The “.BRAND” Tld is a new gTLD that is becoming increasingly appealing. Companies are interested in this concept in order to own an extension of their own brand. This practice is an excellent marketing opportunity to present products of the brand.
Some statistics on the “.brand”
596 TLDs among which 536 were delegated
184 TLDs with more than 5 currently active registrations
4312 domain names but only 437 active websites
54 .BRANDs appear in the Alexa Rankings, representing a 69% increase in one month.
The top 5 terms to the left of .BRAND:
Home
www
mail
careers
support
sources 2016
What about companies having their “.brand”?
The actual impact of the “.brand” has not yet been established. However, these extensions are widely used in the banking sector, where security and authenticity are primary concerns.
Companies by now should have knowledge of their new websites using a “.brand” – notably the home.TLD used as a main site. While many companies have not yet given up their traditional domain names (.com, .fr, .co.uk, etc.), they no longer hesitate to promote their “.brand” amongst their clients.
Large companies have already made the transition: CERN, The Weir Group or even BNPParibas almost exclusively use their “.brand”. Others, like Barclays, are currently making the transition over towards complete use of their new extension.
Should one acquire a “.brand”?
There are many advantages to a “.brand” – particularly in terms of reputation with internet users and clients.
As a Tld exclusive to companies, internet users will thus be able to trust them, to value their reliability and will be able to feel safe in accessing these sites. Internet users will know with whom they are dealing and will not be misled by a potential cybersquatter. The company maintains full control of its extension and it can therefore apply any desired policy to promote its brand image.
A “.brand” is an excellent opportunity for businesses to promote their brand image and enhance communication. Companies would also at any time be able to use reliable statistics to determine their marketing and communication policy.
Will you make the transition?
Following the completion of the first round of new gTLDs, ICANN has scheduled a second one for 2018, even though it seems more likely that will take place in 2020.
To prepare for the above, companies need to perform an impact assessment: an analysis of the market, of the company’s activities and its competitors’ position in order to enable a brand to identify its needs.
Becoming a manager and a registrar of an extension requires preparation and particular technical skills and expertise. One must for example pay ICANN fees, manage the registry database and offer various services such as a 24/7 maintenance service.
If a business plans to have its brand name extension, all departments must be involved: marketing, communications, production, legal, technological, risk, etc. An internal strategy should be devised to efficiently determine the advantages and disadvantages and to carry out a study on the company’s return on investment. Finally, the technical conditions and compliance with ICANN standards are minor compared to this internal strategy. Businesses should consider integrating the “.brand” in their communication strategy.
Choosing not to have a “.brand” is already a strategy. One should therefore take a stand and ensure they are fully prepared before engaging in the .brand process.
Please feel free to contact Dreyfus for more information.
Brunei thus becomes the 6th member country, out of a total of 11 South-East Asian countries (ASEAN), to join the Madrid System.
Broad geographic coverage
Since January 6, 2017, the effective date of entry into force of the Madrid Protocol in Brunei, national trademark owners will be able to protect their trademarks in the 114 territories of the 98 members of the Madrid System.
In addition, foreign trademark owners can expand the protection of their trademark to the Southeast Asian market and more specifically to that of Brunei.
A convenient and cost-effective system
The main advantage of the Madrid System, is the simplification of the filing and management procedures of international trademark registration.
Following a simple application for trademark registration, or a trademark registration with a national or regional intellectual property office, one can apply for a single international registration with the same office, which will then arrange for submission of the application to the WIPO.
Filing an international application is therefore equivalent to filing multiple national applications, thus effectively saving time and money.
International registration as most national registrations is valid for 10 years.
Future accession of Thailand
Thailand should be the next ASEAN member state to become party to the Madrid System.
Only Indonesia, Malaysia and Burma as well as East Timor will then be left to obtain their accession to the Madrid Protocol so that all ASEAN countries become part of the international trademark system.
France : opposition procedure before the French Trademark Office and local communities
Since the decree no. 2015-671 dated June 15, 2015, an alert procedure has been made fully available for local communities and public establishments for cooperation between local authorities (EPCI), pertaining to registration trademark applications containing their designation.
This service, which is free on behalf of the NIIP’s public service mission, allows them to receive alerts when a trademark application contains their name and it also allows them to file an opposition within a 2 month deadline following trademark publication. The procedure has been implemented by new Code of Intellectual Property Articles D712-29 and D712-30. They provide that an Alert be issued by the NIIP « within five work days following the trademark’s filing date if the trademark contains the name of the local community or the country concerned ».
