WHOIS is the public registry of who owns each domain. Every domain has a registrar (the company that manages its registration), a registration date, an expiry date, and a set of nameservers — all surfaceable in a few seconds.
What you can see has shrunk a lot since GDPR. The registrar, dates, and nameservers stay public. The owner's name and email are usually replaced with a privacy service — that's a good thing for personal sites and a slight friction for legitimate research.
Use this tool to check when your own domain expires (a surprising number of outages come from forgotten renewals), to verify a site is who it claims to be, or to look up the registrar before you transfer a domain in or out.
What WHOIS actually tells you
Public registration metadata about a domain — who manages it, when it was registered, when it expires, and where its DNS lives.
WHOIS is one of the oldest internet protocols, dating back to 1982. It runs over TCP port 43 and is essentially a public database of domain registrations. Every time someone registers a domain, the registrar publishes a set of fields about it: the registration date, expiry date, the registrar's name, the nameservers handling DNS, and (for non-private registrations) the registrant's contact details.
This information is public on purpose. The internet's accountability model partly depends on being able to look up who runs a domain — for legal disputes, for security research, for journalism, and for simple "who owns this name I want to buy?" questions. Modern WHOIS tools just format the raw protocol response into something readable.
Why most owners are now hidden
GDPR made the old behaviour illegal in Europe, and the industry adapted everywhere.
Before 2018, registering a domain meant publishing your name, email, phone number, and home address in a globally searchable database. The General Data Protection Regulation (GDPR) made that incompatible with European law, and registrars couldn't easily separate European registrants from non-European ones. The industry response was to enable WHOIS privacy by default for almost everyone.
What you see today depends on the registrar and the TLD. Most .com and .net domains return the privacy service's contact details rather than the registrant's. Many country-code TLDs (.de, .fr, .uk) hide ownership entirely. A few jurisdictions still expose owner details for business or commercial registrations.
The trade-off: privacy is genuinely good for personal site owners but adds friction for legitimate research — security investigators, IP-rights claims, journalism. Specialised tools exist that can sometimes piece together ownership across multiple data sources, but they aren't free or instant.
The fields that matter
For most lookups: registrar, expiry, and nameservers. Everything else is supporting context.
Registrar tells you which company manages the registration. Common ones include GoDaddy, Namecheap, Cloudflare, Porkbun, BigRock, OVH, and Google Domains (now Squarespace). The registrar is who you contact to transfer or renew the domain.
Creation date is when the domain was first registered. Useful for verifying a "new" site isn't actually decades old, or vice versa. Expiry date is when the current registration runs out. Domains in their final 30-day window often face downtime if renewal fails.
Nameservers tell you which DNS provider actually serves the domain's records. A domain pointing at Cloudflare nameservers, for example, is using Cloudflare for DNS — even though the registration might be at a totally different registrar. This split is normal and lets people use the best registrar and the best DNS independently.
When to actually use a WHOIS lookup
Five common cases: own-domain renewal check, registrar transfer, security verification, journalism, and competitor research.
If you run a website, check your own domain's WHOIS once a quarter. Outages from expired registrations are entirely preventable and remarkably common. Auto-renewal exists but occasionally fails — usually because of expired credit cards.
If you're transferring a domain, the registrar info is what you need before initiating the transfer at the new registrar. If a security alert says a phishing site is using a particular registrar, WHOIS is how you confirm it. Journalists chasing the provenance of a misinformation site often start with WHOIS and follow the trail to whatever public records still exist.
Competitor research is more limited than it used to be — the privacy veil hides most identity-level info now. But you can still see when competitors registered domains, their nameserver patterns, and whether they're using the same provider as you.
WHOIS vs DNS — what's the difference?
WHOIS tells you who registered the domain. DNS tells you where to route traffic for it.
A domain has two separate concepts attached to it. The registration says "this name exists and belongs to this person at this registrar." That's WHOIS. The resolution says "when someone visits this name, send them to this IP address." That's DNS.
You can change one without the other. Switching DNS providers (Cloudflare to AWS Route 53, for example) doesn't change WHOIS — only the nameservers field updates. Transferring the domain to a new registrar updates WHOIS but doesn't affect DNS at all. Most outages people blame on "WHOIS" are actually DNS problems, and vice versa. Our DNS lookup tool handles the resolution side.
Frequently asked questions
What is a WHOIS lookup?
WHOIS is a public protocol that returns who registered a domain and when. Every registrar is required to publish basic record fields — registrar name, registration date, expiry date, nameservers, and (in some cases) contact emails. WHOIS lookup tools just query these public registries and format the answer.
Why are owner names often hidden in WHOIS?
Most registrars now offer free WHOIS privacy by default, especially after GDPR took effect in Europe in 2018. The real registrant's name and email are replaced with a privacy service. The registrar info, registration dates, and nameservers are still public, which is enough for most legitimate uses.
Can I see who really owns a domain?
Sometimes. If WHOIS privacy is off, you'll see the real owner. If it's on, you'll see the privacy provider's details. There are paid commercial tools that can sometimes pierce the privacy veil by correlating across data sources, but for normal lookups, what WHOIS returns is what's public.
What does the expiry date tell me?
When the current registration ends. If the owner doesn't renew, the domain goes through a grace period of about 30 to 45 days, then enters auction or becomes available for anyone to register. Watching expiry dates is how domain investors find drop opportunities, and how site operators avoid losing their own name.
Can I find a domain's IP address with WHOIS?
No — that's what DNS is for. WHOIS shows the nameservers (which providers handle the DNS) but not the actual IP addresses behind the site. For that, use a DNS lookup tool.
Is WHOIS the same as DNS?
No. WHOIS tells you who manages the domain's registration. DNS tells you where to route traffic for that domain. They're separate systems. A domain has both at once: a registrar that holds the name (WHOIS), and a nameserver that resolves it to an IP (DNS).
Can WHOIS leak my home address?
Historically yes — if you registered a domain without privacy, your full contact details were publicly searchable. Today, almost every registrar enables WHOIS privacy by default. If you registered a domain years ago, check whether privacy is on and turn it on if not.
Why is WHOIS for some TLDs different?
Each TLD's registry sets the rules. .com and .net follow ICANN's standard. Many country-code TLDs (.de, .fr, .uk, .in) have their own rules — some hide contact info by default, some require more verification, some don't expose all fields at all. The tool above handles all standard TLDs and tells you when a field isn't published.