| Date | Event | Who it affects | What is required |
|---|---|---|---|
| Jan 2026 | DIFC Regulation 10 in force | All DIFC-licensed entities using AI to process personal data | Risk assessments, human oversight, explainability, immutable audit trails |
| Feb 11, 2026 | CBUAE AI Guidance Note published | All CBUAE-licensed financial institutions (banks, insurers, exchange houses, finance companies, payment providers) | Board accountability, model inventory, annual bias testing, security-by-design, third-party audit rights |
| Mar 2026 | UAE AI Act effective | All entities deploying AI in the UAE | Risk tier self-assessment required within 6 months of effective date |
| Sep 16, 2026 | UAE AI Act self-assessment deadline | All entities with Tier 3 or Tier 4 AI systems | Completed self-assessment submitted to UAE AI Authority. Penalties up to AED 10M for non-compliance. |
| Sep 16, 2026 | New CBUAE Law regularisation deadline | All CBUAE-licensed institutions | Full compliance with consolidated banking regime. Administrative fines up to AED 1 billion. |
| Jan 1, 2027 | PDPL full compliance deadline | All organisations processing UAE residents' personal data | Complete PDPL programme including AI-specific obligations — purpose limitation, data residency, records of processing, automated decision rights |
This calendar covers the primary binding deadlines as of June 2026. UAE AI regulation is evolving — check this page monthly for updates. This is not legal advice. Consult qualified legal counsel for jurisdiction-specific compliance determinations.