Privacy Policy
Last updated: 2026-02-19
This Privacy Policy explains how Domaintico (operated by Licentico LTD) collects, uses, shares, and protects personal data when you use our website and services (domain search, registration, renewal, transfer, and management), as well as related add-ons such as WHOIS privacy, email services, SSL, and hosting (where offered).
1. Company and contact details
For the purposes of applicable data protection laws, Licentico LTD is the controller of personal data processed through Domaintico unless stated otherwise.
- Legal name: Licentico LTD
- Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
- Email: legal@domaintico.com
2. Scope
This Privacy Policy applies to personal data we process when you:
- visit our website or customer portal,
- create an account,
- search for, register, renew, transfer, or manage a domain name,
- purchase or use add-on services (e.g., WHOIS privacy, SSL, email),
- contact support or otherwise communicate with us.
3. Personal data we collect
- Account information: name, email address, password (hashed), authentication logs, and profile details you provide.
- Domain registration data (registration contacts): registrant/admin/tech/billing contact details required to register or transfer domains (which may include name, organization, address, phone, and email). Some registries require accurate data and may require updates.
- Payment and billing information: billing details, invoices, and payment status. Payments are processed by third parties (e.g., Stripe). We do not store full card numbers.
- Support and communications: messages you send us and information you provide when requesting support.
- Technical data: IP address, device/browser data, pages/actions, and security logs used for authentication, abuse prevention, fraud detection, and service reliability.
- Cookies and similar technologies: see our Cookie Policy for details, including cookie preferences.
4. Purposes of processing and legal bases
Where the GDPR/UK GDPR (or similar laws) apply, we rely on the legal bases below. The exact basis depends on the context and service.
| Purpose | Examples of personal data | Legal basis (examples) |
|---|---|---|
| Create and manage your account | Account details, login/session data | Performance of a contract; legitimate interests (service administration) |
| Provide domain services (search, registration, renewal, transfer, DNS/nameserver updates) | Account data, domain name, registration contact data, transaction records | Performance of a contract; legal obligation (registry/ICANN requirements where applicable) |
| WHOIS/RDAP, registration data handling, and compliance checks | Registration contacts, verification logs, communications | Legal obligation; performance of a contract; legitimate interests (maintaining accurate records, preventing abuse) |
| Payments, invoicing, tax and accounting | Billing details, invoices, payment status | Performance of a contract; legal obligation |
| Customer support and requests | Support messages, contact details, account and order context | Performance of a contract; legitimate interests (support quality and dispute handling) |
| Security, fraud prevention, abuse detection, and service integrity | IP address, device/browser data, audit logs | Legitimate interests; legal obligation (where applicable) |
| Service communications | Email, account and order status | Performance of a contract; legitimate interests (keeping you informed about your services) |
| Marketing communications (if you opt in) | Email, preferences | Consent; legitimate interests may apply for limited direct marketing where permitted by law |
| Analytics and product improvement (where enabled) | Usage data, cookie identifiers | Consent (for non-essential analytics cookies); legitimate interests may apply for strictly necessary measurement |
| Legal compliance, dispute resolution, and enforcement | Account data, transaction records, communications | Legal obligation; legitimate interests (protecting rights and preventing misuse) |
Consent: where we rely on consent (e.g., non-essential cookies/optional marketing), you can withdraw consent at any time. Withdrawing consent does not affect processing already performed before withdrawal.
5. WHOIS/RDAP and domain registration data
Domain registrations and transfers require us to collect and submit registration contact data to the relevant registrar/registry and, in some cases, other parties involved in domain administration.
- Publication: depending on the TLD, applicable registry rules, and ICANN requirements, some registration data may be made available through public WHOIS/RDAP services or otherwise disclosed to third parties (for example, via legal process or dispute procedures).
- Redaction and privacy services: some TLDs support redaction of personal data in public WHOIS/RDAP, and/or offer WHOIS privacy/proxy services (sometimes called “ID Protect” or “WHOIS privacy”). If available and you enable it, the public listing may show alternative contact details; however, the underlying registration data may still be shared with registries, dispute providers, ICANN, and law enforcement as permitted or required.
- Accuracy: you are responsible for keeping registration contact data accurate and up to date. Failure to maintain accurate data may lead to suspension, cancellation, or transfer restrictions as required by applicable policies.
6. How we share personal data
We do not sell your personal data. We may share personal data with:
- Domain registrar / registry providers: partners used to register and manage domains.
- Payment processors: e.g., Stripe to process payments and help prevent fraud.
- Service providers: infrastructure/hosting, email delivery, customer support tooling, security services, and similar vendors acting on our instructions.
- Legal and compliance: when required by law, court order, ICANN/registry procedures, or to protect our rights, users, and the public.
Where required, we implement contracts and safeguards with processors (for example, data processing agreements) and restrict access to data to those who need it for the purposes described.
7. International data transfers and safeguards
Your personal data may be processed in countries other than your own depending on our providers and infrastructure. Where international transfers are subject to transfer restrictions (for example, under GDPR/UK GDPR), we use appropriate safeguards such as:
- transfers to countries with an applicable adequacy decision (where available),
- standard contractual clauses or similar contractual protections with vendors,
- risk assessments and supplementary technical/organizational measures (for example, encryption and access controls) where appropriate.
8. Data retention
We retain personal data only as long as necessary for the purposes described above, including providing services, complying with legal obligations, resolving disputes, and enforcing agreements. Retention may vary based on the TLD, registry rules, and applicable law.
| Category | Typical retention |
|---|---|
| Account profile and authentication data | For as long as your account is active; then typically up to 24 months after closure unless a longer period is required by law or for disputes/fraud prevention. |
| Domain registration and transaction records | For the duration of the registration/contract and typically several years thereafter as required for compliance, disputes, and audit purposes (often up to 7 years). |
| Billing, invoices, and tax/accounting records | Typically up to 7 years (or the period required by applicable accounting/tax law). |
| Support communications | Typically up to 24 months after ticket closure unless needed longer for dispute handling. |
| Security logs and abuse/fraud signals | Typically up to 12 months, unless needed longer for investigations or compliance. |
| Cookie preferences (consent records) | Typically 30 days (then refreshed when you update preferences). |
9. Your rights and how to exercise them
Depending on your location and applicable law, you may have the right to:
- Access your personal data and receive a copy.
- Rectify inaccurate or incomplete personal data.
- Erase personal data (in certain circumstances).
- Restrict processing (in certain circumstances).
- Object to processing based on legitimate interests (in certain circumstances).
- Data portability (where processing is based on consent or contract and carried out by automated means).
- Withdraw consent at any time where processing is based on consent.
- Lodge a complaint with a supervisory authority/data protection regulator.
How to exercise your rights: send your request to legal@domaintico.com (or support@domaintico.com) and include enough information for us to verify your identity and locate your account (for example, your account email and relevant domain/order). We may request additional information to verify identity and prevent unauthorized access. We aim to respond within the timeframes required by law.
Important: certain domain registration data may need to be retained or disclosed to comply with ICANN/registry requirements, dispute procedures, or legal obligations. This may limit how we can fulfill some requests in specific cases.
10. Security
We use reasonable administrative, technical, and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission or storage is 100% secure.
11. Children
Our services are not directed to children, and we do not knowingly collect personal data from children without appropriate authorization.
12. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The “Last updated” date above indicates the most recent revision.
13. Contact
If you have questions about this Privacy Policy or our privacy practices, contact us at:
- Email: legal@domaintico.com (or support@domaintico.com)
- Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom