[Gnso-epdp-legal] Notes and action items - EPDP Phase 2 Legal Committee Meeting #3
Tatiana Tropina
tatiana.tropina at gmail.com
Fri Aug 9 17:19:54 UTC 2019
Hi Margie,
a question - is this the case we discussed on the call yesterday? I just
wonder if there is a need to reach a general agreement within the bigger
EPDP team on this use case before we forward the question to legal -- there
were some questions about the use case yesterday and SSAC said they would
reply. I think there is a need to wait until at least the issues with the
case are resolved before sending the question to legal? - but would listen
to what others say.
But as we have 1,5 weeks before the next meeting, maybe this could be
sorted.
Wish you and all others a great weekend,
Cheers,
Tanya
On Fri, 9 Aug 2019 at 18:55, Margie Milam <margiemilam at fb.com> wrote:
> Hi-
>
> Following up on the action items from Tuesday’s call - I added the use
> case we discussed on yesterday’s call to Question 11.
>
>
>
> *Updated Question 11*: Can legal counsel be consulted to determine
> whether GDPR prevents fast automated, and non-rate limited responses (as
> described in SSAC 101) to nonpublic WHOIS data with regards to the SSAC
> use case (Overarching Purpose: Crime and abuse investigation by non-law
> enforcement parties) for properly credentialed security practitioners (as
> defined in SSAC 101), who have agreed on appropriate safeguards? If such
> access is not prohibited, can counsel provide examples of safeguards (such
> as pseudonymization) that should be considered? (BC)
>
>
>
> All the best,
>
>
>
> Margie
>
>
>
> *From: *Gnso-epdp-legal <gnso-epdp-legal-bounces at icann.org> on behalf of
> Caitlin Tubergen <caitlin.tubergen at icann.org>
> *Date: *Tuesday, August 6, 2019 at 11:07 AM
> *To: *"gnso-epdp-legal at icann.org" <gnso-epdp-legal at icann.org>
> *Subject: *[Gnso-epdp-legal] Notes and action items - EPDP Phase 2 Legal
> Committee Meeting #3
>
>
>
> *Updated Question 11*: Can legal counsel be consulted to determine
> whether GDPR prevents fast automated, and non-rate limited responses (as
> described in SSAC 101) to nonpublic WHOIS data for properly credentialed
> security practitioners (as defined in SSAC 101), who have agreed on
> appropriate safeguards? If such access is not prohibited, can counsel
> provide examples of safeguards (such as pseudonymization) that should be
> considered? (BC)
>
>
> _______________________________________________
> Gnso-epdp-legal mailing list
> Gnso-epdp-legal at icann.org
> https://mm.icann.org/mailman/listinfo/gnso-epdp-legal
> _______________________________________________
> By submitting your personal data, you consent to the processing of your
> personal data for purposes of subscribing to this mailing list accordance
> with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and
> the website Terms of Service (https://www.icann.org/privacy/tos). You can
> visit the Mailman link above to change your membership status or
> configuration, including unsubscribing, setting digest-style delivery or
> disabling delivery altogether (e.g., for a vacation), and so on.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/gnso-epdp-legal/attachments/20190809/c1cf3a00/attachment-0001.html>
More information about the Gnso-epdp-legal
mailing list