Wyoming passed the DAO LLC Act in 2021, becoming the first US state to provide a statutory framework for decentralised autonomous organisations. In the five years since, the legal landscape for DAOs has evolved — Wyoming updated its statute, Marshall Islands introduced a DAOs Act, Cayman Foundation Company structures became the dominant offshore choice, and jurisdictions including the United Kingdom, Singapore, and Switzerland have published guidance of varying specificity on how they treat DAOs. The impression created by this legislative activity is one of steady legal maturation.
The reality is considerably messier. Most DAOs operating globally in 2026 have not adopted any of these structures. They remain legally unincorporated associations or, in jurisdictions that have considered the question, general partnerships — a classification that carries unlimited personal liability for members and that makes entering any commercial contract, opening any bank account, or holding any real-world asset effectively impossible without an individual taking personal liability for the action. The gap between the legal infrastructure that exists for DAOs and the legal status that most DAOs have actually adopted is not a resource constraint or a knowledge problem at this point. It is a structural choice — one that carries consequences that are arriving faster than many operators expected.
Two events in 2023 and 2024 accelerated the legal clarity for anyone still uncertain. The CFTC’s action against Ooki DAO — in which the regulator pursued enforcement against token holders on the theory that an unincorporated DAO operating as a general partnership made every member personally liable for the entity’s conduct — established that US regulators would use general partnership theory against DAOs rather than acknowledging the novel structure and legislating around it. The class action lawsuit filed against Uniswap’s UNI token holders in the US District Court for the Southern District of New York pressed the same theory in a private litigation context. Neither case fully resolved the liability question, but both demonstrated that the “nobody is liable because nobody is in charge” governance thesis does not hold up in a US legal proceeding.
The Three Structural Options, Evaluated
For a DAO that has decided it needs legal structure, the 2026 options can be grouped into three main categories, each with genuine trade-offs rather than an obvious dominant choice.
Wyoming DAO LLC. Wyoming’s statute allows a DAO to register as a limited liability company with the ability to specify on-chain governance mechanisms in its operating agreement. Members receive the LLC’s liability shield — personal assets are not reachable for the DAO’s obligations. The 2022 updates improved the statute’s practical usability, and Wyoming’s division of corporations has become familiar enough with DAO registrations that the process is relatively well-documented.
The trade-offs are real. A Wyoming DAO LLC is a US entity subject to US regulatory jurisdiction — including FinCEN, OFAC, and potentially the SEC and CFTC depending on what the DAO does. For DAOs whose token holders are predominantly non-US or whose activities have historically been structured to avoid US regulatory reach, registering in Wyoming collapses that geographic distance. Additionally, Wyoming’s statute requires an operating agreement that specifies governance — in some respects, formalising on-chain governance in a legal document exposes the DAO to legal interpretations of what that governance document means in disputes, which can conflict with the smart contract outcomes it was meant to mirror.
Marshall Islands DAO LLC. The Marshall Islands Non-Profit Entities Act (the “DAOs Act”) provides a similar LLC structure with features more tailored to decentralised governance than Wyoming’s general DAO provision. The Marshall Islands’ offshore status means the entity is not subject to US regulatory jurisdiction on formation, which is attractive for DAOs with predominantly non-US member bases. The statute was drafted with explicit input from the crypto community and is considered more technically precise for DAO-specific governance situations.
The trade-offs here are reputational and operational: Marshall Islands entities are offshore structures in a jurisdiction that lacks the banking relationships and legal infrastructure of major onshore centres. US-regulated institutions — exchanges, custodians, most banks — treat Marshall Islands entities with the same caution they apply to other offshore structures. The DAO gains limited liability without gaining much commercial counterparty credibility in the jurisdictions where most commercial activity actually occurs.
Cayman Foundation Company. The Cayman Foundation Company has become the dominant choice for larger, more sophisticated DAOs and for Web3 protocols that need a legal entity for grant management, treasury operations, intellectual property holding, or contract counterparty purposes without fully converting the DAO into a traditional corporate structure. The Cayman Foundation Company is a hybrid: it can receive and deploy assets, enter contracts, and hold IP, while having no shareholders — only a foundation council and beneficiaries that can be defined broadly to include the DAO’s community.
The structure is well-understood by institutional counterparties who deal regularly with crypto foundations — Ethereum Foundation, Cardano Foundation, and many others use Cayman structures. Banking relationships are more accessible than with Marshall Islands, and Cayman legal counsel for complex crypto structures is established. The cost is significant: Cayman foundation companies are expensive to establish and maintain, require professional directors in most cases, and are not a self-service solution for smaller DAOs with limited treasuries.
The Liability Question Is Not Theoretical
The most common reason DAO operators give for not formalising legal structure is that the liability question is theoretical — the DAO hasn’t been sued, regulators haven’t come after it, and the cost and complexity of incorporation doesn’t seem justified by a risk that hasn’t materialised. This reasoning underestimates how liability works in practice.
General partnership liability does not require a judgment against the DAO to create exposure for members. It creates exposure the moment the DAO takes on obligations — when it enters an agreement to pay a service provider, when it deploys a smart contract that causes user losses, when it executes a treasury transaction that violates an OFAC designation. The liability is latent from formation, not created at the moment of enforcement. By the time enforcement action or litigation demonstrates the liability, the event giving rise to it has already occurred.
The practical consequence for token holders in an unincorporated DAO is that the exposure is difficult to quantify. A governance token holder who voted on a protocol parameter change that later caused a protocol exploit does not know whether their vote — and their token holdings — constitute sufficient participation in the “partnership” to create liability. The Ooki DAO enforcement action suggested that trading tokens on Ooki’s governance protocol was enough for the CFTC to attempt service of process on token holders via forum post. Whether courts would ultimately hold individual token holders liable for the DAO’s CFTC violations is untested — but the process of defending against that claim, at personal expense, is a consequence that arrives regardless of the ultimate verdict.
