UAE Central Bank Directive – Restriction on Use of WhatsApp for Financial Services
by Reina Consulting | May 20, 2026
The Central Bank of the UAE (‘CBUAE’) has issued supervisory directive, requiring licensed financial institutions to discontinue the use of unregulated messaging platforms such as WhatsApp for financial services-related communication with effect from 1 May 2026.
| Key Aspects |
Details |
| Compliance deadline |
|
| Purpose |
- To ensure customer communications are conducted through secure, approved, and auditable channels, and to mitigate fraud risks arising from use of unregulated messaging platforms
|
| Who is impacted? |
- Banks, finance companies, exchange houses, and insurance providers regulated by CBUAE
|
| Why this matters? |
- Immediate operational shift required from informal messaging platforms
- Heightened regulatory focus on fraud prevention and customer data protection
- Direct accountability on institutions for employee communication practices
|
| Scope of Restriction |
Prohibits use of WhatsApp and similar third-party messaging applications for:
- Customer communication relating to financial services
- Sharing or handling customer data or documents
- Sharing of transactional information such as PINs or one-time passwords
|
| Permitted Channels |
- Official banking/ mobile applications, regulated digital platforms, call centres, and branch-based communication channels approved by the institution
|
| Compliance Requirements |
- Immediate cessation of unapproved messaging platforms
- Migration to secure and regulator-compliant communication systems
- Implementation of internal policies governing employee communications
- Monitoring, surveillance, and audit of communication channels
- Training and awareness for staff on permitted communication practices
|
| Penalties for Non-Compliance |
- Supervisory action including administrative penalties and financial sanctions
|
