Privacy Policy

Account Information

When you create an account or sign in using Google OAuth, we collect:

• Name and email address - provided via Google OAuth
• Profile picture - from your Google account (optional)
• Account preferences - notification settings

WHOIS Query Data

When you perform WHOIS lookups, we collect:

• Domain names queried - the domains you look up
• Query timestamp - when the lookup was performed
• Your IP address - for rate limiting and security

Cookies and Local Storage

We use cookies and browser local storage to:

• Maintain your login session
• Remember your preferences
• Store recent lookups for convenience

We use the information we collect to:

• Perform WHOIS lookups - query registries on your behalf
• Display domain information - registration dates, nameservers, etc.
• Provide lookup history - for Pro users to review past queries
• Manage your account - authentication, preferences, subscriptions
• Improve our service - analyze usage patterns, optimize performance
• Process payments - manage subscriptions through Stripe

Your data is stored securely using Amazon Web Services (AWS) infrastructure:

• Encryption in transit - All data transmitted using TLS/HTTPS
• Encryption at rest - Data stored with AES-256 encryption
• Access controls - Strict authentication and authorization
• US-based servers - Data stored in AWS US-East-1 region

We use trusted third-party services to operate WHOIS Wolf:

Stripe (Payment Processing)

Stripe processes all payments securely. We never store your credit card information. Stripe's privacy policy: stripe.com/privacy

Google OAuth (Authentication)

We use Google for secure sign-in. Google's privacy policy: policies.google.com/privacy

Web3Forms (Contact Forms)

Contact form submissions are processed through Web3Forms. Their privacy policy: web3forms.com/privacy

WHOIS Registries

We query public WHOIS servers operated by domain registries. These are standard protocol queries.

You have the following rights regarding your personal data, regardless of your location:

• Access - Request a copy of your personal data
• Correction - Request correction of inaccurate data
• Deletion - Request deletion of your account and data
• Export - Request your data in a portable format
• Restriction - Request limitation of processing your data
• Objection - Object to certain processing of your data
• Withdraw Consent - Withdraw consent for data processing at any time

How to Exercise Your Rights

Submit a data rights request using our secure form:

Submit a Data Rights Request

You may also contact us at privacy@whoiswolf.app.

Response Timeframes

• GDPR (EU/EEA/UK): We will respond within 30 days
• CCPA (California): We will respond within 45 days
• All other regions: We will respond within 30 days

We may need to verify your identity before processing your request. We will never charge a fee for standard data rights requests.

Regional Privacy Rights

EU/EEA & UK (GDPR / UK GDPR): We process your data based on consent, legitimate interests, and legal obligations. You may lodge a complaint with your local data protection authority.

California (CCPA/CPRA): You may request to know what personal information is collected, request deletion, and opt-out of sale. We do not sell personal information.

Mexico (LFPDPPP): You have ARCO rights (Access, Rectification, Cancellation, Opposition). We respond within 20 business days.

Spain (LOPDGDD): You have rights under Spain's data protection law. You may lodge a complaint with the AEPD.

WHOIS Wolf is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date
• Sending an email notification for material changes

If you have questions about this Privacy Policy or our data practices, please contact us: