Licentium

Fintech Licensing Hub

United Arab Emirates

The UAE runs five parallel crypto regulators — federal SCA and CBUAE, Dubai's VARA, and the free-zone DFSA (DIFC) and FSRA (ADGM) — each licensing virtual-asset activity within its own scope. CBUAE governs payments and stored value. Gambling, once broadly prohibited, is now exclusively federal under the GCGRA: the UAE Lottery is live, Wynn Al Marjan Island holds the first 15-year land-based casino licence (opening ~2027), and a monitored online-gaming trial began in late 2025.

Available licences

Crypto — VARA VASP Licence (Dubai, ex-DIFC)

Licence under Dubai Law No. (4) of 2022 for virtual-asset activities in Dubai (excluding DIFC): advisory, broker-dealer, custody, exchange, lending/borrowing, management/investment, transfer/settlement, and VA issuance (Issuance Rulebook effective 19 June 2025; FRVA/ARVA stablecoin/RWA categories).

Crypto — SCA VASP Licence (federal, onshore UAE ex-free-zones)

Federal licence under Cabinet Decision No. (111) of 2021 for virtual-asset services across the UAE outside the financial free zones; a VARA licence auto-registers with the SCA for UAE-wide operation (SCA–VARA agreement, 5 Sept 2024).

Crypto — ADGM FSRA Virtual Asset / FRT Licence (free zone)

Authorisation under the Financial Services and Markets Regulations 2015 for VA exchanges, custody, broker-dealing, management and fiat-referenced-token activities (2018 framework; 2024–2025 FRT regime; privacy tokens/algorithmic stablecoins prohibited).

Crypto — DIFC DFSA Crypto Token Licence (free zone)

Authorisation under the DFSA Crypto Token regime for financial services relating to recognised crypto tokens (suitability-based model from January 2026).

Payments — CBUAE Retail Payment Services / SVF / Payment Token Licence (federal)

Licensing under the Retail Payment Services and Card Schemes Regulation, the Stored Value Facilities Regulation, or the Payment Token Services Regulation (Dirham/Foreign payment-token issuance, conversion, custody/transfer).

Payments — ADGM / DIFC Money Services & Payment Licences (free zones)

Money-services, payment and e-money authorisations under the respective free-zone financial-services frameworks (FSRA / DFSA).

Gambling — GCGRA Operator / Vendor / Personal Licences (federal)

Gaming-operator (casino, internet gaming, sports wagering, lottery), gaming-vendor, key-person and gaming-employee licences under the federal commercial-gaming decree; one land-based casino and one online-gaming licence per opting-in emirate.

Detailed overview

United Arab Emirates at a glance

The UAE runs five parallel crypto regulators — federal SCA and CBUAE, Dubai's VARA, and the free-zone DFSA (DIFC) and FSRA (ADGM) — each licensing virtual-asset activity within its own scope. CBUAE governs payments and stored value. Gambling, once broadly prohibited, is now exclusively federal under the GCGRA: the UAE Lottery is live, Wynn Al Marjan Island holds the first 15-year land-based casino licence (opening ~2027), and a monitored online-gaming trial began in late 2025.

Crypto regime — five parallel regulators:

