Author: Content

Through Decree No. 5,154/2025 (the "Decree"), the Executive Branch established an exceptional and temporary regime for the regularization of certain tax debts, with the aim of facilitating compliance with past-due tax obligations and reducing the financial impact of accumulated surcharges and interest.

This special regime will remain in effect until August 31, 2026, and provides for the application of a monthly interest rate or surcharge of 0% and the possibility of requesting payment plans for overdue tax obligations corresponding to:

1. Monthly tax periods closed through December 2023, and
2. Annual obligations corresponding to fiscal years closed on December 31, 2023.

The special regime applies to: (i) final, liquid, and enforceable tax debt certificates; and (ii) tax adjustments and penalties (pending or finalized) provided that there is express agreement or acquiescence by the taxpayer.

Debts arising from the filing or amendment of tax returns, as well as advance payments of corporate income tax (IRE), are excluded from the regime.

Development

The benefits established in the Decree apply to the following tax debts:

1. Final, liquid, and enforceable debt certificates, even when they are being collected by the Treasury Attorney's Office.
2. Tax adjustments and penalties that are pending, arising from tax assessments, audit processes, administrative proceedings, or appeals for reconsideration, whether in administrative or judicial proceedings, provided that the taxpayer expressly agrees or acquiesces to the total amount owed.
3. Adjustments arising from completed audit processes or administrative proceedings, under the same conditions of express agreement or acquiescence.

The regime does not apply to IRE advance payments or debts arising from payment facilities that have lapsed due to non-compliance. Likewise, debts arising from the filing or rectification of tax returns are excluded.

To qualify for the regime, taxpayers must submit the note authorized by the National Tax Revenue Directorate ("DNIT"), available on its websitehttps://www.dnit.gov.py/web/portal-institucional/pagos), which must be submitted exclusively through the institutional reception desk of the DNIT or the Ministry of Economy and Finance ("MEF"), as applicable. For all purposes, the date recorded in the respective administrative file shall be considered the valid date. Debts that do not qualify for the regime will continue to be subject to the interest and surcharges provided for in the general regime.

The Decree empowers the DNIT to grant exceptional payment plans, with a minimum payment equivalent to 10% of the debt and a financing rate of 0%, according to the following scale:

• Up to 24 monthly installments, when the debt does not exceed G. 500,000,000.
• Up to 36 monthly installments, when the debt exceeds that amount.
• Exceptionally, more than 36 installments, when the debt exceeds G. 1,000,000,000, with the express authorization of the National Director of Tax Revenue.

Failure to comply with the agreed installments will result in the loss of the benefits of the regime and the application of the interest and surcharges provided for in the general regime.

Additionally, a 50% discount on the penalty for fraud is provided for in cases of prompt payment, provided that the resulting amount is not less than the minimum legal penalty. In ongoing proceedings, the taxpayer's express agreement or acquiescence will allow for the direct application of the minimum penalty provided for such an offense. In cases being processed in court, adherence to the regime must be approved and communicated to the court or tribunal involved.

   .

Through Resolution SV. SG. No. 022/2025 dated December 11, 2025 (the "Resolution"), the Superintendency of Securities ("SIV") of the Central Bank of Paraguay approved the Regulations of the Central Securities Market and Products Information Center (“Central Information System”) and provided for the creation of a single and standardized scheme for the submission of regulatory information by supervised entities.

The Central Information System is a unique and mandatory standard for the submission of regulatory information. Its technical structure is detailed in the Annex to the Resolution and defines the formats, validations and quality rules that must be met by the reports submitted to the SIV.

The new regime is mandatory for the following: (i) brokerage firms; (ii) investment fund management companies; (iii) stock exchange; (iv) central securities depositories; and (v) other entities or market agents that the SIV determines.

Likewise, the Resolution introduces the principle of the reporting entity, prioritizing that the information is sent directly by the entity that originates the data, in accordance with its role within the securities market.

The SIV has provided for a pilot testing phase and technical validations, under the conditions and with the entities to be determined subsequently by Circular. During this period, the selected entities will be required to submit test information, report incidents, and participate in technical follow-up sessions, while, in parallel, the submission of information under the currently applicable reporting schemes will be maintained.

The obligation to submit information exclusively through the Central Information System will become effective as of the date of final production launch to be established by the SIV.

