Chose your color

Frequently visited

Frequently asked questions

  • I am looking for a domain name registrant. Where can I look it up?

    The Whois is an easy-to-use tool for checking the availability of a .nl domain name. If the domain name is already taken, you can see who has registered it.

    On the page looking up a domain name you will find more information about what a domain name is, how the Whois works and how the privacy of personal data is protected. Alternatively, you can go straight to look for a domain name via the Whois.

  • I would like to transfer my domain name to another registrar. What is the procedure?

    To get your domain name transferred, you need the token (unique ID number) for your domain name. Your existing registrar has the token and is obliged to give it to you within five days, if you ask for it. The procedure for changing your registrar is described on the page transferring your domain name.

  • The details registered about me/my company are incorrect or out of date. How can I get them updated?

    To update the contact details associated with your domain name, you need to contact your registrar. Read more about updating contact details.

  • Why is my domain name in quarantine?

    When a domain name is cancelled, we aren't told the reason, so we can't tell you. You'll need to ask your registrar. The advantage of quarantine is that, if a name's cancelled by mistake, you can always get it back.

    One common reason is that the contract between you and your registrar says you've got to renew the registration every year. If you haven't set up automatic renewal and you don't renew manually, the registration will expire.

  • Ik heb een klacht over mijn provider/registrar. Kan ik daarvoor bij SIDN terecht?

    Wanneer je een klacht hebt over of een geschil met je registrar dan zijn er verschillende mogelijkheden om tot een oplossing te komen. Hierover lees je meer op pagina klacht over registrar. SIDN heeft geen formele klachtenprocedure voor het behandelen van een klacht over jouw registrar.

  • What conditions do I have to meet as a registrar?

    Would you like to be able to register domain names for customers or for your own organisation by dealing directly with SIDN? If so, you can become a .nl registrar. Read more about the conditions and how to apply for registrar status on the page becoming a registrar.

More frequently asked questions

A legal perspective on cybersecurity

Axel Arnbak speaks to the Dutch Cloud Community

Concept of attack on computer
  • Monday 20 March 2023

Last month, star lawyer Axel Arnbak of De Brauw Blackstone Westbroek, who is also a columnist for the Netherlands' leading financial daily, made a presentation to the Dutch Cloud Community at our invitation. He described what the world of cybercrime looks like from a legal perspective. The title of his presentation was "Why you call a lawyer if you're Own3d by Putin". Axel's legal take on cybersecurity was well received by his audience.

We invited Axel because legal expertise on cybersecurity and cyber-incidents is in great demand from the tech-oriented Dutch Cloud Community. Research by Eurostat has shown that an increasing proportion of EU businesses are affected by cybercrime (22 per cent in 2022). Meanwhile, the European Parliament recently passed the Network Information Security Directive II (NIS2), introducing a raft of new cybersecurity provisions. Axel specialises in bridge-building between the technical world of cybersecurity and the parallel legal world.

Axel Arnbak presents at a meeting of the Dutch Cloud Community

Figure 1: Axel Arnbak presents at a meeting of the Dutch Cloud Community.

Case numbers are rising

More and more of the cases that land on Axel's desk involve data breaches and security incidents. Poor security on the Internet of Things has been a particularly significant catalyst for incidents in recent years. "Neither the general public nor businesses and other organisations realise that webcams, media players and production machines are like portals that crooks and snoopers can use to get into their homes and premises," says Axel. "Often, what intruders want is your bandwidth: they use your insecure IoT device and millions of other devices like it to force their way through other organisations' defences. Unfortunately, the law doesn't really oblige device manufacturers to make their products secure. Things have to improve!"

Attacks usually begin with phishing

Ransomware is a growing problem as well. In many cases, the way the ransomware gets through an organisation's security is by phishing. Any kind of attack you can think of usually begins with phishing. If you want to protect yourself, it's vital to limit the impact of successful phishing attacks, because it's impossible to prevent an attack ever succeeding. "Paradoxically," says Axel, "the key to defending against phishing isn't to increase awareness. You can get 99 per cent of your people to understand that they mustn't click on a dodgy LinkedIn invitation, but if just one of them does fall for the trick, all your good work is undone. It therefore makes more sense to compartmentalise your IT environment. Of course, you still need to do what you can to keep the bad guys out. But the priority should be on building internal moats, so that raiders can only plunder one little island within your organisation. In every truly crippling cyber-attack I've come across, the fundamental problem has been the absence of internal digital moats. Often, you've got to raise the subject with your IT vendors.

A further complication is that many organisations don't fully appreciate the extent of the legal impact an incident can have. Insurance claims have to be made, third-party damage claims need to be averted, and everything needs to be cleared with the regulator. Every step of the resolution process has to be taken carefully and fully documented. For many members of the audience, including some who had often dealt with security incidents, Axel's presentation was therefore quite an eye-opener.

Axel: "I hope that our technical heroes recognise that cybersecurity has become a multidisciplinary matter. The legal dimension doesn't begin and end with your reporting obligations. You've also got to consider disputes with customers and suppliers, regulators, shareholders, insurers and law enforcement agencies. Lawyers can't do without technical experts, but unfortunately the reverse is also true. And I say that as a nerd. The world I grew up in, where the internet was a playground, no longer exists, I'm afraid."

About Axel Arnbak

Axel Arnbak is a partner at the law firm De Brauw Blackstone Westbroek, columnist at Financieele Dagblad and fellow of the University of Amsterdam's Institute for Information Law (IViR). In 2021, he was one of the '40 under 40′ privacy professionals named by the Global Data Review, and one of Legal500's Rising Stars. His website is https://axelarnbak.nl.

Axel's presentation slides are available to view online.