The Domain Name Industry Brief (DNIB) website is an information and analysis website focused on policy, security and trends in the Domain Name System (DNS) industry, including an expanded and interactive dashboard to explore the Domain Name Industry Brief Quarterly Report data and other information. This privacy statement explains what personal information we may collect from you when you visit the website (Site) and how we may use or share that information. The Site is sponsored by VeriSign, Inc., the publisher of a quarterly Domain Name Industry Brief report for more than a decade.
The report is now published on DNIB.com each quarter, summarizing the state of the domain name industry through a variety of statistical and analytical research. Expanding on the quarterly reports, DNIB.com’s interactive dashboards offer data on the domain name base, registrations and renewals, and security, stability and resiliency trends to help gain insight into the state of the DNS. The site also features regular insights from subject matter experts on relevant policy, security and technology, and industry trends and serves as a stand-alone resource for leaders, policymakers and technologists in and around the DNS industry.
Information We Collect
Our Site collects only limited information. The following categories of personal information may be collected directly from you when you visit the Site.
Our Site also collects certain information automatically, this includes technical information, such as your IP address, cookies, HTTP headers, browser type and version, time zone settings and location and operating system and platform. It may also include usage information, such as how you engaged with our Site, including time spent on a page, and articles or features you read.
How We Use Information
We use the information we collect to offer the Site and engage with you on issues you have expressed an interest in, such as when you sign up for alerts or the newsletter. We use information that we collect automatically through digital technologies to perform analytics, evaluate a user’s experience with the Site and improve and protect the security and integrity of our offerings.
How We Share Your Information
We may need to share the categories of information listed above with our service providers that support us in offering the Site and related services. We may also share your information with third parties in limited situations, including law enforcement or regulatory agencies, if required to do so or if we believe such disclosure is necessary or appropriate. If we undergo a merger or reorganization, we may also need to share your information with another entity.
We do not sell your personal information or share it for targeted advertising purposes.
Digital Technologies
Our Site may use digital technologies, including cookies. We may use strictly necessary cookies, which are enabled by default in order for the Site to function properly. We may also use optional first party and third-party cookies to deliver notifications. We are using Google Analytics 4 (GA4) to collect analytical information on the use of our Site. If you access our Site outside of Europe, both strictly necessary and analytic cookies are enabled by default, and all other cookies are disabled. If you access our Site from Europe, only strictly necessary cookies are enabled by default. When you visit our Site, you have the option to customize your cookie settings, either by selecting the “cookie settings” button on the cookie banner or by clicking on the “cookie settings” link on the homepage. All cookies, except those strictly necessary for the Site to function, may be enabled or disenabled depending on your preference.
Additionally, all major internet browsers allow you to control cookies. You can learn more about adjusting browser controls at the following website: http://www.aboutcookies.org. (Note that DNIB does not control this website and is not responsible for its content. It is provided as information only. For the most current browser-specific information, please consult your browser’s manufacturer).
Do Not Track
We do not respond to Do Not Track signals.
Retention
We will only retain your personal information in identifiable form for as long as needed for the purposes for which it is gathered and processed. In determining retention periods, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements. When we no longer need personal information, we either anonymize, securely delete, or destroy it.
Security
We consider the protection of all personal information we receive from our Site as critical to our corporate mission. We have security measures in place to protect against the loss, misuse, and alteration of any personal information we receive from you. As with any transmission over the internet, however, there is always some element of risk involved in sending personal information.
Changes to the Privacy Statement
This privacy statement may change from time to time. When we make a change to the privacy statement, we will update the “Last Updated and Effective Date” listed above. Your continued use of the Site after we have updated the privacy statement indicates your acceptance of those changes.
Contact Us
GDPR Practices
Where we collect, process, use or disclose personal information that is subject to the General Data Protection Regulation (GDPR), we are committed to processing your personal information in a fair and lawful manner. This section supplements our privacy statement and describes our privacy practices specific to personal information covered by the GDPR and your rights in relation to your personal information.
Our Legal Bases
When we collect information from our about you, we do so only in compliance with an identified legal basis. The legal bases for our collection and use of your information described above include when necessary for our legitimate interests, with your consent, or necessary to comply with a legal obligation.
Your GDPR Rights
We respect the rights that you have in relation to your personal information, and we will respond to requests for information and, where applicable, will correct, amend, or delete your personal information.
Access to personal information. We will give you access to your personal information upon written request, subject to any relevant legal requirements and exemptions, including identity verification procedures. Before providing information to you, we will ask for proof of identity and sufficient information about your interaction with us so that we can locate any relevant data. Except where it is not permissible under applicable law, we may also charge you a fee for providing you with a copy of your data.
