As far as IP Addresses go (and domains too), currently GDPR recognizes the rights of individuals, not companies, which means that a company can be in the whois query, since it does not have the right to privacy. My understanding is that this will only affect natural persons.
On 14 Apr 2018, at 20:19, Matt Harris <matt@netfire.net> wrote:
On Sat, Apr 14, 2018 at 12:14 PM, Rich Kulawiec <rsk@gsp.org> wrote:
The only people served by restriction on WHOIS availability are abusers and attackers, and the entities (e.g., registrars) who profit from them.
Not that whois data for domain names has been particularly useful for the past decade anyhow since most TLDs and registrars either provide for free, or sell as an addon, "private" registration via some "proxy corporation" or whatever. Domain name whois for most TLDs has not been the sort of accountability measure that ICANN seems to think it is for a very long time, at least in practice.
I'd be much more concerned about RIPE's whois data for AS and IP address