UAE Employment Law: Is It Legal to Assign Tasks Outside an Employee's Contract?
Answer: Under UAE labour law, employers are not permitted to assign an employee to work that is substantially different from what was agreed upon in the employment contract—unless there is an emergency or a need to prevent or fix a workplace issue, and even then, only temporarily. This is outlined in Article 12 of Federal Decree Law No. 33 of 2021.
The law specifically states that any such temporary reassignment must fall under exceptional circumstances and cannot exceed 90 days in a calendar year. Moreover, Article 13 of Cabinet Resolution No. 1 of 2022 clarifies that a 'fundamental difference' in work refers to tasks completely unrelated to the employee's profession or academic qualifications.
If your employer asks you to take on a role that is fundamentally different—like switching from accounting to HR or admin—without your written consent, it is a legal violation. In such cases, Article 45(4) of the Employment Law grants employees the right to resign immediately without serving notice, while still retaining all end-of-service entitlements.
In addition, Article 14 of the same law protects employees from being forced to work against their will.
To address this, you should first review your employment contract and visa to confirm your designated role. If there's a clear mismatch between your official designation and the tasks assigned, you may present these details to your employer. If the issue persists, you have the right to file a formal complaint with the Ministry of Human Resources and Emiratisation (MoHRE).
Unless you have agreed in writing, your employer cannot legally change your role to something substantially different. You are within your rights to refuse the new tasks and seek support from MoHRE if needed.
News Source: Khaleej Times
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Khaleej Times
14 hours ago
- Khaleej Times
UAE: No more OTPs? Here's how banks will fight scams
One-time passwords or OTPs are now outdated in the face of the dramatic rise in sophisticated banking frauds, a Dubai-based cybersecurity expert told Khaleej Times, following news that UAE banks will gradually stop sending one-time passwords (OTPs) via SMS and email for digital transactions starting July 25. Instead of OTPs, banks will shift to authentication via mobile banking apps, using in-app confirmation features. Cybersecurity expert Rayad Kamal Ayub praised UAE banks and regulators for 'adopting groundbreaking authentication technologies to secure transactions, safeguard customer identities, and provide frictionless user experiences". 'The Central Bank of the UAE has taken decisive steps since 2024, spurred by persistent calls from industry leaders and media like Khaleej Times, to overhaul traditional authentication methods — especially OTPs — which have proven vulnerable to modern hacking techniques,' he added. Rayad, who is also managing director of UAE-based Rayad Group, also shared emerging authentication technologies, and how each type encounters fraud risks and redefines customer trust in the UAE banking sector. 1. Passkeys & FIDO2 authentication 'The era of easily compromised passwords is drawing to a close', noted Rayad. Passkeys, built on the FIDO2 (Fast IDentity Online 2) standards, enable password-less authentication by leveraging cryptographic keys stored directly on a user's device. When combined with biometric sensors — like face ID, touch ID, or Android's equivalent — passkeys offer a seamless, one-touch login experience. Key features: - Passwordless, leveraging asymmetric cryptography for security - Biometric integration (facial recognition, fingerprints) for effortless access - Resistant to phishing attacks, SIM swaps, and credential stuffing that are frequently used by scammers Rayad said UAE banks are piloting passkey-based logins to replace or augment OTPs, drastically reducing the risk of interception or duplication. 'Because of this, customers benefit from smoother, faster access to services, while institutions see a drop in account takeover attempts. 2. Decentralised Identity (DID) Traditional identity systems often rely on central databases, making them lucrative targets for cybercriminals. Decentralised Identity (DID) puts control back in the hands of users through cryptographically verifiable credentials stored on personal devices or digital wallets. Key features: - User-controlled digital identity, minimising reliance on central authorities - Secure onboarding and KYC (Know Your Customer) processes without exposing data to a single point of failure - Backed by global initiatives such as the EU Digital Identity Wallet, which influence regulatory direction in the UAE Rayad noted DID not only enhances privacy but also boosts resistance to large-scale data breaches. Several banks and fintech startups abroad are exploring DID frameworks, enabling customers to share only necessary fragments of their identity for transactions or onboarding. 3. Behavioural biometrics This works unlike traditional biometrics that use fingerprint and facial recognition. Behavioural biometrics authenticate users based on how they interact with their devices — such as typing rhythm, swipe patterns, mouse movements, and device handling. This continuous, invisible layer of authentication operates in the background, constantly monitoring unusual behaviour. Key features: - Continuous authentication — no need for repeated logins - Detects subtle deviations from a user's normal behavior, flagging potential fraud instantly - Non-intrusive, preserving the seamless user experience Some banks are integrating behavioural biometrics into their mobile apps and online banking portals. Technology can detect when an account is being accessed by someone other than the legitimate user, even if the correct credentials are provided, offering an early warning against fraud, explained Rayad. 4. Post-quantum cryptography (PQC) Rapid advances in quantum computing threaten to render existing cryptographic algorithms obsolete. PQC proactively arms banks against this looming risk by employing new algorithms designed to withstand quantum attacks. Key features: - Uses quantum-resistant algorithms for data protection and authentication - Recommended by leading authorities such as NIST (National Institute of Standards and Technology) - Ensures future proofing of banking systems as quantum capabilities mature Forward-thinking UAE banks are beginning to test PQC solutions, especially for securing high-value transactions, internal communications, and sensitive customer data. Early adoption ensures readiness for the quantum era and demonstrates industry leadership in digital security. 