News Review | GDPR Moratorium Just Another ICANN 'Fantasy'

Domain Mondo's weekly internet domain news review (NR 2018-04-29) with analysis and opinion: Features •  1) ICANN's GDPR Train Wreck News: 26 Days Until May 25 a. GDPR Moratorium Just Another ICANN 'Fantasy', b. ICANN Was Warned Repeatedly, c. WHOIS and GDPR--separating Fact from Fiction & Hysterics, d. NCSG "Must Read", e. Liar, Liar, Pants on Fire! 2) Other ICANN news, 3) Names, Domains & Trademarks, 4) ICYMI, 5) Most Read.

plus ça change, plus c'est la même chose--the more things change, the more they stay the same--ICANN.dysfunctional | Computerworld.com Dec 12, 2011: "... ICANN today is a dysfunctional and self-justifying organization ..."

1) ICANN's GDPR Train Wreck News--Days Until May 25: 

ICANN President & CEO Goran Marby's Letter to Article 29 Working Party (pdf)

a. GDPR Moratorium Just Another ICANN 'Fantasy'--Incompetent ICANN Management Team's Delusional Plan for a GDPR 'Moratorium':

"The GDPR does not allow national supervisory authorities nor the European Data Protection Board to create an 'enforcement moratorium' for individual data controllers ... Data protection is a fundamental right of individuals, who may submit complaints to their national data protection authority whenever they consider that their rights under the GDPR have been violated."--Article 29 Working Party. See Europe fires back at ICANN's delusional plan to overhaul Whois for GDPR by next, er, year | TheRegister.co.uk: "ICANN had made the concept of a moratorium the central pillar of its effort to become compliant with the law. But its entire strategy was built on a fantasy."--Kieren McCarthy, former ICANN staffer, writing in The Register (link above) (emphasis added); read the Article 29 Working Party's full statement here.

b. ICANN Was Warned, Repeatedly (since 2003), by the EU Article 29 Working Party

06 June 2013 Letter (pdf) to Steve Crocker, ICANN Chairman, and Fadi Chehadé, ICANN CEO, from the Article 29 Working Party (excerpt):

"In general, we repeat that the problem of inaccurate contact details in the WHOIS database cannot be solved without addressing the root of the problem: the unlimited public accessibility of private contact details in the WHOIS database. In that light, the Working Party welcomes the growing number of [ccTLD] registries in Europe that are offering layered access to the WHOIS data."

c.  WHOIS and GDPR--separating Fact from Fiction & Hysterics

WHOIS afraid of the dark? Truth or illusion, let's know the difference when it comes to WHOIS | InternetGovernance.org: "... WHOIS isn’t going dark; the only fields that are going to be cloaked are those that cybersecurity researchers and investigators might not even need in order to do their jobs. Those who need additional information, such as law enforcement agencies involved in a legitimate investigation, will be able to get more. In this post, we will explore the small changes coming to the WHOIS, and we will reveal how little an impact they are likely to have when you fight spam, botnets, and DDoS attacks ... ICANN has had a long history of violating basic data protection norms ... The privacy rights of domain name registrants have been ignored for far too long by ICANN ..."

Identity Theft via the ICANN Public WHOIS: How to Steal Someone's Identity in 45 Minutes | tomsguide.com [When your target also happens to be a domain name registrant, start with ICANN's  free and public WHOIS as your first step. In many, if not most cases, it will give you the target's name, full address, phone number, email address--everything any cyber criminal or scammer needs to get started. For the rest, see Tom's Guide at the link above. Of course this may all change when the European Union's GDPR becomes enforceable May 25, 2018.]

13 April 2018 Data Protection/Privacy FAQs | ICANN.org [PDF, 76 KB] excerpt:

d. ICANN Non-Commercial Stakeholders Group re: ICANN’s Non-Compliance with European Data Protection Law (pdf)--a "must read"--embed below:

e. Liar, Liar, Pants on Fire!

Data Protection/Privacy Issues Update: Summarizing our Recent Meeting with Article 29 Working Party (WP29) Technology Subgroup April 23, 2018 | ICANN.org by Göran Marby, ICANN President and CEO:  "... Today in Brussels, ICANN org's Akram Atallah, John Jeffrey, Elena Plexida*, and Theresa Swinehart joined me ... to meet with the Article 29 Working Party (WP29) Technology Subgroup ... We reiterated to the WP29 that we are committed to compliance with the law ..." [*Elena Plexida, a former EU agency employee, is a recent ICANN hire.]

Editor's note: I asked ICANN CEO Goran Marby on February 22, 2018, on the ICANN Quarterly Stakeholder Call: "When did you first become aware of the ramifications of the EU GDPR for ICANN?" 

