Monitor a sending domain
We'll watch this domain's deliverability posture and email you only when something changes — DKIM rotated, DMARC downgraded, a record vanished, SPF over the lookup limit. Read-only; we never change anything.
| Sender | Volume | DMARC pass |
|---|---|---|
| 209.85.220.41 Google Workspace | 942 | 100% |
| 168.245.60.10 an ESP you use | 120 | 75% |
| 45.155.205.230 Unknown sender | 59 | 0% |
We email a confirmation link first (double opt-in). We store the domain, your email, posture history, and (if enabled) DMARC report data for 29 days — see Privacy.
Deliverability monitoring FAQ
What does monitoring watch?
Your domain's deliverability posture — SPF, DKIM, DMARC and MTA-STS. We check daily and email you only when something changes: DKIM rotated, DMARC downgraded, a record vanished, or SPF gone over the 10-lookup limit. It's strictly read-only.
What happens after I sign up?
We email a confirmation link — click it and monitoring starts; your first scan runs within 24 hours. If you also turned on DMARC report reading, there's one quick extra step: add the short verification TXT record we show you (proving you own the domain), then point your domain's DMARC 'rua' tag at the reporting address we give you. After that, reports start flowing into your dashboard automatically.
What will I actually see?
A dashboard for each domain. Up top, a posture summary with a gap score and a plain-English list of any changes — or 'no changes detected yet,' which is the good outcome. If DMARC reports are on, you also get a Senders table: every IP sending as you, who it is (Google Workspace, your ESP, or an unknown/likely-spoofing source), how many messages receivers saw, and what share passed DMARC — plus a recommended action for anything that isn't aligned.
When will I actually hear from you?
Only when something changes. There's no daily digest and no noise — a quiet inbox means your posture is holding. After the first scan we email you the moment something shifts, with what changed and what it means.
What's the difference from a one-time audit?
A one-time check tells you your posture right now. Monitoring watches it continuously and catches the silent break weeks later — the DKIM key someone rotated, the DMARC record someone loosened — the moment it happens, not the next time you remember to look.
What are DMARC reports, and why enable that option?
DMARC aggregate (RUA) reports are the feedback mailbox providers send about your domain. Turn the option on and we ingest them so you can see who is sending as you — legitimate services and spoofers alike — and whether they pass authentication. That's what powers the Senders table above; it needs the quick ownership + 'rua' setup described earlier.
Do you change anything on my domain?
No. Monitoring is strictly read-only — we never touch your DNS or your mail flow. We tell you what changed and what it means; you decide what to do about it.
What do you store, and for how long?
Your domain, your alert email, posture history, and (if enabled) DMARC report rollups. On the free tier we delete monitoring data within 30 days — longer history is a paid feature. See our Privacy page for details.