Complainant HNI Technologies, Inc. successfully secured the transfer of hnicorp-us.com after a WIPO panel found the respondent targeted the company’s brand. The domain, which remained inactive, utilized a geographic suffix to mimic official corporate naming conventions without authorization. The panel ruled that the respondent had no legitimate interests and registered the domain in bad faith.
Case Snapshot
| Case Number | D2025-4718 |
|---|---|
| Complainant | HNI Technologies, Inc. |
| Respondent | lisa risalvato |
| Disputed Domain | hnicorp-us.com |
| Threat Tactic | Geographic Mimicry |
| Decision Date | 2026-01-20 |
| Panelist | Peter J. Dernbach |
| Outcome | Transfer |
| Official Source | https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4718 |
Geographic Mimicry and the Risk of Corporate Infrastructure Impersonation
The registration of hnicorp-us.com demonstrates a technical geographic mimicry tactic designed to exploit the global corporate identity of HNI Technologies, Inc. By appending the ‘-us’ suffix to the Complainant’s HNI CORP mark, the Respondent created a domain that follows standard multinational naming conventions for regional portals. This specific structure poses a high risk of confusion among customers and business partners who may expect an official United States presence at that URL. Since the Complainant has used its HNI marks in the U.S. since 2004 and holds registrations dating back to 2006, the adoption of this specific string suggests a targeted attempt to intercept traffic or establish a deceptive digital foothold within the brand’s primary market.
Despite the domain being held passively, the business threat remains significant under the Telstra principle applied by the Panel. The Respondent utilized a privacy service through Hostinger Operations, UAB, to obscure their identity, a common indicator in bad faith registrations. Even without an active website, the existence of a domain that incorporates the full HNI CORP trademark provides a ready-made platform for phishing or email-based fraud targeting employees and vendors. The lack of any authorization or license from the Complainant, combined with the fact that the Respondent was not commonly known by the name, supports the inference that the domain was registered to capitalize on the reputation of the workplace furnishing and residential building products manufacturer.
From a brand protection perspective, this case illustrates how geographic suffixes can be used to dilute corporate trademarks and potentially facilitate impersonation. The unauthorized use of the ‘HNI CORP’ mark in a domain that mimics an official regional office threatens the integrity of the Complainant’s communication channels. For IP professionals, this highlights a specific vulnerability where the combination of a core corporate identifier and a country-specific suffix creates a high-trust asset that can be used to bypass standard security scrutiny. The Panel’s decision to transfer the domain reflects the inherent risk posed by assets that lack a bona fide offering but possess the technical structure to deceive the public.
Analysis of Panel Reasoning: Mimicry and Passive Holding
The Panel concluded that the domain hnicorp-us.com is confusingly similar to the Complainant’s HNI CORP mark because it incorporates the trademark in its entirety. The addition of the geographic suffix ‘-us’ and a hyphen does not distinguish the domain from the protected mark; instead, it strengthens the false impression that the site is an official regional portal for HNI Technologies, Inc. within the United States. This structural mimicry of corporate naming conventions was a primary factor in the Panel’s determination that the domain specifically targeted the Complainant’s established identity and market presence.
Regarding rights and legitimate interests, the Panel found no evidence that the Respondent, Lisa Risalvato, was authorized to use the HNI marks or was commonly known by that name. The Respondent failed to provide any evidence of a bona fide offering of goods or services, as the domain resolved to an inactive website. In UDRP proceedings, the burden of production shifts to the respondent once a complainant makes a prima facie case; here, the lack of any response or documented fair use led to the conclusion that the Respondent possessed no legitimate interest in the disputed domain.
The determination of bad faith registration and use rested on the Respondent’s likely awareness of the Complainant’s brand and the application of the passive holding doctrine. Given that HNI Technologies, Inc. has utilized its marks in the United States since 2004 and holds registrations dating back to 2006, the Panel inferred that the Respondent registered the domain with the Complainant’s corporate profile in mind. Under the Telstra principle, the Panel determined that holding a domain passively—especially one mimicking a corporate identifier while utilizing a privacy service—constitutes bad faith use when no plausible legitimate purpose for the registration can be identified.