A valuable legislative policy change for french trademark law
Before the modification, legislation did not grant protection to local communities and EPCI’s against abusive use of their names, and the criteria that allowed to qualify for likelihood of confusion were difficult to fulfill. The NIIP’s means were, as a consequence, very limited as to defence of local communities’ rights.
The LAGUIOLE case of 2012 before the Paris Court of Appeals (Cour d’appel) illustrated the issue, because the judges reacted to only one of the plaintiff’s claims based on provisions of Code of Intellectual Property Article L714-5 for failure to meet the requirement for genuine use of the trademark during 5 years.
In this case, a Val-de-Marne restaurateur registered 27 trademarks containing the name « LAGUIOLE » seemingly looking to take advantage of the small town of Laguiole’s reputation, which is worldwide for the quality knives that are made there. French NIIP Director said that the trademark « enjoys no notoriety within restaurant and food industry businesses. Used as a brand to identify these different services, the word « Laguiole » will conjure up (…) the common name for that particular type of knife, not the Proper name designating a town in the Aveyron region ».
Protection made easier in pursuance of the NIIP’s public service mission
The decree currently in force allows for local communities to defend ownership rights to their own name without having to hope for a favorable decision based on incidental facts that are foreign to the actual legal issue, as was the case with LAGUIOLE in 2012. That decision has been the subject of judicial review before the French supreme Court (Cour de Cassation) in October 2016, and is currently still waiting for a referral date before the Paris Court of Appeals in 2018.
This change in the legislation is a positive one. With the NIIP alert system in place, local communities are now equipped to prohibit trademark registration if said registration is inimical to their interests. It is through enforcement of new Code of Intellectual Property Article L711-4 h) and decree no. 2015-671 dated June 15, 2015 that the trademark PARIS BY PARIS could not be registered, none of the proposed products being made in France.
A growing number of local communities and townships have put the Alert system to good use by filing oppositions before the NIIP when the trademark registry application is inimical to « the name, image or repute of a local authority » per Code of Intellectual Property Article L. 711-4 h). Local communities are now better equipped to control brand name recognition and can avoid name hijacking by entities trying to piggyback their reputation with misleading representation and deceptive practices.
The extent of protection still unclear
The question that still remains to be answered concerns the full extent of the abovementionned protection and interpretation of Article 711-4 h) by the French NIIP.
In the PARIS BY PARIS case, the French NIIP ruled that « Code of Intellectual Property Article 711-4 h) does not prevent all third parties from registering a sign that identifies a local community as a trademark, but reserves such prohibition for cases where trademarking would be detrimental to public interests ».
It is a very engaging start, and a welcome change !
The term “trademark troll” refers to opportunistic actors who exploit trademark law for speculative or coercive purposes. This article examines the definition of trademark trolls, the dangers they represent, the means of protection against them, and the question of their potential strategic value.
Understanding trademark trolls
Definition and essential characteristics
A trademark troll files a mark without any genuine intention of use, with the aim of demanding royalties, blocking market access, or exerting legal pressure.
Origins: from patent trolling to trademark trolling
Inspired by practices in the field of patents, this misuse relies on the “first-to-file” principle. Trolls take advantage of companies’ delays or oversights to pre-empt their filings.
Why trademark trolls are dangerous
Legal and commercial risks
Such practices generate costly litigation, slow down innovation, and force businesses into unjustified financial concessions.
Concrete examples
Snapchat vs. 47/72 Inc.: the filing of “OH SNAP! CHAT” risked diverting Snapchat’s image.
Castel frères in China: fraudulent pre-registration of the name “Ka Si Te” led to penalties and market losses.
Apple-proview: Apple was forced to pay USD 60 million to secure the “iPad” trademark in China.
Opposition proceedings before INPI, EUIPO, or other trademark offices.
Revocation for non-use actions.
Recognition of bad faith, illustrated by the recent EUIPO decision invalidating a fraudulent “TESLA” filing.
In 2022, Tesla filed a cancellation action against the European trademark “TESLA,” registered by Capella Eood, a company associated with an individual known for “trademark trolling” practices. Tesla argued that Capella Eood employed speculative strategies to register trademarks in order to block other companies’ operations and extort financial settlements. The EUIPO’s Cancellation Division held that the mark had been filed in bad faith and declared it invalid.
While trolls act for speculative purposes, some defensive filings may be considered strategic, provided they rest on a genuine intention of use.
