gTLD	Full Legal Name	E-mail suffix	Detail
.NGO	Public Interest Registry	pir.org	View

PIR’s goal is to provide the NGO Community an exclusive and immediately recognized home on the Internet. To achieve this goal and ensure that .NGO domain names are allocated in a manner that serves the NGO Community, PIR has developed a set of .NGO registration restriction policies and corresponding compliance and enforcement mechanisms.

The policies are built to match the need of the NGO Community based on feedback from NGO Community members; based on experience from the .ORG gTLD management since 2003; and generally established to ensure a higher security level for .NGO domain names than what currently is considered standard global requirements for gTLDs today.

.NGO Registration Policies
The registration policies in support of the NGO Community goals are described in the following summary and are detailed later in this section.
• Registrant Eligibility Requirements – all registrants must demonstrate affiliation through NGO membership organizations or through evidence of NGO status. PIR will work with membership organization, the NGO Community Advisory Council, and other members of the NGO Community to validate their eligibility.
• Name Selection Policy – ensures that only NGO Community relevant domain names are registered.
• Reserved Name Policy – names⁄types of domain names will initially be reserved from registration under .NGO.
• Registry Name Policy – names⁄types of domain names will be held from general availability, these will be used in support of the registry.
• Content and Use Restriction Policy – ensures that usage of the .NGO domain name corresponds with NGO Community activities.
• Compliance Functions – ensures ongoing compliance of the Registrant Eligibility Requirements, and the Content and Use Restriction Policy listed below.

The following policies support of the NGO Community goals and are detailed in subsequent Evaluation Questions of the application dedicated to such policies, as noted below.
• Abuse Prevention and Mitigation – includes the Anti-Abuse Policy which addresses the identification and prompt action taken on malicious use of domain names, and the Restriction Dispute Resolution Policy (RDRP) which ensures that disputes concerning any of the .NGO Registration Policies can be solved in an appropriate manner. Detailed descriptions of both policies can be found in response to Evaluation Question #28.
• Rights Protection Mechanisms – protects intellectual property holders under the Trademark Clearinghouse, Uniform Dispute Resolution Policy (UDRP), Uniform Rapid Suspension (URS), Registry Restrictions Dispute Resolution Procedures (RRDRP),Post-Delegation Dispute Resolution Policy (PDDRP), in addition to the Sunrise services and policies that can be found in response to Evaluation Question #29.

PIR will review all policies and processes on an annual basis with involvement from the PIR’s NGO Community Advisory Council and present the results to the NGO Community, allowing them to provide feedback.

Specific Policy Details

Registrant Eligibility Requirements: The .NGO domain registrations are open to NGO Community members. All registrants must demonstrate affiliation through NGO membership organizations or through evidence of NGO status. PIR will work with NGO membership organizations, the NGO Community Advisory Council, and other members of the NGO Community to validate their eligibility.

In consultation with PIR’s NGO Community Advisory Council PIR is reviewing potential NGO membership organizations who can verify the NGO status of registrants. NGO membership organizations include the following, and will expand over time:
• Global organizations: International associations and⁄or classification-based associations.
• Regional organizations: Associations across broad geographic areas, potentially including multiple countries or jurisdictions.
• Local organizations: Associations or groups that provide support and memberships at a country or local level.

During the registration process, the registrant will be asked to verify their eligibility and to demonstrate affiliation with a NGO member organization. Once the initial certification in step 1 of the verification process is confirmed, the domain is successfully created. If the .NGO registrant fails to provide any additional required information through step 2 of the verification process, the domain will be deleted and released back into the pool of available domains.

