Decision for dispute CAC-UDRP-103218

The Panel is unaware of any pending or decided legal proceeding related to the disputed domain name.

The Complainant is the leading Italian banking group and also one of the protagonists in the European financial arena. Intesa Sanpaolo is the company resulting from the merger (effective as of January 1, 2007) between Banca Intesa S.p.A. and Sanpaolo IMI S.p.A., two of the top Italian banking groups.

Intesa Sanpaolo is among the top banking groups in the euro zone, with a market capitalisation exceeding 29,8 billion euro, and the undisputed leader in Italy, in all business areas (retail, corporate and wealth management). Thanks to a network of approximately 3,700 branches capillary and well distributed throughout the Country, with market shares of more than 15% in most Italian regions, the Group offers its services to approximately 11,8 million customers. Intesa Sanpaolo has a strong presence in Central-Eastern Europe with a network of approximately 1.000 branches and over 7,2 million customers. Moreover, the international network specialised in supporting corporate customers is present in 25 countries, in particular in the Mediterranean area and those areas where Italian companies are most active, such as the United States, Russia, China and India.

The Complainant is the owner, among others, of the following registrations for the trademarks “INTESA” and “INTESA SANPAOLO”.

- International trademark registration n. 793367 “INTESA”, granted on September 04, 2002 and duly renewed, in class 36;
- International trademark registration n. 920896 “INTESA SANPAOLO”, granted on March 07, 2007 and duly renewed, in classes 9, 16, 35, 36, 41, 42;
- EU trademark registration n. 12247979 “INTESA”, applied on October 23, 2013 and granted on March 05, 2014, in classes 9, 16, 35, 36, 38, 41 and 42;
- EU trademark registration n. 5301999 “INTESA SANPAOLO”, applied on September 08, 2006, granted on June 18, 2007 and duly renewed, in classes 35, 36 and 38.

Moreover, the Complainant is also the owner, among the others, of the following domain names bearing the signs “INTESA SANPAOLO” and “INTESA”: INTESASANPAOLO.COM, .ORG, .EU, .INFO, .NET, .BIZ, INTESA-SANPAOLO.COM, .ORG, .EU, .INFO, .NET, .BIZ and INTESA.COM, INTESA.INFO, INTESA.BIZ, INTESA.ORG, INTESA.US, INTESA.EU, INTESA.CN, INTESA.IN, INTESA.CO.UK, INTESA.TEL, INTESA.NAME, INTESA.XXX, INTESA.ME. All of them are now connected to the official website http://www.intesasanpaolo.com.

FACTS ASSERTED BY THE COMPLAINANT AND NOT CONTESTED BY THE RESPONDENT:

THE DOMAIN NAME IS IDENTICAL OR CONFUSINGLY SIMILAR TO A TRADEMARK OR SERVICE MARK IN WHICH THE COMPLAINANT HAS RIGHTS

The Complainant is the leading Italian banking group and also one of the protagonists in the European financial arena. Intesa Sanpaolo is the company resulting from the merger (effective as of January 1, 2007) between Banca Intesa S.p.A. and Sanpaolo IMI S.p.A., two of the top Italian banking groups.

Intesa Sanpaolo is among the top banking groups in the euro zone, with a market capitalisation exceeding 29,8 billion euro, and the undisputed leader in Italy, in all business areas (retail, corporate and wealth management). Thanks to a network of approximately 3,700 branches capillary and well distributed throughout the Country, with market shares of more than 15% in most Italian regions, the Group offers its services to approximately 11,8 million customers. Intesa Sanpaolo has a strong presence in Central-Eastern Europe with a network of approximately 1.000 branches and over 7,2 million customers. Moreover, the international network specialised in supporting corporate customers is present in 25 countries, in particular in the Mediterranean area and those areas where Italian companies are most active, such as the United States, Russia, China and India.

The Complainant is the owner, among others, of the following registrations for the trademarks “INTESA” and “INTESA SANPAOLO”:

- International trademark registration n. 793367 “INTESA”, granted on September 04, 2002 and duly renewed, in class 36;
- International trademark registration n. 920896 “INTESA SANPAOLO”, granted on March 07, 2007 and duly renewed, in classes 9, 16, 35, 36, 41, 42;
- EU trademark registration n. 12247979 “INTESA”, applied on October 23, 2013 and granted on March 05, 2014, in classes 9, 16, 35, 36, 38, 41 and 42;
- EU trademark registration n. 5301999 “INTESA SANPAOLO”, applied on September 08, 2006, granted on June 18, 2007 and duly renewed, in classes 35, 36 and 38.

