See also MiCA Recital 51: Issuers of asset-referenced tokens should also have strong internal control mechanisms and effective procedures for risk management, as well as a system that guarantees the integrity and confidentiality of information received.