Marby answered that he first became aware of the ramifications of the EU GDPR for ICANN, in May (2016), shortly after he started as ICANN President and CEO.

Now Marby seems to have changed his story. In his April 23 blog post, Marby now claims: "... One question that has been asked many times is: why didn’t we start the process earlier? I guess there are many answers to that question, but one might be lack of awareness ..." 

As I have noted before (pdf), lying is part of the corporate and organizational culture of ICANN. But why does lying appear to be continually endemic at the highest levels of ICANN? Probably because ICANN has not had principled leadership for a very long time, and the ICANN organizational culture accepts lying as a "normal" way to interact with people in order to avoid accountability. Frankly, in any functional and accountable modern corporation, under similar circumstances, the CEO and "management team" responsible for this "train wreck" would resign or be fired.

"[T]he United States government is also dissatisfied with ICANN. The Commerce Department said it had canceled a request for proposals to run the so-called Internet Assigned Numbers Authority because none of the bids met its requirements: “the need for structural separation of policy-making from implementation, a robust company wide conflict of interest policy, provisions reflecting heightened respect for local country laws and a series of consultation and reporting requirements to increase transparency and accountability to the international community.”"--March 18, 2012, New York Times.

 Related:

• ccTLD .UK domains: Registrant Data will be Redacted from WHOIS from 22 May 2018, unless explicit consent has been given | OnlineDomain.com. [Editor's note: ccTLDs are not subject to ICANN nor its incompetent, dysfunctional, or unlawful policies.]

• ICANN takes WHOIS begging bowl to Europe, comes back empty | TheRegister.co.uk: "Rude awakening – yet again – for American DNS supremo."
• ICANN Fails To Secure Moratorium On GDPR Enforcement | Silicon.co.uk

• The History of the General Data Protection Regulation (GDPR) | European Data Protection Supervisor | edps.europa.eu

• Austrian Andrea Jelinek becomes head of new EU data protection regulator | FT.com. The Article 29 Working Party will take on increasing importance and become the European Data Protection Board (EDPB) when the EU’s landmark General Data Protection Regulation  (GDPR) privacy law becomes enforceable May 25, 2018.

• GDPR Is Coming, So What Now for WHOIS Domain Registration Data? | tripwire.com

• 27 April 2018 Letter from ICANN (Jamie Hedlund) to Graeme Bunton (pdf) re: ICANN RrSG Audit Postponement Request: "Thank you for your letter of 20 April 2018, requesting postponement of the 2018 Spring Registrar Audit to allow registrars adequate opportunity to implement changes required to comply with Europe's General Data Protection Regulation [GDPR]. The April 2018 registrar audit round is on hold ..."

• eco/i2Coalition Update Webinar On ICANN Contracted Party GDPR Compliance | i2Coalition.com: "On May 9th, we will provide an update on the current status of the compliance, analyze the correspondence with the Article 29 group, and discuss possible solutions. We will walk through the eco GDPR Domain Industry Playbook and will take a look beyond WHOIS e.g. data for registration, data required to be escrowed and data retained under ICANN’s contracts. May 9th 10 AM – 11 AM ET (Washington D.C.) 2 PM – 3 PM UTC 4 PM – 5 PM CEST (Berlin)" Editor's note: register for the webinar at the link above.

• ICANN provided the following materials to WP29 on 23 Apr 2018:
  A chart [XLSX, 14 KB] comparing ICANN's Proposed Interim Model [PDF, 922 KB] with input received from WP29 [PDF, 400 KB], the International Working Group on Data Protection in Telecommunications (IWGDPT, a.k.a. "Berlin Group") and the GAC [PDF, 232 KB]; A proposed timeline [PDF, 33 KB] for implementing the interim compliance model; And a technical paper [PDF, 1.85 MB] outlining how WHOIS works, as well as copies of the following "communications" from the Business Constituency [PDF, 108 KB], Intellectual Property Constituency [PDF, 137 KB], International Trademark Association [PDF, 202 KB], Non-Commercial Stakeholders Group [PDF, 179 KB], and the U.S. Government [PDF, 259 KB].

