Free Email Security for Australian Business
Australian businesses face fines up to $50 million under the Privacy Act for preventable email breaches. CipherSoc scans your SPF, DKIM, DMARC and NDB compliance in 60 seconds - free, forever.
No credit card. No setup. Just your compliance score.
How It Works
No IT department required. No jargon. Just a clear report and exactly what to fix.
Type in your business domain, e.g. yourcompany.com.au. No account needed to get started.
CipherSoc checks your SPF, DKIM, DMARC records and cross-references against NDB scheme obligations in under 60 seconds.
A plain-English report with a pass/fail grade per check, your risk level, and the exact records you need to fix.
Schedule automatic rescans so you are alerted the moment something breaks. Set it, forget it, stay compliant.
What We Check
Most Australian SMEs are unknowingly failing at least two of these. A single failure is enough for regulators to act.
Prevents criminals from sending emails that appear to come from your domain. Without it, anyone can impersonate your business.
Cryptographically signs every email you send. Proves to banks, clients and regulators that your email has not been tampered with in transit.
Sets the enforcement policy for what happens when someone tries to spoof your domain. Without DMARC, spoofed emails land in your clients' inboxes.
Australia's mandatory breach reporting scheme. If your email is compromised and you have not notified the OAIC within 30 days, the fines start here.
Built For
Real estate, insurance and trades businesses handle sensitive financial and personal data daily. That makes you a primary target and a primary enforcement priority.
Settlement fraud starts with a spoofed email. One convincing fake from your agency can redirect a client's deposit to a criminal account. SPF and DMARC are your first line of defence.
You hold sensitive financial records, policy data and personal information. NDB compliance is not optional. A breach without proper email authentication exposes you to regulatory action and client liability.
Invoice fraud targets tradies directly. A spoofed email claiming to update your bank details can divert payment from your clients without either of you knowing until it is too late.
Professional conduct obligations require secure client communication. Regulators expect your email infrastructure to match the sensitivity of what you transmit.
Patient data is the most protected category under Australian law. Unsecured email is the fastest way to trigger a mandatory NDB notification and the fines that follow.
Customer data collected at checkout carries Privacy Act obligations. A spoofed domain used in a phishing attack against your customers puts you in the regulator's crosshairs.
Join the Waitlist
CipherSoc launches for Australian SMEs in 2026. Join now for early access, priority onboarding, and our free Australian Privacy Act compliance checklist.
No spam. Unsubscribe anytime. Handled under the Australian Privacy Act.