3,197
edits
Changes
Expedited Policy Development Process on the Temporary Specification for gTLD Registration Data (view source)
Revision as of 19:51, 14 December 2021
, 2 years ago→Deliberations and Initial Report
=== EPDP Phase 2 ===
=== EPDP Phase 2 ===
====Deliberations and Initial Report====
====Deliberations and Initial Report====
In Phase 2, the EPDP team was tasked with addressing open issues left unresolved from Phase 1, addressing issues listed in the Annex to the Temporary Specification,<ref>[https://www.icann.org/resources/pages/gtld-registration-data-specs-en/#annex ICANN.org - Temporary Specification for gTLD Registration Data: Annex-Important Issues for Further Community Action]</ref> and developing a standardized access system for nonpublic registration data.<ref name="finalrep">[https://gnso.icann.org/en/correspondence/epdp-phase-2-temp-spec-gtld-registration-data-2-31jul20-en.pdf GNSO Archive - EPDP Temp Spec Phase 2 Final Report], July 31, 2020</ref> The team's Initial Report was published for public comment in February 2020<ref>[https://gnso.icann.org/en/issues/epdp-phase-2-initial-07feb20-en.pdf GNSO Archive - EPDP Temp Spec Phase 2 Initial Report], February 7, 2020 (PDF)</ref>
In Phase 2, the EPDP team was tasked with addressing open issues left unresolved from Phase 1, addressing issues listed in the Annex to the Temporary Specification,<ref>[https://www.icann.org/resources/pages/gtld-registration-data-specs-en/#annex ICANN.org - Temporary Specification for gTLD Registration Data: Annex-Important Issues for Further Community Action]</ref> and developing a standardized access system for nonpublic registration data.<ref name="finalrep">[https://gnso.icann.org/en/correspondence/epdp-phase-2-temp-spec-gtld-registration-data-2-31jul20-en.pdf GNSO Archive - EPDP Temp Spec Phase 2 Final Report], July 31, 2020</ref> The team's Initial Report was published for public comment in February 2020<ref name="2initrep">[https://gnso.icann.org/en/issues/epdp-phase-2-initial-07feb20-en.pdf GNSO Archive - EPDP Temp Spec Phase 2 Initial Report], February 7, 2020 (PDF)</ref> The report outlined a proposed model for SSAD, where requests were sent to a centralized clearinghouse, and then action up on responses to were taken up by each contracted party, as applicable. The model was based on the following broad principles:
* Ideally, receipt, authentication, and transmission of SSAD requests should be automated wherever feasible. Disclosure decisions may be automated to the extent feasible, but should be standardized as much as possible across decisions.
* SSAD should be subject to continuous improvement, via a method of review and improvement that operates within the policies outlined by the EPDP, ICANN Bylaws, GNSO procedures & guidelines, and data protection legislation and regulation.
* Contracted parties should be subject to service-level agreements (SLAs) regarding response time for SSAD requests, based on priority.
* Responses to requests should be transmitted directly from the contracted party to the requestor, but there must be some sort of logging or tracking mechanism so that the SSAD "clearinghouse" is able to monitor and record decisions, compliance with SLAs, and perform other oversight of request processing.<ref name="2initrep" />
The Initial Report contained 19 recommendations regarding the proposed model:<ref name="2initrep" />
{| class="wikitable"
|-
! Recommendation(s)
! Subject
! Notes
|-
| 1-2
| Accreditation
| Accreditation requirements for entities (1) and government agencies (2)
|-
| 3-5
| Requests
| Processing of requests, form & content of request, and receipt acknowledgement
|-
| 6-8
| Responses
| Authorization of requests, including automated requests, and form and content of responses from contracted parties
|-
| 9
| SLAs
| Priority levels and required response times
|-
| 10, 12, 13, 14
| Terms of Use
| Acceptable use policy recommendations (10), terms of use and privacy policy (13), and monitoring & enforcement of policies (12); requestors must agree to store & maintain disclosed data in a secure manner, and dispose of data once its purpose has been fulfilled (14)
|-
| 11
| Disclosure
| Rules and requirements regarding disclosure of information in response to an SSAD request
|-
| 15
| Financial Sustainability
| Distinguishing SSAD start-up costs from operating costs; possible cost-recovery measures to maintain financial viability
|-
| 16-17
| Automation
| SSAD should be automated to the greatest extent possible (16); logging (17) should include a variety of metrics and transactional milestones for requests, responses, and enforcement actions;<br />
|-
| 18
| Audit
| Audit procedures for the accrediting authority, contracted parties, and accredited parties
|-
| 19
| Evolution
| Mechanism for review, improvement, and evolution of SSAD to increase effectiveness and streamline operations<br />
|}
====Final Report====
====Final Report====