2) Other ICANN news

a. ICYMI New gTLD .WEB UPDATE: New gTLD .WEB: Afilias vs ICANN, Verisign $VRSN & Nu Dot Co?: Afilias drops "bomb" on ICANN Board--16 April 2018 Letter from Arif Ali (Afilias) to ICANN Board (published by ICANN April 23, 2018 and embed in full at the link above)--excerpt:

Afilias requests the aforementioned updates because it intends to initiate a CEP and a subsequent IRP against ICANN, if ICANN proceeds toward delegation of .WEB to NDC. Afilias also reserves the right to pursue claims against ICANN in a court of law. As Afilias has previously informed ICANN, it has numerous objections to ICANN’s conduct with respect to NDC’s actions during the .WEB auction and its agreement to assign Verisign the .WEB gTLD, including but not limited to the antitrust and competition issues raised by Verisign’s acquisition of the .WEB gTLD. (emphasis and links added) 

b. ICANN62 GNSO Draft schedule | ICANN.org (pdf) (as of 26 Apr 2018, subject to revision).

c. ICANN Public Comment Periods Closing in May (subject to change):

• Proposed Revisions to Bylaws Sec, 11 – Additional Voting Thresholds 5 May 2018 23:59 UTC

• Draft Final Report of the NomCom2 Review 7 May 2018 23:59 UTC

• CCWG-Accountability WS2 Final Report 11 May 2018 23:59 UTC

3) Names, Domains & Trademarks

a. Verisign $VRSN Q1 2018 financial results:

• End of Q4 2017: 131.9 million .COM domain names and 14.5 million .NET domain names 
• End of Q1 2018: 133.9 million .COM domain names and 14.4 million .NET domain names

For the first quarter of 2018, a net increase of 2 million .COM domain name registrations. .COM is the most popular and market-dominant (in the U.S. and globally) top-level domain (TLD). The pricing of .COM domain names is thankfully, price-controlled by NTIA (U.S. government), not ICANN. [Editor's note: under ICANN's sole control, the gTLD .COM would start to decline just like .NET, as ICANN has proven to be incompetent.]

A continuing decline of 100,000 .NET domain name registrations due to mismanagement of .NET pricing by incompetent ICANN. World's ten most popular TLDs (2017 data) here. .COM ranks first ('by a mile'), and .NET ranks fifth (behind .COM, .CN (China), .TK (Tokelau), .DE (Germany) and just ahead of sixth-place .UK (United Kingdom) and seventh-place .ORG.

Verisign reported revenues and EPS that exceeded Wall Street's consensus estimates, the stock closed Friday at $118.30 per share, a 33% gain YOY. Market capitalization of $VRSN as of Friday: $11.26 billion. Verisign management also reported the company is already discussing with NTIA the Cooperative Agreement (which controls .COM pricing) which can be extended (and hopefully will be) by NTIA beyond November 30, 2018. Verisign management also said it is waiting for ICANN to delegate .WEB but is not including any .WEB revenue in 2018 guidance. More information here.

b. ccTLD .EU: Euro idiocrats backtrack on plan to kill off Brits' 300,000 .eu domains | TheRegister.co.uk. EU now proposes to open .EU for registration by anyone in the world. More information here. [Editor's note: a smart move to open up .EU.]

c. Google On How To Reverse A Site Move & Go Back To Original URLs | seroundtable.com.  Editor's note: a good resource for those "suckers" who got "conned" into switching their domain names to one of ICANN's new gTLDs whose known problems (since at least 2003) include "failing to work as expected on the internet" otherwise known as "ICANN's Consumer Fraud Scheme" or ICANN's euphemistic phrase "universal acceptance issues."

d. $GDDY: GoDaddy surpasses one million customers in India | business-standard.com.

e. ICYMI--Editor's note: a good read even if you don't live in Australia--ccTLD .au domain review released | Department of Communications and the Arts | communications.gov.au.

See also Disneyland trips and more: Police called into 'dot au' dispute | thenewdaily.com.au: "The auDA self-regulatory model ... appears to be running out of time to get its governance and accountability in order" and  Grumpier.com.au | Member Site.

f. Crypto domains--darkreading.com: ".bit domains are increasingly being used to hide payloads, stolen data, and command and control servers, FireEye says."

g. Authorities bust world's largest DDoS-for-hire service & seizes its domain | hackread.com

h. Registrars Suspend 11 Pirate Site Domains, 89 More in the Crosshairs | TorrentFreak.com

h. French Gov't Illegally 'Seized' France.com, US Owner Says | Law360.com

i. Melbourne IT will change its name to Arq Group to underline the shift away from its historical domain name registration and hosting business.--afr.com.

j. China Trademarks: The De Facto Public Domain Mark | ChinaLawBlog.com: "... the Chinese Trademark Office (CTMO) and the Chinese court system have different standards for what makes one trademark “confusingly similar” to another, which is the statutory basis for determining whether one trademark conflicts with another. To make things even more confusing, neither the CTMO nor the Chinese court system has a uniform, clearly articulated standard ..."

