Procedure for the disclosure of domain name contact data

Legal framework

Since the implementation of the General Data Protection Regulation (GDPR), WHOIS domain name holder information has no longer been displayed in our WHOIS.

However, as a registrar accredited by the Internet Corporation for Assigned Names and Numbers (ICANN) regulatory authority, OVHcloud is contractually mandated to allow third parties to request access to non-public registration data. This obligation is set out in the “Temporary Specification for gTLD Registration Data”, adopted on 17 May 2018 by the ICANN Board of Directors via resolutions 2018.05.17.01 and 2018.05.17.09.

In practice, third parties can therefore request the disclosure of contact data for a domain name, provided that they can justify a legitimate interest.

How do I submit a request to disclose domain name contact data?

Disclosure requests must be sent to:

E-mail_image_domain-disputes

 

Any requests received through other channels will not be processed by our teams.

In accordance with the minimisation principle, only the data fields specifically requested may be disclosed.

Furthermore, only gTLDs are affected by disclosure requests. The ccTLD rules will vary depending on the national registry concerned.

OVHcloud will analyse your request as soon as possible, based on the grounds for disclosure presented in supporting documents communicated in English or French.

OVHcloud alone reserves the right to evaluate the content of the request, and act on it accordingly. In order to assess the relevance of the request, OVHcloud will take non-exhaustive account of: the domain name itself, any potential use made of it, the content it could point to, and the number of disclosure requests.

Commitments from the requestor

If OVHcloud accepts the disclosure request, it is important to note that the data sent to the requestor is personal data. For this reason, it will be sent in strict confidence. As a result, the requestor must agree not to use this data for any reasons other than those specified in the request, and not to disclose the data to third parties.