In October 2022, the Multilateral Instrument was ratified by the Mexican Senate and could enter into force as soon as February 2023. As of the entry into force of this instrument, the Mexican Double Tax Conventions (DTCs) in effect will be automatically modified, without having to enter into the specific negotiation processes with each one of the signatory states. The instrument is, perhaps, the most impressive result of the BEPS Project, as it permits updating DTCs and allows jurisdictions to incorporate BEPS actions into their current DTCs without the need to resort to bilateral negotiations.

The Department of Finance released draft legislation on 3 November 2022 introducing new reporting obligations applicable to certain digital platform operators. These rules are intended to implement the OECD’s Model Rules for Reporting by Platform Operators with respect to Sellers in the Sharing and Gig Economy originally released in July 2020. These new Canadian measures are proposed to come into force on 1 January 2024.

Where does the responsibility lie for an acquiring company to understand and evaluate cyber risks in an acquisition? How can these risks be identified and mitigated in the middle of a fast-paced deal? A data breach can have serious financial consequences to both the buyer and the seller. A significant security breach can lead to a nearly instantaneous devaluation of assets and can severely damage the acquiring company’s business viability, raising serious questions as to purchase price and follow-on integration issues.

On 20 November 2022, the Saudi Data and Artificial Intelligence Authority launched a public consultation on proposed amendments to the Personal Data Protection Law, promulgated by Royal Decree No. M/19, dated 09/02/1443H, which was originally published on 24 September 2021.
The public consultation will remain open up until 20 December 2022 and all organizations are invited to submit their comments by that date.