4) ICYMI Internet Domain News 

a. Iran: Iran bans government bodies from using foreign message apps | apnews.com. [Editor's note: Iran has a point, you don't know who to trust anymore, for example, knowledgeable domain name registrants certainly don't trust ICANN, and if you are a user of messaging apps, do you really trust Facebook's Messenger or WhatsApp?] See also Google’s new Chat service shows total contempt for Android users’ privacy | Amnesty.org: "baffling decision to launch a messaging service without end-to-end encryption, Google has shown utter contempt for the privacy of Android users and handed a precious gift to cybercriminals and government spies alike, allowing them easy access to the content of Android users’ communications." And also  Russia: Russia blocks Google, Amazon IP addresses in bid to ban Telegram | cnbc.com and An 'internet civil war' has erupted in Russia | AlJazeera.com.

b. EU: EU proposes regulating how web platforms treat businesses | TheHill.com: "would require platforms such as Google to be more transparent with businesses about their placement in search engine results, which can have a huge impact on a company’s success." See also Facebook says users must accept targeted ads even under new EU privacy law | Reuters.com.

c.  Censorship: A Recent Update from Google Could Severely Hamper Anti-Censorship Tools | gizmodo.com: ".... Domain fronting is used to bypass censors by hiding the true endpoint of a connection ..."

d. U.S. vs. Internet Freedom: 

• Section 230 and FOSTA-SESTA: the next free internet battleground | Vox.com: "Congress just passed a law to combat sex trafficking. Now the future of the free internet is in danger." 
• Americans Want Online Information Freedoms Over Government Restriction of Fake News | Pew Research Center | Journalism.org

e. AFRICA:

• 2018 Internet Freedom Forum holds in Abuja | Pulse.ng

• Uganda to tax social media to stop gossip on Facebook, WhatsApp, Twitter | qz.com

f. Canada: Dear Canada: Accessing Publicly Available Information on the Internet Is Not a Crime | Electronic Frontier Foundation | EFF.org.

5) Most read posts this past week on DomainMondo.com: 

1. News Review | Coming May 25, EU's GDPR, Are You Ready? ICANN Isn't

2. Tech Review | What 5G Will Mean for Us and Our Phones (video)

3. Alphabet (Google) Q1 2018 Results, LIVE Webcast April 23 Replay

Audience stats--Domain Mondo's readers' geolocation--top five countries: 1) U.S., 2) Germany, 3) France, 4) Norway, 5) China.

-- John Poole, Editor, Domain Mondo 

feedback & comments via twitter @DomainMondo
Follow @DomainMondo

DISCLAIMER

News Review | Coming May 25, EU's GDPR, Are You Ready? ICANN Isn't

Domain Mondo's weekly internet domain news review (NR 2018-04-22) with analysis and opinion: Features •  1) Coming May 25: the EU's GDPR, Are You Ready? ICANN Isn't, 2) a. More ICANN new gTLDs Dysfunction, b. U.S. gov NTIA's Strange Letter To ICANN, 3) Goodbye Neustar $$, 4) ICYMI: "ICANN People" and more, 5) Most Read.

New gTLD .WEB Update April 23: Afilias drops "bomb" on ICANN Board (full letter embed here)

1) Coming May 25, EU's GDPR, Are You Ready? ICANN Isn't:

Just 1½ years after the IANA transition, the dysfunction, incompetence, and conflicts of interest, are self-evident as systemic throughout the California corporation officially known as the Internet Corporation for Assigned Names and Numbers, otherwise known as ICANN, as well as in its self-selected "ICANN community" dominated by "special interests" (trademark lawyers, corporate lobbyists, and contracted parties, i.e., domain name registrars and registry operators). Now ICANN, despite its international "global" pretensions, finds itself, inexplicably, unprepared for the European Union's General Data Protection Regulation (GDPR) which becomes enforceable May 25, 2018:

Data Protection/Privacy Issues Update 13 Apr 2018 | ICANN.org: "... On Thursday, we  received a letter [PDF, 400 KB] from the Article 29 Working Party where they provided recommendations on ICANN org's Interim Model for Compliance [PDF, 922 KB] with ICANN's agreements and the GDPR. In my reply [PDF, 313 KB] to Article 29 I again emphasize the need for additional time to further develop and implement the model, including a moratorium on enforcement until our model is in place ..."--Göran Marby, ICANN President and CEO (emphasis added)

Although everyone was given two years to prepare, ICANN's overpaid and incompetent management team, completely bungled GDPR preparations, leaving the ICANN organization and "ICANN community" scrambling to find ways to comply with the EU GDPR by May 25, 2018, now less than five weeks away. In response to the increasing alarm and anxiety, the ICANN Board of Directors indicated to the GNSO Council leadership team and the RDS PDP WG (RDS) leadership team on April 11, 2018, that the ICANN Board of Directors is considering a temporary policy/specification as outlined in the RAA Consensus Policies and Temporary Policies Specification as one possible means of implementing an ICANN interim GDPR compliance model (for registry operators see "Temporary Policies" on page 43 (of 99) of the ICANN Registry Agreement (pdf) approved July 31, 2017). Here's the complete note circulated by GNSO Council leadership:

https://gnso.icann.org/sites/default/files/file/field-file-attach/gnso-gdpr-rds-briefing-13apr18-en.pdf

 source: Statista.com 13 Apr 2018, based on Hubspot.com Q3 2017 survey.

