Page History
...
Tip | ||
---|---|---|
| ||
Apologies: Melina Stroungi (GAC), James Bladel (RrSG), Jan Janssen (tentative - IPC), Matthew Shears (ICANN Board), Owen Smigelski (RrSG) Alternates: Matt Serlin (RrSG) |
Note |
---|
Notes/ Action Items Please find below the notes and action items from today’s meeting. Following today’s discussion, the Support Staff Team incorporated the agreements we captured into an updated version of the Final Report for your review (https://drive.google.com/drive/folders/1TW3Z-s6DzS2QsV_VwJ6iUQTvKVIXQrmG). EPDP Team members are now requested to review the pdf version of the complete Final Report and indicate what changes/updates are essential, within this Google Doc, before the Final Report can be published. Please provide your input as soon as possible, but no later than Wednesday, 1 September 14.00 UTC. Please note there is currently a placeholder meeting scheduled for Thursday, 2 September at 14:00 UTC.
EPDP Phase 2A - Meeting #40 Proposed Agenda Tuesday 31 August 2021 at 14.00 UTC
https://docs.google.com/document/d/1knSKHXt0njWqXMmpiDKA76amycenNBUl/edit As a reminder: timeline to get to Final Report 30 August – deadline for minority statements 31 August – finalize report and address any outstanding items, if any. Chair to circulate proposed consensus designations and Chair statement. 2 September – placeholder meeting, submission of Final Report to GNSO Council 10 September – final deadline for minority statements (any minority statements submitted after 30 August will be added to the Final Report, with the updated version to be submitted to the Council in time for the September meeting document deadline)
Leadership Assessment: There appears to be general support for removing the current statement and related footnotes expressing opinions but only if the Chair statement accurately reflects the EPDP Team’s conversations and differences of opinions to make clear that readers understand that where the recommendations have ended up, is not necessarily what some would have liked to see. Keith to circulate consensus designations and proposed Chair’s statement following the call to allow the EPDP Team to confirm that this has been done in an acceptable manner.
b. Review ask #2: Do the updates and the reorganization of recommendation #1 address the cannot live with items flagged? If not, how can these be addressed, factoring in the discussions to date. Leadership Assessment: There is still a level of discomfort with the recommendation, although based on the discussions to date the group does seem to agree on the underlying principle (a field(s) must be created (technically), but this field(s) is optional for use by CPs. If this is indeed the common understanding, and factoring in the other suggestions, would the following updates be helpful:
The EPDP Team recommends that a field or fields MUST be created[1] to allow for facilitate differentiation between legal and natural person registration data and/or if that registration data contains personal or non-personal data. The EPDP expects that the technical community, for example the RDAP WG, will develop any necessary standards associated with such fields. This field or fields MAY[2] be used by those Contracted Parties that differentiate between legal and natural person registration data and/or if that registration data contains personal or non-personal information. For clarity, Contracted Parties MAY make use of the field(s), which means that if a Contracted Party decides not to make use of the field(s), it may be left blank or may not be present. Additionally, Contracted Parties MAY include the field(s) is not required to be included in a RDDS response.
c. Review ask #3: Considering the org input (“because this recommendation is for guidance only (and thus not subject to compliance enforcement), the use of should vs may wouldn’t be expected to have a significant impact from the org perspective"), can the group live with leaving this as “SHOULD” (lines 261-265). If not, please provide alternative suggestions that take into account the EPDP Team’s discussion. Leadership assessment: All groups, apart from the RySG, seems to be able to live with the word “SHOULD”. Is the RySG willing to accept that outcome, or would it like to stick with its “cannot live with” position which will be factored into the consensus designation process.
d. Review ask #4: please consider the updates proposed by the RrSG (lines 322-329 - “any future work within ICANN by the ….”) & RySG team (“any future work by ICANN by the relevant controllers and processors in relation…”. Also, please provide further input on what these changes would mean or imply as work on a Code of Conduct was not part of phase 1 or phase 2 recommendations. Also consider additional language suggested by IPC (late submission): “For the avoidance of doubt, RDS data requestors are relevant controllers and processors and must be included in any such future work.” Leadership assessment: based on the input provided, and additional review of the GDPR requirements in relation to the development of a Code of Conduct, would the following updates address the different positions:
The EPDP Team recommends, in line with GDPR Article 40 requirements for Codes of Conduct,[3] that the above developed guidance concerning legal/natural differentiation should be considered by any possible future work within ICANN by the relevant controllers and processors in relation to the development of a GDPR code of conduct. Consistent with GDPR recital 99, “When drawing up a code of conduct, or when amending or extending such a code, associations and other bodies representing categories of controllers or processors should consult relevant stakeholders, including data subjects where feasible, and have regard to submissions received and views expressed in response to such consultations”. This future work is expected to be carried out in an open and transparent manner, allowing for observers to follow the discussions and with the opportunity for the community to provide input before the Code of Conduct is finalized.
e. Agree on next steps
4. Wrap and confirm next EPDP Team meeting (5 minutes): a. EPDP Team Meeting #41 Thursday 2 September at 14.00 UTC (placeholder, if necessary) b. Confirm action items c. Confirm questions for ICANN Org, if any [1] “Created” in this context means that ICANN org, with the assistance of the the technical community will develop a standard that defines how and where this field or fields can be used within EPP and the RDAP protocol. [2] If a Contracted Party chooses to differentiate between legal and natural registration data or personal and non-personal data AND chooses to publish this field or fields in RDDS, those field(s) will be appended to the requirements of an RDDS response format as currently defined in the RDDS Specifications for Ry & Rr (see https://www.icann.org/resources/pages/registry-agreement-raa-rdds-2015-04-27-en) and WHOIS Advisory (https://www.icann.org/resources/pages/registry-agreement-raa-rdds-2015-04-27-en). the existing Registry Registration Data Directory Services Consistent Labelling and Display Policy is expected to apply. [3] Not to be confused with the Code of Conduct that is referenced in the RAA and/or Registry Agreements. |