Cloudflare Registrar just doxxed me via WHOIS on .ai TLD
I recently registered a domain with the .ai TLD through Cloudflare. Despite their claim that "WHOIS information is redacted by default for your privacy," my personal contact information was publicly exposed via WHOIS shortly after registration.
Even Cloudflare's own RDAP lookup tool (https://rdap.cloudflareregistrar.com/ui/index.html) reports that the data is redacted. However, multiple third-party WHOIS servers returned my unredacted information, and it has since been scraped and stored by historical WHOIS trackers.
I’ve saved evidence of the exposure, but there appears to be no way to retroactively remove this data from those sources. I'm currently on Cloudflare's free plan—do I really need to upgrade to a paid plan just to get this escalated or acknowledged by their support team?
Any advice or similar experiences would be appreciated.
Even Cloudflare's own RDAP lookup tool (https://rdap.cloudflareregistrar.com/ui/index.html) reports that the data is redacted. However, multiple third-party WHOIS servers returned my unredacted information, and it has since been scraped and stored by historical WHOIS trackers.
I’ve saved evidence of the exposure, but there appears to be no way to retroactively remove this data from those sources. I'm currently on Cloudflare's free plan—do I really need to upgrade to a paid plan just to get this escalated or acknowledged by their support team?
Any advice or similar experiences would be appreciated.
