ADGM Publishes 2026 Update to Legal Persons and Arrangements Risk Assessment: What Every Regulated Entity Must Know
Abu Dhabi Global Market has released the ADGM LPA Risk Assessment 2026. It is a significant one. ADGM is growing fast. The number of Legal Persons and Arrangements registered in the financial centre rose from 7,173 in March 2024 to 12,302 by the end of March 2026. That is a 72% jump in two years.
Growth is good news. But in AML/CFT, growth also brings pressure. More entities mean more ownership layers. More cross-border links. More advisers. More company service providers. More files for regulators to question.
That is what this update is about.
The 2026 assessment gives ADGM a clearer view of money laundering and terrorist financing risks across its legal structures. It also comes at a key moment for the UAE. The country was removed from the FATF grey list in February 2024. It has since pushed ahead with its National AML/CFT/CPF Strategy 2024–2027. The next FATF-MENAFATF review cycle will look closely at whether these reforms are working in real life, not just on paper.
For regulated entities, this is not another report to save and forget.
The ADGM LPA Risk Assessment 2026 will shape how ADGM looks at licensing, monitoring, inspections, customer due diligence, enhanced due diligence, beneficial ownership checks and enforcement. Banks, company service providers, VASPs, DNFBPs and professional advisers dealing with ADGM structures should treat it as a live
What Is the ADGM LPA Risk Assessment and Why Does the 2026 Update Matter?
ADGM is the international financial centre of Abu Dhabi and operates under a legal framework based on the direct application of English Common Law. Its jurisdiction covers Al Maryah Island and Al Reem Island, and it hosts a wide range of legal structures, including companies, partnerships, foundations, trusts and professional services vehicles.
The term Legal Persons and Arrangements, or LPAs, refers to the legal structures available within ADGM. These include public and private companies, restricted scope companies, partnerships, branches, foundations, distributed ledger technology foundations and trusts. ADGM has stated that its legal framework encompasses 17 distinct legal persons and arrangement types, each with different features and different potential exposure to misuse.
The 2026 update revises the first ADGM LPA assessment issued in March 2024. The change is quite detailed in nature.
ADGM has moved from a four-point to a five-point risk scale: Low, Medium-Low, Medium, Medium-High and High. This gives the Registration Authority more precision in distinguishing between structures that may previously have appeared similar on paper but carry different practical risks. ADGM has also made clear that some movements in risk ratings should be read as improved analytical granularity rather than evidence of a worsening risk environment.
The timing matters. UAE Federal Decree-Law No. 10 of 2025 has modernised the country’s AML/CFT and proliferation financing framework, with express references to virtual assets, digital systems, supervisory authorities, DNFBPs and VASPs. The law also reinforces the role of national risk assessment, supervision and coordination across competent authorities.
This gives the ADGM update a wider significance. It is not just an ADGM registry exercise. It is part of the UAE’s broader move from “having controls” to proving that those controls work in practice.
What the 2026 Assessment Found: Key Findings Explained
The 2026 update does not suggest that ADGM’s risk environment has suddenly deteriorated. Instead, it gives a more detailed picture of where risks sit, how existing controls are working, and which areas are likely to receive closer regulatory attention.
Overall ML/TF Risk Profile Remains Broadly Stable
ADGM’s headline finding is reassuring: the overall money laundering and terrorist financing risk profile of ADGM LPAs remains broadly stable compared with the 2024 assessment. That stability, however, comes with a sharper methodology and a more demanding supervisory lens.
The updated assessment weighs threats, inherent vulnerabilities, probability of misuse and mitigants. In plain English, ADGM is not asking only whether a structure can be abused. It is asking how likely that abuse is, how serious it could be, and whether the controls around the structure are strong enough. That is a more mature regulatory test.
It also means entities cannot rely on a “low-risk by default” assumption simply because they are established in a reputable financial centre.
Private Companies Limited by Shares and General Foundations are rated Medium-High in the 2026 assessment. Trusts, Restricted Scope Companies, Branches of Foreign Companies, General Partnerships and Limited Partnerships are rated Medium. Public Companies Limited by Shares remain Low.