Regulatory responses and recent case law
Offices and courts are progressively reinforcing the fight against abusive practices. The Tesla/Capella Eood decision confirms Europe’s determination to sanction speculative filings.
Conclusion
Trademark trolls represent a growing threat for businesses. Only proactive protection strategies and swift legal responses allow companies to safeguard their intangible assets.
Dreyfus Law firm assists its clients in managing complex intellectual property cases, offering personalized advice and comprehensive operational support for the complete protection of intellectual property.
Dreyfus Law firm is partnered with a global network of lawyers specializing in intellectual property.
Nathalie Dreyfus with the assistance of the entire Dreyfus team.
FAQ
What is a trademark troll?
A trademark troll is a filing made without any real intention of use, solely to block or monetize rights.
What are the risks associated with trademark trolls?
They lead to costly litigation, delay market entry, and impose unjustified financial concessions.
How can a fraudulent filing be anticipated?
By filing trademarks early and implementing active monitoring systems.
What remedies are available in France and Europe?
Opposition proceedings, non-use cancellation actions, and claims based on bad faith.
Is revocation for non-use an effective tool?
Yes, it is an effective means of cancelling trademarks held by trolls.
Should start-ups fear trademark trolls as much as large corporations?
Yes, because their financial vulnerability and growing visibility make them particularly exposed.
What is the difference between a defensive filing and a troll filing?
A defensive filing aims to protect legitimate use, while a troll filing relies on abusive speculation.
In a decision of the Paris Cour d’appel dated November 8, 2016 (Pole 5, ch. 1, Mr X. / Team Reager AB and Stone Age Limited), the judges reversed an expert’s decision at the WIPO Arbitration and Mediation Center dated July 29, 2013 who ordered the transfer of a domain name to a community trademark owner prior to the registration of the disputed name.
Transfer of the domain name ordered by the WIPO
The Swedish company Team Reager AB, created on September 9, 2010 and specialized in design of products and services related to mobile phones, had launched through Moobitalk UK Limited its sister company, a hands-free device called “Moobitalk”. On February 10, 2011, it registered the community word mark Moobitalk, designating particularly telecommunication services, and assigned its rights on the trademark to Stone Age Limited on April 14, 2014.
Mr. X., managing director of companies operating in the Middle East, particularly in Yemen where he was born and is resident, had for several years operated communication services based on the “moobi” suffix (phonetic transcription of “mobi” meaning “mobile phone” in Arabic), and especially “chat” type services called MoobiChat and Moobitalk, in different countries of the Near East and the Middle East. On April 17, 2011, he registered the domain name <moobitalk.com>.
Team Reager had filed a UDRP complaint with the WIPO against Mr. X, and the Expert had ordered the transfer of the domain name <moobitalk.com> on July 29, 2013 on the grounds that Team Reager was the owner of the community trademark Moobitalk prior to the disputed name.
An ownership claim to the name
However, on August 27, 2013, 8 days following notification of the decision, Mr. X brought Team Reager before the TGI of Paris to settle whether he was the legitimate owner of the domain name <moobitalk.com> and to obtain its restitution. However, the TGI rejected the arguments put forward by Mr. X. It upheld the acts of infringement committed against the community trademark Moobitalk and ordered the transfer of the domain name ‘moobitalk.com’ as compensation.
However, Mr. X appealed against that decision in order to reclaim ownership of the disputed domain name. Indeed, the Cour d’Appel held that there was no trademark infringement insofar as the <moobitalk.com> site was not targeting an audience in the European Union but only in the Near and Middle East. Neither the use of the generic extension “.com” nor the use of the English language on the website demonstrated <moobitalk.com>’s owner’s will to target the European public.
The court therefore reversed the TGI judgment and dismissed the claims of Team Reager and Stone Age with respect to infringement of the community trademark Moobitalk and the violation of TeamReager’s rights over that trademark, and ordered restitution of the domain <moobitalk.com> to Mr. X., its owner.
Can we appeal a UDRP decision?
The decision recalls the rules for an appeal of a UDRP decision. This action is possible provided that it is brought within ten days following the notification, in order to avoid cancellation or transfer of the name. Thereafter, the competent court is either where the registered office is located or where the domicile of the domain name owner is located. In the context of proceedings relating to the domain name <moobitalk.com>, the independence of French judges from the WIPO must be emphasized, since the Paris Cour d’appel reversed the judgment of the WIPO experts and ordered restitution of the disputed name.
