Group 1: Criminal Law enforcement/national or public security

LEA 1, LEA 2, IP 1, IP 2

Group 2: Non-LE investigations and civil claims

BC1/2, BC 3, BC 5, SSAC 3, ALAC 2, IP 3, IP 4

Group 3: Need for redacted data for a third party to contact registrant

BC 7, SSAC 1

Group 4: Consumer protection, abuse prevention, digital service provider (DSP) and network security

SSAC 2, BC 9, ALAC 1

Group 5: Registered Name Holder consent or contract

BC 4, BC 6, BC 8, IP 5

LEA 1

Investigation of criminal activity against a victim in the jurisdiction of the investigating EU LEA requesting data from a non-local data controller.

LEA 2

Investigation of criminal activity against a victim in the jurisdiction of the investigating EU LEA requesting data from a local data controller.

SSAC 1

When a network is undergoing an attack involving a domain name, and the operator(s) of that network need to contact the domain owner to remediate the security issue (DDOS, Botnet, etc.)

SSAC 2

Determine “Reputation” of domain name and/or elements associated with domain name registrations.

SSAC 3

Investigation of criminal activity where domain names are used.  Typical specific example: phishing attack.

IP 1

Trademark owners requesting data in the establishment, exercise or defense of legal claims for trademark infringement

IP 2

Investigation of criminal activity against a victim in the jurisdiction of the investigating LEA requesting data from either a local a non-local data controller.

IP 3

Investigation of criminal activity in the jurisdiction of the investigating LEA requesting data from either a local a non-local data controller.

IP 4

Copyright owners requesting data in the establishment, exercise or defense of legal claims for copyright infringement

IP 5

Providers requesting access required to facilitate due process in the UDRP and URS

BC1/2

Initial investigation of criminal activity against a victim and/or secondary victim where domain names are used in the commission of the crime 

BC 3

Identify owner of abusive domains and other related domains involved in civil legal claims related to phishing, malware, botnets, and other fraudulent activities

BC 4

Maintaining the domain name registration by the Registered Name Holder

BC 5

The establishment, exercise or defense of a legal claim involving a registrant of a domain name

BC 6

M&A name portfolio due diligence or purchase of domain name from bankrupt entity or other seller

BC 7

Contacting the Registrant to resolve a Technical or Operational Issue with a Domain Name

BC 8

Help a certification authority determine and validate the identity of the entity associated with a domain name that will be bound to an SSL/TLS certificate

BC 9

Search Engines, Messaging Services & Social Media Platforms seeking to confirm the authenticity of businesses advertising or Posting News on its Platform

ALAC 1

Online buyers identifying and validating the source of goods or services/ Internet users validating the legitimacy of an email or a website to protect themselves

ALAC 2

Consumer protection organizations

EPDP Team to finish reviewing the LEA use case offline, beginning at subcategory g and identify questions to the list in writing (if any) by Tuesday, 23 July.

Tuesday, 23 July 2019

Alan Greenberg to draft proposed legal question regarding the trustworthiness of the requestor and send to Leon and EPDP Leadership.

Thursday, 25 July 2019

Chris Lewis-Evans, with the help of GAC colleagues (as applicable) to consider any questions identified and propose corresponding edits/clarifications to the use case.

Thursday, 25 July 2019

Each group to review the early input included in the updated SSAD worksheet and provide questions (if any) into the Google doc for early input questions. 

25 July 2019