What you need to know about the GDPR

The European data protection authorities have expressed concern over the unlimited publication of personal data of domain name registrants in the WHOIS. Therefore, they passed the General Data Protection Regulation (GDPR) in order to ensure WHOIS output compliancy. Starting May 25th, 2018 the following changes will be implemented to WHOIS data for gTLD (generic Top-Level Domain) domains:

For Existing Domain Names:

    • For all existing domain names, if either of the Registrant, Admin, Tech and/or Billing contacts is identified as being from the EU, the WHOIS output will be masked for that domain name with placeholder details in place of the users’ personal information (this service will be referred to as “GDPR WHOIS Protection”).
    • All domain names that have Whois  Privacy enabled (which is a separate service from GDPR WHOIS Protection), will continue to show the Whois Privacy Protection contact details in the WHOIS output. In addition Whois Privacy Protection provides the following services and functionality which are not available with GDPR WHOIS Protection:
      • WHOIS Privacy Protection enables the registrant to get emails like domain sale inquiries if needed from the website http://privacyprotect.org/ and
      • WHOIS Privacy Protection allows the registrant to receive emails from a web form on the privacyprotect.org website.

For New Domain Registrations, Renewals, Transfers:

    • All domain registrations and transfers will use the details from the customer contact created during the purchase flow or all the 4 contacts: Admin, Billing, Technical and Registrant contact. 
      • The customer can log in to our control panel and change the default contact  or edit any of the 4 contacts
      • If any of these contacts created / selected at the time of domain registration are from within the EU region, GDPR WHOIS Protection will be enabled for the Domain name by default during the purchase process. GDPR WHOIS Protection will work exactly as explained above
    • However, they still have the choice of layering Privacy Protection over GDPR WHOIS protection in order to receive emails like sale notices.
    • WHOIS data for EU customers will always be masked regardless of whether or not Privacy Protection is enabled

 

What is the GDPR?

The GDPR sets out new rules for how all European residents' data must be handled and replaces the 1995 EU Data Protection Directive. The GDPR strengthens the rights that individuals have regarding personal data relating to them and seeks to unify data protection laws across Europe, regardless of where that data is processed. A regulation such as the GDPR is a binding act, which must be followed in its entirety throughout the EU.

 

Who does GDPR apply to?

GDPR compliance isn't just for European companies. It applies to businesses of all sizes, regardless of whether you have 1 or 10,000 employees, regardless of where you or your company is based - if you offer products and services to customers located within Europe, then the GDPR will apply to you.

 

What is Nuagerie doing for GDPR?

Nuagerie is committed to providing a product that enables you to comply with the GDPR requirements for your business. We've been hard at work preparing for the GDPR for some time. While consulting our legal advisors, we are working on a number of changes to our services that are designed to help you meet your GDPR compliance requirements.
 

What should you be doing?

If you haven't already done so, you should start your compliance efforts now.

While Nuagerie enables you to collect and store information, it's important to note that you as the site owner are the data controller. If your site can collect data from EU citizens, including those in the UK, then we recommend that you review your data privacy and security practices and begin researching your responsibilities.

Every business is different and that may affect what you need to do to comply with GDPR.. We encourage you to work with legal and other professional counsel to determine precisely how the GDPR might apply to you and your business.

 

Where can I find out more?

Below are some links to more information:

 

  • 1 Users Found This Useful
Was this answer helpful?

Also Read

CloudLinux Terms of Service and Privacy Policy

If you would like to read about CloudLinux's terms of use, visit their...

Cookie Policy

Privacy Policy We value the privacy and security of the information that you share with us....

cPanel Legal Notices

To learn more about cPanel's Terms of Use and privacy policies, visit their site...

Interworx End User License Agreement (EULA)

To learn more about the terms of use for InterWorx, visit their site...

DirectAdmin Refund, Privacy & Delivery Policies

To learn more about DirectAdmin's Terms of Use policy - such as their Refund, Privacy, and...