The Riffle Podcast

In this episode of The Riffle, we examine UAEFIU Regulation No. (1) of 2026 and its implications for financial institutions, Designated Non-Financial Businesses and Professions (DNFBPs), Virtual Asset Service Providers (VASPs), compliance professionals, and other Reporting Entities operating within the UAE’s AML/CFT framework.The discussion explores the key regulatory measures introduced by the Regulation, including the new Postponement Suspicious Transaction Report (PSTR) framework, enhanced reporting obligations, and the UAE Financial Intelligence Unit’s expanded powers to issue Suspension Orders, Freezing Orders, and Monitoring Orders. Topics include the circumstances requiring urgent reporting, transaction postponement requirements, operational timelines, and the responsibilities of Reporting Entities when responding to FIU directives.Further, the episode highlights customer due diligence considerations, restrictions on tipping-off, customer notification requirements for freezing orders, asset management obligations, recordkeeping standards, governance expectations, and the requirement for 24/7 operational readiness. Special attention is given to compliance officer responsibilities, internal controls, auditability requirements, and the sanctions that may arise from non-compliance under the UAE AML framework.A concise briefing for compliance officers, MLROs, financial institutions, DNFBPs, VASPs, legal advisors, risk professionals, internal auditors, and regulated entities seeking to understand the UAEFIU’s enhanced powers and the practical implications of the latest regulatory framework for suspicious transactions and fund freezing measures.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the DFSA’s Rulebook Amendments and their implications for banks, financial institutions, fintech firms, Islamic finance operators, and regulated entities operating within the DIFC.The discussion explores the key regulatory enhancements introduced across the General (GEN), Prudential – Investment, Insurance Intermediation and Banking (PIB), Glossary (GLO), and Islamic Finance (IFR) modules, with implementation scheduled for January 2027. Topics include strengthened governance requirements, mandatory risk management functions for large and complex firms, Governing Body-approved Risk Appetite Statements, and enhanced expectations surrounding corporate and risk culture.Further, the episode highlights new standards for management information systems (MIS), internal audit independence, credit classification and provisioning requirements, concentration risk management, large exposure limits, and capital adequacy considerations. Special attention is given to the incorporation of climate-related financial risks, digitalization risks, stress testing expectations, and amendments affecting Islamic finance institutions and Profit Sharing Investment Accounts (PSIAs).A concise briefing for compliance professionals, risk officers, financial institutions, fintech operators, legal advisors, internal auditors, and DIFC-regulated entities seeking to understand the DFSA’s evolving supervisory expectations and the practical impact of its latest Rulebook reforms.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the DFSA’s Rulebook Enhancements aligned with the Basel Core Principles and their implications for financial institutions, banks, fintech firms, and regulated entities operating within the DIFC.The discussion explores key regulatory updates introduced under Consultation Paper 167 (CP 167), including enhanced risk management frameworks, strengthened credit risk oversight, IFRS 9 provisioning alignment, expanded concentration risk definitions, and stricter related-party transaction governance requirements.Further, the episode highlights the DFSA’s focus on independent risk functions, risk data aggregation and MIS standards, governance accountability, internal audit enhancements, and stronger supervisory expectations for large and complex firms.A concise briefing for compliance professionals, financial institutions, fintech operators, risk officers, legal advisors, and DIFC-regulated entities seeking to understand evolving DFSA regulatory expectations and Basel-aligned supervisory standards.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the FSRA’s Cyber Threat Landscape and Regulatory Guidance for Virtual Asset Service Providers (VASPs), a significant regulatory briefing shaping cyber resilience expectations and risk management standards within the virtual asset sector.The discussion explores key cyber threat categories identified by the FSRA, including infrastructure attacks, private key compromise, ransomware and extortion tactics, identity fraud, AI-generated impersonation, and supply chain vulnerabilities. It also highlights technical risks within decentralized finance (DeFi), including cross-chain bridge attacks, flash loan manipulation, and re-entrancy exploits.Further, the episode outlines the FSRA’s recommended strategic security measures, including hardware-backed key custody, smart contract auditing, secure-by-design frameworks, phishing-resistant MFA, third-party risk management, incident readiness, and mandatory cyber incident reporting obligations within 24 hours.A concise briefing for boards, senior management, compliance professionals, cybersecurity teams, Virtual Asset Service Providers, fintech operators, digital asset platforms, and ADGM-based entities seeking to understand evolving cyber resilience expectations and regulatory obligations within the UAE’s virtual asset ecosystem.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine ADGM’s 2026 ML/TF Risk Assessment for Legal Persons and Arrangements , a significant regulatory assessment shaping the jurisdiction’s risk-based supervisory and compliance framework.The discussion explores key findings from the assessment, including the transition to a five-point risk rating scale, the identification of higher-risk legal structures, strengthened beneficial ownership transparency measures, and enhanced Company Service Provider (CSP) oversight. It also highlights ADGM’s evolving approach to inspections, enforcement, SPV nexus requirements, and AML/CFT risk mitigation aligned with international standards.A concise briefing for boards, senior management, legal and compliance teams, financial institutions, and ADGM-based entities on understanding emerging ML/TF risks, regulatory expectations, and supervisory priorities within ADGM.