AGENCY:

U.S. Copyright Office, Library of Congress.

ACTION:

Interim rule.

SUMMARY:

The U.S. Copyright Office is issuing an interim rule regarding the protection of confidential information by the mechanical licensing collective and the digital licensee coordinator under title I of the Orrin G. Hatch-Bob Goodlatte Music Modernization Act. After soliciting public comments through a notification of inquiry and a notice of proposed rulemaking, the Office is now issuing interim regulations identifying appropriate procedures to ensure that confidential, private, proprietary, or privileged information contained in the records of the mechanical licensing collective and the digital licensee coordinator is not improperly disclosed or used.

DATES:

Effective March 15, 2021.

FOR FURTHER INFORMATION CONTACT:

Regan A. Smith, General Counsel and Associate Register of Copyrights, by email at regans@copyright.gov or Anna B. Chauvet, Associate General Counsel, by email at achau@copyright.gov. Each can be contacted by telephone at (202) 707-8350.

SUPPLEMENTARY INFORMATION:

I. Background

On October 11, 2018, the president signed into law the Orrin G. Hatch-Bob Goodlatte Music Modernization Act (“MMA”) which, among other things, substantially modifies the compulsory “mechanical” license for making and distributing phonorecords of nondramatic musical works under 17 U.S.C. 115.^[1] It does so by switching from a song-by-song licensing system to a blanket licensing regime administered by a mechanical licensing collective (“MLC”), which became available on January 1, 2021 (the “license availability date”). In July 2019, the Copyright Office (the “Office”) designated an entity to serve as the MLC, as required by the MMA.^[2] Among other things, the MLC is responsible for collecting and distributing royalties under the blanket license, engaging in efforts to identify musical works embodied in particular sound recordings and to identify and locate the copyright owners of such musical works, and administering a process by which copyright owners can claim ownership of musical works (or shares of such works).^[3] It also must “maintain the musical works database and other information relevant to the administration of licensing activities under [section 115].” ^[4] The Office has also designated a digital licensee coordinator (“DLC”) to represent licensees in proceedings before the Copyright Royalty Judges (“CRJs”) and the Office, to serve as a non-voting member of the MLC, and to carry out other functions.^[5]

A. Regulatory Authority Granted to the Office

The MMA specifically directs the Office to “adopt regulations to provide for the appropriate procedures to ensure that confidential, private, proprietary, or privileged information contained in the records of the mechanical licensing collective and digital licensee coordinator is not improperly disclosed or used, including through any disclosure or use by the board of directors or personnel of either entity, and specifically including the unclaimed royalties oversight committee and the dispute resolution committee of the mechanical licensing collective.” ^[6] The MMA additionally makes several explicit references to the Office's regulations governing the treatment of confidential and other sensitive information, including with respect to: (1) “all material records of the operations of the [MLC]”; ^[7] (2) steps the MLC must take to “safeguard the confidentiality and security of usage, financial, and other sensitive data used to compute market shares” when distributing unclaimed accrued royalties; ^[8] (3) steps the MLC and DLC must take to “safeguard the confidentiality and security of financial and other sensitive data shared” by the MLC with the DLC about significant nonblanket licensees; ^[9] (4) voluntary licenses administered by the MLC; ^[10] (5) examination of the MLC's “books, records, and data” pursuant to audits by copyright owners; ^[11] and (6) examination of digital music providers' “books, records, and data” pursuant to audits by the MLC.^[12]

Beyond these specific directives, Congress invested the Office with “broad regulatory authority” ^[13] to “conduct such proceedings and adopt such regulations as may be necessary or appropriate to effectuate the provisions of [the MMA pertaining to the blanket license].” ^[14] The legislative history contemplates that the Office will “thoroughly review[ ]” ^[15] policies and procedures established by the MLC and its three committees, which the MLC is statutorily bound to ensure are “transparent and accountable,” ^[16] and promulgate regulations that “balance[ ] the need to protect the public's interest with the need to let the new collective operate without over-regulation.” ^[17]

Congress acknowledged that “[a]lthough the legislation provides specific criteria for the collective to operate, it is to be expected that situations will arise that were not contemplated by the legislation,” and that “[t]he Office is expected to use its best judgement in determining the Start Printed Page 9004appropriate steps in those situations.” ^[18] Legislative history further states that “[t]he Copyright Office has the knowledge and expertise regarding music licensing through its past rulemakings and recent assistance to the Committee[s] during the drafting of this legislation.” ^[19] Accordingly, in designating the MLC as the entity to administer the section 115 license, the Office stated that it “expects ongoing regulatory and other implementation efforts to . . . extenuate the risk of self-interest,” and that “the Register intends to exercise her oversight role as it pertains to matters of governance.” ^[20]

B. Rulemaking Background

On September 24, 2019, the Office issued a notification of inquiry (“NOI”) seeking, among other things, public input on any issues that should be considered regarding the treatment of confidential and other sensitive information under the blanket license regime.^[21] In response, the Office received suggested regulatory language from both the DLC and the MLC, and a few comments about confidentiality more generally from other stakeholders. The MLC's approach generally proposed requiring the MLC and the DLC to implement confidentiality policies to prevent improper or unauthorized use of various categories of confidential information, but lacked specific requirements for those policies or a proposed definition of “confidential information.” ^[22] By contrast, the DLC contended that the MLC's proposal, by investing the MLC and DLC with broad discretion to implement policies regarding confidentiality, “would inappropriately redelegate that authority [granted to the Register] to itself and DLC.” ^[23] The DLC maintained that the Office's regulations should provide necessary guidance, not merely give the MLC and DLC discretion to create their own policies.^[24]

On April 22, 2020, the Office issued a notice of proposed rulemaking (“NPRM”) regarding the treatment of confidential and other sensitive information under the blanket license regime, and solicited public comments on the proposed rule, including comments about the use of confidentiality designations and nondisclosure agreements.^[25] Overall, the Office proposed to adopt specific confidentiality regulations in order to assure those providing confidential and commercially sensitive information to the MLC that this information will be protected, as well as “provide the ground rules for the relationship between DLC, the MLC, and its respective members.” ^[26] In response to the proposed rule, the DLC found its “basic framework” to be “sound.” ^[27] The MLC noted that “it is critical that confidential information be maintained with appropriate safeguards,” and offered proposed adjustments to certain provisions.^[28] Another commenter expressed appreciation for the Office's approach “in distinguishing what is commonly thought of as generic `confidential information' and what ought to be confidential information for the DLC, [t]he MLC, their respective vendors and in particular the MLC's three Statutory Committees.” ^[29]

Having carefully considered the comments and other record materials in this proceeding, the Office is now issuing an interim rule. The Office has determined that it is prudent to promulgate this rule on an interim basis in order to retain added flexibility for responding to unforeseen circumstances. In some cases, the Office has adopted certain provisions in light of conflicting approaches suggested by various stakeholders. At times, the Office has opted for the more conservative approach to new issues presented in this rulemaking to ward against inappropriate disclosure or use of sensitive business information in the first instance, concluding that subsequent adjustment of an overly cautious rule is preferable to later addressing types of information that have already been shared. The Office will consider modifications as needed in response to new evidence, unforeseen issues, or where something is otherwise not functioning as intended as the MLC starts receiving confidential information from digital music providers and copyright owners for purposes of administering the section 115 license.

In issuing this interim rule, the Office is mindful of Congress's overall goals for the MMA to enhance transparency, accountability, and public access to musical work ownership information.^[30] The Office thus intends for its interim confidentiality rule to complement separate regulations regarding transparency, accountability, and public accessibility, which were adopted to prescribe the categories of information to be included in the public musical works database and rules related to the usability, interoperability, and usage restrictions of the database, as well as require the MLC to disclose certain categories of information in its statutorily-required annual reports and one-time written public update in December 2021 regarding its operations.^[31]

II. Interim Rule

The interim rule adopts certain provisions of the proposed rule and makes a number of adjustments in response to public comments regarding the definition of “confidential information” and the use and disclosure of such information.

Because the MMA does not define the term “confidential,” the interim rule defines “confidential information”—both by what it is and what it is not. The definition of “confidential information” is adjusted to mean sensitive financial or business information disclosed by DMPs, significant non-blanket licensees, or copyright owners (or any of their authorized agents or vendors) to the Start Printed Page 9005MLC or DLC, as opposed to information provided to the MLC and DLC more generally (e.g., supply contracts). The definition is also adjusted to generally refer to “information” (as opposed to “documents and information”) to clarify that a document containing both confidential and non-confidential information should be extended protection, though the rule retains provisions identifying specific documents that the Office's regulations require to be disclosed (e.g., notices of license) to clarify that they are not subject to the interim rule's restrictions on disclosure and use. As proposed by the MLC, “confidential information” does not include any top-level compilation data presented in anonymized format that does not allow identification of such data as belonging to any particular digital music provider, significant nonblanket licensee, or copyright owner. At the DLC's suggestion, the rule creates categories of “MLC Internal Information” and “DLC Internal Information,” to separately address the use and disclosure of sensitive financial or business information about the MLC's and DLC's internal operations (as opposed to confidential information disclosed to the MLC and DLC by third parties).

