The Estonian Financial Supervisory Authority issued an investor warning against Zondacrypto, operated by BB Trade Estonia OÜ, after identifying a MiCA disclosure breach tied to the TeamPL token. The warning centered on the exchange’s failure to make the required white paper publicly available, a core transparency obligation under the EU’s crypto regulatory framework.

The alert matters because it arrived as Zondacrypto was already facing criminal inquiries and mounting customer complaints in Poland and other jurisdictions. For institutional treasuries, counterparties and compliance teams, the case signals how a documentation failure can quickly become part of a broader supervisory and enforcement review.

MiCA Transparency Rules Move Into Enforcement Focus

The Estonian FSA cited non-compliance with MiCA Article 9, Section 1, which requires publication of a crypto-asset white paper where applicable. By flagging the missing TeamPL documentation, the regulator treated the absence of public disclosure as a substantive investor-protection issue, not a minor administrative gap.

That distinction is important under MiCA’s single-market framework. White papers are intended to give users and investors standardized information about crypto assets before exposure, making transparent token documentation a baseline compliance requirement for exchanges operating in the EU.

The FSA framed the warning as a consumer-protection measure designed to alert users to legal and informational shortcomings in the product’s public materials. For crypto service providers, the operational takeaway is direct: listings must be supported by complete, accessible and regulatorily compliant disclosures.

Polish Investigation Raises Broader Custody Concerns

The Estonian warning came alongside escalating legal scrutiny in Poland. Prosecutors in Katowice began an investigation in April 2026 covering allegations of fraud, money laundering and severe operational irregularities, placing Zondacrypto’s custody and governance practices under deeper examination.

Reported issues include missing custodial assets, withdrawal frictions and the unexplained departure of senior management. Public reporting cited approximately 4,500 BTC as inaccessible from a cold wallet, with valuations in the roughly $334 million to $360 million range.

Polish prosecutors also estimated losses of at least 350 million PLN, reported in the sourced material as about $97 million. More than 1,500 crime reports were filed, while victim counts varied from hundreds to broader ranges cited in public summaries, underscoring the scale of user exposure under review.

Additional scrutiny has reportedly emerged in Monaco over potential money-laundering concerns. On-chain analysis cited in reporting suggested signs of distress before public disclosures, while users described frozen accounts and blocked withdrawals, adding liquidity access and asset-segregation risk to the regulatory picture.

The case shows how MiCA disclosure breaches may be treated as red flags for broader operational weakness. Supervisors are likely to view missing white papers, withdrawal delays and custody uncertainty as connected indicators when assessing resilience and potential criminal exposure.

Crypto service providers must maintain MiCA-required disclosures, demonstrable custody controls, asset segregation and audit-ready withdrawal processes, because investor transparency and operational solvency are now being reviewed together across jurisdictions.

Regulatory coordination will determine the final enforcement outcome. Until then, counterparties and treasuries should treat the Zondacrypto warning as a reminder to reassess custody exposure, token-listing documentation and cross-border legal risk before relying on EU-facing crypto venues.