Through Circular UIF-SEPRELAD/SE No. 02/2025 dated November 14, 2025 (the "Circular"), the Secretariat for the Prevention of Money or Property Laundering ("SEPRELAD") reminds the obligated entities of the continued validity of reporting obligations and the applicable deadlines for their compliance through the Integrated Operations Reporting System ("SIRO").

The Circular does not introduce new obligations; rather, it consolidates the required reports, their respective deadlines, and the administrative procedures associated with SIRO. It is addressed to obligated entities in general and, in particular, to sectors such as: remittance companies, real estate companies, non-profit organizations (NPOs), importers and dealers of motor vehicles, dealers in jewelry and precious metals, virtual asset service providers (VASPs), pawnshops, lawyers, accountants, cash-in-transit companies, custodial services and safe-deposit box rental services, among others.

The Circular details the reports that must be submitted through the SIRO:

Obligation	Expiration
Annual Form	May 31
Objective Operations Report	Remittance companies: Monthly, from 20 to 30 Other obligated entities: Quarterly, from 11 to 20
Negative Report	Quarterly
Internal Audit Report	March 30
External Audit Report	June 30
Compliance Officer's Report	As triggered in accordance with each applicable sectoral regulation
Suspicious Transaction Report	In accordance with the applicable sectoral regulation

Likewise, the Circular recalls the administrative procedures that must be carried out before SEPRELAD through the SIRO, and that are subject to the payment of tariffs. Among them:

Procedure in SIRO environment	General
Registration of an obligated entity in the registry of non-naturally supervised obligated entities before SEPRELAD	Resolution No. 07/2018 – Collection of Fees Resolution No. 235/2020 – Extension of Resolution No. 07/2018
User of SIRO	Resolution No. 48/2025 – Annual fee for obligated entities, by the ROS_WEB application, for the fiscal year 2025
Registration in the Registry of Specialized AML/CFT/CPF Auditors	Resolution No. 29/2023 – Five minimum wages established for various activities not specified in the Republic of Paraguay

Finally, the Circular clarifies that external management or advisory services are authorized for the purpose of processing compliance with the obligations applicable to obligated entities, specifically in matters related to AML/CFT/CPF prevention and control measures. Such assistance may include the preparation and updating of prevention manuals, codes of ethics, self-assessments and risk matrices, internal and external audit reports, verification mechanisms and watchlist screening and monitoring, as well as the preparation and submission of the reports required by SEPRELAD.

Through Resolution No. 25 Minute No. 58 dated December 18, 2025, the Board of Directors of the Central Bank of Paraguay ("BCP") approved the Regulations for the Definition of Roles, Registration and Information Transparency and Information Security for Payment Service Providers ("PSPs") of the National Payment System (the "Regulation").

The Regulation defines the roles that PSPs may perform, based on the payment services they provide and the responsibilities they assume towards users, merchants, other system participants and the BCP.

The roles defined include, among others, acquirer, issuer, payment gateway, payment processor, digital wallet provider, and sub-acquirer. The Regulation expressly admits that the same PSP can perform multiple roles, clarifying that this does not exempt it from the individual compliance of the obligations associated with each function.

The Regulation establishes the mandatory registration of PSPs in a registry administered by the BCP. The General Management will will determine, through supplementary regulations, the deadlines, forms and requirements for registration, and the BCP will be empowered to request additional information to verify compliance with the associated obligations.

PSPs that maintain a direct contractual relationship with users and/or businesses must comply with the following obligations of information transparency: (i) clear and accessible publication of commissions, rates and other applicable economic conditions; (ii) prior notice of contractual modifications thirty (30) calendar days in advance; (iii) the use of contracts drafted in clear and accessible language; and, (iv) the implementation of effective, free and documented mechanisms for attention and resolution of complaints.

In addition, PSPs must make available to merchants and/or users, on an ongoing basis, detailed and exportable reports on the status of transactions, the costs applied to each transaction, net amounts credited, and settlement timeframes. 

The Regulation introduces the obligation to segregate funds for those PSPs that manage or custody funds of users or businesses, particularly issuers and sub-acquirers, by maintaining differentiated accounts that protect such funds against creditor claims. Acquirers, processors and payment networks that do not hold funds are exempt from this obligation, although they must guarantee the traceability, security and correct reconciliation of the transactions processed.

Another component of the Regulation is the establishment of minimum standards in terms of information security, based on a risk approach and proportionate to the scale and complexity of each PSP.

