WHOIS: As shown by the board of the Internet Corporation for Assigned Names and NumbersICANN) failed to get an exception from GDPR for the WHOIS tool. WHOIS is a huge database of who owns domain names.
Although ICANN claims to have filed a lawsuit (last week) requiring data collection from domain registrars, GDPR is now in place in the European Union, and until the case is judged, all companies still collecting WHOIS data are illegal.
So under the new General Data Protection Regulation (GDPR), today we received an email from a domain registrar in Greece that explicitly states:
… No personal or contact information of a domain name owner will appear in the WHOIS search results. This change makes the use of ID Protect unnecessary. Thus, the ID Protect service is going to be phased out.
In the next time, auto-renewal of the ID Protect service will be disabled. No action is required from you, ID protect will be deactivated upon expiration and your data will continue to be automatically protected.
Let us be aware that WHOIS data collection practices were one of the gray areas of the law. The GDPR requires organizations to collect only as much data as is needed for a specific business purpose, and no more. So data that mentions the administrative and technical manager of an email is now prohibited from being freely published on the internet.
Thus, the services of concealment of these data by registrars are no longer meaningful. Please be reminded that anonymity services were additionally charged.
Due to uncertainty about what is going to happen, some European DNS registrars have decided not to collect WHOIS information anymore.