[lac-discuss-en] [RDS-WHOIS2-RT] ICANN takes legal action in respect to GDPR

Wed May 30 19:32:52 UTC 2018

One analyst says there are at least 40+ areas in the GDPR that could be
modified/interpreted by national law and regulations. Which is why they say
if Schrems prevails in his lawsuits, we may very well see a reduction in
the surface area for [re]interpretation.

Almost 20 years ago, I was sent to a workshop [sponsored by a U.S.
regulator!] on regulatory intent. The takeaway that remains top of mind
even today was this old guy advising us to become English language
specialists for a successful career writing or interpreting regulations;
definitions matters most, he said. Lo and behold, I see this advice
validated every day since.

IMHO, the thing seemingly most overlooked is the definition of 'data
subject' and how that plays out in a practical way. That definition makes
individuals the subject of data, never mind whether they are inside EU
borders or not. Maybe it is serendipity that the idea is connected to a
fact of our digital lives; digital data can be anywhere and everywhere at
one, effectively loosening it bindings to territory. This is the kernel of
the extraterritorial reach of the law.

-Carlton

==============================
*Carlton A Samuels*

*Mobile: 876-818-1799Strategy, Process, Governance, Assessment & Turnaround*
=============================

On Wed, May 30, 2018 at 11:27 AM, Volker Greimann <vgreimann at key-systems.net
> wrote:

> One thing that every critic gets wrong is that in most European
> legislation, the vagueness is intentional and regulations and laws are much
> more reliant on interpretation. This allows for a broader cover than
> specific language, but also for more diverse ways of interpretation. In
> effect, those tasked with implementation are a lot freer in how to do so.
>
> Best
>
> Volker
>
> Am 30.05.2018 um 17:59 schrieb Chris Disspain:
>
> Seems like it’s not just ‘ICANN’ that is not a fan of GDPR...
>
> Cheers,
>
> Chris
>
> EU data privacy laws are likely to create barriers to trade
>
> GDPR creates serious, unclear legal obligations for both private and
> public entities
>
> WILBUR ROSS [FT.COM]
> <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ft.com_stream_c282e9be-2Dedd9-2D3de8-2D8b0c-2De697dd30c800&d=DwMFAg&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=W6FGoh-o78gkKZN3_sXelY30VwoSX288Wo9XnUkQrK8&m=VfOhFAsJy97RwESrvrnrTSkhx0uJWaGvNSqGXGumqxQ&s=56fGyMUXCEaAk52abfL-oQIioE_ZnquZH-AW2j9iMIg&e=>
>
>
>
> We in the US are deeply concerned about the way the EU’s new privacy
> guidelines, which came into effect last week, will force big changes in the
> way US and European companies do business.
>
>
>
> Donald Trump’s administration supports the new General Data Protection
> Regulation’s goal of protecting personal online data while continuing to
> enable transatlantic data exchange.  We are also committed to working with
> the EU to implement the new guidelines.
>
>
>
> We believe that data-sharing rules must respect privacy and protect our
> shared interests of maintaining public safety and the easy functioning of
> the internet, while also taking into account the regulatory, scientific,
> and commercial needs of all our countries. As currently envisioned, GDPR’s
> implementation could significantly interrupt transatlantic co-operation and
> create unnecessary barriers to trade, not only for the US, but for everyone
> outside the EU.
>
>
>
> The US thrives because it has an open, entrepreneurial society that
> encourages innovation and embraces technological advances. We believe
> consumers benefit because they enjoy the digital products and services that
> are invented and brought to market by US companies.
>
>
>
> Complying with GDPR will exact a significant cost, particularly for small
> and medium-sized enterprises and consumers who rely on digital services and
> may lose access and choice as a result of the guidelines. US companies have
> already invested billions of dollars to comply with the new rules. But even
> as companies update their privacy policies to bring themselves in line,
> many uncertainties remain.
>
>
>
> GDPR creates serious, unclear legal obligations for both private and
> public sector entities, including the US government. We do not have a clear
> understanding of what is required to comply. That could disrupt
> transatlantic co-operation on financial regulation, medical research,
> emergency management co-ordination, and important commerce. It could
> threaten public welfare on both sides of the Atlantic. US and European
> financial services regulators may be impeded from carrying out important
> activities: for example, it is unclear whether EU supervisors can share
> information with the US for compliance exams and other oversight.
>
>
>
> Pharmaceutical companies may not be able to submit medical data from drug
> trials involving European patients to US authorities, which could delay the
> approval of new life-saving drugs. The Centers for Disease Control and
> Prevention could be restricted in sharing information with European
> counterparts while responding to the outbreak of diseases such as Ebola.
> And the US Postal Service believes the new rules will prevent EU postal
> operators from providing the personal data on individuals it needs to
> process inbound mail.
>
>
>
> GDPR also raises concern for law enforcement and intellectual property
> rights by restricting access to publicly available internet domain-name
> registration data. We anticipate companies will either stop providing
> “Whois” look-up services outright, or make it hard to access the
> information. That could stop law enforcement from ascertaining who is
> behind websites that propagate terrorist information, sponsor malicious
> botnets or steal IP addresses.
>
>
>
> These important activities need to be weighed carefully against privacy
> concerns. They are critical to building trust in the internet, safeguarding
> infrastructure, and protecting the public. Our respect for privacy does not
