Stablecoin Compliance Infrastructure Can't Wait for Regulatory Clarity 

The waiting game is over.

For years, the standard institutional response to stablecoins was some version of "wait and see." Regulatory uncertainty was a legitimate reason to hold back. Nobody wanted to build compliance infrastructure around an asset class that Congress might define out of existence. That reasoning is getting harder to sustain. MiCA is live across the EU. The GENIUS Act is moving through the US legislature. For the first time, a legal definition of a compliant stablecoin is emerging: fiat-collateralized, redeemable, and auditable. The question isn't "is this legal?" anymore. It's "how to be ready for when it is?"

In terms of readiness, most institutions simply aren't there yet. And the gap is less philosophical and more operational.

Not All Stablecoins Face The Same Problem

The first problem is that the category of "stablecoins" describes four meaningfully different asset structures, each with different risk profiles, different failure modes, and different data requirements. Treating them as a category is how institutions end up with exposure they don't understand.

Fiat-backed stablecoins (USDC, USDT, PYUSD, and others) are the simplest model. The issuer holds 1 unit of dollars or cash equivalents for every $1 dollar-equivalent of stablecoin in circulation. The peg holds because authorized participants can redeem at par: if USDC trades at $0.99, someone buys it in the market and redeems it from Circle for $1. Arbitrage is the mechanism that closes the gap. The GENIUS Act is essentially codifying this model as the regulatory standard. But within the category, collateral quality varies significantly. Circle holds USDC reserves in cash and short-term treasuries via BlackRock-managed funds and publishes monthly attestations. Tether uses treasuries too, but has diversified its backing to include holdings of physical gold. The differences in collateral composition and audit transparency are the main risk axis, and right now, most institutions assess that axis by reading documents in this manual format.

Crypto-collateralized stablecoins work differently. A user locks ETH or wBTC into a smart contract and mints stablecoins against it as debt, over-collateralized at 110-150%. There's no issuer to trust. The smart contract is the counterparty. MakerDAO built this model with its DAI stablecoin in 2017, and it has survived multiple major market cycles. One thing worth knowing: CDP stablecoins expand their market caps during bull markets, when crypto users want leverage, and conversely contract during bear markets, the opposite behavior from fiat-backed stables, which often grow during fear periods as people seek onchain dollar exposure.

Third, there are delta-neutral synthetics, which are newer and less intuitive. Ethena's USDe is backed by crypto collateral hedged with perpetual futures shorts. The combination is worth roughly $1 regardless of what crypto prices do. The yield comes from staking rewards on the collateral and funding rates collected on the short positions. The model works until funding rates go deeply negative for sustained periods, or until a redemption rush outpaces the protocol's ability to unwind its hedges. The late 2025 Aave looping episode showed the second-order risk more clearly than any theoretical analysis could: Ethena's protocol mechanics held, but USDe was being used as collateral in leveraged looping trades, and when a small price wobble triggered unwinds, those unwinds created more selling pressure, which triggered more unwinds. The protocol was fine. The leverage built on top of it was not.

Then there are algorithmic stablecoins, which are mostly a cautionary tale after past cycles have shown their riskiness. Terra/UST tried to maintain its peg through mint/burn mechanics with no real collateral behind it. It worked until it didn't. In May 2022, redemptions outran the algorithm, and roughly $45B in market cap evaporated over a week. Every serious stablecoin design since then has real collateral. Pure algorithmic models are considered an anti-pattern.

An institution that can't distinguish these models in its risk system (not just in a memo) isn't ready for a regulatory regime that will ask it to.

What Readiness Actually Means

A bank's risk desk needs to know, at any moment: which stablecoins it holds, what assets are backing those stablecoins, whether any counterparties are on a sanctions list, and whether its transaction history can survive a regulatory examination. For fiat-backed stables, that means tracking reserve composition and redemption events in something close to real time, not just balances. For CDP stables, it means watching collateral ratios and liquidation activity. For delta-neutral stables, it means monitoring funding rates and hedge exposure across the underlying positions.

Most institutions can't answer those questions from a single system today. The data exists. It's all onchain. But it's expensive, fragmented, unstructured, and spread across chains with different block times and different schemas.

