A foreign luxury brand decides to sell gift cards in the United States. The cards can be redeemed at any of the brand’s affiliated boutiques, hotels, or restaurants—independently owned businesses that share the brand name and pay the parent a licensing fee. The brand’s headquarters collects the money when the card is sold. Months later, when a customer redeems the card at a participating establishment, the brand wires the redemption value to the establishment, less a small commission.
Read that sequence again. The brand is collecting funds from one person. It is later transmitting those funds to another person. Under federal law (31 C.F.R. § 1010.100(ff)) and the money transmission statutes of essentially every U.S. state, that is the textbook definition of a regulated activity. The brand has—without realizing it, without intending to, without ever calling itself a financial institution—wandered into a regulatory regime built for Western Union.
This is the multi-merchant gift card trap, and it is the most underappreciated compliance risk in cross-border consumer commerce. The trap is not technical. It is conceptual. Lawyers who have correctly concluded that the product is exempt from money transmission rules—because it is closed-loop, because it cannot be cashed out, because it is just a gift card—fail to ask a separate and equally important question about the operator. The product can be exempt while the operator is not. That is the problem.
The Exemption Everyone Reaches For
The instinctive defense is the closed-loop prepaid access exemption at 31 C.F.R. § 1010.100(ff)(4)(iii)(A). The Financial Crimes Enforcement Network (“FinCEN”) does not regulate prepaid access usable only at a defined merchant or set of locations, capped at $2,000 per device per day. A normal gift card fits comfortably inside the exemption.
But this exemption is about the instrument. It says the gift card is not a regulated prepaid access product. It does not say anything about the company issuing the gift card. FinCEN has been explicit on this point: money transmitter status is a facts and circumstances inquiry directed at the entity. An operator can sell perfectly compliant closed-loop instruments and still be a money transmitter—because, separately and independently, it is engaged in the transfer of funds between the cardholder and the merchant.
This is where most analyses stop and most clients get exposed. The law firm tells the client the gift card is a closed-loop instrument. The client hears that and stops worrying. But the closed-loop analysis is one question. The operator-status analysis is another.
The Exemption That Actually Saves You
The exemption that does the real work is harder to invoke and almost never appears in the marketing materials of fintech consultants: the agent-of-the-payee doctrine.
The doctrine is straightforward in concept. If I, as an operator, am collecting money from a customer not on my own behalf but as the appointed agent of the merchant who will eventually deliver the goods or services, then the customer’s payment to me is—in the eyes of the law—a payment to the merchant. The merchant’s obligation to the customer is extinguished at that moment. What I do later, when I send the merchant their share, is not a transmission of funds between strangers; it is an internal settlement between principal and agent.
FinCEN recognizes a federal version of this concept through the payment processor exemption, articulated in administrative rulings FIN-2013-R002 and FIN-2014-R009. Several states have codified an explicit agent-of-the-payee exemption: Texas in Finance Code § 152.004(2), and California in Financial Code § 2010(l). The federal version requires four cumulative conditions: facilitation of a purchase or bill payment, operation through a clearance and settlement system, conduct under a formal agreement, and that agreement existing with the seller or creditor. The state versions follow similar lines, with one critical addition: the payment to the agent must immediately extinguish the customer’s obligation to the merchant.
The doctrine works. But—and this is the part that gets clients into trouble—it does not work automatically. It has to be built. Specifically, it has to be built into the contracts between the operator and the participating merchants, in advance, with language that does precise work.
What the Contracts Actually Have to Say
Here is what makes a multi-merchant program look like an agent-of-the-payee arrangement, and what makes it look like unlicensed money transmission instead.
The first thing the contracts must do is appoint the operator as agent. Not implicitly, not by course of dealing, not through the inference that operating a network creates an agency relationship. Explicitly. The merchant agreement must contain language designating the operator as the merchant’s authorized collection agent for purposes of accepting customer payments under the program.
