How to Do goAML Registration UAE: A Step‑by‑Step Guide for DNFBPs

Flyingcolour® Compliance . Mon 02 Mar 2026

goAML Registration UAE

If your business is operating in the UAE as a financial institution or a Designated Non-Financial Business and Profession (DNFBP), registering on the goAML portal is not optional — it is a legal obligation. This practical goAML registration UAE guide explains who should register, the step-by-step process, reporting obligations, and common mistakes to avoid.

What is goAML UAE?

goAML is the official reporting portal operated by the UAE Financial Intelligence Unit (FIU). It is used to submit Suspicious Transaction Reports (STRs), Suspicious Activity Reports (SARs), Large Cash Transaction Reports (LCTRs), and sanctions-related reports. It forms an essential part of the UAE's national Anti-Money Laundering (AML) regime, and all obligated entities must register and actively use the system.

Who Must Register for goAML in the UAE?

Financial Institutions: Banks, exchange houses, insurance companies, finance companies, investment firms, and Virtual Asset Service Providers (VASPs).

DNFBPs (Designated Non-Financial Businesses and Professions):

  • Real estate brokers and developers
  • Dealers in precious metals and stones (gold, silver, diamonds)
  • Accounting and audit firms
  • Corporate service providers
  • Law firms (for covered activities)

If your business falls under any of the above categories, goAML registration is mandatory — even if no suspicious transaction has occurred yet.

img

"Registration without adequate internal reporting processes is a major compliance gap. goAML is not an optional requirement — it is a legal obligation."

Flyingcolour® Compliance Team

Step-by-Step goAML Registration UAE Guide

Step 1: Appoint a Compliance Officer

Before registration, the company must formally appoint an AML Compliance Officer or Money Laundering Reporting Officer (MLRO). This individual must be authorised and registered with the relevant supervisory authority and must have adequate knowledge of goAML compliance regulations and framework.

Step 2: Register on the goAML Portal

Go to the official goAML portal and: create an organisation account, fill in all entity profile details, upload the required supporting documents, and nominate authorised users on the portal.

Step 3: Submit Required Documents
  • Trade licence
  • Emirates ID / Passport of the Compliance Officer
  • Board resolution appointing the MLRO
  • Authorisation letter for appointment of MLRO
  • Contact details and official email

Accuracy of the documents is crucial — errors can cause significant delays in receiving approval.

Step 4: FIU Review and Approval

The submitted documents are reviewed by the UAE Financial Intelligence Unit. Upon approval, you will receive login credentials, reporting functionality becomes active, and the entity becomes compliant from a registration perspective.

Step 5: Internal Testing and Reporting Readiness

After registration, provide proper training to relevant staff, establish internal escalation procedures, define the criteria for identifying suspicious activity, and create templates for documenting reports.

Compliance Framework

Suspicious Activity Report (SAR) UAE – When Is It Required?

A SAR must be filed if there are reasonable grounds to suspect money laundering, financing of terrorism, tax evasion, unusual transaction patterns, or a mismatch between customer profile and transaction behaviour. Delay in submitting a SAR on time can expose the business and the MLRO to scrutiny and liability.

DNFBP Compliance Checklist 2026

  • AML Risk Assessment: Conduct entity-level risk assessment, identify high-risk clients, and document risk methodology.
  • Customer Due Diligence (CDD): Verify customer identity, identify UBOs, apply Enhanced Due Diligence for high-risk clients.
  • Sanctions & PEP Screening: Screen customers at onboarding and monitor politically exposed persons.
  • Transaction Monitoring: Flag unusual transaction patterns and high-value cash transactions; maintain escalation logs.
  • goAML Registration & SAR Reporting: Maintain active registration, internal SAR review process, and keep submission records.
  • Staff Training: Conduct annual AML training and document attendance.
  • Record Keeping: Maintain records for the required statutory period and securely store transaction records.

Common Mistakes in goAML Registration UAE

  • Registering on time but not submitting SARs when required
  • Failure to document the internal reporting framework
  • MLRO appointed but not properly authorised with regulators
  • Failure to update the change of compliance officer with the FIU
  • Lack of proper staff training
  • Treating goAML as a "one-time registration task"

Final Thoughts

In 2026, regulators expect businesses to go beyond formal registration and adopt a fully functional AML reporting system. A compliant entity should register for goAML, establish risk-based AML controls, provide adequate training to staff, report suspicious activity in a timely manner, and maintain adequate documentation.

If your organisation has not yet reviewed its goAML registration and AML framework requirements recently, now is the right time to start.

Leave a Reply

Recent Articles

Quick Enquiry

Need expert compliance assistance? Submit your request and our team will get back to you shortly.