Correction and deletion. You have the right to correct or amend your personal information if it is inaccurate or requires updating. You have the right to request deletion of your personal information; however, this is not always possible due to legal requirements and other obligations and factors.
Data portability. You may have the right to (i) obtain personal information concerning you, which you have provided to us, and (ii) transmit such information to another data controller. The information may be transmitted directly from us to the other data controller where feasible.
Withdrawal of consent. Where we are processing your personal information on the basis that you have consented to such processing, you have the right to withdraw that consent at any time. Once we have received written notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.
Objection to and/or restriction of processing of personal information. You have the right to: (i) restrict the processing of your personal information in certain circumstances (e.g., where you contest the accuracy of your personal information); and (ii) object to certain types of processing of personal information.
Lodging a complaint. If you are not satisfied with how we manage your personal information, you have the right to lodge a complaint to a data protection regulator. A list of National Data Protection Authorities (DPA) can be found here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. Before filing a complaint with a DPA, we ask that you contact us to provide us with an opportunity to resolve your complaint.
Data Transfer
The information we collect from you may be stored and processed outside of your home country to the extent permissible by law. We take steps to ensure that the information we collect is processed according to this privacy statement and the requirements of applicable law wherever the data is located.
We have networks, databases, servers, systems, support, help desks, and offices located around the world, including outside the EU.
We use service providers located around the world, including outside the EU to serve the needs of our business, workforce, and customers. We take appropriate steps to ensure that personal information is processed, secured, and transferred according to applicable law. In some cases, we may need to disclose or transfer your personal information within our organization or to third parties in areas outside of your home country (including areas outside the EU).
We may transfer the personal information we collect about you to recipients in countries other than the country in which the information originally was collected. Those countries may not have the same data protection laws as the country in which you initially provided the information. When we transfer your information outside of the EU to recipients in other countries (such as the U.S.), we will either use specific contractual terms approved by the European Commission (“Standard Contractual Clauses”) or another approved data transfer mechanism that will provide your personal data with equivalent protection as that afforded by the GDPR.
VeriSign, Inc. complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”) as set forth by the U.S. Department of Commerce. VeriSign, Inc. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (“EU-U.S. DPF Principles”) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Verisign, Inc. has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (“Swiss-U.S. DPF Principles”) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (“DPF”) program, and to view our certification, please visit https://www.dataprivacyframework.gov. Click here to view our EU/Swiss-U.S. Data Privacy Framework Privacy Policy.
California Residents – Notice at Collection and Privacy Rights
This Notice at Collection of Personal Information (Notice at Collection) supplements our privacy statement and includes details about the personal information we collect from California residents and the purposes for which that personal information will be used. This Notice at Collection applies solely to California residents.
We adopt this Notice at Collection in accordance with the California Consumer Privacy Act of 2018 (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA) and any terms defined in the CCPA/CPRA have the same meaning when used in this Notice at Collection.
This notice describes the personal information we may collect and the purpose for that collection as well as your rights under the CCPA/CPRA. For additional information on our privacy practices, please see other sections of our privacy statement.
Categories of Personal Information Collected
We may collect the following categories of information from and about you:
We do not collect sensitive personal information as defined by the CPRA.
Categories of Sources from which Personal Information is Collected
We may collect these categories of information from various sources, including you or your engagement with the Site.
Categories of Personal Information Disclosed for a Business Purpose
We may disclose the categories of personal information listed above for a business purpose with third parties, such as analytics providers.
We do not “sell” or “share” your personal information as defined by the CCPA/CPRA.
California Residents’ Privacy Rights
If you are a resident of California, you have the following rights:
If you are a California resident, you or your authorized agent may exercise these rights by:
Prior to exercising your rights, we must verify your identity to a reasonable degree of certainty. To verify your identity, when feasible, we will use information about you that we already have; however, on occasion we may need to request additional information, which we will use only for the purposes of verification. We may also use a third-party identify verification service.
The information we need to verify your request will depend on the type of request, the sensitivity of the personal information requested, and/or the risk of harm to you. Upon receipt of your request, we will notify you if we need additional information from you to verify your request.
We will process your verifiable request free of charge, but we are only obligated to provide information to you pursuant to such requests two times in a 12-month period. Note, we may deny your request in whole or in part if we cannot verify your identity. For requests to delete, we will not delete any personal information unless we have confirmed with you that you want your personal information deleted, unless otherwise required by applicable law. You can also designate an authorized agent to make a request on your behalf. To do so, we may require that you confirm directly to us that you have provided the authorized agent permission to submit the request, and even if you elect to use an authorized agent to make a request, we may verify your identity directly with you.
We will only use your personal information for the purposes for which we collected it, including where we reasonably consider that we need to use it for a reason that is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you as required by law.
Please note that we may process your personal information without your knowledge or consent where this is required or permitted by law.