.png)
.png)
.png)
.png)
.webp)
Login
Traditional LEIs remain fully valid and mandatory. The vLEI is an extension — not a replacement.
That is exactly what GLEIF 2.0 — and specifically the verifiable LEI, or vLEI — is designed to deliver. This article explains the evolution of the LEI system, what the vLEI is and how it works, and what compliance teams and regulated entities need to know right now.
A Brief History of LEI System Versions
| Period |
Development |
|---|---|
| 2012 |
G20 mandate for a global LEI system following the 2008 financial crisis. Regulatory Oversight Committee (ROC) established. |
| 2014 |
GLEIF founded in Basel, Switzerland. First GLEIF-accredited LOUs begin issuing LEIs. ISO 17442-1 standard published. |
| 2017 |
MiFID II makes LEI mandatory for financial market participants in the EU. The 'no LEI, no trade' rule enters into force. |
| 2018–2020 |
EMIR Refit and SFTR expand LEI requirements. LEI adoption accelerates globally beyond the EU. ISO 17442-2 (parent relationships) introduced. |
| 2022 |
GLEIF publishes the vLEI Ecosystem Governance Framework. First vLEI credentials issued. The verifiable LEI becomes an official GLEIF product. |
| 2024–2025 |
DORA introduces LEI for ICT third-party service providers. vLEI pilots expand in financial services. GLEIF continues to develop the vLEI Qualified vLEI Issuers (QVI) network. |
| 2025+ |
Growing adoption of vLEI in digital contracting, regulatory reporting automation, and digital identity frameworks. The GLEIF 2.0 era begins. |
What Is the vLEI (Verifiable LEI)?
The verifiable LEI — or vLEI — is a new category of digital credential introduced by GLEIF that extends the LEI system into the domain of digital identity. While a traditional LEI identifies a legal entity (an organisation), the vLEI goes further: it identifies both the legal entity and the individuals who are authorised to act on its behalf — executives, board members, signing authorities — and cryptographically links those individuals' roles and permissions to the organisation's LEI.
The vLEI is based on the W3C Verifiable Credentials standard, which is the same open standard used in many national digital identity frameworks. Each vLEI credential is:
- Cryptographically signed: it cannot be forged or tampered with after issuance.
- Machine-readable: it can be verified automatically by software without human review.
- Decentralised: it does not require a central verification database — verification is performed using public cryptographic keys.
- Role-specific: it encodes the individual's role within the organisation (e.g., CEO, CFO, Authorised Signatory) alongside the organisation's LEI.
- GLEIF-anchored: every vLEI credential traces back to the organisation's GLEIF-issued LEI, providing the same internationally recognised authoritative root as the traditional LEI.
|
Think of the traditional LEI as the corporate 'passport' — identifying the organisation. The vLEI adds an 'official identity card' for authorised individuals acting on behalf of that organisation, with cryptographic proof of their authority. |
How the vLEI Differs from the Traditional LEI
| Dimension |
Traditional LEI |
vLEI (Verifiable LEI) |
|---|---|---|
| What it identifies |
The legal entity (organisation) |
The legal entity AND authorised individuals representing it |
| Format |
20-character alphanumeric code (ISO 17442) |
W3C Verifiable Credential (JSON-LD format, cryptographically signed) |
| Verification method |
Manual lookup in GLEIF Global LEI Index |
Automated cryptographic verification — no database query needed |
| Machine-readable |
Code only — reference data requires database lookup |
Fully machine-readable and self-contained |
| Forgery risk |
Low (issued by accredited LOU) |
Negligible (cryptographically secured — cannot be altered after issuance) |
| Who issues it |
GLEIF-accredited LOUs (e.g., Euronext Dublin) |
GLEIF-accredited Qualified vLEI Issuers (QVIs) |
| Regulatory mandate |
Mandatory (MiFID II, EMIR, SFTR, DORA, etc.) |
Currently voluntary — adoption growing; some jurisdictions exploring mandates |
| Primary use case |
Counterparty ID, regulatory reporting, trade execution |
Digital contracting, automated KYC, regulatory reporting automation, digital signing |
| Annual renewal required |
Yes |
Yes (organisational vLEI is tied to the underlying LEI renewal) |
What GLEIF 2.0 Means for Regulated Entities
For compliance officers and legal teams, the rise of the vLEI and GLEIF 2.0 has several practical implications — some immediate, some medium-term.
Regulatory Reporting Automation
Regulatory reporting under MiFID II, EMIR, and SFTR is currently a largely manual process: compliance teams gather LEI codes, validate them against the GLEIF database, and submit reports through designated reporting mechanisms.The vLEI is designed to enable this process to be significantly automated: a counterparty's vLEI credential can be machine-verified in milliseconds at the point of transaction, without any manual lookups or data reconciliation.
Digital Contracting and e-Signature
As organisations move toward digital contracting platforms and electronic signatures, the vLEI provides a critical piece of infrastructure: a cryptographically verifiable way to confirm that a signatory is who they claim to be and is authorised to act on behalf of the named legal entity. This is particularly relevant for financial institutions executing high-value digital contracts and for corporate secretaries managing board resolutions and execution documents.
