[gnso-rds-pdp-wg] icann59johannesburg2017 transcript (my notes)
Denny Watson
watson at spamhaus.org
Fri Jun 30 17:41:20 UTC 2017
Slide 21;
> Would it help to deliberate first on key concepts for
> Legal Person data?
Yes, I believe that it would.
First in the E.U., it appears to me that there exists a _requirement_
that Legal Persons publish contact data! Including things like
organizational name, address, phone number, and tax id. I see no reason
to exclude these elements from the minimum public data set (MPDS).
For other jurisdictions (and some edge cases in the E.U.) the Legal
Person may want to mask data, this should be allowed. But this
shouldn't be the default for Legal Persons.
For Natural Persons, I see no reason why they shouldn't be allowed to
publish these elements (having given informed consent) if they so wish.
Additionally, I believe that country, state, and city should also be
included in the MPDS as to better understand what legal jurisdiction the
domain owner resides in. This is not data the identifies an individual,
or even a small set of individuals. I believe that this position is in
descent of the EWG report... I'd looked at it some time ago, and if I
recall correctly it wanted to mask country.
The GDPR is interesting, but only as far requirements for registrars.
Privacy-proxies exist today. The registrars should be providing them
for free, and allow (also for free) their users to update their contact
data to use a privacy-proxy at any time.
--
Denny Watson
Sr. Investigator
The Spamhaus Project
More information about the gnso-rds-pdp-wg
mailing list