regulation10.ae
About

The company behind regulation10.ae.

Exec X AI Ltd is a DIFC-incorporated firm (registration 10474) that productises DIFC Regulation 10 readiness for AI deployers. The platform is registered as its own AI system under Reg 10 and is held to the same controls it produces for its tenants.

Company brief

Exec X AI Ltd, DIFC 10474.

Exec X AI Ltd operates at the intersection of AI assurance, offensive security and enterprise transformation. The firm builds and runs the regulation10.ae platform — a productised DIFC Regulation 10 readiness service for DIFC-registered entities, non-DIFC entities with DIFC operations, and global firms under the EU AI Act, NIST AI RMF and OECD AI Principles.

The company is incorporated at Dubai International Financial Centre, Dubai, UAE in the Dubai International Financial Centre. Its authenticated platform sits at app.regulation10.ae in Azure UAE North; this marketing site you are reading sits at the edge in Vercel dxb1 and processes no regulated data.

Exec X AI engages with the DIFC Commissioner of Data Protection's office through the Regulation 10 Accelerator participant pathway. Accredited Certification Body engagement is pursued with Middle East Privacy and Mission+/Brave Governance as scope and timing allow.

DIFC registration
0

Exec X AI Ltd — incorporated in the Dubai International Financial Centre.

ASO of record
0

Khaled Shivji, full-time, confirmed 9 May 2026 decision lock.

Primary data residency
UAE North

All regulated data pinned to Azure UAE North with UAE Central paired.

Leadership

The Appointed Senior Officer.

Regulation 10 names a single human as accountable for the AI systems a firm operates. For Exec X AI Ltd that person is Khaled Shivji.

ASO of record

Khaled Shivji

Appointed Senior Officer (ASO)

Exec X AI Ltd · DIFC 10474

Khaled Shivji is the Appointed Senior Officer (ASO) for regulation10.ae and the founder of Exec X AI Ltd, a DIFC-incorporated firm (registration 10474) operating at the intersection of AI assurance, offensive security and enterprise transformation.

He leads the platform's governance posture across DIFC Regulation 10, DPL 2020, ISO/IEC 42001, ISO/IEC 27001 and the NIST AI Risk Management Framework, with day-to-day responsibility for the DPIA, transparency, audit and oversight controls shipped in the platform.

Prior to founding Exec X AI, Khaled held global leadership roles in AI sales operations, governance and enterprise transformation, and continues to advise DIFC and non-DIFC firms on Reg 10 readiness, ACB engagement and AI risk classification.

Credentials

  • Full-time ASO under DIFC DPL 2020, Regulation 10
  • Founder, Exec X AI Ltd (DIFC 10474)
  • Author, regulation10.ae platform governance framework
  • Lead reviewer, internal red-team and oversight harness

Why a single ASO matters

Reg 10 deliberately collapses AI accountability onto one named officer rather than spreading it across a committee. That makes it auditable. Counterparties can point to one signature on the AI System Register entry, the DPIA and the appointment letter.

It also raises the bar. The ASO is on the hook for the platform's own classification, its DPIA and its audit posture, not only for tenant deliverables. That is why the platform is itself registered as an AI system under Reg 10.

Mission & principles

What we will and will not do.

Four principles guide the platform's engineering, content and commercial decisions. They are not aspirational — they are the tests we apply to every shipped artefact.

Evidence over assertion

Every Reg 10 claim the platform makes is backed by a citation-pinned artefact — a DPIA, a transparency notice, an audit trail line, or an entry in the AI System Register. If we cannot produce evidence, we will not produce a claim.

Sovereign by default

Regulated data sits in UAE North. The platform itself is registered as an AI system under Reg 10 and held to the same controls it produces for its tenants. Cross-border data flows happen only under DIFC SCCs with a Transfer Impact Assessment on file.

Human-in-the-loop, always

Autonomous outputs do not leave the platform without a human gate. The ASO, or a delegated reviewer, signs off on DPIAs, system classifications and any change to a deployed AI system before it is released to tenants or auditors.

Interoperability over lock-in

DPIAs and evidence packs are produced in formats designed for ISO/IEC 42001, the EU AI Act, the NIST AI RMF and the OECD AI Principles — not just Reg 10. Tenants who migrate jurisdictions should not have to redo the work.

Team

A small, accountable bench.

Exec X AI Ltd runs lean by design: the ASO, specialist engineering and a rotating set of independent reviewers for ISO/IEC 42001 and ISO/IEC 27001 readiness. A full team grid will appear here once headcount expands.

Status

Team grid placeholder. The platform's public AI System Register entry will list named reviewers and oversight officers as engagements are confirmed.

Work with the team that built the platform.

Reg 10 readiness, ASO advisory, ACB engagement and ISO/IEC 42001 readiness — all delivered by the same bench that designed the platform.