Monthly Archives: February 2026

On 18 February 2026, the Data Protection Authority (“DPA”) issued, through Resolution No. SPDP-SPD-2026-0009-R, the General Regulation for the Guarantee of the Right to Personal Data Protection in the Use of Artificial Intelligence Systems (“AI Regulation”), with the purpose of ensuring the effective application of the Data Protection Law (“DPL”), its General Regulation, and other applicable regulations concerning personal data protection, when controllers and processors develop, train, implement, deploy and/or provide artificial intelligence systems (“AI Systems”) in which the personal data of Ecuadorians are processed, regardless of the location of the AI System or its provider.

 

Below, we detail the most relevant aspects of the AI Regulation:

 

1. Definitions:

• Developer: controller or processor that generates or creates an AI System.
• Deployer: controller or processor that, through the use of an AI System, provides a service, except where such use falls within a personal activity of a non-professional nature.
• Distributor: controller or processor that forms part of the supply chain other than the developer, deployer, or implementer, that markets or supplies an AI System on the market.
• Implementer: controller or processor that commissions the development of, or implements, an AI System within internal procedures or processes.

 

1. Controllers or processors that process personal data through AI Systems must comply with the following obligations:

 

• Comply with the principles established in the DPL.
• Guarantee the rights recognized in the DPL, in particular the rights to information, objection, and not to be subject to a decision based solely or partially on automated assessments.
• Inform the data subject about the processing of their personal data carried out through AI Systems, including its purposes and its automated nature.
• Carry out risk analyses and data impact assessments.
• Implement appropriate security measures.
• Include the processing operations carried out through AI Systems in the record of processing activities (RoPA).
• Audit the operation of the AI System according to its level of risk.

 

1. The DPA may audit AI Systems where the principles and rights are not guaranteed and may impose corrective measures and/or precautionary measures in the event of non-compliance with the obligations established in the DPL and other applicable regulations in this field.

Rafael Serrano, Partner at CorralRosales
rserrano@corralrosales.com
+593 2 2544144

On January 8 of this year, the Ministry of Labor issued the regulation for compliance with the obligations set forth in the Organic Law for Pay Equity between Women and Men. This regulation includes the creation of a module within the Sistema Unico de Trabajo (SUT), where employers are required to register training programs and awareness initiatives related to equal pay and non-discrimination.

In accordance with the regulation, private sector employers are required to comply with the following:

Annual Training: Provide at least 40 hours of training per year, which may be delivered in person, virtually, or a combination of both, and must include all employees.

Awareness Initiatives: Promote gender equality, equal pay, and the prevention of any form of workplace discrimination.

Registration and Reporting: Document and report all training sessions and awareness activities in the designated SUT module.

Reporting Deadlines: Information on training and awareness initiatives must be reported annually. However, the Ministry of Labor issued Ministerial Agreement No. MDT-2025-185, which provides a one-time extension of the deadline through November 30, 2026.

Thereafter, reports must be submitted annually in January.

To access the module in the SUT, employers must locate the section titled:
“Training and Awareness Registration – Ministerial Agreement MDT-2025-006.”

This new module is currently undergoing continuous updates, which may lead to occasional technical issues during the registration process.

Importance of Compliance:

The information recorded in the SUT will be essential for verification and certification processes conducted by the Ministry of Labor. Compliance with these obligations will enable employers to obtain the Certificate of Compliance with the Organic Law for Pay Equity between Women and Men.

For any clarification or further information, feel free to contact us.

Belén Jaramillo, Partner at CorralRosales
bjaramillo@corralrosales.com
+593 2 2544144

María Victoria Beltrán, associate at CorralRosales
mbeltran@corralrosales.com
+593 2 2544144

By means of Executive Decree No. 298, dated January 30, 2026, the President of the Republic enacted the General Regulations to the Organic Law on the Prevention, Detection, and Combat of the Crime of Money Laundering and the Financing of Other Crimes (the Regulations).

These Regulations seek to consolidate a robust institutional and operational framework for the prevention, detection, and sanctioning of money laundering, terrorist financing, and other related offenses, aligned with international standards and grounded in a risk-based approach.

1. General Approach and Guiding Principles

The Regulations are structured around a comprehensive preventive approach, expressly adopting the risk-based approach as a cross-cutting criterion for the identification, assessment, and mitigation of threats associated with money laundering, terrorist financing, and the proliferation financing of weapons of mass destruction.