The interim rule creates various restrictions on the disclosure and use of confidential information by the MLC and DLC, as well as their employees, agents, consultants, vendors, and independent contractors, and members of their boards of directors and committees. In response to concerns about competitive harm that could result from the improper disclosure of confidential information from DMPs and copyright owners, the interim rule states that the MLC and DLC must limit disclosure of confidential information to their employees, agents, consultants, vendors, and independent contractors who are engaged in the entities' respective authorized functions and who require access to confidential information for the purpose of performing their duties during the ordinary course of their work. The MLC and DLC are prohibited from disclosing confidential information to members of their boards of directors and committees, and from using confidential information for any purpose other than their authorized functions under section 115. Consistent with the proposed rule, the MLC and DLC may disclose confidential information to qualified auditors or outside counsel under the statutorily-permitted audits, and to the Office, Copyright Royalty Board, and federal courts, or when such disclosure is required by court order or subpoena, subject to an appropriate protective order. Notwithstanding any restrictions, the rule states that the MLC may fulfill its disclosure obligations under section 115 (e.g., delivering royalty statements to copyright owners or communicating with the DLC). In keeping with the Office's preexisting rule governing comparable royalty statement reporting requirements under the song-by-song section 115 license, the interim rule does not place any confidentiality restrictions on copyright owners once they receive royalty statements from the MLC. The rule clarifies, however, that royalty statements to copyright owners should not include confidential information that does not relate to the recipient copyright owner or relevant songwriter in addition to the minimum information required by the Office's regulations.

Because “MLC Internal Information” and “DLC Internal Information” do not relate to sensitive business information disclosed by DMPs, significant nonblanket licensees, or copyright owners, the rule does not impose strict disclosure requirements as it does with “confidential information.” Instead, it creates categories of individuals to whom the MLC and DLC may disclose “MLC Internal Information” and/or “DLC Internal Information” (subject to a confidentiality agreement), giving the MLC and DLC some flexibility if they decide additional disclosure is necessary. For example, the interim rule states that the MLC may disclose MLC Internal Information to members of the MLC's board of directors and committees, including representatives of the DLC who serve on the board or committees. Should the MLC decide to disclose MLC Internal Information to a contractor, the rule does not prohibit the MLC from doing so; it states that the MLC may disclose MLC Internal Information to other individuals in its discretion, subject to the adoption of reasonable confidentiality policies. The rule contains a parallel provision for the DLC and DLC Internal Information. It also permits representatives of the DLC who serve on the MLC's board of directors or committees and who receive MLC Internal Information to share such information (subject to a confidentiality agreement) with employees, agents, consultants, vendors, and independent contractors of the DLC who require access to MLC Internal Information for the purpose of performing their duties.^[32]

These issues are discussed in turn below.

A. Defining “Confidential Information”

1. “Confidential Information” as Defined Under the Proposed Rule

The MMA does not define the term “confidential.” ^[33] The proposed rule defined “confidential information” as including “sensitive financial or business information, including information relating to financial or business terms that could be used for commercial advantage” and “trade secrets,” and enumerated categories of information and documents expressly intended by the statute to be covered by the Office's regulations governing the treatment of confidential and other sensitive information,^[34] including with respect to“the confidentiality and security of usage, financial, and other sensitive data used to compute market shares,” ^[35] “financial and other sensitive data shared” by the MLC to the DLC about significant nonblanket licensees,^[36] and voluntary licenses.^[37] The proposed rule also defined “confidential information” as including “sensitive personal information, including but not limited to, an individual's Social Security number, taxpayer identification number, financial account number(s), or date of birth (other than year).” ^[38]

As these are potentially broad categories, the proposed rule also refined the definition of “confidential information” by excluding information that is not confidential. Borrowing from current regulations governing SoundExchange in connection with the section 114 license, and as recommended by the DLC, the proposed Start Printed Page 9006rule stated that “confidential information” excludes “documents or information that may be made public by law” or “that at the time of delivery to the [MLC] or [DLC] is public knowledge,” and that “[t]he party seeking information from the [MLC] or [DLC] based on a claim that the information sought is a matter of public knowledge shall have the burden of proving that fact.” ^[39] Because documents and information may be subsequently disclosed by the party to whom the information would otherwise be considered confidential, or by the MLC or DLC pursuant to participation in proceedings before the Office or Copyright Royalty Judges (including proceedings to redesignate the MLC or DLC), the proposed rule also excluded such information and documents from the definition of “confidential information.” ^[40]

Recognizing that important restrictions on the disclosure of information are cabined by equally significant countervailing considerations of transparency in reporting certain types of information, the proposed rule also excluded the following from the definition of “confidential information”: Information made publicly available through notices of license,^[41] notices of nonblanket activity, the MLC's online database, and information disclosable through the MLC bylaws, annual report, audit report, or the MLC's adherence to transparency and accountability with respect to the collective's policies or practices, including its anti-commingling policy, pursuant to 17 U.S.C. 115(d)(3)(D)(ii), (vii), and (ix).^[42] In addition, adopting a suggestion from the MLC, the proposed rule excluded from the meaning of “confidential information” any top-level compilation data presented in anonymized format that does not allow identification of such data as belonging to any digital music provider, significant nonblanket licensee, or copyright owner.^[43] Finally, the proposed rule clarified that documents or information created by a party will not be considered confidential with respect to usage of that information by the same party (e.g., documents created by the DLC should not be considered confidential with respect to the DLC).^[44]

As discussed below, the interim rule adjusts the definition of “confidential information” based on public comments.

2. Royalty Statements Provided to Musical Work Copyright Owners by the MLC

The DLC contends that the definition of “confidential information” should expressly include “any sensitive data provided by digital music providers related to royalty calculations (including, but not limited to, service revenues, subscriber counts, and performing rights organization fee information).” ^[45] The DLC states that “statements of account delivered to copyright owners contain highly sensitive information” such as “service revenues, subscriber counts, and amounts paid to performing rights organizations,” and “this information is competitively sensitive between digital music providers, in that it provides extremely granular detail about each digital music provider's operations and performance.” ^[46] The DLC asserts that “[i]f the Office places no restrictions on copyright owners' use of the sensitive digital music provider information they receive from the MLC on statements of account, the Office will have failed to comply with [the] unambiguous congressional direction” to ensure that confidential, private, proprietary, or privileged information contained in the records of the mechanical licensing collective is not improperly disclosed or used.^[47] While recognizing that “[c]opyright owners are entitled to know how their royalties have been calculated,” ^[48] the DLC proposes regulatory language that would require copyright owners' access to be contingent upon “a written confidentiality agreement with the MLC that is enforceable by the licensee,” ^[49] as “this sensitive data [should] be used only to provide transparency into how mechanical royalties have been calculated and paid,” and not “for other, unrelated purposes.” ^[50]

By contrast, the MLC, the National Music Publishers' Association (“NMPA”), the Songwriters of North America (“SONA”), and the Future of Music Coalition (“FMC”) maintain that receipt of statements of account should not impose confidentiality restrictions on copyright owners, with SONA “seek[ing] to ensure that the final confidentiality rule . . . does not become a basis to withhold records from copyright owners, self-published songwriters, and their authorized representatives.” ^[51] Likewise, the MLC expressed concern that the proposed rule “leaves unclear the right of copyright owners to receive the royalty pool calculation information that they have always received in royalty statements.” ^[52] The MLC would exclude from the definition of “confidential information,” “[i]nformation concerning the calculation of the payable royalty pool and the per-work royalty allocation under part 385 to be reported in royalty statements to copyright owners under 37 CFR 210.29(c)(1)(vi).” ^[53] The MLC also proposes that the “MLC and the DLC may disclose Confidential Information to” “[c]opyright owners, including their agents, whose works were used in covered activities, in connection with royalty payments and statements.” ^[54]

While the Office appreciates that DMPs understandably want to ensure that sensitive business information provided to the MLC is not unlawfully or inappropriately disclosed or used, the definition of “confidential information” is already inclusive of information that is competitively sensitive as between digital music providers. Indeed, the DLC itself states that this information “plainly falls within the definition of Confidential Information in the Proposed Rule.” ^[55] The Office believes that amending the language to define “confidential information” as including “any sensitive data provided by digital music providers related to royalty calculations” could be overly broad in light of various statutory transparency and disclosure obligations; the suggestion to include “subscriber counts” and “service revenues” may also overreach as some DMPs are public companies who already disclose this information in financial statements.^[56] The Office previously declined to adopt the DLC's proposed definition that included “all the usage and royalty information” reported by DMPs for this reason.^[57] Nonetheless, for clarity, the interim rule includes “sensitive data provided by digital music providers related to royalty calculations” in the enumeration of types of confidential information. As explained further below, however, the interim rule also separately addresses the DLC's concerns by imposing restrictions on disclosure of these types of information to MLC board members and others involved with the operation of the mechanical license.