KYC and AML Workflow Acceleration
Client onboarding is one of the most resource-intensive compliance workflows in financial services. The vLEI has the potential to significantly reduce onboarding friction: a client presenting a vLEI credential provides, in a single machine-readable file, verified proof of legal identity, corporate structure, and authorised representative identity — all backed by GLEIF's internationally recognised accreditation framework.
DORA and Digital Third-Party Risk
The Digital Operational Resilience Act (DORA), which entered into force in January 2025, requires financial entities to maintain registers of ICT third-party service providers identified by LEI. As DORA compliance programmes mature, the vLEI is increasingly being evaluated as a mechanism for automated ICT provider identity verification within digital supply chain risk management frameworks.
The Role of LOUs in the vLEI Ecosystem
The vLEI ecosystem introduces a new category of accredited issuers: Qualified vLEI Issuers (QVIs). QVIs are organisations accredited by GLEIF to issue vLEI credentials — they operate alongside traditional LOUs in the GLEIF governance framework.Traditional LOUs — including Euronext Dublin — continue to play a foundational role: the vLEI credential is always anchored to the underlying LEI issued by an accredited LOU. This means that maintaining a valid, active LEI with a trusted LOU like Euronext Direct is a prerequisite for any organisation wishing to participate in the vLEI ecosystem in the future.
There is no action required now for organisations to 'switch' to vLEI — traditional LEIs remain mandatory and fully operational. The important step is ensuring your existing LEI is active, accurate, and managed by a trusted, accredited LOU that is positioned to support vLEI adoption as the ecosystem matures.
How to Prepare: What Your Organisation Should Do Now
GLEIF 2.0 and the vLEI ecosystem are developing. Full regulatory mandates for vLEI are not yet in place in most jurisdictions. But compliance-forward organisations can begin preparing now:
- Ensure your LEI is active and your reference data is accurate. The vLEI is anchored to your LEI — any inaccuracies in your LEI reference data will propagate into your vLEI credentials. Review your GLEIF record today at search.gleif.org.
- Consolidate LEI management with a trusted, accredited LOU. Fragmented LEI management across multiple LOUs increases complexity. Working with a single, GLEIF-accredited LOU like Euronext Direct simplifies future readiness for vLEI adoption.
- Monitor GLEIF's vLEI governance publications. GLEIF regularly publishes updates to its Ecosystem Governance Framework and QVI accreditation requirements. Subscribe to GLEIF's updates and assign a compliance owner to track LEI system developments.
- Evaluate vLEI use cases for your workflows. Identify which of your compliance or onboarding workflows — KYC, contract execution, regulatory reporting — could benefit from automated vLEI verification, and begin scoping the business case.
- Engage your technology vendors. If you use regulatory reporting platforms, KYC/AML tools, or digital contracting software, ask your vendors about their plans to support vLEI credentials. Early engagement ensures your technology stack is ready when adoption accelerates.
Euronext Direct: Your LEI Partner for Today and Tomorrow
Euronext Direct is operated by Euronext Dublin — a GLEIF-accredited LOU with a long track record of reliable, compliant LEI issuance across 90+ jurisdictions. As the LEI system evolves toward GLEIF 2.0 and the vLEI ecosystem, Euronext Direct is positioned to support regulated entities through every stage of that evolution: from issuing and renewing traditional LEIs today, to supporting vLEI credential anchoring as the ecosystem matures.
Starting with a solid LEI foundation is the right first step. Make sure your LEI is active, accurate, and managed by a provider you can trust.
Related Topics
- Why the LEI Code Is Essential for Financial and Legal Transactions
- How the Global LEI System Works: A Complete Guide
- How to Look Up a Company's LEI in the GLEIF Database
- What Is the Global Legal Entity Identifier (LEI) System?
- LEI compliance resources
Frequently Asked Questions
Yes, absolutely. Traditional LEIs remain fully valid, mandatory, and unchanged under GLEIF 2.0. The vLEI is an extension of the LEI system — not a replacement. Your 20-character LEI code continues to be the standard for regulatory reporting under MiFID II, EMIR, SFTR, DORA, and all other regulations that currently require LEIs. GLEIF 2.0 adds new capabilities; it does not deprecate existing ones.
No regulatory mandate currently requires entities to obtain a vLEI. The vLEI is a voluntary extension of the LEI system at this stage. However, as digital contracting, automated KYC, and regulatory reporting automation become more prevalent, early adopters of the vLEI ecosystem are likely to gain operational advantages. The most important step today is ensuring your traditional LEI is active and accurate — the vLEI builds on that foundation.
No firm dates have been set for mandatory vLEI adoption in any major jurisdiction as of early 2026. GLEIF continues to develop the ecosystem governance framework and expand the network of Qualified vLEI Issuers. Regulatory interest in the vLEI is growing — particularly in the context of DORA and digital identity frameworks — but formal mandates are expected to take several years to materialise. Monitor GLEIF's official publications at gleif.org for the latest updates.
The vLEI is directly anchored to your existing LEI. Every vLEI credential issued for your organisation includes your 20-character LEI code as its authoritative root identifier. This means your existing LEI — and its accuracy — is the foundation of any future vLEI credentials your organisation may issue. Keeping your LEI accurate and active is the essential prerequisite for vLEI readiness.