The Court of Justice of the European Union (CJEU), June 22, 2016, C-207-15P, Nissan/EUIPO
Nissan is the owner of a figurative Community trademark “CVTC” for which registration was sought in classes 7, 9 and 12. Nissan requested the renewal of the trademark, due in April of 2011, in respect of goods and services in classes 7 and 12 only.
The European Union Intellectual Property Office (EUIPO) refused Nissan’s request. The decision to refuse Nissan’s request for renewal of the “CVTC” trademark in class 9 was confirmed by both the First Board of Appeal of the EUIPO and the EUIPO General Court.
Nissan then appealed to the CJEU seeking annulment of the judgment of the General Court of the EU, which rejected the application for partial renewal of the mark in class 9.
The CJEU acknowledges the possibility to request successively for partial renewal of a trademark in different classes, not only before, but also during the grace period.
Therefore, the only prerequisite for successive requests for partial renewal of a Community trade mark to be accepted, is compliance with the grace period, together with payment of the surcharge.
By way of this decision, the CJEU establishes that the new Article 47 of the EUTMR, provides that the request for renewal should be submitted within a period of six months prior to the expiry of registration. In other words, 10 years following the date of application for registration.
An order of the European Court of Justice (ECJ) dated September 8, 2016 highlights the need for business trademark owners to register all relevant changes with the Trademark Register.
Changing one’s corporate name requires compliance with various formalities, such as amending the statutes or even advertising in a Journal of legal notices. When the business is a trademark owner, recording the change into the Trademarks Register is another formality requirement.
This recommendation is the result of an order of the ECJ dated September 8, 2016 where a company’s opposition to a trademark filing was dismissed on the grounds that its change of name did not allow it to oppose its trademarks to third parties insofar as it had not been entered into the Trademarks Register. This ECJ decision is contrary to the existing French legal framework with respect to trademarks.
ThecurrentFrench regulations
In accordance with Article L714-7 of the Intellectual Property Code, a trademark holder is required to make a recordal with the INPI only for some changes.
This article is at the root of the distinction made in practice between “compulsory” entries for changes in ownership of the trademark (transfer, merger…), and “optional” entries affecting the trademark owner (new legal form, new registered office, new corporate name).
Such an important distinction allowed businesses to prioritise the formalities to be carried out. As soon as a company was confronted with a “compulsory” entry, this change had to be entered with the INPI. If not, ownership was not enforceable against third parties. However, in the case of “optional” entry, the absence of entry in the INPI Trademarks Register did not impact the existing rights.
This policy is being questioned by the ECJ’s recent decision, which seems to require a balance between the business information with the Trade and Companies Register and trademark information with various Trademark Offices.
A policy weakened by the ECJ
While the ECJ has recently reduced its requirements for registration with the Trademarks Register of licences for trademarks or designs, this is not the case with respect to registration of changes concerning the trademark owner.
On September 8, 2016, the ECJ dismissed Real Express SRL’s opposition to the filing of a European Union trademark by MIP Metro Group Intellectual Property GmbH & Co KG. The Court then confirmed the position adopted by previous European institutions, namely the EUIPO and the General Court of the European Union, and considered that the applicant did not justify having rights over the registration of Romanian trademarks on which the opposition was based.
This debate arose as a result of a change of name from Real Express SRL to SC Unibrand SRL at the time of filing. The application for entry with the Romanian Office (OSIM) only took place a few days before the opposition. The various European bodies will judge this application for late registration insufficient and consider that Real Express SRL does not establish the existence of rights to earlier trademarks which was the reason for the opposition.
Late submission after filing of the opposition of a simple fax sent by OSIM confirming the request for registration of change of name and confirming the ownership of the trademarks since June 2011 will be considered insufficient. The ECJ therefore requires that the applicant’s situation be legitimate on the date of the application, otherwise his objection may be rejected.
This solution should be applied not only to changes in corporate name but also to changes in the registered office and changes in legal form.
Challenges and uncertainties
This ruling will have major implications for trademark owners. As soon as the details about the trademark owner become outdated, protecting a trademark right becomes risky.
It is obvious that a simple application with the Trademarks Register is insufficient, as registration of the entry must be effective. Depending on the country, this registration may take some time. There are, of course, fast-track procedures.
This decision encourages the anticipation and securing of trademark rights by entering all changes that may affect a trademark.
Following the French Digital Republic Law of October 7, 2016, Dreyfus presents a trilogy of articles on three essential features of the law.
