Privacy/Proxy Services Accreditation Implementation
Implementation Project Status
Updated 28 August 2017
- The Implementation Review Team (IRT) meets every Tuesday at 14:00 UTC.
- The IRT is reviewing the first draft Privacy and Proxy Service Provider Accreditation Agreement.
- Once the IRT completes its review of the Privacy and Proxy Service Provider Accreditation Agreement, it will revisit the draft Privacy and Proxy Service Provider Accreditation Policy and the Applicant Guide. When these materials are complete, these items will be published for public comment.
- Board Approval: 9 August 2016
- Draft implementation plan/framework distributed to IRT: 14 October 2016 (available on the community wiki, login required for access)
- IRT kickoff meeting: 18 October 2016
- PSWG proposal delivered to IRT: 4 June 2017
- Privacy and Proxy Service Provider Accreditation Agreement draft v1 distributed to IRT for discussion: 17 July 2017
- [Estimated] Public comment period on proposed implementation of Privacy and Proxy Service Provider Accreditation Program: October 2017
- [Estimated] Close of public comment period on proposed implementation of Privacy and Proxy Service Provider Accreditation Program: November/December 2017
- Completion of IRT's work and announcement of final requirements and effective date will depend on the results of the public comment forum. If few changes are required, the IRT's work could be complete Q1 2018.
The 2013 Registrar Accreditation Agreement (RAA) includes a Specification on Privacy and Proxy Registrations that contains requirements for privacy and proxy service registrations offered through affiliates and resellers of registrars accredited under the 2013 RAA.
These requirements will be replaced by the Privacy and Proxy Accreditation Program. ICANN is implementing this program based on Final Recommendations [PDF, 1.24 MB] that were developed by the GNSO Privacy & Proxy Services Accreditation Issues PDP Working Group, adopted by the GNSO Council and approved by the ICANN Board.
New accreditation program requirements will include:
- Detailed frameworks for provider responses to requests from law enforcement authorities and intellectual property holders
- Standardized requirements for providers' relay of communications from third parties to privacy and proxy service customers
- Provider data escrow and data retention requirements
- Required provider disclosures to privacy and proxy service customers and third-party requesters
- A mandatory provider educational program.