SAC118 was published on 15 July 2021. All SSAC publications can be found at https://www.icann.org/groups/ssac/documents.
| Recommendation | Description | Current Phase |
|---|---|---|
| Recommendation 1 | The SSAC recommends the Generic Name Supporting Organization (GNSO) and ICANN org focus their attention on building and operating an effective differentiated access system. A differentiated access system with the following properties is needed: Timely - It must come into operation soon. Reliable - It must operate in a predictable and consistent fashion, both in the operation of the system and the decision-making by the participants of the system. Useful - It must provide results that are of benefit to the requesters. Efficient - It must provide responses to legitimate data requests quickly, and at a cost to all the parties that are acceptable for the purpose. Easily Accessed - Gaining and maintaining credentials has to work well enough to facilitate—rather than impede—use. This document uses the term “effective” to refer to a differentiated access system fulfilling all the above requirements, and, of course including the functionality required to manage distinct requests and responses to various combinations of requesters and purposes as noted in Section 2.2. | Phase 3 | Evaluate & Consider |
| Recommendation 2A | The SSAC recommends the following regarding legal versus natural persons: A. A data element should be defined that denotes the legal status of the registrant. Initially we propose three admissible values: Natural, Legal, and Unspecified. “Unspecified” would be the default value until the registrant identifies themselves as a natural or legal person. This field should be able to support status values depending upon future policy decisions. | CLOSED |
| Recommendation 2B | The SSAC recommends the following regarding legal versus natural persons: B. This data element should be displayed as part of the publicly available data. | CLOSED |
| Recommendation 2C | The SSAC recommends the following regarding legal versus natural persons: C. Registrants should be classified as either natural or legal persons. This should be required at the time of registration, for all new domain registrations. For existing registrations, the value can remain “Unspecified” until it is filled at a later time. Registrars should be required to ask at relevant times, such as upon domain renewal and/or the annual accuracy inquiry, whether the registrant is natural or legal, with the goal of eventually obtaining that data for all registrants, and reducing “Unspecified” to the lowest practical level. | CLOSED |
| Recommendation 2D | The SSAC recommends the following regarding legal versus natural persons: D. Registrants currently are able to and should continue to have the option of making their contact data publicly available. Legal person registrants should also have the ability to protect their data via privacy and proxy services. | CLOSED |
| Recommendation 3A | The SSAC recommends the following regarding the feasibility of pseudonymous email contact: A. The two policy objectives--namely (1) the ability to quickly and effectively contact the registrant without disclosing personal data, and (2) A common identifier that helps investigators to correlate registrations with common contacts should be considered separately. | CLOSED |
| Recommendation 3B | The SSAC recommends the following regarding the feasibility of pseudonymous email contact: B. To achieve policy objective (A1), registrars should deploy (or continue to deploy) methods to support registrant-based email contact (See section 2.1.2 discussion of the two methods). The SSAC further recommends uniform requirements for safeguards be developed for the registrant-based email contact. The requirements should include maintaining the privacy of the registrant as appropriate and service level commitments to set expectations for the use of the service. These safeguards are independent of the method chosen (e.g., unique email addresses or web-based forms). | CLOSED |
| Recommendation 3C | The SSAC recommends the following regarding the feasibility of pseudonymous email contact: C. To achieve policy objective (A2), additional research is needed on the methods, their efficacy, and their tradeoffs. We recommend the EPDP Phase 2A not specify a method for correlating registrations with a common contact at this time. | CLOSED |
