5 May, 2026

Calvin Klein Recovers Seven Infringing Domains Used in Impersonation Scheme

UDRP Cases

Calvin Klein Inc. and its Trademark Trust recovered seven ‘.store’ domains that paired the famous brand with retail keywords and geographic codes. The WIPO panel ordered the transfer after discovering the respondent used the name of a former Calvin Klein employee to register the domains, finding this tactic to be clear evidence of bad faith.

Case Snapshot

Case Number D2025-5461
Complainant Calvin Klein Inc.Calvin Klein Trademark Trust
Respondent Name Redactedsisa kamali, ck
Disputed Domain
calvinkleinbrands.storecalvinkleinclothings.storecalvinkleinhireus.storecalvinklein-in.storecalvin-kleinus.storecalvinklein-us.storecalvinkleinus.store
Threat Tactic Brand Plus Keyword
Decision Date 2026-02-27
Panelist Colin T. O’Brien
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-5461

Corporate Impersonation and Retail Infrastructure Risks

The registration of seven ‘.store’ domains using the CALVIN KLEIN mark presents a specific operational threat characterized by the targeted misuse of corporate identity. By utilizing the name of a former employee in the registration data, the respondent moved beyond common cybersquatting into the realm of corporate impersonation. This tactic creates an elevated risk for the brand owner, as the use of legitimate-appearing credentials can complicate registrar verification and potentially facilitate more advanced social engineering or phishing campaigns. The panel specifically noted that this likely identity theft supported a finding of bad faith, highlighting a vulnerability where former staff records are weaponized to establish malicious digital infrastructure.

The commercial risk is further magnified by the selection of the ‘.store’ top-level domain combined with geographic indicators such as ‘us’ and ‘in’ and keywords like ‘brands’ and ‘clothings’. These choices directly target consumer traffic seeking authorized retail channels in the United States and India. Although the domains were held passively at the time of the dispute, their existence creates immediate brand dilution and denies the trademark owner control over its primary intellectual property in key e-commerce extensions. Because internet users frequently rely on URL structures to verify authorized sources of merchandise, the unauthorized occupation of these specific strings poses a persistent threat of customer diversion and the erosion of consumer trust.

The use of nominally different registrants to manage these domains suggests a coordinated effort to evade detection and complicate enforcement actions. Consolidating seven domains into a single proceeding was required due to evidence of common control, illustrating a bulk registration strategy intended to saturate the digital marketplace. For a famous mark with a history dating back to 1968, the passive holding of such high-value assets constitutes a strategic blockade. This prevents the brand from expanding its legitimate digital footprint while maintaining a platform for potential counterfeit sales or further fraudulent activities had the domains not been recovered through the UDRP process.

Strategic Consolidation and Identity Evidence as Decisive Factors

The complainant’s success relied heavily on linking the registration data to a specific act of corporate impersonation. During the registrar verification process, it was revealed that the respondent registered the disputed domains using the name of a former Calvin Klein employee. This evidence of identity theft served as a primary factor in establishing bad faith, as it demonstrated the respondent had actual knowledge of the brand’s internal corporate history. By presenting this specific misuse of personnel data, the complainant moved beyond traditional trademark overlap arguments to prove a targeted and malicious intent to exploit the brand’s reputation through the use of high-relevance retail identifiers.

The legal strategy also effectively addressed the fragmentation of the threat by securing a consolidation of multiple nominally different registrants into a single proceeding. By demonstrating that the seven domains—which utilized geographic codes such as ‘us’ and ‘in’ alongside keywords like ‘brands’ and ‘clothings’—were under common control, the complainant highlighted a systematic pattern of bulk registration. The panel accepted that the passive holding of these domains, when combined with the fame of the CALVIN KLEIN mark and the lack of any legitimate offering of goods or services, satisfied the requirements for a bad faith finding. This approach ensured that the respondent could not evade a transfer order by hiding behind varied registrant aliases or privacy services.

Practical Recommendations

  • Cross-reference HR exit records with domain WHOIS data during brand protection audits. This case highlights how bad actors use the identities of former employees to register infringing domains, which provides strong evidence of bad faith and intent to impersonate.
  • Utilize UDRP consolidation strategies when dealing with multiple ‘nominally different’ registrants. Identifying common registration patterns, such as identical TLDs (.store) and naming conventions (brand + geographic codes), allows brand owners to recover multiple assets in a single, cost-effective proceeding.
  • Monitor for ‘brand + keyword + geographic’ combinations across retail-centric gTLDs. The registration of domains like ‘calvinklein-us.store’ indicates a high risk of localized traffic diversion, justifying immediate enforcement even before the sites become active.
  • Take proactive action against ‘passively held’ domains involving famous trademarks. You do not need to wait for a site to launch a phishing attack; the mere registration and holding of a well-known mark by an unauthorized party is often sufficient to satisfy the bad faith requirement under UDRP.
  • Use the registrar verification phase of the UDRP process to uncover evidence of identity theft. If the unmasked registrant data reveals the name of a person associated with the Complainant, immediately update legal arguments to highlight this as concrete proof that the respondent targeted the brand with specific, constructive knowledge.

Frequently Asked Questions (FAQ)

Why did the WIPO panel rule that the disputed domains were confusingly similar to the CALVIN KLEIN trademark?

The panel determined that the disputed domains reproduce the famous CALVIN KLEIN mark in its entirety. The addition of retail-focused keywords such as ‘brands’ or ‘clothings’ and geographic indicators like ‘us’ or ‘in’ before the ‘.store’ TLD does not diminish the confusing similarity with the Complainant’s long-standing mark.

What evidence established the Respondent’s lack of rights or legitimate interests in the domains?

The Respondent failed to provide any evidence of a bona fide offering of goods or services or legitimate noncommercial use. Furthermore, as the Respondent is charged with constructive knowledge of Calvin Klein’s established trademark rights, they have no proprietary claim to the mark.

How did the Respondent demonstrate bad faith beyond the passive holding of the domains?

Beyond the bad faith of maintaining inactive websites that divert potential customers, the panel identified a critical tactic of identity theft. The Respondent used the name of a former Calvin Klein employee to register the domains, a deceptive practice that the panel cited as clear evidence of bad faith registration and use.

What does this case reveal about the practical risks of using employee identities in domain registrations?

This case highlights an operational risk where bad actors weaponize the identities of former employees to register domains. The panel’s decision to redact the Respondent’s name and include specific transfer instructions to the Registrar underscores the severity of this impersonation tactic.

Detected Brand-Plus-Keyword Domain Abuse

Bad actors are increasingly layering your brand name with retail keywords and geographic markers to create convincing but unauthorized domain assets. Protect your digital footprint and recover infringing registrations before they are weaponized.

Assess brand threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.