Domain Checker
Run our free security scan below to see your score in under 30 seconds, If you'd like help improving your results, you can:
- Review the personalised recommendations in your report:
- Speak to our team for clear, practical guidance
- Or book a free 15-minute email security consultation
No jargon. No Pressure. Just Clearer, Safer Email.
Email is the most common way cybercriminals impersonate legitimate businesses. Without the right protections in place, attackers can send convincing fake emails that look like they come from you, damaging your reputation, undermining trust, and putting your customers at risk.
Our free Domain Security Checker lets you see how well your email domain is protected in under 30 seconds. Simply enter your domain to get a clear security score, helping you understand your current risk level and whether action is needed.
If you’re wondering what the results actually mean, you’re not alone. Domain security data can be confusing, so we’ve broken everything down below in plain English. You’ll see exactly what the checker looks for, why it matters, and how it affects your business. And if your score highlights any gaps, or you’d rather talk it through, our team is on hand to help you understand the results and take the next steps toward stronger, more secure email and better cyber protection.
The Three Pillars of Email Security
Pillar 1
IMPERSONATION RATING SPF
Sender Policy Framework
In Plain English:
Can scammers send emails that look
like they’re coming from you?
What SPF actually does: think of SPF like a guest list at an exclusive club. You define which mail servers are allowed to send email on behalf of your domain. When an email claims to be from you, the receiving mail system checks one simple thing: is this server on the list?
If it isn’t, the email is treated as suspicious or blocked.
Why It Matters...
Without SPF in place, anyone can send emails that appear to come from your domain. This is one of the most common ways scammers operate, and it’s often used to:
- Send fake invoices to your customers
- Impersonate you, your directors, or finance team
- Spread malware using your company name
- Trick people into revealing passwords or bank details
Your SPF score explained: When you run our free Domain Security Checker, you’ll receive an Impersonation Rating. Here’s what it means:
5/5 Low Risk: You're fully protected. Fake emails are blocked.
Good protection: but consider strengthening settings.
0-2/5 High Risk: Anyone can impersonate you. Fix this immediately.
What to do next: If your score isn’t a 5/5, the checker shows exactly where the gaps are. You can review the results yourself or speak to our team, and we’ll help you put the right SPF protections in place to stop impersonation and protect your reputation.
Pillar 2
PRIVACY RATING DMARC
Domain-based Message Authentication, Reporting, and Conformance
In Plain English:
Are your emails being monitored
and enforced for security?
What DMARC actually does: DMARC is like having a security guard who doesn’t just check IDs but also keeps a log of every suspicious attempt. It works alongside SPF to tell email providers exactly what to do if an email fails security checks, whether that’s to allow it, quarantine it, or block it completely. Just as importantly, DMARC sends reports back to you, showing who is trying to send emails using your domain.
Why It Matters...
DMARC gives you visibility and control over your email security:
- You receive reports showing who is attempting to send emails as you
- Fake emails can be blocked before they reach recipients
- Email providers like Gmail and Outlook trust your domain more
- Your legitimate emails are less likely to end up in spam
Real-world example: Without DMARC, you may never know scammers are impersonating your domain. With DMARC enabled, you receive daily reports showing every attempt, and you can enforce a policy that automatically blocks fake emails.
Your DMARC score explained: When you run the free Domain Security Checker, your Privacy Rating shows how protected you are:
5/5 Low Risk: Fake emails are blocked and you’re receiving reports. Perfect.
4/5 Medium Risk: Monitoring is in place, but threats aren’t fully blocked. Upgrading to a “reject” policy is recommended.
0-2/5 High Risk: No visibility or enforcement. You’re flying blind.
What to do next: If your score isn’t 5/5, the checker highlights exactly what’s missing. You can review the results yourself or let our team help you move safely to full protection.
Pillar 3
BRAND PROTECTION RATING DKIM/BIMI
Domain Keys Identified Mail and Brand Indicators for Message Identification
In Plain English:
Can recipients trust your emails are really
from you, and do they see your logo?
What DKIM actually does: DKIM is like a wax seal on a letter. It proves an email hasn’t been tampered with and confirms it genuinely came from your domain. Every message is digitally signed so receiving systems can verify it hasn’t been altered.
What BIMI actually does: BIMI allows your company logo to appear next to your emails in inboxes like Gmail and Yahoo. It only works once DKIM and DMARC are correctly set up, making it the visual proof that your emails are legitimate, similar to a verified badge for email.
Why It Matters...
Strong brand authentication:
- Makes your emails look professional and trustworthy
- Shows recipients your logo, reinforcing confidence
- Prevents scammers from using your branding
- Improves open rates and engagement
- Builds long-term trust with customers
Real world example: When a customer receives your email and sees your logo in their inbox, they’re far more likely to trust and open it. Fake emails can’t display this branding, making scams easier to spot.
5/5 Low Risk: Full authentication and logo display. Your brand is protected.
4/5 Low Risk: Authentication is in place. Consider adding BIMI for maximum trust.
3/5 Medium Risk: Basic protection, but no visual branding.
0-2/5 High Risk: Minimal protection. Your brand is vulnerable.
What to do next: If your branding score is below 5/5, the checker shows what’s missing. We can help you authenticate your domain properly and, where possible, get your logo appearing in inboxes.
The Bottom Line
Why it Matters
Without These Protections:
- Scammers can send emails pretending to be you
- Legitimate emails may end up in spam
- You have no visibility into domain abuse
- Customers can’t easily tell real emails from fake ones
- Your reputation is at risk
With These Protections in Place:
- Fake emails are blocked before reaching anyone
- Your emails are trusted and reach the inbox
- You receive reports on unauthorised activity
- Your logo appears next to emails (with BIMI)
- Customers trust your communications
FAQs
Do I really need all three?
Yes. Think of it like securing your house:
- SPF is the lock on the door
- DMARC is the alarm system that alerts you to break-ins
- DKIM is the camera that proves who’s genuine
You wouldn’t rely on just one.
Will this stop all phishing?
It stops criminals from sending fake emails from your domain. It won’t stop lookalike domains, but it’s a crucial first step.
How long does it take to fix issues?
Most SPF and DMARC fixes can be done within hours. DKIM may take a day or two depending on your provider. BIMI takes longer due to verification requirements.
What if I score poorly?
Don’t panic. Many businesses haven’t set this up yet. The important thing is fixing it now, and we can help you do that quickly.
Domain Checker
Run our free domain security checker above to see your score in under 30 seconds, If you'd like help improving your results:
Review the recommendations in your report:
- Speak to our team for clear, practical guidance
- Or book a free 15-minute email security consultation
No jargon. No Pressure. Just Clearer, Safer Email.