1.   The Registry shall contribute to enhancing the Union identity and promoting the Union values online. In particular, the Registry, through its policies and its interactions with registrars, registrants and other stakeholders, shall promote openness, innovation, multilingualism and accessibility, freedom of expression and information, respect for human rights and the rule of law and shall take measures to promote users’ security online and to respect users’ privacy.

2.   The Registry shall actively promote the use of all the official languages of the Union.

1.   The Registry shall raise awareness and promote the use of the .eu TLD across the Union, with a view to supporting the digital single market, building an online European identity and encouraging cross-border online activities.

2.   To promote the use of the .eu TLD in specific underserved geographical areas in the Union or towards specific categories of registrants, the Registry shall, upon request by the Commission, act as a registrar by providing domain name registration services directly to registrants. This activity shall be limited to those geographical areas and categories of registrants identified by the Commission.

3.   The Registry shall promote the use of the .eu TLD in all its available variants and in all European languages.

1.   The Registry shall ensure good governance of the .eu TLD. The Registry’s internal governance structure shall ensure broad stakeholder representation, efficiency, effectiveness, accountability, transparency and responsiveness.

2.   To correct or improve the organisation, administration and management of the .eu TLD, the Registry shall seek advice, cooperate and implement specific instructions from the Commission concerning the .eu TLD and take into account opinions of the Multi-stakeholder Advisory Group when requested by the Commission.

1.   The Registry shall manage the .eu TLD in the public interest, with a view to enhancing public trust in the online environment.

2.   The Registry shall pursue operational excellence and ensure a high quality of service at competitive prices.

3.   The Registry shall implement procedures to ensure that the management and administration of the .eu TLD complies with the principles of transparency, security, stability, predictability, reliability, accessibility, efficiency, non-discrimination and that it ensures fair conditions of competition and consumer protection, in accordance with Union law.

4.   The Registry shall adopt procedures to ensure that it provides the registrars with services and information under the same conditions and with the same quality as it uses for its own equivalent services, in particular, when it acts as a registrar in accordance with Article 3(2).

5.   The Registry shall manage the .eu TLD in accordance with the principles of sound financial management. The Registry shall provide evidence of compliance with those principles at the request of the Commission, in particular for its allocation of financial and human resources in implementing the contract. The Registry shall submit themselves to an external audit at least every two years.

6.   The Registry shall offer its services in all the official languages of the Union.

1.   The Registry shall ensure a high level of security for the network and information systems that it operates when managing the .eu TLD. In doing so, it shall put in place specific policies and comply with state-of-the-art cybersecurity risk management practices.

2.   The Registry shall adopt a business continuity and recovery plan with prior written agreement of the Commission. The Registry shall periodically revise the plan, with the prior written agreement of the Commission.

3.   The Registry shall:

1.   The Registry shall communicate in advance to the Commission the fees that it intends to impose for registering a .eu domain name and information about how they relate to the costs incurred. The fees shall be published by the Registry.

2.   At the end of each accounting year, the Registry shall transfer any recorded surplus that is not invested in enhancing the quality of its services or in order to promote the Union objectives in internet governance, to the Union budget.

3.   The Registry shall communicate to the Commission the amounts planned for investments that are expected to be deducted from the potential surplus amount to be transferred to the Union budget.

1.   The Registry shall promote the Union objectives in internet governance. In doing so, it shall cooperate with the Commission and take into account opinions issued by the .eu Multi-stakeholder Advisory Group when requested by the Commission.

2.   Upon the Commission’s request, the Registry shall set aside part of the surplus generated by the .eu TLD to promote Union objectives in internet governance.

3.   The Registry shall have a detailed plan in place to fund internet governance objectives. It shall adopt the plan with prior written agreement of the Commission.

1.   The Registry shall have policies and procedures in place to actively mitigate speculative and abusive domain names registrations in the .eu TLD in compliance with paragraphs (b), (c), (e) of Article 11 of Regulation (EU) 2019/517. In doing so, it shall cooperate with the European Union Intellectual Property Office and other Union agencies.

2.   The Registry shall take into consideration at least the intellectual property rights covered in Commission Statement 2005/295/EC (4), including copyright, trademarks, and geographical indications provided in Union or national law, and, in as far as they are protected under national law in the Member States where they are held: unregistered trademarks, trade names, business identifiers, company names, family names, and distinctive titles of protected literary and artistic works.

3.   To mitigate speculative and abusive domain names registrations, the Registry shall have in place policies and procedures ensuring the accuracy of registration data, in particular data identifying registrants. The Registry shall ensure that the registrars manage the registrations in line with the principles of security and accuracy of the data and in accordance with Union law.

4.   The Registry shall have in place policies and procedures for registration requests and for the verification of registration criteria and of registrants’ data, which shall ensure that any verification of the information takes place prior to the registration or subsequently, at the initiative of the Registry or as a result of a dispute related to the registration of the domain name in question.

1.   The Registry shall implement policies and procedures for the revocation of domain names at its own initiative as described in Article 4(3) of Regulation (EU) 2019/517 or using an appropriate extra-judicial or judicial procedure. In particular, the Registry shall revoke domain names that have been registered without rights or legitimate interests in the name, or that are used in bad faith.

2.   The procedure for the revocation of domain names shall include a notice to the domain name holder and shall afford the holder an opportunity to take appropriate measures.

1.   The Registry shall provide simple, accessible, efficient and uniform procedures to solve disputes pertaining to the registration of .eu domain names.

2.   The rules on alternative dispute resolution procedures adopted by the Registry shall comply with Directive 2013/11/EU of the European Parliament and the Council (5). They shall take into account international best practice in this area, including relevant World Intellectual Property Organization recommendations, and they shall comply with uniform procedural rules that are in line with those set out in ICANN’s uniform domain name dispute resolution policy.

3.   The Registry may select reputable alternative dispute resolution providers with appropriate expertise. The selection process shall be objective, transparent and non-discriminatory. The list of these providers shall be published by the Registry.

1.   The Registry shall have policies and procedures in place to ensure that the WHOIS database includes accurate and up to date information and to ensure that the publication and access to these data is in line with Union data protection rules.

2.   The deliberate submission of inaccurate information shall constitute grounds for considering the domain name registration to have been in breach of the terms of registration.

1.   The Registry shall cooperate with competent authorities involved in the fight against cybercrime. It shall also cooperate with competent authorities and public and private bodies involved in the fight against speculative and abusive registrations, in cybersecurity and information security, in consumer protection, and in the protection of fundamental rights. It shall provide access to data to competent authorities and public bodies in line with Union or national law that complies with Union law, including with orders by courts or competent authorities vested with relevant powers.

2.   The Registry shall establish procedures to facilitate the cooperation with competent authorities and public and private bodies.