At Search.Initiative Registrar, we take online safety and network integrity very seriously. Our Abuse Policy defines how we detect, investigate, and respond to any reports of domain misuse, spam, or illegal activity associated with our registered domains. We are committed to maintaining a trusted and transparent domain ecosystem that protects both users and the public from harm.

Purpose of This Policy

The purpose of this Abuse Policy is to ensure that any misuse of domains registered through Search.Initiative Registrar is handled quickly, professionally, and in compliance with applicable laws and registry standards such as ICANN, Nominet, and EURid. This policy covers:

• What types of activity are considered abuse.
• How to report abuse or policy violations.
• How we investigate and take action.
• Our cooperation with law enforcement agencies.

What Constitutes Domain Abuse

Domain abuse refers to any use of a domain name or related services that violates laws, registry policies, or our Terms of Service. Examples of domain abuse include, but are not limited to:

• Phishing: Creating fake websites to steal personal or financial information.
• Spam: Sending bulk, unsolicited, or deceptive emails.
• Malware distribution: Hosting or linking to malicious software that harms users’ devices.
• Botnets: Using domains to control or coordinate automated attacks.
• Fraudulent activity: Selling fake products, scams, or deceptive services.
• Child exploitation or illegal content: Hosting or linking to illegal materials.
• Trademark infringement: Registering domains that violate intellectual property rights.
• Fake WHOIS data: Providing false or incomplete registrant information.
  These violations threaten online security and may lead to suspension or termination of the associated domain.

Reporting Domain Abuse

We encourage anyone who identifies potential abuse to report it immediately.

How to Report

Email: Send reports to abuse@search.initiative.
Include:

• The domain name in question.
• A description of the issue or suspected activity.
• Supporting evidence (e.g., screenshots, email headers, or URLs).
• Your contact information for follow-up.
  Anonymous reports are accepted, but providing details allows for faster verification and resolution. Reports can be submitted 24/7 and are reviewed by our Abuse Response Team within 24 to 48 hours.

Investigation Procedure

Once an abuse report is received, our team follows a structured process:

• Initial Review: We confirm whether the reported domain is registered with Search.Initiative Registrar and classify the type of abuse.
• Verification: Technical and WHOIS data are checked to validate the claim.
• Action Assessment: Based on severity, we decide the appropriate response (suspension, warning, or further investigation).
• Notification: The registrant may be contacted for clarification unless immediate suspension is required for safety reasons.
• Resolution: Actions are implemented and documented according to internal policy and registry requirements.
  If law enforcement involvement is necessary, evidence and data are preserved securely.

Response Times

We aim to handle abuse reports efficiently:

• Critical cases (malware, phishing, child exploitation): Immediate suspension within 24 hours.
• Standard cases (spam, policy violation): Investigation and response within 2–3 business days.
• Complex cases: Extended review, with updates provided to the complainant.
  All decisions are made based on verifiable evidence and registry rules.

Actions We May Take

Depending on the nature and severity of the abuse, Search.Initiative Registrar may take one or more of the following actions:

• Temporarily or permanently suspend the domain.
• Disable DNS resolution to prevent further harm.
• Lock the domain during an investigation to prevent transfer.
• Issue a warning or request corrective action from the registrant.
• Report the case to law enforcement or relevant authorities.
• Terminate the account in severe or repeated violations.
  All actions comply with due process, transparency, and legal requirements.

Cooperation with Law Enforcement

Search.Initiative Registrar works closely with international and national law enforcement agencies to combat cybercrime and domain abuse. We provide timely assistance when legally requested and support investigations related to:

• Fraud and identity theft.
• Cyberattacks and botnets.
• Child protection and online exploitation.
• Trademark and copyright violations.
  All disclosures are performed according to GDPR and applicable data protection laws to ensure that privacy rights are respected.

Preventive Measures

To minimize the risk of abuse, we take proactive steps, including:

• Automated scanning for malicious patterns or blacklisted content.
• Monitoring DNS and WHOIS records for suspicious changes.
• Using advanced abuse detection tools in partnership with registry operators.
• Regularly updating our internal response procedures.
  We also educate our customers about safe domain use through newsletters, blog posts, and awareness campaigns.

Registrant Responsibilities

Registrants play an essential role in maintaining a safe online environment. Customers agree to:

• Use their domains in accordance with applicable laws and registry policies.
• Keep contact and WHOIS information accurate and up to date.
• Respond promptly to abuse reports or registrar inquiries.
• Secure their hosting and email systems to prevent unauthorized use.
  Failure to meet these responsibilities may result in suspension or termination under our Terms of Service.

False or Malicious Reports

Search.Initiative Registrar does not tolerate false or intentionally misleading abuse reports. Submitting fraudulent claims may result in restricted access to reporting tools or, in severe cases, legal consequences. We investigate all reports carefully to ensure that innocent registrants are not penalized unfairly.

Data Privacy in Abuse Handling

During investigations, we collect and process certain information, such as contact data, IP addresses, and complaint evidence. We handle this data responsibly:

• Information is used only for the purpose of resolving the case.
• Data is stored securely and shared only with relevant authorities when required.
• All personal information is processed in compliance with GDPR and our Privacy Policy.