Topic LE /GAC position Registrar Position Agreement in Principle 1. Privacy and Proxy services

Similar documents
Progress Report Negotiations on the Registrar Accreditation Agreement Status as of 1 March 2012

Law Enforcement Recommended RAA Amendments and ICANN Due Diligence Detailed Version

Introduction. Prepared by: ICANN Org Published on: 12 January 2018

ICANN Contractual Compliance. ALAC Mee(ng. Sunday, 23 March 2014 #ICANN49

The registration of Domain Names will be centralized and managed through all DOT accredited Registrars selected by the Registry.

ICANN Contractual Compliance Proforma DNS Infrastructure Abuse November 2018 Registry Audit Request For Information (RFI)*

Registrar Stakeholder Mee2ng Tuesday, 25 March 2014

ICANN Contractual Compliance. IPC Mee(ng. Tuesday, 25 March 2014 #ICANN49

Privacy and WHOIS Data Policy

ISSUE CHART FOR THE GNSO RAA REMAINING ISSUES PDP ON PRIVACY/PROXY SERVICES

Whois Study Table Updated 18 February 2009

PRIVACY POLICY. Personal Information We Collect

Contractual Compliance. Text. IPC Meeting. Tuesday, 24 June 2014 #ICANN50

Proposed Interim Model for GDPR Compliance-- Summary Description

Privacy Policy and WHOIS Data

USER CORPORATE RULES. These User Corporate Rules are available to Users at any time via a link accessible in the applicable Service Privacy Policy.

OnlineNIC PRIVACY Policy

Tucows Guide to the GDPR. March 2018

Privacy and Proxy Service Provider Accreditation. ICANN58 Working Meeting 11 March 2017

TERMS AND CONDITIONIONS FOR WHOIS DATA COLLECTION AND DISPLAY

.LATROBE TLD REGISTRATION POLICY

Motorola Mobility Binding Corporate Rules (BCRs)

General Update Contractual Compliance Initiatives and Improvements Audit Program Update Complaints Handling and Enforcement Summary

Inter-Registrar Transfer Policy (IRTP) Audit Report

Registrar Session ICANN Contractual Compliance

Data Processing Agreement

HF Markets SA (Pty) Ltd Protection of Personal Information Policy

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER RE: NOTICE OF BREACH OF REGISTRAR ACCREDITATION AGREEMENT

Blue Alligator Company Privacy Notice (Last updated 21 May 2018)

Intellectual Property Constituency (IPC)

DRAFT: gtld Registration Dataflow Matrix and Information

2011 Whois Data Reminder Policy Audit Report

Effective October 31, Privacy Policy

DNS Abuse Handling. FIRST TC Noumea New Caledonia. Champika Wijayatunga Regional Security, Stability and Resiliency Engagement Manager Asia Pacific

Internet Corporation for Assigned Names & Numbers Contractual Compliance Update

New gtld Start Up Plan

1. Anti-Piracy Services. 2. Brand Protection (SAAS) 3. Brand Protection Services. Data Protection and Permitted Purpose. Services

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER

ICANN GDPR Proposed Models Redaction Proposal EXECUTIVE SUMMARY:

General Update Contractual Compliance Initiatives and Improvements Audit Program Update Complaints Handling and Enforcement Summary

MOBILE.NET PRIVACY POLICY

CITYTOUCH PRIVACY POLICY

PURPOSE STATEMENT FOR THE COLLECTION AND PROCESSING OF WHOIS DATA

Proposal for a model to address the General Data Protection Regulation (GDPR)

Report on Registrar Whois Data Reminder Policy Survey

Summary of Public Suggestions on Further Studies of WHOIS including the GAC recommendations of 16 April Updated 10 May 2008

Temporary Specification for gtld Registration Data

Domain Names & Hosting

Registration Policy for. 大众汽车

Internet Corporation for Assigned Names and Numbers ( ICANN )

Contractual Compliance Update ICANN 52 February 2015

Domain Hosting Terms and Conditions

Communication and Usage of Internet and Policy

WHOIS Access and the EU General Data Protection Regulation. Part 2

Contractual Compliance

WEBSITE PRIVACY POLICY

EU-US PRIVACY SHIELD POLICY (Updated April 11, 2018)