With respect to disclosure of information provided in royalty statements to copyright owners specifically, prior to the MMA, the Office previously considered and rejected the suggestion to place confidentiality requirements on copyright owners receiving statements of account under the section 115 statutory license due to the inclusion of “competitively sensitive” information, determining instead that “once the statements of account have been delivered to the copyright owners, there should be no restrictions on the copyright owners' ability to use the statements or disclose their contents.” ^[58] Royalty statements for the section 115 license have been provided to copyright owners for years without the confidentiality restrictions now requested by the DLC. No commenters provided examples of past harm caused by the existing regulations failing to impose such restrictions.^[59] Given that an animating goal of the MMA is to facilitate increased transparency and accuracy in reporting payments to copyright owners, the Office reiterates that it sees no compelling reason to deviate from this established policy.^[60] Further supporting the Office's conclusion that it should not depart from the status quo, the Office's adopted royalty payment and accounting information reporting requirements similarly “essentially retain the current rule governing non-blanket section 115 licenses.” ^[61] The Office is not persuaded by the DLC's suggestion that the statutory directive to promulgate regulations to avoid information “in the records of the mechanical licensing collective” being “improperly disclosed or used” counsels differently.^[62] Royalty statements are records of, and designed to be provided to, recipient copyright owners, and the statute and legislative history do not suggest that maintaining status quo expectations with respect to copyright owners' receipt of royalty information would fall under the category of improper use.

Accordingly, the interim rule states that once a royalty statement has been delivered to a copyright owner, there are no restrictions on that copyright owner's ability to use the statement or disclose its contents. The Office declines the MLC's proposal to exclude from the definition of “confidential information,” “[i]nformation concerning the calculation of the payable royalty pool and the per-work royalty allocation under part 385 to be reported in royalty statements to copyright owners under 37 CFR 210.29(c)(1)(vi).” Instead, as discussed below, the rule states that the mechanical licensing collective shall be permitted to prepare and deliver royalty statements to musical work copyright owners (and the contents therein) in accordance with the Office's regulations governing royalty statements, which require “[a] detailed and step-by-step accounting of the calculation of royalties under applicable provisions of part 385 of this title, sufficient to allow the copyright owner to assess the manner in which the royalty owed was determined and the accuracy of the royalty calculations, which shall include details on each of the components used in the calculation of the payable royalty pool.” ^[63] This language is meant to clarify that despite the rule's general restrictions on disclosing confidential information, the MLC is not prevented from preparing and delivering royalty statements to copyright owners. The rule clarifies, however, that royalty statements to copyright owners should not include confidential information that does not relate to the recipient copyright owner or relevant songwriter in addition to the minimum information required by the Office's regulations. As discussed more below, the Office believes the MLC's proposed language that the MLC and DLC may disclose confidential information to “[c]opyright owners, including their agents, whose works were used in covered activities, in connection with royalty payments and statements” becomes unnecessary.

3. Information Disclosed by Digital Music Providers, Copyright Owners, and Third Parties

The MLC and FMC suggest that the proposed rule's definition of “confidential information” is too broad.^[64] Specifically, the MLC contends the definition “is not limited to information exchanged in connection with the MLC's royalty processing functions, and thus on its face could be read to regulate every aspect of the MLC's and DLC's businesses.” ^[65] The MLC maintains that instead, the “definition should be limited to information disclosed by DMPs, copyright owners, the MLC, or the DLC, and that relate to the MLC's statutory functions, so that it does not inadvertently sweep into its ambit Start Printed Page 9008information that the MLC or DLC receives in connection with leasing office space or equipment, requisitioning supplies, or making other contractual arrangements.” ^[66] FMC asserts that “ `[f]inancial or business terms that could be used for commercial advantage' is an inherently problematic category definition when some DSPs and some copyright owners have seemed eager to use every piece of available data for their commercial advantage, if they can think of a possible way to do so.” ^[67]

The Office agrees that cabining “confidential information” to include “sensitive financial or business information” disclosed by digital music providers, significant non-blanket licensees, or copyright owners (or any of their authorized agents or vendors) to the mechanical licensing collective or digital licensee coordinator would help reasonably ensure that the Office's regulations apply in relation to the administration of the section 115 statutory license, as opposed to information provided to the MLC and DLC more generally (e.g., supply contracts). The interim rule accordingly adjusts the definition of “confidential information” to mean sensitive financial or business information disclosed by digital music providers, significant non-blanket licensees, and copyright owners (or any of their authorized agents or vendors) to the mechanical licensing collective or digital licensee coordinator. With respect to FMC's position that the phrase “financial or business terms that could be used for competitive disadvantage or be used for commercial advantage” could apply to data generally—to even non-confidential information—the Office notes that the phrase already modifies “sensitive financial or business information” to exclude broader types of information, and is also limited by the enumeration of non-confidential information articulated above.

ARM, while asserting that the proposed “general definition is appropriate,” asks that the definition specifically include “information such as royalty rates and other provisions of agreements between recorded music companies and digital service providers.” ^[68] The MLC supports ARM's position.^[69] In recognition of the need to protect sensitive data in agreements between recorded music companies and DMPs, the interim rule amends the definition of “confidential information” to also mean sensitive data concerning agreements between sound recording companies and digital music providers.

At the MLC's suggestion, the proposed rule excluded from the definition of “confidential information,” top-level compilation data presented in anonymized format that does not allow identification of such data as belonging to any digital music provider, significant nonblanket licensee, or copyright owner.^[70] Both the MLC and DLC incorporated this language into their respective proposed regulatory language,^[71] and no commenters objected. Accordingly, the interim rule adopts this aspect of the proposed rule without modification.

Commenters supported the definition of “confidential information” including “information submitted by a third party that is reasonably designated as confidential by the party submitting the information,” as well as “usage data and other sensitive data used to compute market shares when distributing unclaimed accrued royalties, sensitive data shared between the MLC and DLC regarding any significant nonblanket licensee, and sensitive data concerning voluntary licenses or individual download licenses administered by and/or disclosed to the MLC.” ^[72] In their respective proposals, the MLC and DLC retained the Office's proposed provisions stating that “confidential information” does not include “documents or information that are public or may be made public by law or regulation,” or “documents or information that may be made public by law or that at the time of delivery to the MLC or DLC is public knowledge.” ^[73] By contrast, ARM expresses concern with the phrase “information that may be made public by law,” saying it is “unclear,” and that “[w]hen inserted in an exception to the general definition of Confidential Information, that phrase could be read to say that any information the disclosure of which is not otherwise prohibited by law is excluded from the definition of Confidential Information, meaning that information only qualifies as Confidential Information when its disclosure is otherwise prohibited by law.” ^[74] The Office believes the language is reasonably clear, and notes that the phrase “information that may be made public by law” is meant to cover information for which the Office's own regulations require certain disclosures from DMPs and significant nonblanket licensees that would not be considered confidential. This intention is made clear by subsequent subparagraphs enumerating these categories. After carefully considering these comments, the interim rule retains these aspects of the proposed definition.

Finally, ARM contends that because this rule focuses on the protection of information, “referring to documents uniquely in the exclusions from the definition of Confidential Information creates interpretive issues,” as documents “embody information” and “a document that contains some Confidential Information should not be excluded from protection simply because it also includes some other information that is excluded from the definition of Confidential Information.” ^[75] ARM maintains that “the exceptions should apply only to information, and not to some potentially broader category of documents.” ^[76] The Office agrees that the regulation intends to prevent the improper use or disclosure of confidential information. The Office also agrees that a document containing both confidential and non-confidential information should be extended protection, and did not suggest otherwise when issuing the proposed rule. Rather, the proposed rule identified specific documents (e.g., notices of nonblanket activity) and sources of information (e.g., the public musical works database) for which the Office's regulations require disclosure and to which confidentiality restrictions would not apply.

