“The EU’s new Data Act is a milestone in democratising data, improving interoperability, and accelerating innovation, all while upholding privacy and resilience. For UAE businesses, it signals where global regulatory trends are heading, while reaffirming areas where the country is already making strong progress.
“The UAE has laid strong foundations with the Federal Personal Data Protection Law (PDPL), supported by frameworks in free zones such as DIFC and ADGM that mirror international standards like GDPR. Together with the National Cybersecurity Strategy and digital transformation agenda, these measures ensure data sovereignty and resilience remain central to national growth.
“What the EU Data Act adds is a new emphasis: making data not only secure, but also more accessible, portable, and resilient across jurisdictions. This is particularly relevant for UAE enterprises that increasingly operate in multi-cloud and cross-border environments, where visibility of data location and recovery readiness are becoming critical differentiators.
“With the UAE already leading globally in AI adoption, the opportunity is clear. By pairing sovereign-ready frameworks with AI and automation, businesses can close compliance gaps, reduce fragmentation, and strengthen resilience. The EU Data Act should not be seen as a burden to replicate, but as a signal of the future, and an invitation for UAE enterprises to set global benchmarks in sovereign, secure innovation.”