Most experienced domain investors lose at least one UDRP case in their career. Most of those losses are avoidable. Here’s the discipline that keeps you out of the cases you shouldn’t lose.
The three things UDRP plaintiffs have to prove
Under ICANN’s Uniform Domain-Name Dispute-Resolution Policy:
- Identical or confusingly similar to the complainant’s trademark.
- No legitimate interest by the respondent (that’s you).
- Registered AND used in bad faith.
All three. A domain that matches a trademark but was registered years before the trademark existed isn’t bad faith. A trademark match where you have a legitimate use (your own product, fan site, criticism site) satisfies the second prong.
But: registering microsoft-cloud.com to sell to Microsoft, with no legitimate use, fails all three.
The pre-registration checklist
Before you register a name with any commercial value:
1. USPTO + EUIPO trademark search. Free, fast. Search for the domain’s text. If a registered trademark exists in a category that overlaps with how you’d use the domain, slow down.
2. WIPO Global Brand Database. Catches international trademarks the USPTO won’t show. Same drill.
3. Plain Google search. Forget databases — what comes up when someone Googles the name? If it’s an obvious existing brand (even an unregistered one), the UDRP panel will know that.
4. UDRP precedent. Search WIPO’s UDRP decisions database for the trademark. If it’s litigious (constantly filing UDRPs), you’re a probable next target.
Categories that are especially risky
Pharma + medical. Brand owners are aggressive UDRP filers. “Sounds-like” matches lose constantly.
Major tech. Microsoft, Apple, Google, Amazon, Meta all run dedicated brand-protection programs. Match anything close and expect a UDRP within months.
Banks + insurance. Regulators care + brand owners have lawyers.
Sports + entertainment IP. “Olympics”, “FIFA”, Disney characters — protected aggressively.
Categories that are usually safe
- Generic dictionary words. “Phone”, “Travel”, “Grow” — no one trademark holder can claim them.
- Common surnames + first names. Generally safe unless you’re using them in a way that targets a specific trademark holder.
- Geographic terms. City names, country names, region names.
- Made-up words with no obvious trademark match. “Strapi”, “Notion”, “Vercel” were all safe at registration before they became brands themselves.
How to defend a registration if challenged
If you get a UDRP complaint or a cease-and-desist:
1. Document your prior use. When did you register? What did you do with the domain? Wayback Machine snapshots, sale-listing dates, any plausible business plan.
2. Show the trademark didn’t exist (or wasn’t well-known) when you registered. Trademark filing dates are public. If you registered in 2010 and the trademark was filed in 2018, that’s a strong defense.
3. Show legitimate non-competing use. A fan site, a fictional product, a parody — any of these can satisfy the legitimate-interest prong.
4. Consider settling. If you have no real use for the domain and you’ll lose UDRP anyway, sometimes a polite transfer for cost is faster + cheaper than fighting. UDRP defense costs are rarely zero.
Reverse domain hijacking — when you can fight back
Sometimes trademark holders file UDRP complaints knowing their case has no merit, hoping the registrant will give up. The panel can declare reverse domain hijacking (RDNH) in the decision text — putting the complainant on record as having abused the process.
RDNH findings hurt the complainant’s reputation and can be cited in future disputes. If you’re confident your registration is legitimate, fight.