Originally published at https://monstadomains.com/blog/icann-transfer-policy/
How long should a registrar be able to trap your domain after you fix a single detail in your contact record? For years the answer was sixty days. That just changed. On 7 June 2026 the ICANN Board adopted a sweeping rewrite of the ICANN transfer policy, gutting one of the most hated anti-fraud rules on the internet and reshaping how every domain moves between registrars. If you own a domain, this is the most consequential governance decision of the year, and it barely touched the mainstream news.
The vote followed more than a year of wrangling inside ICANN’s Generic Names Supporting Organization. The headline is simple. The old sixty day lock triggered by a change of registrant is gone, the Change of Registrant process itself is being scrapped, and a shorter, more predictable lock takes its place. For anyone who has watched a domain freeze solid at the worst possible moment, the new ICANN transfer policy is a rare piece of good news from a body better known for red tape than for handing power back to owners.
ICANN Votes to Rewrite the Domain Transfer Rules
The decision landed on 7 June 2026, when the ICANN Board of Directors formally adopted the recommendations of the Transfer Policy Review working group. That group spent well over a year picking apart rules that predate most of today’s registrars. As reported by Domain Incite, the reform kills the sixty day transfer lock that registrars have long imposed after even trivial contact changes. The revised ICANN transfer policy sits at the centre of the overhaul.
This is not a quiet tweak. ICANN writes the rulebook that every accredited registrar must follow, so a change at this level ripples out to hundreds of millions of registered domains. ICANN Org will now convene an Implementation Review Team to turn the recommendations into binding consensus policy language. Registrars are expected to phase the changes in over roughly eighteen months, which means the new regime will not flip on overnight, but the direction of the ICANN transfer policy is now locked in.
What the New ICANN Transfer Policy Actually Does
Strip away the acronyms and the new ICANN transfer policy does three concrete things. It replaces the open ended sixty day lock with a fixed thirty day lock, it lets you lift that lock early on request, and it deletes the entire Change of Registrant workflow that caused so many accidental freezes. Each one shifts leverage back toward the person who actually owns the name rather than the company that happens to hold it.
The New 720 Hour Rule
Under the reform, a domain is locked for 720 hours, exactly thirty days, after it is first registered or transferred between registrars. ICANN’s published transfer policy spells out the 720 hour figure precisely, so registrars cannot quietly stretch it into something longer. Crucially, editing your name, organization or email no longer starts a fresh lock. The trigger is now the registration or transfer event itself, not a change to your contact details.
Early Removal On Request
The old system offered no escape hatch at all. The new ICANN transfer policy does. A registrant can ask their registrar to lift the 720 hour restriction early, provided the request carries a reasonable basis, such as a documented acquisition of the domain. That single clause hands control back to the owner instead of leaving it entirely with whichever registrar happens to hold the name at the time.
The 60 Day Lock Is Finally Dead
To understand why this matters, remember what the sixty day lock actually did. Whenever you bought a domain from someone else, or simply corrected a detail in your registrant record, the lock slammed shut. For sixty days you could not move that domain to a registrar you trusted more. The reform at the heart of the new ICANN transfer policy targets exactly this friction. The rule was sold as an anti-fraud measure, but in practice it punished honest owners far more often than it stopped thieves.
Privacy focused owners felt the pain most acutely. Updating a name to a pseudonym, swapping in a forwarding address, or moving a freshly acquired domain to a registrar with stronger privacy protections all tripped the same trap. The ICANN transfer policy overhaul removes that penalty. You can tidy your records or claim a new name without surrendering the freedom to walk away whenever a registrar stops earning your trust.
Scrapping the Change of Registrant Process
The Change of Registrant process arrived in 2016 with good intentions. It required confirmation emails to both the old and new registrant whenever key contact fields changed, and it imposed that sixty day lock as a backstop. Nearly a decade later, stakeholders across the industry agreed it created more problems than it solved, which is why the new ICANN transfer policy removes it outright rather than merely trimming its edges.
The working group described the process as burdensome, and registrars large and small backed its removal. Tucows, one of the biggest registrars in the world, publicly committed to joining the Implementation Review Team that will finalise the language. When the companies who profit from lock-in vote to loosen the rules, you know the old system was broken beyond repair.
What the ICANN Transfer Policy Means for Private Owners
For readers who care about anonymity, the practical upside is real. Domain mobility is a privacy tool, not just a convenience. The ability to move a name quickly to a registrar that accepts crypto, asks no questions, and shields your data is exactly the kind of freedom the old lock quietly eroded. The new ICANN transfer policy widens that door and makes the exit faster.
A Win For Domain Mobility
If a registrar starts demanding identity documents, cooperating with overreaching disclosure requests, or leaking your details into public WHOIS, you want to leave immediately. The reform shortens the window in which you are trapped and, for contact edits, removes it entirely. That is leverage. A registrar that knows you can walk has far less power to coerce you into compliance. Planning a private domain transfer stays the smart move, but the rules now tilt further in your favour.
The Wider Registration Data Fight
The transfer vote did not happen in isolation. At the same ICANN86 meeting in Seville, the community was still fighting over who gets access to your registration data. A parallel team is reworking the rules for disclosing non-public WHOIS information, including urgent requests for data on domains that sit behind privacy or proxy services. That work could quietly undo some of the ground the transfer reform just won.
This is the tension worth watching. One hand loosens the transfer rules while the other builds machinery to standardise data disclosure. The Electronic Frontier Foundation has long warned that WHOIS databases are a surveillance goldmine, and the disclosure work shows the fight is far from settled. A friendlier ICANN transfer policy is welcome, but it does not answer the deeper question of who can pull your records and under what excuse.
There is a related thread too. ICANN has grown more willing to discipline registrars that ignore abuse, recently issuing breach notices to operators accused of shielding malware distributors. We unpacked that shift in our look at DNS abuse enforcement. Read together, these moves sketch a regulator tightening compliance while easing the mechanics of ownership, a balance that privacy minded owners should keep watching closely.
What Domain Owners Should Do Now
Do not expect your registrar to flip these rules on tomorrow. The eighteen month rollout means the old sixty day lock may still bite for a while, so check your registrar’s current transfer terms before you make any contact changes. Once the new ICANN transfer policy reaches your provider, updating your details will no longer cost you a two month lockout, but until then the legacy behaviour still applies.
If your domain sits with a registrar you no longer trust, plan your exit now rather than later. Confirm the domain is unlocked, retrieve your transfer authorization code, and move to a provider that treats privacy as the default rather than an upsell. The new ICANN transfer policy makes that move cleaner than it has ever been. That default is the entire premise behind MonstaDomains, where you can transfer your domain without handing over identity documents or a traceable card number.
The Takeaway
The rewrite of the ICANN transfer policy is a genuine win for anyone who values control over their own domains. Three things matter most. The hated sixty day lock is gone, the Change of Registrant process is being scrapped, and you can lift the shorter thirty day lock early on request. Together they make it far easier to leave a registrar that stops respecting your privacy, and the new ICANN transfer policy hands you that escape route.
The rollout will take time, so the practical lesson is to know your exit before you need it. When you are ready to make privacy the default, MonstaDomains keeps your records shielded with WHOIS privacy protection switched on from the moment you register.

Top comments (0)