NetEarth Group, inc Get the latest information about NetEarth Group or any of its subsidiary companies.

August 17, 2018

Afilias Fee hikes September 2018

Filed under: NetEarth One,Registry Price Increase,Uncategorized — chrisp @ 14:38

Afilias is increasing the amount charged for Registration / Renewal / Transfer and restoration on 1st September 2018 for the following TLD’s.

We will be setting the following prices on 31st August 2018 @ 2200 BST :

Registration / Renewal and Transfer pricing per year :

TLD			Tier 1 -5

ARCHI			$48.95		
BET			$12.95		
BIO			$47.95		
BLACK			$37.95		
BLUE			$12.95		
KIM			$12.95		
PET			$12.95		
PINK			$12.95		
POKER			$37.95		
PRO			$15.98		
PROMO			$12.95		
RED			$12.95		
SHIKSHA			$12.95		
SKI			$33.95		
xn--6frz82g (Mobile)	$12.95

INFO			$13.95	$13.45	$13.25	$12.75	$12.50			

Restoration pricing will be confirmed closer to the time (we would expect next week as we are confirming a few “facts” at the moment).

 

May 24, 2018

Further GDPR changes on the LB platform – PLEASE READ

Filed under: Changes on the LB platform,NetEarth One — chrisp @ 22:52

Further to the previous blog posts on GDPR, there are now more points that have changed/updated with regards how LogicBoxes is handling this through the platform.  (a lot of the below is a cut/paste from LB information provided to NEO regarding platform changes, so we/us/our etc = LogicBoxes)

Previously LB was going to deploy TrustArc throughout the platform, this has now changed :

Applying TrustArc to SS, Partnersite:

We will not be deploying the TrustArc tool throughout the reseller chain. However, If you use cookies on your website, there are a variety of  open-source tools you may be able to utilise to obtain and manage cookie consent from your customers such as  

  1. Cookie Consent by Insites

  2. Tarteaucitron.js

  3. Cookie Consent

.ES domain registrations :

.ES domain registrations will be set to “do no sell” throughout the platform.  The reason for this is NIC.ES is not GDPR compliant, and therefore the “registrar”/Data Controller in this case, LB, would be liable for any fine.  You could argue that .ES is the entity that is creating the problem, but, as we have seen in the past with .ES they are not the fastest registry to fix things.

Webform for external contact to a domain contact: 

We will be launching a site within the next day or so to allow anyone to make contact to a domain contact as WHOIS will be anonymized for certain individuals.  More will come on this shortly.

SuperSite & PartnerSite
1. Data Transfer and Marketing Consent on SuperSite:
New Checkboxes have been introduced to the storefront that are shown to EU users. These will be shown when a new user selects a country from the European Economic Area and indicates that their account will be associated with that region. The other condition is when the user is an existing one and logs in to select an EEA country contact to associate with the domain name purchase; the checkbox will be shown before transaction completion.

 

Please find a brief understanding of these checkboxes below:
a. Your Terms of Service & acknowledgement of your Privacy Policy*
i. You are solely responsible for providing your customers with a Privacy Policy that accurately describes what data you collect from your customers and how you store, use and share or disclose such data and what choices your customers have with respect to such data.
b. Receiving marketing emails from you by providing your customers with the opportunity to opt-out of receiving such emails
i. If a customer opts-out of receiving marketing emails, that customer’s email preference will be sent to you in the customer sign up email. You must exclude all customers who opted-out from your marketing email campaigns.
ii. PLEASE NOTE: While we have currently provided you with the functionality to allow your customers to opt-out of receiving marketing emails, it is solely your responsibility to determine whether it is appropriate for you to rely on this opt-out solution or if you are required to obtain opt-in consent from your customers through alternative means.
c. For new sign-ups, the interfaces will collect consent from the customer to allow personal data transfers outside the EEA for processing because our platform servers are located in the USA.
d. If a customer selects an EU country during the purchase flow, an EU VAT ID box will be displayed to the customer.
e. For customized SuperSites, this code will be pushed into the site’s code bank, you will need to accept these code changes and check the integrity of your design and form changes. For your reference, here are the files that will be modified from our end:
i. misc/login/includes/customer_signup.html
ii. misc/signup/signup_form.html
iii. misc/login/includes/customer_signup.html
iv. legal/legal/legal.html
f. If you are using our API to send user sign up forms to the platform, please use the API methods here to send the consent you collect to OrderBox. You can also log this on a local DB to manage the opt in based marketing for new customers.
2. Consent on PartnerSite:
If a new reseller selects an EEA country from the country drop-down menu during sign up, three consent check boxes will be displayed to the reseller:
a. Agreeing to your Terms of Service & acknowledging the Privacy Policy
b. Receiving marketing emails from you
i. Your customer’s email preference will be sent to you in the Reseller sign up email. You must exclude these users from your marketing email campaigns
c. For customized PartnerSites, this code will be pushed into the site’s code bank, you will need to accept these code changes and check the integrity of your design and form changes. For your reference, here are the files that will be modified from our end:
i. legal/reseller_legal/reseller_legal.html
d. Consent from the customer to allow personal data transfers outside the EEA region for processing because the platform servers are located in USA
API changes to OrderBoxFor all LogicBoxes partners using the API, we will be making some changes to a few domain registration API calls which you will need to incorporate in your existing domain registration setup. We have documented these API changes in detail here.