Within this framework, the Regulations establish general guidelines that enable:

• Coordination among public entities, the private sector, and supervisory authorities;
• Adoption of technical methodologies aligned with international standards; and
• Strengthening of institutional and corporate governance in matters of regulatory compliance.

Additionally, the Regulations provide for the periodic execution of national risk assessment exercises, the results of which must serve as input for the formulation of public policies and for the implementation of internal risk management systems by obligated entities.

1. Determination and Management of Obligated Entities

One of the most significant aspects of the Regulations is the establishment of technical criteria for the inclusion, exclusion, or modification of the obligations applicable to obligated entities. Such determination is based on an objective analysis that considers, among other factors:

• The level of residual risk associated with the economic activity carried out;
• Trends, typologies, and patterns identified in relation to money laundering and crime financing;
• Regional threats and their potential impact on the State’s economic and financial security; and
• Information derived from national-level risk assessment processes.

Based on these criteria, the Financial and Economic Analysis Unit (UAFE) is empowered to define and update reporting structures, as well as the technical manuals applicable to each sector, ensuring the proportionality of obligations and their alignment with the identified level of risk.

• Compliance Programs and Internal Controls

The Regulations require obligated entities to implement a comprehensive program for the prevention and management of risks related to money laundering, terrorist financing, and the financing of the proliferation of weapons of mass destruction, designed in accordance with the structure and nature of their activities and with the regulations issued by the competent supervisory authority or the UAFE.

Such program must be set forth in a Money Laundering and Crime Financing Prevention Manual, which must be prepared, approved, implemented, and registered with the relevant authority.

At a minimum, the compliance program must include:

• Policies, procedures, and controls for risk management;
• Mechanisms for the detection of unusual, unjustified, or suspicious transactions; and
• Timely reporting of such transactions to the UAFE within the established statutory timeframe.

Likewise, obligated entities must maintain sufficient and verifiable information regarding their clients and beneficial owners, as well as the transactions conducted, using reliable and trustworthy means.

1. Reporting Regime and Information Obligations

The reporting system constitutes one of the core operational pillars of the Regulations and is designed as an essential tool for the effective functioning of the prevention system. Obligated entities must submit information to the UAFE on a periodic, complete, and timely basis, in accordance with the applicable technical parameters.

Key reporting obligations include:

• Suspicious Transaction Reports (ROS);
• Record of Non-Existence of Suspicious Transaction Reports (NO ROS);
• Reports of individual transactions equal to or exceeding ten thousand United States dollars (USD 10,000), as well as multiple transactions which, in the aggregate, are equal to or exceed such amount when conducted for the benefit of the same individual within a thirty (30) day period (RESU); and
• Record of Non-Existence of Reports of individual transactions equal to or exceeding ten thousand United States dollars (USD 10,000) or its equivalent in other currencies (NO RESU).

 

1. Access, Confidentiality, and Use of Information

The Regulations reinforce the authority of the UAFE to require information from public entities and obligated entities. Such information must be provided in a complete and timely manner, without invoking confidentiality, secrecy, or privilege.

Key aspects include:

• UAFE classifies information in accordance with the Organic Intelligence Law;
• Failure to provide the required information results in administrative sanctions, without prejudice to other applicable liabilities; and
• The establishment of a secure whistleblower channel, ensuring the protection of the reporting individual’s identity.

 

1. Politically Exposed Persons (PEPs)

The Regulations clearly define who qualifies as a Politically Exposed Person (PEP), including individuals who hold or have held senior public positions at the national or international level, as well as those who perform prominent functions within international organizations.

The Regulations provide that:

• PEP status remains in effect for two (2) years following the cessation of public office;
• Being classified as a PEP does not imply the denial of services, but rather the application of enhanced due diligence measures; and
• Obligated entities must obtain approval from senior management to initiate or maintain the business relationship.

 

• Transportation of Cash, Precious Metals, and Precious Stones

Travelers entering or exiting the country are required to declare before the National Customs Service of Ecuador (SENAE) any cash, bearer negotiable instruments, precious metals, or precious stones whose value is equal to or exceeds USD 10,000, whether individually or jointly.

• Administrative Sanctions Regime

The Regulations set forth proportionality criteria for the imposition of administrative sanctions, considering the severity of the infringement, the damage caused, and any recurrence.

