Coinbase Hit With Record 12,716 Government Requests in 2025

Coinbase received 12,716 government and law enforcement information requests between October 2024 and September 2025, marking a 19% year-over-year increase and the highest volume in the exchange’s history.

International requests accounted for 53% of the total, a new high, with France leading jurisdictions outside the U.S. with a 111% surge in demand for customer data.

The surge comes as Coinbase expands operations across more than 100 countries amid heightened regulatory scrutiny following major compliance failures in Europe and a damaging cybersecurity breach earlier this year.

The exchange’s seventh annual Transparency Report, published by Chief Legal Officer Paul Grewal, points out the growing global pressure on crypto platforms to balance user privacy with legal obligations.

France Drives International Demand, U.S. Still Dominates

The United States remained the largest single source of requests, followed by Germany, the United Kingdom, France, Spain, and Australia.

These six countries combined accounted for roughly 80% of all law enforcement requests globally.

France saw the sharpest increase among major jurisdictions, with requests jumping 111% from the prior reporting period.

The U.K. and Spain also posted double-digit gains, rising 16% and 27% respectively. Germany, Sweden, and South Korea recorded decreases, with South Korea’s requests dropping 67%.

Requests from Moldova and Brazil increased by factors of 5.7 and 2.7, while Australia’s volume remained nearly flat with just a 1% uptick.

Despite fluctuations across different markets, total request volume has stayed within the 10,000 to 13,000 range annually over the past four years.

Compliance Under Fire After Fines and Data Breach

The rising demand for user data comes amid regulatory penalties and internal security lapses that have damaged Coinbase’s compliance reputation.

In November, the exchange’s European arm agreed to pay €21.5 million to Ireland’s Central Bank after coding errors left 31% of transactions, worth more than $202 billion, unscreened for money laundering between 2021 and 2022.

The malfunction affected five of 21 transaction-monitoring scenarios, forcing Coinbase to reanalyze 185,000 transactions and file 2,700 suspicious transaction reports.

Just last year, Coinbase’s UK subsidiary was fined £3.5 million by the Financial Conduct Authority for onboarding over 13,000 high-risk customers in violation of a voluntary restriction, facilitating nearly $226 million in transfers.

In May, the exchange disclosed a cyberattack compromising the personal data of at least 69,461 customers, including government-issued IDs and email addresses, after hackers bribed customer service staff.

The breach, which was not disclosed until weeks after discovery, triggered at least six class-action lawsuits and a Justice Department investigation.

Shareholders later filed a separate suit alleging that Coinbase and its CEO, Brian Armstrong, failed to promptly disclose both the breach and the UK compliance violation, contributing to a 7.2% drop in the company’s stock.

Coinbase Expands Compliance as SEC Pressure Eases

Coinbase emphasized in its latest report that it reviews each request on a case-by-case basis and seeks to narrow overly broad demands.

The exchange stated that it seeks to provide anonymized or aggregated data whenever possible, rather than exposing individual customer information.

Requests received do not always result in data being produced, and the company maintains that it does not grant governments direct access to its systems.

The report arrives as Coinbase benefits from a dramatic shift in U.S. regulatory posture.

In March, the Securities and Exchange Commission agreed to drop its years-long enforcement action against the exchange, which had accused Coinbase of operating as an unregistered securities platform.

The dismissal followed similar moves by the SEC to abandon cases against Kraken, Robinhood, and Consensys after Paul Atkins replaced Gary Gensler as chair in January.

Additionally, back in September, Atkins pledged to replace what he called a “shoot first and ask questions later” approach with advance notices and clearer guidance for crypto firms.