<div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large">Alan,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large">Having seen your wiki submission, mark me down as a supporter in the same column. I have argued in the CCT RT in support of the positions advanced by folks who normally caucus with the IP and reputation interests because of similar reasoning. </div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large">I remain persuaded to the view that certain surrogates give more value to the end user interest that any single end user WHOIS lookup capability could deliver. It is a simple idea to go for the mass benefit every time; maximize outcomes where they provide a benefit to the greater mass of end users,not just the sentient ones.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large">-Carlton</div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;font-size:large"><br></div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><br>==============================<br><i><font face="comic sans ms, sans-serif">Carlton A Samuels</font></i><br><font face="comic sans ms, sans-serif"><i>Mobile: 876-818-1799<br><font color="#33CC00">Strategy, Process, Governance, Assessment & Turnaround</font></i></font><br>=============================</div></div></div></div></div></div><br></div><br><div class="gmail_quote"><div dir="ltr">On Wed, Jul 11, 2018 at 10:27 AM Alan Greenberg <<a href="mailto:alan.greenberg@mcgill.ca">alan.greenberg@mcgill.ca</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
Carlton, I think that this is THE answer to the question of why At-Large
needs to participate in this process. There are likely to be few GNSO
participants that look at it from this perspective.<br><br>
See my comment at
<a href="https://community.icann.org/x/_YlHBQ" target="_blank">
https://community.icann.org/x/_YlHBQ</a>.<br><br>
Alan<br><br>
At 11/07/2018 11:10 AM, Carlton Samuels wrote:<br>
<blockquote type="cite" class="m_-1695547865639422674cite">A good piece to introduce here.
So we not mis read this let me state how the end user interest is
inextricably conjoined with "third parties".<br><br>
The first is the protection of end users from predators and predatory
practices enabled by the DNS. The vast majority of end users would not
know a WHOIS record even it jumped up and bit them in the butt. We depend
on others to help us, to be on the line for our collective sake.<br><br>
These surrogates, if you will, include the reputation companies, the
antivirus folks, the researchers and a whole amalgam of third party
interests. <br><br>
When the end user gets a green tick that says this is a safe website, it
protects the end user. That springs from the work of reputation
companies. Accesd to WHOIS data is vested in their formulaic
response that keeps me from wandering, mouth-breathing, into dangerous
territory. <br><br>
ICANN and the entire chain of connections in the DNS infrastructure has a
role, each from a slightly different perspective. But reputation is not a
sole interest as it is for these guys. And the end user is a beneficiary
of this interest, which kicks in long way before the mainline DNS
actors.<br><br>
This is just one example. But let us be clear. That end user interests
are defended by surrogates and so-called third parties is not an outlier.
I would argue it is the central case.<br><br>
The ALAC may not argue for end user interests absent an appreciation of
the role in defending those interests by third parties. That would be a
failure to recognize the facts as they are...and an egregious abdication
of responsibilities.<br><br>
-Carlton<br><br>
On Wed, 11 Jul 2018, 7:51 am Bastiaan Goslings,