> have to come at the expense of public safety.
>
>
>
> We must find a way to implement GDPR without creating undue barriers.
> Privacy is an important and timely issue, but it also is a complex one. The
> guidance on GDPR implementation is too vague. EU authorities must provide
> clearer rules and a more predictable regulatory environment to support
> investment and innovation. We ask them to act quickly so that GDPR can be
> properly implemented.
>
>
>
> The writer is the US commerce secretary
>
>
> On 30 May 2018, at 15:45, Carlton Samuels <carlton.samuels at gmail.com>
> wrote:
>
> I read the pleading eventually and in fairness to Jones Day, they threw
> everything they got into their filing, the baby and bathwater included.  So
> naturally the overreach on trademark and content regulation that Milton and
> them getting excited about made its way there.
>
> Comparing the arguments presented to the directives of the GDPR, self
> defeat seems evident. So maybe it is a fiendishly clever legal strategy at
> play and this is a test case to get a few markers down for the big one. But
> from the pleadings of facts and intended outcome, this one, IMHO, is as
> weak as a strain of denatured bacteria.
>
> -Carlton
>
>
>
>
> ==============================
> *Carlton A Samuels*
>
> *Mobile: 876-818-1799 Strategy, Process, Governance, Assessment &
> Turnaround*
> =============================
>
> On Wed, May 30, 2018 at 7:21 AM, Volker Greimann <
> vgreimann at key-systems.net> wrote:
>
>> Of course he will. ICANN has been acting ill-advised from the start.
>> Instead of embracing GDPR and its impact and taking the essence of the
>> regulation at heart and building upon that basis, ICANN ORG (and parts of
>> the community) has been shirking its responsibilites until this day and
>> continued to search for loopholes, excemptions and ways around it.
>>
>> The law suit is just the latest example of this painful process, where
>> ICANN now is specifically expanding its mandate to define a purpose for the
>> collection of certain data.
>>
>> Some excellent reading material on this issue can be found here:
>> https://www.internetgovernance.org/2018/05/28/the-injunction-icanns-lame-
>> attempt-to-turn-dns-into-a-trademark-registry/
>>
>> Best,
>> Volker
>>
>>
>>
>> I have a feeling Schrems will likely triumph before ICANN.
>>
>> -Carlton
>>
>>
>> ==============================
>> *Carlton A Samuels*
>>
>> *Mobile: 876-818-1799 Strategy, Process, Governance, Assessment &
>> Turnaround*
>> =============================
>>
>> On Sun, May 27, 2018 at 11:05 PM, Alan Greenberg <
>> alan.greenberg at mcgill.ca> wrote:
>>
>>> https://www.icann.org/news/announcement-2018-05-25-en
>>>
>>> For those who might not have noticed, on Friday, ICANN announced that it
>>> has filed injunction proceedings against a German registrar (associated
>>> with TUCOWS) that had informed ICANN that under the GDPR, it would no
>>> longer be collecting certain data (Admin and Technical contact info).
>>>
>>> Collection is a critical step, in that if data is not collected, it
>>> cannot be released to accredited parties, no matter how good their
>>> justification is.
>>>
>>> As I understand it (and that could be wrong), this is an interesting
>>> step, in that it takes the issue out of the hands of data commissioners and
>>> into the courts, where presumably ICANN will be given an opportunity to
>>> explain why it believes that such collection is important. Although data
>>> commissioners have been reported to say that they have no legal basis to
>>> grant a delay, this is something that the courts can do pending resolution.
>>>
>>> Alan
>>>
>>> _______________________________________________
>>> RDS-WHOIS2-RT mailing list
>>> RDS-WHOIS2-RT at icann.org
>>> https://mm.icann.org/mailman/listinfo/rds-whois2-rt
>>>
>>
>>
>>
>> _______________________________________________
>> RDS-WHOIS2-RT mailing listRDS-WHOIS2-RT at icann.orghttps://mm.icann.org/mailman/listinfo/rds-whois2-rt
>>
>>
>> --
>> Bei weiteren Fragen stehen wir Ihnen gerne zur Verfügung.
>>
>> Mit freundlichen Grüßen,
>>
>> Volker A. Greimann
>> - Rechtsabteilung -
>>
>> Key-Systems GmbH
>> Im Oberen Werk 1
>> 66386 St. Ingbert
>> Tel.: +49 (0) 6894 - 9396 901
>> Fax.: +49 (0) 6894 - 9396 851
>> Email: vgreimann at key-systems.net
>>
>> Web: www.key-systems.net / www.RRPproxy.netwww.domaindiscount24.com / www.BrandShelter.com
>>
>> Folgen Sie uns bei Twitter oder werden Sie unser Fan bei Facebook:www.facebook.com/KeySystemswww.twitter.com/key_systems
>>
>> Geschäftsführer: Alexander Siffrin
