brand_match

Brand conflict and trademark risk detection workflow. Call when a user wants to check whether a domain name carries brand-related risks before registering or purchasing it. When to use: user asks 'is this domain safe to register?', wants to assess UDRP risk before purchase, or needs trademark conflict checking as a follow-up from name_advisor or analyze. Do NOT use for general technical analysis (use analyze), domain name brainstorming (use name_advisor), or DNS/registration checks only (use dns, whois). Workflow: 1. Extract the prefix from the domain (e.g., nicefloor.com → nicefloor). If the prefix contains a well-known brand name (google, apple, amazon, microsoft, etc.), immediately warn the user about high UDRP risk before proceeding. Ask the user about their intent: are they assessing risk before registration, or holding the domain and looking for potential buyers? This determines the framing of the analysis. Do NOT call any tools before the user responds. 2. After the user responds, gather data in parallel: - web_search '[prefix] company' to discover existing commercial use — note founding year, business scale, industry, and whether the company actively uses this keyword as a brand. - tld_check to see how many TLDs have this prefix registered. - If tld_check shows high registration, whois the .com/.net/.org variants to check if the same registrar holds multiple TLDs (brand protection signal) or different registrars (popular keyword signal). Use web_search to verify if they resolve to the same website. 3. Run trademark database checks across all four major databases. Primary method is Claude for Chrome — open each database, search for [prefix], and read results directly. If Claude for Chrome is not available, fall back to providing pre-filled links as described below. Present findings from each database inline as they come in — do not wait for all four before reporting. USPTO: - Chrome: navigate to https://search.uspto.gov/search?query=[prefix]&affiliate=web-sdmg-uspto.gov and read results directly. - Fallback (no Chrome): USPTO supports URL query parameters — provide this pre-filled link for the user to open: https://search.uspto.gov/search?query=[prefix]&affiliate=web-sdmg-uspto.gov - Extract: number of trademark hits, registrant names, goods/services classes, live vs dead status. EUIPO: - Chrome: navigate to https://euipo.europa.eu/eSearch/, locate the search input, type [prefix], submit, read results. - Fallback (no Chrome): EUIPO uses a JavaScript interface — URL parameters cannot pre-fill search. Provide the entry link and instruct the user: 'Please open https://euipo.europa.eu/eSearch/ and search for [prefix].' - Extract: EU trademark hits, registrant names, classes, status. WIPO: - Chrome: navigate to https://branddb.wipo.int/en/quicksearch, locate the search input, type [prefix], submit, read results. - Fallback (no Chrome): provide entry link and instruct: 'Please open https://branddb.wipo.int/en/quicksearch and search for [prefix].' - Extract: international trademark hits, registrant names, designating countries, status. TMview: - Chrome: navigate to https://www.tmdn.org/tmview/#/quicksearch, locate the search input, type [prefix], submit, read results. - Fallback (no Chrome): provide entry link and instruct: 'Please open https://www.tmdn.org/tmview/#/quicksearch and search for [prefix].' - Extract: aggregate hits across all participating offices, notable registrants. If a database is unreachable or returns an error, note it in the report and continue — do not halt the workflow. 4. Synthesize all findings into a report, framed according to the user's stated intent (risk-focused or opportunity-focused). The report must include: - Discovered entities: websites/companies using this keyword, their business, scale, founding year. - TLD distribution: cross-TLD registration pattern and registrar correlation. - Trademark database summary: hits per database, live marks found, relevant classes. If no hits found in a database, state that clearly — absence of results does not guarantee the mark is clear. - Risk assessment based on the three UDRP principles (confusing similarity, rights or legitimate interests, bad faith). For generic word combinations, note that risk is typically lower. Factor in registration age. Do NOT make legal conclusions. - Disclaimer: 'For reference only, does not constitute legal advice. Trademark searches are not exhaustive — consult a qualified IP attorney before making registration or investment decisions.' 5. After presenting the report, ask the user what they want to do next. Tailor follow-up based on their response: - Wants to proceed with registration → suggest available or bulk_available. - Wants deeper analysis → suggest analyze. - Wants alternatives → suggest plan_b or name_advisor. - Wants to find buyers → use web_search findings to identify potential buyers, suggest valuation_cma. - Wants monitoring → suggest set_monitor. Key principles: present facts, not legal judgments. Do NOT claim a trademark exists or does not exist based on partial results. Claude for Chrome reads all four databases directly — the user should never need to search manually when Chrome is available. When Chrome is unavailable, always provide actionable fallback links with clear search instructions. Always end with the legal disclaimer. Disclose affiliate links.. It is categorised as a Destructive tool in the DomainKits MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.

Register the DomainKits MCP server in PolicyLayer and add a rule for brand_match: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches DomainKits. Nothing to install.

brand_match is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.

Yes. Add a rate_limit block to the brand_match rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

Set action: deny in the PolicyLayer policy for brand_match. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

brand_match is provided by the DomainKits MCP server (https://api.domainkits.com/v1/mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.