<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class=""><div class=""><br class=""></div>I would like to set some real expectations on this so people don't claim "Surprise!" later on. <div class=""><br class=""></div><div class="">- No policies, temporary or consensus policies,  can trump applicable law. Parties to a contract, or 3rd parties in this case, are not allowed to interpret the law as they see fit, and ICANN contracts in particular recognize that reality. </div><div class="">- Even credentialed tiered WHOIS might not fit GDPR, as the recent Article 29 WP letter made clear; IP-based whitelist would clearly not cut it. </div><div class=""><br class=""></div><div class="">The global public interest would likely be better served by approaching EU lawmakers to bake use cases such as anti-abuse into law; until then, EU DPAs will have no option besides compelling ICANN and contracted parties into changing WHOIS to a mostly privacy-oriented information service. </div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">Rubens<br class=""><div><br class=""><blockquote type="cite" class=""><div class="">Em 13 de abr de 2018, à(s) 14:37:000, Jerry Upton <<a href="mailto:jerry.upton@gmail.com" class="">jerry.upton@gmail.com</a>> escreveu:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class=""><div style="" class=""><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">

        
                
                
        
        
                </span></font><br class="webkit-block-placeholder"></div><div class="gmail-page" title="Page 1"><font size="2" class="">
                        <div class="gmail-layoutArea"><span style="font-size:11pt;font-family:"Calibri"" class=""></span><span class="">Dear <span class="">Mr. Göran Marby
CEO, ICANN<br class=""><br class=""></span>
</span><div class="gmail-column">
                                </div>
                        </div>
                </font></div><font size="2" class="">
        
We agree with the Anti-Phishing
Working Group’s (APWG) comments dated April 5, 2018 that the anti-abuse
community needs the ICANN Board to pass a Temporary Policy to make an
accreditation plan a reality, directing the participation of the registry
operators and registrars. </font><div class=""><br class="webkit-block-placeholder"></div><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">



</span></font><p class="gmail-normal" style=""><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">We agree that an expert group from
the Anti-Abuse community including APWG, FIRST and M<sup class="">3</sup>AAWG should be
created to facilitate the certification of qualified applicants from the
security field. </span></font></p><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">



</span></font><p class="gmail-normal" style=""><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">We support a short-term plan
discussed on the April 6<sup class="">th</sup> conference call offering tiered WHOIS
access to authorized IP addresses until a more sophisticated mechanism can be a
further developed with details for accredited access. </span></font></p><font size="2" class=""><span style="font-family:arial,helvetica,sans-serif" class="">Sincerely,<br class="">Jerry Upton<br class="">Executive Director<br class="">Messaging, Malware and Mobile
Anti-Abuse Working Group <br class=""><u class=""><span style="color:blue" class="">https:</span></u><a href="http://www.m3aawg.org/" class=""><span style="color:blue" class="">//w</span></a><u class=""><span style="color:blue" class="">ww</span></u><a href="http://www.m3aawg.org/" class=""><span style="color:blue" class="">.m3aawg.org</span></a></span></font><u class=""><span style="color:blue" class=""><span class=""></span></span></u>





<br class=""></div>
<span id="cid:1294EAAA-F02A-4262-BF01-C2F6C0256344"><M3AAWG-ICANN-WHOIS Tiered Access and Accreditation Program- Comments.pdf></span>_______________________________________________<br class="">Accred-Model mailing list<br class=""><a href="mailto:Accred-Model@icann.org" class="">Accred-Model@icann.org</a><br class="">https://mm.icann.org/mailman/listinfo/accred-model<br class=""></div></blockquote></div><br class=""></div></body></html>