<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 6 4 2 2 2 2 2 4;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:"Open Sans";
panose-1:2 11 6 4 2 2 2 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle18
{mso-style-type:personal;
font-family:"Calibri",sans-serif;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.apple-converted-space
{mso-style-name:apple-converted-space;}
span.EmailStyle21
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle23
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal">Hi James,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Please see below response from ICANN Contractual Compliance.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">--------------------------<o:p></o:p></p>
<p class="MsoNormal"><i>The Whois Accuracy Program Specification requires registrars to take certain action regarding both Whois information and corresponding customer account holder contact information. Therefore, registrars may be required to provide account
holder information to ICANN if they are to demonstrate compliance with the specification. Account holder information may also be shared with ICANN via copies of correspondence related to other contractual obligations. Privacy/proxy customer contact information
may also be required to be shared with ICANN when requesting registrars’ demonstration of compliance with the Specification on Privacy and Proxy Registrations, as well as other provisions which require registrars to contact the underlying customer (see list
of examples in the prior communication). This type of information is contained in the data processing overview as complainant/complainant representative information and information underlying public Whois. For these and the prior reasons stated, ICANN Contractual
Compliance requests the EPDP team to amend Recommendation #7 to explicitly include the types of information listed in the Compliance data processing overview rather than being limited to select Whois data elements.<o:p></o:p></i></p>
<p class="MsoNormal">--------------------------<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Best,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Trang<o:p></o:p></p>
<p class="MsoNormal">ICANN Org Liaison<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:12.0pt;color:black">From: </span></b><span style="font-size:12.0pt;color:black">"James M. Bladel" <jbladel@godaddy.com><br>
<b>Date: </b>Monday, February 4, 2019 at 6:45 PM<br>
<b>To: </b>Trang Nguyen <trang.nguyen@icann.org>, Matt Serlin <matt@brandsight.com>, Alan Woods <alan@donuts.email>, Marika Konings <marika.konings@icann.org><br>
<b>Cc: </b>"gnso-epdp-team@icann.org" <gnso-epdp-team@icann.org><br>
<b>Subject: </b>[Ext] Re: [Gnso-epdp-team] ICANN Compliance question in relation to EPDP Recommendation 7<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<p class="MsoNormal"><a name="_MailOriginalBody">Thank you, Trang and everyone….<o:p></o:p></a></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">With regard to the note from Compliance, I’d like to point out that we consistently decline to provide two (Account Holder and underlying Privacy/Proxy customer) of these data points to ICANN
Compliance. I don’t think we’re unique among Registrars on this point. Those fields also aren’t mentioned in the linked document (Data Processing Overview).<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Prior to GDPR, we did provide ICANN with email communications logs (to demonstrate compliance with Registrant communications), and some of those email addresses may have been non-public/not published
in WHOIS. But this ended last May, and the logs we share now contain only truncated addresses.
