Domain Registrar Says New Court Directives May Threaten Online Privacy and Legitimate Businesses
GoDaddy, the world’s largest domain registrar, has warned that India’s efforts to crack down on fraudulent websites impersonating well-known brands could have unintended consequences for the global internet ecosystem.
The company argues that recent court directives designed to combat online fraud could weaken user privacy, increase compliance burdens, and discourage legitimate businesses from operating in India. GoDaddy and several other domain providers have challenged the measures, saying they could conflict with international privacy standards and reshape how domain registration works worldwide.
Why India Introduced the New Rules
The legal dispute stems from growing concerns over fake websites that imitate major brands to deceive consumers.
In December 2025, an Indian court issued directives aimed at making it easier to identify and act against operators of fraudulent websites. The case was brought by more than 20 global companies whose brands had allegedly been used in online scams and phishing operations.
Authorities believe greater transparency around domain ownership could help law enforcement respond more quickly to cybercrime.
What the Court Ordered
The court’s directives require domain registrars to make several significant changes to their operations.
Among the key requirements are:
- Ending free domain privacy protection by default.
- Providing domain registrant information within 72 hours to anyone demonstrating a “legitimate interest.”
- Restricting the registration of domain names that closely resemble established trademarks.
Supporters say these measures will make it harder for cybercriminals to hide behind anonymous domain registrations and impersonate trusted brands.
Domain Companies Raise Privacy Concerns
GoDaddy, along with other major registrars including Namecheap and Hosting Concepts, argues that the new rules could expose legitimate website owners to unnecessary privacy risks.
The companies say many individuals and small businesses rely on domain privacy services to protect personal information from harassment, spam, identity theft, and cyberattacks. They also contend that mandatory disclosure of registrant information may conflict with India’s own data protection framework as well as international privacy regulations such as the European Union’s General Data Protection Regulation (GDPR).
Industry Warns of Wider Internet Impact
According to GoDaddy, the implications extend beyond India’s borders.
The company argues that if countries begin adopting similar rules requiring broad disclosure of domain ownership information, global internet governance could become fragmented. Domain registrars may also face conflicting legal obligations across different jurisdictions, increasing operational complexity and compliance costs.
Some industry representatives have warned that companies could reconsider operating in certain markets if regulatory requirements become too burdensome.
Balancing Cybersecurity and Privacy
The case highlights an increasingly common challenge facing governments around the world.
Authorities are seeking stronger tools to combat phishing, online fraud, and digital identity theft, while technology companies emphasize the need to preserve user privacy and protect legitimate website owners.
Finding the right balance between effective law enforcement and digital privacy has become a central issue as cybercrime continues to grow globally.
Appeals Hearing Approaching
The challenged directives are expected to be reviewed by an Indian appeals court later this month.
The outcome could influence not only domain registration practices in India but also broader discussions about internet governance, cybersecurity regulation, and online privacy rights in other jurisdictions.
Technology companies, legal experts, and digital rights advocates are closely monitoring the proceedings.
Looking Ahead
GoDaddy’s challenge underscores the growing tension between efforts to combat online fraud and the need to protect privacy across the internet.
While India’s proposed measures are intended to make it easier to identify operators of fraudulent websites, critics argue they could create unintended risks for legitimate businesses and millions of domain owners.
As cyber threats continue evolving, governments and technology companies will likely face increasing pressure to develop regulations that strengthen online security without undermining privacy or the open nature of the internet.