Control Panel

 

1. Enabling/Disabling GDPR Protection:

 

Customers from all EEA countries using the OrderBox customer control panel will be given an option to enable or disable the GDPR Protection, which masks the customer’s WHOIS data to comply with the GDPR requirements, from their control panels. However, by default GDPR Protection for EEA customers will be enabled.
2. You will need to upload your GDPR compliant Privacy Policy:
We are introducing a new feature, which allows you to upload a privacy policy on SuperSites, PartnerSites and Control Panels. If the GDPR applies to you, it is your responsibility to ensure that you have a GDPR compliant Privacy Policy. As an organization and service provider, we have updated our Privacy Policy which you can find here.
a. There are a few tools available in the market that can help you draft a GDPR compliant Privacy Policy and make it GDPR compliant at a minimal cost
b. https://termsfeed.com/privacy-policy/generator is an example
c. Other such tools are listed here: https://digital.com/blog/best-privacy-policy-generators/
API changes to OrderBox

For all LogicBoxes partners using the API, we will be making some changes to a few domain registration API calls which you will need to incorporate in your existing domain registration setup. We have documented these API changes in detail here.

 

NEO Privacy Policy

Filed under: NetEarth One — chrisp @ 19:39

Privacy Policy

Effective date: May 10, 2018

NetEarth One, inc. (“us”, “we”, or “our”) operates the https://www.netearthone.com website (the “Service”).

This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible from https://www.netearthone.com

Definitions

  • Service

    Service is the https://www.netearthone.com website operated by NetEarth One, inc.

  • Personal Data

    Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).

  • Usage Data

    Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).

  • Cookies

    Cookies are small pieces of data stored on your device (computer or mobile device).

  • Data Controller

    Data Controller means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal information are, or are to be, processed.

    For the purpose of this Privacy Policy, we are a Data Controller of your Personal Data.

  • Data Processors (or Service Providers)

    Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller.

    We may use the services of various Service Providers in order to process your data more effectively.

  • Data Subject (or User)

    Data Subject is any living individual who is using our Service and is the subject of Personal Data.

Information Collection and Use

We collect several different types of information for various purposes to provide and improve our Service to you.

Types of Data Collected

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to:

  • Email address
  • First name and last name
  • Phone number
  • Address, State, Province, ZIP/Postal code, City
  • Cookies and Usage Data

We may use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by contacting us.

Usage Data

We may also collect information how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Tracking & Cookies Data

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.

Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Examples of Cookies we use:

  • Session Cookies. We use Session Cookies to operate our Service.
  • Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
  • Security Cookies. We use Security Cookies for security purposes.
  • Advertising Cookies. Advertising Cookies are used to serve you with advertisements that may be relevant to you and your interests.

Use of Data

NetEarth One, inc. uses the collected data for various purposes:

  • To provide and maintain our Service
  • To notify you about changes to our Service
  • To allow you to participate in interactive features of our Service when you choose to do so
  • To provide customer support
  • To gather analysis or valuable information so that we can improve our Service
  • To monitor the usage of our Service
  • To detect, prevent and address technical issues
  • To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information

Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)

If you are from the European Economic Area (EEA), NetEarth One, inc. legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.

NetEarth One, inc. may process your Personal Data because:

  • We need to perform a contract with you
  • You have given us permission to do so
  • The processing is in our legitimate interests and it’s not overridden by your rights
  • For payment processing purposes
  • To comply with the law

Retention of Data

NetEarth One, inc. will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

NetEarth One, inc. will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.

