Recent Posts
- Americans and ICANNers avoid Kigali in droves
- RDRS stats improve a little in June
- Unstoppable Domains goes down after domain hijack
- Four more gTLDs in emergency measures
- New gTLDs and ccTLDs drive domain universe growth
- Eight interesting recent dot-brand registrations
- .me premium sales down
- Pride fails to reverse gay domains decline
- Unstoppable announces another new gTLD bid
- Blockchain naming firm gets ICANN accreditation
- ICANN takes over gTLD after Whois failures
- Verisign: would-be .com contract killers are “wrong”
- Five gTLDs at risk as registry goes AWOL
- Groups make flawed case that .com is a cartel
- RDRS usage hits all-time low
- A dot-brand so unloved they killed it twice
- PorkBun hits two million domain milestone
- Crawford returns to industry to head up Com Laude
- ICANN financial data dump a damp squib?
- Unstoppable plotting manga-themed gTLDs
- Governments call for new gTLD auctions ban
- ICANN names new CEO, and it isn’t Costerton
- ICANN: We will NOT police content
- More sticker shock as new gTLD fees could top $300,000
- ICANN slashes staff and domain prices could rise
- Secret new gTLD application revealed
- WhatsApp now linkifying new gTLDs, but…
- Outrage over ICANN’s new gTLD fees
- Barrett gets second term on ICANN board
- DotMusic delays gTLD launch again
- .tm prices to skyrocket next week
- Bitcoin gTLD gets launch dates
- First metaverse gTLD is announced
- Alibaba off the naughty step
- ICANN to kill auction fund bylaws change
- The people have spoken on RDRS and they said “Meh”
- ICANN restarts work on controversial Whois privacy rules
- GNSO mulls lawyering up over auction fund dispute
- Jury still out on ICANN’s content policing powers
- It now takes TWO WEEKS to get a Whois record with RDRS
- Travel expenses push ICANN into the red again
- ICANN preparing for ONE HUNDRED registry back-ends
- DNS Abuse Institute changes name
- A new way to game the new gTLD program
- .home, .mail and .corp could get unbanned
- Unstoppable to apply for Women in Tech gTLD
- Bob Parsons publishes autobiography
- GoDaddy getting a free pass from porn jail?
- Correction: Sinha’s seat is safe
- Chinese domains plummet again in 2023
- GoDaddy price increases lead to revenue growth
- D3 announces seventh blockchain gTLD client
- Taylor Swift applies for her .post domain
- .ad domains to go global soon
- Single-letter .com case back in court
- ICANN to slash costs as Verisign’s magic money tree dries up
- Community revolts over ICANN’s auction proceeds power grab
- Two seats up for grabs on Nominet board
- War takes steep toll on .ua domains
- .de worst TLD for CSAM — report
- .com still shrinking because of China
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- .my domains to be sold globally next month
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
Another failing gTLD not paying its “onerous” dues
ICANN has sent out its first public contract breach notice of the year, and it’s going to another new gTLD registry that’s allegedly not paying its fees.
The dishonor goes to Who’s Who Registry, manager of the spectacularly failing gTLD .whoswho.
According to ICANN, the registry hasn’t paid its registry fees for several months and hasn’t been responding to private compliance outreach.
The company has a month to pay up or risk suspension or termination.
CEO John McCabe actually wrote to ICANN (pdf) the day after one of its requests for payment in November, complaining that its fees were too “onerous” and should be reduced for registries that are “good actors” with no abuse.
ICANN’s annual $25,000 fee is “the single largest item in .whoswho’s budget”, McCabe wrote, “the weight of which suppresses development of the gTLD”.
Whether ICANN fees are to blame is debatable, but all the data shows that .whoswho, which has been in general availability for almost four years, has failed hard.
It had 100 domains under management at the last count, once you ignore all the domains owned by the registry itself. This probably explains the lack of abuse.
Well over half of these names were registered through brand-protection registrars. ICANN statistics show 44 names were registered during its sunrise period.
A Google search suggests that only four people are currently using .whoswho for its intended purpose and one of those is McCabe himself.
The original intent of .whoswho was to mimic the once-popular Who’s Who? books, which contain brief biographies of notable public figures.
The gTLD was originally restricted to registrants who had actually appeared in one of these books, but the registry scrapped that rule and slashed prices from $70 to $20 a year in 2016 after poor uptake.