The Digital Republic Law is centered around its’ title II called “Protection of rights in the society”. Within this Title II is the Second Chapter, entirely dedicated to “Protection of personal privacy online”, including “Protection of personal data”.
These new rules entail profound changes that the French legislator wished to anticipate in order to guide and the stakeholders and ensure compliance when processing personal data.
Power given to the data subjects
Both the Digital Republic Law and the GDPR focus on the person whose personal data will be processed (hereinafter called the “data subject”).
Article 4 of the GDPR defines personal data as “any information relating to an identified or identifiable natural person”. However, an identifiable person refers to “one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to his or her physical, physiological, genetic, mental, economic, cultural or social identity”. Therefore, data is personal when it allows the identification of a natural person. This data does not have to identify the data subject directly, as it shall be sufficient to identify them with data roll-up.
A self-determination right is thus conferred on the data subject.
Control of Post-mortem data
The Digital Republic Law also incorporates the right for data subjects to control their post-mortem data by amending the Act of January 6, 1798, and Article 40-1, with the aim to empower them to exercise their right over their personal data. The law thus creates a system of directives on storage, deletion and communication of the data subject’s personal data.
These directives may be amended or revoked at any time by the data subject. The directives define the manner in which the person intends to exercise his various rights following his or her death.
There are two types of directives:
General directives: they concern all personal data relating to the data subject. They may be registered with a trusted third party certified by the National Commission on Informatics and Liberty (CNIL). The CNIL will be responsible for managing a single registry where the references to the general directives and the registered and trusted third party will be recorded.
Specific directives: they concern the processing of personal data mentioned in these directives. They shall be registered with the relevant data controllers and shall be subject to specific consent of the data subject. Thus, the mere approval of the general terms and conditions of use (GTC) does not allow the definition of these specific directives.
The directives may designate a person who, upon the death of the data holder concerned, will be responsible for executing directives and requesting their implementation from the data controllers. In the absence of the designated person and unless otherwise instructed, the heirs of the deceased shall take note of the instructions and request their execution.
Providers of a public online communication service are responsible for informing users about what is done with their personal data upon their death and must allow them to choose whether or not to communicate their data to a third party they designate. Additional information on this issue should be included in the GTC specifically, but also in the data protection policy.
The rights granted to a person to decide what should be done with their post mortem data cannot be limited. Thus, a clause in the GTCs regarding the processing of personal data limiting these prerogatives is considered null and void.
Strengthening information available to users
Article 32 of the French Data Protection Law already required certain informations to be communicated to data subjects by whose data is being processed. Thus, the data collection forms had to mention the identity of the data controller, the purpose of the data processing, the mandatory or optional character of the data, the recipients of the data, and so on. The Digital Republic Law includes an eighth point on the storage period in terms of the categories of data processed or, if not possible, the criteria used to determine this duration.
Thus, any data collection form, data protection policy and any general terms and conditions of use shall henceforth indicate the data storage period.
Henceforth, when a data controller fails to comply with his obligations, the CNIL’s chair shall be entitled to issue a formal notice to put an end to any identified infringement within a time limit set by him. In case of extreme emergency, this delay may be reduced to twenty-four hours. Previously, the timeframe was five days. If infringement does not cease, the CNIL Restricted Committee may then issue, following an adversarial hearing (procédure contradictoire), a warning, a penalty (except where the processing is made by the State), an injunction to cease the processing or a withdrawal of the authorisation issued pursuant to Article 25 of the Law of January 6, 1978.
Monetary penalties are a novelty because prior to the French Digital Republic Law, monetary penalties were set only in cases of violation of a formal notice. This penalty may not exceed three million euros.
– up to EUR 10,000,000 or, in the case of a company, up to 2% of the total annual worldwide turnover for the previous financial year, whichever is the greater;
– or up to EUR 20 000 000 or, in the case of a company, up to 4% of the total annual worldwide turnover for the previous financial year, whichever is the greater.
Since the European regulation is of direct application, these amounts should be applied by the CNIL as of May 25, 2018.
Such measures may also be taken by the Restricted Committee, without prior formal notice and following an adversarial hearing (procédure contradictoire), where the identified infringement cannot be brought into conformity in the context of a formal notice.
Where there has been a violation of rights and freedoms of the data subject following execution of the processed data, the Restricted Committee may also, when the matter is brought before it by the chairman of the CNIL andin the context of emergency proceedings defined by a decree of the Conseil d’Etat and following an adversarial hearing (procédure contradictoire):
– decide to suspend processing, for a maximum period of three months,
– issue a warning,
– decide to lock certain processed personal data, for a maximum period of three months,
– or, for certain processing, inform the Prime Minister so that he may take action toward putting an end to the infringement identified.
