​Privacy Policy

​

​Welcome to InstantDMARC’s Privacy Policy. We value your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you visit our website and use our automated DNS and email security services.

​1. Overview

​1.1. Objective:

InstantDMARC (operating under InstantDMARC, “we” or “us”) provides this Privacy Policy to inform you of our policies regarding the identifiable personal information (“Personal Information”) we may collect, how we use and share that information, and how you can manage such information when you access or use our website (InstantDMARC.com) and our 1-click email security services (“Services”). By using our Site or Services, you consent to our policies regarding your information as described in this Privacy Policy.

​1.2. Scope:

This Privacy Policy applies to Personal Information processed by InstantDMARC in the course of our business, including through our websites, automated 1-click configuration services, and customer interactions.

​2. Information we collect and how we use it.

​2.1 Personal Information

When using our Services, you provide us with Personal Information, which refers to data that can identify you. This includes your name, billing information, email address, and company details. We use this primarily to provide our services, process one-time payments, and address inquiries.

​2.2 Non-Identifying Information

We collect additional information during account administration, such as general preferences or aggregate usage metrics. While some Non-Identifying Information may become Personal Information when combined with other identifiers, it generally remains separate.

​2.3 DMARC and DNS Data Collection (Core Service)

Our email authentication service collects data automatically regarding email traffic metadata and DNS configurations. This data, generated using standards like DMARC, DNS, DKIM, SPF, and TLS-RPT aids in operations without disclosing personal email content. ​What we collect: DMARC aggregate reports, DMARC failure reports, and logs of DNS requests/states during our 1-click setup process. ​What we DO NOT collect: We do not read, collect, or store the body content or subject lines of your personal or business emails. This metadata enables us to determine the originating domain, IP address, and service provider used to send an email, which we use purely for analytical and security purposes.

​2.4 Log Data

When visiting our Site, our servers automatically record Log Data, including IP addresses, browser types, visited pages, and search queries. This helps monitor Service usage and improve functionality.

​3. Cookies and Analytics Information

​

3.1 Cookies

InstantDMARC and third-party suppliers use ‘cookies’ to collect information for analytics and site functionality. You can choose to not accept cookies on your browser, though it may limit your ability to use certain functionalities of the Site.

​3.2 Analytics

We may use tools like Google Analytics to assess visitor behavior. The collected data is not connected to Personal Information. To opt out of Google’s data collection, please use the Google Analytics Opt-out browser add-on.

​4. Information Sharing and Disclosure

4.1 General

InstantDMARC does not sell your Personal Information. We only disclose it as detailed in this Privacy Policy or with your explicit consent.

​4.2 Service Providers

We hire third-party companies to facilitate our services (such as Lemon Squeeze for payment processing, or AWS for cloud hosting and DNS injection infrastructure). These third parties have access to your Personal Information only to perform tasks on our behalf and are obligated not to disclose or use it for any other purpose.

​4.3 Compliance with Laws

We will disclose information to government or law enforcement officials if we believe it necessary to respond to legal processes, protect the rights of InstantDMARC, or prevent illegal activity.

​4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, InstantDMARC may transfer some or all of its assets, including Personal Data, to the acquiring entity.

​5. Your Rights and Choices

​5.1 General Rights (GDPR & CCPA)

Depending on your jurisdiction, you have the right to: ​Access: Request a copy of the Personal Information we hold about you. ​Rectification: Request we correct inaccurate information. ​Erasure (Right to be Forgotten): Request deletion of your Personal Information. ​Restriction: Request we limit the processing of your data. To exercise these rights, contact us at security@instantdmarc.com.

​5.2 Communication

You can withdraw consent for marketing emails at any time by clicking the "Unsubscribe" link at the bottom of our emails. Essential service communications (like billing receipts or critical security alerts regarding your domain) cannot be opted out of.

​6. Security and International Transfers

​6.1 Security

We employ administrative, physical, and electronic measures to protect your information. However, no method of transmission over the internet or electronic storage is 100% secure. In the event of a legally actionable data breach, we will notify affected users via email without unreasonable delay.

​6.2 International Transfer

Your information may be transferred to and processed on servers located outside of your jurisdiction (including the United States or the European Union). By using the Services, you consent to this transfer.

​7. California Privacy Rights (CCPA)

​The California Consumer Privacy Act (CCPA) grants California residents specific rights: ​Right to Know: What Personal Information is collected and how it is used. ​Right to Deletion: Request destruction of Personal Information. ​Right to Non-Discrimination: You will not be penalized for exercising these rights. InstantDMARC does not sell user data to third parties for direct marketing purposes.

​8. Data Privacy Framework (DPF) Commitment

​InstantDMARC complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework regarding the processing of personal data received from those regions. We commit to resolving DPF Principles-related complaints about our collection or use of your personal information. ​Unresolved privacy complaints may be referred to independent dispute resolution bodies, including EU Data Protection Authorities (DPAs) or the Swiss Federal Data Protection and Information Commissioner (FDPIC).

​9. Other Important Information

​9.1 Policy Toward Children

Our Service is exclusively for business professionals (B2B). We do not knowingly collect information from children under the age of 18.

​9.2 Links to Other Sites

Our Services may contain links to third-party websites. We do not exercise control over these websites and encourage you to read their privacy policies.

​10. Contact Us

​If you have any questions or concerns about this policy or our data practices, or to exercise your privacy rights, please contact us at: ​Email: security@instantdmarc.com Website: https://instantdmarc.com ​Last Updated: April 25, 2026