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Additionally, underlying Privacy/Proxy customer data
<b><i>is</i></b><i> </i>included in our data escrow deposits, but those files aren’t normally accessible to ICANN Compliance absent some business or technical failure.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">With this in mind, it would be fantastic if ICANN Legal / Compliance would clarify their proposed expansion of Recommendation #7 to include these two fields.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Thanks—<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">J.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><b><span style="font-size:12.0pt;color:black">From:
</span></b></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:12.0pt;color:black">Gnso-epdp-team <gnso-epdp-team-bounces@icann.org> on behalf of Trang Nguyen <trang.nguyen@icann.org><br>
<b>Date: </b>Monday, February 4, 2019 at 7:31 PM<br>
<b>To: </b>Matt Serlin <matt@brandsight.com>, Alan Woods <alan@donuts.email>, Marika Konings <marika.konings@icann.org><br>
<b>Cc: </b>"gnso-epdp-team@icann.org" <gnso-epdp-team@icann.org><br>
<b>Subject: </b>Re: [Gnso-epdp-team] ICANN Compliance question in relation to EPDP Recommendation 7</span><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Dear Alan, Matt, EPDP Team,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Please see the below note from ICANN Contractual Compliance.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">**<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">Thank you for your responses related to Recommendation #7. </span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> </span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">Although the majority of the compliance function is accomplished through review of information which would otherwise have appeared in WHOIS prior to implementation
of the Temporary Specification for gTLD Registration Data (and, therefore, the data elements listed in Recommendation #7), there is other information which are necessary to be processed to fulfill the function. Please refer to the types of data listed in the
Contractual Compliance </span></i></span><a href="https://community.icann.org/display/EOTSFGRD/Input+from+ICANN+Org?preview=/90774122/97848455/Summary-Contractual-Compliance-Data-Processing-Activities.pdf"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:purple">data
processing overview</span></i></span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> and note that the information in type (i) of the overview (complainant/complainant representative
contact information) is obtained both directly from the complainant and from contracted parties and their representatives. Obtaining this information from contracted parties and their representatives is essential for ICANN’s confirmation and validation of
complaints, as well as directly required by certain contractual requirements currently in the ICANN agreements/policies. Examples include domain name Account Holder information, underlying privacy/proxy customer information, correspondence between complainant
and contracted party, etc. Therefore, in addition to the data elements listed, the EPDP team may want to consider Recommendation #7 also explicitly including the types of information listed in the Compliance data processing overview, inclusive of domain name
Account Holder information and underlying privacy/proxy customer information; and regardless of (i) whether the information is received from the contact directly, a contracted party or representative and (ii) the medium in which the information is contained
(Whois/RDAP database, correspondence, customer service tickets, chats, call and system logs, control panel, screenshots, other registration records, or similar).</span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> </span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">This topic also appears to relate to the ongoing discussions regarding Recommendations #10 and #11 and the impact that limiting data retention by contracted parties
to only TDRP-relevant information will have on the ability of ICANN Contractual Compliance to gather and review evidence demonstrating a contracted party’s compliance with other contractual requirements (e.g., Abuse report handling, Transfer Policy, ERRP,
EDDP, UDRP, URS and including the requirement to relay communications to relevant email contacts). This evidence will be used by ICANN Contractual Compliance to both facilitate complaint resolution for internet users and close complaints that are out of scope
of the requirements.</span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:black"> </span><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">If the team has any questions regarding ICANN Contractual Compliance’s function and activities, please let us know.</span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> </span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">Thank you. </span></i><o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">**<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Best,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Trang<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">ICANN Org Liaison<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><b><span style="font-size:12.0pt;color:black">From:
</span></b></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:12.0pt;color:black">Gnso-epdp-team <gnso-epdp-team-bounces@icann.org> on behalf of Matt Serlin <matt@brandsight.com><br>
<b>Date: </b>Wednesday, January 30, 2019 at 1:55 PM<br>
<b>To: </b>Alan Woods <alan@donuts.email>, Marika Konings <marika.konings@icann.org><br>
<b>Cc: </b>"gnso-epdp-team@icann.org" <gnso-epdp-team@icann.org><br>
<b>Subject: </b>Re: [Gnso-epdp-team] ICANN Compliance question in relation to EPDP Recommendation 7</span><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Thanks Alan and I just wanted to respond and echo your sentiments below. I have reviewed the latest language for Recommendation 7 and it appears to be fine as written and in-line with our various
discussions on the topic. <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">I appreciate the questions posed by contractual compliance below but do not feel like it’s part of our remit to determine which specific data elements
<i>might</i> be needed by compliance going forward. As Alan point out, compliance would always have the option to ask for relevant data and provide a valid legal justification on a case by case basis.
