[Gnso-epdp-team] Proposed Agenda EPDP Team meeting #5 - Thursday 6 June at
vgreimann at key-systems.net
Tue Jun 4 16:19:20 UTC 2019
In response to the attached document:
A) Proposal for the user group " registrants " be removed:
a) Registrants generally do not use Whois to access their data, they
access it through their service portal with their service provider.
b) It is not necessary for performance of contract as: see a)
c) Whois and RDAP do not provide data update functionality.
B) Proposal for the user group " end users " to be removed:
a) End users do not have a sufficient legitimate interest that outweighs
the interest of the data subject.
b) It is impossible to differentiate commercial and non-commercial use,
which could be the only conceivable justification for the end user to
request that data and even that is highly contestable.
c) End Users can access the public part of the registration record for
listed purpose a). While purpose b) is benficial, there is no
corresponding legal right that outweighs the interest of the data subject.
C) Proposal to break up User group "EU Law Enforcement into law
enforcement of applicable jurisdiction" and "law enforcement of other
jurisdiction" also add other similarly legally endowed entities like
agencies with enforcement rights that are not strictly LEA.
a) EU jurisdiction of LEA has no significance to Non-EU-based CPs.
b) Even within EU, LEA jurisdiction stops at country borders unless
special treaty or agreement exists.
D) Proposal to change purposes of all LEA user groups to:
"Investigation or enforcement action within legal remit and
jurisdiction, for example investigation of cybercrime or DNS Abuse"
a) Purposes for all LEA actors should be aligned
b) Purpose of current EU LEA user group does not require actual criminal
investigation, therefore is too broad.
E) Proposal to changes of purposes in IP user group:
1) First bullet: Change "parties using a domain name" to registered name
holders or their representatives"
2) Second bullet: Change "registration data" to "domain name
registration", remove "and "respond to fraudulent use of legitimate data"
3) Remove third bullet
1) Users of a domain name can be anyone, not just the registrant
2) Fraudulent use of legitimate data would only be detectable if data is
already available. How would such a review even get triggered if data is
3) Hard to see how this purpose outweighs registered name holder rights
4) IP User group only have legitimate interest in registration data when
their rights are violated.
Remove user group: Commercial:
Reason: Wanting to buy a domain name is not a legitimate purpose that
outweighs the rights of the registered name holders. If they wanted to
sell it, they would open other venues. If not, purchase requests amount
to unsolicited commercial mails that most forwarding services
legitimately filter out for their customers.
Further thoughts: Academic Researcher and Security Researcher would need
much more refining or everyone will apply as such.
Am 04.06.2019 um 17:00 schrieb Marika Konings:
> Dear EPDP Team,
> Please see below the proposed agenda for Thursday’s EPDP Team meeting.
> Due to unforeseen circumstances, Steve Crocker will not be able to
> attend so his presentation to the EPDP Team will be rescheduled for
> another time. Please review the attached document prior to the meeting
> in preparation for agenda item 6.
> Best regards,
> Caitlin, Berry and Marika
> *EPDP Phase 2 - Meeting #5 *
> *Proposed Agenda***
> Thursday, 6 June 2019 at 14.00 UTC
> 1.Roll Call & SOI Updates (5 minutes)
> 2.Confirmation of agenda (Chair)
> 3.Welcome and housekeeping issues (Chair) (10 minutes)
> * SG/C/SO/AC input requests have been sent – deadline for input 21 June
> * Working definitions
> * Legal advisory group
> 4.Review of clarifying questions, concerns and/or background
> information submitted in relation to GNSO Council -Board consultation
> in relation to Board action on Phase 1 recommendations - see
> (15 minutes)
> 1. Overview of clarifying questions, concerns and/or background
> information put forward
> 2. Discuss which of these have support of EPDP Team to be
> submitted to GNSO Council
> 3. Confirm next steps
> 5.SSAD Priority 1 worksheet (15 minutes) (Marika)
> 1. Overview of input received – see
> 2. Further comments / questions
> 3. Confirm next steps for finalization of priority 1 worksheet
> 6.SSAD – Topic c Topic: Define user groups, criteria and purposes /
> lawful basis per user group (Marika) (60 minutes)
> 1. Review template developed by staff support team (see attached)
> 2. EPDP Team input
> 3. Confirm next steps
> 7.Any other business
> 1. Priority2 small team meetings update
> Reminder - Call schedule remaining priority 2 worksheets:
> ·*Wednesday, 12 June - 20:00 – 21.30 UTC *
> City field redaction
> Data Retention
> ·*Monday 17 June – 13:00 – 14:30 UTC*
> Potential OCTO Purpose
> Feasibility of unique contacts to have a uniform anonymized email address
> ·*TBC (post ICANN65)*
> Accuracy and WHOIS ARS
> 8.Wrap and confirm next meeting to be scheduled for Thursday, 13 June
> at 14.00 UTC (5 minutes)
> 1. Confirm action items
> 2. Confirm questions for ICANN Org, if any
> */Marika Konings/*
> /Vice President, Policy Development Support – GNSO, Internet
> Corporation for Assigned Names and Numbers (ICANN) /
> /Email: marika.konings at icann.org <mailto:marika.konings at icann.org> /
> /Follow the GNSO via Twitter @ICANN_GNSO/
> /Find out more about the GNSO by taking our interactive courses
> <https://urldefense.proofpoint.com/v2/url?u=http-3A__learn.icann.org_courses_gnso&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=7_PQAir-9nJQ2uB2cWiTDDDo5Hfy5HL9rSTe65iXLVM&m=5DXgId95wrCsHi--pxTiJD7bMB9r-T5ytCn7od3CF2Q&s=Cg5uQf0yAfw-qlFZ0WNBfsLmmtBNUiH0SuI6Vg-gXBQ&e=> and
> visiting the GNSO Newcomer pages
> Gnso-epdp-team mailing list
> Gnso-epdp-team at icann.org
Volker A. Greimann
General Counsel and Policy Manager
T: +49 6894 9396901
M: +49 6894 9396851
F: +49 6894 9396851
Key-Systems GmbH is a company registered at the local court of
Saarbruecken, Germany with the registration no. HR B 18835
CEO: Alexander Siffrin
Part of the CentralNic Group PLC (LON: CNIC) a company registered in
England and Wales with company number 8576358.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gnso-epdp-team