Post by : Bianca
Haleem
Dubai International Financial Centre (DIFC), recognized as the premier global financial hub for the Middle East, Africa, and South Asia (MEASA), has officially joined the Global Cross-Border Privacy Rules (CBPR) Forum. This membership signifies a pivotal moment for international data governance.
The announcement came during a recent workshop of the Global CBPR Forum held in the Philippines, positioning DIFC as the inaugural member from outside the Asia-Pacific Economic Cooperation (APEC) region. As part of this membership, DIFC has also aligned with the Global Cooperation Arrangement for Privacy Enforcement (Global CAPE).
This strategic partnership underscores DIFC’s pledge to create secure, transparent, and interoperable frameworks for cross-border data, meeting the evolving demands of global enterprises and stakeholders. It also complements the UAE Digital Economy Strategy, reinforcing Dubai’s standing as a trusted hub in the global digital economy.
By joining the Global CBPR Forum, DIFC aims to streamline international trade while upholding strict data protection standards, enabling businesses to transfer personal data across borders with enhanced confidence and clarity.
His Excellency Arif Amiri, CEO of DIFC Authority, remarked that this membership acknowledges DIFC’s proactive stance in promoting data privacy and protection. With substantial amounts of personal data handled daily in the financial sector, robust regulatory frameworks are vital. DIFC’s current compliance mechanisms serve over 8,000 registered companies, underlining Dubai’s adherence to world-class standards.
The CBPR System ensures that organizations meet rigorous criteria for cross-border personal data transfers. Initially devised under APEC, this framework gained global traction in 2022, leading to the establishment of the Global CBPR Forum, inviting worldwide jurisdictions to enhance regulatory interoperability.
Further enhancing its leadership stature, DIFC rolled out Regulation 10 in 2023, the first of its kind in the MEASA region, governing AI, machine learning, and generative technologies in demographic data handling. This regulation advocates ethical and responsible practices in data utilization.
DIFC’s entry into the Global CBPR Forum follows its active engagements during the Global Privacy Assembly (GPA) in Seoul, South Korea, where cooperation accords were signed with data authorities from Brazil, the Isle of Man, Uganda, and Kenya. These initiatives pave the way for DIFC to host the GPA Conference in Dubai in 2026, solidifying its stature as a leader in privacy and data protection worldwide.
English