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Regards,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Matt<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><b><span style="font-size:12.0pt;color:black">From:
</span></b></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:12.0pt;color:black">Gnso-epdp-team <gnso-epdp-team-bounces@icann.org> on behalf of Alan Woods <alan@donuts.email><br>
<b>Date: </b>Tuesday, January 29, 2019 at 3:44 AM<br>
<b>To: </b>Marika Konings <marika.konings@icann.org><br>
<b>Cc: </b>"gnso-epdp-team@icann.org" <gnso-epdp-team@icann.org><br>
<b>Subject: </b>Re: [Gnso-epdp-team] ICANN Compliance question in relation to EPDP Recommendation 7</span><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Dear all. <o:p>
</o:p></span></p>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">This appears to be along the lines and related to the issue which I raised regarding Recommendation 7. In this instance, I believe that the penny may have dropped. In truth, the ePDP team is
working in a vacuum, and we cannot be hefted with the expectation that we shall somehow discern the data which is deemed necessary by the various elements within ICANN Org. As such we need to be told whether any stakeholder, ICANN included, has a justifiable
need for data to be disclosed in furtherance of their function; with regards to this question from ICANN Compliance, it is, and always has been for them, (or any other, so motivated, stakeholder) to present and justify those needs for our consideration. We
have tried to capture, as best as we can, the obvious uses, but to supplement this, the ePDP has sought input and indeed in this instance have specifically asked "</span><a href="https://community.icann.org/display/EOTSFGRD/Input+from+ICANN+Org"><span style="mso-bookmark:_MailOriginalBody"><i><span style="font-size:10.5pt;font-family:"Segoe UI"">How
does ICANN Contractual Compliance use WHOIS data</span></i></span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><em><span style="font-size:10.5pt;font-family:"Segoe UI";color:#172B4D">?". </span></em>ICANN
compliance have responded with their </span><a href="https://community.icann.org/display/EOTSFGRD/Input+from+ICANN+Org?preview=/90774122/97848455/Summary-Contractual-Compliance-Data-Processing-Activities.pdf"><span style="mso-bookmark:_MailOriginalBody">data
processing overview</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody">, and the only element of 'in-scope data' noted therein was 'redacted registrant data' (assuming to mean actual underlying unredacted
data ) for both "compliance tickets" and "audit program" tasks. All other elements noted, from my reading, were either not personal data (e.g. ICANN approved DEA name) or personal data that fell under ICANN's sole controllership (e.g. PII relating to complaints
made to ICANN compliance, or Contacts of DRPs). <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Therefore in response to ICANN Compliance's questions (as I see them):<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">1) <span style="color:red">
"<i>is Recommendation 7 intended to limit all contractual requirements where ICANN is currently permitted to request information and records to only permitting ICANN to request the data elements listed in Recommendation 7’s chart"</i></span><i><span style="color:black"> </span></i>Yes.
Such is the task we have. The workbooks are based on our experience, but mainly on the responses received; taking into account their responses, the ePDP defined and discerned what data elements we felt were reasonable for disclosure for the task of contractual
compliance to request in furtherance of what we would believe to be the Contractual Compliance tasks. Where there is an issue, this should be raised and a small team is currently reviewing the workbooks and perhaps any necessary modifications can still be
achieved. <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">2) "<i><span style="color:red">can the EPDP team please clarify which contractual requirements Recommendation 7 applies to and how they should be changed". </span></i>Vis á vis ICANN Compliance,
and recommendation 7, the ePDP is ONLY concerned with the data that is required to be transferred from CP to ICANN for the purpose of compliance; therefore, we are necessarily limited to that which is allowed in the RAs and RAAs. I'm unsure as to what other
specificity is necessary here. If other data is necessary for ICANN compliance to do their task that they feel is not covered here, then they should provide detail. Additionally, it is not in the scope of the ePDP to suggest contractual amendments, that is