I’d venture the opinion that, in a world of LinkedIn and Wikipedia, Who’s Who? is an idea that might have had its day.
ICANN probing Donuts and Tucows over anti-Jewish web site
ICANN is investigating Tucows and Donuts over a web site that hosts antisemitic, white supremacist content.
CEO Goran Marby said in a letter published this week that he has referred a complaint about the web site judas.watch to ICANN’s Compliance department.
The web site in question says it is dedicated to documenting “anti-White traitors, agitators and subversives & highlighting Jewish influence.” It appears to be half database, half blog.
Its method of “highlighting Jewish influence” is possibly the most disturbing part — the site tags people it believes are Jewish with a yellow Star of David, mimicking the way the Nazis identified Jews during the Holocaust.
The site is quite liberal in how it applies these stars, going so far as to label UK Labour Party leader Jeremy Corbyn, who has been fighting off his own allegations of antisemitism for years, as Jewish.
Over 1,600 people and organizations are currently listed. Posts there also seem keen to highlight its subjects’ sexual orientation.
As far as I can tell, there are no direct calls to violence on the site, and the level of what you might call “hate speech” is pretty mild. It publishes the social media handles of its subjects, but I could not find any physical addresses or phone numbers.
The complaint to ICANN (pdf) came from WerteInitiative (“Values Initiative”), which appears to be a small, relatively new Jewish civil society group based in Germany.
WerteInitiative said judas.watch “poses a direct threat to the named persons with unforeseeable consequences for them, and especially so for the identified Jews”.
“We want this site banned from the Internet and ask for your help in doing so: can you help us to find out who behind this page is, so we can get it banned in Germany?” the letter concludes.
The domain has been behind Whois privacy since it was registered in 2014, so the registrant’s name was not public even prior to GDPR.
Marby, in response (pdf), says the complaint “raises a serious issue”.
While he goes to some lengths to explain that ICANN does not have the authority, contractual or otherwise, to demand the suspension of any domain name, he said he has nevertheless referred the complaint to Compliance.
Compliance has already reached out to the organization for more information, Marby said.
He also encouraged WerteInitiative to talk to .watch registry Donuts and judas.watch registrar eNom (owned by Tucows), as well as the hosting company, to see if that could help resolve the issue.
While ICANN is always adamant that it does not venture into content regulation, it strikes me that this exchange shows just what a tightrope it walks.
It comes against the backdrop of controversy over the suspension by GoDaddy of the domain Gab.com, a Twitter clone largely hosting far-right voices that have been banned from other social media platforms.
Chinese registrars on the decline
Having been on a growth trajectory for some years, the number of ICANN-accredited registrars based in China appears to be on the decline.
According to my records, so far this year 26 registrar contracts have been terminated, voluntarily or otherwise, 11 of which were Chinese. I’m excluding the mass drop of Pheenix accreditations from these numbers.
The country with the next-highest number of terminations was the USA, with three.
ICANN has terminated nine registrars for breaches of the RAA this year, six of which were Chinese.
All the Chinese notices included non-payment of ICANN fees as a reason for termination, though it appears that most of them had a negligible number of gTLD domains under management.
ICANN Compliance tells me there’s no particular focus of China at the moment, this is all a result of regular day-to-day enforcement.
ICANN has sent breach notices to 28 companies this year, seven of which were to Chinese registrars.
Meanwhile, 22.cn has moved 13 of its accredited shell registrars to Hong Kong. Another registrar moved its base from China to Australia.
Seven Chinese registrars have been newly accredited this year,
Net, this has all reduced the number of accredited registrars based in China to 91.
The country still has the second-most registrars ahead of the US, with its almost 2,000 registrars, and a clear 31 registrars ahead of third-place India.
.tel’s second-biggest registrar gets canned
A Chinese registrar that focused exclusively on selling .tel domain names has been shut down by ICANN.
Tong Ji Ming Lian (Beijing) Technology Corporation Ltd, which did business as Trename, had its registrar contract terminated last week.
ICANN claims the company had failed to pay its accreditation fees and failed to escrow its registration data.
The organization had been sending breach notices since June, but got no responses. Trename’s web site domain currently resolves to a web server error, for me at least.
Trename is a rare example of a single-TLD registrar, accredited only to sell .tel domains. It didn’t even sell .com.
