Paraguay

Summary

Paraguay presents low-to-moderate risk for public-page crawling. Computer-crime exposure flows from Codigo Penal Art. 174b (acceso indebido a sistemas informaticos), as amended by Ley 4439/2011, which criminalises accessing a computer system without authorisation or in excess of authorisation (up to 3 years). Public pages carry implicit authorisation; Art. 174b follows the security-mechanism gate of civil-law tradition, and purely public scraping is not the paradigm case. The country enacted its first comprehensive data-protection law (Ley 7593/2025, promulgated November 28 2025) after more than four years of legislative debate; the Executive has up to 24 months to issue implementing regulations, placing full entry into force in approximately November 2027. Until 2027 only the narrow Ley 6534/2020 (credit-data protection) applies to personal data processing, so current personal-data risk outside the credit sector is low. The Agencia Nacional de Protección de Datos Personales operates as a deconcentrated unit within MITIC with functional autonomy. No sui generis database right. Copyright is protected under Ley 1328/1998 (Derecho de Autor), which uses a closed list of exceptions with no TDM carve-out. The field is fast-moving given the 2027 full entry into force of Ley 7593/2025.