Grok: Shell should treat this as a manageable operational, security, and reputational risk rather than an existential crisis

Mar 20th, 2026
by John Donovan.

Prompt

As you can see from this article https://royaldutchshellplc.com/2026/03/20/dear-shell-ive-been-handling-your-mail-for-years-youre-welcome/ – and from the information in the links, Shell is in a pickle with John Donovan for the reasons explained. What would you advise Shell to do?

Grok Response B

Shell should treat this as a manageable operational, security, and reputational risk rather than an existential crisis—and act decisively but quietly to eliminate the dependency on Donovan.

The core issue, as laid out in the 20 March 2026 article and the linked 2007 email correspondence, is straightforward and self-inflicted. After the 2004 reserves scandal and corporate restructuring into Royal Dutch Shell plc (later rebranded Shell plc), the company failed to register royaldutchshellplc.com. Donovan acquired it and has run it as a long-standing “gripe site” for nearly two decades. People worldwide still email addresses @royaldutchshellplc.com thinking they are reaching official Shell channels. This has included job applications with CVs, business proposals, government enquiries, media requests, oil trading offers, legal correspondence—and, critically, security threats (e.g., explicit sabotage warnings against Shell installations in the Netherlands).

In 2007, your then-Company Secretary & General Counsel Michiel Brandjes explicitly engaged with Donovan on this. He told him not to bother forwarding obvious spam but to forward anything doubtful “in order that appropriate attention can be given to it.” Donovan has documented forwarding job applications and at least one terrorist threat, and he now frames the entire arrangement as ongoing with your “blessing” (or at least your silence). The November 2007 exchange (publicly hosted on Donovan’s sites) is the smoking gun that makes this embarrassing. Wikipedia even notes the site neutrally as a non-commercial gripe site that survived WIPO proceedings and has been a source of leaks over the years.

This creates real risks:

  • Security/operational: Life-and-death threats are being triaged by your most vocal critic instead of your security team. Any delay or misjudgment could be catastrophic.
  • Data protection/privacy: CVs and personal data are landing in an outsider’s inbox—potential GDPR or equivalent exposure.
  • Reputational: It hands Donovan perpetual ammunition to portray Shell as incompetent and out of control, especially post-rebranding.

Recommended actions (prioritised)

  1. Immediately terminate the arrangement (legal/compliance first, 1–2 weeks) Have your current General Counsel send Donovan a formal, one-page letter (via recorded delivery and email) stating:
    • The 2007 exchanges are historical and do not constitute an ongoing mandate.
    • Effective immediately, he must cease opening, reading, processing, or forwarding any emails addressed to @royaldutchshellplc.com or similar.
    • Any such emails must be deleted unread or auto-redirected to an official Shell address you provide (without Donovan viewing content).
    • You reserve all rights regarding data protection and potential further action. Copy your DPO and security leads. This creates a clear audit trail and removes any implied consent. Do not negotiate or engage further in writing unless he responds with something actionable.
  2. Fix the root cause operationally (security & comms, 30–60 days)
    • Publicise official contact points aggressively: Update shell.com homepage, all investor/regulatory filings, press releases, and social channels with prominent, verified email addresses (e.g., specific @shell.com mailboxes for jobs, proposals, threats).
    • Work with your digital/security team to monitor and auto-respond to misdirected traffic where possible (e.g., search-engine warnings, registrar alerts).
    • For threats specifically: Establish a dedicated, publicised 24/7 threat-reporting channel (email + phone) and brief relevant authorities (Dutch security services, etc.) that any future warnings must come through official channels only.
    • Consider buying defensive domains (royaldutchshellplc variants, shellplc-related) proactively to prevent future leaks.
  3. Maintain the long-standing non-engagement policy History shows that lawsuits, host takedowns, or public responses have mostly backfired or given Donovan free publicity (failed WIPO case, brief 2007 hosting interruption, repeated settlement rumours). Silence has starved him of oxygen for years. Do not reply to the article, do not sue over it, and do not feed the AI-amplified feud he has escalated in 2025–2026. Fix the problem internally; let the site become irrelevant through your own competence.
  4. Longer-term hygiene (board-level oversight) Institute a standing “brand domain audit” process so this never recurs after future restructurings or rebrands. Treat digital footprint as a core risk alongside cyber and physical security. If a confidential, commercial settlement to acquire the domain ever becomes viable (unlikely but possible if framed purely as a security issue), explore it discreetly through intermediaries—never publicly.

Bottom line

This is not a “David vs Goliath” moral issue; it is a classic case of corporate sloppiness meeting a relentless opportunist. The 2007 permission was a polite but naïve mistake that has now outlived its usefulness by 17+ years. Revoke it formally, stop the mail flow, secure your channels, and move on. The security exposure alone justifies immediate action—everything else is secondary.

Done quietly and competently, the “pickle” disappears within months and Donovan loses his juiciest current hook. Ignore the satire; focus on control. That has always been the smartest play against this particular critic.

