The Colombian Tax Office (“DIAN”) and the Superintendence of Companies have entered into an inter-administrative agreement for the exchange of information related to the Ultimate Beneficial Owner Registry, to strengthen the inspection and control functions of these entities and their investigative powers.

Esparza v. Kohl’s, Inc., confirms that sharing electronic data with third-party applications or service providers without the website visitor’s consent creates a risk of lawsuits and potential liability for website defendants in states that require all parties to consent to interception of communications.

A recent decision of the Hong Kong Court reaffirmed the robust approach taken by the Court in examining the enforceability of a noncompete clause in an employment context. The Court reiterates that it will not redraft a noncompete clause for the parties, nor would it imply a term in order to save a covenant restraining an employee’s post-termination conduct.

On 26 April 2024, the Brazilian Data Protection Authority (ANPD) published the Resolution CD/ANPD no. 15 which approved the Regulation on Notification of Security Incident (“Regulation”). Such Regulation sets forth the mandatory procedures that data controllers must follow when notifying security incidents to ANPD and personal data subjects.
According to Law No. 13,709/18 (Brazilian General Data Protection Law, or LGPD), the controller must notify the occurrence of a security incident that may give rise to relevant risk or damage to data subjects not only to ANPD, but also to the data subjects.