The second thing the contracts must do is collapse the timing of payment. The agreement must state that the customer’s payment to the operator constitutes payment to the merchant for purposes of the underlying transaction, and that the customer’s obligation to the merchant is extinguished at that moment. This is the legal fiction that turns the operator’s later remittance into an internal settlement rather than a separate financial transmission. Without this language, the operator is sitting on the customer’s money for weeks or months as a kind of escrow agent, which is functionally indistinguishable from money transmission.
The third thing the contracts must do is constrain the destination of the funds. Settlement may flow only to the merchant who actually delivered the goods or services to the customer. Any flexibility in the operator’s discretion to send funds elsewhere—to other merchants, to third parties, to customer refunds outside the program—undermines the agency characterization. The agent has authority only to do what the principal authorized.
The fourth thing—and this one is structural rather than contractual—is that the settlement flow must use the regulated banking system. FIN-2014-R009 is explicit: where disbursement occurs outside a clearance and settlement system populated by Bank Secrecy Act–regulated financial institutions, the payment processor exemption is unavailable. Settlement by bank wire to the merchant satisfies this. Settlement by some bespoke mechanism—internal balance transfers, holding-account redirections, anything that bypasses regulated intermediaries—does not.
These four elements, taken together, are the architecture of compliance. None of them shows up in a “consumer terms and conditions” review. All of them must be in place before the first card is sold.
Why Florida Is the State That Matters
The agent-of-the-payee defense is not equally available everywhere. Most states either codify the exemption (Texas and California) or recognize it through interpretive practice (New York). One state does not, and that state is Florida.
The Florida Money Transmitters’ Code (chapter 560) lacks both an explicit agent-of-the-payee exemption and a clean closed-loop exemption. The Office of Financial Regulation has indicated, in declaratory statements addressed to similar fact patterns, that an entity that receives funds before transmitting them to a third party may qualify as a money transmitter even when contractually structured as the merchant’s agent. Florida looks at the economics—was money received and then sent onward?—rather than at the contract papering.
For a national program, this means Florida is the residual risk point. The contractual mitigations that solve the problem in Texas, California, and New York are not bulletproof in Florida. The structural mitigations—settlement through regulated channels, demonstrable absence of operator control over funds, ideally a payment-processing intermediary that holds the customer’s money rather than the operator itself—have to do more work in Florida than elsewhere. Counsel advising on national rollouts should treat the Florida analysis as the binding constraint, not the average state.
The Sentence That Should Appear in Every Memo
Here is the sentence that should appear, in some form, in every legal memo regarding a multi-merchant gift card program: “The product is closed-loop. The operator may not be.”
The product analysis and the operator analysis are different analyses. They reach different exemptions, require different evidence, and need to be performed in parallel. A program that has answered only the product question has addressed only half the problem.
The clients who get this wrong are not negligent. They are well-advised by lawyers who answered exactly the question they were asked. The question they were asked was “Is this gift card legal?”—and the answer was “Yes, it is closed-loop.” The question they were not asked, and that no one thought to raise, was “And what about the company selling them?”
In a multi-merchant network, that second question is the entire ball game. If the merchant agreements were drafted by someone thinking about brand standards and revenue share—which is to say, by someone who was not thinking about the Bank Secrecy Act—the operator is exposed. Not theoretically. Actually. The federal and state money transmission regimes do not require an intent to operate as a money transmitter, and they do not forgive operators who happened not to know what they were doing.
The fix exists. The fix is the agent-of-the-payee doctrine, properly papered, structurally consistent, and tested against the strictest applicable state regime. But the fix has to be built before the first card is sold. After the fact, what counsel can offer is not a defense but a remediation project—and an explanation, to a regulator, of what the company thought it was doing.
That is a conversation no general counsel wants to have. It is also a conversation that becomes inevitable the moment someone in the boardroom says, “Don’t worry, it’s just a gift card.”