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine ADGM FSRA’s regulatory framework for the staking of virtual assets — a pivotal development shaping how firms can engage in staking activities within a regulated environment.The discussion explores how Authorised Persons must obtain the appropriate permissions, implement robust operational controls, and ensure full transparency when using client assets for staking. It also highlights key expectations around client disclosures, real-time reporting, risk management (including slashing and lock-up risks), and the governance of third-party staking service providers.A concise briefing for boards, senior management, virtual asset service providers, and compliance teams on navigating staking regulations and embedding strong oversight, client protection, and operational resilience into staking activities.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the UAE’s guidance on the Compliance Officer (CO) and Money Laundering Reporting Officer (MLRO) function — a core regulatory requirement underpinning how firms detect, manage, and report financial crime risks. The discussion explores how institutions are expected to structure this role with sufficient seniority, independence, and authority, while ensuring robust oversight across transaction monitoring, suspicious activity reporting, sanctions compliance, and customer due diligence. It also highlights the importance of governance, resource allocation, and the integration of compliance into day-to-day operational decision-making. A concise briefing for boards, senior management, and compliance teams on building an effective compliance function and why the CO/MLRO role is central to meeting regulatory expectations and safeguarding financial systems.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the Dubai Financial Services Authority’s Strategic Regulatory Relief Framework, introduced to support firms operating within the DIFC during an exceptional operating environment.The discussion explores how the framework delivers targeted flexibility across licensing, staffing, reporting, and implementation timelines, while maintaining the DFSA’s core regulatory standards and supervisory expectations. It also outlines how relief measures are applied in practice and what remains unchanged for regulated firms.A concise briefing for boards, senior management, and compliance teams on navigating regulatory flexibility without compromising governance, and what firms should prioritise during this period.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the ADGM Registration Authority’s thematic review of the Non-Profit Organisation (NPO) sector, focusing on AML compliance and terrorist financing risk.The discussion highlights the sector’s lower risk profile due to limited cash use, no public fundraising, and minimal high-risk exposure, while identifying key gaps in governance, beneficial ownership, and reporting.A concise briefing for boards, senior management, MLROs, and compliance professionals on regulatory expectations and risk management within the NPO sector. 🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the FATF’s latest guidance on criminal asset recovery and its significance for strengthening the global response to financial crime.The discussion explores the persistent global gap in confiscating illicit proceeds and how modern investigative techniques — including financial intelligence analysis and blockchain tracing — are being used to identify, freeze, and recover criminal assets.We also outline the FATF’s strategic priorities, including stronger international cooperation, enhanced asset recovery frameworks, and mechanisms to return confiscated assets to victims and communities.A concise regulatory briefing for boards, senior management, MLROs, compliance, risk, and legal teams seeking clarity on evolving global expectations around asset recovery and financial crime enforcement.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the Dubai Financial Services Authority (DFSA) framework governing Anti-Money Laundering (AML), Counter-Terrorist Financing (CTF), and Countering Proliferation Financing (CPF)within the Dubai International Financial Centre (DIFC).We explore the regulatory architecture underpinning AML compliance, including the DFSA’s risk-based approach, customer due diligence (CDD) and enhanced due diligence (ECDD) requirements, senior management oversight, and verification standards for individuals and legal persons.The discussion also covers governance expectations for digital onboarding and automated monitoring systems, accountability for outsourced AML functions, internal audit requirements, and regulatory obligations related to sanctions screening and reporting.A concise regulatory briefing for boards, senior management, MLROs, compliance, risk, and legal teams seeking clarity on DFSA AML supervisory expectations and compliance standards in the DIFC.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine the Dubai Financial Services Authority’s supervisory communication issued on 1 March 2026 in response to evolving regional geopolitical developments and the resulting expectations for Authorised Firms within the DIFC.The discussion outlines the DFSA’s confirmation of operational continuity, financial system resilience supported by capital and liquidity buffers, and recent stress-test outcomes.We review the four supervisory priorities — business continuity, governance oversight, heightened risk vigilance, and proactive regulatory communication — alongside enhanced monitoring indicators, capital and funding sensitivities, and sector-specific vulnerabilities.Particular focus is given to mandatory escalation triggers requiring prompt notification via the DFSA ePortal where risks become systemic or threaten orderly operations.A concise overview for boards, SEOs, risk, compliance, and legal teams seeking clarity on current supervisory expectations within the DIFC.🎙️ Presented by 10 Leaves

In this episode of The Riffle, we examine Dubai’s Real Estate Tokenisation Pilot and the regulatory oversight framework governing its controlled implementation under the Virtual Assets Regulatory Authority (VARA).The discussion explores the pilot’s phased progression from initial technological and regulatory validation to its current evaluation stage, including the assessment of secondary-market mechanisms and the conditions required for future scalability.We also consider the legal architecture underpinning the initiative, including Dubai Law No. 4 of 2022, Cabinet Resolution No. 111 of 2022, and the applicable VARA Rulebooks, alongside jurisdictional scope across Dubai Mainland and Free Zones, with the DIFC excluded.Particular attention is given to VARA’s formal marketplace alert addressing unauthorized promotional claims, the mandatory licensing requirement for virtual asset activities, verification through the VARA Public Register, and reporting of unlicensed conduct.A concise overview for boards, senior management, compliance officers, legal teams, digital asset operators, and market participants seeking to understand the supervisory parameters governing tokenised real estate activity within Dubai’s regulated virtual asset ecosystem.🎙️ Presented by 10 Leaves