PRIVACY POLICY OF.LT DOMAIN

Advisory Statement: Temporary Specification for gtld Registration Data

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER RE: NOTICE OF BREACH OF REGISTRAR ACCREDITATION AGREEMENT

Privacy Shield Policy

Proposed Final Report on the Post-Expiration Domain Name Recovery Policy Development Process Executive Summary

Beam Technologies Inc. Privacy Policy

INTELLECTUAL PROPERTY CONSTITUENCY COMMENTS ON PROPOSED INTERIM MODELS FOR ICANN COMPLIANCE WITH EU GENERAL DATA PROTECTION REGULATION

We collect information from you when You register for an Traders account to use the Services or Exchange and when You use such Services. V.

Starflow Token Sale Privacy Policy

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER RE: NOTICE OF BREACH OF REGISTRAR ACCREDITATION AGREEMENT

REGISTRAR AGREEMENT. Domain Name means a domain name allocated under the.eu Top Level Domain and its variants in other scripts.

.HEALTH REGISTRATION POLICY

Data Privacy Policy. 1. General

Draft Applicant Guidebook, v3

Data Processing Agreement DPA

Emergency Nurses Association Privacy Policy

Rowing Canada Aviron. Online Registration System - Protection of Personal Privacy. Policy Statement

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER

With this vital goal in mind, MarkMonitor believes that the optimal WHOIS model should have, at minimum, these five important characteristics:

VIACOM INC. PRIVACY SHIELD PRIVACY POLICY

Part 1: Items that Contracted Parties Need from ICANN before May 25 - Prior to Implementation

TRANSMITTED VIA ELECTRONIC MAIL, FACSIMILE, AND COURIER RE: NOTICE OF TERMINATION OF REGISTRAR ACCREDITATION AGREEMENT

Token Sale Privacy Policy

1. Purpose of Policy Alerts Scope of the Internet Domain in Handling Complaints Types of Complaints 4

Secure Messaging Mobile App Privacy Policy. Privacy Policy Highlights

Eight Minute Expert GDPR

Spree Privacy Policy

.CAM Registry. GDPR integration. Version nd May CAM AC Webconnecting Holding B.V. Beurs plein AA Rotterdam

Domain Name Registration Agreement

Ferrous Metal Transfer Privacy Policy

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers

Acceptable Use Policy

BCDC 2E, 2012 (On-line Bidding Document for Stipulated Price Bidding)

Privacy Policy. 1. General

APPLICATION FORM FOR DELETION, TRANSFER AND/OR CHANGE OF DOMAIN NAME DETAILS

The Rough Notes Company, Inc. Privacy Policy. Effective Date: June 11, 2018

General Data Protection Regulation (GDPR)

Cognizant Careers Portal Terms of Use and Privacy Policy ( Policy )

TRANSMITTED VIA FACSIMILE, COURIER SERVICE & ELECTRONIC MAIL RE: NOTICE OF TERMINATION OF REGISTRAR ACCREDITATION AGREEMENT

ACCEPTABLE USE POLICY

Registry Internet Safety Group (RISG)

HPE DATA PRIVACY AND SECURITY

Data Processor Agreement

Transcription:

Topic LE /GAC position Registrar Position Agreement in Principle 1. Privacy and Proxy services 2. Prohibition of Certain Illegal, Criminal or Malicious Conduct In the event ICANN establishes an accreditation program for proxy or privacy registration services, Registrar will accept proxy/privacy domain name registrations ONLY from ICANN accredited Proxy Registration Services. Registrar shall cooperate with ICANN to establish an ICANN accreditation program for proxy or privacy registrations. Registrar shall not engage in activities or conduct that results in: (i) a conviction by a court of competent jurisdiction of a felony or other serious offense related to financial activities; (ii) a judgment by a court of competent jurisdiction that Registrar has committed fraud or breach of fiduciary duty; (iii) the Registrar being the subject of a judicial determination that is the substantive equivalent of those offenses (i) (ii); or (iv) the Registrar knowingly and/or through gross negligence, permitting criminal activity in the registration of domain names or in the provision of domain name WHOIS information, after failing to promptly cure such activity after notice thereof. believes that the obligation to escrow proxy/privacy service registrant data would be best accomplished through an accreditation program for such services. ICANN would be in the best position to establish and manage such an accreditation program and would comply with such a program. (i iii) are covered as they are already in the termination section of the agreement. (iv) Registrars are looking for more specific language in RAA. Want criminal activity to be defined and be determined by a violation of applicable national law or governmental regulation relating to cybersquatting or its equivalent. 3. Valid Physical Address to be Registrar must provide a valid physical address for Much of this information is already

