What is AI regulation in Tajikistan?
AI regulation: countries and regions
AI in Tajikistan is managed mainly through broad digital and data laws, with no stand-alone AI law yet. The country launched a National AI Strategy in 2022 (covering up to 2040) to guide AI development. In practice, AI tools must comply with the 2018 Personal Data Protection law and other ICT/sector rules. An agency under the President coordinates AI policy, and Tajikistan engages in international frameworks like UNESCO's AI ethics standards. It also helped drive a UN resolution on AI for Central Asia in 2025.
Reviewed by Jackie, Head of Learning & Development, Levellers · Last reviewed 8 June 2026
What this means
AI regulation is about planning, safety, and data use. Tajikistan uses its strategy and existing laws as the rulebook for AI, since no dedicated AI law is in force. The Agency of Innovation and Digital Technologies (under the President's office) leads policy and is setting up an AI Council. Meanwhile, the 2018 law on personal data governs privacy of AI training data. Tajikistan has committed to UNESCO's AI ethics guidelines as a member and supports regional cooperation through bodies like the SCO.
Why it matters
For businesses and agencies, it means they should follow Tajikistan's data protection and digital regulations when deploying AI. The national strategy is attracting tech investment (e.g. in fintech and e-government), so organisations must align with its goals. Even without strict AI laws, companies should apply risk-based practices (as encouraged globally) because Tajikistan looks to international standards like UNESCO's ethics recommendation and participates in UN-led AI initiatives. This approach affects how AI is developed, approved for use, and monitored in Tajikistan.
How it works
AI strategy and policy
Tajikistan issued its first AI Strategy (through 2040) in 2022, outlining goals and sectors for AI use. The strategy is "the first document of its kind in Central Asia". It promotes AI in government services, healthcare, agriculture, environment and security. The Agency for Innovation and Digital Technologies (under the President) announced the strategy at a Shanghai Cooperation Organization (SCO) meeting. The strategy envisions forming an AI Council and special teams within ministries to coordinate AI deployment. It also calls for drafting an "AI law" and rules, and aligning national standards with global ones, though these are still in development.
Legal framework and regulation
Currently no specific AI law is in force in Tajikistan. The strategy itself lists drafting a Law "On Artificial Intelligence" and amending other laws as future steps. For now, AI systems fall under general laws: e-commerce, cybersecurity, telecoms, and other sector regulations. For example, an AI lending tool must comply with the Law on Electronic Commerce or Banking regulations. The government has not established prohibitions on specific AI types; instead, officials are discussing a coordinated legal framework at the SCO level. Tajikistan has also urged SCO states to share best practices and harmonise AI oversight frameworks.
Data protection and privacy
Tajikistan's Personal Data Protection Law (2018) is the main law affecting AI that handles personal data. AI systems using Tajik citizens' data must follow this law (e.g. obtaining consent for data use). Other laws, like a 2003 "Information Law" and laws on electronic documents, also apply to digital data. In practice, an AI developer must ensure any personal data is stored and processed as Tajik law requires. There are no unique AI-specific privacy rules yet. Tajikistan is also attentive to "digital sovereignty" and local data storage in line with global trends.
Institutional governance
The Agency of Innovation and Digital Technologies (under the President) is the main body for AI and digital policy. It leads strategy implementation and innovation projects. A new AI Council (AIC) was formed under the Ministry of Industry to support the strategy. The strategy anticipates official creation of an inter-government AI council to oversee programs. Other ministries (Education, Health, Defense, etc.) will set up AI units. Enforcement is indirect: existing regulators (e.g. data protection authority if any) and ICT inspectors enforce related laws. Overall, governance is still emerging and evolving along with the strategy.
International and regional alignment
Tajikistan aligns with global AI ethics and participates in regional AI initiatives. As a UNESCO member state, it is bound by the 2021 UNESCO AI Ethics Recommendation. The government has expressed support for UNESCO's principles (though there is no Tajik law implementing them yet). Internationally, Tajikistan led a UN General Assembly resolution in 2025 on AI for sustainable development in Central Asia. This resolution advocates cooperation on AI standards, and calls for a regional AI center in Dushanbe. In the Shanghai Cooperation Organization (SCO), Tajikistan proposed a shared registry of AI best practices and common rules. There are no CIS-wide AI rules specific to Tajikistan yet, but Tajikistan is also bound by general CIS norms and Eurasian Economic Union tech policies as applicable.
How Tajikistan's approach connects to broad concepts: It is a horizontal model (across sectors) and still largely soft-law/strategy-based, rather than forbidding or mandating specific AI uses. The emphasis is on education, infrastructure, and aligning with international principles (like UNESCO's ethics rec and upcoming global standards) as stepping stones for future regulation.
Examples
- Fintech lending using AI: A Tajik bank offers microloans using an AI credit scoring system. In practice, the bank collects personal customer data (with consent under the 2018 Personal Data Law) to feed the AI model. The AI tool was developed in line with the national AI strategy's call for domestic innovation. Although there is no specific "AI approval" needed, the bank ensures compliance with existing banking and data laws. Tajik regulators currently review such projects under general financial regulations; the AI strategy suggests this could be formalized later through guidelines or an AI law.
- Government service automation: A government ministry wants to deploy an AI system to triage citizen requests (e.g. through chatbots). The ministry consults the Agency of Innovation and Digital Technologies for guidance. There is no established AI certification process, but the agency encourages adherence to data protection, transparency and UNESCO-style ethics principles. The system must keep citizens' data on national servers (aligning with Tajikistan's digital sovereignty focus). The ministry may coordinate with other agencies (e.g. communications regulator for network security) since the strategy envisions cross-ministerial AI coordination.