Related:

• "If you think Facebook has problems, they’re nothing compared to the fiasco at the Internet Corporation for Assigned Names and Numbers [ICANN]. Americans should be far more alarmed about what’s happening with the obscure, private California company that oversees the Internet’s backbone ..."--WashingtonExaminer.com  April 16, 2018.

• Move Over Facebook - You’ve Got Company | BestVPN.com: "... the apparent gross mismanagement at the Internet Corporation for Assigned Names and Numbers (ICANN) may be even more appalling than Facebook’s transgressions ..."

• Whois is dead as Europe hands DNS overlord ICANN its arse | TheRegister.co.uk

• EU Tells ICANN: You're Unprepared For GDPR Regulations  | mediapost.com

• Nominet drains mug of tea, leans back, calmly explains how to make Whois GDPR compliant | theregister.co.uk

• Letter from Patrick Kane of Verisign to ICANN's Akram Atallah 13 April 2018 (pdf) re: Verisign Thick Whois Consensus Policy.

• Privacy as an Afterthought: ICANN's Response to the GDPR | Electronic Frontier Foundation | eff.org: ".... Although EFF would have preferred a model requiring a court order or warrant for access to such personal information, it seems inevitable that tiered access will be based on some kind of ICANN-administered accreditation system. Community discussions on what that accreditation program should look like continue on a new ICANN discussion list, using the Business and IP constituencies' proposal as a starting point. But this is work that should have been finished long ago. The commencement date of the GDPR [May 25, 2018] has been known since the rule was adopted on April 27, 2016. Although its edges will be difficult for ICANN to navigate, its basic outlines are not rocket science; it has been obvious for over two years that more would need to be done to secure the personal information of domain name registrants. Unfortunately, ICANN's version of a multi-stakeholder process has broken down over this contentious issue of registrant data privacy. It therefore falls to ICANN's board to make the interim changes necessary to ensure that the WHOIS system is brought into compliance with European Union law. While this interim model may be replaced by a community-based access model in the future, institutional inertia is likely to see to it that the Board's "interim" policy constrains the outlines of that future model. This makes it all the more important that the ICANN Board listens to all segments of its community and to the advice of the Article 29 Working Party, in order to ensure that the solutions developed strike an appropriate balance between stakeholders' competing interests, and that the human rights of users are put first." (emphasis added)

[Editor's note--re: trademark lawyers and corporate lobbyists--inept ICANN, in a blatant conflict of interest, joined trademark lobbyist organization INTA, as a full member, during the dysfunctional, conflicted administration of former ICANN CEO Fadi Chehade].

2) Other ICANN news

a. ICANN new gTLDs subsequent procedures dysfunction: 

"The document also contains serious biases and preconceptions which are wrong and will not fly and we are running the serious risk of reproducing something so close to the Applicant Guidebook of 2012 that the world at large will be incredulous. The 2012 exercise produced results which are not acceptable internationally, certainly not to be repeated."--emphasis added, see full quote below.

ICANN Transcription New gTLD Subsequent Procedures Working Group call Monday, 16 April 2018 at 20:00 UTC (pdf) excerpt:

[Editor's note: it appears dysfunctional and inept, if not corrupt, ICANN, is on track to produce another severely flawed round of new gTLDs plagued with the same defects and mistakes as last time. The sole objective appears to be to generate more money via new gTLDs' consumer fraud and ICANN's .BRAND "extortion racket" (pdf).]

b. U.S. gov NTIA's Strange Letter To ICANN: 

NTIA Asks ICANN to Investigate GoDaddy Masking WHOIS Information, Review Accredited Registrar Issues | National Telecommunications and Information Administration | ntia.doc.gov April 16, 2018: "... request that ICANN look into two issues related to ICANN accredited registrars. First, the actions taken by GoDaddy last month to throttle Port 43 access and to mask the information in certain WHOIS fields ... Second, in the current configuration of the DNS marketplace, an ICANN accredited registrar is the single entry point for making modifications to domain name resource records ... NTIA sees merit in examining the roles other parties could play. One example is the feasibility and impact of allowing non-ICANN accredited registrars to offer services that manage specific DNS resource records, such as MX or NS records, directly with a registry ..."--David J. Redl, NTIA Administrator, full letter here (pdf).