<<a href="mailto:bastiaan.goslings@ams-ix.net" target="_blank">
bastiaan.goslings@ams-ix.net</a>> wrote:<br>
<dl>
<dd>I think I can agree with both Jonathan/Alan and Tijani on this. And
as a matter of principle I’d therefore suggest to follow what the EDPB
says on page 2
<a href="https://www.icann.org/en/system/files/correspondence/jelinek-to-marby-05jul18-en.pdf" target="_blank">
https://www.icann.org/en/system/files/correspondence/jelinek-to-marby-05jul18-en.pdf</a>
<br><br>
<dd>’The EDPB considers it essential that a clear distinction be
maintained between the different processing activities that take place in
the context of WHOIS and the respective purposes pursued by the various
stakeholders involved. (…) The EDPB therefore reiterates that ICANN
should taake care not to conflate its own purposes with the interests of
third parties, nor with the lawful grounds of processing which may be
applicable in a particular case’<br><br>
<br><br>
<dd>> On 11 Jul 2018, at 12:17,
<a href="mailto:h.raiche@internode.on.net" target="_blank">h.raiche@internode.on.net</a>
wrote:<br>
<dd>> <br>
<dd>> Hi Tijani<br>
<dd>> <br>
<dd>> I think we can both agree that it is about the public
interest. And while privacy is a big part of that, so are other
issues - a safe, stable DNS etc.<br>
<dd>> <br>
<dd>> I have asked that this discussion is on the wiki so that there
is a place for everyone to contribute - and I hope you will participate
as well.<br>
<dd>> <br>
<dd>> We need agreed principles for the people who will sit on the
EpDP - which means we need to hear from everyone - you included<br>
<dd>> <br>
<dd>> Holly<br>
<dd>> <br>
<dd>> <br>
<dd>> ----- Original Message -----<br>
<dd>> From:<br>
<dd>> "Tijani BEN JEMAA"
<<a href="mailto:tijani.benjemaa@benjemaa.com" target="_blank">
tijani.benjemaa@benjemaa.com</a>><br>
<dd>> <br>
<dd>> To:<br>
<dd>> "Jonathan Zuck"
<<a href="mailto:JZuck@innovatorsnetwork.org" target="_blank">
JZuck@innovatorsnetwork.org</a>><br>
<dd>> Cc:<br>
<dd>>
"<a href="mailto:h.raiche@internodeon.net" target="_blank">
h.raiche@internodeon.net</a>"
<<a href="mailto:h.raiche@internode.on.net" target="_blank">
h.raiche@internode.on.net</a>>, "ALAC List"
<<a href="mailto:alac@atlarge-lists.icann.org" target="_blank">
alac@atlarge-lists.icann.org</a>>, "A t"
<<a href="mailto:staff@atlarge.icann.org" target="_blank">staff@atlarge.icann.org</a>
><br>
<dd>> Sent:<br>
<dd>> Wed, 11 Jul 2018 09:33:16 +0100<br>
<dd>> Subject:<br>
<dd>> Re: [ALAC] Draft Principles for GDPR<br>
<dd>> <br>
<dd>> <br>
<dd>> Good morning everyone,<br>
<dd>> <br>
<dd>> I disagree with this statement Jonathan.<br>
<dd>> The registrants represent the active part of the end-users. we
are responsible to defend their interest.<br>
<dd>> I have heard such reflection, and it always lead to be more
aligned with the commercial interests. We need to be careful and be
always for the public interest, not for the political or commercial
interests.<br>
<dd>> <br>
<dd>>
-----------------------------------------------------------------------------<br>
<dd>> Tijani BEN JEMAA<br>
<dd>> Executive Director<br>
<dd>> Mediterranean Federation of Internet Associations (FMAI)<br>
<dd>> Phone: +216 98 330 114<br>
<dd>> +216 52 385
114<br>
<dd>>
-----------------------------------------------------------------------------<br>
<dd>> <br>
<dd>> <br>
<dd>> Le 10 juil. 2018 Ã 22:27, Jonathan Zuck
<<a href="mailto:JZuck@innovatorsnetwork.org" target="_blank">
JZuck@innovatorsnetwork.org</a>> a écrit :<br>
<dd>> <br>
<dd>> Thanks Holly for getting this started. I guess what
we’re after are some basic principles on our perspective on the GDPR.
