Privacy Policy
Last updated 2 July 2026
This policy explains what data SPFWise collects and how we use it. In short: scanning a domain is anonymous, we read only public DNS, and we do not store your scans unless you choose to save a domain to an account.
Who we are
SPFWise operates the website at spfwise.com and the domain-analysis tools on it. For any privacy question, contact us at contact@spfwise.com.
What a scan collects
When you scan a domain, we read its public DNS records (SPF, DKIM, DMARC, MX, DNSSEC, BIMI, MTA-STS, TLS-RPT and public blocklist status) live from the internet, exactly as a mail server would. A scan needs no account and no personal data, and we do not store the result of an anonymous scan.
Accounts
Some features (saving domains, continuous monitoring, reports) require an account. If you create one, we store the email address and name from your chosen sign-in provider, the domains you save, and the scans and reports tied to them. You can delete your account and its data at any time by contacting us.
Cookies and analytics
The public tools work without tracking cookies. If we add privacy-friendly analytics or an account session, we will use only what is needed to run the service, and we will update this policy first.
How we use data
We use data only to provide the service: to run your scans, keep your saved domains and reports, secure the service, and reply to your messages. We do not sell your data or share it for advertising.
Sharing
We share data only with the infrastructure providers needed to run SPFWise (hosting and email), and only as required to operate the service or to comply with the law.
Your rights
If you are in the EU or UK, you have the right to access, correct, delete, and export your personal data, and to object to or restrict its processing. To exercise any of these, email contact@spfwise.com and we will respond within the time the law requires.
Changes
We will post any changes to this policy on this page and update the date above.