Dear RegistrarSEC (a wholly-owned subsidiary of Facebook), I write on behalf of Stichting Registrar of Last Resort Foundation (RoLR) to request the registrant of the following domain name: rr-facebook.com The mailserver at mail.rr-facebook.com is being used to send silly automated emails like the one below. I am seeking to identify the registrant so I can give them a jolly good talking-to over some delicious tapas in Barcelona. 1 The information above should be provided by exactly Thu Oct 18 16:17:05 UTC 2018 in order to faciliate a timely restaurant reservation. I’m pretty sure that this is a lawful request under the European Working Lunch Directive. Failure to comply with this request will involve absolutely no further action, because (let’s be honest) Compliance have enough on their plate already. Yours faithfully, Benedict Addis. -- 1 RoLR reserves the right to choose type and quantity of tapas, but is partial to pa amb tomàquet.

Begin forwarded message:

From: whoisrequest@rr-facebook.com Subject: Nonpublic registrant data for ... Date: 16 October 2018 at 05:17:05 BST To: abuse@rolr.eu

To Stichting Registrar of Last Resort Foundation

I write on behalf of Facebook [and its affiliated companies] to request a single domain registration record as identified below.1 We have become aware that the below-identified domain name misuses one or more of the following trademarks held by Facebook [and/or its affiliated companies]:

Trademark

US Trademark Reg. #

EU Trademark Reg. #

WHATSAPP

4083272

1A

009986514

EUTM

WHATSAPP

3939463

1A

0099865149

EUTM

OCULUS RIFT

4863585

1A

012983854

EUTM

OCULUS

4891157

1A

012983854

OCULUS VR

4424543

1A

012983854

EUTM

INSTAGRAM

4146057

1A

012111746

EUTM

INSTAGRAM

4170675

1A

012111746

EUTM

FB

4659777

1A

8981383

EUTM

FACEBOOK

4643774

1A

005722392

EUTM

The fame and recognition of the above marks entitle Facebook to broad legal protection globally.

In order to investigate and prevent intellectual property infringement and contact infringing parties and relevant service providers, we request information regarding the following domain name:

[snipped some random DGA domain entirely unconnected with these trademarks] We seek the following information1 consistent with the principles enumerated under Section 4 of the Temporary Specification for gTLD Registration Data adopted by ICANN on May 18, 2018:

Registrant name, address, phone, fax number, and email address

Technical contact name, address, phone, fax number, and email address

Administrative name, address, phone, fax number, and email address

To the extent that the requested information is believed to be subject to the European Union’s General Data Protection Regulation (Commission Regulation (EU) 2016/679), we submit this request pursuant to Article 6(1)(f) of that Regulation. The information requested is necessary for the purposes of our legitimate interests, namely (1) identifying the registered holder of a domain name and their contact information to investigate and respond to potential trademark infringement and (2) enforcing legal claims.

We seek this information by Thu Oct 18 04:17:05 GMT 2018 in order to facilitate immediate legal action against the registrant. Please provide the requested information by responding to this email. NOTE: Please do not change the CASE in the subject line.

Facebook (transmitted by AppDetex Managed Services)

1. [Facebook [and its affiliated companies] reserves all of its legal rights in relation to this request and by making this request with respect to the domain name referenced above does not waive any and all rights it may have to request additional information regarding other domain names registered by the registrant or the contacts reflected in the WHOIS record.]