After the GDPR, the CCPA: same impact on Whois records?
In line with the General Data Protection Regulation (GDPR), which entered into force on May 25, 2018, the California Consumer Privacy Act (CCPA) came into force on January 1, 2020. Both include similar provisions, so much so that the CCPA could have the effect of redacting a large number of Whois files, which remained intact after the passage of the GDPR.
Worry is all the more legitimate than the Internet Corporation for Assigned Names and Numbers (ICANN), some registries and several domain name registrars are subject to California law. In any event, the CCPA applies to the personal data of individuals domiciled in California. It is in this context that Godaddy (headquartered in Arizona) would prepare mute Whois records.
As a reminder, on February 26, 2020, Congressman Bob Latta introduced a bill to counter the effects of the GDPR on Whois databases (iptwins.com, 2020-03-18).