- Regional research collaboration: A Tajik university AI lab partners with neighbors on a Central Asia AI research project, supported by the Dushanbe regional AI center (as outlined in the 2025 UN resolution). They share non-sensitive data and best practices via SCO channels. Tajikistan has proposed a shared AI best-practice registry and coordinated rules with SCO peers. Although there's no binding regional law, this collaboration reflects Tajikistan's emphasis on a cooperative AI framework for Central Asia. The project follows UNESCO's global AI ethics guidelines by design, echoing Tajikistan's commitment to those standards.
Common misunderstandings
- "Tajikistan bans or strictly regulates AI already." Not true. There's currently no specific AI law banning or licensing AI systems. The country has an AI strategy but not hard restrictions. Regulatory action would come through general laws (e.g. privacy or telecoms) until a dedicated law is passed.
- "Only data protection law matters for AI." Data protection is important, but it's not the whole picture. Other laws (cybersecurity, e-commerce, telecom) also apply to AI projects. For example, an AI healthcare tool must meet medical device rules too. The 2018 Data Law does regulate personal data, but AI systems often involve many legal areas.
- "Tajikistan has a complete AI regulatory framework." No - there's still only a strategy and planning steps. The strategy calls for creating an AI law and standardizing rules, but those are not enacted. So currently, AI governance is a work in progress, guided by strategy and international norms.
- "International guidelines (like UNESCO's) are optional." Tajikistan publicly endorses international AI ethics (UNESCO's recommendation) and participates in UN resolutions. While not laws, these shape the country's approach. Companies should treat global AI principles as aligning expectations, especially since Tajikistan highlights them.
- "Tajikistan enforces EU-style AI bans." Tajikistan has not imposed EU-style bans on "high-risk AI." The focus is on enabling AI growth responsibly, rather than pre-emptive bans. Regulatory ideas are being discussed (e.g. harmonized frameworks via SCO), but no such rules are in force.
Risks and boundaries
Tajikistan's AI regulation is not mature yet. There are few enforceable AI-specific rules, so much is left to general law and policy guidance. Users should note that government oversight is growing - e.g. the President's Council on Science may start reviewing AI projects. Until a formal AI law appears, the main legal boundaries are existing privacy and IT regulations. Also, because international alignment matters, Tajik entities working with foreign partners should expect scrutiny on data transfers and security (per "digital sovereignty" trends). Finally, any future AI law could be retroactive; stakeholders should watch developments (draft laws or regulations) closely.
What to do next
- Follow the strategy. Align AI initiatives with the national strategy's goals (education, health, etc.). This will position projects to receive support or approval from authorities.
- Ensure data law compliance. Before deploying AI, check compliance with the 2018 Personal Data Protection law (consent for data use, secure storage, etc.). This is the clearest legal requirement now.
- Engage with regulators. Connect with the Agency of Innovation and Digital Technologies (now the de facto AI regulator) to discuss projects. They can advise on standards and future regulations.
- Build ethics into AI. Even without mandatory rules, follow UNESCO's AI ethics and any guidance from the AI Council. This aligns with Tajikistan's stated values and international commitments.
- Monitor upcoming legislation. Keep an eye on announcements about a draft "Law on Artificial Intelligence" or amendments to existing laws (as flagged in the strategy). Be prepared to adjust to formal AI regulations once enacted.
Have a question or a suggestion, or want to understand how we research and review these guides? Read about our editorial standards and how to reach us.
FAQs
Does Tajikistan have a law specifically governing AI systems?
Not yet. As of 2026, Tajikistan has no stand-alone AI regulation. Instead, it relies on its national AI strategy (approved in 2022) and applies existing laws (like data protection and ICT laws) to AI use.
What governs AI data privacy in Tajikistan?
AI systems must follow the Personal Data Protection Law (2018). This requires consent for personal data use and mandates data security. Any AI processing Tajik people's personal data is subject to this law's requirements.
Which government body is in charge of AI?
The main agency is the Agency of Innovation and Digital Technologies under the President, which drives the AI Strategy. There is also an AI Council under the Ministry of Industry and New Technologies. These bodies coordinate AI policy and planning.
How does Tajikistan address AI ethics and safety?
Tajikistan endorses UNESCO's Recommendation on the Ethics of AI (2021), aligning with its principles on human rights, transparency and fairness. It also cooperates on regional standards (e.g. via the UN Central Asia resolution). However, there is currently no domestic AI ethics law; organizations are expected to self-regulate along these lines.
Are there any restrictions on importing or exporting AI technology?
There are no known special AI import/export controls in Tajikistan. General trade laws and any sanctions apply. The strategy encourages international cooperation (including data centers connectivity with SCO partners), so the focus is on collaboration rather than bans.
What if my AI project uses international (e.g. EU/Chinese) technology?
You must ensure compliance with Tajik laws on data and IT security. Also, Tajik authorities are aware of global developments. For example, they have discussed "digital sovereignty" measures. It's wise to keep data localized and meet Tajik licensing norms for telecom or computing.
Does the AI Strategy change current legal requirements?
The strategy itself is not a law; it sets goals. Until new laws are passed, existing requirements (data protection, e-commerce, etc.) continue to apply. The strategy signals future changes, so use it as a guide, but don't assume new rules until formally enacted.
How should companies prepare for future AI laws in Tajikistan?
Engage now with regulators and industry groups (like the AI Council), adopt international best practices (risk-based checks, data ethics), and build flexibility into products. Watch for legislative drafts mentioned in the AI Strategy, and update policies as needed when new AI regulations appear.