PuffinDNS — DMCA & Abuse Policy

Last updated: 17 September 2025

Service operator: NIXR LTD (Company No. 15793423)
Registered office: 62 California Close, Colchester, UK
Abuse / rights contact:

1) Scope and role

PuffinDNS provides dynamic DNS and related services. We are not a hosting provider and do not control content on servers that your DNS records point to. We can disable, remove, or reassign DNS records/subdomains under our control; we cannot delete third-party content or clear caches held by recursive resolvers.

This page explains how to report:

  • security abuse (phishing, malware, botnets, C2, fraud)
  • illegal content concerns (e.g., CSAM)
  • copyright and trade mark infringements (including DMCA-format notices)

All reports must be lawful, accurate, and made in good faith.

2) Fast-track categories

Phishing, malware, botnets, C2, fraud

Email: with subject "URGENT ABUSE". Include:

  • full subdomain(s) and exact URL(s) involved
  • evidence (screenshots, network logs, payload hashes, VT links)
  • timestamps (UTC), IPs, user-agent if relevant
  • a short description of the harm and how you verified it
Child sexual abuse material (CSAM)

Do not send CSAM to us under any circumstances. Report to law enforcement and, in the UK, the Internet Watch Foundation (IWF). You may notify us of the subdomain/URL only so we can take DNS action and preserve logs for authorities.

Personal safety / credible threats

Provide the subdomain/URL, nature of threat, and any police reference. We may take precautionary DNS action and preserve logs.

3) Copyright and trade mark notices (UK + DMCA format accepted)

We accept rights notices under UK law and will also process DMCA-format notices as a matter of policy. For the fastest outcome, notify the hosting provider as well, because removal at source is usually required even if we disable DNS.

What to include (all items required)
  1. Your full name, role, and contact details.
  2. Identification of the work or mark claimed to be infringed (attach registration details where applicable).
  3. Exact location of the allegedly infringing material (full subdomain and URL; include copies of relevant DNS records if known).
  4. A statement of why you believe the use is unauthorised (e.g., no licence; counterfeit; passing off).
  5. The following declarations:
    • "I have a good-faith belief that the use of the material identified is not authorised by the rights holder, its agent, or the law."
    • "The information in this notice is accurate."
    • If you are using a DMCA format: "I declare under penalty of perjury that I am the owner or authorised to act on behalf of the owner of the exclusive right that is allegedly infringed."
  6. Your signature (typed is acceptable for email) and date.
  7. Evidence sufficient for a reasonable assessment (e.g., comparison, screenshots, purchase records).
Send to: (preferred) or post to our registered office (marked "Rights Notice").
Counter-notice (for users)

If you believe a notice is mistaken or you have permission/lawful basis, email from your account email with:

  • your full name and contact details;
  • the subdomain/record(s) at issue;
  • a concise explanation and any supporting evidence (licence, fair dealing, etc.);
  • a statement: "I have a good-faith belief that the material was removed or disabled as a result of mistake or misidentification."

We may restore DNS at our discretion after reviewing the dispute and any legal obligations.

4) What we may do

Depending on the issue and risk, we may:

  • suspend or remove specific DNS records or entire subdomains;
  • block future creation of similar records or names;
  • throttle or disable API tokens;
  • notify the account holder and share all or part of the notice (where lawful);
  • preserve related logs and data and share them with competent authorities;
  • refer complainants to the hosting/network provider when action at source is required.

We do not guarantee a particular outcome. DNS caches outside our control may continue to resolve for a time.

5) Repeat-infringer / repeat-abuse policy

Accounts responsible for three substantiated infringement or high-risk abuse findings within 12 months (or a single egregious incident) may be terminated and barred from re-registration. We may also reclaim or reassign affected subdomains.

6) Misuse of this process

Knowingly false or malicious reports, or reports that omit material facts, may lead to legal liability. We may decline or limit processing of automated, non-specific, or bad-faith submissions.

7) Data handling

We will keep copies of notices, counter-notices, related correspondence, and technical artefacts as part of our abuse and legal records. We may disclose them to the user, hosting providers, our advisers, and competent authorities, where lawful and necessary. See our Privacy Notice for details.

8) Contact

Primary:

Postal: NIXR LTD, 62 California Close, Colchester, UK

For criminal matters, contact your local law enforcement. For CSAM in the UK, report to the Internet Watch Foundation (IWF) and the police.

9) Relationship to our Terms

This policy supplements our Terms of Use. Where they conflict, the Terms of Use prevail. Actions we take under this policy are without prejudice to our other rights and remedies.