For brand owners and IP professionals, this decision illustrates the continued effectiveness of the UDRP in addressing geographic mimicry even before a domain is actively used for phishing. The Panel’s focus on the ‘brand-plus-geographic-keyword’ strategy highlights the risk that such domains pose to corporate brand integrity by creating potential for customer confusion. By securing a transfer based on the threat of impersonation and the lack of respondent authorization, the Complainant successfully mitigated the risk of future fraudulent email or web activity targeting its US-based employees and clients.
Analysis of Regional Targeting and Passive Holding Arguments
The Complainant’s strategy centered on demonstrating that the domain hnicorp-us.com was a calculated attempt at geographic mimicry. By incorporating the HNI CORP mark in its entirety and appending the -us suffix, the Respondent created a structure that mirrored standard corporate regional naming conventions. This approach was highly persuasive because it suggested an intent to impersonate the Complainant’s United States operations, where the company has utilized its marks for workplace furnishings and residential products since 2004. The Panel accepted the argument that such a specific domain structure would lead users to assume the site was an official regional portal, thereby creating a high risk of confusing similarity under the Policy.
Furthermore, the Complainant effectively navigated the challenge of a non-resolving website by arguing that passive holding constituted bad faith use given the surrounding circumstances. The Complainant established a global trademark footprint—including registrations in the European Union, China, and Hong Kong dating back to 2006—which significantly predated the 2025 registration of the disputed domain. This evidentiary depth allowed the Panel to infer that the Respondent was aware of the HNI Marks and specifically targeted the corporate identity. Because the Respondent failed to provide evidence of a bona fide offering or legitimate interest, the Panel applied the Telstra principle, concluding that the registration and maintenance of a domain mimicking a known brand constitutes bad faith even without an active website.
Practical Recommendations
- Expand domain monitoring parameters to specifically flag ‘brand plus geographic suffix’ combinations (e.g., -us, -eu, -uk) which are frequently used in geographic mimicry to impersonate regional corporate offices.
- Do not delay enforcement against inactive domains; leverage the ‘passive holding’ doctrine (Telstra principle) in UDRP filings when the domain incorporates a distinctive corporate identifier like ‘HNI CORP’ that precludes any plausible good-faith use.
- Proactively register core corporate naming conventions combined with regional indicators in primary operating markets to prevent bad-faith actors from establishing perceived ‘official’ regional portals.
- Utilize the UDRP registrar verification process to unmask registrants using privacy shields, such as those provided by Hostinger, to identify and document potential patterns of serial targeting against the brand.
- Maintain updated records of trademark use dating back to original registration (e.g., HNI’s 2004/2006 evidence) to simplify the proof of ‘pre-dating’ rights, which is critical for establishing bad faith in geographic mimicry cases.
Frequently Asked Questions (FAQ)
Why was the domain ‘hnicorp-us.com’ considered confusingly similar to HNI Technologies’ trademarks?
The panel found the domain confusingly similar because it incorporated the Complainant’s ‘HNI CORP’ trademark in its entirety, merely appending a geographic ‘-us’ suffix, which falsely suggests an official regional affiliation or subsidiary status.
What evidence proved the respondent lacked rights or legitimate interests in the domain?
The Complainant demonstrated that no authorization or license was granted to the respondent. Furthermore, the respondent failed to present any evidence of a bona fide offering of goods or services or legitimate noncommercial use, as the domain remained entirely inactive.
How did the panel conclude the domain was registered and used in bad faith despite its inactivity?
Under the ‘Telstra principle,’ the panel inferred bad faith by noting that the respondent targeted the Complainant’s well-established corporate identity. The passive holding of a domain that mimics a protected trademark, coupled with the lack of any credible legitimate purpose, constitutes bad faith under the UDRP policy.
What is the practical takeaway for businesses regarding geographic mimicry tactics?
This case highlights that attackers often use geographic suffixes like ‘-us’ to impersonate corporate portals. Businesses should monitor for trademark-plus-keyword variations, as even domains that remain ‘parked’ or inactive can be successfully recovered through a UDRP action to mitigate phishing risks.
Seeing brand abuse in a regional domain zone?
Protect your corporate identity against geographic suffixes and trademark-plus-keyword impersonation. If you have identified unauthorized domains mimicking your regional branding, our team can provide an eligibility assessment for UDRP recovery.
This case note is for informational purposes only and is not legal advice.