Violations are sanctioned with fines expressed in Unified Minimum Wages (SBU), as follows:

• Minor: 1 to 10 SBU
• Serious: 11 to 20 SBU
• Severe: 21 to 40 SBU

 

Dario Escobar, Associate at CorralRosales
descobar@corralrosales.com
+593 2 2544144

On February 2, 2026, the Data Protection Authority (“DPA”) issued Resolution No. SPDP-SPD-2026-0005-R containing the General Regulation on Large-Scale Personal Data Processing (“Large-Scale Regulation”), with the aim of establishing guidelines and criteria for identifying large-scale personal data processing.

 

Below, we detail the most relevant aspects of the Large-Scale Regulation:

 

1. Key concepts

 

The Large-Scale Standard defines the following terms:

 

1. Geographic scope: territorial extent or impact of the processing. It is classified as:

 

• Local: processing carried out within a province, canton, or city.
• National: processing carried out in more than one province, canton, or city.
• Cross-border: processing carried out in a country, international organization, legal entity, or international economic territory.
• Global: processing carried out in more than one country, international organization, legal entity, or international economic territory.

 

1. Frequency of treatment: regularity or continuity with which treatment activities are carried out, considering the repetition, accumulation, and continuity of the operation, which may be single, periodic, or continuous.

 

1. Duration of processing: the period during which personal data is subject to processing activities. It is classified as follows:

 

• Occasional: processing is carried out on an exceptional, one-off, or sporadic
• Temporary: processing is carried out for a period of less than three (3) years.
• Extended: processing is carried out for a period of more than three (3) years.

 

1. Data volume: total amount of personal data processed in each processing operation.

 

1. Large-Scale Technical Model (“MTGE”)

 

The MTGE is a technical-legal instrument that allows the level of risk and magnitude of a given personal data processing activity to be assessed.

 

To calculate this, the MTGE takes the following variables into account:

 

1. Number of personal data subjects:
   • From 0 to 1,000 data subjects: 1 point.
   • From 1,001 to 10,000 subjects: 2 points.
   • From 10,001 to 100,000 data subjects: 3 points.
   • More than 100,000 data subjects: 4 points.

 

1. Volume of personal data:
   • Up to 10 types of data: 0.5 points.
   • Between 11 and 30 types of data: 1 point.
   • Between 31 and 100 types of data: 2 points.
   • More than 100 types of data: 3 points.

 

1. Categories of personal data:
   • One basic category of data: 0.5 points.
   • One special category: 2 points.
   • More than one special category: 3 points

 

1. Frequency of personal data processing:
   • Occasional: 0.5 points.
   • Periodic or recurring: 1 point.
   • Continuous or real-time: 2 points

 

1. Duration of personal data processing:
   • Occasional: 0.5 points.
   • Temporary: 1 point.
   • Prolonged: 2 points.

 

1. Geographic scope:
   • Local: 1 point.
   • National: 2 points.
   • Global or cross-border: 3 points.

 

The total MTGE score will be calculated by adding the values of the variables. If the result is equal to or greater than six (6) points, it will be considered a large-scale treatment.

 

• Direct qualification for Large-Scale Treatment (“Direct Qualification”)

 

Notwithstanding the calculation obtained through the MTGE, the DPA establishes that the following will be directly and mandatorily considered large-scale treatments:

 

• Processing of health data.
• Systematic and exhaustive evaluation of personal aspects of data subjects based on automated processing.
• Systematic surveillance or monitoring of data subjects in public access areas, carried out using video surveillance systems.
• Processing of biometric data.
• Geolocation activities.
• Structural processing of personal data within the framework of credit, financial, or economic risk assessment information systems.
• Systematic processing of data on children and adolescents, when carried out in institutional, educational, digital, or service provision environments aimed at these priority groups.
• Systematic transfers of personal data.
• Processing data in express or courier messaging services.

 

1. Effects of the calculation obtained from the MTGE and the Direct Qualification.

 

The results of the MTGE and Direct Qualification cases are binding for:

 

• Determine the obligation to carry out impact assessments.
• Mandatory appointment of a Data Protection Officer (“DPO”).
• Incorporate processing operations into the Record of Processing Activities (“RoPA”).
• Activate enhanced measures of proactive accountability, security, and oversight.