It is Telnames’ second-largest registrar after Name.com, accounting for about 6,000 names at the last count. At its peak, it had about 55,000.
Its share seems to be primarily as a result of a deal the registry made with a Chinese e-commerce company way back in 2011.
I’m a bit fuzzy on the details of that deal, but it saw Trename add 50,000 .tel names pretty much all at once.
Back then, .tel still had its original business model of hosting all the domains it sold and publishing web sites containing the registrant’s contact information.
Since June 2017, .tel has been available as a general, anything-goes gTLD, after ICANN agreed to liberalize its contract.
That liberalization doesn’t seem to have done much to stave off .tel’s general decline in numbers, however. It currently stands at about 75,000 names, from an early 2011 peak of over 305,000.
ICANN told Trename that its contract will end September 19, and that it’s looking for another registrar to take over its domains.
With escrow apparently an issue, it may not be a smooth transition.
How a single Whois complaint got this registrar shitcanned
A British registrar has had its ICANN contract terminated after a lengthy, unprecedented fight instigated by a single complaint about the accuracy of a single domain’s Whois.
Astutium, based in London and with about 5,000 gTLD domains under management, finally lost its right to sell gTLD domains last week, after an angry battle with ICANN Compliance, the Ombudsman, and the board of directors.
While the company is small, it does not appear to be of the shady, fly-by-night type sometimes terminated by ICANN. Director Rob Golding has been an active face at ICANN for many years and Astutium has, with ICANN approval, taken over portfolios from other de-accredited registrars in the past.
Nevertheless, its Registrar Accreditation Agreement has been torn up, as a result of a complaint about the Whois for the domain name tomzink.com last December.
Golding told DI today that he considers the process that led to his de-accreditation broken and that he’s considering legal action.
The owner of tomzink.com and associated web site appears to be a Los Angeles-based music producer called Tom Zink. The web site seems legit and there’s no suggestion anywhere that Zink has done anything wrong, other than possibly filling out an incomplete Whois record.
The person who complained about the Whois accuracy, whose identity has been redacted from the public record and whose motives are still unclear, had claimed that the domain’s Whois record lacked a phone and fax number and that the registrant and admin contacts contained “made-up” names.
Historical Whois records archived by DomainTools show that in October last year the registrant name was “NA NA”.
The registrant organization was “Astutium Limited” and the registrant email was an @astutium.com address. The registrant mailing address was in Long Beach, California (the same as Zink). There were no phone/fax numbers in the record.
Golding told DI that some of these details were present when the domain was transferred in from another registrar. Others seem to have been added because the registrar was looking after the name on behalf of its client.
The admin and technical records both contained Astutium’s full contact information.
Following the December complaint, the record was cleaned up to remove all references to Astutium and replace them with Zink’s contact data. Judging by DomainTools’ records, this seems to have happened the same day as ICANN forwarded the complaint to Astutium, December 20.
So far, so normal. This kind of Whois cleanup happens many times across the industry every day.
But this is where relations between Astutium and ICANN began to break down, badly.
Even though the Whois record had been cleaned up already, Golding responded to Compliance, via the ICANN complaints ticketing system:
Please dont forward bigus/meaningless whois complaints which are clearly themselves totally inaccurate… No action is necessary or will be taken on bogus/incomplete/rubbish reports. [sic]
Golding agreed with me today that his tone was fairly belligerent from the outset, but noted that it was far from the first time he’d received a compliance complaint he considered bogus.
In the tomzink.com case, he took issue with the fact that the complainant had said that the admin/tech records contained no fax number. Not only was this not true (it was Astutium’s own fax number), but fax numbers are optional under ICANN’s Whois policy.
He today acknowledges that some parts of the complaint were not bogus, but notes that the Whois record had been quickly updated with the correct information.
But simply changing the Whois record is not sufficient for ICANN. It wants you to show evidence of how you resolved the problem in the form of copies of or evidence of communications with the registered name holder.
The Whois Accuracy Program Specification, which is part of the RAA, requires registrars to verify and validate changes to the registered name holder either automated by phone or email, or manually.
Golding told DI that in this case he had called the client to advise him to update his contact information, which he did, so the paper trail only comprises records of the client logging in and changing his contact information.
What he told ICANN in January was:
If ICANN compliance are unable to do the simple job they have been tasked with (to correctly vet and format the queries before sending them on, as they have repeatedly agreed they will do *on record* at meetings) then Registrars have zero obligations to even look at them. Any ‘lack of compliance’ is firmly at your end and not ours in this respect.