Transfer of Data

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

If you are located outside United Kingdom and choose to provide information to us, please note that we transfer the data, including Personal Data, to United Kingdom and process it there.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

NetEarth One, inc. will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Disclosure of Data

Business Transaction

If NetEarth One, inc. is involved in a merger, acquisition or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.

Disclosure for Law Enforcement

Under certain circumstances, NetEarth One, inc. may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Legal Requirements

NetEarth One, inc. may disclose your Personal Data in the good faith belief that such action is necessary to:

  • To comply with a legal obligation
  • To protect and defend the rights or property of NetEarth One, inc.
  • To prevent or investigate possible wrongdoing in connection with the Service
  • To protect the personal safety of users of the Service or the public
  • To protect against legal liability

Security of Data

The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

“Do Not Track” Signals

We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.

You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.

Your Data Protection Rights Under General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. NetEarth One, inc. aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.

In certain circumstances, you have the following data protection rights:

  • The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
  • The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
  • The right to object. You have the right to object to our processing of your Personal Data.
  • The right of restriction. You have the right to request that we restrict the processing of your personal information.
  • The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
  • The right to withdraw consent. You also have the right to withdraw your consent at any time where NetEarth One, inc. relied on your consent to process your personal information.

Please note that we may ask you to verify your identity before responding to such requests.

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

Service Providers

We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Analytics

We may use third-party Service Providers to monitor and analyze the use of our Service.

  • Google Analytics

    Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

    You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity.

    For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

Advertising

We may use third-party Service Providers to show advertisements to you to help support and maintain our Service.

  • Google AdSense & DoubleClick Cookie

    Google, as a third party vendor, uses cookies to serve ads on our Service. Google’s use of the DoubleClick cookie enables it and its partners to serve ads to our users based on their visit to our Service or other websites on the Internet.

    You may opt out of the use of the DoubleClick Cookie for interest-based advertising by visiting the Google Ads Settings web page: http://www.google.com/ads/preferences/

Behavioral Remarketing

NetEarth One, inc. uses remarketing services to advertise on third party websites to you after you visited our Service. We and our third-party vendors use cookies to inform, optimize and serve ads based on your past visits to our Service.

Payments

We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).

We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

The payment processors we work with are:

Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Children’s Privacy

Our Service does not address anyone under the age of 18 (“Children”).

We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the “effective date” at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy, please contact us:

  • By email: sales@netearthone.com
  • By visiting this page on our website: https://www.netearthone.com/support/contact-us.php
  • By mail: Suite 5, 7th Floor, 5 Greenwich View Place, London, E14 9NN.

GDPR – Upload your Privacy Policy to the platform

Filed under: Changes on the LB platform,NetEarth One — chrisp @ 19:37

LogicBoxes have finally completed the function to upload your Privacy Policy to the platform, this is a good place to keep it as well as your own site if you use the API.  It basically means all bases are covered in connection if a customer wants to read it.

Directions:

  1. Login to NEO
  2. Click Settings >> Legal Agreements
  3. Click Privacy Policy
  4. Paste your Privacy Policy in to the text box and select from the drop down (use my own agreement)

Once saved and uploaded, click Tools >> Reload >> All

You should use your own agreement that you have produced, this way you know what is in your agreement.

 

May 11, 2018

GDPR and what you need to know using NEO and the LogicBoxes platform.

Filed under: Changes on the LB platform,NetEarth One — chrisp @ 16:52

GDPR: What You Need to Know

Businesses, large and small, are in the midst of preparing for compliance with the European Union’s new data privacy laws: The General Data Protection Regulation, or the GDPR, which will go into effect on May 25, 2018.

The GDPR is very broad in scope and can apply to businesses both in and outside of the EU. Businesses that don’t comply with the GDPR could face heavy fines.

Here’s what you need to know about the GDPR. (Note: You should consult your own legal counsel to determine if you are subject to the requirements of the GDPR.)

 

What is GDPR?

GDPR is short for the General Data Protection Regulation that goes into effect on May 25, 2018. It was passed by the European lawmakers to create a harmonized data privacy law across all the EU member states. Its purpose is to:

  • Support privacy as a fundamental human right;
  • Require companies that handle personal data to be accountable for managing that data appropriately; and give individuals rights over how their personal data is processed or otherwise used.

What is Personal Data?