[Editor's note: U.S. government interference in ICANN affairs? Run it through the GAC, David, and get your unanimous consensus, before telling ICANN what to do, otherwise you are setting a precedent for China or Russia or Iran, to write their own letters "requesting" ICANN do something which you may not like.]

3) Names, Domains & Trademarks

Goodbye Neustar $$: Neustar (domain: home.neustar), a top-level domain (TLD) registry services provider and technology company, which once was publicly traded (NYSE: NSR) but now is privately held by Golden Gate Capital and Singapore's sovereign wealth fund, has lost its lucrative, high-margin NPAC contracts which are now transitioning to the new provider iconectiv.com (part of Telcordia Technologies, Inc., U.S. subsidiary of Sweden's Ericsson)--"The Southeast Number Portability Administration Center (NPAC) Region, the largest of the seven U.S.regions, was transitioned on April 8, 2018. This was the first regional cutover of NPAC data and services and it followed the successful transition of Ancillary Services on March 4, 2018.  The Southeast Region includes Alabama, Florida, Georgia, Kentucky, Louisiana, Mississippi, North Carolina, South Carolina, Tennessee, Puerto Rico, and the U.S. Virgin Islands. The remaining regions are scheduled to cutover on May 6, 2018 (for the Mid-Atlantic, Midwest, and Northeast Regions) and May 20, 2018 (for the Southwest, West, and West Coast Regions)"--via FCC.gov April 12, 2018.

Just how much $$ will Neustar lose? 
"Once the [NPAC] contracts terminate, our annual revenue will decrease by approximately $500 million ... At the time of termination, our revenue and profitability will be dependent upon the success of our remaining business. If we are not able to replace this lost revenue and adjust our operating plans to support our remaining business, our total revenue and profitability may be materially adversely affected."--Neustar 10-Q, Oct 29, 2015 (emphasis added).

One analyst at that time wrote: "... there's good reason to believe the said contract represents NSR's [Neustar's] entire EBITDA profitability ... NSR isn't yet fully ready to recognize just how much profitability it stands to lose (hint: all of it)... NSR was charging nearly $500 million per year for something which is now being awarded ... for 7 years (at $142.9 million per year) … a reflection of the massive margins NSR is realizing on this contract ..."

Editor's note: the "new Neustar" is about to become a mere shadow of its former self. Neustar, which does business as Neustar Inc. and ARI Registry Services, is the largest new gTLDs backend registry services provider according to ntldstats.com/backend, but has been losing backend registry service contracts--Australia's ccTLD .au to Afilias beginning July 1, 2018, as well as some of the many terminated .BRAND new gTLDs.

4) ICYMI Internet Domain News 

a. ICANN people think they are rock stars spending millions on meetings around the world! | OnlineDomain.com

b. Internet Tax: South Dakota e-commerce sale tax fight reaches U.S. Supreme Court | Reuters.com

c. DNS: What Is Cloudflare's 1.1.1.1 DNS and How to Set It Up | tomsguide.com

d. Dark web more dangerous, more accessible than realized | La Vida | dailytoreador.com

e. Surveillance firm Terrogence, a US government vendor, has been building a massive facial recognition database from photos on Facebook, YouTube, and other sites--Forbes.com

f. Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices | US-CERT.gov

5) Four Most Read Posts this past week on DomainMondo.com: 

1. News Review | ICANN vs EU? ICANN "Studying" Legal Action in Europe

2.  International VC Index Ventures Expanding Its Fintech Portfolio (video)

3. Tech Review | European Union 'Going Gangster' On Big Tech? (video)

4. The Riveter Co-Working Spaces for Women Entrepreneurs (video)

-- John Poole, Editor, Domain Mondo 

feedback & comments via twitter @DomainMondo
Follow @DomainMondo

DISCLAIMER

News Review | ICANN vs EU? ICANN "Studying" Legal Action in Europe

Domain Mondo's weekly internet domain news review (NR 2018-04-15) with analysis and opinion: Features •  1) ICANN vs EU GDPR? ICANN "Studying" Legal Action in Europe, 2) Other ICANN news, 3) Names, Domains & Trademarks, 4) ICYMI, 5) Most Read Posts.

UPDATE: WP29 Press Release 17 April 2018, re 10-11 April 2018 Plenary, ICANN see p. 2:

Facebook & Cambridge Analytica pp. 1-2: 

Editor's note: re-published 19 Apr 2018 (pdf). For more specifics re ICANN from WP29 see their letter dated 11 April 2018 (including annex) embedded here.