a matter for ICANN and the CPH and we refer to our recommendations 13 & 14. <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">3) "<i><span style="color:red">may ICANN continue to request the information and records specified in the existing contractual requirements, with the understanding that if there is registration
data included in the records requested that it may be limited by the allowing contracted party to only include registration data from the list of data elements in the chart?" </span></i>ICANN may, of course, continue to make disclosure requests for 'additional'
data. If there is a valid legal basis and necessity for such disclosure for any such data element, then there should be no issue in making such a disclosure request to the CPs.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Disclaimer: Again due to time constraints, this is my own response and not necessarily the view of the RYSG. <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">Alan<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<table class="MsoNormalTable" border="0" cellpadding="0">
<tbody>
<tr>
<td style="padding:0in 5.25pt 0in 0in">
<p class="MsoNormal" style="mso-margin-top-alt:7.5pt;margin-right:0in;margin-bottom:7.5pt;margin-left:0in">
<span style="mso-bookmark:_MailOriginalBody"></span><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__donuts.domains_&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=NghSLFqweTwAOFMJpbYA3LcVJ0Vvvw6-wxrKoS5l6VY&m=CJEIF8gbxDZ8bcJ7BgUUSO4xZtjAZ3M2u9LEc0ljfEc&s=XB1UrEwAOgIsPvs2jCm-M1uXCBxoLpCY_IWwkui-zfk&e=" target="_blank"><span style="mso-bookmark:_MailOriginalBody"><span style="border:solid windowtext 1.0pt;padding:0in;text-decoration:none"><img border="0" width="75" height="75" style="width:.7812in;height:.7812in" id="_x0000_i1029" src="cid:~WRD000.jpg" alt="Image removed by sender. Donuts Inc."></span>[donuts.domains]</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><o:p></o:p></span></p>
</td>
<span style="mso-bookmark:_MailOriginalBody"></span>
<td style="padding:0in 5.25pt 0in 0in">
<div>
<p class="MsoNormal" style="mso-margin-top-alt:7.5pt;margin-right:0in;margin-bottom:7.5pt;margin-left:0in;line-height:12.75pt">
<span style="mso-bookmark:_MailOriginalBody"><b><span style="font-size:9.0pt;font-family:"Arial",sans-serif;color:#333333">Alan Woods</span></b><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal" style="mso-margin-top-alt:7.5pt;margin-right:0in;margin-bottom:7.5pt;margin-left:0in">
<span style="mso-bookmark:_MailOriginalBody"><span style="font-size:9.0pt;font-family:"Arial",sans-serif;color:#333333">Senior Compliance & Policy Manager, Donuts Inc.</span>
<o:p></o:p></span></p>
<span style="mso-bookmark:_MailOriginalBody"></span>
<div style="margin-top:7.5pt;margin-bottom:7.5pt">
<div class="MsoNormal" align="center" style="text-align:center"><span style="mso-bookmark:_MailOriginalBody">
<hr size="0" width="98%" align="center">
</span></div>
<span style="mso-bookmark:_MailOriginalBody"></span></div>
<p class="MsoNormal" style="mso-margin-top-alt:7.5pt;margin-right:0in;margin-bottom:7.5pt;margin-left:0in">
<span style="mso-bookmark:_MailOriginalBody"><span style="font-size:8.5pt;font-family:"Arial",sans-serif;color:#333333">The Victorians, </span><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal" style="mso-margin-top-alt:7.5pt;margin-right:0in;margin-bottom:7.5pt;margin-left:0in">
<span style="mso-bookmark:_MailOriginalBody"><span style="font-size:8.5pt;font-family:"Arial",sans-serif;color:#333333">15-18 Earlsfort Terrace<br>
Dublin 2, County Dublin</span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:9.0pt;font-family:"Open Sans";color:#D6D6D6"><br>
</span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:8.5pt;font-family:"Arial",sans-serif;color:#333333">Ireland</span><br>
<br>
</span><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__www.facebook.com_donutstlds&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=NghSLFqweTwAOFMJpbYA3LcVJ0Vvvw6-wxrKoS5l6VY&m=CJEIF8gbxDZ8bcJ7BgUUSO4xZtjAZ3M2u9LEc0ljfEc&s=5Sly1vWk7Ik3Gx6Hqo1F8Ba92WArc93UVayTjCZCVWQ&e=" target="_blank"><span style="mso-bookmark:_MailOriginalBody"><span style="border:solid windowtext 1.0pt;padding:0in;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1027" src="cid:~WRD000.jpg" alt="Image removed by sender. http://storage.googleapis.com/signaturesatori/icons/facebook.png"></span>[facebook.com]</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"> </span><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__twitter.com_DonutsInc&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=NghSLFqweTwAOFMJpbYA3LcVJ0Vvvw6-wxrKoS5l6VY&m=CJEIF8gbxDZ8bcJ7BgUUSO4xZtjAZ3M2u9LEc0ljfEc&s=kOQAPbmNZkGB-qjzumvjHaFy32gbaY0sRfSNkP5fFRE&e=" target="_blank"><span style="mso-bookmark:_MailOriginalBody"><span style="border:solid windowtext 1.0pt;padding:0in;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1026" src="cid:~WRD000.jpg" alt="Image removed by sender. http://storage.googleapis.com/signaturesatori/icons/twitter.png"></span>