Treasury Size Is the Practical Threshold
The question of when formalisation becomes practically necessary is easier to answer than the philosophical question of when it is legally required. The practical threshold is treasury size and commercial activity.
A DAO with a treasury below $1 million that makes no external contracts, pays no service providers, and has no US-nexus activity faces modest practical legal risk even without formal structure. The likelihood of regulatory enforcement or commercial litigation against a DAO of this scale is low, and the cost of a Cayman Foundation Company or Wyoming DAO LLC — which can run $30,000–$60,000 in legal fees plus ongoing compliance costs — is disproportionate to the risk being hedged.
A DAO with a treasury above $5 million, multiple service provider relationships, token sale proceeds that may have touched US investors, or any kind of exchange listing has a different risk profile. At this scale, the DAO is a commercial entity with real financial exposure. The absence of legal structure does not make it non-commercial — it makes the commercial activity unstructured, with the liability sitting somewhere undefined between the wallet addresses that control the multisig and the token holders who voted for the decisions that deployed the treasury.
The $5 million threshold is not a legal standard — it is a practical observation. Regulators and litigants allocate enforcement resources based on the scale of the activity they’re pursuing. A $50 million protocol treasury is a more attractive enforcement target than a $500,000 one, and the legal theory for reaching token holders is the same regardless of treasury size.
The MiCA Complication for European Operators
DAOs with European token holders or European-facing operations face a compounding problem: the Markets in Crypto-Assets Regulation, which is now in full effect across EU member states, includes provisions that apply to crypto-asset issuers and service providers without regard to whether the issuer is incorporated. MiCA’s operational requirements — whitepaper publication, AML/KYC obligations for CASP licensing, governance and accountability disclosures — presuppose an entity that can satisfy them. An unincorporated DAO cannot publish a MiCA-compliant whitepaper in a legally meaningful sense. It cannot hold a CASP licence. It cannot make the accountability disclosures that MiCA requires because accountability requires an identified legal person.
This creates a specific enforcement pressure for DAOs that have European users: the choice is not between legal structure and no legal structure, but between legal structure that enables MiCA compliance and legal non-existence that makes MiCA compliance structurally impossible. Regulators who are inclined to enforce MiCA against non-compliant token issuers will face the same general partnership theory question that US regulators have — who is liable when the issuer is an unincorporated DAO — but MiCA gives them additional statutory grounds that don’t require resolving the partnership liability question first.
What Operational DAOs Should Do in 2026
The honest summary for a DAO operator assessing legal structure in 2026 is this: the legal infrastructure now exists to address the liability problem through multiple routes. The arguments for deferring that decision — cost, complexity, loss of decentralisation character — have not grown stronger over time, and the arguments against deferral have grown substantially stronger through enforcement actions, litigation, and the MiCA regulatory regime.
Governance token holders voting on how to spend a $10 million treasury without a legal entity are, in effect, deciding to keep their personal liability situation undefined in a regulatory environment that has demonstrated a willingness to find liability wherever it structurally exists. The operational credibility frameworks that professional Web3 entities use are built on the premise that accountability requires identifiable legal persons. A DAO that cannot identify its legal structure cannot satisfy that accountability requirement, which limits its commercial counterparty options, its institutional credibility, and its resilience to enforcement.
None of this requires a DAO to abandon on-chain governance. The Cayman Foundation Company model in particular was designed to allow on-chain governance to continue as the operational mechanism while the legal entity handles commercial and regulatory functions at the interface between the on-chain world and the legal one. The decentralisation is preserved in governance; the legal exposure is managed through a structure that gives the DAO legal personhood for the purposes that require it. That is not a perfect solution — no structure is — but it is a better risk posture than the current default.
FAQ
Are DAOs legally recognised entities? In most jurisdictions, no. Wyoming, Marshall Islands, and a small number of other jurisdictions have specific DAO statutes. Elsewhere, DAOs are typically classified as unincorporated associations or general partnerships, with the liability consequences that classification implies.
What is the liability risk for DAO token holders? In a general partnership classification, all partners are jointly and severally liable for the partnership’s obligations. For DAO token holders, the extent of their participation in governance may determine whether they are treated as partners — but the standard for establishing that participation is not definitively settled in most jurisdictions.
What is a Cayman Foundation Company? A hybrid legal structure used widely by crypto protocols and larger DAOs. It has no shareholders, can be governed by a foundation council with beneficiaries broadly defined to include the DAO community, and can enter contracts, hold assets, and satisfy regulatory requirements at the legal interface while the DAO’s on-chain governance continues to operate.
Does MiCA require DAOs to incorporate? MiCA does not explicitly require incorporation, but its compliance requirements — whitepaper publication, CASP licensing, accountability disclosures — presuppose an entity that can satisfy them as a legal person. Unincorporated DAOs with European users or operations face structural inability to comply.
What is the practical threshold for formalising DAO legal structure? A treasury above $5 million, external service provider relationships, token sale proceeds touching US investors, or any exchange listing generally justifies the cost of formalisation. Below these thresholds, the cost-benefit calculation is more context-dependent. The threshold is practical, not legal — legal liability can exist regardless of scale.
Sources
- Wyoming Legislature — DAO LLC Act (SF0038) and 2022 amendments
- CFTC — Ooki DAO enforcement action press release
- Cayman Islands Monetary Authority — Guidance on crypto foundation company structures
- EUR-Lex — Markets in Crypto-Assets Regulation (MiCA) full text
- Marshall Islands — DAO Non-Profit Entities Act overview