Original Post:

1) ICANN vs EU GDPR and the European Union's Article 29 Data Protection Working Party?

ICANN vs. EU GDPR? ICANN says it is "studying all available remedies, including legal action in Europe" after receiving the European Union's Article 29 Working Party (WP29) reply dated 11 Apr 2018 in response to ICANN's recent discussions and letters (see e.g., ICANN's letter to Giovanni Buttarelli), requesting "advice" and a "moratorium" (not granted) in regard to the EU's General Data Protection Regulation (GDPR) which becomes enforceable May 25, 2018, and imposes stiff penalties for violations by "data controllers" such as ICANN and its "contracted parties" (registrars and registry operators) who maintain the heretofore public database of WHOIS information about domain name registrants.

ICANN Receives Data Protection/Privacy Guidance from Article 29 Working Party | ICANN.org: "... we are studying all available remedies, including legal action in Europe to clarify our ability to continue to properly coordinate this important global information resource. We will provide more information in the coming days ..."--Goran Marby, ICANN President & CEO, 12 Apr 2018

Meanwhile, as a result of the aforesaid WP29 reply to ICANN, the ad hoc ICANN BC and IPC group extended the deadline to comment on its proposed accreditation and access model to next Friday, 20 April 2018 at 4PM UTC (12 PM EDT). More info here. [Editor's note: that BC & IPC proposal (pdf) appears DOA "dead on arrival" and even more deficient than ICANN's proposed Interim Model (pdf) in light of the WP29's advice above and the devastating comments already submitted by ICANN's Non-Commercial Stakeholders Group (embedded below).

Comments of the Non-Commercial Stakeholders Group on the Draft IPC/BC Purpose Statement Published on 27 March 2018 (pdf) embed:

See also:

• ICANN will not get a moratorium on GDPR compliance | InternetGovernance.org: "There is another good speculation about why ICANN, which has always put the interest of corporations first, suddenly cares about protecting the world and wants to prevent some of WHOIS information becoming private: Big players are putting pressure on ICANN to keep WHOIS open. Among them, might be the US government putting pressure on ICANN to do something about this annoying European law." (emphasis added)
• Game Over for WHOIS: Article 29 Gives ICANN the Advice it Asked for | blacknight.blog: "... Come the end of May public whois as we know it will be dead. Game over. This does not come as a surprise to many of us – we’ve been raising issues with it going back years ..."

Related:

• Europe's GDPR Meets WHOIS Privacy: Which Way Forward? | Electronic Frontier Foundation | EFF.org

• Data Protection/Privacy Issues Update: An ICANN Update & Most Frequently Asked Questions | ICANN.org

• The U.S. CLOUD Act and the EU: A Privacy Protection Race to the Bottom | Electronic Frontier Foundation | eff.org: "... the EU does not have to follow the U.S. down the same path of privacy abandonment. Instead, EU institutions and Member States have the opportunity to champion logical solutions that help law enforcement access digital evidence while still protecting privacy and maintaining respect for the sovereignty of other nations ..."
• April,11, 2018 Letter to ICANN Board of Directors: Submission of GNSO Council Review of the San Juan GAC Communiqué (pdf) excerpt--

2) Other ICANN news

a. ICANN Organization’s Report on the Draft FY19 Budget Operating Plan Now Due 24 April |ICANN.org: 11 April 2018 - "Today, the Internet Corporation for Assigned Names and Numbers (ICANN) announced that the ICANN organization's response to the public comments received in the Draft FY19 Operating Plan and Budget has been moved from 12 April to 24 April. This will allow the ICANN org and the Board to have the appropriate time to provide thoughtful and detailed responses."

b. Fellowship Program at ICANN ​Community Consultation Process (pdf): "As guiding principles for this comment, the GNSO Council believes that: 1. ICANN needs to develop clear objectives and verifiable metrics to demonstrate the Return On Investment (ROI), if any, from the Fellowship and other similar programs in consultation with the community; and 2. ICANN needs to reconsider its expenditure on the Fellowship and other programs to reflect this ROI and assess that on an ongoing basis ..."

3) Names, Domains & Trademarks

a. ccTLD .au: Domain administrator auDA members call for CEO and directors' heads to roll | cio.com.au: "... In late July last year, auDA held a special general meeting, with the board telling members that “high levels of expenditure on international travel and reimbursement arrangements with international bodies [Editor's note: ICANN?] that lacked transparency”..."

b. Black Lives Matter Facebook page was scam run by white Australian Ian Mackay, report says |WashingtonPost.com: “My domain name buying and selling is a personal hobby”--Ian Mackay.

c. US: Federal authorities take down Backpage.com, site accused of being a haven for online prostitution | latimes.com.

d. Protecting Your Neighborhood’s Identity – Registering A Trademark | SmithAmundsen LLC | JDSupra.com: "Trademark registration of the association’s name and logo give the association increased power to protect the good name and reputation of its neighborhood or condominium ..."