The temp spec is the temp spec so some of this will apply for sure, if we
reach some consensus on these but there are areas that are simply part of
the law over which we don’t have influence. A principle might be
something like<br>
<dd>> <br>
<dd>> <br>
<dd>> • The ALAC feels responsible to
reprresent the interests of non-registrants more so than registrants as
they represent the majority of users.<br>
<dd>> <br>
<dd>> I’m not saying we’ve agreed to that but that’s the kind of
filter we could send our reps in with?<br>
<dd>> <br>
<dd>> Jonathan<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> From: ALAC
<<a href="mailto:alac-bounces@atlarge-lists.icann.org" target="_blank">
alac-bounces@atlarge-lists.icann.org</a>> on behalf of
"<a href="mailto:h.raiche@internode.on.net" target="_blank">
h.raiche@internode.on.net</a>" <h.raiche@internode.onnet><br>
<dd>> Reply-To:
"<a href="mailto:h.raiche@internode.on.net" target="_blank">
h.raiche@internode.on.net</a>"
<<a href="mailto:h.raiche@internode.on.net" target="_blank">
h.raiche@internode.on.net</a>><br>
<dd>> Date: Tuesday, July 10, 2018 at 5:22 PM<br>
<dd>> To: ALAC List
<<a href="mailto:alac@atlarge-lists.icann.org" target="_blank">
alac@atlarge-lists.icann.org</a>>, A t
<<a href="mailto:staff@atlarge.icann.org" target="_blank">staff@atlarge.icann.org</a>
><br>
<dd>> Subject: [ALAC] Draft Principles for GDPR<br>
<dd>> <br>
<dd>> <br>
<dd>> Folks<br>
<dd>> <br>
<dd>> <br>
<dd>> Since we all think principles are a good idea, I have set down
the basics from the Temporary Spec - very simplistic, but it's a
start. What we need now is discussion on the principles.<br>
<dd>> <br>
<dd>> <br>
<dd>> Evin - I'm not sure if you have a new wiki page for discussion
on the temporary spec, but if not, would you create on.<br>
<dd>> <br>
<dd>> <br>
<dd>> And Olivier - the Temporary Spec necessarily will deal with
access - at the least, guiding principles, so whoever is on the EPDP will
have some guidance on our red lines on access.<br>
<dd>> <br>
<dd>> <br>
<dd>> So please everyone - comments<br>
<dd>> <br>
<dd>> <br>
<dd>> Thanks<br>
<dd>> <br>
<dd>> <br>
<dd>> Holly<br>
<dd>> <br>
<dd>> <br>
<dd>> Temporary Specification for gTLD Registration Data<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Principles for requirements to replace the RAA/Registry
Requirements<br>
<dd>> <br>
<dd>> (within the context of compliance with the GDPR)<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Purpose of Collection of Data<br>
<dd>> <br>
<dd>> Quoting from the Temporary Spec – which is quoting from the
ICCANN Bylaws:<br>
<dd>> <br>
<dd>> <br>
<dd>> purpose is to coordinate the bottom-up, multistakeholder
development and implementation of policies “[f]or which uniform or
coordinated resolution is reasonably necessary to facilitate the
openness, interoperability, resilience, security and/or stability of the
DNS including, with respect to gTLD registrars and registries†<br>
<dd>> <br>
<dd>> <br>
<dd>> Purpose includes<br>
<dd>> <br>
<dd>> · ô °‚ resolution of disputes
regarding the registration of domain names (as opposed to the use of such
domain names, but including where such policies take into account use of
the domain names);<br>
<dd>> <br>
<dd>> <br>
<dd>> · ô °‚ maintenance of and
access to accurate and up-to-date information concerning registered names
and name servers;<br>
<dd>> <br>
<dd>> <br>
<dd>> · ô °‚ procedures to avoid
disruptions of domain name registrations due to suspension or termination
of operations by a registry operator or a registrar (e.g., escrow);
and<br>
<dd>> <br>
<dd>> <br>
<dd>> · ô °‚ the transfer of
registration data upon a change in registrar sponsoring one or more
registered names.<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> the Bylaws specifically obligate ICANN, in carrying out its
mandate, to “adequately address issues of competition, consumer
protection, security, stability and resiliency, malicious abuse issues,
sovereignty concerns, and rights protection†<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Geographic Coverage of EPDP Outcome:<br>
<dd>> <br>
<dd>> · Apply globally or<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> · Apply only to European Economic Area (the
coverage of the GD<br>
<dd>> R) and otherwise lesser requirements (existing RAA