In the event of a serious and immediate violation of human rights and freedom of the data subject, the CNIL chair may request a court of law to order, by way of summary proceedings, any measure necessary to safeguard these rights and freedoms.
the intentional or negligent nature of the breach,
measures taken by the data controller to mitigate the damage suffered by the data subjects,
the level of cooperation with the CNIL in order to remedy the breach and to mitigate its possible negative effects,
categories of personal data,
and finally the way in which the breach was communicated to the Committee.
The Restricted Committee may make public the sanctions issued. It may also order sanctioned parties to inform the data subjects of this sanction individually, at their expense.
The Restricted Committee may also order the publication of sanctions in newspapers and other media, at the sanctioned person’s expense.
Certain developments and clarifications on this law will be specified in the decrees. To be continued…
Please see our two other articles on the Digital Republic Law:
Part 1: French Digital Republic Law – online platforms
Part 2: French Digital Republic Law – data recovery
Further to the French Digital Republic Law on October 7, 2016, Dreyfus presents a trilogy of articles on three major aspects of law.
As soon as the online consultation on the Digital Republic Law came into force in September 2015, the right to data portability was at the heart of debates. The participants displayed a keen interest and votes in favour of article were positive (out of 796 votes, 704 were in favour of the article).
The Act therefore inserted a new subsection 4 in Section 3 of Chapter IV of Book II of the French Consumers Code entitled “Data Recovery and Portability”. According to the new article L. 224-42-1 of the French Consumer Code, “The consumer has at all times a right of recovery of all his data.”
A right to data recovery in accordance with European Union law
So as not to be in conflict with its future provisions, the drafting and coming into force of the Digital Republic Law followed the new European Regulation on the protection of personal data
The new Article L. 224-4-2 provides that the recovery of personal data introduced by the Law for a digital Republic is in conformity with the provisions of Article 20 of the Regulation of April 27, 2016.
However, there is a difference between the Digital Republic Law and the Regulation: while the latter speaks of data portability, the Digital Republic Law only mentions data recovery, regardless of what the title of the new subdivision 4 implies.
Difference between data portability and data recovery
As the name suggests, recovery allows for the retrieval of one’s data from an online provider of communication services to the public, in an open and easily reusable way. Thus, the data possessed by this provider shall not be lost when unsubscribing from its services.
Portability, however, not only makes it possible to retrieve data from the provider but also to transfer data to another. This can be initiated by the owner of the files himself, or if technically feasible, directly between the operators. Its scope is therefore larger than mere data retrieval.
The difference between data portability in the Regulation and data recovery in the Act is that the former covers only personal data and not “all files uploaded by the consumer”, contrary to the Digital Republic Law. The aim is therefore to target data processors in the Regulation and to target online providers of communication services to the public through the Law..
The choice between portability and recovery therefore becomes clearer: personal data is sensitive data and it is normal for a person to make use of this information. “All the files uploaded by the consumer” however, makes the question to be asked a little more complex. It is understandable that the legislator did not wish to impose portability on the providers: this would have required considerable technical efforts and very high costs in terms of compliance. Nothing however, prevents the user from subsequently transmitting files to another provider, even if technically possible.
What data is involved in the recovery according to the Digital Republic Law?
The legislator sought to go further than personal data under the Regulation. The aim of these provisions is indeed to facilitate the access of new providers, in particular young innovative startups, to markets very often closed or at the very least dominated by oligopolies. The choice was made to lower the barriers to changes of service providers and to promote competition among different digital service providers. Thus, the choice was made to include, for example, online bank statements, order history on an electronic sales site or the content of music preferences progressively posted on an online streaming site.
The Act therefore provides that recovery must be a free-of-chargeservice for all providers of online communication services to the public. It therefore covers
“all the files uploaded by the consumer”;
“all the data resulting from the use of the user account of the consumer and viewable online by him, other than those that were subject to significant enhancements by the provider”;
And “other data related to the consumer’s user account that meets the following requirements: a) these data enables the change of service provider or allows access to other services; b) data identification takes into account the economic importance of services involved, the intense competition between providers, the usefulness to the consumer, the frequency and the financial issues in the use of those services.”