However in this specific case we chose to look, contacted the registrant, and had them update/correct/check the records, as can easily be checked by doing a whois
ICANN then explained that “NA NA” and the lack of a phone number were legitimate reasons that the complaint was not wholly bogus, and again asked Golding to provide evidence of Astutium’s correspondence with Zink.
After ignoring a further round or two of communication via the ticketing system, Golding responded: “No, we don’t provide details of private communications to 3rd parties”.
He reiterated this point a couple more times throughout February, eventually saying that nothing in WAPS requires Astutium to “demonstrate compliance” by providing such communications to ICANN, and threatening to escalate the grievance to the Ombudsman.
(That may be strictly true, but the RAA elsewhere does require registrars to keep records and allow ICANN to inspect them on demand.)
It was around the same time that Compliance started trying to get in touch with Golding via phone. While it was able to get through to the Astutium office landline, Compliance evidently had the wrong mobile phone number for Golding himself.
Golding told DI the number ICANN was trying to use (according to ICANN it’s the one listed in RADAR, the official little black book for registrars) had two digits transposed compared to his actual number, but he did not know why that was. Several other members of ICANN staff have his correct number and call him regularly, he said.
By February 27, Compliance had had enough, and issued Astutium with its first public breach notice (pdf)
Allowing a compliance proceeding to get to this stage is always bad news for a registrar — when ICANN hits the public breach notice phase, staff go out and actively search for other areas of potential non-compliance.
Golding reckons Compliance staff are financially incentivized, or “get paid by the bullet point”, at this stage, but I have no evidence that is the case.
Whatever the reason, Compliance in February added on claims:
- that Astutium was failing to output Whois records in the tightly specified format called for by the RAA (Golding blames typos and missed memos for this and says the errors have been corrected),
- that Astutium’s registration agreement failed to include renewal and post-renewal fees (Golding said every single page of the Astution web site, including the registration agreement page, carries a link to its price list. While he admitted the text of the agreement does not include these prices, he claimed the same could be said of some of the biggest registrars),
- that the registration agreement does not specify how expiration notices are delivered (according to Golding, the web site explains that it’s delivered via email)
- that the address published on the Astutium web site does not match the one provided via the Registrar Information Specification, another way ICANN internally tracks contact info for its registrars (Golding said that his company’s address is published on every single page of its site)
A final bullet point asked the company to implement corrective measures to ensure it “will respond to ICANN compliance matters timely, completely and in line with ICANN’s Expected Standards of Behavior”.
The reference to the Expected Standards of Behavior — ICANN’s code of politeness for the community — is a curious one, not typically seen in breach notices. Unless I’m reading too much into it, it suggests that somebody at ICANN wasn’t happy with Golding’s confrontational, sometimes arguably condescending, attitude.
Golding claims that some of ICANN’s allegations in this breach notice are “provably false”.
He told us he still hasn’t ruled out legal action for defamation against ICANN or its staff as a result of the publication of the notice.
“I’ll be in California, serving the paperwork myself,” he said.
Astutium did not respond to the breach notice, according to ICANN documents, and it was escalated to full-blown termination March 21.
On March 30, the registrar filed a Request for Reconsideration (pdf) with ICANN. That’s one of the “unprecedented” things I referred to at the top of this article — I don’t believe a registrar termination has been challenged through the RfR process before.
The second unprecedented thing was that the RfR was referred to Ombudsman Herb Waye, under ICANN’s relatively new, post-transition, October 2016 bylaws.
Waye’s evaluation of the RfR (pdf), concluded that Astutium was treated fairly. He noted multiple times that the company had apparently made no effort to come into compliance between the breach notice and the termination notice.
Golding was not impressed with the Ombudsman’s report.
“The Ombudsman is totally useless,” he said.
“The entire system of the Ombudsman is designed to make sure nobody has to look into anything,” he said. “He’s not allowed to talk to experts, he’s not actually allowed to talk to the person who made the complaint [Astutium], his only job is to ask ICANN if they did the right thing… That’s their accountability process.”
The Board Accountability Mechanisms Committee, which handles reconsideration requests, in June found against Astutium, based partly on the Ombudsman’s evaluation.
BAMC then gave Golding a chance to respond to its decision, before it was sent to the ICANN board, something I believe may be another first.
