For the purposes of Paragraph CRA-8.2.2(c), the CBB considers scenarios where clients are required to self-custodise their crypto-assets as being a material risk given that the burden of protecting and safeguarding crypto-assets falls wholly upon clients, and that the crypto-assets face the constant risk of being stolen by malicious actors. As such, licensees requiring clients to self-custodise crypto-assets are required to disclose this fact fully and clearly upfront to clients and meet the disclosure standards as specified in Paragraph CRA-4.5.8.