Among other aspects, PSPs must implement an Information Security Management System (ISMS) that includes formal security policies, access controls, data encryption, vulnerability management, business continuity plans, and incident notification procedures to the BCP. Compliance must be evidenced through external audits based on internationally recognized standards, such as ISO/IEC 27001.

Through Resolution No. 24 Act No. 57 dated December 11, 2025, the Board of Directors of the Central Bank of Paraguay ("BCP") approved the Regulation on Interoperability and Interconnection in the Credit and/or Debit Card System (the "Regulation"), establishing a mandatory regulatory framework aimed at guaranteeing non-discriminatory conditions of access, security, efficiency and competition in the card payment ecosystem.

The Regulation was issued within the framework of the powers conferred upon the BCP by Law 7503/2025 "National Payment System" and responds to the need to correct structural and contractual limitations that have hindered the development of a fully interoperable environment in the card payment market.

The Regulation is mandatory for all Payment Service Providers (PSP) that are directly or indirectly involved in the processing of credit and/or debit card transactions. This includes, but is not limited to, issuers, acquirers, subcontractors, processors, and other actors that intermediate in the processing of card payment transactions.

One of the key pillars of the Regulation is the obligation of the relevant entities to: (i) submit to the BCP, within six (6) months following the entry into force of the Regulation, the agreements and implementation plans for interoperability, and (ii) accompany said agreements and plans with a technical, operational and cybersecurity schedule that allows interoperability and interconnection to be achieved within a maximum period of thirty-six (36) months.

In the event of non-compliance, the BCP is empowered to unilaterally define the applicable technical, operational and security requirements.

Additionally, it is established that all payment terminals must allow the processing of credit and/or debit card operations of any national issuer, regardless of the initiation method used.

The Regulation introduces specific obligations in terms of transparency of promotions and benefits, interoperability of promotions, confidentiality of the commercial and strategic information of the participants. In addition, interoperability contracts may not contain clauses that are exclusionary, discriminatory or that condition access to the system.

The contracts signed between the parties must be available to the BCP and any breach thereof must be promptly reported both to the counterparty and to the Sub-General Management of Financial Operations (“SGGOF”).

The SGGOF may require reports of incidents that have occurred, detailing the affected systems or services, their impact and any other information it deems relevant.

Likewise, should the BCP identify indications of, or receive complaints regarding, conduct or practices that may constitute violations of competition law, it will forward the relevant information to the National Competition Commission (CONACOM). 

On 18 November 2025, the Chamber of Deputies approved the Senate’s version of the bill titled “Law for the Modernization of the Regime that Regulates and Promotes Electricity Generation from Non-Conventional Renewable Energy Sources” (“Bill”).

With this approval, the Bill is now fully passed and moves to the Executive Branch for promulgation.

Once promulgated, the Bill will repeal Law 6977/2023, currently in force, introducing significant changes to the existing legal framework. Among the most relevant modifications, we highlight:

• New ERNC methodology: the ERNC Reference Tariff will be calculated by ANDE based on background information, relevant data and available information, replacing the current average generation cost criterion.
• Large consumer: this category is introduced (demand ≥ 30 MW), enabling for the first time direct energy sales between private parties.
• Removal of distinctions: the differentiation between interruptible and non-interruptible generation sources is eliminated.
• Longer terms: licenses and contracts will extend from 15 to 30 years, improving predictability and bankability.
• New trust fund: an administration and payment trust will be created to manage the resources allocated to Generators.
• Tax benefits: licensees will be able to access the incentives under Law 523/1995 on Free Trade Zones, a benefit not available under Law 6977.

For a broader analysis of Paraguay’s energy regulatory framework, you may consult our specialized article.

Through Resolution SS.SG. No. 231 dated October 29, 2025 (the “Resolution”), the Superintendency of Insurance updated the regulatory framework applicable to the issuance of insurance policies and other insurance coverage instruments in electronic format, abolishing Resolution SS.SG. No. 136/2018.

This measure forms part of the ongoing digital transformation process within the insurance sector and the implementation of Law No. 6822/2021, which regulates trust services for electronic transactions and recognizes the legal validity of the qualified electronic signature, equating it to a handwritten signature.

As of the Resolution’s effective date, no new policies may be issued using facsimile signatures, which will be replaced by secure digital mechanisms. In other words, electronic policies must be signed using a qualified electronic signature by the authorized representatives of the insurance company. 