Content and Use Restriction Policy: Abusive use of the .NGO domain names will not be tolerated by PIR. The following use and content limitations apply:
• Overall the NGO domain name must be for a bona fide NGO use, as defined in the Restrictions Dispute Resolution in response to Evaluation Question #28.
• Websites must be developed with the intent to promote the corresponding .NGO registrant’s existing mission and activities, and not solely for commercialized or for-profit marketing usage.
• Use of the registered domain name to engage in activities inconsistent with the mission of a NGO is not allowed.
• Any illegal or fraudulent usage of the .NGO domain name is not allowed, including but not limited to phishing and pharming attacks, distribution of malware, and distribution of adult content.
• Registration and use of a domain name in violation of Rights Protection Mechanisms is not allowed.

Violations of any of the .NGO Registration Policies may be grounds for loss of registration, pursuant to the enforcement mechanism discussed below (with an appeal procedure).

Compliance Functions: While disputes will be managed directly by resolution providers, PIR will conduct random compliance audits across all the .NGO Registration Policies. Periodically PIRʹs compliance staff will audit a sample of .NGO registrations to verify claims to membership in a listed organization, name policy adherence, and compliance with the name and use policy.

If a registrant is found to not be in compliance the registrant will be notified that the domain will be placed on registry lock and that if the compliance issue is not cured the domain will be terminated.

As part of the compliance function PIR will also utilize its existing expertise, obtained through its management of .ORG, to monitor and take action on any abusive behavior taken place with .NGO domain names.

Name Selection Policy: The .NGO registrant must fulfill certain name policy criteria. PIR will employ the following restrictions concerning the names that eligible .NGO registrants can register. As such a .NGO registrant cannot register any name they wish but is limited by the following restrictions. A .NGO registered domain name may be:
1) the name of (entire or portion of) the NGO, e.g. its “doing business as” name,
2) an acronym representing the NGO,
3) a name that recognizes or generally describes the NGO, or
4) a name related to the mission or activities of the NGO.

Reserved Name Policy: The following names⁄types of domain names will initially be reserved from registration:
• All single- and two-character second-level domain names;
• Domains of an inappropriate nature, e.g., adult-related terminology, pursuant to a list defined by PIR and its NGO Community Advisory Council;
• Names provided by ICANN as required reserved names;
• A list of generic names defined by PIR and its NGO Community Advisory Council based on the overall criteria that the names represent the NGO Community in a general manner. Such names will be released in a specific RFP process ensuring that the names will benefit the NGO Community.

Registry Name Policy: The following names⁄types of domain names will be held from general availability; they will be used in support of the registry.
• Names to support registry operations, e.g., directory.ngo;
• Names to support PIR’s NGO Community Advisory Council.

Compliance and Enforcement Mechanisms
PIR will take both proactive and reactive measures to enforce the policies of the gTLD. Proactive measures are taken at the time of registration by requiring .NGO registrants to meet the .NGO Registration Policies and to agree to all policies and procedures of the gTLD. Reactive measures are addressed via our audit process and through our defined dispute resolution processes.

A violation of the .NGO Registration Policies will be enforced on a case-by-case, fact specific basis under the processes set forth below:
1. Any allegation that a domain name is not used primarily for NGO purposes shall be enforced under the provisions of the Restrictions Dispute Resolution Policy (ʺRDRPʺ) as described in Evaluation Question #28. The RDRP will be included as an appendix to the Registry Agreement. An appeal procedure is included in the RDRP.
2. Any alleged violation of the Rights Protection Mechanisms shall be enforced under the provisions contained in each of them.

Disputes resulting from violations of the .NGO Registration Policies will be resolved through the Compliance Functions and the Rights Protection Mechanisms. The Rights Protection Mechanisms (as detailed in Evaluation Question #29) will be made applicable by the ICANN-Accredited Registrarsʹ registration agreements with registrants. Proceedings under the Rights Protection Mechanisms will be conducted in accordance with the policies and procedures that will be included in an appendix to the Registry Agreement. As set forth in the Compliance Functions, the registry operator will review on a random basis, monitor, and verify that any particular domain name is being used primarily for NGO purposes and that a domain is being used in compliance with the Rights Protection Mechanisms processes.