The Reserve Transparency Problem

The transparency problem looks different depending on which stablecoin you're holding, and institutions that treat it as a single problem will misread their exposure.

For fiat-backed stablecoins, the question is what's actually in the reserve and who's attesting to it. Circle publishes monthly attestations for USDC, with reserves held in cash and short-term Treasuries via BlackRock-managed funds. That's a relatively clean picture. Tether's USDT reserve composition has historically been murkier, though it has moved toward treasuries and added significant gold holdings as of 2026. PYUSD is custodied by Paxos under New York DFS supervision, which adds a regulatory layer. The risk axis across all of them is the same: collateral quality and audit frequency. Monthly attestations, when they exist, are backward-looking. An issuer publishes a PDF telling you what the reserves looked like at the end of last month. Which is not really a reliable risk management tool. What a risk team needs is a live feed of issuance events, redemption volume, and supply changes, structured data that updates when the chain updates, not when the issuer's finance team files a report.

For crypto-collateralized stablecoins, the transparency problem is different in kind. There's no issuer PDF to wait for. The collateral ratios, liquidation activity, and peg stability module flows are all onchain and public. The problem is that reading them requires indexing smart contract state across multiple vaults, tracking collateral prices in real time, and knowing when a position is approaching the liquidation threshold before it gets there. A risk desk holding DAI or USDS exposure needs to watch the aggregate collateralization ratio of the protocol, not just its own balance.

For delta-neutral stablecoins like USDe, the transparency requirement goes further still. The peg depends on funding rates staying positive and the hedge book unwinding smoothly under redemption pressure. Neither of those is visible from a balance. The 2026 Aave looping episode made this concrete: USDe was being used as collateral in leveraged looping trades, and when a small price wobble triggered unwinds, those unwinds created more selling pressure, which triggered more unwinds. The protocol held, the leverage built on top of it didn't. An institution with USDe exposure that wasn't monitoring funding rates and open interest in the underlying perp markets was flying blind.

The common thread across all three is this: the data exists. It's all onchain and public. The gap is infrastructure, specifically the ability to pull that data into a structured, queryable form that a risk system can actually use. The SVB weekend in March 2023 made that gap visible. USDC briefly depegged to $0.87 when Circle's reserve exposure to Silicon Valley Bank became known. The institutions with real-time visibility into USDC's custodian breakdown were making different decisions than those waiting for a press release. The information was onchain. Most institutions just couldn't read it fast enough.

Substreams and Amp

Substreams move stablecoin data (issuance events, redemption flows, transfer activity) from the chain into whatever environment an institution is building. That part is on the institution: they establish the compliance zone, Substreams feed it. Prominent Substreams users, like Pinax and their Token API, make pricing events easy to find across chains without requiring institutions to manage their own price feeds acrossnetworks.

Amp is where the compliance and audit story lands. Provenance tracking, tamper-evident records, verifiable audit trails: these aren't features added on top of Amp, they're what it's built to do. For a regulated institution, that distinction matters in a specific way. "Here is a verified, unmodified record from our own data environment" is a different conversation with a regulator than "we pulled this from an API." The first one holds up in an examination. The second invites follow-up questions about the API's methodology, its uptime during the relevant period, and who controls it.

The First-Mover Point

Regulatory clarity rewards institutions that are already wired in. The GENIUS Act, if it passes, creates a class of compliant stablecoins and a set of reporting obligations that come with holding or transacting in them. The institutions that spent the waiting period building the data infrastructure move on day one. The ones that treated "regulatory uncertainty" as a reason to defer the technical work will spend the first six months of the new regime catching up, which is exactly when their competitors are locking in the relationships and the market share.

The rules are coming. The data infrastructure either exists when they arrive or it doesn't.

About The Graph

The Graph is a suite of blockchain data infrastructure products that extract, process, and deliver scalable blockchain data solutions across 60+ networks. The Graph enables application developers, data analysts, AI agents, and enterprise teams that need structured, real-time access to blockchain data. Products include Subgraphs, Firehose, Substreams, and Amp. As of early 2026, The Graph has served over 1.27 trillion queries to more than 75,000 projects, powered by a network of independent Indexers around the world.

Follow The Graph on X, LinkedIn, Instagram, and Reddit. Join the community on The Graph’s Telegram, join technical discussions on The Graph’s Discord.