 

If a controller or processor is required to appoint a DPO under the provisions of the Large-Scale Regulation, they will have ninety (90) days to make such an appointment and register it with the DPA.

 

Those who carry out large-scale data processing must include the following elements in their RoPA, in addition to the requirements set forth in Article 38 of the Regulations of the Data Protection Law: (i) a description of the processing; (ii) the frequency; and (iii) the duration of the processing.

 

Controllers or processors carrying out large-scale processing activities must undergo internal or external audits at least once every twelve (12) months, or when there are significant changes in nature, scope, purposes, technologies used, or level of risk identified. Each audit report must be retained for a minimum of five (5) years.

 

Furthermore, in the case of large-scale processing, controllers or processors must expressly identify such processing in their privacy policies and indicate its purposes, the categories of personal data processed, and the data subjects concerned.

 

Rafael Serrano, Partner at CorralRosales
rserrano@corralrosales.com
+593 2 2544144

On January 28, 2026, the President of the Republic submitted to the National Assembly an urgent bill titled the “Organic Law for the Strengthening of the Strategic Mining and Energy Sectors” (the “Bill”). The purpose of this Bill is to amend the Mining Law and the Organic Law of the Public Electricity Service (“LOSPEE”).

Although the Bill was qualified by the Legislative Administration Council (“CAL”) and referred to the Economic Development Commission of the National Assembly on Sunday, February 1, where the proposed text will be discussed for its eventual approval, the most relevant changes are summarized below:

Amendments to the Mining Law

 

Prior Administrative Acts

Currently, holders of mining concessions must obtain so-called prior administrative acts before carrying out activities, namely: (i) the relevant environmental license from the Ministry of the Environment; (ii) a certificate from the Single Water Authority confirming that activities will not affect water sources; and (iii) a sworn statement that the activities will not affect public infrastructure.

The Bill seeks to clarify the first requirement by establishing that concessionaires must obtain (i) the corresponding environmental authorization from the Competent Environmental Authority, in accordance with the applicable regime and phase. It is noteworthy that, depending on the mining stage and phase, the requirement to obtain either an environmental registry or an environmental license may vary.

Mining Conservation Patent Fee

Each year, until March, holders of mining concessions must pay an annual patent fee for each mining hectare they hold. This fee is calculated based on the Unified Basic Salary (“SBU”): 2.5% of the SBU for initial exploration, 5% of the SBU for advanced exploration and economic evaluation, and 10% of the SBU for the exploitation stage.

The Bill provides that, under no circumstances, whether through administrative or judicial channels, may an extension be granted for payment of this patent fee. Additionally, it establishes that from the granting of the concession until December 31 of the fourth year of exploration, the fee will be equivalent to 2.5% of the SBU; for the following exploration years, 5% of the SBU; and 10% of the SBU for the exploitation stage.

Phases of Mining Activity

Currently, a mining concession is divided into an exploration stage and an exploitation stage, with the exploration stage further subdivided into initial exploration, advanced exploration, and economic evaluation of the deposit.

The Bill modifies these phases, establishing that a mining concession will be divided into an exploration stage and an exploitation stage, which will include primary, secondary, and other minerals of economic value.

Exploration Phase of the Mining Concession

Article 37 of the Mining Law provides that the holder of a mining concession may carry out mining exploration activities, with an initial exploration period of four years, advanced exploration of four years, and economic evaluation of two years, before entering the exploitation phase.

The Bill amends the exploration stage to a maximum term of 15 years from the date of grant, divided into the following sub-phases: (i) initial exploration of up to four years, and (ii) advanced exploration and economic evaluation with a combined duration of up to eleven years. Transition between sub-phases will occur automatically upon the lapse of time and compliance with the term established for each, without the need for prior authorization.

It is clarified that the exploration stage is intended for the manual collection of rock, soil, and fluvial sediment samples; data gathering through geophysical methods; opening of paths, trenches, and exploratory pits; test or reconnaissance drilling; and other activities permitted under current regulations. This includes the installation of temporary camps and necessary infrastructure for carrying out exploration work within a mining concession, as well as the economic evaluation of the concession.

Creation of Mining Clusters

The Bill establishes that the State, through the Sectoral Ministry as governing authority — the Ministry of Environment and Energy — may implement Integrated Mining Clusters as defined territorial areas in which enabling infrastructure and shared services for mining projects are concentrated, coordinated, and operated. Integrated Mining Clusters may include: (a) electrical interconnection systems; (b) fuel supply infrastructure; (c) road and logistics infrastructure; and (d) explosives and related materials.

