EnforceLayer

Security & Data Handling

Domain protection monitoring. DNS only. No email content collected.

Read-Only DNS Access

We only read public DNS records. We do not access email inboxes or send email on your behalf. We never require access to your DNS provider, email accounts, or any credentials.

Minimal Data Storage

We store domain name, parsed DNS records (SPF, DMARC, DKIM, BIMI, MX), and score history. No email content, no mailbox access, no personal information beyond what's required for billing. Stripe handles all payment data.

Encryption

All data is encrypted in transit (TLS) and at rest (encrypted storage). Payment processing is handled securely by Stripe.

No Tracking

We don't sell your data or use tracking pixels. Your scan history and reports are private and accessible only via secure tokens.

What we collect

No email body content. No message headers stored. DNS only.

For free scans:

  • Domain name you scan
  • DNS records (SPF, DMARC, DKIM, MX)
  • Scan timestamp
  • Optional: Email use-case and provider selection

For paid reports:

  • All of the above, plus:
  • Billing information (handled by Stripe)
  • Report access token (for secure access)

For monitoring subscriptions:

  • All of the above, plus:
  • Daily DNS snapshots (parsed records, score, issue history)
  • Monitoring email for alerts (optional — you choose whether to provide it)

Questions about security?

Contact us at support@enforcelayer.com