This article covers:
What is GDPR?
The General Data Protection Regulation (GDPR) is a law from the European Union focused on protecting the data and privacy of all EU citizens and residents. It regulates how companies collect, store, and process personal data within the EU.
At Rebel, GDPR compliance is a top priority. We’re committed to keeping your personal data private, secure, and protected — no matter where you live.
What is WHOIS?
WHOIS is a service required by ICANN (the global organization that manages domain names) that provides basic information about a registered domain. This information may include:
The domain’s availability status
The name of the registrar where the domain is registered
- The domain's registration date.
- The domain's expiry date.
- The DNS information for the domain name (nameservers and IP addresses).
The domain owner’s contact details (if Privacy Protection isn’t enabled)
- Street address
- Phone number
- E-mail address
- Name of the Owner/Registrant, Administrative, Technical and Billing contact for the domain.
How is WHOIS data accessed?
WHOIS information is usually accessed through dedicated web portals or an automated system called Port 43 Access. However, Port 43 doesn’t have built-in protections, making it vulnerable to automated bulk data collection — which has led to issues like spam.
With GDPR in place, access to WHOIS data will be restricted to protect privacy, though the information will not be completely removed.
Do we still need WHOIS Privacy Protection?
Yes, Privacy Protection is still highly recommended.
While GDPR introduces new safeguards to limit how WHOIS data can be accessed, registrant data will still be available to certain parties with a legitimate interest. Privacy Protection adds another layer of security by ensuring that your personal information remains hidden, even from those who have gated access to WHOIS.
When Privacy Protection is enabled, your personal details are replaced with proxy contact information. Third parties who need to contact you can still do so via an anonymized email address provided by the Privacy service — an option that isn’t included under standard GDPR protections.
How will I be able to contact a Registrant whose data is not published in WHOIS?
If a registrant’s personal data is not displayed due to GDPR or Privacy Protection, you can still contact them through a secure web form.
When you perform a domain search through rebel.com/messagedelivery, you’ll see an option to contact the domain registrant directly.
By filling out this form, your message will be sent to the Registrant, Admin, or Technical Contact of the domain without revealing their personal information.
Comments
0 comments
Please sign in to leave a comment.