Resource Plans
PIR will devote 2 compliance officers to handle compliance and disputes as they arise, although currently for .ORG this need is rare. Most compliance checks on registration eligibility are expected to be handled in an automated process.

gTLD	Full Legal Name	E-mail suffix	Detail
.insurance	fTLD Registry Services LLC	fsround.org	View

• Eligibility: who is eligible to register a second-level name in the gTLD, and how will eligibility be determined?

Registrations within the community may initially be made by the following business, individuals or organizations:
- Licensed insurance companies regulated by a government entity
- Licensed insurance agents and brokers regulated by a government entity
- Associations whose members include licensed insurance companies, agents or brokers (if approved by the FRS Board)
- Organizations that are majority controlled by insurance companies (if approved by the FRS Board)
- Entities whose operations are principally dedicated to serving insurance companies (if approved by the FRS Board)
- Specialized organizations (e.g., research or risk coordination) (if approved by the FRS Board)

As the potential operator of .insurance, FRS considers its commitment to both the insurance industry and the
consumers it serves of paramount importance. The nature of the activity that will be conducted in .insurance
requires that registrations only be permitted by verified members of the insurance community. In addition to
validating the eligibility of the registrant, the domain name must comply with name selection and use policies.

To ensure strict compliance with these policies, FRS will develop and implement a Registrant Eligibility Criteria
Process. This process will require .insurance accredited registrars to gather materials from proposed registrants
that will be used by the registry or its designated third party services provider, to authenticate the registrants’
eligibility to register in .insurance.

The registration process for a .insurance name includes that potential registrants must provide the registrar with
the following information:
- Full legal name
- Business address
- Professional title of representative of the administrative contact of the potential applicant
- Business name
- Point of contact within the business who can verify their representation of the business
- Phone
- Email
- Another proof of identity necessary to establish that the registrant is an eligible member of the .insurance gTLD
community
- For insurance companies, the state regulatory authority issuing its charter
- For agents and brokers, the state licensing agency issuing its permission to act as an agent or broker
- For organizations that are majority controlled by insurance companies (if approved by the FRS Board), list of and
proof of its owner(s)
- For entities whose operations are principally dedicated to serving insurance companies (if approved by the FRS
Board), corporate operating agreement or like document(s) as determined necessary to validate alignment with the
goals of the community
- For specialized organizations (e.g., research or risk coordination) (if approved by the FRS Board), a copy of its
corporate operating agreement if for-profit or its mission statement if non-profit (or like document(s) as determined necessary to validate alignment with the goals of the community)

Applicants who meet the eligibility requirements and have been authenticated will then be permitted to register
domains in .insurance.

Domain names that pass the vetting process will enter a 5-day Add Grace Period (AGP), or Pending Create, before
becoming valid. Applicants whose domain name fails the vetting process will be notified with reasons for denial and
procedures for appeal. Any applicant who is rejected for any reason can appeal the decision to FRS.

FRS will audit all approved registrants and their domains to ensure compliance with all applicable eligibility and
use requirements.

• Name selection: what types of second-level names may be registered in the gTLD.

Domains initially registered in .insurance must correspond to a trademark, trade name or other service mark owned by the registrant. Initially, all other registrations (e.g., geographic, generic, etc.) will not be allowed. FRS will
reserve a set of generic domain names prior to launch. These domain names will either be used by FRS in its capacity as Registry Operator for the management, operation, and purpose of the gTLD or they will be equitably allocated to community members at a date and time to be determined by FRS’ Board. The subset of domain names reserved for FRS’ use is necessary to create a trusted, hierarchical, and intuitive framework for the .insurance gTLD.

Although these reserved words will be commonly used words and phrases and or geographic terms, FRS will provide an enhanced Rights Protection Mechanism that will offer trademark owners with an avenue to challenge the reservation and potential use of these domain names. This challenge process will be modeled after the highly successful dotAsia Pioneering Program.