He did, with a distinctly more conciliatory tone, writing in an email (pdf):
Ultimately my aim has always been to have the ‘final decision’ questioned as completely disproportionate to the issue raised… and the process that led to the decisions looked into so that improvements can be made, and should there still be unresolved issues, opportunity to work in a collaborative method to solve them, without the need to involve courts, lawyers, further complaints/challenge processes and so on.
And then the ICANN board voted to terminate the company, in line with BAMC’s recommendation.
That vote happened almost a month ago, but Astutium did not lose its IANA number until a week ago.
According to Golding, the company is still managing almost all of its gTLD domains as usual.
One registry, CentralNic, turned it off almost immediately, so Astutium customers are not currently able to manage domains in TLDs such as .host, he said. The other registries still recognize it, he said. (CentralNic says only new registrations and transfers are affected, existing registrants can manage their domains.)
After a registrar termination, ICANN usually transfers the affected domains to another accredited registrar, but this has not happened yet in Astutium’s case.
Golding said that he has a deal with fellow UK registrar Netistrar to have the domains moved to its care, on the understanding that they can be transferred back should Astutium become re-accredited.
He added that he’s looking into acquiring three other registrar accreditations, which he may merge.
So, what is to be learned from all this?
It seems to me that we may be looking at a case of a nose being cut off to spite a face, somebody talking themselves into a termination. This is a compliance issue that probably could have been resolved fairly quickly and quietly many months ago.
Another takeaway might be that, if the simple act of making a phone call to a registrar presents difficulties, ICANN’s Compliance procedures may need a bit of work.
A third takeaway might be that ICANN Compliance is very capable of disrupting registrars’ businesses if they fail to meet the letter of the law, so doing what you’re told is probably the safest way to go.
Or, as Golding put it today: “The lesson to be learned is: if you don’t want them fucking with your business, bend over, grab your ankles, and get ready.”
ICANN closes GoDaddy Whois probe
ICANN has closed its investigation into GoDaddy’s Whois practices with no action taken.
Senior VP of compliance Jamie Hedlund yesterday wrote to David Redl, head of the US National Telecommunications and Information Administration, to provide an update on the probe, news of which first emerged in April.
The NTIA and members of the intellectual property community had complained that GoDaddy was throttling Whois access over port 43 and that it was masking certain fields in the output.
That was when GoDaddy and the rest of the ICANN-regulated industry was working under the old rules, before the new temporary Whois policy had been introduced to comply with the EU General Data Protection Regulation.
Hedlund told Redl in a letter (pdf):
Based on our review and testing (including outside of ICANN’s network), GoDaddy is not currently masking WHOIS data or otherwise limiting access to its WHOIS services. Consequently, the complaints related to GoDaddy’s masking of certain WHOIS fields, rate limiting, and whitelisting of IP addresses have been addressed and closed.
GoDaddy had said earlier this year that it was throttling access over port 43 in an attempt to reduce the availability of Whois data to the spammers that have been increasingly plaguing its customers with offers of web site development and search engine optimization services.
$44 billion company is latest deadbeat gTLD registry
Indian car-making giant Tata Motors has become the latest new gTLD registry to fail to pay its ICANN fees.
According to a breach notice (pdf), $44 billion-a-year Tata hasn’t paid its $6,250 quarterly registry fee since at least November last year (though probably much earlier).
Listed on the New York Stock Exchange and elsewhere and part of the Indian conglomerate Tata Group, the company runs .tatamotors as a dot-brand gTLD.
The breach notice, dated 10 days ago, also says that the company is in breach of its contract for failing to publish an abuse contact on its nic.tatamotors web site, something it seems to have corrected.
.tatamotors had half a dozen domains under management at the last count and seems to have at least experimented with using the TLD for private purposes.
Tata becomes the second dot-brand registry to get a slap for non-payment this year.
Back in April, the bank Kuwait Finance House, with revenues of $700 million a year, was also told it was late paying its fees.
Three reasons ICANN could swing the GDPR ban hammer on day one
While ICANN reckons it will act “reasonably” when it comes to enforcing compliance with its incoming GDPR emergency policy, there are some things it simply will not tolerate.
The policy expected to be approved tomorrow and immediately incorporated by reference into registry and registrar contracts, is a little light on expected implementation timetables, so this week ICANN has been pressured for clarity.