>> Handelsregister Nr.: HR B 18835 - Saarbruecken
>> Umsatzsteuer ID.: DE211006534
>>
>> Member of the KEYDRIVE GROUPwww.keydrive.lu
>>
>> Der Inhalt dieser Nachricht ist vertraulich und nur für den angegebenen Empfänger bestimmt. Jede Form der Kenntnisgabe, Veröffentlichung oder Weitergabe an Dritte durch den Empfänger ist unzulässig. Sollte diese Nachricht nicht für Sie bestimmt sein, so bitten wir Sie, sich mit uns per E-Mail oder telefonisch in Verbindung zu setzen.
>>
>> --------------------------------------------
>>
>> Should you have any further questions, please do not hesitate to contact us.
>>
>> Best regards,
>>
>> Volker A. Greimann
>> - legal department -
>>
>> Key-Systems GmbH
>> Im Oberen Werk 1
>> 66386 St. Ingbert
>> Tel.: +49 (0) 6894 - 9396 901
>> Fax.: +49 (0) 6894 - 9396 851
>> Email: vgreimann at key-systems.net
>>
>> Web: www.key-systems.net / www.RRPproxy.netwww.domaindiscount24.com / www.BrandShelter.com
>>
>> Follow us on Twitter or join our fan community on Facebook and stay updated:www.facebook.com/KeySystemswww.twitter.com/key_systems
>>
>> CEO: Alexander Siffrin
>> Registration No.: HR B 18835 - Saarbruecken
>> V.A.T. ID.: DE211006534
>>
>> Member of the KEYDRIVE GROUPwww.keydrive.lu
>>
>> This e-mail and its attachments is intended only for the person to whom it is addressed. Furthermore it is not permitted to publish any content of this email. You must not use, disclose, copy, print or rely on this e-mail. If an addressing or transmission error has misdirected this e-mail, kindly notify the author by replying to this e-mail or contacting us by telephone.
>>
>>
>>
>>
>>
>> _______________________________________________
>> RDS-WHOIS2-RT mailing list
>> RDS-WHOIS2-RT at icann.org
>> https://mm.icann.org/mailman/listinfo/rds-whois2-rt
>>
>>
> _______________________________________________
> RDS-WHOIS2-RT mailing list
> RDS-WHOIS2-RT at icann.org
> https://mm.icann.org/mailman/listinfo/rds-whois2-rt
>
>
>
> _______________________________________________
> RDS-WHOIS2-RT mailing listRDS-WHOIS2-RT at icann.orghttps://mm.icann.org/mailman/listinfo/rds-whois2-rt
>
>
> --
> Bei weiteren Fragen stehen wir Ihnen gerne zur Verfügung.
>
> Mit freundlichen Grüßen,
>
> Volker A. Greimann
> - Rechtsabteilung -
>
> Key-Systems GmbH
> Im Oberen Werk 1
> 66386 St. Ingbert
> Tel.: +49 (0) 6894 - 9396 901
> Fax.: +49 (0) 6894 - 9396 851
> Email: vgreimann at key-systems.net
>
> Web: www.key-systems.net / www.RRPproxy.netwww.domaindiscount24.com / www.BrandShelter.com
>
> Folgen Sie uns bei Twitter oder werden Sie unser Fan bei Facebook:www.facebook.com/KeySystemswww.twitter.com/key_systems
>
> Geschäftsführer: Alexander Siffrin
> Handelsregister Nr.: HR B 18835 - Saarbruecken
> Umsatzsteuer ID.: DE211006534
>
> Member of the KEYDRIVE GROUPwww.keydrive.lu
>
> Der Inhalt dieser Nachricht ist vertraulich und nur für den angegebenen Empfänger bestimmt. Jede Form der Kenntnisgabe, Veröffentlichung oder Weitergabe an Dritte durch den Empfänger ist unzulässig. Sollte diese Nachricht nicht für Sie bestimmt sein, so bitten wir Sie, sich mit uns per E-Mail oder telefonisch in Verbindung zu setzen.
>
> --------------------------------------------
>
> Should you have any further questions, please do not hesitate to contact us.
>
> Best regards,
>
> Volker A. Greimann
> - legal department -
>
> Key-Systems GmbH
> Im Oberen Werk 1
> 66386 St. Ingbert
> Tel.: +49 (0) 6894 - 9396 901
> Fax.: +49 (0) 6894 - 9396 851
> Email: vgreimann at key-systems.net
>
> Web: www.key-systems.net / www.RRPproxy.netwww.domaindiscount24.com / www.BrandShelter.com
>
> Follow us on Twitter or join our fan community on Facebook and stay updated:www.facebook.com/KeySystemswww.twitter.com/key_systems
>
> CEO: Alexander Siffrin
> Registration No.: HR B 18835 - Saarbruecken
> V.A.T. ID.: DE211006534
>
> Member of the KEYDRIVE GROUPwww.keydrive.lu
>
> This e-mail and its attachments is intended only for the person to whom it is addressed. Furthermore it is not permitted to publish any content of this email. You must not use, disclose, copy, print or rely on this e-mail. If an addressing or transmission error has misdirected this e-mail, kindly notify the author by replying to this e-mail or contacting us by telephone.
>
>
>
>
>
> _______________________________________________
> RDS-WHOIS2-RT mailing list
> RDS-WHOIS2-RT at icann.org
> https://mm.icann.org/mailman/listinfo/rds-whois2-rt
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://atlarge-lists.icann.org/pipermail/lac-discuss-en/attachments/20180530/4d17bc4f/attachment-0001.html>