Tourist e-Wallet and Digital Dirham: Great Potential but Significant Challenges
To meet the operational demands of the digital economy and enhance the efficiency of payment systems, the Central Bank of the UAE (CBUAE) has introduced the national digital currency, the Digital Dirham. Recently, the CBUAE discussed four potential use cases for the Digital Dirham, with the development of an electronic wallet for tourists being a particularly prominent topic. The CBUAE recently released the Digital Dirham Primer, a policy report outlining the design principles, policy framework, and initial development steps for the Digital Dirham. In addition to highlighting benefits, challenges, and implementation processes, the report details four use cases for the digital currency, including: Among these, the concept of an electronic travel wallet for tourists has garnered significant attention, given that the UAE attracts millions of international visitors annually, who collectively spend vast amounts on accommodation, shopping, dining, and entertainment. Theoretically, even if just 10% of tourism spending shifts to the Digital Dirham wallet, it could create a substantial economic impact and promote the adoption of the digital national currency. However, launching a tourist e-wallet is not as simple as introducing it to the market and expecting adoption. Most tourists in the UAE rely on Apple Pay, Google Pay, international credit/debit cards, or digital wallets from their home countries, such as UPI (India) or Alipay and WeChat Pay (China). For tourists to adopt a new payment method like the Digital Dirham, it must offer superior value and address inconveniences that existing infrastructure fails to resolve. Key considerations include: The electronic travel wallet scenario is a complex challenge involving multiple factors, including user experience, cost, widespread payment acceptance across various locations, and integration with diverse payment methods. If these elements are effectively addressed, capturing 10% of the tourism spending market share is entirely feasible. Banks and wallet developers must carefully strategize to turn this potential into tangible success.
UAE’s Payment Authentication Revolution: The End of SMS OTP
On July 25, 2025, the Central Bank of the UAE (CBUAE) issued a landmark directive mandating all UAE banks to phase out SMS and email OTPs by March 2026. This pivotal move signals a major overhaul of the payment infrastructure, aiming to standardize in-app biometric authentication across the entire banking ecosystem. For years, SMS and email OTPs have been the go-to method for authenticating financial transactions. However, this approach has increasingly revealed vulnerabilities, including OTP leaks and delays due to inconsistent telecommunications infrastructure. Globally, fraud related to SMS OTPs caused a staggering $6.7 billion in losses in 2021. In the UAE alone, scams surged by 43% year-on-year, impacting over 40,000 individuals in 2023, making SMS OTPs an easy target for cybercriminals. To mitigate risks and enhance the user experience in payments and transactions, the CBUAE has directed the banking sector to adopt safer and more advanced authentication mechanisms integrated into mobile banking applications. The directive mandates all UAE banks to: This means that within the first eight months of implementation, financial institutions must develop a transition roadmap, test, and roll out new authentication systems to fully replace traditional OTPs. Users will no longer receive OTPs via SMS or email; instead, they will approve transactions directly within banking apps using fingerprints, facial recognition, or push notifications. This shift reduces transaction latency, enhances user experience, and strengthens security. Currently, banks like Emirates NBD and ADIB have already adopted biometric login and soft tokens, while many others still rely on traditional OTPs and must urgently upgrade before the deadline. This bold move by the UAE is expected to ripple across the GCC, particularly Saudi Arabia, within the next 12 months. A unified standard for secure payment authentication across the MENA region is likely to emerge, fundamentally transforming the current payment infrastructure. Savyint – Pioneering Strong Authentication Solutions for MENA Payments Amid increasingly stringent payment security and user authentication requirements, particularly with the CBUAE’s new regulations, SAVYINT – a global technology leader in open banking, data security, and authentication solutions – is poised to partner with financial institutions and payment service providers across the MENA region. SAVYINT delivers a comprehensive ecosystem of advanced strong authentication solutions, fully compliant with international standards and leveraging cutting-edge passwordless technologies to elevate user experience: SAVYINT offers a robust suite of authentication solutions for payments and transactions: By combining robust authentication technologies with strict adherence to international security standards such as FIDO2, PSD2, eIDAS, GDPR, and PCI DSS, Savyint’s solutions enable banks, fintechs, and service providers in MENA to rapidly deploy modern, flexible authentication platforms that integrate seamlessly with existing systems and fully comply with CBUAE regulations. Connect with Savyint’s experts today to build a secure and compliant payment ecosystem.