In a nutshell, GDPR defines personal data as “any information relating to an identified or identifiable natural person.”

Okay, so what does that mean?

In addition to the kinds of information you might think about – name, address, email address, financial information, contact information, identification numbers, etc., personal data can in some cases be information related to your digital life, like an IP address, geolocation, browsing history, cookies, or other digital identifiers.

It also could mean information about a person, including their physical, mental, social, economic or cultural identities.

In short, if information can be traced back to or related in some way to an identifiable person, it is highly likely to be personal data. You can find out more about the GDPR here.

 

What rights does the GDPR provide to individuals?

There are several rights an individual may exercise under the GDPR, including:

 

  • Right of access: Individuals can ask for a copy of the personal data retained about them and an explanation of how it is being used
  • Right to rectification: Individuals have the right to correct, revise or remove any of the personal data retained about them at any time
  • Right to be forgotten: Individuals can ask to delete their personal data
  • Right to restrict processing: If an individual believes, for example, that their personal data is inaccurate or collected unlawfully, the individual may request limited use of their personal data
  • Right of portability: Individuals have the right to receive their personal data in a structured, commonly used and machine-readable format
  • Right to object: Where an individual decides that they no longer wish to allow their personal data to be included in analytics or to receive direct marketing emails or other personalized (targeted) marketing content at any time, the individual may opt out of use of their data for these purposes

 

Please note that these rights are not absolute, and limitations/exceptions may apply in some cases.

 

Some responsibilities of the GDPR you should understand

Generally speaking, there are two types of parties that have a responsibility regarding the handling of data: the “controller” and the “processor.” It is important to determine whether you are acting as a controller or a processor and understand your responsibilities accordingly.

A “data controller” determines the purposes, conditions and means of the use of personal data.

A “data processor” on the other hand, only acts on the instructions of the “controller” and processes personal data on their behalf.

 

So, what does this mean for you?

For Resellers: You are the processor in relation to your customer’s data. Since NetEarth One. Inc. acts as the Registrar on record, this also makes us a data controller for the customer account data.

 

It is your responsibility to ensure that you have the necessary notices and/or consents in place in order to transfer personal data to us for use.

In addition, we are reviewing and updating, as necessary, our agreements with you and with our subcontractors (to include the necessary GDPR terms), as well as notices, policies and internal processes, features, and templates to assure our compliance and help you achieve compliance.

How does the GDPR affect your business?

Individuals, companies, or businesses that have a presence in the EU or, if no presence, offer goods or services to, or monitor the behavior of, individuals in the EU need to comply with this law. Please consult with your own legal counsel about whether GDPR applies to you and your business.

 

What do you need to do differently to comply with GDPR?

If the GDPR applies to you, there are various obligations you will need to comply with in order to continue doing business with your customers from the EU. Luckily, not all of these obligations are new, so you should be complying with some of them already.

The most important differences in this context are as follows:

  • More information about your use of personal data must be communicated to your customers. You should make sure that your privacy notices/policies are updated to reflect the new requirements of the GDPR, including setting out the purposes of your processing personal data, how long you are retaining such data, and what legal basis for use of personal data are you relying on.
  • You should determine the legal basis for your use of personal data: If you are relying on consent to use your customers’ data you should ensure that the consent you have meets the new requirements of the GDPR (more details on this below). Please note that sending marketing emails or showing promotional content in any form to your customers may require, in certain circumstances, prior opt-in consent from them. As a reminder, you have already agreed through acceptance of our terms of service to lawfully obtain and process all personal data appropriately and have attested that you have permission to expose your customers to promotional content.
  • You will also need to comply with the rights provided to individuals by the GDPR. See section above “What rights does the GDPR provide to individuals?” for details.

To the extent that you have these obligations, LB will have tools in place to help support your compliance efforts – we’ll get into some detail about this below. These include methods for you to obtain consent on your website for all visitors and to show promotional content to your existing customers, as well as ways for you to confirm and document consent for new ones, too. (for those using the Supersite and/or Partnersite and Control Panel)

You should consult with your legal counsel on the above and your other obligations under GDPR.

What kind of Consent is required under the GDPR?

 

When in doubt, and you are relying on consent to market to your customers, express consent is typically your best option. You obtain and document express consent when you explicitly ask your potential customers for permission to send them emails and other marketing content, and they agree, and that agreement is recorded.  LogicBoxes platform has ways for you to indicate whether you have obtained express or implied consent from a customer, outlined in more detail below.