Moreover, the Complainant is also the owner, among the others, of the following domain names bearing the signs “INTESA SANPAOLO” and “INTESA”: INTESASANPAOLO.COM, .ORG, .EU, .INFO, .NET, .BIZ, INTESA-SANPAOLO.COM, .ORG, .EU, .INFO, .NET, .BIZ and INTESA.COM, INTESA.INFO, INTESA.BIZ, INTESA.ORG, INTESA.US, INTESA.EU, INTESA.CN, INTESA.IN, INTESA.CO.UK, INTESA.TEL, INTESA.NAME, INTESA.XXX, INTESA.ME. All of them are now connected to the official website http://www.intesasanpaolo.com.



On February 28, 2020, the Respondent registered the domain name INTESA-SANPAOLO-SICUREZZA-OKEY.COM.

It is more than obvious that the domain name at issue is identical, or – at least – confusingly similar, to the Complainant’s trademarks “INTESA SANPAOLO” and “INTESA”. As a matter of fact, INTESA-SANPAOLO-SICUREZZA-OKEY.COM exactly reproduces my Client’s well-known trademark “INTESA SANPAOLO”, with the mere addition of the Italian term “SICUREZZA” (meaning “security”) and of the term “OKEY”.


THE RESPONDENT HAS NO RIGHTS OR LEGITIMATE INTERESTS IN RESPECT OF THE DISPUTED DOMAIN NAME

The Respondent has no rights on the disputed domain name, and any use of the trademarks “INTESA SANPAOLO” and “INTESA” has to be authorized by the Complainant. Nobody has been authorized or licensed by the above-mentioned banking group to use the domain name at issue.

The disputed domain name does not correspond to the name of the Respondent and, to the best of our knowledge, the Respondent is not commonly known as “INTESA-SANPAOLO-SICUREZZA-OKEY”.

Lastly, we do not find any fair or non-commercial uses of the domain name at stake (see the disputed domain name’s home - page).


THE DISPUTED DOMAIN NAME WAS REGISTERED AND IS USED IN BAD FAITH
The domain name INTESA-SANPAOLO-SICUREZZA-OKEY.COM was registered and is used in bad faith.

The Complainant’s trademarks “INTESA” and “INTESA SANPAOLO” are distinctive and well known all around the world. The fact that the Respondent has registered a domain name that is confusingly similar to them indicates that the Respondent had knowledge of the Complainant’s trademark at the time of registration of the disputed domain name. In addition, if the Respondent had carried even a basic Google search in respect of the wordings “INTESA” and “INTESA SANPAOLO”, the same would have yielded obvious references to the Complainant. The Complainant submits an extract of a Google search in support of its allegation. This raises a clear inference of knowledge of the Complainant’s trademark on the part of the Respondent. Therefore, it is more than likely that the domain name at issue would not have been registered if it were not for Complainant’s trademark. This is a clear evidence of registration of the domain name in bad faith.

In addition, the disputed domain name is not used for any bona fide offerings. More particularly, there are present circumstances indicating that the Respondent has registered or acquired the domain name primarily for the purpose of selling, renting, or otherwise transferring the domain name registration to the Complainant who is the owner of the trademark or service mark or to a competitor of Complainant, for valuable consideration in excess of the Respondent’s documented out-of-pocket costs directly related to the domain name (par. 4(b)(i) of the Policy).

The disputed domain name is not used for any bona fide offerings, even if it is not connected to any web site, by now. In fact, countless UDRP decisions confirmed that the passive holding of a domain name with knowledge that the domain name infringes another party’s trademark rights is evidence of bad faith registration and use (Telstra Corporation Limited v. Nuclear Marshmallows, WIPO Case No. D2000-0003, and also the panels’ consensus view on this point, as reflected in the “WIPO Overview of WIPO Views on Selected UDRP Questions” at paragraph 3.2.).

In particular, the consensus view of WIPO UDRP panellists is that passive holding of a disputed domain name may, in appropriate circumstances, be consistent with a finding of bad faith. However, panels have tended to make such findings in circumstances in which, for example, a complainant’s mark is well-known, and there is no conceivable use that could be made of the domain name that would not amount to an infringement of the complainant’s trade mark rights.

As regards to the first aspect, the Complainant has already extensively proved the renowned of its trademarks. For what concern the second circumstance, it must be underlined that it is objectively not possible to understand what kind of use the Respondent could make with a domain name which does exactly correspond to the Complainant’s trademarks and that results so similar to the Complainant’s domain names currently used by the latter to provide online banking services for enterprises.

