Issuance & Redemption

BlackRock BUIDL Subscription

Tokenized money market fund — 3(c)(7) qualified purchaser, $5M minimum, 9 chains, Securitize as transfer agent.

Vendors

BlackRock · Securitize · BNY Mellon

Compliance Center

3(c)(7) qualified purchaser at Identity + $5M minimum at Negotiation

issuance buidl blackrock securitize tokenized-fund accredited-investor whitelist

I4 — BlackRock BUIDL subscription · Rails: issuance · Protocols: BUIDL, Securitize Platform · Origin: United States — Federal
CTR (USD 10,000+)TRAVEL-RULE (USD 3,000+)ENHANCED-DUE-DILIGENCE (USD 50,000+)

L5 APPLICATIONWallet UX, consent, policy engineBank customer channel / issuer app

L4 ACCOUNTBalances, addresses, signing keysCore banking ledger / DDA

Step 1 · Qualified Purchaser VerificationPolicy-EnforcedBlockchain-Native

The investor eligibility gate — Securitize verifies 3(c)(7) qualified purchaser status before proceeding.

Securitize (SEC-registered transfer agent) verifies that the prospective investor meets Investment Company Act § 3(c)(7) qualified purchaser criteria: $5M+ in investments, accredited investor status, or qualified institutional buyer (QIB) designation. KYC (D1) and licensing (D8) verified. This is the compliance heavyweight — the highest bar in the stablecoin universe. Policy-enforced at L4–L5.

Active Compliance Checkpoints

C2 OFAC SDN/SSI list screening — OFAC 50 USC § 1702 (United States — Federal) · GENIUS §6

⚠ ENHANCED-DUE-DILIGENCE triggered at USD 50,000 — 31 CFR § 1010.312 — Enhanced Due Diligence (United States — Federal)

Counterparty: Securitize (transfer agent) + BlackRock compliance team
Latency: Hours to days · manual compliance review
Finality: Investor approved or rejected
Vendors: MetaMask / Fireblocks · EOA / ERC-4337

L5 APPLICATIONWallet UX, consent, policy engineBank customer channel / issuer app

Step 2 · Subscription Agreement & AMLPolicy-EnforcedBlockchain-Native

The subscription gateway — investor signs fund agreement and source-of-funds documentation passes AML/CFT screening.

Investor executes subscription agreement (SEC Form N-PX equivalent for digital fund) and provides source-of-funds evidence. Securitize and BlackRock conduct AML screening (D2) for sanctions, PEPs, and typologies. This is the document boundary — the bridge between traditional fund law and on-chain settlement. D1 (identity), D2 (sanctions reporting), and D8 (licensing) are active.

Active Compliance Checkpoints

C2 OFAC SDN/SSI list screening — OFAC 50 USC § 1702 (United States — Federal) · GENIUS §6

Counterparty: Securitize legal + BlackRock fund administrator (PwC)
Latency: Days · document assembly and screening
Finality: Subscription agreement accepted and AML cleared
Vendors: MetaMask / Fireblocks

L3 EXECUTIONSmart contracts, swap / bridge logicClearing & matching engine

◆ Enforcement Line — code-enforced below, policy-enforced above

Step 3 · NAV Strike & AllocationPolicy-EnforcedBlockchain-Native

The NAV gate — fund administrator confirms daily NAV and allocates subscription at market price.

PwC (SEC-registered fund administrator) calculates daily NAV based on BUIDL holdings (short-term Treasuries, overnight repo, cash). Subscription amount is allocated at NAV. This is the prudential checkpoint — D9 (capital and valuation requirements) and D14 (consumer protection via fair pricing) fire. Policy-enforced at L3.

Counterparty: PwC (fund administrator) + BNY Mellon (custodian)
Latency: ~1s · NAV published daily at 4pm ET
Finality: Allocation confirmed — mint authorized
Vendors: Uniswap v4 · Chainalysis OFAC Oracle · Circle CCTP v2

L3 EXECUTIONSmart contracts, swap / bridge logicClearing & matching engine

L2 CONSENSUSValidator ordering, block productionRTGS settlement engine

◆ Enforcement Line — code-enforced below, policy-enforced above

Step 4 · On-Chain Mint + WhitelistCode-EnforcedBlockchain-Native

The issuance boundary — BUIDL tokens are minted only to whitelisted addresses. The smart contract IS the transfer agent.

BUIDL tokens minted natively on settlement chain (Ethereum, Avalanche, Polygon, Arbitrum, Optimism, Aptos, or Solana). Smart contract enforces whitelist at mint time — only addresses pre-approved by Securitize receive tokens. This is the compliance heavyweight moment: transfer restrictions are code-enforced via ERC-3643 or equivalent compliance layer. L3 Execution (mint contract with whitelist oracle) and L2 Consensus are lit. The contract is the transfer agent — enforcement is code at the application boundary.

