On 22 Jun 2016, at 15:07, Gordon Lennox wrote:
My own thing was when I looked at registering a domain name under dotSE. As an individual you have to give them a copy of your government-issued "personal identification number”. But if you are not Swedish then any old government-related number would appear to do. Does not matter which government. Does not matter if it a personal identity number. Does not matter if they can check it or not - probably they cannot. I have no idea why they need this. But somehow they really-really need a little number for that field.
And in Denmark the registry requite mandatory validation of that ID-thing -- but only if you use the Danish ID, not otherwise. Go figure. In Sweden we managed to kill those ideas at least. In a more sensitive environment (I think) it would be a responsibility for the registrar to know who the customer (and domain holder / user) actually is, but nope. That is not how the registrar agreements are written. The current situation makes it impossible for a registrar to say "I know this person". The difference between what one have to do and how to implement it is not very easy to understand sometimes. paf