  • VARA (Dubai, ex-DIFC) — Dubai Law No. (4) of 2022; full activity-based VASP rulebooks; Virtual Asset Issuance Rulebook effective 19 June 2025 (FRVA = fiat-referenced, ARVA = asset-referenced VAs as Category 1 issuances); May 2025 rulebook updates (margin trading, token distribution, collateral wallets; compliance by 19 June 2025); marketing rules; bans on anonymity-enhanced/privacy tokens
  • SCA (federal, onshore UAE ex-free-zones) — Cabinet Decision No. (111) of 2021 on the Regulation of Virtual Assets; UAE-wide onshore VASP/exchange licensing; SCA–VARA cooperation (5 Sept 2024): VARA-licensed firms auto-register with SCA; VASPs outside Dubai licence directly with SCA; DIFC/ADGM excluded
  • ADGM FSRA (free zone) — first global comprehensive VA framework (2018) under the Financial Services and Markets Regulations 2015; 2024–2025 fiat-referenced-token (FRT) regime and updated VA guidance (June 2025); Accepted Virtual Assets list; privacy tokens and algorithmic stablecoins prohibited; mining not a regulated activity
  • DIFC DFSA (free zone) — Crypto Token regime; amendments effective 12 January 2026 shifting to firm-led token-suitability assessment; enhanced governance/custody/disclosure
  • CBUAE — Payment Token Services Regulation (Circular No. 2 of 2024) centralises fiat-referenced payment tokens (stablecoins); Federal Decree-Law No. (6) of 2025 brought payment services using virtual assets within CBUAE supervision (Arts 61–62); algorithmic stablecoins and privacy tokens prohibited UAE-wide; Ministerial Decision No. (336) of 2025 designates VARA a competent authority for corporate-tax purposes
  • A free-zone licence is not a UAE-wide passport; cross-emirate/onshore exposure (esp. AED and payment-token flows) must be separately licensed

Payments and e-money regime (federal CBUAE + free zones):

  • Retail Payment Services and Card Schemes Regulation (RPSCS) — CBUAE licensing of retail payment services (incl. payment-account, payment-instrument, money-remittance, payment-token-related services), under the Central Bank Law (Decretal Federal Law No. (14) of 2018, as amended by Federal Decree-Law No. (6) of 2025)
  • Stored Value Facilities (SVF) Regulation — CBUAE licensing of stored-value/e-money facilities (Art. 65 of the Central Bank Law); excludes the financial free zones (free-zone-regulated firms still need a CBUAE licence to conduct SVF in the State); five-year data-localisation/retention; float-protection
  • Payment Token Services Regulation (PTSR, Circular No. 2 of 2024) — issued 7 June 2024, in force 6 July 2024; three categories (issuance, conversion, custody/transfer); distinguishes Dirham vs Foreign payment tokens; one-year transition (ended ~2025) after which RPSCS/SVF licences no longer cover VA activity; merchant acceptance of foreign payment tokens restricted
  • ADGM/DIFC — separate money-services/payment/e-money regimes inside the financial free zones (FSRA/DFSA)
  • Currency: dirham (AED), hard peg US$1 = AED 3.6725 (CBUAE intervention band 3.6720–3.6730); no exchange controls

Gambling regime — from prohibition to federal licensing:

  • Historically prohibited under the federal Penal Code and Sharia-influenced law (only limited charitable raffles/promotional draws)
  • GCGRA established by federal decree, September 2023 — exclusive federal jurisdiction over all commercial gaming: lotteries, land-based gaming, internet gaming, sports wagering; five licence classes (gaming operator; gaming-related vendor; key persons; gaming employees (two levels))
  • UAE Lottery — operator licence to The Game LLC (2024); live since late 2024 (Dh147m+ awarded in year one, reported); legacy raffle operators (Emirates Draw, Mahzooz) paused during licensing
  • Wynn Al Marjan Island (Ras Al Khaimah) — first land-based casino licence (Island 3 AMI FZ-LLC), 15-year exclusive, October 2024; ~US$3.9–5.1bn integrated resort; opening ~early 2027
  • Online: first licensed iGaming/sports-wagering platform (Play971 / Coin Technology Projects LLC) launched a monitored trial late 2025 (Abu Dhabi & RAK); one land-based casino and one online-gaming licence per opting-in emirate; minimum age 21; unlicensed gambling remains illegal (fines/imprisonment); strong responsible-gaming/AML obligations

Last verified: May 2026. Reference rate: US$1 = AED 3.6725 (1 AED ≈ US$0.2723). The dirham is a hard peg to the US dollar (since 1997; CBUAE intervention band 3.6720–3.6730; effectively zero volatility).