published 4. Valid Officer Data to be Published 5. Disclosure of Registrars owned by Affiliates 6. Notice to ICANN of Certain Changes legal service, including a valid street address, city, and region, as well as a valid telephone number and fax number to ICANN. Registrars must publicly display of the name of CEO, President, and/or other responsible officer(s). Registrars with multiple accreditations must disclose and publicly display on their website parent ownership or corporate relationship, i.e., identify controlling interests Registrar will notify ICANN immediately of the following: a. Any and all changes to a Registrar s location(s), office(s); b. Changes to presiding officer(s); c. Change in controlling ownership; d. Any criminal convictions, and any civil convictions causal or related to criminal activity. Registrar will concurrently update their website upon notifying ICANN of (a) (c) above. required as part of an application for accreditation. Agreement in principle to use an appendix requiring update and posting requirements for corporate, contact, and affiliation information responsive to LEA requests Same as #3 Registrars do not have an issue with disclosing this information to ICANN, but to publicly display raises competition issues. Registrars do not see the need to publicly display if the information is already available to ICANN and could be accessed by Law Enforcement Same as # 3

7. Maintenance of Business Licenses. 8. Resellers must be held completely accountable to ALL provisions of the RAA. Registrar should be legal entity within the country of operation, and should provide ICANN with official certification of business registration or license. Registrars must contractually obligate all its Resellers to comply and enforce all RAA provisions. The Registrar will be held directly liable for any breach of the RAA a Reseller commits in which the Registrar does not remediate immediately. All Registrar resellers and third party beneficiaries should be listed and reported to ICANN who shall maintain accurate and updated records. Same as #3 proposed to address the reseller issue by affirmatively embracing the notion that an ICANN accredited registrar is responsible for taking steps to ensure that all sponsored registrations are undertaken in compliance with the requirements of the RAA 9. Data Retention Registrars and all associated third party beneficiaries to Registrars are required to collect and securely maintain the following data Retention Period. Consistent with fair information practice principles and the laws of many countries, the registrar proposal establishes two different retention periods: (i) the life of the registration plus two years, or (ii) a minimum of six months. The nature of the data determines the applicable retention period. Retention Detail ICANN s language requires registrars to collect and maintain highly detailed and / NO There is agreement in principle to collect and store data, but not ALL of the types of data and, with respect to SOME of the data, not the length of time to store

10. Whois Validation Validation of Whois data upon receipt from registrant sensitive payment information, including the name of the financial institution, bank routing number, any and all account numbers and associated expiration dates, security codes, and addressing information Scope The ICANN language imposes collection and retention requirements on services that fall outside of the RAA proposal would permit registrations and address resolution to proceed, subject to verification within a short period following registration. Further enhancements consistent with community input and impact assessment ICANN proposal requires telephone number verification in addition to email verification, again prior to resolution of domain name / NO There is agreement to verify whois data but not when it should be and which fields 11. Abuse point of contact Registrar creation of an abuse point of contact, and provision of a well defined, auditable way to track Language is still being refined to address issues relating to jurisdiction and

12. Port 43 Whois SLA complaints. ICANN should require Registrars to have a Service Level Agreement for their Port 43 servers. authentication of law enforcement. has requested that the requirement to operate registrarprovided WHOIS servers be limited to thin registries (i.e.,.com and.net). Thick registries already provide centralized public access to WHOIS data, and all new gtlds are required to be thick. And have stringent SLA s in their Registry agreements

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback