<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div>Someone get a third party legal opinion on whether thin data falls under privacy laws. It is pointless for us to debate what needs to be done when operating under divergent understands of what data the law applies to. </div><div id="AppleMailSignature"><br></div><div id="AppleMailSignature">If thin data actually does fall under GDPR et al then fine. I think the consensus here is that it doesn't which makes compliance a non-issue. But let's actually get the answer of whether thin data applies or not. <br><br>Sent from my iPhone</div><div><br>On May 31, 2017, at 14:01, nathalie coupet <<a href="mailto:nathaliecoupet@yahoo.com">nathaliecoupet@yahoo.com</a>> wrote:<br><br></div><blockquote type="cite"><div><div style="color:#000; background-color:#fff; font-family:Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:13px"><div id="yui_3_16_0_ym19_1_1496232851554_414957" dir="ltr"><span id="yui_3_16_0_ym19_1_1496232851554_414982">Benefits: making sure ICANN is in compliance with privacy laws. Isn't it the purpose of this WG? Issues pertaining to cost and protection of IP address I will leave other to answer. But it seems to me that pseudonimization, randomization and encryption could be candidate solutions. </span></div><div id="yui_3_16_0_ym19_1_1496232851554_414955"><br></div><div></div><div id="yui_3_16_0_ym19_1_1496232851554_414953"> </div><div class="signature" id="yui_3_16_0_ym19_1_1496232851554_414926">Nathalie </div> <div class="qtdSeparateBR"><br><br></div><div class="yahoo_quoted" style="display: block;"> <div style="font-family: Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 13px;"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div dir="ltr"><font size="2" face="Arial"> On Wednesday, May 31, 2017 2:48 PM, John Bambenek via gnso-rds-pdp-wg <<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>> wrote:<br></font></div> <br><br> <div class="y_msg_container"><div id="yiv7219839472"><div>
<div>This applies a web interface... would an API be exposed for those
of us who use the command-line? Would there be a central point of
query or would a consumer have to google it? Who pays for
constructing such a system and what is the commensurate return on
the investment for them paying to make all this? If you are asking
for this information, surely you are also getting source data (for
instance consumer IP, which can be PII), how will all that be
protected?</div>
<div>There is a whole lot of complexity, in general, and costs for
registries/registrars, specifically. What problem does this solve
that it makes sense to engineer a solution for it?<br clear="none">
</div>
<br clear="none">
<div class="yiv7219839472yqt6697870565" id="yiv7219839472yqtfd98173"><div class="yiv7219839472moz-cite-prefix">On 5/31/2017 1:40 PM, nathalie coupet
via gnso-rds-pdp-wg wrote:<br clear="none">
</div>
<blockquote type="cite">
</blockquote></div></div><div class="yiv7219839472yqt6697870565" id="yiv7219839472yqtfd07002"><div><div>Hi Chuck,</div>
<div id="yiv7219839472AppleMailSignature"><br clear="none">
</div>
<div id="yiv7219839472AppleMailSignature">My position was and is to secure
unauthenticated access to thin data for all. </div>
<div id="yiv7219839472AppleMailSignature">I envisioned access to RDS through 3
chock points to weed out bad actors as much as possible: </div>
<div id="yiv7219839472AppleMailSignature">An end-user would need to check the
first box for authenticated/unauthenticated access, then another
box for consumer and a third would be to select the purpose or a
default purpose would be selected for him (maybe no purpose
could also be possible). </div>
<div id="yiv7219839472AppleMailSignature">Consumers don't need all the thin
data to be published for their simple queries, since - in my
mind - they want to make sure the website is legitimate or they
want to identify the author in case of abuse (such as
defamation, abuse or threats). </div>
<div id="yiv7219839472AppleMailSignature">If the principle of proportionality
doesn't apply to most other cases, that's fine. But I think it
does apply for simple consumer queries. </div>
<div id="yiv7219839472AppleMailSignature">This is an interesting debate, but I
never thought it would lead to people actually proposing to drop
vital data for the functioning of the Internet.</div>
<div id="yiv7219839472AppleMailSignature">I had in mind the other principle
that you do not volunteer data when it is not required. It
should be useful. Not because it is PPI, but out of caution.</div>
<div id="yiv7219839472AppleMailSignature"><br clear="none">
</div>
<div id="yiv7219839472AppleMailSignature"><br clear="none">
</div>
<div id="yiv7219839472AppleMailSignature"><br clear="none">
Sent from my iPhone</div>
<div><br clear="none">
On May 31, 2017, at 2:21 PM, Gomes, Chuck <<a rel="nofollow" shape="rect" ymailto="mailto:cgomes@verisign.com" target="_blank" href="mailto:cgomes@verisign.com">cgomes@verisign.com</a>>
wrote:<br clear="none">
<br clear="none">
</div>
<blockquote type="cite">
<div>
</div></blockquote></div><style>#yiv7219839472 #yiv7219839472 --
_filtered #yiv7219839472 {panose-1:2 4 5 3 5 4 6 3 2 4;}
_filtered #yiv7219839472 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}
#yiv7219839472
#yiv7219839472 p.yiv7219839472MsoNormal, #yiv7219839472 li.yiv7219839472MsoNormal, #yiv7219839472 div.yiv7219839472MsoNormal
{margin:0in;margin-bottom:.0001pt;font-size:11.0pt;}
#yiv7219839472 a:link, #yiv7219839472 span.yiv7219839472MsoHyperlink
{color:#0563C1;text-decoration:underline;}
#yiv7219839472 a:visited, #yiv7219839472 span.yiv7219839472MsoHyperlinkFollowed
{color:#954F72;text-decoration:underline;}
#yiv7219839472 span.yiv7219839472EmailStyle17
{color:windowtext;}
#yiv7219839472 .yiv7219839472MsoChpDefault
{}
_filtered #yiv7219839472 {margin:1.0in 1.0in 1.0in 1.0in;}
#yiv7219839472 div.yiv7219839472WordSection1
{}
#yiv7219839472 </style><div><div class="yiv7219839472WordSection1">
<div class="yiv7219839472MsoNormal">Nathalie,</div>
<div class="yiv7219839472MsoNormal"> </div>
<div class="yiv7219839472MsoNormal">Thank you for your suggestion that the
principle of proportionality be added. That has generated
a very lively discussion.</div>
<div class="yiv7219839472MsoNormal"> </div>
<div class="yiv7219839472MsoNormal">As I am sure you have seen, a lot of WG
members have stated that they do not believe that the
principle of proportionality applies to thin data and have
provided what I think is pretty good rationale in support
of their position. As the originator of the suggestion,
do you still maintain that the principle applies to thin
data? If so, how would you counter the arguments that
have been made to the contrary?</div>
<div class="yiv7219839472MsoNormal"> </div>
<div class="yiv7219839472MsoNormal">All – If anyone else thinks that the
principle of proportionality applies to think data, please
speak up and provide your counters to the arguments that
have been made to the contrary.</div>
<div class="yiv7219839472MsoNormal"> </div>
<div class="yiv7219839472MsoNormal">Chuck</div>
</div>
<br clear="none">
<fieldset class="yiv7219839472mimeAttachmentHeader"></fieldset>
<br clear="none">
<pre>_______________________________________________
gnso-rds-pdp-wg mailing list
<a rel="nofollow" shape="rect" class="yiv7219839472moz-txt-link-abbreviated" ymailto="mailto:gnso-rds-pdp-wg@icann.org" target="_blank" href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>
<a rel="nofollow" shape="rect" class="yiv7219839472moz-txt-link-freetext" target="_blank" href="https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg">https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg</a></pre>
<br clear="none">
</div></div></div><div class="yqt6697870565" id="yqtfd49125">_______________________________________________<br clear="none">gnso-rds-pdp-wg mailing list<br clear="none"><a shape="rect" ymailto="mailto:gnso-rds-pdp-wg@icann.org" href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a><br clear="none"><a shape="rect" href="https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg" target="_blank">https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg</a></div><br><br></div> </div> </div> </div></div></div></blockquote></body></html>