5. Hardware authenticators There are physical security keys, such as YubiKeys, that provide an extra layer of defence by requiring users to possess a tangible device for authentication. Unlike SMS codes or app-based OTPs, hardware authenticators are immune to malware, phishing, and remote access threats. Key features: - Possession-based multi-factor authentication (MFA) - No reliance on mobile networks or internet connectivity for validation - Highly secure against malware-infected devices, phishing, and unauthorised remote access Rayad said wealthy individuals and corporate clients are adopting hardware authenticators to safeguard access to sensitive accounts. Some banks now offer security key support for executive and VIP accounts, acknowledging the growing sophistication of targeted attacks. 6. AI-powered deepfake detection As facial and voice authentication gain popularity, so do threats from deepfakes—artificially generated images, videos, or audio designed to impersonate legitimate users. AI-driven deepfake detection tools analyse nuanced characteristics, such as liveness, temperature, and micro-expressions, to distinguish between real and forged identities. Key features: - Liveness detection using AI to confirm presence of a real human - Infrared scanning and micro-expression analysis for enhanced accuracy - Protection against spoofing attacks targeting facial and voice biometrics banks are already implementing liveness tests and deepfake detection on their mobile apps and at ATMs. These measures ensure that innovative authentication methods remain robust against emerging threats and reassure customers about the safety of biometric logins. 7. Cloud-based identity platforms Managing authentication infrastructure in-house is costly and complex. Cloud-based identity platforms—often delivered as Identity-as-a-Service (IDaaS)—allow banks to deploy advanced authentication solutions that scale with demand while staying compliant with evolving regulations. Key features: - Centralised identity management for all digital channels - Scalable and cost-effective compared to traditional on-premises solutions Rayad observed some UAE banks are migrating to cloud identity platforms to streamline onboarding, authentication, and authorisation across mobile, web, and branch channels. This not only enhances security but also delivers a unified, frictionless customer experience. More secure digital banking future Rayad reiterated as fraudsters evolve, so must the technology that protects the financial ecosystem. By moving beyond vulnerable legacy systems like OTPs and embracing tools such as passkeys, decentralised identities, behavioural biometrics, post-quantum cryptography, hardware authenticators, AI-powered deepfake detection, and cloud-based identity platforms, UAE banks are building resilient defenses against fraud while unlocking seamless, user-friendly digital experiences. 'The UAE's commitment to innovation not only safeguards customers but also strengthens the country's reputation as a global leader in digital finance. The rapid pace of adoption today points toward a future where security, convenience, and privacy coexist — delivering banking experiences that are as secure as they are effortless,' he concluded.
Gulf Today
2 days ago
- Gulf Today
UAE announces closure of 77 social media accounts for violations
The Ministry of Human Resources and Emiratisation (MoHRE), in collaboration with the Telecommunications and Digital Government Regulatory Authority (TDRA), announced the closure of 77 social media accounts for violations during the first half of this year. This action was taken after MoHRE investigated these accounts, which were found to be unofficial and operating without a licence from the Ministry to carry out domestic worker recruitment activities, constituting a clear legal violation. MoHRE urges employers as well as both Emirati and resident families to only engage with licensed and approved domestic worker recruitment agencies when looking to hire this category of workers, and avoid dealing with social media accounts and pages that promote the recruitment of illegal domestic workers. Picture used for illustrative purpose only. File / WAM In a press statement, the Ministry clarified that dealing with unlicensed domestic worker recruitment agencies and unreliable social media pages promoting domestic worker services could lead to customers losing their legal rights, which are guaranteed when they exclusively deal with Ministry-licensed and approved agencies. The Ministry encourages customers to contact their call centre at 600590000 to verify the reliability of any entities promoting domestic workers through social media. A list of licensed agencies across the UAE, including their names and locations, is available on the Ministry's website: .
Filipino Times
2 days ago
- Filipino Times
UAE shuts down 77 social media accounts for illegal domestic worker recruitment
The UAE government has shut down 77 social media accounts that were illegally offering domestic worker recruitment services. During an investigation, the Ministry of Human Resources and Emiratisation (MoHRE) found that these pages were not approved or licensed to recruit housemaids or other domestic workers. The move was carried out in cooperation with the Telecommunications and Digital Government Regulatory Authority during the first half of this year. 'We urge employers and both Emirati and resident families to deal only with approved and licensed domestic worker recruitment offices accredited by the Ministry,' MoHRE said in a statement. The Ministry also warned the public against dealing with unlicensed recruiters online, as this may lead to legal risks. 'Avoid interacting with social media pages and accounts that promote unlicensed domestic worker recruitment, in order to protect your legal rights, which are ensured when dealing exclusively with offices licensed by the Ministry,' MoHRE added. MoHRE then encouraged the public to check the official list of approved recruitment offices in the UAE, available at