The Resolution sets forth the minimum conditions that insurance companies must comply with to issue policies in electronic format. Insurers that have not yet been authorized to do so must notify the Superintendency at least 10 business days in advance of their decision to issue electronic policies, submitting the list of authorized signatories, the qualified electronic signature certificates, and the report issued by the information technology department.

Policyholders must indicate in the insurance proposal the electronic means through which they wish to receive the policy. Should a printed copy be requested, it must include a secure verification code allowing for the authentication of the digital document.

Insurers must implement systems that enable the verification of the existence and validity of electronic policies, such as QR codes, tools for validating qualified electronic signature certificates, or accessible online consultation platforms.

The Resolution further requires insurers to maintain adequate technological infrastructure, cybersecurity measures, data backup and recovery procedures, and to conduct periodic assessments of technological risks.

Through Resolution SS.SG. No. 210 dated September 25, 2025 (the “Resolution”), the Superintendency of Insurance (“SIS”) established the minimum conditions for the marketing of insurance through electronic means and non-face-to-face channels.

Insurance products may now be marketed through mobile applications, websites, social media, messaging platforms, or telephone calls, whether made from fixed or mobile lines.

Insurance proposals and pre-contractual documents must be signed by the applicant using a qualified electronic signature or, alternatively, a simple electronic signature, if it is supported by an appropriate authentication mechanism.

Before executing the contract, the policyholder must receive clear information regarding the rights, obligations, and terms of the insurance, and must express consent freely, expressly, and unequivocally. Likewise, insurers must ensure that consumers have access to accurate and comprehensive information on coverages, exclusions, costs, claims procedures, and contact details of the intermediary or insurance company.

It is worth noting that insurers are required to retain electronic records, including metadata, IP addresses, and validation codes, which demonstrate the traceability and validity of the policyholder’s consent. These records must be kept for at least 2 years following the expiration of the policy.

Finally, insurers must implement internal control systems, technological risk management frameworks, contingency plans, and incident-response protocols to address security breaches or data leaks.

Through Resolution No. 460 dated September 22, 2025 (the "Resolution"), effective upon issuance, the Secretariat for the Prevention of Money Laundering or Asset Forfeiture (“Secretaría de Prevención de Lavado de Dinero” or “SEPRELAD”) authorized the implementation of the “Deactivation of Obligated Entities” (the “Module”) developed within the Integrated Operations Reporting System (“Sistema Integrado de Reporte de Operaciones” or “SIRO”). The measure aims to establish an automated mechanism allowing Obligated Entities to request the cancellation of their system access credentials for reasons such as (i) change in economic activity, (ii) suspension or closure of the company, or (iii) other reasons motivating the request.

The Module is available both to Obligated Entities that have a natural supervisory body and to those directly supervised by SEPRELAD’s Directorate General of Supervision and Regulation.

Among the main requirements are the submission of the deactivation request, an updated Taxpayer Registration Certificate (RUC), proof of payment of the annual fee, and documentation confirming that the sector’s supervisory authority has been notified of the activity’s termination, among others. In the case of legal entities, a shareholders’ meeting resolution approving the cessation of operations is also required, while individuals must submit an authenticated copy of their national identity document.

It is important to note that both individuals and legal entities must be current with their regulatory obligations to request deactivation. This includes compliance with the submission of required reports and payment of the annual fee for system use.

All communications related to the deactivation process will be sent to the registered email address. Upon completion of the process, SEPRELAD will issue a Deregistration Management Certificate in the SIRO Registry.

Through Resolution No. 1 dated September 2, 2025, the Central Bank of Paraguay updated the Regulation on Transparency and Minimum Criteria for the Collection of Fees, Charges, and Penalties in the Financial System (the “Regulation”).

The Regulation introduces a new chapter specifically addressing automatic debits, applicable to all entities supervised by the Superintendency of Banks (“SIB”). Among the key updates are the prohibition on including irrevocability clauses in debit authorizations and the possibility for clients to suspend or revoke the service by any reliable means up to 48 hours prior to the due date.

In addition, supervised entities must assign a unique identification number to each credit operation, which must appear in the contract, settlement, promissory note (pagaré), and any other related document. The Regulation also requires the implementation of mechanisms to ensure the effective cancellation of originating documents once the credit has been settled. This obligation must be incorporated into each entity’s operational manuals, including a specific timeframe for compliance. The SIB may also issue standardization rules regarding the unique identification of credit operations.