Binance, the world's largest cryptocurrency exchange by trading volume, now operates under one of the crypto industry's most stringent regulatory frameworks following a $4.3 billion settlement with US federal agencies in November 2023. The exchange publishes quarterly proof-of-reserves reports, submits to independent compliance monitoring, and has restructured its global operations to comply with major jurisdictions including the European Union. Understanding how Binance functions in 2026 matters because it signals how offshore crypto exchanges can adapt to regulatory pressure while maintaining market dominance.

What Exactly Did Binance Settle With US Regulators?

In November 2023, Binance agreed to pay $4.3 billion across multiple US agencies for violations spanning the Bank Secrecy Act, sanctions compliance, and derivatives regulation. The settlement broke down into criminal fines of roughly $1.81 billion to the Department of Justice, a $3.4 billion penalty from the Financial Crimes Enforcement Network (FinCEN), a $968 million penalty from the Office of Foreign Assets Control (OFAC), and a $2.85 billion penalty from the Commodity Futures Trading Commission (CFTC). These figures included credits for overlapping payments, bringing the total cash outlay to approximately $4.3 billion.

The settlement required Binance founder Changpeng Zhao (known as CZ) to resign immediately. Zhao pleaded guilty to a single count of violating the Bank Secrecy Act, served four months in a federal facility in California, and was released in September 2024 according to the Federal Bureau of Prisons inmate locator. He remains a shareholder but has no operational role and is barred from involvement for three years.

Richard Teng, a former Singapore and Abu Dhabi financial regulator, took over as CEO following the settlement. His appointment was part of the regulatory resolution and signals Binance's shift toward compliance-first leadership. The practical effect for users is that Binance now operates under continuous external oversight rather than self-attestation, with a five-year independent monitor reviewing customer onboarding, sanctions screening, and transaction monitoring on a quarterly basis.

How Does Binance Prove It Actually Holds Customer Funds?

Binance publishes a Proof-of-Reserves report each quarter using a cryptographic method called a Merkle tree construction. This approach, originally proposed by Nic Carter and others after the Mt. Gox collapse, allows the exchange to prove it holds customer assets without exposing individual account balances. Users can verify their balance was included in the reserve snapshot by hashing their account ID and tracing the path to the published Merkle root.

The current Proof-of-Reserves reports cover more than 30 assets including Bitcoin (BTC), Ethereum (ETH), Tether (USDT), USD Coin (USDC), Binance Coin (BNB), Solana (SOL), and Ripple (XRP). Independent verifiers can pull on-chain balances from the published wallet addresses using block explorers like Etherscan and Tronscan. Binance reports reserve ratios consistently above 100%, meaning the exchange claims to hold more assets than customers are owed.

However, the limitations of Proof-of-Reserves are well-documented. The proof shows assets on a specific date and does not address liabilities the exchange may owe outside the snapshot, such as loans, off-balance-sheet obligations, or derivatives margin shortfalls. It also cannot prove the wallets are not borrowed for the snapshot. Both Kraken and Coinbase use similar Merkle constructions; Coinbase additionally publishes audited financial statements as a public company, which Binance does not.

Separately, Binance maintains the SAFU fund, an insurance reserve created in 2018 by allocating 10% of trading fees. The fund's wallet address is public, and as of the first quarter of 2026, the balance exceeds $1 billion across BNB, BTC, USDT, and TUSD. SAFU has been drawn down twice publicly: once after a 2019 hack that lost 7,000 BTC, and once to compensate users affected by a 2022 BNB Chain bridge incident.

How to Understand Binance's Regulatory Footprint Across Major Jurisdictions

• US Access: US persons cannot use Binance.com, which geo-blocks US IP addresses and requires non-US residency at Know Your Customer (KYC) verification. Binance.US, operated as BAM Trading Services, is the only legal entry point for US customers, but it offers only spot trading with no perpetual futures, margin, options, or smaller token lists. The SEC dismissed its lawsuit against Binance.US in May 2025, though the global entity remains restricted from US access.
• European Union Compliance: The EU's Markets in Crypto-Assets Regulation (MiCA) took full effect in December 2024, requiring crypto-asset service providers to hold CASP (Crypto-Asset Service Provider) licenses in an EU member state. Binance holds a French PSAN registration since 2022 and has applied for full CASP authorization across multiple member states. In March 2025, Binance delisted non-MiCA-compliant stablecoins for European users, removing USDT from EEA spot trading pairs and replacing them with USDC and EUR pairs.
• Global Operating Entities: Binance Holdings Ltd. is incorporated in the Cayman Islands with operating entities licensed across Dubai (VARA), France (PSAN), Italy (OAM), Spain, Poland, and El Salvador. This multi-jurisdiction structure allows Binance to serve different regions under tailored regulatory frameworks while maintaining a single corporate parent.

What Risks Does Binance Face Going Forward?

The source material identifies four operational risk categories for Binance: regulatory, custodial, token-correlation, and operational. Regulatory risks stem from ongoing compliance obligations in multiple jurisdictions and the five-year independent monitor mandate. Custodial risks relate to the limitations of Proof-of-Reserves and the possibility of off-balance-sheet liabilities. Token-correlation risks arise from Binance's exposure to its own native token, BNB, which represents a significant portion of the SAFU fund and exchange reserves. Operational risks include cybersecurity threats and technical infrastructure failures.

The most immediate regulatory pressure comes from the EU's MiCA framework, which has already forced Binance to reduce product breadth for European users. Some users experienced the stablecoin delisting and trading pair restrictions as a downgrade, though the changes demonstrate Binance's ability to comply with major-jurisdiction rules when forced to do so. The independent DOJ monitor's ongoing review of sanctions screening suggests that compliance in this area remains under active scrutiny.

For US residents, the practical reality is that Binance.US, Coinbase, Kraken, or Gemini remain the legal alternatives. VPN-based access to Binance.com from the US violates the exchange's terms of service and is cited as one of the violations in the DOJ settlement. Accounts identified as US-person-via-VPN are frozen, and withdrawals require completing US-jurisdiction KYC, which the global entity does not support.

Binance's 2026 operating model reflects a fundamental shift in how offshore crypto exchanges function under regulatory pressure. The combination of quarterly reserve audits, independent compliance monitoring, multi-jurisdiction licensing, and reduced product breadth in regulated markets suggests that the era of unmonitored offshore exchanges is ending. Whether Binance's compliance infrastructure proves sufficient to satisfy regulators in the US, EU, and other jurisdictions remains an open question, but the $4.3 billion settlement and leadership change signal that the exchange is committed to operating within the bounds of major regulatory frameworks.