Accordingly, the Office has adjusted the phrase “documents or information that are public or may be made public by law or regulation” to refer solely to “information.” By focusing on “information” as opposed to “documents,” the rule clarifies that the MLC and DLC would be prohibited from disclosing documents containing “confidential information” disclosed by digital music providers, significant non-blanket licensees, and copyright owners (or any of their authorized agents or vendors) or third parties that reasonably designate information as confidential—Start Printed Page 9009even in cases where the MLC or DLC may have created the underlying documents.^[77] The Office is retaining, however, the provisions identifying specific documents that the Office's regulations require to be disclosed (e.g., notices of license, the MLC's annual report) to clarify that they do not embody confidential information, subject to any exceptions included in the relevant regulatory section (e.g., addendums to notices of license, to the extent they provide a description of any applicable voluntary license or individual download license the digital music provider is, or expects to be, operating under concurrently with the blanket license).

4. Personal Information

In response to stakeholder concern about the disclosure of sensitive personal information, particularly relating to copyright owner information,^[78] the proposed rule included in the definition of “confidential information” “sensitive personal information, including but not limited to, an individual's Social Security number, taxpayer identification number, financial account number(s), or date of birth (other than year).” ^[79] In response, SONA generally agrees with the proposed definition, but believes it “should explicitly include other instances of `personal information,' including home address and home phone number.” ^[80] CISAC & BIEM maintain that date of birth should be confidential, noting that “creators often wish to keep [it] confidential in order to protect their image.” ^[81]

Having carefully considered these issues, the Office has adjusted the interim rule to include birth year in the definition of confidential information.^[82] Because the statute requires the musical works database to make contact information for musical work copyright owners for matched works publicly available,^[83] the interim rule includes “home address or personal email” in the definition of “confidential information” to the extent they are “not musical work copyright owner contact information as required under 17 U.S.C. 115(d)(3)(E)(ii)(III).” ^[84]

5. Information Made Publicly Available to the Office or Copyright Royalty Judges

Under the proposed rule, “confidential information” excluded information made publicly available by the MLC or DLC pursuant to participation in proceedings before the Office or Copyright Royalty Judges (including proceedings to redesignate the MLC or DLC).^[85] In response, the DLC states that “if this provision is meant to only cover material that the DLC and MLC have voluntarily (and with appropriate authority) filed in a CRB or Copyright Office docket publicly and without any restrictions, the provision is unnecessary, because by definition such material is not confidential.” ^[86] The DLC also contends that the reference “will lead to considerable confusion,” as “[f]ilings in CRB proceedings are governed by comprehensive protective orders, and those orders should determine whether material is or is not confidential.” ^[87] ARM similarly asserts that this specific reference to Office and Copyright Royalty Board proceedings should be removed in the definition of “confidential information,” as “[t]he MLC and DLC should not have the power to make other entities' confidential information non-confidential by disclosing it publicly in a proceeding,” and that rather that an exception to the definition of “confidential information,” “it would be more consistent with protection of third-party confidential information . . . to treat disclosure in proceedings” through the proposed rule's provision stating that the MLC and DLC may disclose confidential information to “[a]ttorneys and other authorized agents of parties to proceedings before federal courts, the Copyright Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena, subject to an appropriate protective order or agreement.” ^[88] For its part, the MLC does not object to including this provision.^[89]

After consideration, the Office has adjusted this aspect of the proposed rule by eliminating the reference to “information made publicly available by the mechanical licensing collective or digital licensee coordinator pursuant to participation in proceedings before the Office or Copyright Royalty Judges.” The Office agrees that this specific reference is not necessary because information is no longer confidential once it has been publicly disclosed voluntarily and without any restrictions (and with appropriate authority). The Office retains the provision that excludes “information that is public” from the definition of “confidential information” so as to cover authorized public filings by the MLC or DLC with the Office or Copyright Royalty Board.

6. Confidentiality as to a Party's Own Information

In the definition of “confidential information,” the proposed rule stated that documents or information created by a party will not be considered confidential with respect to usage of those documents or information by the same party (e.g., documents created by the DLC should not be considered confidential with respect to the DLC).^[90] ARM agrees that it “makes sense” to “avoid imposing on the MLC or DLC a duty to protect its own information,” but advises against implementing this principle as part of the definition of “confidential information.” ^[91] ARM Start Printed Page 9010maintains that, for example, the provision of the proposed rule intending to prevent the MLC and DLC from imposing use and disclosure restrictions on their board members in addition to those contemplated by the regulations “may not achieve its intended effect” if the MLC's own confidential information “is not included in the defined term Confidential Information as to the MLC.” ^[92] ARM contends that “[t]he principle of not restricting an entity's use or disclosure of its own confidential information is typically accomplished in nondisclosure agreements by carefully drafting the substantive provisions so as to limit disclosure and use of other entities' confidential information, rather than one's own,” and “[t]hat seems like a preferable approach here.” ^[93] Though not expressly commenting on this issue, in its proposed regulatory language the DLC excludes the paragraph referencing use of a party's own documents or information.^[94] For its part, the MLC suggests revising the paragraph to “documents or information concerning a party, to the extent such party authorizes the usage of such documents or information.” ^[95]

The Office has adjusted the interim rule to remove the paragraph referencing “documents or information created by a party” from the definition of “confidential information.” Because the definition of “confidential information” has been revised to mean sensitive financial or business information disclosed by digital music providers, significant non-blanket licensees, or copyright owners (or any of their authorized agents or vendors) to the MLC or DLC, and because the rule clearly restricts use and disclosure of such information by the MLC and DLC (as discussed below), this paragraph is no longer necessary. As described below, the Office has also adopted provisions relating to the confidentiality of MLC and DLC internal information. Should the Office learn of instances where a party is prevented from using or disclosing its own confidential information under the regulations, the Office will consider any necessary adjustments.

B. Disclosure and Use of Confidential Information

1. Proposed Rule's Approach to Disclosure and Use of Confidential Information

The proposed rule included various categories of permitted disclosure and use by MLC and DLC employees, board and committee members of the MLC and DLC (and their respective employers), and vendors and agents of the MLC and DLC. Given the somewhat divergent views from the MLC and DLC in response to the NOI, and the need for regulatory language to accommodate unforeseen issues, the proposed rule was intended to provide parity in access to confidential information, rather than hard and fast categories prohibiting disclosure of information relevant to, or accessed by, digital music providers or music publishers.^[96] The proposed rule permitted the following disclosures, while requiring all individuals receiving confidential information to execute a written confidentiality agreement: ^[97]

• Employees of the MLC or DLC may receive confidential information.
• Agents, consultants, vendors, and independent contractors of the MLC or DLC may receive confidential information, only when necessary to carry out their duties.
• Other individuals authorized by the MLC may receive confidential information, but only to the extent necessary for such persons to know such information and only when necessary for the MLC to perform its duties.
• Non-DLC members of the MLC's board or statutory committees as well as DLC representatives on the MLC's board or statutory committees may receive confidential information only on a need-to-know basis and to the extent necessary to carry out their duties.
• The MLC and DLC may disclose confidential information to qualified auditors or outside counsel under the statutorily-permitted audits.^[98]

• The MLC and DLC may disclose confidential information to the Office, Copyright Royalty Board, and federal courts by parties to their proceedings, or when such disclosure is required by court order or subpoena, subject to an appropriate protective order.
• DLC representatives who serve on the board of directors or committees of the MLC may share confidential information with individuals:

○ Serving on the board of directors and committees of the DLC, but only to the extent necessary for such persons to know such information and only when necessary to carry out their duties for the DLC.

○ Employed by DLC members, only to the extent necessary for such persons to know such information and for the DLC to perform its duties.

The proposed rule included the following use restrictions for confidential information: ^[99]

• The MLC, including its employees, agents, consultants, vendors, independent contractors, and non-DLC members of the MLC board of directors or committees, shall not use any confidential information for any purpose under than for section 115 activities for the MLC.^[100]

• The DLC, including its employees, agents, consultants, vendors, independent contractors, members of the DLC board of directors or committees, and DLC representatives serving on the board of directors or committees of the MLC, shall not use any confidential information for any purpose other than section 115 activities for the DLC.^[101]

• Individuals employed by DLC members who receive confidential information from DLC representatives would be prohibited from using confidential information for any purpose other than for work performed during the ordinary course of business for the DLC or MLC.

2. Interim Rule—Disclosure of Confidential Information

Comments in response to disclosure requirements under the proposed rule were mixed. As discussed below, the DLC objected to this aspect of the proposed rule, maintaining that members of the MLC's board of directors and committees should not have access to DMP-specific information relating to sensitive financial or business information. By contrast, the MLC Start Printed Page 9011asserted that MLC governance requires seeing DMP-specific information, subject to appropriate written confidentiality agreements and the restriction that they not see information relating to specific, identified copyright owners. Other commenters supported either a more limited or a broader approach. These comments are discussed in turn below.

