Cryptographic attestation
Export: Available in JSON, CSV, PDF formats.
Contact¶
Compliance Inquiries: compliance@mobius.systems Regulatory Liaison: regulatory@mobius.systems
Cycle C-151 • Policy Cathedral