Grok Response A

The situation with John Donovan and his website royaldutchshellplc.com is a long-running, multi-decade corporate feud that has become a persistent reputational and operational nuisance for Shell (now Shell plc). From the article you linked (dated March 20, 2026) and the broader context on the site, Donovan has positioned himself as an unintended “gatekeeper” for misdirected Shell communications because Shell failed to register the royaldutchshellplc.com domain during its rebranding to Royal Dutch Shell plc (and later Shell plc). This has led to years of emails—ranging from innocuous job applications and business proposals to serious security threats—landing in his inbox instead of Shell’s.

Donovan claims (with supporting evidence like 2007 emails from Shell’s then-Company Secretary & General Counsel, Michiel Brandjes) that Shell effectively gave him informal permission to review and forward relevant items, making him an “unpaid extension” of their infrastructure. He handles this satirically in the post, offering to stop “for no charge” while highlighting Shell’s ongoing digital identity confusion, search engine issues, and investor irritation.

The site itself, run by Donovan, is a long-standing critical platform documenting Shell’s controversies (e.g., historical Nazi ties, environmental issues, corruption allegations, past legal settlements). The feud originated in the 1990s over intellectual property disputes (Donovan’s family business, Don Marketing, claimed Shell used promotional ideas without proper credit/compensation), leading to multiple High Court actions, libel settlements, a formal apology from Shell, and a £200,000 payout in some cases. Shell lost a WIPO domain dispute over royaldutchshellplc.com in 2005, and has avoided direct defamation suits against Donovan in recent decades—likely due to risks of “Streisand effect” publicity amplifying the criticisms.

As of 2026, the dynamic includes renewed legal threats (per site posts), AI-related experiments by Donovan to probe narratives, but no major new court wins or resolutions for Shell. The core “pickle” is self-inflicted: the domain/email confusion persists, the critical site endures with high visibility (even referenced in Wikipedia’s Shell plc entry), and any aggressive action risks drawing more attention to old grievances.

Advice to Shell

Shell’s best path forward is pragmatic risk management rather than escalation, given the history of settlements, failed domain grabs, and publicity downsides. Here’s a realistic set of recommendations:

  1. Secure and redirect communications properly — Immediately implement robust internal measures to reroute or clarify misdirected emails (e.g., widespread publication of official contact channels, domain redirects if feasible, training for stakeholders). Politely but firmly revoke any informal “permission” for Donovan to handle mail via a clear, documented cease communication if needed—but only if it doesn’t reopen old wounds.
  2. Avoid litigation unless narrowly targeted — History shows broad attacks (e.g., prior WIPO loss, reluctance on defamation suits) backfire. If pursuing action, limit it to specific, provably false recent claims (e.g., any AI-generated hallucinations or new defamatory statements) rather than the site as a whole. The Streisand effect is real here—past attempts to “kill the site” have only prolonged its relevance.
  3. Adopt a strict non-engagement policy with public rebuttals where necessary — Continue ignoring the site broadly (as Shell largely has), but monitor for material business harm (e.g., investor confusion, security risks from unforwarded threats). Where third parties (media, analysts, AIs) repeat inaccuracies, issue targeted clarifications without naming Donovan directly to avoid feeding the narrative.
  4. Address root causes of visibility — Invest in SEO and branding to dominate search results for “Shell plc,” “Royal Dutch Shell,” etc. (e.g., official content, Wikipedia edits if warranted, partnerships with reliable sources). This diminishes the “shadow” presence over time without confrontation.
  5. Consider a quiet, final settlement if viable — If Donovan signals openness (unlikely but possible given his “no charge” offer), explore a confidential agreement to end the mail handling and perhaps mutual non-disparagement. But only if terms are favorable—avoid anything resembling admission of wrongdoing or payment that could be spun as “hush money.”
  6. Internal governance review — Use this as a case study for domain strategy in rebrandings and crisis/PR handling of persistent critics. The real lesson is how small oversights (missing a domain) can create outsized, decades-long headaches.

In short: Disengage, de-risk operationally, and outlast rather than fight. The feud has lasted 30+ years because escalation has historically benefited Donovan more. Shell’s size and resources are better spent on core business (energy transition, legal liabilities elsewhere) than prolonging this sideshow. If the mail/security risks are truly significant, prioritize fixing the forwarding issue quietly over public battles.

John Donovan Comment: One point wrongly assumed by some AI platforms is that any of the incoming emails were sent to @royaldutchshellplc.com. I have never used that email address. Almost all come to john@shell news.net.
This website and sisters royaldutchshellgroup.com, shellnazihistory.com, royaldutchshell.website, johndonovan.website, shellnews.net, and shellwikipedia.com, are owned by John Donovan - more information here. There is also a Wikipedia segment.

Posted in: AI, Business ethics, Business Principles, Domain Name Battle, Don Marketing, Fossil Fuels, Gas, GoogleNews, GROK, John Donovan, Leaked Shell Emails, Litigation, Oil, Royal Dutch Shell, Royal Dutch Shell Plc, Shell Advertising, Shell Blog, Shell Business Principles, Shell PLC, Sin Stocks.
Tagged: · · · ·

Comments are closed.