The data involved in the recovery is therefore significant and the criteria provided by the law allows for a wide scope of retrievable data. It includes files uploaded by the consumer, data available online on the consumer’s user-account, other data associated with the account as well as that of economic importance, useful for the consumer, that bear financial issues, etc.
However, there is one significant exception: data “thatwere subject to significant enhancements by the provider” are not in the scope of the recovery. This involves making a distinction between raw data and significantly enriched data. The latter are those that concern services offered by the platform; data transmitted by the consumer that have been modified, enhanced using algorithms created by the service provider. The contribution of this algorithm cannot therefore be retrieved by the consumer while recovering the data.
Furthermore, it is only information visible to the public and not that of the “back office” that is concerned.
What are the new obligations on online communication service providers?
They must set up this data recovery feature and offer it free of charge.
The service provider must take all necessary measures, in terms of interface programming and transmission of the information necessary for the change of provider. The consumer must be able to retrieve all of his/her data or files through a single request made to the provider.
The data must be recovered using an open standard, easily reusable and exploitable by an automated processing system. However, when this is impossible, the provider must clearly and transparently inform the consumer. Otherwise, where appropriate, the provider informs the consumer of the alternative methods of such data recovery and specifies the technical characteristics of the recovery file format, in particular its open and interoperable character.
A decree is expected to specify the list of the types of enrichments deemed to be insignificant that can not give rise to a recovery refusal to the consumer. In case of a dispute, the burden of proving the alleged insignificant enrichment will be that of the professional.
To this extent, the new Article L. 224-42-4 of the French Consumer Code specifies that these provisions do not apply to providers of an online public communication service with a number of user accounts subject to an active connectionion during the last six months less than a threshold number defined by decree.
What do these new provisions bring about?
The ability to retrieve data from an online communication service was highly anticipated by Internet users. For some, this is even the corollary of the recognition of the right to the free disposal of personal data.
The challenge here was to balance the needs of consumers with business economic needs. The aim was not to disadvantage young innovative companies struggling to find a place among the giants within the markets concerned .
Time will tell us whether this objective is achieved and the impact of these provisions. We will have to wait until May 25, 2018 to notice the first visible effects, when the European Regulation and these provisions on data portability and recovery will come into force.
The French Digital Republic Act of October 7, 2016 laid the foundation for a structured regulatory framework governing online platforms in France. It introduced transparency, fairness and accountability obligations designed to rebalance the relationship between platforms, professionals and users.
In an ecosystem now largely shaped by the GDPR and the Digital Services Act (DSA), these obligations must be reassessed and updated. In this article, we offer a comprehensive analysis of the actual scope of the statutory provisions: first, what the law truly provides for, and then how those provisions fit into a legal landscape that has been profoundly reshaped since 2016.
Core obligations imposed on online platforms
Legal definition of online platforms
The Digital Republic Act introduced a precise definition of online platforms, formerly codified in the old Article L.111-7 I of the French Consumer Code. Services were considered platforms when they professionally offered, whether for remuneration or not, an online communication service to the public based on:
The ranking or referencing of content, goods or services;
The facilitation of interactions between several parties for the purpose of a transaction.
This definition covered a broad range of services: comparison tools, marketplaces, directories, search engines, social networks and intermediation services.
Its purpose was clear: to acknowledge the significant influence of these operators and to establish a protective framework built on three core principles, transparency, fairness and responsibility.
Article L.111-7 I of the Consumer Code was revoked in 2022. The applicable definition is now the one set out in the Digital Services Act, which qualifies an online platform as any intermediary service that stores and makes information accessible to the public at the request of users.
Differentiation between operators
The law distinguishes between:
Online platform operators, subject to general transparency rules;
Influencer platforms or hyperscale operators, now primarily regulated at the EU level by the DSA.
This structure enables obligations to be calibrated according to the platform’s economic influence.
Strengthened transparency and fairness requirements
Enhanced information obligations
Article L.111-7 of the French Consumer Code requires platforms to inform users of the criteria determining the ranking of content or offers. This information must be clear, intelligible and easily accessible.
This obligation, innovative in 2016, anticipated today’s concerns regarding algorithmic manipulation and the transparency of recommendation systems.
Disclosure of contractual relationships
Platforms must also indicate whether the advertiser or seller is acting as a professional, a consumer, or an uncertified reseller.
This enables users to determine whether consumer protection provided by law applies.
Identification of sponsored content
The law requires clearly identifiable disclosures when content has been paid for or promoted.