[twitter.com]</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"> </span><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__www.linkedin.com_company_donuts-2Dinc&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=NghSLFqweTwAOFMJpbYA3LcVJ0Vvvw6-wxrKoS5l6VY&m=CJEIF8gbxDZ8bcJ7BgUUSO4xZtjAZ3M2u9LEc0ljfEc&s=H_f_4PvMBoYDWcE-OLIdKh-9xFtKARPzW_XwjTVgZ_4&e=" target="_blank"><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:10.5pt;border:solid windowtext 1.0pt;padding:0in;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1025" src="cid:~WRD000.jpg" alt="Image removed by sender. http://storage.googleapis.com/signaturesatori/icons/linkedin.png"></span>
[linkedin.com]</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><o:p></o:p></span></p>
</div>
</td>
<span style="mso-bookmark:_MailOriginalBody"></span>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:12.0pt;font-family:"Cambria",serif">Please NOTE: This electronic message, including any attachments, may include privileged, confidential and/or inside information owned
by Donuts Inc. . Any distribution or use of this communication by anyone other than the intended recipient(s) is strictly prohibited and may be unlawful. If you are not the intended recipient, please notify the sender by replying to this message and then
delete it from your system. Thank you.</span><o:p></o:p></span></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
</div>
</div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<div>
<div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">On Fri, Jan 25, 2019 at 11:08 PM Marika Konings <</span><a href="mailto:marika.konings@icann.org"><span style="mso-bookmark:_MailOriginalBody">marika.konings@icann.org</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody">>
wrote:<o:p></o:p></span></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-top:5.0pt;margin-right:0in;margin-bottom:5.0pt">
<div>
<div>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody">Dear EPDP Team,<o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody">Please find hereby a question from ICANN Contractual Compliance in relation to recommendation #7:<o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">Hi Kurt/EPDP Team,</span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> </span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">There are multiple contractual requirements which require contracted parties to provide ICANN data and
records which may include registration data (including, but not limited to 2013 RAA Sections 3.4.3, 3.15 and 3.18; and new gTLD Base RA Section 2.11 and Specification 11, Section 3b). ICANN requires such documentation to facilitate its review of compliance
with other provisions in the ICANN agreements and policies. With this understanding, can the EPDP team please clarify which contractual requirements Recommendation 7 applies to and how they should be changed? Specifically, is Recommendation 7 intended to limit
all contractual requirements where ICANN is currently permitted to request information and records to only permitting ICANN to request the data elements listed in Recommendation 7’s chart? Or may ICANN continue to request the information and records specified
in the existing contractual requirements, with the understanding that if there is registration data included in the records requested that it may be limited by the allowing contracted party to only include registration data from the list of data elements in
the chart? </span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black"> </span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">Thank you,</span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"><i><span style="color:black">ICANN Contractual Compliance</span></i><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody">Best regards,<o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody">Caitlin, Berry and Marika<o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">_______________________________________________<br>
Gnso-epdp-team mailing list<br>
</span><a href="mailto:Gnso-epdp-team@icann.org" target="_blank"><span style="mso-bookmark:_MailOriginalBody">Gnso-epdp-team@icann.org</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><br>
</span><a href="https://mm.icann.org/mailman/listinfo/gnso-epdp-team" target="_blank"><span style="mso-bookmark:_MailOriginalBody">https://mm.icann.org/mailman/listinfo/gnso-epdp-team</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"></span><o:p></o:p></p>
</blockquote>
</div>
</div>
</body>
</html>