The DLC contends that “it is absolutely critical that the Office maintain a strict firewall between the MLC Board and the sensitive information provided by digital music providers to the MLC,” ^[102] and that “[i]t would likewise be inappropriate for the MLC Board to gain information about the identity of digital music providers' voluntary license partners, or the terms of those licenses.” ^[103] The DLC suggests that the MLC's forty employees “are the ones who should be running the day-to-day operations of the MLC, and reporting high-level, anonymized, aggregate information to the Board, sufficient for the Board to engage in oversight.” ^[104] The DLC states that “the MMA requires the MLC's officers to be independent of the Board, prohibiting anyone serving as an officer of the MLC to simultaneously `also be an employee or agent of any member of the board of directors of the collective or any entity represented by a member of the board of directors,' ” and that “[i]t would be improper for MLC Board members to circumvent this restriction by becoming directly involved in the day-to-day operations of the MLC, especially if it means demanding special access to commercially sensitive information from digital music providers as a result.” ^[105] The DLC expresses concern about music publishers serving on the MLC Board and having access to sensitive financial and business information about DMPs, as they would “gain a special advantage in any commercial negotiations with [a] digital music provider,” which “harms both the digital music providers, and (crucially) publishers that do not serve on the Board, who will be at a competitive disadvantage.” ^[106]

The DLC proposes that “[a]t most, members of MLC and DLC boards and committees should be given access only to aggregated and anonymized data—a category of information that the Proposed Rule already excludes from the definition of Confidential Information.” ^[107] The DLC also argues that “the final rule needs to address in some manner the confidentiality of information that the MLC and DLC themselves generate as part of their own operations, while maintaining the ability for DLC members to get and share information related to MLC operations.” ^[108] To achieve this, the DLC proposes creating categories of “MLC Internal Information” and “DLC Internal Information” that may be more widely shared amongst the MLC and DLC because these categories would encompass information that “may be confidential from the perspective of the MLC and DLC,” but do not include “information specific to a particular digital music provider or licensee,” and so are “less likely to create a risk that the Office expressed concern about—of `confidential information from being misused by competitors for commercial advantage.' ” ^[109]

The DLC's proposal would also specify conditions under which DLC members of the MLC board and committees could “share information about MLC operations with its membership, and with appropriate personnel within DLC member companies,” as well as DLC activities.^[110] Under the DLC's approach, the MLC could share MLC Internal Information with representatives of the DLC who serve on the board of directors or committees of the MLC, only to the extent necessary for such persons to know such information, only when necessary to carry out their duties for the DLC, and subject to an appropriate written confidentiality agreement.^[111] The DLC proposes that DLC recipients of this information may further share such MLC Internal Information with (1) employees, agents, consultants, vendors, and independent contractors of the DLC, only to the extent necessary for the purpose of performing their duties during the ordinary course of their work for the DLC, only to the extent necessary for such persons to know such information, subject to an appropriate written confidentiality agreement; (2) individuals serving on the board of directors and committees of the DLC, only to the extent necessary for such persons to know such information and only when necessary to carry out their duties for the DLC, subject to an appropriate written confidentiality agreement; and (3) individuals otherwise employed by members of the DLC, only to the extent necessary for such persons to know such information and only when necessary for the DLC to perform its duties, subject to an appropriate written confidentiality agreement.^[112] DLC Internal Information could be shared with members of the DLC board of directors and committees, subject to an appropriate written confidentiality agreement.^[113]

By contrast, the MLC contends that it would not “be appropriate to promulgate a regulation that prevents the MLC's governance from seeing DMP-specific information, subject to appropriate written confidentiality agreements and the restriction that they not see information relating to specific, identified copyright owners.” ^[114] The MLC asserts that “because the MLC board oversees the blanket license administration and administrative assessment collection processes, [it] must be able to be informed as to compliance with these processes,” and that because “compliance is an individual DMP issue, not an industry Start Printed Page 9012issue, it is critical that the MLC governance be informed at the DMP level, not just the industry-aggregate level.” ^[115] Regarding the MLC's committees, the MLC “envisions that the Unclaimed Royalties Oversight Committee would review DMP-specific data” to “create policies and procedures to minimize the incidence of unclaimed accrued royalties,” such as “specific examples of potential matches to get a concrete understanding of what types of results fall into different confidence levels” when analyzing matching performance and confidence levels.^[116] Finally, regarding the DLC's proposed categories of “MLC Internal Information” and “DLC Internal Information,” the MLC maintains they are “unnecessary” because the “MLC and DLC can control disclosures of their internal information through appropriate written confidentiality agreements.” ^[117]

Instead, to “ensure that the MLC board and committee members shall not receive inappropriate confidential information,” the MLC proposes language to “clarif[y] . . . that no copyright owners or songwriters (which captures all of the MLC's directors and committee members, except for those representing DMPs) will be shown confidential information of other copyright owners,” and that digital music providers should “not receiv[e] information concerning competitors.” ^[118] The MLC maintains that “neither DLC appointees, nor publisher or songwriter representatives should be permitted to share confidential information received in their roles as MLC board or committee members with their employers,” ^[119] and that allowing “disclosure[s] to employers by any board or committee member, including DLC appointees, would raise significant competitive concerns and jeopardize the MLC's ability to control, and ensure against, unfettered dissemination of confidential or competitively sensitive information.” ^[120] The MLC also contends that “MLC board and committee members, regardless of the identity of their employer (i.e., whether a DMP, a publisher, a songwriter or a trade organization) should be subject to the same, strict provisions concerning the confidential information received in connection with their board or committee engagement.” ^[121] The MLC contends that the proposed conditions limiting access to information only “where necessary to carry out their duties” and “during the ordinary course of their work” is “confusing and unnecessary,” and suggests that “[i]f use of the information is limited to the performance of the MLC's statutory functions, that should be sufficient.” ^[122] The MLC says these phrases also “create[ ] the argument that MLC vendors or contractors would have to use an alternate procedure to perform work without using Confidential Information if such was possible, even where it would be highly inefficient and costly.” ^[123]

Other comments regarding access of MLC and DLC board and committee members, and DLC member employers, to confidential information generally supported a more limited approach. CISAC & BIEM assert that “[w]hile there is certainly a need for the DLC to access certain Confidential Information to perform its duties, disclosure to individual employees of DLC members is not justified.” ^[124] Similarly, ARM argues that “it is not apparent that there is any need for board and committee members to share confidential information with their employers, except . . . to give them access to MLC confidential information to obtain feedback concerning operational policies.” ^[125] To ARM, “[i]t is not apparent that the MLC board would ever need to discuss confidential information of particular third-party companies,” and “even in the context of considering whether to authorize an enforcement action by the MLC against a particular DMP, it would seem sufficient for the MLC board to understand that MLC management believes the DMP underpaid royalties by a certain aggregate amount.” ^[126] NMPA recommended that the Office's regulations adopt the same standard for all board and committee members,^[127] and stated that “DLC representatives on the MLC board and [committees] may have access to a host of sensitive confidential information that, if provided to their employers, could put music publishers and DMPs that are not members of the DLC at a competitive disadvantage.” ^[128] Noting that the MLC's statutorily-created Operations Advisory Committee “is made up of various operations technology experts at the DMPs and music publishers” who were “presumably selected for their roles precisely because they have the relevant subject matter expertise,” NMPA further stated that because “DLC representatives work for technology companies,” they “are far less likely to need to `solicit additional subject matter expertise' on `technical considerations' from another individual employed by his or her DMP employer than might a music publisher representative on the MLC board or a committee.” ^[129]

In contrast, the Songwriters Guild of America, Inc. (“SGA”) and the Society of Composers & Lyricists (“SCL”) proposed a broader approach whereby “[n]on-DLC members on the MLC board of directors or committees may receive Confidential Information from the MLC subject to an appropriate written Start Printed Page 9013confidentiality agreement,” and “Confidential Information may be withheld from such members only in those instances in which it is demonstrably unnecessary for such persons to know such information in the course of carrying out their duties for the MLC.” ^[130]

i. Disclosure of Confidential Information to Mechanical Licensing Collective and Digital Licensee Coordinator Persons and Entities

After carefully considering these comments, the Office concludes that taking a more conservative approach to new issues presented in this rulemaking regarding the protection of sensitive financial or business information disclosed by digital music providers, significant non-blanket licensees, and copyright owners (or any of their authorized agents or vendors) to the mechanical licensing collective or digital licensee coordinator is appropriate. Although the MLC advocates for a generally more open approach than the DLC, both entities acknowledge that improper disclosure of confidential information could be harmful.^[131] It is not apparent that the MLC's board of directors must access DMP-specific confidential information in order to generally supervise and “manage the business and affairs of the Collective;” ^[132] as also raised by the MLC, the Office is mindful of the need to “control, and ensure against, unfettered dissemination of confidential or competitively sensitive information.” ^[133] The Office is inclined to agree with the DLC that although the MLC's officers should be overseen by the MLC's board of directors, the officers should be able to operate generally independently on a day-to-day basis, including when considering information that would be competitively sensitive if disclosed to MLC directors.^[134] As noted above, the interim rule adopts the MLC's proposal of excluding from the meaning of “confidential information” any top-level compilation data presented in anonymized format that does not allow identification of such data as belonging to any digital music provider, significant nonblanket licensee, or copyright owner.^[135] Accordingly, members of the MLC's board of directors (and committees) will still receive aggregated data to know how the blanket license is functioning and whether remedial actions may be necessary (e.g., the collective's matching rates and distribution times, royalty collection and distribution, budgeting and expenditures, aggregated royalty receipts and payments). As to the MLC's examples for which it proposes that access to DMP-specific confidential information would be necessary (i.e., whether to audit, notice a default, or take other action against a DMP), the Office expects that the collective would be able to notify the MLC's board of directors of such situations without needing to disclose granular details regarding the DMP's sensitive financial or business information. To the extent future developments challenge this assumption, the Office believes the more prudent approach is to consider whether easing of restrictions is appropriate, as opposed to tightening up disclosure rules after the fact. Once the MLC has progressed in its administration of the blanket license, if there are concrete, specific examples of situations where members of the MLC or DLC boards or committees find themselves requiring access to certain information to fulfill their duties but are prohibited such access under the interim rule, the Office will consider adjustment of its regulations.

