Whois is one of the most important methods for retrieving information about domain registrations. Regardless of who owns a domain, anyone can perform a Whois lookup.
The Whois database stores information about the ownership of a domain. All domain registries keep records of the domains registered with them. This is comparable to real estate, which is registered with the relevant authority.
Why Was the Whois Database Created?
Whois is a public database managed by the Internet Corporation for Assigned Names and Numbers (ICANN). It is described as a “…free, publicly accessible directory containing the technical and contact information of domain name registrants.”
Originally, the database was established as a directory for the technical and administrative contacts of domains. The goal was to promote greater transparency and communication on the internet. After all, it is not always clear where information online comes from or who is behind a website. With the rise of fake news, it is more important than ever to find out where information comes from.
Therefore, Whois contributes to the democratization of the internet. From businesses and public authorities to individual users, anyone can access the Whois database. This gives every person the opportunity to find out who is behind a domain or website.
In addition, the Whois query enables better business and negotiation opportunities. For example, if a company wants to launch a website and discovers that the desired domain is already taken, it can use the Whois database to find the contact details of the domain owner. This creates the possibility to negotiate directly with the responsible parties.
What Information Is Stored in the Whois Database?
When registering a domain, the applicant must provide their contact details. If incorrect information is submitted during the registration process, there is a risk of losing the domain. ICANN states: “If a domain name registrant knowingly provides false information, fails to update the information within seven days of a change, or does not respond within 15 days to a request to verify the accuracy, the domain name may be suspended or cancelled.”
During the domain registration process, the following details must be provided:
- Name
- Address
- Phone number
- Email address
In addition, information about the registrar as well as administrative and technical contacts is also stored. These contacts are needed in the event of technical issues with the domain or the associated website.
The Whois Lookup
The Whois lookup allows third parties to search for ownership details of a registered domain. This can be done using various protocols, including the Whois protocol itself. Today, many registrars, registries, and even ICANN offer user-friendly Whois lookup tools. You can find the INWX lookup here.
There are several reasons and incentives to check a domain and its associated contact information in the Whois database:
- Individuals or companies check domain availability, expiration dates, and ownership details
- Registrars verify domain names during transfer processes
- Authorities investigate domains in the context of criminal activities
- Third parties require administrative contact information due to technical issues with the domain or website
Whois Privacy and Data Protection
People who do not mind sharing their data or want to skip the fee for private registration do not get data protection. In such cases, the domain registrar publishes the registrant’s personal information in the Whois database. This includes the name, address, phone number, and email address, as well as the domain’s expiration date, IP address, and the website’s hostname.
However, this significantly increases the risk of becoming a target for hacking or spam attacks. To mitigate this, many registrars now offer a form of domain privacy protection, commonly referred to as Whois Privacy.
In this case, the registrar acts as a public intermediary. This means that the Whois lookup displays the registrar’s contact details instead of those of the actual domain holder. As a result, the registrant’s personal data remains hidden.
The General Data Protection Regulation (GDPR) has led to most domain extensions hiding contact details. For example, the German registry DENIC does collect and store personal data, but this information is always protected and can only be accessed by the actual domain holder.
However, certain domain extensions, such as .ASIA or .COOP, do not allow for domain privacy, meaning the information can be searched and displayed at any time.
At the same time, ICANN has required that domain registrars must offer a way to contact the domain owner.
This can be done in two ways: either by providing a dedicated contact form for each domain, which is linked within the Whois entry, or by using email aliases. This allows third parties to contact the owner even if the actual email address is anonymized.
There are, however, some exceptions where information may be disclosed despite Whois privacy protections. These include requests from authorities, law enforcement investigations, or legal actions such as asset seizures. Additionally, in cases of trademark or copyright infringement, the registrar may disclose the contact details of the domain holder.
Criticism of Whois and Its Successor
For over 35 years, Whois was the primary method for retrieving information about domain registrations and IP address details. When it was introduced, the protocol fulfilled its purpose through simplicity. However, as the internet evolved into a vast and complex ecosystem, Whois could no longer meet all requirements. As a result, the complete transparency that once defined Whois turned from a benefit into a serious issue regarding privacy and data protection.
To address these concerns, the Registration Data Access Protocol (RDAP) was developed. It is made to provide a safer, more reliable, and accurate way to access registration data. This aligns with current data protection rules. It is expected that RDAP will eventually replace Whois, as it resolves many of its inefficiencies.
You can find more information about RDAP, the “new Whois”, in our article here.
