The Dubai International Financial Centre has launched a consultation on proposed amendments to its Data Protection Regulations aimed at strengthening and streamlining the framework for personal data processed through AI-enabled and data-driven systems. The proposals would tighten requirements to embed safety in such systems, clarify certification obligations and the role of the Autonomous Systems Officer, and give the Commissioner new powers to recognise accreditation and certification schemes. The changes build on the 2023 update that introduced safeguards for the use of personal data in advanced AI-enabled systems. The current proposals would refine Regulation 10 by strengthening expectations around safe, ethical and privacy-by-design development in what DIFC describes as an AI native jurisdiction, and add a new Regulation 11 to support recognition of accreditation and certification frameworks. They also include consequential updates intended to support data protection governance. The consultation is open for 30 days, with comments due by 18 July 2026.
Dubai International Financial Centre2026-06-18
Dubai International Financial Centre launches consultation on data protection amendments for AI systems
The Dubai International Financial Centre has opened a consultation on amendments to its Data Protection Regulations focused on AI-enabled and data-driven systems. The proposals would strengthen safety and privacy-by-design requirements, clarify certification obligations and the Autonomous Systems Officer role, and let the Commissioner recognise accreditation and certification schemes. Comments are due by 18 July 2026.