Promotion and Encouragement of Productive Investment

The Bill incorporates a new article aimed at promoting national and foreign productive investment, establishing that Executive Branch entities must:

1. Promote investment through public-private coordination mechanisms, partnership models, strategic alliances, and other structures permitted under the legal framework;
2. Implement administrative simplification, coordination, and facilitation processes aimed at reducing timeframes, duplication, and regulatory burdens, without undermining legal and environmental controls;
3. Provide clear, timely, and transparent information regarding requirements, procedures, incentives, and conditions applicable to investment, ensuring access to institutional channels for investor support and guidance;
4. Encourage technology transfer, innovation, development of local suppliers, and the generation of added value within the national territory; and,
5. Promote responsible investment that respects human rights, nature, and communities, in accordance with applicable national and international standards.

However, it is clarified that these provisions do not create vested rights or automatic exemptions, and their application remains subject to compliance with the Constitution, laws, and applicable regulations.

Mining Areas with Strategic Security Protection

The Bill introduces a new article creating Mining Areas with Strategic Security Protection. These will be territorial areas where mining activities are carried out, which, due to their location, economic importance, strategic nature, associated infrastructure, or risks to national interest, will receive protection from the Armed Forces in coordination with other competent authorities, to

1. Protect the integrity of personnel, facilities, mining infrastructure, and strategic assets associated with mining activities;
2. Prevent, deter, and neutralize illegal activities affecting area security, including illegal mining, sabotage, illegal occupations, and other threats to State security; and,
3. Support competent authorities in territorial control and preservation of order, in accordance with existing inter-institutional protocols.

Such protection does not replace the mining titleholder’s responsibilities regarding industrial, environmental, and occupational safety, nor does it imply delegation of private functions to public security forces.

Environmental Authorization for Activities

The Bill amends Article 78 of the Mining Law by establishing that, before the commencement of mining activities, the respective environmental authorization must be obtained in accordance with applicable environmental regulations. Under the special regime for small-scale and artisanal mining that conducts simultaneous exploration/exploitation activities, an environmental administrative authorization will be required. In the small-, medium-, and large-scale mining regimes, both the exploration and subsequent exploitation stages will require the respective environmental administrative authorizations for each phase, in accordance with the categorization established in the Unified Environmental Information System (SUIA).

Update of Environmental Information for Projects

The Bill adds a transitional provision to the Mining Law establishing that the National Environmental Authority must update, within a maximum period of three months from the entry into force of the new law, the catalog of projects, works, or activities related to the exploration phase and mining activity.

Amendments to the Organic Law of the Public Electricity Service

 

Name of Distributed Generation Systems for Self-Supply

The Bill modifies the designation of Distributed Generation Systems for Self-Supply (“SGDA”), establishing that these systems may use an energy resource through any type of technology for the self-supply of end users. Currently, SGDAs are exclusively intended to use non-conventional renewable energy resources.

Name of Autonomous Energy District (DAE)

The Bill authorizes a legal entity with private, mixed, or popular and solidarity economy capital, whose enabling title allows it to own an electricity network with its own generation – using any type of local and/or remote technology – for its supply, with autonomy in the management and development of its energy and electricity resources on an integrated basis, for the purpose of meeting its power and energy demand. Exceptionally, such entity may generate surpluses that may be made available to the national electricity system.

Name of Transmission Self-Supply Generation System

The Bill defines this concept as the set of equipment for the generation of electricity that uses an energy resource through any type of technology for the self-supply of end users and is connected to a transmission network.