The UAE is a single market with multiple parallel regimes: choose a primary crypto "home" (VARA / SCA / ADGM-FSRA / DIFC-DFSA) and ring-fence onshore AED/payment-token flows under CBUAE; payments are CBUAE-federal (plus free-zone regimes); and gambling is now a licensed federal market under the GCGRA (lottery live; first casino ~2027) — with a free-zone licence never a UAE-wide passport.

Is there a crypto licence in the UAE?

Yes — several, in parallel. Pick the regime that matches the business and clients: VARA (Dubai, ex-DIFC), SCA (federal onshore, ex-free-zones; auto-registers VARA licensees UAE-wide), ADGM-FSRA or DIFC-DFSA (the two common-law financial free zones), with the CBUAE governing fiat-referenced payment tokens/stablecoins UAE-wide. These are best treated as one matrix, not competing options.

The legal foundation:

  • VARA: Dubai Law No. (4) of 2022; activity-based VASP rulebooks + Virtual Asset Issuance Rulebook (effective 19 June 2025); FRVA/ARVA stablecoin/RWA categories; May 2025 rulebook updates
  • SCA: Cabinet Decision No. (111) of 2021; SCA–VARA agreement (5 Sept 2024) — VARA licence auto-registers with SCA; non-Dubai onshore VASPs licence directly with SCA; DIFC/ADGM excluded
  • ADGM FSRA: Financial Services and Markets Regulations 2015; comprehensive VA framework (2018); FRT regime + updated guidance (2024–2025)
  • DIFC DFSA: Crypto Token regime; firm-led suitability from 12 January 2026
  • CBUAE: Payment Token Services Regulation (Circular No. 2 of 2024); Federal Decree-Law No. (6) of 2025 (payment services using virtual assets within CBUAE supervision); UAE-wide prohibition on algorithmic stablecoins and privacy tokens

Structure (which regime, when):

  • VARA — Dubai-focused exchanges, brokers, custodians, advisers, managers, lending, VA issuance (ex-DIFC); two-stage (initial then operating) approval
  • SCA — onshore UAE outside the free zones; VARA-licensed firms gain UAE-wide reach via auto-registration
  • ADGM-FSRA / DIFC-DFSA — institutional/capital-markets and international models within the common-law free zones (each its own licence; not a UAE-wide passport)
  • CBUAE — any fiat-referenced payment-token (stablecoin) issuance/conversion/custody and onshore AED/payment-token flows

Operational reality:

  • World-leading clarity but high complexity: the wrong regulator or scope, or assuming a free-zone licence travels onshore, is the principal risk; structure with ring-fenced entities and intra-group agreements
  • Enforcement is hardening (AML/CFT, sanctions, marketing, privacy-token/algorithmic-stablecoin bans); the "just code" defence for DeFi has been narrowed (Federal Decree-Law No. (6) of 2025)
  • Independent UAE counsel and direct verification with the chosen regulator(s) on current rulebooks/fees are essential before structuring

Payments & E-money (CBUAE federal + ADGM/DIFC free zones)

Best for payment, e-money and stablecoin firms prepared to license federally with the CBUAE (or within ADGM/DIFC) and to ring-fence onshore AED flows.

What it is: CBUAE authorisation under the Retail Payment Services and Card Schemes Regulation, the Stored Value Facilities Regulation, or the Payment Token Services Regulation; or money-services/payment/e-money authorisation within ADGM (FSRA) or DIFC (DFSA).

Who it suits: Retail payment service providers, e-money/SVF issuers, remittance houses, card schemes, and stablecoin (payment-token) issuers/custodians; free-zone fintechs using ADGM/DIFC regimes.

Covers: Retail payment services and card schemes; stored-value/e-money facilities; payment-token issuance, conversion and custody/transfer (Dirham and Foreign payment tokens); free-zone money-services equivalents.

Operational requirement: UAE entity; CBUAE licensing/registration under the relevant regulation with governance, capital, AML/CFT (FATF-aligned), data-localisation (5-year retention) and float-protection requirements; PTSR transition ended ~2025 (RPSCS/SVF licences no longer cover VA activity); free-zone firms still need a CBUAE licence for SVF in the State; ADGM/DIFC routes governed by FSRA/DFSA.

