The IoT is a regulatory framework in the United Arab Emirates which comprises of the following:

  1. IoT Regulatory Policy
  2. IoT Regulatory Procedures.

This regulatory framework is intended to establish a compulsory registration process for the services providers in the United Arab Emirates which can be broadly defined as "any Person that provides a loT Service to users (including individuals, businesses and the government), that will comprise the provision of loT-related service/solutions."

IoT service is defined as "a set of functions and facilities offered to a user by a loT Service Provider [but...] does not encompass loT-specific Connectivity". In a crux, the policy requires the service provides to register and then obtain a service registration certificate from the Telecommunications and Regulatory Authority. It is worth noting that the policy makes a provision for its application to any entity which offers the services in the UAE market regardless of its establishing place, operations or even the management.

The policy is for the regulation and fostering the growth of the economy, whereby the UAE Government passed its IoT Policy on 22 March 2018. The services provided are expected to review their current operational procedures as well as their protocols for determination of the compliance of the policy. For example, focus on identification of the data categories like open, sensitive, confidential and secret; or license of the data storage limitation and consideration of the storage for different categories, outside and within the country.

It is not only the United Arab Emirates that is considering policy, but the Kingdom of Saudi Arabia is also having cabinet discussions for the policy and also the Sultanate of Oman.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.