Premium domain protection 

Ensure secure company-wide communication through the implementation of DMARC. You can relax knowing that your email is 100% safe from malicious activity and that your brand's reputation stays intact.

What is DMARC?

DMARC is an email authentication system that protects your brand's domain name from phishing, spoofing and other cyberattacks. DMARC builds on the e-mail verification technologies SPF and DKIM. Implementing a DMARC policy for your domain allows you to gain insights into how your domain is used. A DMARC security policy will help recipients to understand which e-mails to trust and which ones to reject.

Excedo will perform an advanced security test to check if your domain is DMARC protected. The security check will tell you if your domain is protected against phishing, spoofing and abuse by analysing SPFDMARC and DKIM for the domain. You will get a quick insight into whether you need take any action or if the domain name is protected.

The security test is free of charge, and you will receive an answer to your e-mail within 5 minutes.

Please enter company name.
Invalid email address.
Please type your first name.
Please type your lastname.
Please enter your domain name without prefix.


The Sender Policy Framework (SPF) allows you to specify in your domain name settings (DNS) which email servers can send email on your behalf. Receiving email servers use SPF to verify that incoming messages that appear to come from your domain have been sent from authorized servers. The SPF specification has a limit on the number of maximum 10 DNS lookups to be considered as valid.


DKIM (Domain Keys Identified Mail) is an email authentication technology that helps recipients verify that an email has been sent and authorized by domain owners. Emails are sent and signed with a private key. The receiving system validates emails by looking up the DKIM signature using the public key that is published on the DNS, in order to verify that the message has not changed since it was sent.


DMARC (Domain-based Message Authentication, Reporting and Conformance) provides insights into your email flow: which sources send emails on your behalf and whether they are sent in a technically correct manner, as well your exposure to spoofing, phishing and other email related attacks. A domain's DMARC policy informs recipients how to handle emails that fail the DMARC check.

Why use DMARC?

Email is the easiest way to use your brand for fraud. By using your domain name and impersonating your brand, emails with harmful Information and content that doesn't originate from you can be sent to your employees and customers. In addition to compromising security in your organization, your brand reputation will be seriously damaged.

DMARC makes your email safe and secure. By deploying DMARC, you increase the deliverability of all legitimate emails, while stopping fraudulent emails sent from your domain. DMARC gives you insights and control over your outgoing emails and helps you maintain a high security standard and protection of your brand. 

Without DMARC, you are unprotected against attacks such as, CEO fraud emails, fake invoices, login credential theft, sale of illegal goods and the spreading of ransomware. As attacks performed by cybercriminals around the world are increasing, your exposure to the security risks by not having DMARC deployed for your domain increases dramatically.

What we´ve done

Excedo helps organizations to deploy a strict DMARC policy for their domains, which enables our customers to take control over who is allowed to use their domains for outbound email, ensuring that the emails are sent technically correct while preventing abuse. The figures below summarise the projects that we have completed and the chart indicates a selection of industries in which we have helped customers to successfully deploy DMARC.

DMARC protected domains
Correctly sent emails
Spoofed emails that are blocked

What we offer

Deploying DMARC for an organization is a multi-step process that is often associated with several challenges. Excedo can help you with an effective deployment based on our process and project methodology that lets you choose the level of assistance that you need. We work either directly with you for all phases of the deployment in order to reach a protective DMARC policy with no disruption on your email flow during the project, or we can guide you and provide tools for you to be able to work with the deployment yourself.

Our delivery model is project based and covers three main phases from start to finish as well as ongoing services to stay DMARC compliant.


DMARC - Analysis

The first step to a successful DMARC deployment. Excedo performs an analysis and health check for your domains. No email flow is affected, and minimal effort is required on your end. 

We enable DMARC with a monitoring policy for your domains, analyze all DMARC reports and data and determine the status.

Based on our findings, we deliver a report with recommendations for potential issues and the actions required to be able to deploy DMARC successfully.

DMARC - Deployment

The DMARC deployment project is based on the status from the analysis. During deployment, we manage the project and coordinate all actions to make all email system DMARC compatible with SPF and DKIM. 

We monitor and analyze DMARC reports as issues are resolved and correct email flows are confirmed. The end goal is to achieve a protective DMARC policy (p=reject) for all domains.

DMARC - Compliance management

Following a successful deployment of DMARC for the domain, we will help you prepare for the future to manage unexpected problems and planned changes in our ongoing compliance management. 

DMARC requires systematic monitoring even after achieving p=reject for its domains. 

The ongoing compliance management can be outsourced partly or fully to Excedo.

Interested in how we can assist you with your DMARC deployment?

Please type your first name.
Please type your lastname.
Please specify your position in the company.
Invalid email address.
Please enter phone number.
Please enter company name.
Please select a date when we should contact you.


Invalid Input

Challegens of DMARC Deployment

Many email sending systems to keep track of

Since email is the central way of communicating nowadays, it is easy to forget that a domain name probably has many different technical services that are used to send outbound emails. These services are usually a combination of personal infrastructure managed by an organization, as well as services that are delivered externally. 

The more services that are used for sending email on behalf of a domain name, the more parts need to be ensured to be setup correctly. As well on the sending server as in the domain name setting. 

The latter is performed in DNS regarding SPF and DKIM. When working with DMARC deployment, the domain owner receives feedback through DMARC reports for all emails that have been sent from the domain. It is not always easy based on the reports to understand what is legitimate and the more systems used the greater the complexity.

Corporate Address

Jan Stenbecks torg 17
164 40 KISTA
Phone: +46-8-50161200


Subscribe Excedo Newsletter

Get the latest news from Excedo right to your email.

Select your language