In the light of the above, the present case completely matches to the above requirements and the passive holding of the contested domain name has to be considered a use in bad faith: «The very act of having acquired [the domain name] raises the probability of Respondent using [it] in a manner that is contrary to Complainant’s legal rights and legitimate interests. [...] To argue that Complainant should have to wait for some future use of the disputed domain names to occur in order to demonstrate Respondent’s bad faith use is to render intellectual property law into an instrument of abuse by the Respondent. The result would be the likelihood of the accumulation and use of disputed domain names for the implicit, if not explicit, purpose of misappropriating or otherwise unlawfully undermining Complainant’s goodwill and business. The fact that this misappropriation may occur in any as yet undetermined manner at an uncertain future date does not negate Respondent’s bad faith. On the contrary, it raises the specter of continuing bad faith abuse by Respondent of Complainant’s Mark, name and related rights and legitimate business interests» (Decision No. D2004-0615, Comerica Inc. v. Horoshiy, Inc., concerning just the case of a bank).

The risk of a wrongful use of the domain name at issue is even higher in the present case, since the Complainant has already been targeted by some cases of phishing in the past few years. Such a practice consists of attracting the customers of a bank to a web page which imitates the real page of the bank, with a view to having customers disclose confidential information like a credit card or bank account number, for the purpose of unlawfully charging such bank accounts or withdrawing money out of them. It happened that some clients of the Complainant have received e-mail messages asking, by the means of web pages which were very similar to the Complainant’s ones, the sensitive data of the Clients, like user ID, password etc. Then, some of the Clients have been cheated of their savings.

Even excluding any “phishing” purposes or other illicit use of the domain name in the present case, anyway we could find no other possible legitimate use of INTESA-SANPAOLO-SICUREZZA-OKEY.COM. The sole further aim of the owner of the domain name under consideration might be to resell it to the Complainant, which represents, in any case, an evidence of the registration and use in bad faith, according to par. 4(b)(i) («circumstances indicating that you have registered or you have acquired the domain name primarily for the purpose of selling, renting, or otherwise transferring the domain name registration to the complainant who is the owner of the trademark or service mark or to a competitor of that complainant, for valuable consideration in excess of your documented out-of-pocket costs directly related to the domain name»).

Lastly, it shall be noted that on March 20, 2020 the Complainant’s attorneys sent to the Respondent a cease and desist letter, asking for the voluntary transfer of the domain names at issue. Despite such communication, the Respondent did not comply with the above request.

In the light of the above, the third and final element necessary for finding that the Respondent has engaged in abusive domain name registration and use has been established.

NO ADMINISTRATIVELY COMPLIANT RESPONSE HAS BEEN FILED.

The Complainant has, to the satisfaction of the Panel, shown the disputed domain name is identical or confusingly similar to a trademark or service mark in which the Complainant has rights (within the meaning of paragraph 4(a)(i) of the Policy).

The Complainant has, to the satisfaction of the Panel, shown the Respondent to have no rights or legitimate interests in respect of the disputed domain name (within the meaning of paragraph 4(a)(ii) of the Policy).

The Complainant has, to the satisfaction of the Panel, shown the disputed domain name has been registered and is being used in bad faith (within the meaning of paragraph 4(a)(iii) of the Policy).

The Panel is satisfied that all procedural requirements under UDRP were met and there is no other reason why it would be inappropriate to provide a decision.

1. Identical or confusingly similar
The Complainant contended that the disputed domain names < INTESA-SANPAOLO-SICUREZZA-OKEY.COM> is confusingly similar to its registered trademark "INTESA SANPAOLO". The Complainant also stated that in addition to reproducing the Complainant’s well known marks “INTESA SANPAOLO”, addition of expressions such as “SICUREZZA-OKEY” meaning "security-okay" in English, does not negate such confusing similarity.

The Complainant’s registered mark “INTESA SANPAOLO” is a name formed by the merger of two prominent Italian banks “Banca Intesa” and “Sanpaolo IMI”; both are recognized names in European banking industries. The Complainant owns several trademarks comprising the terms “INTESA” and “INTESA SANPAOLO”, such as the international trademark n° 920896 “INTESA SANPAOLO” and n° 793367 “INTESA”. Moreover, the Complainant is also the owner of numerous domain names bearing the signs “INTESA SANPAOLO” and “INTESA”.

The disputed domain name fully incorporate the Complainant’s trademark. The addition of Italian and/or foreign expressions meaning “security”, and “okey”, are terms with slight neutral to negative connotations. As indicated by the Complainant and suggested by many UDRP decisions, slight differences between domain names and registered marks such as the addition of a descriptive term in connection with the mark, should NOT adequately distinguish the domain name from the incorporated mark. In this case, the added terms are not sufficient to escape the finding that the disputed domain name is identical to the Complainant's trademark and does not change the overall impression of the designations as being connected to its trademark.