Against this backdrop, the interim rule takes the following approach. The mechanical licensing collective shall limit disclosure of confidential information to its employees, agents, consultants, vendors, and independent contractors who are engaged in the collective's authorized functions under 17 U.S.C. 115(d) and activities related directly thereto and who require access to confidential information for the purpose of performing their duties during the ordinary course of their work for the mechanical licensing collective, subject to an appropriate written confidentiality agreement.^[136] In response to the MLC's concern regarding the phrase “only when necessary to carry out their duties” being interpreted to require vendors or contractors to use an alternate procedure to perform work without using confidential information if possible (even where it would be highly inefficient and costly), the Office changed the language to read “require access to Confidential Information for the purpose of performing their duties.” ^[137] The interim rule includes this language because not all employees, agents, consultants, vendors, and independent contractors of the MLC and DLC will need access to confidential information (or the same types of confidential information) to perform their jobs (e.g., receptionists answering telephones for the MLC's office).^[138]

For the reasons discussed, the interim rule precludes the mechanical licensing collective from disclosing confidential information to members of its board of directors or committees, including the collective's Unclaimed Royalties Oversight Committee, or the DLC's board of directors or committees. Recipients of confidential information from the MLC shall not disclose such confidential information to anyone else except as expressly permitted in the Office's regulations, with an exception for qualified auditors or outside counsel conducting statutorily-permitted audits, or attorneys and other authorized agents of parties to proceedings before federal courts, the Copyright Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena (discussed below).

For parity, the interim rule states that the digital licensee coordinator shall limit disclosure of confidential information to its employees, agents, consultants, vendors, and independent contractors who are engaged in the digital licensee coordinator's authorized functions under 17 U.S.C. 115(d)(5)(C) and activities related directly thereto, and require access to confidential information for the purpose of performing their duties during the Start Printed Page 9014ordinary course of their work for the digital licensee coordinator, subject to an appropriate written confidentiality agreement. The interim rule also states that the digital licensee coordinator shall not disclose confidential information to members of the digital licensee coordinator's board of directors or committees, or the mechanical licensing collective's board of directors or committees. Recipients of confidential information from the DLC shall not disclose such confidential information to anyone else except as expressly permitted in the Office's regulations, with an exception for qualified auditors or outside counsel conducting statutorily-permitted audits, or attorneys and other authorized agents of parties to proceedings before federal courts, the Copyright Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena (discussed below).

Notwithstanding the above restrictions, the interim rule clarifies that the mechanical licensing collective shall continue to fulfill its disclosure obligations under section 115 including, but not limited to, delivering royalty statements to copyright owners ^[139] and providing monthly reports to the digital licensee coordinator identifying any significant nonblanket licensees that are not in compliance with the Office's regulations regarding notices of nonblanket activity and reports of usage for the making and distribution of phonorecords of nondramatic musical works.^[140] Because royalty statements could be confidential to copyright owners themselves, and given the MLC's suggestion that regulations should prohibit disclosure of confidential information regarding a “particular, identified copyright owner to other copyright owners (including their agents or representatives) or songwriters,” ^[141] the interim rule states that members of the MLC's board of directors or committees shall not have access to other musical work copyright owners' royalty statements, except where a copyright owner discloses its own statement to such bodies.^[142] For parity, the digital licensee coordinator, including members of the digital licensee coordinator's board of directors or committees, shall be similarly restricted. Under the rule, members of the mechanical licensing collective's board and committees are not, however, restricted in accessing their own royalty statements from the mechanical licensing collective.

Disclosure of MLC Internal Information and DLC Internal Information

As proposed by the DLC, the interim rule also incorporates “MLC Internal Information” as a category of information that can be shared with the MLC board of directors and committees, including representatives of the DLC, subject to an appropriate written confidentiality agreement.^[143] To ensure that “MLC Internal Information” does not extend to sensitive business and financial information disclosed by DMPs, copyright owners, and significant nonblanket licensees to the MLC (i.e., “confidential information”), the interim rule defines “MLC Internal Information” as sensitive financial or business information created by or collected by the mechanical licensing collective for purposes of its internal operations, such as personnel, procurement, or technology information.^[144] Under the interim rule, “MLC Internal Information” excludes information that is public or may be made public by various avenues, similar to the regulatory definition of “Confidential Information.” ^[145] In addition, the interim rule creates a corresponding category of “DLC Internal Information.”

Because “MLC Internal Information” and “DLC Internal Information” do not relate to sensitive business information disclosed by DMPs, significant nonblanket licensees, or copyright owners, the rule does not impose strict disclosure requirements as it does with “confidential information” due to the less-sensitive nature of these information categories. Rather, the rule creates categories of individuals to whom the MLC and DLC may disclose “MLC Internal Information” and/or “DLC Internal Information” (subject to a confidentiality agreement), which gives the MLC and DLC some flexibility if they decide additional disclosure is necessary. The rule also states that the MLC may disclose MLC Internal Information to other individuals in its discretion, subject to the adoption of reasonable confidentiality policies. The rule contains a parallel provision for the DLC and DLC Internal Information. Specifically, the interim rule states that the MLC may disclose MLC Internal Information to members of the MLC's board of directors and committees, including representatives of the DLC who serve on the MLC's board of directors or committees. The interim rule also states that representatives of the DLC who serve on the board of directors or committees of the mechanical licensing collective and receive MLC Internal Information may share such MLC Internal Information with the following persons, who require access to such information for the purpose of performing their duties during the ordinary course of their work for the DLC, subject to an appropriate written confidentiality agreement:

• Employees, agents, consultants, vendors, and independent contractors of the DLC;
• Individuals serving on the board of directors or committees of the DLC or MLC; and
• Individuals otherwise employed by members of the DLC.

Under the interim rule, the DLC may disclose DLC Internal Information to the following persons, subject to an appropriate written confidentiality agreement:

• Members of the DLC's board of directors and committees; and
• Members of the MLC's board of directors and committees.

ii. Disclosure of Confidential Information to Non-Mechanical Licensing Collective and Non-Digital Licensee Coordinator Persons and Entities

The proposed rule allowed disclosure of confidential information to attorneys and other authorized agents of parties to proceedings before federal courts, the Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena, subject to an appropriate protective order or agreement.^[146] The proposed rule also permitted disclosure to qualified auditors or outside counsel pursuant to the statutorily-permitted audits by the MLC of a digital music provider operating under the blanket license or audits by copyright owners of the MLC. No commenter objected to these provisions, and the MLC, DLC, and Start Printed Page 9015ARM retained them in their respective proposed statutory text.^[147] In light of these comments, the interim rule adopts this aspect of the proposed rule. As noted above, while the rule generally states that recipients of confidential information from the MLC or DLC shall not disclose such confidential information to anyone else except as expressly permitted in the Office's regulations, it creates an exception for qualified auditors or outside counsel conducting statutorily-permitted audits, or attorneys and other authorized agents of parties to proceedings before federal courts, the Copyright Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena.