Beneficial Ownership Transparency Strengthened
Beneficial ownership is one of the clearest themes running through the ADGM LPA Risk Assessment 2026. ADGM already treats beneficial ownership identification and verification as an integral part of the application review process for registering legal entities. Applicable entities must maintain beneficial ownership records and notify the Registrar of changes.
For companies and LLPs, ADGM’s beneficial ownership framework looks at persons with 25% or more direct or indirect ownership or voting rights, as well as natural persons who otherwise control the company or LLP. Where no such person is identified, the officer test may apply.
This is where the practical risk sits. In a fast-growing jurisdiction, beneficial ownership records can become stale quickly. Ownership chains change, nominee arrangements are introduced, trusts or foundations are added, and cross-border holding structures become more layered.
The paperwork may still look tidy, but the real question is whether the entity can evidence who ultimately owns, controls and benefits from the structure today, not last year, not at incorporation, and certainly not “as per the old chart in the folder”.
Gatekeeper Supervision Tightened
ADGM’s report places renewed emphasis on gatekeepers, including company service providers and professional advisers. That matters because legal entities are rarely misused in isolation. Someone incorporates them, maintains them, advises them, files for them, manages them or introduces them to financial institutions.
The 2026 assessment refers to strengthened company service provider supervision, improved gatekeeper controls, increased inspection activity and better beneficial ownership transparency as mitigants that help offset higher threat inputs from the national risk picture.
For CSPs, lawyers, accountants and other professional advisers, this is the part of the report that deserves a yellow highlighter. FATF expectations around DNFBP supervision and gatekeeper accountability are now firmly embedded in the UAE’s regulatory direction. The compliance burden is no longer limited to onboarding forms.
Regulators increasingly expect professionals to understand the purpose of structures, identify red flags, challenge inconsistent information and maintain evidence of their risk-based decisions.
Inspection Activity Increased
The ADGM update confirms that the findings will support inspection planning, thematic supervisory work and targeted enforcement activity where indicators warrant action. That is a direct signal to the market: the report will not sit on a shelf. It will influence who gets inspected, what inspectors ask for, and how supervisors prioritise risk.
For 2025–2026, entities should expect particular scrutiny where structures involve layered ownership, foreign shareholders, nominee arrangements, high-risk jurisdictions, virtual assets, private wealth vehicles, foundations, trusts or limited operational substance. None of these factors automatically indicate wrongdoing. But they do invite better documentation, stronger rationale and cleaner evidence.
The practical standard is moving from “do we have a policy?” to “can we prove the policy worked on this file?” That is usually where compliance programmes either stand up or start sweating.
Enforcement Tools Expanded
The 2026 assessment also refers to expanded enforcement tools as part of the strengthened mitigants within ADGM. This aligns with the broader UAE AML/CFT framework, including Federal Decree-Law No. 10 of 2025 and Cabinet Decision No. 134 of 2025. The Central Bank of the UAE identifies the new AML/CFT Law and its implementing regulation as part of the UAE’s core federal AML/CFT framework.
The new federal framework expressly includes virtual asset service providers within the scope of supervisory attention and national AML/CFT coordination. It also gives the UAE Financial Intelligence Unit, supervisory authorities and national committees a stronger role in information exchange, supervision, risk assessment and enforcement coordination.
For ADGM entities, this means enforcement risk should be assessed across the full lifecycle of the structure: incorporation, licensing, ownership changes, annual filings, commercial activity, banking relationships, suspicious activity reporting and deregistration. The days of “we updated it eventually” are becoming expensive days.
How ADGM Uses This Assessment in Day-to-Day Regulation
ADGM has made the operational use of the report very clear. The findings will inform incorporation and commercial licensing applications, ongoing monitoring and risk reviews of existing entities, inspection planning, thematic reviews and targeted enforcement activity.
For new applications, this means the Registration Authority may apply greater scrutiny to structures with elevated risk features. Applicants should expect more questions around beneficial ownership, source of wealth, business purpose, governance, nominee arrangements and the rationale for using a particular ADGM vehicle.