These provisions foreshadowed today’s standards set by:
The ARPP (French Autorité de régulation professionnelle de la publicité) for influencers,
Platforms must provide a user-friendly mechanism enabling individuals to report illegal content, including: counterfeiting, hate speech, privacy violations, fraud, and other unlawful activities.
When a platform connects professionals, sellers or service providers with consumers, it must provide a space enabling them to communicate the pre-contractual information required under Articles L.221-5 and L.221-6 of the French Consumer Code.
The Act has been largely absorbed by this EU framework while retaining its additional economic transparency requirements.
Complementarity with the Digital Services Act
The DSA, applicable since 2024, has established a comprehensive EU-wide regime for platforms. The DSA notably imposes increased responsibility on platforms regarding the moderation of illegal or harmful content. They must implement mechanisms to detect and remove such content, failing which they may face sanctions.
French Digital Republic Act remains relevant, particularly for:
Economic fairness obligations,
Online review regulation,
Consumer information duties.
Oversight and sanctions
The competent authorities include: the DGCCRF, CNIL, Arcom, and civil and criminal courts.
Sanctions can include fines, corrective measures, and even temporary bans on operations.
Update their terms of use, privacy policies and notices.
Conclusion
The Digital Republic Act remains a fundamental component of the French regulatory framework for online platforms. It establishes an environment based on transparency, responsibility and user protection, now reinforced by the GDPR and the Digital Services Act. Businesses must adopt an integrated approach combining legal compliance, algorithmic governance and consumer protection to secure their digital operations.
Dreyfus & Associés assists its clients in managing complex intellectual property cases, offering personalized advice and comprehensive operational support for the complete protection of intellectual property.
1.Can a platform be held liable for content posted by a user? Yes. A platform becomes liable if it fails to remove manifestly illegal content promptly after being informed of it.
2.Can a user challenge a platform’s decision to remove content? Yes. Platforms must provide an internal complaint mechanism allowing users to contest removal or delisting decisions. Under the DSA, this mechanism must be accessible and include human review.
3.Can French law require a platform to disclose the identity of a user who posted illegal content? Yes, but only under strict conditions. Disclosure can only be ordered by a judicial authority when there is evidence of illegal activity.
4.Must a platform located outside the EU comply with French law when targeting French users? Yes. If it targets the French or EU market, it remains subject to local legislation.
5. What best practices should online platform operators adopt? Platform operators should implement a comprehensive compliance strategy that integrates both national and European legal requirements. This includes documenting ranking criteria, strengthening transparency in commercial practices, structuring content moderation procedures, ensuring the reliability of online reviews, and regularly updating terms of use, privacy policies and mandatory disclosures.
This publication is intended to provide general guidance to the public and highlight certain issues. It is not intended to apply to specific situations or constitute legal advice.
Our site uses cookies to offer you the best service and to produce statistics, and measure the website's audience. You can change your preferences at any time by clicking on the "Customise my choices" section.
When browsing the Website, Internet users leave digital traces. This information is collected by a connection indicator called "cookie".
Dreyfus uses cookies for statistical analysis purposes to offer you the best experience on its Website.
In compliance with the applicable regulations and with your prior consent, Dreyfus may collect information relating to your terminal or the networks from which you access the Website.
The cookies associated with our Website are intended to store only information relating to your navigation on the Website. This information can be directly read or modified during your subsequent visits and searches on the Website.
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
Dreyfus is concerned about protecting your privacy and the Personal Data ("Data"; "Personal Data") it collects and processes for you.
Hence, Dreyfus complies every day with the European Union legislation regarding Data protection and particularly the European General Data Protection Regulation Number 2016/679 of 27 April 2016 (GDPR).
This Privacy Policy is aimed at informing you clearly and comprehensively about how Dreyfus, as Data Controller, collects and uses your Personal Data. In addition, the purpose of this Policy is to inform you about the means at your disposal to control this use and exercise your rights related to the said processing, collection and use of your Personal Data.
This Privacy Policy describes how Dreyfus collects and processes your Personal Data. The collection happens when you visit our Website, when you exchange with Dreyfus by e-mail or post, when exercising our Intellectual Property Attorney and representative roles, when we interact with our clients and fellow practitioners, or on any other occasion when you provide your Personal Data to Dreyfus, in particular when you register for our professional events.
Written by Nathalie Dreyfus21/02/2017 
The “.BRAND” Tld is a new gTLD that is becoming increasingly appealing. Companies are interested in this concept in order to own an extension of their own brand. This practice is an excellent marketing opportunity to present products of the brand.