3. Interim Rule—Restrictions on Use of Confidential Information

In response to multiple commenters expressing concern about MLC vendors using the confidential information they acquire while conducting work for the MLC for other purposes,^[148] the proposed rule restricted MLC vendors from using confidential information for purposes other than for duties performed during the ordinary course of work for the MLC, including the administration of voluntary bundled licensing of performance and mechanical uses that the MLC itself is prohibited from administering.^[149] The proposed rule similarly restricted DLC vendors.^[150] In issuing the proposed rule, the Office tentatively declined to adopt the MLC's proposal to preferentially allow “users who submit confidential data to the MLC an ability to voluntarily `opt in' to share that data for general use by its primary royalty processing vendor, the Harry Fox Agency” (“HFA”), as the MLC did not detail what it meant by “general use.” ^[151]

FMC and CISAC & BIEM support this aspect of the proposed rule, noting that vendors' use of confidential information other than for duties performed during the ordinary course of work for the MLC or DLC has the potential to increase the risk of anti-competitive harm and conflicts of interest.^[152] In a parallel rulemaking, the DLC, FMC, and SoundExchange emphasized the importance of MLC vendors not receiving preferential treatment or market advantage by virtue of their association with the MLC, with FMC stating that “Congress intended to encourage a healthy competitive marketplace for other kinds of licensing businesses and intermediaries,” and “it's important that MLC's chosen vendors not be able to leverage their status with the MLC to advantage themselves in other business activities not covered under the MMA.” ^[153] SoundExchange asserted that Congress “intended to preserve a vibrant and competitive marketplace for intermediaries [besides the MLC] who provide other license administration services,” and this intent would be frustrated “[i]f the MLC's vendors were to receive an unfair advantage in the music licensing marketplace through means such as preferred access to digital music providers or referrals by the MLC for extrastatutory business opportunities in a manner not available to their competitors.” ^[154] The DLC did not oppose this aspect of the proposed rule,^[155] and in a parallel rulemaking, expressed concern as “to whether the MLC's selected vendors will gain a special competitive advantage in related marketplaces—such as the administration of voluntary licenses—merely by dint of their association with the collective responsible for licensing all mechanical rights in the United States.” ^[156]

For its part, the MLC contends that this aspect of the proposed rule “is overly prescriptive, imposes unnecessary burdens and costs on copyright owners, and is likely not within the scope of the Office's authority.” ^[157] While the proposed rule would restrict only actions of the mechanical licensing collective, the MLC argues that the proposed rule “prevent[s] the MLC's copyright owner members from voluntarily electing to share their own information with the MLC's vendors,” ^[158] and that “[c]opyright owners that wish to use the MLC's vendors for purposes other than the administration of the blanket license should not have to incur the time and expense to input duplicates of information that can be transferred voluntarily without any transaction costs.” ^[159] NMPA echoes the MLC's position, maintaining that “[w]here a copyright owner provides to HFA its confidential information by virtue of HFA's role as administrator of the blanket license, it may make the most business sense (and be most efficient) to authorize HFA to use that information for the copyright [owners'] other licenses.” ^[160] NMPA also asserts that “HFA gains no special advantage by receiving the same information one time rather than multiple times,” but that “copyright owners are decidedly disadvantaged in having to submit multiple but identical data sets.” ^[161]

As noted above, the MMA expressly directs the Office to adopt regulations to, among other things, prevent the improper use of confidential information contained in the mechanical licensing collective's records.^[162] The MMA also expressly restricts the mechanical licensing collective to administering the mechancial license,^[163] as the MLC Start Printed Page 9016acknowledges,^[164] and the legislative history reflects Congress's intention that this provision was critical to safeguard continued private competition outside of the MLC's administration of the blanket mechanical license.^[165] Given Congress's actions to preserve competition for music licensing vendors and the overwhelming concern from commenters that MLC vendors should not be able to gain commercial advantage due to its association with the MLC, the Office again declines to adopt the MLC's proposal to allow “users who submit confidential data to the MLC an ability to voluntarily `opt in' to share that data for general use by its primary royalty processing vendor, the Harry Fox Agency.” ^[166]

If the Office were to adopt the MLC's proposal, HFA would receive an advantage for non-mechanical business opportunities not granted to competitors (i.e., confidential information “for purposes other than the administration of the blanket license,” ^[167] such as the administration of copyright owners' “other licenses” ^[168] ) and preferential access and treatment (i.e., data “by virtue of HFA's role as administrator of the blanket license,” ^[169] and “without any transaction costs” ^[170] ). Allowing HFA to benefit from its association with the MLC for business opportunities outside the administration of the blanket license is precisely the scenario multiple commenters have warned against, and is in tension with Congress's deliberate decision to limit the scope of the mechanical licensing collective. Contrary to the MLC and NMPA's position, the Office is not preventing copyright owners from sending their information to a particular vendor; rather, the Office is preventing the MLC from providing its vendor with confidential information in a manner that results in disparate and preferential treatment.

The Office similarly rejects the MLC's proposed language stating that “[n]othing herein shall preclude the party or parties to whom information is confidential from voluntarily transmitting such Confidential Information to a third party with lesser restrictions on use, and nothing herein shall preclude the MLC from assisting in any such voluntary transfer.” ^[171] To the extent this language is suggested to clarify the ability of those outside the MLC to exchange information, the Office finds it unnecessary, and to the extent the language is intended to allow the MLC to facilitate exchange of otherwise confidential information to preferred entities for private use, it would seem to create an end-run around the limitations of the rule.

In the NPRM, the Office noticed a potential alternative to the MLC's proposal. The Office had considered whether to propose language requiring the MLC to offer such information equally to third parties, perhaps restricted to those offering or administering music licensing services, for a reasonable cost, i.e., both the MLC's preferred vendors and others similarly situated in the marketplace.^[172] The Office noted that this approach would have the potential benefit of leveraging the unique nature of the MLC database in other aspects of the music ecosystem, without potentially affecting the competitive landscape in ways unrelated to the section 115 license.^[173] The MLC and NMPA, however, did not respond regarding this proposed alternative.

After careful consideration, the interim rule adopts this aspect of the proposed rule, with the following slight modifications. The Office adjusted the interim rule so that instead of stating the MLC “shall not use any Confidential Information for any purpose other than determining compliance with statutory license requirements, royalty calculation, collection, matching, and distribution, and activities related directly thereto,” it states that the MLC “shall not use any Confidential Information for any purpose other than the collective's authorized functions under 17 U.S.C. 115(d) and activities related directly thereto.” ^[174] Anyone to whom the MLC discloses confidential information as permitted under the regulations shall not use any confidential information for any purpose other than in performing their duties during the ordinary course of their work for the mechanical licensing collective, with an exception for qualified auditors or outside counsel conducting statutorily-permitted audits, or attorneys and other authorized agents of parties to proceedings before federal courts, the Copyright Office, or the Copyright Royalty Judges, or when such disclosure is required by court order or subpoena. For parity, the interim rule adopts similar language with respect to the DLC and its authorized functions under 17 U.S.C. 115(d)(5)(C).^[175]

C. Safeguarding Confidential Information

Both the MLC and DLC proposed having the MLC and DLC implement policies and procedures to prevent unauthorized access and/or use of confidential information, an approach that seems necessary to effectuate the intent of the regulations.^[176] Accordingly, the proposed rule stated that the MLC, DLC, and recipients of confidential information from one of those entities must implement procedures to safeguard against Start Printed Page 9017unauthorized access to or dissemination of confidential information using a reasonable standard of care, but no less than the same degree of security that the recipient uses to protect its own confidential information or similarly sensitive information.^[177] In addition, the proposed rule stated that the MLC and DLC shall each implement and enforce reasonable policies governing the confidentiality of its records.^[178]

The MLC and DLC retained this aspect of the proposed rule in their suggested regulatory text.^[179] CISAC & BIEM maintain that the “reasonable standard of care” requirement is “vague and does not constitute a sufficient commitment.” ^[180] As the “reasonable standard of care” is commonly used in U.S. jurisprudence, and in light of a similar provision governing obligations of SoundExchange, the collective designated to administer the section 114 license, this aspect of the proposed rule is retained without modification.^[181]

The NPRM also sought public comment on whether the regulations should address instances of inadvertent unauthorized disclosure.^[182] The MLC contends that “the circumstances of such inadvertent disclosures, and the consequences of such disclosure are fact-specific” and that it should be afforded flexibility to establish its own policies to “permit the MLC to assess the facts and circumstances giving rise to the inadvertent disclosure and determine the most appropriate way to address and remedy such disclosure.” ^[183] Similarly, the DLC maintains that instances of inadvertent disclosure should “be addressed on a case-by-case basis.” ^[184] In light of these comments, the interim rule does not address inadvertent disclosures.

