Citigroup will tokenize shares of private companies for wealth management and institutional clients, marking the first major U.S. bank to operationalize private equity tokenization at scale. The move validates a custody architecture shift that institutional allocators have been evaluating since 2022.
Citi's Private Equity Tokenization Structure
Citigroup's private banking division plans to tokenize shares in pre-IPO companies and private funds, targeting qualified purchasers with minimum investable assets of $5 million. The bank will issue digital representations of traditional private equity positions on permissioned blockchain infrastructure, enabling 24/7 settlement and programmable compliance.
The initiative follows JPMorgan's Onyx platform, which has processed over $900 billion in tokenized repo transactions since 2020, and Goldman Sachs' DAP platform for tokenized bonds. Citi's focus on private equity addresses a different liquidity challenge. Private market positions typically lock capital for 7-10 years with quarterly valuation updates. Tokenization enables secondary trading among qualified investors while maintaining regulatory compliance through smart contract-enforced transfer restrictions.
The bank has not disclosed which blockchain protocol will underpin the service. JPMorgan built Onyx on a modified Ethereum fork. Goldman uses Canton Network, a Daml-based protocol. Both architectures require institutional-grade key management that differs fundamentally from retail crypto custody.
Why Custodians Must Rearchitect for Tokenized Assets
Traditional custody models built for bearer assets fail when applied to tokenized securities. A tokenized private equity share carries embedded compliance logic, transfer restrictions, and multi-jurisdiction regulatory obligations. The custodian must manage not just the cryptographic keys but the entire lifecycle of programmable regulatory conditions.
Multi-party computation (MPC) and threshold signature schemes (TSS) enable institutions to maintain sovereign control while distributing key material across multiple signers. In a 3-of-3 threshold configuration, no single party—including the technology provider—can unilaterally move assets. This architecture satisfies both the operational requirement for availability and the regulatory requirement for segregated custody under MiCA Article 75.
The Securities and Exchange Commission (SEC) has indicated through recent enforcement actions that tokenized securities remain securities regardless of the underlying technology. SAB 121 requires public companies to record crypto assets as liabilities on balance sheets, creating capital inefficiency for banks operating custodial models. Non-custodial architectures where institutions retain signing authority avoid this balance sheet treatment.
Vaultody's implementation demonstrates this principle: the platform holds two of three key shares while the institution retains one, ensuring neither party can act unilaterally. This structure, combined with SOC 2 Type II and ISO 27001 certifications, provides the compliance foundation wealth managers require for tokenized alternative assets.
Operational Risk Surface of Tokenized Private Equity
Private equity tokenization introduces three distinct risk vectors absent from traditional custody. First, smart contract risk emerges when compliance logic embedded in tokens contains vulnerabilities. The Nomad bridge hack in August 2022 demonstrated how a single line of faulty validation code can compromise $190 million in tokenized assets.
Second, cross-chain fragmentation creates operational complexity. A fund manager tokenizing portfolio companies across multiple protocols must maintain separate key management systems for each blockchain. This multiplies attack surfaces and complicates portfolio reconciliation. Institutional MPC platforms now support 10+ blockchains through unified key derivation, eliminating the need for chain-specific custody infrastructure.
Third, regulatory arbitrage between jurisdictions creates compliance uncertainty. A tokenized Cayman fund sold to EU investors must satisfy both Cayman monetary authority requirements and MiCA regulations. The token's smart contract must enforce both regulatory regimes simultaneously while maintaining transferability among qualified counterparties.
Banks addressing these risks through centralized custody models create systemic concentration risk. If Citi custodies all tokenized private equity shares on its platform, a single compromise could affect hundreds of funds. Distributed custody through MPC eliminates this single point of failure while maintaining institutional-grade controls.
What to Watch: Q1 2025 Regulatory Clarity
Three developments will shape institutional tokenization infrastructure requirements by March 2025. The European Securities and Markets Authority (ESMA) will publish final technical standards for crypto asset service providers under MiCA, clarifying segregation requirements for tokenized securities. These standards will determine whether banks can comingle tokenized and traditional assets in omnibus accounts.
The Federal Reserve's FedNow instant payment system will complete its first year of operation, providing data on whether traditional rails can match blockchain settlement speeds. If FedNow achieves sub-second settlement at scale, the speed advantage of tokenization diminishes, leaving only programmability as the primary value driver.
Singapore's Monetary Authority (MAS) Project Guardian will release results from its tokenized fund distribution pilots with DBS, Standard Chartered, and HSBC. These results will establish whether tokenization reduces fund administration costs by the projected 40-60% or if operational complexity offsets efficiency gains.
Teams evaluating MPC-based custody for tokenized securities can review Vaultody's compliance architecture documentation at vaultody.com/docs.
Copy link