Esdiel said:
Are companies like HD, or registrars, able to get data on the number of whois searches for a domain? If the whois search is done by third party?
If you're using command line whois tool to check a .CA domain name, no. Registrars cant watch that unless someone at CIRA is selling the data. I could almost guarantee though that CIRA employees have in the past, or will in the future, have harvested that data for themselves. Its too rich of a resource to resist. Obviously I'm not saying that CIRA condones that, but if you're a tech nerd and you have that data, you're gonna look.
If you're using the CIRA website to check a .CA, then same deal, you're safe from a registrar's prying eyes.
If you use any other site, then that site owner can and will certainly be logging queries for data harvesting. So always always assume that people are watching. Those little lookup boxes at your favourite registrar, well, don't trust them. Even if they don't run out and register your domain to sell it to you for a big markup (as some had been accused of doing before), they're still collecting data, looking for trends, keywords, etc, etc..
For .COM - things are different. A whois lookup can be directed through Verisign's servers, but it contains just a stub record, basically just the domain, dates, registrar, the registrar whois server and nameservers. Not owner information. A whois lookup can further be directed to the registrar's website. They control the registrant record and may or may not report that data depending on privacy policies for each registrar.
As for me, I only use the command line tool for whois so I know it goes straight to CIRA. For non .CA domains, it depends on how your software is configured. It may query just the registry stub record, or it may additionally report the records from the registrar too (which those are obviously logged by the registrar).
Furthermore, since the data is unencrypted, your internet provider could be logging those queries too. You could use a VPN, but in theory, even they could be watching too.
And possibly more interesting than whois is lookups are DNS lookups.
Security is the crux of dns over https.
https://www.cloudflare.com/en-ca/learning/dns/dns-over-tls/
Having access to a large internet provider's nameserver logs would be interesting indeed.
But in all honesty, its pretty paranoid to worry that much about any of it. I doubt any one of us are important enough to really have anyone snooping our whois or dns lookups. If you've got billions in crypto though, then a) what are you doing bother with .CA domains? and b) be paranoid and use vpns and secure dns!!