GoDaddy appeals Indian court order over domain privacy policy

Global conflict over internet anonymity regulations

The world’s largest web address registrar GoDaddy has officially filed an appeal with the Delhi High Court against new strict directives. The court ruling, issued as part of a campaign against massive cyber fraud and brand impersonation websites, forces companies to radically alter their privacy principles. Specifically, registrars are prohibited from offering default personal data protection to domain buyers. Furthermore, companies must now hand over buyers’ contact details to anyone claiming a legitimate interest within 72 hours.

GoDaddy representatives warn that such measures will undermine general online safety, as exposing names, physical addresses, telephone numbers and email addresses will endanger millions of honest entrepreneurs, journalists and activists. Instead of stopping criminals who typically use fake details or stolen identities, the new requirements will trigger widespread risks of stalking, phishing and spam. The conflict has reached an international scale because domain infrastructure operates globally, and a local court ruling effectively rewrites internet governance rules for users worldwide.

The scale of cyber fraud and the Indian government stance

The radical steps taken by the Delhi High Court were prompted by a critical surge in online fraud across India. Driven by the rapid proliferation of smartphones and affordable mobile data, digital crime has skyrocketed. According to official data from the country’s Ministry of Home Affairs, over 2.4 million cyber fraud complaints were logged last year alone, with total financial damages to citizens and businesses exceeding an enormous sum.

Cyber fraud statistics and financial losses in India
Security Metric Recorded Data Value
Total official fraud complaints logged 2400000 reports
Cumulative financial losses from cybercrime 2400000000 USD
Number of blocked impersonation sites (December) 1100 domains
Time limit to release owner details upon request 72 hours

The legal precedent was set following a lawsuit brought by more than 20 prominent international and domestic brands. The plaintiffs included corporate giants such as Amazon, McDonald’s, Microsoft, Xiaomi and Colgate-Palmolive. Scammers had been creating carbon copies of official web pages to offer fake investment schemes, bogus franchises and non-existent products. In December, the court blocked over 1100 of these addresses, labeling them engines for large scale deception. However, the introduction of 14 additional restrictive measures sparked resistance from the tech community.

Why rolling back WHOIS privacy threatens user security

Historically, the WHOIS database displayed open information about all website administrators. However, since the implementation of Europe’s GDPR, the entire industry shifted toward a privacy by default model. GoDaddy points out that the Indian court directive directly clashes with international data protection frameworks. Because domain names operate without geographical boundaries, registrars will find it extremely difficult to partition user databases effectively.

Internet governance experts emphasize that fraudsters almost never supply real names or verified phone numbers when registering phishing domains. Consequently, removing privacy features will solely penalize legitimate owners of small businesses or private blogs. Furthermore, GoDaddy highlights the impossibility of objectively verifying the status of parties demanding private information within a tight 72 hour window, which creates a broad avenue for harassment and corporate espionage.

The issue of monopolizing words and names

Another major point of the appeal involves the judicial ban on registering any domain names that represent variations of protected trademarks. GoDaddy’s legal team argues that this rule is absurd from a linguistic standpoint. For instance, the name McDonald is Scottish in origin, and banning similar combinations effectively grants a single corporation a monopoly over a common surname.

A similar dilemma applies to Unilever’s Indian branch (HUL). Restricting this specific letter sequence would block the registration of hundreds of entirely neutral English words, including the word hulk. The company warns that such stringent regulations render business operations in India commercially destabilizing, prompting other domain firms like US based Namecheap and Netherlands based Hosting Concepts to join the legal challenge. The next hearing before a larger bench of judges is scheduled for July 16.

Sources:

Pavlo Zaslonov
About The Author

Pavlo Zaslonov

Cybersecurity expert, knows everything about IP hiding and modern chatbot vulnerabilities.

0 Comments

Leave a Reply

2500
Please enter a comment
Please enter your name