CBUAE AML/CFT Guidance 2026

The Central Bank of the UAE has raised the bar again. With its updated AML/CFT/CPF guidance issued in April 2026, the CBUAE has signalled a stronger supervisory focus on risk-based compliance, proliferation financing, trade-based money laundering, correspondent banking, and customer due diligence across licensed financial institutions and registered hawala providers.

This is not a routine policy update. It reflects the UAE’s broader strategy to reinforce financial integrity, align with FATF expectations, and support the country’s 2024–2027 national AML/CFT agenda. For banks in Dubai, Abu Dhabi, Sharjah, and across the UAE, the message is clear: compliance must become more continuous, data-driven, and demonstrably effective.

Why the update matters

The CBUAE’s new approach goes beyond traditional AML checks. It introduces sharper expectations around proliferation financing risk assessment, transaction monitoring, trade finance visibility, and controls over correspondent banking relationships. It also places greater responsibility on institutions to identify emerging typologies and demonstrate that internal controls are not only designed well, but actively tested and improved.

For UAE LFIs, this means the compliance function can no longer operate as a back-office checkpoint. It must be integrated into onboarding, periodic reviews, transaction monitoring, sanctions screening, trade finance, and escalation workflows. The regulator is expecting institutions to show active risk ownership, not passive policy compliance.

What has changed

The most important shift is the stronger emphasis on a risk-based approach across the full customer lifecycle. The updated guidance places greater weight on enhanced due diligence, ongoing monitoring, more robust record-keeping, and timely remediation of control gaps. In practical terms, this means customer risk ratings, alert tuning, and review cycles must be defensible and tailored to actual exposure.

Another key priority is trade-based money laundering and transshipment risk. This is especially relevant for UAE banks that support import-export activity, commodity trade, freight-linked payments, and cross-border settlement flows. Institutions will need deeper visibility into trade patterns, counterparties, and supporting documentation to detect unusual activity disguised as legitimate commerce.

Correspondent banking is also under sharper scrutiny. Banks will be expected to apply stronger due diligence on respondent institutions, understand nested relationships, and maintain ongoing monitoring that reflects the actual risk profile of the relationship. That expectation is particularly important in a market like the UAE, where international connectivity is a commercial strength and a compliance challenge at the same time.

What UAE institutions should do now

UAE’s Licensed financial institutions should immediately review their AML frameworks against the new guidance. Priority actions include updating risk assessments, revisiting onboarding and review triggers, strengthening trade finance controls, and validating whether alert scenarios can detect cross-border layering, mule activity, and suspicious correspondent flows.

Training also needs an upgrade. The CBUAE has paired the supervisory guidance with best practice manuals on risk-based financial crime prevention and role-specific AML/CFT/CPF training, which means staff awareness is now part of supervisory expectation, not just internal good practice. Compliance, operations, relationship managers, and trade finance teams should all be trained on the specific red flags relevant to their roles.

For institutions operating in Dubai and the wider UAE financial market, this is the right moment to benchmark controls against the updated standards, close documented gaps, and prepare for more detailed supervisory engagement. Those that act early will be better placed to demonstrate maturity, resilience, and regulator-ready governance.

Final perspective

The April 2026 CBUAE guidance is a clear signal that the UAE is moving toward more proactive, intelligence-led financial crime supervision. For banks, the objective is no longer simply to avoid penalties; it is to build a compliance framework that can withstand evolving threats, international scrutiny, and faster-moving illicit finance typologies.

In a market built on trust, speed, and cross-border connectivity, stronger AML/CFT controls are now a strategic advantage. Institutions that modernize early will protect both regulatory standing and commercial reputation.