Skip to content

Legal

Privacy statement

This statement explains which personal data WhoisCheckr processes, why that happens and what rights users have under the GDPR and related Dutch privacy rules.

Last updated: April 14, 2026

1. Controller

WhoisCheckr is a product of Aivion Studios.

Privacy and account questions can be sent to mail@aivionstudios.nl.

2. Data we process

  • Name, email address, password hash and timestamps showing when legal documents were accepted or acknowledged during registration.
  • Account-linked domain searches, saved domains, report actions such as PDF exports and mailed reports, and notification preferences.
  • Technical and security data such as session information, IP address data used for rate limiting, and browser-related request metadata needed to keep the service secure.
  • Email-related data when password resets, account mail or saved-domain alerts are triggered.

3. Why we use this data

  • To create and secure user accounts and let users sign in, reset passwords and manage settings.
  • To run domain lookups, store account history, maintain saved-domain watchlists and deliver report actions requested by the user.
  • To prevent abuse of the public search flow through rate limiting and related operational security measures.
  • To keep limited aggregated search trend data for product insight after account-linked records are separated or removed.

4. Legal bases

  • Performance of a contract for account creation, sign-in, domain search history, saved domains and user-requested reports.
  • Legitimate interest for fraud prevention, service security, abuse monitoring and basic operational reporting.
  • Legal obligations where data must be retained or disclosed under applicable law.
  • If non-essential cookies or marketing tools are added later, WhoisCheckr will request consent before using them where the law requires that.

5. Retention

  • Account profile data is kept while the account exists.
  • Account-linked searches, saved domains, report actions and notification preferences remain available until the user removes them or deletes the account.
  • When an account is deleted, the account-linked search history, saved domains, report actions and notification preferences are permanently removed. Search trend aggregates are corrected to remove those account-linked searches.
  • Security and rate-limit data is kept only as long as reasonably needed for abuse prevention, incident review and operational security.
  • Session data is kept only for the active session period or until the user signs out, subject to framework-level cleanup.

6. Sharing and processors

WhoisCheckr queries official RDAP or related registry sources to determine domain status. That means the searched domain name may be sent to those external sources as part of the lookup itself.

Infrastructure providers, mail providers and other technical processors may process limited personal data strictly for hosting, email delivery, backups and service security.

WhoisCheckr does not currently use advertising cookies or third-party marketing trackers on the public frontend.

7. Your rights

Under the GDPR, users may have the right to access, rectify, erase, restrict or object to certain processing, and may also have the right to data portability in some cases.

Account deletion is available directly inside the account settings area. Other privacy requests can be sent to mail@aivionstudios.nl.

If a user believes their request is not handled correctly, they may also file a complaint with the Dutch Data Protection Authority.