The Central Bank of the UAE has rolled out a comprehensive regulatory framework governing the use of artificial intelligence (AI) and machine learning across the country’s financial sector, tightening oversight as banks accelerate digital adoption.
The move places accountability squarely on boards and senior management, requiring licensed financial institutions to implement documented governance structures aligned with the scale and complexity of their AI operations. The regulator said the framework aims to protect consumers while supporting innovation in digital finance.
Clear Accountability for AI Systems
Under the new guidance, financial institutions must maintain detailed inventories of AI models and establish structured monitoring systems. Boards and executive leadership will be directly responsible for model selection, deployment, risk assessment, and performance oversight.
Institutions must also submit regular reports to senior leadership on AI-related risks and compliance metrics. The regulator stressed that automation cannot dilute accountability.
Fairness, Transparency and Human Oversight
The framework mandates fairness and non-discrimination in automated decision-making. Banks and insurers must test AI systems regularly to detect bias, particularly in high-impact areas such as lending, pricing, and underwriting.
Importantly, customers must know when they are interacting with AI systems. Institutions must provide clear explanations for automated decisions that materially affect access to financial services.
Consumers will also retain the right to request human review and seek clarification. The Central Bank emphasised that meaningful human oversight must remain central, especially in decisions with significant financial impact.
Data Privacy and Cybersecurity at the Core
The regulator has reinforced compliance with the UAE’s data protection laws. Financial institutions must apply privacy-by-design and security-by-design principles when deploying AI systems.
Training data must be accurate, representative, and used only for legitimate purposes. Institutions must also ensure robust safeguards against unauthorised access and misuse of sensitive information.
The guidance extends to third-party vendors. Banks remain fully responsible for outsourced AI systems and must retain the ability to suspend operations if risks emerge.
Strengthening Trust in Digital Finance
Analysts view the framework as part of a broader global shift toward responsible AI regulation in financial services. As AI becomes embedded in credit scoring, fraud detection, customer engagement, and product personalisation, regulators worldwide are tightening standards around explainability and accountability.
With this move, the Central Bank of the UAE signals its intent to position the country as a technology-forward yet prudently regulated financial hub. By balancing innovation with consumer safeguards, the regulator aims to strengthen long-term stability and trust in the UAE’s financial ecosystem.