D. Maintenance of Records

The proposed rule also provided that any written confidentiality agreements relating to the use or disclosure of confidential information must be maintained and stored by the relevant parties for at least the same amount of time that certain digital music providers are required to maintain records of use pursuant to 17 U.S.C. 115(d)(4)(A)(iv). At the time of the NPRM, a separate rulemaking proposed a five-year retention period for such records; the Office subsequently adopted a seven-year period in response to public comments in that proceeding.^[185]

ARM generally supported this aspect of the proposed rule, but suggested an adjustment to require retention for a defined retention period of “five years after disclosures cease to be made pursuant to [the agreements].” ^[186] ARM suggests that any confidentiality agreements “should be retained until some years after disclosures cease to be made pursuant to it (such as when an employment relationship ends or the agreement is replaced by a new agreement).” ^[187] The Office has adopted ARM's suggestion to tie retention requirements of confidentiality agreements to their dates of effectiveness in order to ensure they are retained for an appropriate period of time. The Office has also extended the retention period for two additional years, similar to records requirements imposed on digital music providers. Accordingly, the interim rule states that any written confidentiality agreements relating to the use or disclosure of confidential information must be maintained and stored by the relevant parties until at least seven years after disclosures cease to be made pursuant to them.

E. Confidentiality Designations

The proposed rule did not impose a requirement that confidential information must bear a designation of confidentiality, although the Office noted that the MLC or DLC could presumably impose such a requirement in their own policies.^[188] No commenters responded to this aspect of the proposed rule, and so the interim rule does not impose a designation of confidentiality requirement.

Relatedly, the Office asked in the NPRM whether, in addition to a category of “Confidential Information,” the regulations should provide for a “Highly Confidential Information” category to provide an additional layer of protection for certain documents and information.^[189] Neither the MLC nor DLC believe a heightened category of “highly confidential” information is necessary,^[190] and ARM “does not have strong views” as long as the regulations prohibit MLC board and committee members and companies that employ MLC and DLC board members from accessing confidential information of third-party companies (including recorded music companies).^[191] Given these comments, and (as noted above) because the interim rule precludes the MLC from disclosing sensitive data concerning agreements between sound recording companies and digital music providers to members of the MLC's board of directors or committees or the digital licensee coordinator's board of directors or committees, the interim rule does not include a heightened category of “Highly Confidential Information.”

F. Nondisclosure Agreements

The MLC and DLC disagree as to whether DLC representatives on the MLC's board of directors or committees should be required to sign nondisclosure agreements (“NDAs”) in their personal capacities. The DLC initially suggested that only the DLC as an organization should be bound, and not DLC representatives in their personal capacities or as representatives of their employers.^[192] Instead, the DLC maintained, confidentiality obligations for the MLC and DLC should operate at “an organization-to-organization level,” ^[193] as “some companies prohibit [DLC representatives from] taking on such personal liability for actions taken in the scope of employment.” ^[194] The MLC disagreed, stating that if only the DLC, which lacks assets relatively, is bound by a confidentiality agreement, there would be no recourse against the DLC for breach, and that such a proposal “disincentiv[izes] individuals on the MLC Board and committees from protecting confidential information, as Start Printed Page 9018there will be no penalty for unlawful disclosure.” ^[195]

In the NPRM, the Office was disinclined to require that confidentiality obligations for the MLC and DLC operate at an organization-to-organization level. Instead, the proposed rule stated that the various categories of individuals to receive confidential information do so subject to an appropriate written confidentiality agreement. In response, the MLC “believes that the current Proposed Regulation, which provides that any DLC appointee to the MLC board or committees must sign a confidentiality agreement is the appropriate solution.” ^[196] The MLC maintains that “[i]f the DLC member company would like its employee to serve as an MLC board or committee member, then it can except the employee from such restriction and allow that individual to serve as a DLC appointee (and thus comply with the confidentiality obligations imposed on all board and committee members),” or else “identify an alternate appointee that can participate with full accountability to the MLC and its members.” ^[197] By contrast, the DLC asserts that because it proposes disclosing only MLC Internal Information to MLC and DLC board and committee members (as discussed above), the “[l]ess-sensitive nature of this internal MLC and DLC information diminishes to a substantial degree the rationale for imposing potential personal liability as a condition for board and committee membership.” ^[198] The DLC also notes that it has adopted a confidentiality policy that operates between itself and DLC member companies, which “allows the individual DLC representatives to share information and consult as needed within their companies, without the cumbersome process of requiring each person that is so consulted to first sign a confidentiality agreement with DLC.” ^[199]

The Office recognizes that the DLC would prefer for DLC representatives to be able to easily share MLC Internal Information and consult as needed within their companies, but the Office is mindful that sensitive information regarding the MLC's internal operations needs appropriate protections in place to prevent improper disclosure or use. As noted in the NPRM, binding individuals in their personal capacities provides an avenue of recourse and is a common practice in model protective orders used in the analogous context of preventing confidential information produced through litigation discovery from being improperly disclosed or misused.^[200] Also, the DLC's existing confidentiality policy with its members relates to information that would likely fall under the definition of “DLC Internal Information,” not information relating to the MLC's operations.^[201] Accordingly, the Office again declines the DLC's proposal that confidentiality obligations for the MLC and DLC operate at an organization-to-organization level for both “confidential information” and “MLC Internal Information.” ^[202] The Office does not, however, intend to interfere with the DLC and its members having agreements at an organization-to-organization level to allow sharing of “DLC Internal Information” and consulting as needed regarding such information within their organization companies without having each individual signing an agreement in his or her personal capacity.

In response to commenters' concern about the MLC requiring additionally restrictive NDAs for its board and committee members,^[203] the proposed rule prevented the MLC and DLC from imposing additional restrictions relating to the use or disclosure of confidential information, beyond those imposed by the Office's regulations, as a condition for participation on a board or committee.^[204] The proposed rule stated that “[t]he use of confidentiality agreements by the MLC and DLC shall be subject to the other provisions” of the Office's confidentiality regulations, and “shall not permit broader use or disclosure of Confidential Information than permitted under” the regulations.^[205] The proposed rule also stated that the MLC and DLC “may not impose additional restrictions relating to the use or disclosure of Confidential Information, beyond those imposed by this provision, as a condition for participation on a board or committee.”^[206]

The MLC objected to these provisions, contending that “[l]imiting the scope of the `appropriate written confidentiality agreements' to agreements that provide for no more and no less than what is already specified in the regulation renders meaningless the added qualifier that the use or disclosure shall be made subject to an `appropriate written confidentiality agreement.' ” ^[207] The MLC suggests that additional appropriate restrictions not addressed in the regulations—such as “provisions requiring that adequate notice be given prior to any disclosure in response to a subpoena or other legal process” or “provid[ing] for the return or destruction of confidential materials on demand or at the end of a service period”—would be “imprudent” not to include in confidentiality agreements, but “could be considered additional restrictions on use” beyond those in the Office's regulations.^[208] By contrast, FMC supports the proposed rule, expressing its “appreciat[ion] that the Office has made it clear that the MLC cannot create additional restrictions on the use and disclosure of confidential information beyond the Office's regulations,” which “will help writers and composers have an extra degree of confidence about the healthy internal functioning of the MLC and know that board and committee members who have concerns would feel free to speak freely to impacted copyright owners and writers.” ^[209]

The Office acknowledges that its regulations may not address all appropriate use restrictions and that confidentiality agreements may need to fill in some gaps (e.g., provisions regarding notice before disclosures in response to subpoenas or other legal processes, the return or destruction of confidential materials). The Office is Start Printed Page 9019mindful, however, that the statute directs the Office to promulgate regulations to prevent the improper use or disclosure of confidential information and that any confidentiality agreements should not be inconsistent with the Office's regulations.^[210] To accommodate the MLC's concerns in the context of the regulatory framework, the interim rule is adjusted so that rather than requiring confidentiality agreements to be in compliance with the Office's regulations, they must not be inconsistent with them. This should afford the MLC and DLC sufficient flexibility, while ensuring that any resulting confidentiality agreements do not circumvent the spirit of the Office's regulations. Also, because the interim rule prohibits the MLC and DLC from sharing “confidential information” with members of their boards of directors and committees, the interim rule removes the provision prohibiting the MLC and DLC from imposing additional restrictions relating to the use or disclosure of confidential information, beyond those imposed by the regulations, as a condition for participation on a board or committee. Should the Office learn of the MLC or DLC inappropriately conditioning disclosure of MLC Internal Information or DLC Internal Information, the Office will consider whether further adjustment is necessary.

List of Subjects in 37 CFR Part 210

• Copyright
• Phonorecords
• Recordings

Interim Regulations

For the reasons set forth in the preamble, the Copyright Office amends 37 CFR part 210 as follows:

PART 210—COMPULSORY LICENSE FOR MAKING AND DISTRIBUTING PHYSICAL AND DIGITAL PHONORECORDS OF NONDRAMATIC MUSICAL WORKS

1. The authority citation for part 210 continues to read as follows:

Authority: 17 U.S.C. 115, 702.

Subpart B—Blanket Compulsory License for Digital Uses, Mechanical Licensing Collective, and Digital Licensee Coordinator

2. Add § 210.34 to read as follows:

Footnotes