Set up DMARC and see who's sending email using your brand's domain.

Committed to keeping your data safe and secure.

We host our servers in a secure data center and use the latest security practices to protect our customer’s data.

Two-factor authentication.

Add an extra layer of security to your account with two-factor authentication (2FA). You can use a range of popular 2FA apps (Google Authenticator, 1Password, and Authy) or get codes sent to your mobile phone by SMS. Printable backup codes give you emergency access to your account if your device is lost.

Two-factor authentication set up

Advanced user permissions.

Do you manage a large team? Postmark gives you detailed user permissions so you can control who has access to each of your servers.

It’s simple to give team members access to your entire account or just a single server. You can even add observers who can review message history but not edit or delete a server.

User permissions

Email and application security.

Out of the box, Postmark supports opportunistic TLS for all outbound email, ensuring messages are encrypted in transit to remote mail servers and ISPs who support TLS. Gmail lists us as delivering 100% of our email via TLS. Combining this with full HTTPS and TLS support on our SMTP and API endpoints provides safe passage for messages flowing through Postmark.

We also fully support and encourage use of email standards like DKIM, SPF, and DMARC, giving you control over your domain’s reputation and reducing the risk of email spoofing.

We host our servers in one of the most impressive data centers in the country, a Type 2 SSAE 16 SOC 1 accredited facility. In addition, our systems are regularly tested using both automated systems and manual audits from respected security firms.

We partner with Stripe to manage payments on Postmark. Stripe is certified as a PCI Level 1 Service Provider. Postmark does not have access to customers’ credit card data at all.

Read more about security and reliability

Privacy & GDPR

When you use our services you entrust us with your valuable information. We have made it a priority to protect your data and to provide you with choices about controlling it. We understand that there are particular concerns about the GDPR regulation in the EU, so we put together a dedicated page as a guide to answer some of the most common questions you may have.

In short, our compliance, data protection, and information security teams all worked to prepare our services for GDPR. We reviewed our data processing activities, and made any changes that were needed in advance of the GDPR effective date.

Read more about EU data protection

Still have questions?

  • Abdullah Al-hennawy Abdullah
  • Anita Pericic Anita

Ask us anything! We’re eager to help you with any problem or question you have…

Contact us