There may be circumstances where you can rely on something similar to implied consent for sending emails or promotional content to customers even when subject to the GDPR. This is called a “soft opt-in” where –

  • you have obtained their contact details in the context of a sale of a product or service,
  • you are sending emails and showing personalized ads relating to similar products or services
  • the customer has the ability to opt-out of receiving such emails when they first provided their data when making a purchase and in every subsequent communication sent from you.

You should consult with your legal counsel to determine whether you can rely on the soft opt-in going forward under the GDPR. If you have customers with soft opt-in consent, you can store them as implied consent, but you will need to maintain your own documentation about how you obtained that soft opt-in consent.

Your customers should also be given an easy way to withdraw their consent in order to comply with the GDPR.

How is NetEarth One complying with GDPR?

NEO’s partners will be able to opt-out of receiving emails at any time by clicking the ‘unsubscribe’ link included at the bottom of every marketing email they receive from NEO. Additionally, when you visit our website, tools will be deployed to collect cookie consent in order to understand and record their choice of cookies and work with those that site visitors have allowed.

Overall, we’ve classified our plan in 3 broad categories:

1.    Privacy Statement

LB are reviewing and updating, as necessary,  all agreements with us, you and with our subcontractors (to include the necessary GDPR terms). We are also updating our Privacy Policy, Terms of Service, internal processes, features, and templates to assure our compliance.

The NEO Privacy Statement will explain what information we collect about you as a NEO partner and how we handle your personal data in this context where the GDPR applies. This statement will include descriptions of how your personal data will be used by NEO.  Once published, we suggest that you review our Privacy Statement.

To the extent that you collect and process personal data, you are required to help your customers understand exactly what data is being collected and how it will be used. It is important that you have a Privacy Statement which contains details of your data processing activities.

Where required, we will also support you, as a NEO partner, in fulfilling GDPR related data subject requests you receive from your customers.

 

2.    WHOIS

The European data protection authorities have expressed concern over the unlimited publication of personal data of domain name registrants in the WHOIS. To ensure our WHOIS output is compliant with the GDPR, we will implement the following changes starting May 25th, 2018:

  • For Existing Domain Names:
    • For all existing domain names, if either of the Registrant, Admin, Tech and/or Billing contacts is identified as being from the EU, we will mask the WHOIS output for that domain name with placeholder details in place of the users’ personal information (this service will be referred to as “GDPR WHOIS Protection”).
  • All domain names that have Privacy Protection enabled, which is a separate service from GDPR WHOIS Protection, will continue to show the Privacy Protection contact details in the WHOIS output. In addition Privacy Protection provides the following services and functionality which are not available with GDPR WHOIS Protection:
    • Privacy Protection enables registrant to get emails like domain sale inquiries if needed from the website http://privacyprotect.org/; and https://www.idcprivacy.com; and
    • Privacy Protection allows the registrant to receive emails from a web form on the privacyprotect.org/idcprivacy.com website.
  • For New Domain Registrations, Renewals, Transfers:
    • All domain registrations and transfers from SuperSite will use the details from the customer contact created during the purchase flow or all the 4 contacts: Admin, Billing, Technical and Registrant contact.
      • The customer can log in to the control panel and change the default contact or edit any of the 4 contacts
      • If any of these contacts created/selected at the time of domain registration are from within the EU region, GDPR WHOIS Protection will be enabled for the Domain name by default during the purchase process. GDPR WHOIS Protection will work exactly as explained above
    • Users will be alerted in the purchase flow that their personal information is protected in WHOIS results for free
    • However, they still have the choice of layering Privacy Protection over GDPR WHOIS protection in order to receive emails like sale notices.
    • WHOIS data for EU customers will always be masked regardless of whether or not Privacy Protection is enabled
  • Partners using the LogicBoxes API must note two new attributes that will be recorded for domain names:
    • Data protection eligibility: This indicates whether the contact information must be masked for a particular domain name.
    • Data protection status: This indicates if the data protection status is currently turned ON or OFF.
  • Partners using the API must incorporate the following changes to enable customers to manage their data protection settings:
    • A new API method to disable and re-enable data protection;
    • A new API method to resend an authorization email for disabling data protection;
    • A new API method to cancel disabling request;
    • Two new parameters in domains/details and domains/details-by-name API methods
      • Data protection eligibility
      • Data protection status

 

The LB engineering team is currently working on building these changes into the system. While they do that, to enable our API partners to plan ahead, LB  will aim to share the final API specification with sample request and response patterns as soon as they are ready. Also, LB will  confirm when the new API methods will be available on the demo environment.

