10 Nov
2021
10 Nov
'21
4:24 p.m.
On Wed, Nov 10, 2021 at 05:05:53PM +0200, Taras Heichenko <tasic@academ.kiev.ua> wrote a message of 60 lines which said:
I am not sure that I understand how a resolver can follow GDPR. WHOIS, RDAP – ok, these services really may disclose some sensitive information. How does a resolver can break GDPR?
You should read RFC 7626. Executive summary: the fact that you request www.aa.org is a sensitive information (and may be personal data, depending on the way it is requested). The data is not sensitive (the DNS is public), not the fact that you request it.