For existing entities, the report is equally important. ADGM’s monitoring will not be limited to newly incorporated entities. Existing LPAs may be reviewed against the updated risk framework, especially where their structure, ownership, business activity or filings suggest a higher risk profile.
For financial institutions, VASPs, CSPs and DNFBPs, the report should feed into customer risk assessment. A bank dealing with an ADGM foundation, for example, should not treat that structure in exactly the same way as a listed public company.
A CSP managing a private company with foreign ownership layers should be able to explain its CDD and EDD decisions. A professional adviser assisting with restructuring should consider whether beneficial ownership records, control arrangements and registry filings remain accurate.
The Bigger Regulatory Picture - Why This Goes Beyond ADGM
The UAE’s removal from the FATF grey list in February 2024 was an important milestone, but it was not the end of the story. FATF stated at the time that the UAE had made significant progress, including in risk-based supervision, DNFBP oversight, suspicious transaction reporting, legal person misuse risk, FIU resources, money laundering investigations and sanctions implementation.
FATF also said the UAE should continue working with MENAFATF to sustain improvements.
That final word – sustain – is doing a lot of work. International assessors are less impressed by one-off reforms and more interested in evidence that systems are operating consistently. The UAE’s National AML/CFT/CPF Strategy 2024–2027 reflects that shift.
The strategy focuses on risk-based compliance, effectiveness, sustainability, supervision, beneficial ownership transparency, financial data, asset recovery and emerging risks, including virtual assets and cybercrime.
The FATF global assessment calendar shows the UAE scheduled for the next round of mutual evaluations by FATF-MENAFATF, with a possible onsite period in June 2026 and possible plenary discussion in February 2027.
Seen in that context, the ADGM LPA Risk Assessment 2026 is part of a national effectiveness story. ADGM is demonstrating that it understands the risks within its own ecosystem, can distinguish between different legal structures, and can translate that understanding into supervision, monitoring and enforcement.
What ADGM-Registered Entities Must Do Right Now
ADGM-registered entities should begin with a practical review of their legal structure, beneficial ownership record and control arrangements.
The first question is simple: does the current registry information match the real ownership and control position today? If there has been any change in shareholders, voting rights, control rights, nominee arrangements, directors, foundation officials, trustees or beneficiaries, the entity should verify whether filings and internal registers are fully updated.
The second step is to revisit the entity’s AML/CFT risk classification. A structure that was treated as low risk in 2024 may need a fresh assessment under the 2026 framework, especially if it is a private company, foundation, trust, partnership or branch with cross-border elements. The review should consider ownership complexity, jurisdictions involved, business activity, source of funds, source of wealth, expected transactions, customer profile and reliance on professional intermediaries.
The third step is evidence. ADGM and other UAE regulators are increasingly focused on proof. Board minutes, ownership charts, CDD files, EDD approvals, screening results, registry filings, risk assessment worksheets and correspondence with CSPs should all tell the same story. If the file needs a tour guide to explain it, the file needs work.
Entities using ADGM structures for group holding, succession planning or private wealth purposes should also revisit their commercial rationale and documentation. For broader structuring context, ADEPTS’ Holding Company Guide can help entities think through governance, ownership and substance considerations. Groups comparing free zone structures may also refer to ADEPTS’ DIFC Performance insights for a wider UAE financial-centre perspective.
How ADEPTS Helps Entities Navigate the 2026 LPA Risk Framework
ADEPTS supports ADGM-registered entities, regulated firms, CSPs and professional service providers in translating the ADGM LPA Risk Assessment 2026 into practical compliance action. This includes reviewing beneficial ownership records, updating AML/CFT policies, preparing customer risk assessment frameworks, conducting gap analyses, drafting enhanced due diligence procedures and supporting internal compliance audits.
ADEPTS also assists entities in preparing for regulatory inspections by reviewing files from a supervisor’s perspective. The focus is not only whether a document exists, but whether the document is current, consistent, defensible and aligned with the entity’s actual risk profile. That distinction matters. A polished policy with weak execution is still a weak control — just wearing a better suit.