Headline figures

  • Primary instruments: Central Bank Law (Decretal Federal Law No. (14) of 2018, amended by Federal Decree-Law No. (6) of 2025); Retail Payment Services and Card Schemes Regulation; Stored Value Facilities Regulation; Payment Token Services Regulation (Circular No. 2 of 2024; issued 7 June 2024, in force 6 July 2024)
  • Regulators: CBUAE (federal); FSRA (ADGM); DFSA (DIFC)
  • Payment tokens: Dirham vs Foreign payment tokens; algorithmic stablecoins & privacy tokens prohibited; SCA/VARA-licensed custodians may seek CBUAE "Non-Objection Registration"
  • Data/float: 5-year data localisation/retention; customer-fund float protection
  • Currency: AED hard peg US$1 = AED 3.6725; no exchange controls

Is there a gambling licence in the UAE?

Yes — newly. Once broadly prohibited, commercial gaming is now exclusively licensed by the federal GCGRA (established 2023): lotteries, land-based casinos, internet gaming and sports wagering. The UAE Lottery is live (operator licensed 2024), Wynn Al Marjan Island holds the first 15-year land-based casino licence (opening ~2027), and the first licensed online platform began a monitored trial in late 2025. Each opting-in emirate may have one land-based casino and one online-gaming licence; unlicensed gambling remains illegal.

The legal foundation:

  • GCGRA — established by federal decree, September 2023; exclusive federal jurisdiction over all commercial gaming; published public regulations and a Socially Responsible Gaming Program requirement (biennial audit)
  • Historic prohibition (federal Penal Code/Sharia-influenced) remains for unlicensed activity — illegal, with fines/imprisonment for operators and players
  • Five licence classes: gaming operator; gaming-related vendor; key persons; gaming employees (two levels)

Structure:

  • Lottery: The Game LLC (UAE Lottery), licensed 2024, live; legacy raffles (Emirates Draw/Mahzooz) paused during licensing
  • Land-based casino: Wynn Al Marjan Island (Island 3 AMI FZ-LLC), 15-year exclusive licence (Oct 2024), RAK, opening ~early 2027; one land-based casino licence per opting-in emirate (Abu Dhabi/Dubai are watched candidates)
  • Internet gaming & sports wagering: Play971 (Coin Technology Projects LLC) first licensed platform, monitored trial from late 2025 (Abu Dhabi & RAK); one online-gaming licence per opting-in emirate
  • Minimum age 21; mandatory responsible-gaming (cooling-off, self-exclusion) and AML/KYC; GCGRA public licensee registry; structured intake → application-fee/portal → suitability process

Gambling — GCGRA Operator / Vendor / Personal Licences

Best for major international casino, lottery and (emerging) online operators and gaming-tech vendors able to meet GCGRA suitability and a phased, capital-intensive entry.

What it is: A GCGRA licence — gaming operator (casino, internet gaming, sports wagering, lottery), gaming-related vendor, key-person, or gaming-employee.

Who it suits: Global integrated-resort/casino operators, national-lottery operators, licensed online gaming/sportsbook operators (per-emirate cap), and gaming-technology/payments/compliance vendors.

Covers: Land-based casino gaming, lotteries, internet gaming, sports wagering, and the supporting vendor/personnel ecosystem; subject to one casino + one online licence per opting-in emirate.

Operational requirement: GCGRA intake & screening; non-refundable application fee and portal access; entity/individual suitability and probity; capital and integrity standards; Socially Responsible Gaming Program (biennial audit); AML/KYC, surveillance, system/game certification; age 21+; emirate-level participation/opt-in (e.g. RAK Tourism Development Authority gaming unit).