Additionally, certain TLDs have restrictions owing to the requirements laid down by their respective Registries and will hence, result into limited GDPR compliance. We will be communicating our plan for these TLDs before the enforcement date.

Notwithstanding the foregoing, access to personal data of domain name registrants may be granted when such access is necessary for technical reasons such as for the facilitation of transfers, or for law enforcement when it is legally entitled to such access.

 

3. Cookie Consent

When you visit NetEarth One  website, the web server passes on a cookie i.e., a string of text, to the web browser. These cookies enable our website to work, or work more efficiently, as well as provide information and additional services. Cookies are used for purposes of marketing, analytics or are essential for site functionality and making experiences better. To ensure that LB capture and record the appropriate consents for cookies deployed on the SS2 website / Partnersite / Control Panel, LB will be using TrustArc a globally trusted third-party compliance management tool. This way, you will be able to select and manage your cookie preferences. Generally, cookies may fall into any of the following categories*:

  • Strictly necessary/required cookies: These cookies are required to enable core site functionalities. If you choose to block these cookies, you may not be able to register, login to the website, access certain parts of the website or make full use of the website.
  • Functional cookies: In addition to core functionalities, these cookies collect and store login details, and can be opted out of
  • Analytics cookies: These cookies analyze site usage by monitoring how users navigate through the website, and can be opted out of
  • Advertising cookies: These cookies make users’ information available for targeted advertising, and can be opted out of

*The cookie definitions stated above are in accordance with how TrustArc (our cookie consent tool) identifies and segregates cookies.

  ***If you are using the API see below for how you will need to collect this information yourselves regarding your website***

What should you do as a partner?

 

If you use cookies on your website, you may have to comply with these enhanced consent requirements for cookies.

To help you implement this, LB have shortlisted 3 open-source tools you may be able to utilise to obtain and manage cookie consent from your customers:

  1. Cookie Consent by Insites
  2. Tarteaucitron.js
  3. Cookie Consent

These are just three tools out of the many options available on the internet. We are not, by any means, endorsing these tools and recommend you seek advice from your legal team before you decide to proceed with any of these (or other) cookie consent tools for ensuring thorough compliance.

What if you have more questions about GDPR?

If you have specific questions about GDPR, you can reach out to us at support@netearthone.com

 Other changes

You may be aware that there is likely to be further change in the near future about the way in which you can send marketing communication to your customers in the EU. The rules contained in the EU Directive on Privacy and Electronic Communications is under review and we are expecting a new ePrivacy Regulation to be finalized soon.

Once these new rules are finalized, we will be reviewing our forms and features again to provide our partners with the necessary tools to achieve compliance.

 

NOTE: The information included on this page is meant to guide you through the process of understanding GDPR and is not a substitute for legal advice. Find more information on the GDPR website.

 

 

May 8, 2018

New Password Policy on the LB platform.

Filed under: Changes on the LB platform,NetEarth One — chrisp @ 18:39

Password changes on the LB platform

LB will be updating our Password Policy to keep OrderBox more secure.

The password must have:
1. Between 9-16 characters
2. Uppercase characters (A-Z)
3. Lowercase characters (a-z)
4. Numbers (0-9)
3. Special characters ~*!@$#%_+.?:,{}

 

Impact:

This change would impact the following users on the platform

  • Resellers creating a new reseller/customer account
  • Existing resellers/customers changing their account password

Note: LB recommends existing users to update their passwords as per the new policy.

The password policy changes will affect Resellers as follows:

  1. Resellers using the Supersite / Partnersite
    LB will be making changes to the code on the Sign Up pages. In the event that you have modified the code on the sign up page, kindly review the code changes here.
  2. Resellers using our API
    Our API has been updated as per the new password policy. Please find the API details below:

Reseller Sign up API: https://test.httpapi.com/api/resellers/v2/signup.json

  • Username
  • Name
  • Company
  • Language-preference
  • Password
  • Address-line-1
  • City
  • State
  • Country
  • Existing resellers/customers changing their account password
  • Zip-code
  • Phone-CC
  • Phone
  • Accounting-currency-symbol
  • Selling-currency-symbol
  • Auth-userid
  • API-key

Customer Signup API: https://test.httpapi.com/api/customers/v2/signup.json

  • Username
  • Name
  • Company
  • Language-preference
  • Password
  • Address-line-1
  • City
  • State
  • Country
  • Zip code
  • Phone-CC
  • Phone
  • Auth-userid
  • API-key

Change Customer Password: https://test.httpapi.com/api/customers/v2/change-password

  • Customer-id
  • New-password

Change Password: https://test.httpapi.com/api/reseller/v2/change-password

  • New-password

Note: We highly recommend you to switch to the new APIs to become compliant with the new password policy. The older API will continue to function and not enforce the new password policy.

