The Telecommunications Regulatory Authority (TRA) issued a statement on Monday to clarify the right of companies and businesses in the UAE that use VPNs — Virtual Private Networks — during the course of their normal activities. For the uninitiated, a VPN is a service that allows the user to temporarily use an alternative IP — ‘internet protocol’ — address to access secure or other sites. Every computer has an IP address, and using a VPN offers another IP address other than those based in the UAE.
The TRA has clarified that companies can use VPNs as long as they are not used for any activity that’s illegal and contravenes the UAE cyber law of 2012. Such activities would fall into such categories as engaging in financial crime, attempting to defraud, stealing personal data, impersonation, or accessing immoral or pornographic material. It also covers using a VPN for activities that help finance or support terrorism, allow for its spread, and that would undermine the values and principles of the UAE, its government and its structures.
These restrictions are not unreasonable, and are generally aligned with the principles of cyber laws enacted by governments the world over. By clearly outlining the boundaries, everyone can act in a manner that prevents illegal or subversive activities.
The TRA statement provides clarity for businesses. Naturally, though, it has led to individuals asking about their own use of VPNs on personal computers, tablets and smartphones. Again, the law is clear. There is nothing illegal in using a VPN. What is illegal is using that VPN to access materials that contravene the UAE cyber law — the same restrictions that apply to businesses.
