Domains are nonmaterial goods. When sold, the only transaction taking place is transfer of domain rights from one user to another. Barring any form of copyright or trademark violation, virtually any domain name can be bought or sold. Generic domain names, such as car.com or computer.com, are not legally protected and can therefore theoretically be reserved by anyone.
If you already have a web host, obtain from them the names of their primary and secondary nameservers. Don't worry if you don't understand what these things mean. Just save the information somewhere. The information can usually be obtained from their FAQs or other documentation on their site, usually under a category like "domain name" or "DNS" or "domain name transfer" and the like. If you can't find it, email them. You'll need the information to point your domain name to your website after you buy your domain. Having said that, if you don't have a web host yet, don't worry. Just read on.
In order to register any domain, you must provide certain personal information that you may not wish to be publically searchable in the Whois database. Signing up for WhoisGuard is a great way to keep your registration data private. WhoisGuard acts as a "shield" for your searchable information, displaying the address, phone number, and email of the domain registrar (Namecheap, e.g.) instead of your own. Keep in mind that WhoisGuard is an optional security add-on that must be renewed separately when you renew your domain.
Many registrars reserve the right to revoke your domain name for specific reasons, typically if you use the domain for illegal purposes or purposes deemed unacceptable (such as spamming). Many contracts contain a clause letting the registrar delete your domain name for no apparent reason. The implication, of course, is that the domain name is the registrar's, not yours.