Will Compliance start firing off breach notices on May 26, the day after GDPR comes into effect, if the industry has not immediately implemented every aspect of the new policy?
Attendees at the Global Domains Division Summit in Vancouver managed to get some answers out of general counsel John Jeffrey at a session yesterday.
First off, if you’re a registrar planning to stop collecting registrants’ personal information for Whois, ICANN will not be happy, and you could be looking at a Compliance ticket.
Jeffrey said:
We don’t want any of the contracted parties to stop collecting the data. ICANN is confident that you can continue to collect the data. We will stand in front of you on it, if we can. Do not stop collecting the data. We believe we have a very strong, important point. We hear from the governments that were involved in passing this legislation that it’s important it continues to be collected.
Second, you have to have a mechanism in place for people with “legitimate purposes” to access thick Whois records that contain all the juicy personal information.
Jeffrey said:
We also believe it’s important there’s a need to continue to display information that will be behind that second tier. And we can demonstrate the need to do that as well. This is really important.
And if there was any doubt remaining, he added:
We will enforce on the temporary spec, if it’s approved, if you stop collecting data, or if you don’t provide any mechanism to allow access to it. It’s a very serious concern.
The problem right now is that the Temporary Policy (pdf), still in draft, doesn’t have a whole heck of lot of detail about who should be allowed such access and the mechanisms to enable it.
It says:
Personal Data included in Registration Data may be Processed on the basis of a legitimate interest not overridden by the fundamental rights and freedoms of individuals whose Personal Data is included in Registration Data
It goes on to list circumstances where access may be given and types of parties that may need access, but it seems to me to still give registries and registrars quite a lot of responsibility to decide how to balance privacy rights and the “legitimate” data requests.
Those two scenarios — not collecting data and not making it available to those who need it — seem to be the big two zero tolerance areas for ICANN.
Other issues, such as replacing the registrant’s email address in the thin Whois output, also appear to be a pressing concern.
Jeffrey said, noting that providing a way to contact registrants is important for myriad reasons, including UDRP:
Creating the anonymized emails or web forms is another really important aspect but we understand some won’t be able to have that in place immediately.
How long after GDPR Day ICANN starts swinging the ban hammer over the email issue seems to be something ICANN is still thinking about.
That said, Jeffrey said that the organization intends to act “as reasonably as possible”.
CentralNic now managing failing .fan and .fans
CentralNic appears to be acting as a caretaker for the failing new gTLDs .fan and .fans.
IANA records show that a company lawyer took over as administrative contact for the pair late last week.
Asiamix Digital, the original registry, is still listed as the sponsor for both, and its ICANN registry agreement does not appear to have been reassigned.
It does not appear to be an acquisition. I hear Asiamix is basically using CentralNic’s TLD management service, as it struggles to remain alive.
CentralNic already acts as the back-end registry for both TLDs.
ICANN hit Asiamix with a breach notice for tens of thousands of dollars of unpaid fees a month ago, terminating its affiliated registrar for the same reasons around the same time.
The registry had attempted to auction off the strings a couple of years ago, unsuccessfully.
While technically based in Hong Kong, ICANN has been sending Asiamix’s compliance notices to an address in Milan, Italy.
All of Asiamix’s official web sites still appear to be non-functional. I bought the .net address listed in its IANA records to make a silly point a month ago and the equivalent .com has since expired too.
.fans has about 1,400 names in its zone file right now, while .fan never actually launched.
$55 billion bank not paying its $6,250 ICANN fees
Kuwait Finance House has become the latest new gTLD registry to get slapped with an ICANN breach notice for not paying its quarterly fees.
The company is a 40-year-old, Sharia-compliant Kuwaiti bank managing assets of $55.52 billion, according to Wikipedia. It has annual revenue in excess of $700 million.
But apparently it has not paid its fixed ICANN dues — $6,250 per quarter — for at least six months, according to ICANN’s breach letter (pdf).
KFH runs .kfh and the Arabic internationalized domain name equivalent .بيتك (.xn--ngbe9e0a) as closed, dot-brand domains.
Neither appears to have any live sites, but both appear to be in their launch ramp-up phase.
ICANN has been nagging the company to pay overdue fees since November, without success, according to its letter.
They’re the third and fourth new gTLD registries to get deadbeat breach notices this month, after .qpon and .fan and .fans.
Recent Comments