March 22, 2026
Methodology About Contact
UAE TOKENIZATION REGULATIONS
The Vanderbilt Terminal for UAE Tokenization Regulatory Frameworks
INDEPENDENT GLOBAL INTELLIGENCE FOR UAE TOKENIZATION REGULATION
VARA Licensed VASPs: 19 ▲ Dubai Active | ADGM FSP Holders: 14 ▲ Digital Asset | DFSA Crypto Tokens: 6 Recognized ▲ DIFC Licensed | SCA Regulated: Federal Scope ▼ Onshore UAE | UAE FATF Rating: Compliant ▲ 2024 MER | Sandbox Programs: 3 Active ▲ VARA+ADGM+DFSA | Cross-Border MoUs: 12+ ▲ Bilateral | Corporate Tax: 9% ▼ Federal Rate | VARA Licensed VASPs: 19 ▲ Dubai Active | ADGM FSP Holders: 14 ▲ Digital Asset | DFSA Crypto Tokens: 6 Recognized ▲ DIFC Licensed | SCA Regulated: Federal Scope ▼ Onshore UAE | UAE FATF Rating: Compliant ▲ 2024 MER | Sandbox Programs: 3 Active ▲ VARA+ADGM+DFSA | Cross-Border MoUs: 12+ ▲ Bilateral | Corporate Tax: 9% ▼ Federal Rate |
Home federal framework token classification: the federal taxonomy
Layer 1 deep dive

token classification: the federal taxonomy

how the uae federal regulatory framework classifies tokens as securities, payment instruments, or utility tokens — and which authority has jurisdiction over each category.

Current Value
3 token categories
2025 Target
unified taxonomy
Progress
multi-authority classification
Advertisement

table of contents

  1. the classification problem
  2. federal classification architecture
  3. security tokens
  4. payment tokens
  5. utility tokens
  6. hybrid and complex tokens
  7. authority-specific variations
  8. classification process in practice
  9. international comparison
  10. reform outlook

the classification problem

Token classification is the most consequential regulatory question for any firm issuing or dealing in tokenized assets in the UAE. The classification of a token determines which regulatory authority has primary jurisdiction, what licensing requirements apply, what capital requirements must be met, what conduct rules govern operations, and what enforcement mechanisms apply. A token classified as a security falls under SCA jurisdiction with full securities regulatory requirements. A token classified as a payment instrument falls under CBUAE jurisdiction with payment services regulation. A token classified as a virtual asset (but not a security or payment instrument) falls under the jurisdiction of the licensing authority in the relevant free zone — VARA in Dubai, ADGM FSRA in Abu Dhabi, or DFSA in DIFC.

The classification challenge is compounded by the UAE’s multi-authority regulatory architecture. Each authority applies classification criteria that, while broadly aligned, differ in specific definitional elements and interpretive approaches. This creates the possibility that the same token could be classified differently depending on the jurisdiction in which it is being offered, used, or traded.

This analysis examines the federal-level classification taxonomy established by the SCA and CBUAE, the variations applied by free zone regulators, and the practical implications for token issuers and service providers operating across multiple UAE jurisdictions. For the related cross-emirate regulatory arbitrage dynamics, see that analysis.

federal classification architecture

The federal token classification framework operates as a decision tree with three primary categories: security tokens, payment tokens, and utility tokens. The framework is established through Cabinet Decision No. 111 of 2022, SCA Decision No. 23/R.M of 2020, and CBUAE regulations on payment services.

The classification begins with a substance-over-form analysis. The regulatory treatment of a token is determined by its economic substance — that is, the rights, obligations, and functions that the token confers — rather than by its technical characteristics, label, or the issuer’s stated intention. This principle is critical because it prevents issuers from avoiding securities regulation by labeling a token as a “utility token” when its economic substance is that of a security.

The substance-over-form principle is applied consistently across all UAE authorities, reflecting both domestic regulatory practice and international guidance from FATF, IOSCO, and the BIS. The practical effect is that regulators look beyond whitepaper descriptions and marketing materials to examine how the token actually functions in practice.

security tokens

Security tokens are tokens whose economic substance includes one or more of the following characteristics: representation of ownership in an entity (equity tokens), entitlement to a share of profits or revenue, representation of a debt obligation or claim, entitlement to distribution of returns from an underlying pool of assets, or conferral of rights that are substantially similar to those provided by traditional securities.

Under the SCA’s framework, security tokens are subject to the full range of securities regulations including prospectus or offering document requirements for primary issuance, disclosure obligations for material information, secondary market trading rules if the tokens are listed on a regulated market, insider trading and market manipulation prohibitions, and ongoing reporting requirements for issuers.

The SCA applies a “Howey-like” economic substance test, examining whether the token involves an investment of money in a common enterprise with an expectation of profits derived from the efforts of others. While the UAE does not formally apply the US Howey test, the analytical approach is functionally similar, informed by the SCA’s engagement with IOSCO guidance on crypto-asset classification.

For detailed analysis of the SCA’s securities regulatory framework, see the SCA federal securities tokenization rules.

payment tokens

Payment tokens are tokens designed and used primarily as a medium of exchange — that is, as instruments for making payments rather than as investments or access mechanisms. The primary example is stablecoins, particularly dirham-denominated stablecoins designed to facilitate payments within the UAE financial system.

