ICANN OKs New Interim Policy for gTLD Data Registration
Domain name registries and registrars had until Monday to comply with a new policy for collecting registrants' data that aligns with the EU general data protection regulation (GDPR), ICANN said. Under the interim registration data policy approved May 15, "contracted…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
parties" must continue to put adopt processes consistent with the temporary spec for gTLD registration data, which expired Monday. Once ICANN publishes a registration data policy and formally notifies the contracted parties, they will have the option of using the interim policy, the registration data policy or a mix of both as they prepare for the effective date of the registration data policy, which hasn't yet been set. In the final stage of the process, registries and registrars will have to comply with the registration data policy as of its effective date, which ICANN's expedited policy development process (EPDP) team recommended to be Feb. 29. The board approved most EPDP recommendations, sending two for more consultation with the Generic Names Supporting Organization. In a May 3 letter to ICANN President Goran Marby, the European Commission noted it has "constantly urged" ICANN to come up with a unified model for granting access to registrants' nonpublic personal data to those with a legitimate interest or other legal basis for having the information under the GDPR. Distinguishing between ICANN's purposes for processing personal data and the purposes pursued by third parties such as law enforcement agencies for accessing the data is key, it said.