Dear RegistrarSEC (a wholly-owned subsidiary of Facebook),

I write on behalf of Stichting Registrar of Last Resort Foundation (RoLR) to request the registrant of the following domain name:

rr-facebook.com

The mailserver at mail.rr-facebook.com is being used to send silly automated emails like the one below. I am seeking to identify the registrant so I can give them a jolly good talking-to over some delicious tapas in Barcelona. 1

The information above should be provided by exactly Thu Oct 18 16:17:05 UTC 2018 in order to faciliate a timely restaurant reservation. I’m pretty sure that this is a lawful request under the European Working Lunch Directive.

Failure to comply with this request will involve absolutely no further action, because (let’s be honest) Compliance have enough on their plate already.

Yours faithfully,

Benedict Addis.

1 RoLR reserves the right to choose type and quantity of tapas, but is partial to pa amb tomàquet.

Begin forwarded message:

From: whoisrequest@rr-facebook.com
Subject: Nonpublic registrant data for ...
Date: 16 October 2018 at 05:17:05 BST
To: abuse@rolr.eu

To Stichting Registrar of Last Resort Foundation
I write on behalf of Facebook [and its affiliated companies] to request a single domain registration record as identified below.¹We have become aware that the below-identified domain name misuses one or more of the following trademarks held by Facebook [and/or its affiliated companies]:

Trademark

US Trademark Reg. #

EU Trademark Reg. #

WHATSAPP

4083272
1A

009986514
EUTM

WHATSAPP

3939463
1A

0099865149
EUTM

OCULUS RIFT

4863585
1A

012983854
EUTM

OCULUS

4891157
1A

012983854

OCULUS VR

4424543
1A

012983854
EUTM

INSTAGRAM

4146057
1A

012111746
EUTM

INSTAGRAM

4170675
1A

012111746
EUTM

FB

4659777
1A

8981383
EUTM

FACEBOOK

4643774
1A

005722392
EUTM

The fame and recognition of the above marks entitle Facebook to broad legal protection globally.
In order to investigate and prevent intellectual property infringement and contact infringing parties and relevant service providers, we request information regarding the following domain name:

[snipped some random DGA domain entirely unconnected with these trademarks]

We seek the following information¹ consistent with the principles enumerated under Section 4 of the Temporary Specification for gTLD Registration Data adopted by ICANN on May 18, 2018:

Registrant name, address, phone, fax number, and email address

Technical contact name, address, phone, fax number, and email address

Administrative name, address, phone, fax number, and email address

To the extent that the requested information is believed to be subject to the European Union’s General Data Protection Regulation (Commission Regulation (EU) 2016/679), we submit this request pursuant to Article 6(1)(f) of that Regulation. The information requested is necessary for the purposes of our legitimate interests, namely (1) identifying the registered holder of a domain name and their contact information to investigate and respond to potential trademark infringement and (2) enforcing legal claims.
We seek this information by Thu Oct 18 04:17:05 GMT 2018 in order to facilitate immediate legal action against the registrant. Please provide the requested information by responding to this email. NOTE: Please do not change the CASE in the subject line.

Facebook (transmitted by AppDetex Managed Services)

^{1. [Facebook [and its affiliated companies] reserves all of its legal rights in relation to this request and by making this request with respect to the domain name referenced above does not waive any and all rights it may have to request additional information regarding other domain names registered by the registrant or the contacts reflected in the WHOIS record.]}