Privacy Policy
Last updated: 2 July 2026
This policy explains what information MailSurety ("we", "us") collects, why, and your rights over it. We built MailSurety to reduce the amount of email data flying around — so we deliberately handle as little personal data as possible.
Who we are: MailSurety is operated by [Registered company name], [registered address]. For any privacy question, email privacy@mailsurety.com.
The most important thing
Your real email never passes through us. We do not send, receive, store, or read your actual messages or their contents. MailSurety works only with the aggregate authentication reports (DMARC "rua" reports) that mailbox providers such as Google, Microsoft and Yahoo already generate. These reports contain statistics — sending IP addresses, pass/fail counts and authentication results — not message content, subjects, attachments or recipients.
Information we collect
- Account details — your name, business name, email address and billing details when you become a customer.
- Domain & DNS data — the domains you ask us to monitor and their public DNS records.
- Aggregate DMARC reports — the XML reports mailbox providers send to the address on your DMARC record. These contain sending-server IP addresses and authentication results.
- Free checker — when you use the domain checker on our site, the lookup happens in your browser against public DNS. We do not store the domains you check.
- Basic site analytics — privacy-respecting, aggregate usage stats. We do not use advertising or cross-site tracking cookies.
Our role under GDPR (UK & EU/Ireland)
For the DMARC report data we process on your behalf, you are the data controller and we act as your data processor. We process it only to provide the service, on your instructions. Business customers can request our Data Processing Agreement (DPA) at privacy@mailsurety.com. For Canadian customers we handle personal information in line with PIPEDA.
How we use information
- To monitor your domain's authentication and alert you to problems and threats.
- To produce your reports and dashboard.
- To provide support, take payment, and meet legal obligations.
We do not sell your data, and we do not send you unsolicited marketing. Because Canada's anti-spam law (CASL) is strict, we contact prospects by phone, letter or on request — not by cold email.
Where data is stored & how long
Data is stored on secure servers within the UK/EU. We keep aggregate report data for as long as your subscription is active plus a limited retention window for trend history, then delete it. You can ask us to delete your data at any time.
Sharing
We share data only with the processors needed to run the service (e.g. hosting and our payment provider, which acts as merchant of record for billing and tax). Each is bound by data-protection terms. We never sell data to third parties.
Your rights
You can access, correct, export or delete your personal data, and object to or restrict its processing. Email privacy@mailsurety.com and we'll respond within the timescales the law requires. UK/EU residents may also complain to their data-protection authority (in the UK, the ICO).
Changes
We'll post any changes here and update the date above. Material changes will be notified to customers by email.