requirements?)<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Data Collected<br>
<dd>> <br>
<dd>> · ‘Thick Whois†– bassed on the
differing uses of the data is listed in the purpose above – OR<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> · Some lesser amount of information<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Consent<br>
<dd>> <br>
<dd>> · Registrants must be told, at the time of
collection, what personal information is collected, why the collection
is necessary to achieve the purposes, who will have access and in
what circumstances access will be given to what information, and
all circumstances in which the data will be transferred (to Registry,
Escrow) and where heldThey must also be told their consent can be
withdrawn at any time (and consequences of withdrawal) and how to
withdraw consent<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> Access to Data – Tiered access (largely what is in the
Techniccal Specification)<br>
<dd>> <br>
<dd>> · Applies to all Registrants – naturaal or
corporate persons<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> · Information generally publicly
available<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> o Registrant name<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> o Anonymised email or other anonymous contact
means<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> · Access to other personal information
–<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> o Only to accredited entities (not individuals)–
> <br>
<dd>> <br>
<dd>> <br>
<dd>> o Only in specific circumstances that warrant
access<br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> <br>
<dd>> _______________________________________________<br>
<dd>> ALAC mailing list<br>
<dd>>
<a href="mailto:ALAC@atlarge-lists.icann.org" target="_blank">
ALAC@atlarge-lists.icann.org</a><br>
<dd>>
<a href="https://atlarge-lists.icann.org/mailman/listinfo/alac" target="_blank">
https://atlarge-lists.icann.org/mailman/listinfo/alac</a><br>
<dd>> <br>
<dd>> At-Large Online:
<a href="http://www.atlarge.icann.org" target="_blank">http://www.atlarge.icann.org</a>
<br>
<dd>> ALAC Working Wiki:
<a href="https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)" target="_blank">
https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)</a>
<br>
<dd>> <br>
<dd>> _______________________________________________<br>
<dd>> ALAC mailing list<br>
<dd>>
<a href="mailto:ALAC@atlarge-lists.icann.org" target="_blank">
ALAC@atlarge-lists.icann.org</a><br>
<dd>>
<a href="https://atlarge-lists.icann.org/mailman/listinfo/alac" target="_blank">
https://atlarge-lists.icann.org/mailman/listinfo/alac</a><br>
<dd>> <br>
<dd>> At-Large Online:
<a href="http://www.atlarge.icann.org" target="_blank">http://www.atlarge.icann.org</a>
<br>
<dd>> ALAC Working Wiki:
<a href="https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)" target="_blank">
https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)</a>
<br><br>
<dd>_______________________________________________<br>
<dd>ALAC mailing list<br>
<dd><a href="mailto:ALAC@atlarge-lists.icann.org" target="_blank">
ALAC@atlarge-lists.icann.org</a><br>
<dd>
<a href="https://atlarge-lists.icann.org/mailman/listinfo/alac" target="_blank">
https://atlarge-lists.icann.org/mailman/listinfo/alac</a><br><br>
<dd>At-Large Online:
<a href="http://www.atlarge.icann.org" target="_blank">http://www.atlarge.icann.org</a>
<br>
<dd>ALAC Working Wiki:
<a href="https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)" target="_blank">
https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC)</a>
<br><br>
</dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dd></dl>_______________________________________________<br>
ALAC mailing list<br>
<a href="mailto:ALAC@atlarge-lists.icann.org" target="_blank">ALAC@atlarge-lists.icann.org</a><br>
<a href="https://atlarge-lists.icann.org/mailman/listinfo/alac" target="_blank">
https://atlarge-lists.icann.org/mailman/listinfo/alac</a><br><br>
At-Large Online:
<a href="http://www.atlarge.icann.org/" target="_blank">
http://www.atlarge.icann.org</a><br>
ALAC Working Wiki:
<a href="https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC" target="_blank">
https://community.icann.org/display/atlarge/At-Large+Advisory+Committee+(ALAC</a>
)</blockquote></div>
</blockquote></div>