For entities dealing with foundations, trusts, private companies, VASPs, DNFBPs or complex ownership chains, ADEPTS can support registry update reviews, compliance remediation plans, AML/CFT training, governance documentation and regulatory audit readiness. For legal interpretation and entity-specific advice, clients should obtain support through ADEPTS’ Legal Counseling in UAE and Dubai.
Disclaimer
This article is for general informational purposes only and reflects the ADGM assessment and related regulatory materials available as of May 2026. It should not be treated as legal advice or as a substitute for advice on any specific entity, structure or transaction. For tailored support, visit ADEPTS’ Legal Counseling in UAE and Dubai.
References
- Abu Dhabi Global Market. “ADGM Publishes 2026 Update to Legal Persons and Arrangements (LPA) Risk Assessment.” ADGM. Accessed May 15, 2026.
- Abu Dhabi Global Market. “Legal Persons & Arrangements Risk Assessment Report.” ADGM Registration Authority. Accessed May 15, 2026.
- Abu Dhabi Global Market. “ML/TF Risk Assessment of ADGM Legal Persons & Arrangements: 2026 Update.” ADGM Registration Authority. Accessed May 15, 2026.
- Abu Dhabi Global Market. “Jurisdiction.” ADGM. Accessed May 15, 2026.
- Abu Dhabi Global Market. “English Common Law.” ADGM Courts. Accessed May 15, 2026.
- Abu Dhabi Global Market. “Beneficial Ownership and Control.” ADGM. Accessed May 15, 2026.
- Abu Dhabi Global Market. “AML/CFT.” ADGM Financial and Cyber Crime Prevention. Accessed May 15, 2026.
- Abu Dhabi Global Market. “AML/CFT Quick Guides for DNFBPs.” ADGM Registration Authority. Accessed May 15, 2026.
- Abu Dhabi Global Market. “Guidance on Regulation of Virtual Asset Activities in ADGM.” Financial Services Regulatory Authority. December 18, 2023. Accessed May 15, 2026.
- Abu Dhabi Global Market. “Beneficial Ownership and Control Regulations 2022.” ADGM Registration Authority. 2022. Accessed May 15, 2026.
- United Arab Emirates. “Federal Decree-Law No. 10 of 2025 Regarding Anti-Money Laundering, Combating the Financing of Terrorism and Proliferation Financing.” UAE Legislation. 2025. Accessed May 15, 2026.
- United Arab Emirates Ministry of Justice. “Anti-Money Laundering and Combatting Terrorism Financing Laws and Legislation.” Ministry of Justice. Accessed May 15, 2026.
- United Arab Emirates Ministry of Foreign Affairs. “United Arab Emirates Unveils National Strategy for Anti-Money Laundering, Countering Financing of Terrorism and Proliferation Financing 2024–2027.” Ministry of Foreign Affairs. September 5, 2024. Accessed May 15, 2026.
- Financial Action Task Force. “Jurisdictions under Increased Monitoring — 23 February 2024.” FATF. February 23, 2024. Accessed May 15, 2026.
- Financial Action Task Force. “Global Assessment Calendar.” FATF. Accessed May 15, 2026.
- Financial Action Task Force. “The FATF Recommendations.” FATF. Accessed May 15, 2026.
- Financial Action Task Force. “Guidance on Beneficial Ownership of Legal Persons.” FATF. March 2023. Accessed May 15, 2026.
- Financial Action Task Force. “Guidance on Beneficial Ownership and Transparency of Legal Arrangements.” FATF. March 2024. Accessed May 15, 2026.
- Emirates News Agency. “ADGM Publishes 2026 Update to Legal Persons and Arrangements Risk Assessment.” WAM. Accessed May 15, 2026.
- Gulf News. “ADGM Updates Money Laundering Risk Checks for Legal Entities.” Gulf News. Accessed May 15, 2026.
- Arabian Business. “ADGM Updates Money Laundering Risk Assessment as Number of Firms Jumps 72% to 12,302.” Arabian Business. Accessed May 15, 2026.
