Discussion in 'Nominet General Information' started by aqls, Jul 19, 2006.
Does Nominet keep a historical record of domain ownership?
If so, is it publicly available?
They have given me a domain's history over the phone so I guess the answer is yes
I guess there are a few implications with regard to that issue:
e.g. if domain was fraudulently transferred away from you (e.g. using forged signature) and you find out several years later, then do Nominet have a duty to return that domain to you and pay all the costs and damages (to return the domain to you) of all the legitimate owners after that which was the thief.
Could they retrospectively prosecute the thief several years later.
If a domain is classed as "property" then I guess that a stolen domain whether you know it or not can be confiscated without refund.
From a data protection point of view, I guess you can ask for your details to be removed from their database after sale of a domain.
From a DRS point of view, past registrations could be taken into account that have since been deleted. (i.e. perhaps showing that the defendants were in the process of cleaning out their account).
Experts (and complainants) historical domain purchases could be brought into question.
Hey I think we could have quite alot of fun here!
>e.g. if domain was fraudulently transferred away from you (e.g. using forged >signature) and you find out several years later, then do Nominet have a duty >to return that domain to you and pay all the costs and damages (to return >the domain to you) of all the legitimate owners after that which was the >thief.
If we find out a transfer is fraudulent, we can reverse it.
>Could they retrospectively prosecute the thief several years later.
Like any private company, Nominet can't prosecute anyone. In the UK only certain prosecuting authorities like the CPS, HM Customs & Excise and the Health and Safety Executive can prosecute.
>If a domain is classed as "property" then I guess that a stolen domain >whether you know it or not can be confiscated without refund.
Not sure what you mean. I'm sure others will answer.
>From a data protection point of view, I guess you can ask for your details to >be removed from their database after sale of a domain.
An interesting idea - though it may well be the case that for some of Nominet's purposes the legacy data is still 'relevant' as defined in the DPA, and inded that Nominet must keep it as legal documentation about old contracts. (This is NOT an answer - I just don't know the answer, merely a guess/observation.)
>From a DRS point of view, past registrations could be taken into account >that have since been deleted. (i.e. perhaps showing that the defendants >were in the process of cleaning out their account).
Only if the expert became aware of it in some other way. We do not provide the experts with information about registrants with whom we no longer have a contract, nor about a registrant's other domain names beside those in the DRS case. (Though the experts will often have PRSS or might be representing the registrant, of course.)
>Experts (and complainants) historical domain purchases could be brought >into question.
They would be fair game if you could get the data, but we wouldn't give out that sort of information (unless it was to you, about your own old registrations - we'd normally want the domain name from you, first).
>Hey I think we could have quite alot of fun here!
Mmm. "Nominet keeps some data while it's relevant, keeps it safely, and may get rid of it at some point, too." Shocking. :0)
U: I reserve the right to tidy this later! I couldn't be bothered to do the quotey thing as I was running out of lunch hour.
And annoy the potentially big company and seven or eight previous owners too that own/ed it?
While it's relevant?
Seeing as currently, we have no means of knowing whether someone has nicked one of our domains using a forged signature, (apart from a regular checking of the whois for each domain) we may not find out it's been nicked for many years. It puts the onus on Nominet to keep the data?
Domains IMO should be a SAFE investment, and CHEAP to renew.
Forged Signature: If the Registrant postal address (and email address) is up to date, surely Nominets response agreeing to the transfer would alert you to something fishy going on - or am I missing something obvious in how they go about this?
Checking WhoIs: This is where the Registrants Online system is good, because every two years you're encouraged to check the Registrant details haven't been altered fraudulently, and are up to date (something that's being discussed in another thread here)
Safe Investment: .UK (IMO) is *much* safer than (for example) .com where Registrant Name can be changed at will by anyone (such as the ISP) who has access to the Domain's management.
People sometimes perceive Nominet as being too strict - and sometimes it *is* a pain (and £30) to get a transfer done - but as a Registrant I wouldn't have it any other way from a security point of view.
keep in mind for tax etc purposes they need to keep data for maybe 7 years at least
Well, I can't say I bother to open all the Nominet mail spam I get now, and I'm not sure from memory that I get *any* mail confirmation that someone has nicked/transferred my domain away - I may be wrong. Sorry, and I'm sure it will all be my fault if it happens.
As for email confirmation, out of many domain transfers I get about 5% confirmation emails of transfer and they are usually for the transfers inward and not outward, so that is effectively useless too. (again I may be wrong)
And if the domain is transferred illegally you won't get the 2 year reminder.
The system as it is in my opinion is not a safe one from a domain investors point of view.
It would be nice if they could confirm that they do that not just for the tax related stuff but also the e.g. domain transfer histories.
When does the "expert" ever represent the registrant?
Separate names with a comma.