The Panel therefore concludes that the disputed domain name is confusingly similar to a trademark in which the Complainant has rights within the meaning of paragraph 4(a)(i) of the Policy.

2. No rights or legitimate interests

Although the Respondent did not file an administratively compliant (or any) response, the Complainant is still required to make out a prima facie case that the Respondent lacks rights or legitimate interests. Once such prima facie case is made, the Respondent carries the burden of demonstrating rights or legitimate interests in the domain name. If the Respondent fails to do so, the Complainant is deemed to have satisfied paragraph 4(a)(ii) of the Policy.

The Complainant has offered three arguments to support its contention that the Respondent has no rights or legitimate interests in respect of the disputed domain name. Firstly, the Respondent is not known as the disputed domain name; secondly, neither license or authorization has been granted to the Respondent; thirdly, current websites did not indicate any sign of non-commercial or fair use.

According to the information of the Respondent as provided by the Registrar, the name of the Respondent’s organization is protected by privacy shield WHOISGUARD Inc. Therefore, there is no evidence suggests that the Respondent is in anyway associated with the name “INTESA” or “INTESA SAUPAOLO”. The Complainant also contended that it does not carry out any activity for, nor has any business with the Respondent. It has never licensed nor authorized the Respondent to make any use of the Complainant’s trademark INTESA SAOPAOLO. Based on established reputation of the Complainant's brand and the less common use of its name in general context, it is more than likely that the Respondent registered the disputed domain name with the knowledge of the Complainant's brand/associated trademarks.

On the basis of preponderance of evidence, and in the absence of any evidence to the contrary or any administratively compliant response being put forward by the Respondent, the Panel finds that the Respondent does not have rights or legitimate interests in the disputed domain name within the meaning of paragraph 4(a)(ii) of the Policy.

3. Bad faith
By trying to establish the bad faith element of paragraph 4(a) of the Policy, the Complainant has primarily attempted to rely on paragraph 4(b)(i) and 4(b)(iv) of the Policy.

There are a couple of instances cited by the Complainant that can be used to prove that the domain name is registered and used in bad faith.

As far as registration goes, UDRP Panels have consistently held that the mere registration of a domain name that is confusingly similar to a famous or widely-known trademark by an unaffiliated entity can by itself create a presumption of bad faith. The Complainant’s trademarks “INTESA” and “INTESA SANPAOLO” are distinctive and well known all around the world. The fact that the Respondent has registered a domain name that is confusingly similar to them indicates that the Respondent had knowledge of the Complainant’s trademark at the time of registration of the disputed domain name. The Complainant’s trademark “INTESA SAOPAOLO” is not a common word and a simple Google search reveals all results and references related to the Complainant’s brand. Therefore, it is reasonable to conclude that the registrant registered the disputed domain name with the knowledge of the Complainant’s trademark and/or brand influence.

The disputed domain name is not used for any bona fide offerings. As far as usage of the domain name, the domain name has been passively held. It has been a well-known consensus as held by UDRP panels, that the non-use of a domain name (including a blank or “coming soon” page) would not prevent a finding of bad faith under the doctrine of passive holding (WIPO Overview §3.3). In “passive holding” scenarios, where the panellist is allowed to examine a totality of circumstances including the degree of distinctiveness or reputation of the complainant’s mark, the failure of the respondent to submit a response or to provide any evidence of actual or contemplated good-faith use, the respondent’s concealing its identity or use of false contact details, and so on (WIPO Overview 3.0 §3.1.4). Here the disputed domain name is not used for any bona fide offerings.

It shall be noted that on March 20, 2020 the Complainant’s attorneys sent to the Respondent a cease and desist letter, asking for the voluntary transfer of the domain names at issue. Despite such communication, the Respondent did not comply with the above request.

The Panel is not persuaded by the Complainant’s additional arguments that “there are present circumstances indicating that the Respondent has registered or acquired the domain name primarily for the purpose of selling, renting, or otherwise transferring the domain name registration to the Complainant who is the owner of the trademark or service mark or to a competitor of Complainant, for valuable consideration in excess of the Respondent’s documented out-of-pocket costs directly related to the domain name (par. 4(b)(i) of the Policy)” or that the disputed domain name gives rise to a higher risk of phishing, but feels no need of deciding on merits of these arguments given above circumstances.

In view of the above, in the absence of any evidence to the contrary (or any administratively compliant response) being put forward by the Respondent, the Panel determines that the disputed domain name was registered and is being used in bad faith within the meaning of paragraph 4(a)(iii) of the Policy.