Payment token classification triggers CBUAE jurisdiction rather than SCA jurisdiction. Issuers and operators of payment tokens must comply with the CBUAE’s stored value facility and payment service provider regulations, including reserve requirements, redemption obligations, and operational standards.

The boundary between payment tokens and other token categories can be blurred. A stablecoin that is widely used for investment purposes (rather than payments) might exhibit characteristics of both a payment token and an investment token. The federal framework addresses this through a “primary purpose” test — the token is classified according to its primary design and use characteristics, with secondary characteristics considered in determining the full scope of applicable regulation.

The CBUAE payment token regulation analysis examines the payment token framework in detail. The stablecoin regulatory framework addresses the cross-authority dynamics of stablecoin supervision.

utility tokens

Utility tokens are tokens that provide access to a specific product, service, or platform function and are not designed primarily as investment instruments or payment instruments. Utility tokens represent the lightest regulatory category in the federal framework, but they are not unregulated.

The SCA reserves the right to reclassify a token originally assessed as a utility token if its use in practice diverges from its stated utility function. A token marketed as providing access to a platform but primarily purchased and traded as a speculative investment may be reclassified as a security token, triggering full securities regulatory requirements.

Utility tokens that also function as virtual assets (digital representations of value that can be traded or used for investment purposes) remain subject to the virtual asset regulatory framework established by Cabinet Decision No. 111, even if they are not classified as securities or payment instruments. This means that platforms trading in utility tokens may require VASP licensing from the SCA (onshore) or the relevant free zone regulator.

hybrid and complex tokens

The federal framework acknowledges that many real-world tokens do not fit neatly into a single classification category. Hybrid tokens may combine characteristics of securities and utility functions — for example, a token that represents equity in a real estate project while also providing access to a property management platform. Complex tokens may include algorithmic stablecoins that combine payment and investment characteristics, governance tokens that combine utility and equity-like characteristics, and wrapped or derivative tokens that represent claims on underlying assets across multiple classifications.

For hybrid and complex tokens, the federal approach applies the “dominant characteristic” test. The token is classified according to its dominant economic characteristic, with regulatory requirements from secondary classifications applied as supplementary obligations where appropriate. This approach provides flexibility but introduces interpretive uncertainty, making pre-classification consultation with the relevant regulatory authority advisable.

authority-specific variations

While the federal classification framework provides the baseline taxonomy, each free zone regulator applies variations that reflect their specific regulatory contexts.

VARA uses the term “virtual assets” broadly and applies its seven activity categories to all tokens that fall within its jurisdictional scope. VARA’s classification does not draw the same bright-line distinctions between security, payment, and utility tokens that the federal framework employs. Instead, VARA regulates based on the activity being conducted with the token.

ADGM FSRA distinguishes between “digital securities” (tokenized representations of traditional financial instruments) and other virtual assets. Digital securities trigger the FSRA’s existing securities regulation framework, while other virtual assets are regulated under specific virtual asset rules.

DFSA takes the most restrictive approach, recognizing only specific tokens (currently six) for regulated activities within DIFC. Tokens not recognized by the DFSA cannot be the subject of regulated financial services within DIFC.

The VARA vs ADGM vs DFSA comparison examines how these classification variations affect firms operating across multiple jurisdictions.

classification process in practice

For firms seeking to issue or deal in tokens in the UAE, the practical classification process involves several steps. Initial self-assessment determines the token’s dominant economic characteristics. Jurisdictional determination identifies which UAE authority or authorities have jurisdiction based on the firm’s physical location and the nature of its activities. Pre-application engagement with the relevant authority or authorities allows the firm to discuss its proposed classification and receive informal guidance. Formal application includes the firm’s analysis of token classification with supporting documentation. Regulatory assessment by the authority includes independent evaluation of the token’s economic substance.

Firms operating across multiple jurisdictions should engage with all relevant authorities early in the process, as divergent classifications across jurisdictions can create significant operational and compliance challenges.

international comparison

The UAE’s classification framework aligns broadly with international approaches but exhibits specific characteristics. Compared to the EU’s MiCA framework, the UAE’s classification is less prescriptive about specific token categories but more flexible in accommodating hybrid and novel token structures. Compared to Hong Kong’s approach, the UAE’s multi-authority classification system is more complex but provides more diverse regulatory pathways. Compared to Bahrain’s framework, the UAE’s system is more developed and comprehensive.

reform outlook

The federal token classification framework is expected to evolve as the market develops and as international standards mature. IOSCO’s ongoing work on crypto-asset regulation, the FATF’s updated guidance on virtual assets, and the implementation experience of major jurisdictions including the EU under MiCA will inform future iterations of the UAE framework. For updates, see the regulatory framework tracker dashboard and the SCA implementing regulations brief.

For official classification guidance, consult the SCA and CBUAE.

Advertisement
federaltoken-classificationscacbuae
Related Articles
cabinet decision no. 111 of 2022 on virtual asset service providers
sca federal securities tokenization rules
cbuae payment token and virtual asset regulation
federal decree-law no. 32 of 2021 and virtual asset corporate structures
Advertisement
Network Intelligence

Institutional Access

Coming Soon