News archive

.ee Domain Regulation changes that are entering into force on 25 May 2018 due to the GDPR

After 25 of May the contact information of a registrant who is a natural person can no longer be publicly disclosed in the WHOIS domain search tool (WHOIS domain search is a database, in which the information about domain name and the registrant of the domain name is publicly available). EIF will develop a special contact form that gives a possibility to the interested parties to contact the registrant without further disclosure of his or her personal data.

We note that if the domain registrant is a legal entity, then the data relating to it (name and e-mail address) will be publicly disclosed in the WHOIS after the GDPR has entered into force. Since a legal person does not have a private life, it is not necessary to protect its integrity.

According to the GDPR, EIF is the controller and the registrars (domain registration service providers) are the processors of the personal data of the registrants. In addition, Domain Regulation amendments in question, specify the responsibilities of the registrar regarding the processing of the registrant's personal data (e.g. what information should be provided to the registrant, what should be specified in the service contract, the registrar's obligation to forward breach notices to the EIF, etc.). We also want to specify the scope of the registrar's responsibility if it uses third parties to resell the domain or wishes to transfer a registrant’s personal data to a foreign country located outside the European Economic Area.

Domain Regulation and Registrar Contract full texts that are entering into force on 25 May 2018 can be found accordingly HERE and HERE in the files menue.