⚠ TRAVEL-RULE triggered at USD 3,000 — 31 CFR § 1010.410(f) — Funds Transfer Recordkeeping (United States — Federal)

Counterparty: Securitize on-chain whitelist + BUIDL mint contract
Latency: ~12s–2s · single block confirmation per chain
Finality: Mint finalized — BUIDL in whitelisted wallet
Vendors: Ethereum PoS Validators · Uniswap v4 · Chainalysis OFAC Oracle · Circle CCTP v2

L5 APPLICATIONWallet UX, consent, policy engineBank customer channel / issuer app

L4 ACCOUNTBalances, addresses, signing keysCore banking ledger / DDA

Step 5 · Investor Wallet (Whitelisted)Code-EnforcedBlockchain-Native

The investor's fund share balance — BUIDL tokens in whitelisted wallet, transfer-restricted by contract.

BUIDL tokens arrive in the investor's whitelisted wallet. Only addresses that have passed Securitize approval can hold or receive BUIDL — the transfer restriction is code-enforced in the smart contract. Investor can redeem daily at NAV via Circle atomic settlement (USDC, same-day finality). BNY Mellon custodizes the backing assets (Treasuries, repo, cash). Recordkeeping (D11) and tax reporting (D12) obligations apply. This is the most regulated path in the Issuance rail.

⚠ CTR triggered at USD 10,000 — 31 CFR § 1010.311 — Currency Transaction Report (United States — Federal)

Counterparty: Investor's whitelisted address + Securitize oracle
Latency: Instant on mint confirmation
Finality: Final · BUIDL held and accruing yield daily
Vendors: MetaMask / Fireblocks · EOA / ERC-4337

Resolved 5 steps across 1 chain(s). 3 threshold(s) triggered. Frameworks: Bank Secrecy Act, GENIUS Act, OFAC Sanctions Program, FATF Recommendation 16 (Travel Rule), Common Reporting Standard / FATCA.

Key question: Is the mint gated by an on-chain registry (code-enforced, L3) or by an off-chain API call to the transfer agent (policy-enforced, L4/L5)?

Circle USYC

Circle as issuer + fund administrator. USYC minted natively on Arc. Accredited investor check at L4 (Circle's compliance engine). NAV from Hashnote's calculation agent, published on-chain.

BlackRock BUIDL

Securitize as transfer agent. Minted on Ethereum. Accredited check at L5 (Securitize portal, fully off-chain). NAV from BlackRock, published via Securitize.

Franklin Templeton FOBXX

Franklin Templeton as both fund manager and transfer agent. Minted on Stellar. Authorization flags at L3 (Stellar's built-in asset controls). NAV from Franklin Templeton.

Generic ERC-20 Wrapper

No fund administrator. No compliance checks. Anyone can mint if they call the contract. No NAV enforcement whatsoever.

NAV QUESTION

Circle USYC

Arc

BlackRock BUIDL

Ethereum

Franklin Templeton FOBXX

Stellar

Generic ERC-20 Wrapper

Any EVM

NAV Calculator

Who calculates NAV?

L4POLICY

Hashnote (now Circle)

L5POLICY

BlackRock

L5POLICY

Franklin Templeton

Nobody

NAV Publication

Where is NAV published?

L3CODE

On-chain at L3 (Arc)

L4POLICY

On-chain via oracle at L4

L5POLICY

Off-chain at L5

Not published

On-chain Enforcement

Is NAV enforceable on-chain?

L3CODE

Yes — mint/redeem gated by NAV

L4POLICY

No — NAV is informational

L5POLICY

No — transfer agent controls

No — no NAV exists

NAV Failure Mode

What happens if NAV calculation fails?

L3CODE

Mint paused — oracle dependency

L4POLICY

Redemptions continue at stale NAV

L5POLICY

Fund admin discretion

No safeguard

Audit Trail

Who can verify NAV history?

L3CODE

Anyone — on-chain

L4POLICY

Securitize portal — whitelisted

L5POLICY

Fund administrator — on request

No audit trail

CODE-ENFORCED

POLICY-ENFORCED

ABSENT — THE GAP

The pattern: Circle USYC publishes NAV on-chain at L3 — the only fund where NAV enforcement is code-enforced. BlackRock BUIDL and Franklin Templeton FOBXX rely on off-chain fund administrators. The Generic ERC-20 wrapper column shows what institutional investors see when tokenization happens without compliance architecture: empty cells. The empty cells are the point.