• Content⁄Use: what restrictions, if any, the registry operator will impose on how a registrant may use its
registered name?

FRS will have an Acceptable Use Policy (AUP) that will govern how a registrant may use its registered name. A DRAFT
version of the policy (which may be amended from time to time) follows:

All .insurance domains must be used to serve the needs of the insurance community. By registering a name in a gTLD operated by FRS, you agree to be bound by the terms of this Acceptable Use Policy (AUP). In using your domain, you may not:

1. Use your domain for any purposes prohibited by the laws of the jurisdiction(s) in which you do business or any
other applicable law. For insurance companies, agents and brokers specifically, use your domain name for any
purposes prohibited by the insurance regulations of the regulator or government agency that issued your charter or
license is strictly prohibited.

2. Use your domain for any purposes or in any manner that violates a statute, rule or law governing use of the
Internet and⁄or electronic commerce (specifically including “phishing,” ʺpharming,ʺ and⁄or distributing Internet
viruses and other destructive activities).

3. Use your domain for the following types of activity:
- Violating the privacy or publicity rights of another member of the insurance community or any other person or
entity, or breaching any duty of confidentiality that you owe to another member of the .insurance gTLD community or
any other person or entity;
- Promoting or engaging in hate speech, hate crime, terrorism, violence against people, animals, or property, or
intolerance of or against any protected class;
- Promoting or engaging in defamatory, harassing, abusive or otherwise objectionable behavior;
- Promoting or engaging in pornography;
- Promoting or engaging in any spam or other unsolicited bulk email, or computer or network hacking or cracking;
- Promoting or engaging in any money laundering or terrorist financing activity;
- Infringing on the intellectual property rights of another member of the .insurance gTLD community or any other
person or entity;
- Engaging in activities designed to impersonate any third party or create a likelihood of confusion in sponsorship;
- Interfering with the operation of .insurance gTLD or services offered by FRS;
- Distributing or installing any viruses, worms, bugs, Trojan horses or other code, files or programs designed to,
or capable of, disrupting, damaging or limiting the functionality of any software or hardware;
- Disseminating content that contains false or deceptive language, or unsubstantiated or comparative claims,
regarding FRS;
- Licensing your domain to any third party during the period of your registration; or
- Engaging in behavior that is anti-competitive, boycotts or otherwise violates anti-trust laws.

You are responsible for the usage of your domain at all times during the period of your registration.

Proxy registrations are prohibited for all gTLDs operated by FRS.

By “use,” “usage” or “using” your domain name we mean any use involving the Internet, including but not limited to
website(s) and⁄or any pages thereof resolving at your domain, either directly or indirectly (including redirection,
framing, pop-up windows⁄browsers, linking, etc.) and email distribution and⁄or reception.

As part of the AUP, FRS will have complete enforcement rights over registrants’ use of domain names.

• Enforcement: what investigation practices and mechanisms exist to enforce the policies above, what resources are
allocated for enforcement, and what appeal mechanisms are available to registrants?

FRS proposes the use of both active and passive enforcement mechanisms to enforce the policies outlined above. As part of the AUP, FRS will have complete enforcement rights over registrant’s use of .insurance domain names.

If Registrant violates this AUP, Registrant will be subject to a rapid domain name compliance action, be in material
breach of the Agreement, and along with all other rights and remedies under this Agreement with respect to such a
breach, FRS reserves the right to revoke, suspend, terminate, cancel or otherwise modify Registrant’s rights to the
domain name.

On a regular basis, FRS will audit domain names registered in the .insurance gTLD to ensure compliance with all
eligibility and use criteria. If a violation is discovered, an investigation will immediately begin to rectify the violation.

If a registrant chooses to appeal, FRS will review the appeal to determine if there are any material changes to the
action or activity. FRS will retain the right to assign the dispute to an ombudsman if necessary. This appeal or referral process will operate on a cost-recovery basis.