What we analyze
We verify DNS email authentication records that protect your domain against identity spoofing. Without these protections, attackers can send emails that appear to come from your domain.
Verification points
SPF (Sender Policy Framework)
Defines which servers are authorized to send email on behalf of your domain.
DKIM (DomainKeys)
Digital signature that verifies the email has not been altered in transit.
DMARC
Policy that indicates what to do with emails that fail SPF/DKIM checks.
Reject policy
Verification of whether the DMARC policy is configured to reject fraudulent emails.
Why is it important?
Without correctly configured email authentication, your organization is at high risk of identity theft. Attackers can ignore your defenses to launch phishing campaigns against your employees or customers, damaging your reputation and putting sensitive data at risk.
Impact if it fails
- Phishing attacks using your domain
- Reputation damage from fraudulent emails
- Business Email Compromise (BEC)
- Loss of customer confidence
Applicable Legal Framework
Article 5 (Integrity and Confidentiality) and Article 32 of GDPR are relevant. Protecting the authenticity of communications is key to preventing data breaches through phishing and identity theft.
Potential Sanctions
| Company Type | Indicative Fine |
|---|---|
| Micro-enterprise | 5,000 - 40,000 € |
| SME | 40,000 - 300,000 € |
| Large Enterprise | Up to 10M € or 2% turnover |