Private Sector Participation in Power Generation

The Bill amends Article 25, whose first paragraph was recently declared unconstitutional by the relevant court, as follows: To satisfy the public, collective, or general interest, the State may exceptionally delegate to private capital companies, foreign state-owned companies, and popular and solidarity economy enterprises, participation in activities related to the public electricity service and public street lighting service, through public selection processes, in any of the following cases:

 

1. For projects included in the Electricity Master Plan (PME):

 

1. When the governing Ministry identifies delays of more than two years in the implementation of the Electricity Master Plan, or when the National Electricity Operator identifies, in the short, medium, or long term, conditions of energy deficit, risk of rationing, operational collapse, loss of reserve, or violation of safety and reliability criteria of the national electricity system or isolated and island systems.
2. When, for technical or economic reasons, the service cannot be provided by public or mixed companies in accordance with system expansion and operation requirements, based on a reasoned report from the governing authority.
3. When an emergency in the electricity sector has been declared by the governing authority, duly supported by technical reports from CENACE or the competent regulatory and control agency.
4. When the participation of private companies, foreign state-owned companies, or popular and solidarity economy enterprises makes it possible to obtain economic, financial, or risk management conditions demonstrably more favorable to the public than those the State could achieve with its own resources.

 

1. For public electricity or public lighting service projects not included in the PME:

 

1. When, for justified technical reasons or relevant technological changes identified by the governing authority or the National Electricity Operator, projects are required to support the objectives of the Electricity Master Plan and cannot be executed promptly by public or mixed companies for technical or economic reasons.
2. When private initiative, based on technological innovation, proposes projects using technologies proven worldwide that have not previously been developed in the country and that contribute to achieving the objectives of the Electricity Master Plan.

Additionally, the State, through the sectoral ministry, may delegate to private capital companies, foreign state-owned companies, and popular and solidarity economy enterprises the development of projects that use non-conventional renewable energy, transition energy, self-generation with any type of technology, autonomous energy districts, as well as the transmission and/or distribution systems necessary for their integration, even if such projects are not included in the Electricity Master Plan, subject to compliance with the requirements established in the relevant regulations issued by the sectoral ministry.

Additional Rules on Private Participation

The Bill adds Article 25.1, establishing that the exceptional nature of power generation by private capital companies, foreign state-owned companies, and popular and solidarity economy enterprises in any of the cases described in Article 25 must be supported by technical, economic, and legal studies objectively and verifiably demonstrating the existence of the exceptional circumstances invoked.

In all cases of delegation, the State shall retain leadership, planning, regulation, control, and oversight of the electricity sector, in accordance with the Constitution of the Republic. It is further clarified that delegation does not, under any circumstances, imply the transfer of ownership of the public service or the State’s waiver of its regulatory and supervisory powers.

The governing Ministry of Energy and Electricity will establish annually and progressively the limit for the entry of electricity generation projects, expressed in MW of capacity, by technology, in accordance with the availability, capacity, and operational conditions of the system.

In addition, concession contracts, depending on the technology involved, will have a maximum term of 30 years from the date of commencement of commercial operation. This term may be renegotiated only once, on an exceptional basis.

Expiration of the Enabling Title

Upon expiration of the enabling title, all assets allocated to the public service must revert and be transferred to the Ecuadorian State. Currently, assets installed by the end user for self-supply, self-generators, co-generators, and non-conventional renewable energy generators of up to 10 MW are excluded from this reversion obligation.

The Bill limits this exclusion to “private-initiative assets corresponding to projects that are not part of the Electricity Master Plan.”

Self-Generation

The Bill adds a paragraph to Article 41 on self-generation, establishing that enabling titles, concession contracts, and/or oil or mining exploitation contracts connected to the National Interconnected System (S.N.I.) must include clauses on local or remote self-generation or self-supply.

In the case of self-supply, the percentage of demand coverage will be defined by the governing authority in the corresponding enabling title or mining or oil concession and/or exploitation contract.

Economic Dispatch

The Bill adds a paragraph to Article 48 requiring dispatch to be ordered according to the following rules:

Preferential dispatch for non-conventional renewable generation of up to 10 MW.

Minimum dispatch of a percentage of the effective capacity of generation plants using transition energy sources. The minimum percentage of effective capacity to be dispatched will be defined in the regulations of the LOSPEE.

Self-Supply Systems for End Users

Currently, regulated and non-regulated consumers may install distributed generation systems exclusively for self-supply using Non-Conventional Renewable Energy (“ERNC”). The Bill eliminates the exclusivity requirement for NCRE and establishes that such systems must be connected to the distribution or transmission network.

Hugo García Larriva, Partner at CorralRosales
hgarcia@corralrosales.com
+593 2 2544144

Carlos Torres, Senior Associate at CorralRosales
ctorres@corralrosales.com
+593 2 2544144

Mario Fernández, Associate at CorralRosales
mfernandez@corralrosales.com
+593 2 2544144