ICANN has written to the European Data Protection Board (EDPB) to see if a “Universal Access Model” for domain name registration data is possible under GDPR. The letter, which was sent on Friday, also includes two other documents: Exploring a Unified Access Model for gTLD Registration Data TSG01: Technical Model for Access to NonPublic Registration… Continue reading ICANN Asks European Data Protection Board if Universal Access Model Viable
Tag: GDPR
US Government to ICANN – Move Quickly
David Redl has written to ICANN in relation to the ongoing work around whois and GDPR. The letter, which was shared with the GNSO Council last night, is a mixed bag. On the one hand it offers the carrot in relation to what’s been done so far, but then there’s the not so veiled threat,… Continue reading US Government to ICANN – Move Quickly
APWG & M3AAWG Survey on Whois Challenges in InfoSec
The APWG and M3AAWG recently conducted a survey among their members and the broader infosec community to get an understanding of how WHOIS changes had impacted security investigators. The survey results come from just over 300 participants’ responses. Both organisations have formally written to ICANN and are asking that ICANN make several fundamental changes to… Continue reading APWG & M3AAWG Survey on Whois Challenges in InfoSec
ICANN vs EPAG: ICANN Seeks Appeal Plus Pushes for ECJ Referral
As I predicted ICANN is pursuing its case against EPAG. They’re now not only appealing the case to a higher court in Germany, but are also trying to get the entire thing referred to the European Court of Justice. In an announcement late last night ICANN made it very clear what their intentions are. While… Continue reading ICANN vs EPAG: ICANN Seeks Appeal Plus Pushes for ECJ Referral
ICANN vs Epag / Tucows: German Court Rules Against ICANN
Last Friday ICANN took German registrar EPAG to court in Germany. German courts seem to be pretty fast, so instead of having to wait weeks or months to see how they’d rule, we’ve already got the answer. The German court in Bonn has ruled that EPAG (Tucows) is not obliged to collect extra contacts beyond… Continue reading ICANN vs Epag / Tucows: German Court Rules Against ICANN
ICANN vs EPAG / Tucows: Tucows Releases Statement on What They’re Doing and Why
As I noted over the weekend, ICANN has instigated legal action against Epag, an ICANN accredited registrar based in Germany that is part of the Tucows group. ICANN claims that the case is to “preserve WHOIS data”, but Tucows asserts in their statement that the ICANN approach is flawed. It’s not a frivolous statement, but… Continue reading ICANN vs EPAG / Tucows: Tucows Releases Statement on What They’re Doing and Why
ICANN Sues German Registrar Over GDPR
ICANN announced Friday that it is pursuing legal action in Germany against Epag. Epag is owned by Tucows, who are one of the largest registrars in the world. So what is going on? Why is ICANN taking legal action against a registrar? According to the announcement from ICANN the action is “to preserve whois data”.… Continue reading ICANN Sues German Registrar Over GDPR
ICANN Writes to ALL European Union Privacy Authorities
In what could be viewed as an unprecedented move, ICANN has written to each and every data protection authority in the European Union. Why? ICANN feels that there is uncertainty about how the General Data Protection Regulation (GDPR) should impact registrars and registries specifically in relation to the collection, processing and retention of domain name… Continue reading ICANN Writes to ALL European Union Privacy Authorities
ICANN Maps Whois Models For GDPR
Earlier today ICANN held a webinar to provide an update on their data privacy activities in relation to whois and GDPR. Rather than simply talking about the various “models” they produced both a visual mapping as well as a matrix. While some attendees may not agree with how all the models are classified it is… Continue reading ICANN Maps Whois Models For GDPR
ECO Hosting GDPR Domain Industry Playbook Event in Brussels
Eco is hosting a GDPR focussed event next Monday in Brussels. The event is focussed on how registrars and registries can legally continue to offer domain registrations while remaining compliant with GDPR. Full details including how to sign up to attend the event either in person or remotely are available here.