To see more, take a read of the knowledgebase :

 

December 16, 2017

Verisign .net Fee Change in Feb 2018

Filed under: NetEarth One,Registry Price Increase — chrisp @ 11:03

Verisign will be increasing the .net pricing as of Feb 1st 2018 at 0000 UTC.

To facilitate the increase, we will be raising the pricing of registration, renewal, transfer and restoration by $1.00 per year as of January 31st 2018 at 2200 UTC.

This is across all tiers.

Christmas and New Year opening hours for support 2017/2018

Filed under: NetEarth One — chrisp @ 10:08

Christmas and New Year Support hours 2017/2018

Support will be open the following hours over the holiday period:

 

Christmas EveSunday24th December 201708:00 through 17:00
Christmas DayMonday25th December 201712:00 through 17:00
Boxing DayTuesday 26th December 201710:00 through 17:00
New Years EveSunday31st December 201708:00 through 17:00
New Years DayMonday1st January 201812:00 through 17:00

August 30, 2017

Urgent: Pricing updates from LogicBoxes / Registries

Filed under: NetEarth One,Registry Price Increase — chrisp @ 19:53

We have had a rather impulsive update to our pricing which through LogicBoxes is from the registries.

As you will notice most of them are nTLD’s, meaning the new gTLD names are not making as much for the registries as they were hoping and they believe to recoup it is best to “increase” the pricing and catch new registrations, transfers, and renewals (plus restorations). Some over 2000% increase in pricing, namely .HOSTING and .JUEGOS, let alone some being 400% increases – what a con I hear you say, I can’t disagree with you – we are flabbergasted at the short sightedness of the registries in question.

So the first 3 are going live September 1st 2017 at midday BST (11am UTC) :

TLD Tier 1 Tier 2 Tier 3 Tier 4 Tier 5 Restore

TLD                 Tier 1 Tier 2 Tier 3 Tier 4 Tier 5 Restore
.TV                 $33.00 $32.75 $32.50 $32.25 $31.99 $80.00 C
.SEX, .ADULT, .PORN $86.00 $86.00 $86.00 $86.00 $86.00 $130.00 C
.XXX                $91.00 $90.59 $90.39 $90.19 $89.99 $350.00 NC

We remaining will go live September 7th at 2300 BST (2200 UTC) :

TLD                 Tier 1 - 5  Restore
.CLICK              $11.25      $66.00 NC
.LINK               $9.29       $87.99 C
.HELP, .PICS        $27.25      $100.95 C
.PHOTO              $25.99      $108.95 NC
.TATTOO             $37.99      $108.95 NC
.SEXY               $46.00      $100.95 NC
.CHRISTMAS          $58.95      $108.95 NC
.AUDIO              $119.95     $250.00 C
.BLACKFRIDAY        $119.95     $250.00 C
.PROPERTY, .GUITARS $119.95     $250.00 C
.DIET               $119.95     $250.00 C
.FLOWERS            $124.00     $250.00 C
.HIPHOP             $101.00     $250.00 C
.HOSTING            $330.00     $350.00 C
.JUEGOS             $330.00     $350.00 C

The C and NC at the end mean the Restoration price has changed.

We deeply regret the short notice with the pricing updates above.

May 2, 2017

Afilias .INFO price increase as of 30th June 2017

Filed under: NetEarth One,Registry Price Increase — chrisp @ 11:22

Afilias the .INFO registry is increasing its cost price to each ICANN registrar, for registration, renewal or transfer. This will be effective on 30th June 2017, at 22:30 BST.

Therefore the new prices per Tier are :

Tier 1 : $11.49
Tier 2 : $10.95
Tier 3 : $10.90
Tier 4 : $10.75
Tier 5 : $10.55

Restoration pricing will increase by $1.00 to $73.00 which will include 1 year renewal of the domain name.

Older Posts »

Powered by WordPress