Email Trust Status

c

A Governance Record of Your Email Security Posture

See how your email domain presents itself to the outside world

Email Trust Status generates a structured Governance Record of your domain’s publicly visible email authentication controls, including its DMARC enforcement level.

It translates DNS records into a clear Email Enforcement Classification suitable for leadership, insurer, or compliance review.

Independent visibility helps leadership confirm that critical email security controls are operating as intended.

Get Your Email Trust Status

  • Governance Record generated instantly
  • One-time purchase – no subscription required
  • Board-ready PDF format
  • No system access required – domain name only
$12.10
Generate My Governance Record

Most organisations have never formally documented their email enforcement level.

Why This Is Important

Email remains one of the most common channels for fraud, phishing, and business email compromise.

If email enforcement is weak or absent, attackers can impersonate your organisation using your own domain.

DMARC tells receiving mail servers how to handle suspicious messages that claim to come from your domain:

  • Let through
  • Let through but monitor (p=none)
  • Treat with caution (p=quarantine)
  • Block outright (p=reject)

This enforcement signal is publicly visible to any external mail system.

The Governance Record captures this visibility, helping you clearly understand and record your domain’s email enforcement level for internal oversight, insurer review, or compliance records.

What The Governance Record Includes

  • Formal Governance Record (PDF)
  • Clear Email Enforcement Classification
  • Summary of visible email authentication indicators
  • Governance interpretation guidance
  • Defined validity period and scope limitations

What Is Assessed

The record reviews publicly visible DNS-based email authentication indicators for your domain.

  • DMARC policy state (reject, quarantine, none, or not present)
  • Sender Policy Framework (SPF) record
  • DomainKeys Identified Mail (DKIM) selector presence
  • DMARC subdomain policy
  • Mail Exchange (MX) record

The record provides a point-in-time view of the domain’s externally visible email authentication configuration.

What Is Not Assessed

  • Internal email security systems
  • Security monitoring or incident response capabilities
  • Phishing simulation or email delivery testing
  • Security audit or certification
  • Continuous monitoring