It's probably worth noting, that those of us who live in countries where the "Common Law" legal system is the norm (i.e. UK, US, Australia, Canada, etc.) are subject to statutes documented by governments, however, without legal cases actually being brought before the judicial courts - we don't really know how your specific case would be judged.
It feels to me, as someone with no legal training, but having a professional interest in regulation and compliance that we are in a bit of "no-mans land" here. Practically both written statutes and case law needs to be dragged into the 21st century - the laws are there for good reasons (protecting retail investors, preventing money laundering, crime prevention, etc.) but they appear to be wholly inadequate for the era of Web3.
Hive and the wider ecosystem probably do need some form of control similar to Know Your Customer (KYC) and Anti-Money Laundering (AML) but it would need to be implemented in the same autonomous and distributed way that the rest of Web3 is constructed - not some lumbering process that requires corporations to be set up, staffed and audited against some arbitrary standards.
My viewpoint comes as someone who has worked in technology in the financial services sector, even the adoption of Agile and DevOps is an uphill struggle with a regulatory ecosystem that doesn't have the capacity to adapt quickly to changing approaches.
RE: What are the Legalities of Creating Hive Tokens?