4) ICYMI Internet Domain News 

a. GDPR: Major blockchain group says Europe should exempt Bitcoin from new data privacy rule | TheVerge.com: Washington DC think tank CoinCenter.org says blockchain technology may be fundamentally incompatible with GDPR and that Europe should exempt Bitcoin from it.

b. EU says Facebook confirmed data of 2.7 million Europeans 'improperly shared' | Reuters.com

c. Singapore’s Economic Success ‘Comes at the Sacrifice of Humans Rights,’ Says Activist Han Hui Hui | GlobalVoices.org.

d. EU fake news fight 'clashing with right to freedom of expression' | Euronews.com

e. How Did Americans Lose Their Right to Privacy? | Heartland.org

f. Is the FCC About to Get Throttled? The Likelihood of Success on Reversing Net Neutrality | Texas Lawyer | law.com: "Was the Public Comment Period Conducted in Compliance with FCC Regulations? Probably not."

g. Warning over chilling impact on ‘freedom of expression’ if social media regulation unchecked | IrishExaminer.com: "Social media technology giant, Twitter, has suggested growing efforts to clamp down on 'undesirable content' on social media will inevitably impact 'freedom of expression' online."

h. Russia Seeks To Block Telegram In Showdown Over Internet Freedom | rferl.org: "Russia's state media regulator has asked a court to block the messaging app Telegram following the company's refusal to give the Federal Security Service (FSB) access to users' messaging data."

5) Most read posts this past week on DomainMondo.com: 

1. News Review | How Cloudflare Is Helping Protect Personal Data Online

2. IEA Report Forecasts USA Dominating Global Oil Markets Going Forward

3. Hearing April 11: Facebook $FB Transparency and Use of Consumer Data

4. European Union WP29 To Facebook $FB: "Sorry Is Not Enough"

5. China's Internet Crackdown (video), Infographic on Internet Freedom

-- John Poole, Editor, Domain Mondo 

feedback & comments via twitter @DomainMondo
Follow @DomainMondo

DISCLAIMER

European Union WP29 To Facebook $FB: "Sorry Is Not Enough"

News Review UPDATE 11 April 2018 Reply from EU Article 29 Working Party to ICANN

On Wednesday, as Facebook CEO Mark Zuckerberg was testifying at his second public hearing before a committee on Capitol Hill this week, the European Union's Article 29 Working Party (WP29) issued its own press release entitled "Sorry is not enough": WP29 establishes a Social Media Working Group.  Full press release embedded below following this excerpt:

Related:

• GDPR: Are you ready? | insurancebusinessmag.com

• The UK Information Commissioner’s take on a ‘game changing’ few weeks in data protection: "As a data controller we must be prepared for the GDPR like anyone else but, for the ICO, 25 May means we must be ready to regulate the GDPR. That’s an additional challenge…We’re expecting more of everything. More breach reports because the law requires it in high risk cases. More complaints, because people will be better informed of their rights. Greater engagement as organizations turn to us for advice at the outset"--Elizabeth Denham.
• Facebook Announces Plan to Implement GDPR Globally | Reed Smith | JDSupra.com

See also on Domain Mondo:

• Hearing April 11: Facebook $FB Transparency and Use of Consumer Data

• News Review Update: Senate Hearing April 10 on Facebook Data Abuse

"The Facebook scandal has three aspects:
→ #DataProtection: we are equipped to remedy the situation with #GDPR
→ Fraud: national authorities have to address it with criminal justice
→ Electoral freedom: we need to know more about what happened" says Commissioner @VeraJourova pic.twitter.com/1SUpSrDoCH

— European Commission 🇪🇺 (@EU_Commission) April 11, 2018

Glad to hear that #Facebook wants to use EU #DataPrivacy standards as their global model. We will observe with great interest how the letter - and the spirit - of the law are applied. #GDPR comes into force on 25th May. https://t.co/liqG0az0yQ

— Věra Jourová (@VeraJourova) April 9, 2018

Interesting read: Sheryl Sandberg’s interview with the @financialtimes: Europe is ahead on #DataProtection. I would like to talk to her this week, also about the #GDPR. https://t.co/c5GUYXqkdC via @financialtimes

— Věra Jourová (@VeraJourova) April 9, 2018

feedback & comments via twitter @DomainMondo
Follow @DomainMondo

DISCLAIMER