10 Nov
2021
10 Nov
'21
4:32 p.m.
On 10 Nov 2021, at 17:24, Stephane Bortzmeyer <bortzmeyer@nic.fr> wrote:
On Wed, Nov 10, 2021 at 05:05:53PM +0200, Taras Heichenko <tasic@academ.kiev.ua> wrote a message of 60 lines which said:
I am not sure that I understand how a resolver can follow GDPR. WHOIS, RDAP – ok, these services really may disclose some sensitive information. How does a resolver can break GDPR?
You should read RFC 7626. Executive summary: the fact that you request www.aa.org is a sensitive information (and may be personal data, depending on the way it is requested). The data is not sensitive (the DNS is public), not the fact that you request it.
Ah, I see thank you.
-- Taras Heichenko tasic@academ.kiev.ua