Headline figures

  • Regulator: GCGRA (federal, est. Sept 2023; exclusive jurisdiction); chair Jim Murren (interim CEO; founding CEO Kevin Mullally departed late 2025)
  • Licences: operator / vendor / key persons / employees; one land-based casino + one online-gaming licence per opting-in emirate
  • Milestones: UAE Lottery operator licensed 2024 (live; ~Dh147m awarded year one, reported); Wynn casino 15-yr licence Oct 2024 (open ~2027); Play971 online trial late 2025
  • Minimum age: 21; unlicensed gambling illegal (fines/imprisonment); responsible-gaming + AML mandatory
  • Fees: per GCGRA schedule — not primary-verified here

Costs and timelines at a glance

  • Crypto: five parallel regimes — VARA (Dubai ex-DIFC, Law No. 4/2022; Issuance Rulebook 19 Jun 2025), SCA (federal onshore ex-free-zones, Cabinet Decision 111/2021; auto-registers VARA licensees), ADGM-FSRA (FSMR 2015; 2018 framework; FRT 2024–25), DIFC-DFSA (Crypto Token regime; suitability from 12 Jan 2026), CBUAE (payment tokens/stablecoins; PTSR Circular 2/2024; Decree-Law 6/2025); algorithmic stablecoins & privacy tokens prohibited UAE-wide
  • Payments primary instruments: Central Bank Law (Decretal Federal Law 14/2018, amended by Decree-Law 6/2025); Retail Payment Services & Card Schemes Regulation; Stored Value Facilities Regulation; Payment Token Services Regulation (Circular 2/2024; 7 Jun 2024 issued, 6 Jul 2024 in force; transition ended ~2025)
  • Payments regulators: CBUAE (federal); FSRA (ADGM); DFSA (DIFC); free-zone licence ≠ UAE-wide passport
  • Gambling: GCGRA (federal, est. 2023) — lotteries/casinos/internet gaming/sports wagering; UAE Lottery live (2024); Wynn Al Marjan 15-yr casino licence (Oct 2024, open ~2027); Play971 online trial (late 2025); 1 casino + 1 online licence per opting-in emirate; age 21; unlicensed = illegal
  • Tax: no personal income tax; 9% federal corporate tax (0%-eligible free-zone regimes on qualifying income); 5% VAT
  • Currency: AED hard peg US$1 = AED 3.6725 (band 3.6720–3.6730); no exchange controls
  • FX: US$1 = AED 3.6725 (1 AED ≈ US$0.2723)

Who the UAE suits and who it does not

Suitable for

  • Crypto exchanges, brokers, custodians, managers and token/stablecoin issuers able to select and properly scope a primary regulator (VARA / SCA / ADGM-FSRA / DIFC-DFSA) and ring-fence onshore AED/payment-token flows under the CBUAE
  • Payment, e-money/SVF and stablecoin firms prepared to license federally with the CBUAE (or within ADGM/DIFC) and meet FATF-aligned AML, data-localisation and float-protection rules
  • Major integrated-resort/casino, national-lottery and (emerging) licensed online-gaming operators and gaming-tech vendors able to meet GCGRA suitability and a phased, capital-intensive, per-emirate entry
  • Groups with strong independent UAE counsel able to operate a multi-entity structure across parallel regimes with rigorous compliance and a no-personal-income-tax, low-corporate-tax base

Not suitable for

  • Operators expecting a single UAE-wide licence — a free-zone (ADGM/DIFC) licence is not a passport; onshore/cross-emirate activity needs separate federal/VARA/SCA/CBUAE authorisation
  • Crypto businesses relying on privacy/anonymity-enhanced tokens or algorithmic stablecoins — prohibited UAE-wide, with hardening enforcement
  • Merchants/firms assuming free acceptance of foreign stablecoins/crypto for payments — restricted post-PTSR-transition; onshore payment-token activity needs CBUAE licensing
  • Unlicensed gambling/lottery/betting operators or anyone targeting UAE users without a GCGRA licence — illegal, with fines/imprisonment and per-emirate licence caps
  • Businesses wanting a fast, single-window licence or unable to resource multi-regulator compliance, AML/CFT and (for gaming) very high capital and long, staged approval

Ready to launch without the regulatory guesswork?

Book a 30-minute consultation. We'll map your AI or licensing path and tell you exactly what's required, in plain language.

Get Started