---
title: "Fixing DMARC Enforcement For Smaller and Emerging Brands | DMARC Report"
description: "DMARC (RFC 7489) ties SPF and DKIM together by requiring alignment between the envelope sender and the visible From header."
image: "https://dmarcreport.com/og/blog/fixing-dmarc-enforcement-for-smaller-and-emerging-brands.png"
canonical: "https://dmarcreport.com/blog/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/"
---

Quick Answer

DMARC (RFC 7489) ties SPF and DKIM together by requiring alignment between the envelope sender and the visible \`From\` header. According to Google's February 2024 bulk sender requirements, a DMARC policy of at least \`p=none\` is now mandatory for any domain sending 5,000+ messages per day to Gmail users. DMARC Report

Related: [Free DMARC Checker](/tools/dmarc-checker/) ·[How to Create an SPF Record](/tools/spf-record-generator/) ·[SPF Record Format](/blog/spf-format-checker-dos-and-donts-for-email-authentication/) 

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Ffixing-dmarc-enforcement-for-smaller-and-emerging-brands%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Fixing%20DMARC%20Enforcement%20For%20Smaller%20and%20Emerging%20Brands&url=undefined%2Fblog%2Ffixing-dmarc-enforcement-for-smaller-and-emerging-brands%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Ffixing-dmarc-enforcement-for-smaller-and-emerging-brands%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Ffixing-dmarc-enforcement-for-smaller-and-emerging-brands%2F&title=Fixing%20DMARC%20Enforcement%20For%20Smaller%20and%20Emerging%20Brands "Share on Reddit") [ ](mailto:?subject=Fixing%20DMARC%20Enforcement%20For%20Smaller%20and%20Emerging%20Brands&body=Check out this article: undefined%2Fblog%2Ffixing-dmarc-enforcement-for-smaller-and-emerging-brands%2F "Share via Email") 

![Fixing DMARC Enforcement For Smaller and Emerging Brands](https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg) 

## Try Our Free DMARC Checker

Validate your DMARC policy, check alignment settings, and verify reporting configuration.

[ Check DMARC Record → ](/tools/dmarc-checker/) 

![Create dmarc record 3 150x150](https://media.mailhop.org/dmarcreport/images/2024/02/create-dmarc-record-3-150x150.jpg) 

> Compliance is driving a lot of the DMARC adoption we see, says Vasile Diaconu, Operations Lead at DuoCircle. PCI DSS v4.0, Google’s sender requirements, Microsoft’s May 2025 enforcement - our support team fields questions about these mandates daily. The organizations that moved early are already at p=reject. The rest are scrambling.

DMARC ([RFC 7489](https://datatracker.ietf.org/doc/html/rfc7489)) ties SPF and DKIM together by requiring alignment between the envelope sender and the visible `From` header. According to Google’s February 2024 bulk sender requirements, a DMARC policy of at least `p=none` is now mandatory for any domain sending 5,000+ messages per day to Gmail users. DMARC Report

Fixing DMARC Enforcement For Smaller and Emerging Brands

```
					<button title="Play" aria-label="Play Episode" aria-pressed="false" class="play-btn">
						
```

Play Episode

```
					</button>
					<button title="Pause" aria-label="Pause Episode" aria-pressed="false" class="pause-btn hide">
						
```

Pause Episode

```
					</button>
				

					<audio preload="none" class="clip clip-10920">
						<source src="https://media.mailhop.org/dmarcreport/images/2024/02/Fixing-DMARC-Enforcement-For-Smaller-and-Emerging-brands.mp3">
					</audio>
						

							<button class="player-btn player-btn__volume" title="Mute/Unmute">
								
```

Mute/Unmute Episode

```
							</button>
							<button data-skip="-10" class="player-btn player-btn__rwd" title="Rewind 10 seconds">
								
```

Rewind 10 Seconds

```
							</button>
							<button data-speed="1" class="player-btn player-btn__speed" title="Playback Speed" aria-label="Playback Speed">1x</button>
							<button data-skip="30" class="player-btn player-btn__fwd" title="Fast Forward 30 seconds">
								
```

Fast Forward 30 seconds

```
							</button>
						

							<time class="ssp-timer">00:00</time>
							
```

/

```
							<!-- We need actual duration here from the server -->
							<time class="ssp-duration" datetime="PT0H1M29S">1:29</time>
			

								<nav class="player-panels-nav">
												<button class="subscribe-btn" id="subscribe-btn-10920" title="Subscribe">Subscribe</button>
																		<button class="share-btn" id="share-btn-10920" title="Share">Share</button>
										</nav>

						
```

RSS Feed

```
							<input value="https://dmarcreport.com/feed/podcast/dmarc-report" class="input-rss input-rss-10920" title="RSS Feed URL" readonly />
						

						<button class="copy-rss copy-rss-10920" title="Copy RSS Feed URL" aria-label="Copy RSS Feed URL"></button>
					

						Share						
					

						<a href="https://www.facebook.com/sharer/sharer.php?u=https://dmarcreport.com/blog/podcast/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/&t=Fixing DMARC Enforcement For Smaller and Emerging Brands" target="blank" rel="noopener noreferrer" class="share-icon facebook" title="Share on Facebook">
							

						</a>
						<a href="https://twitter.com/intent/tweet?text=https://dmarcreport.com/blog/podcast/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/&url=Fixing DMARC Enforcement For Smaller and Emerging Brands" target="blank" rel="noopener noreferrer" class="share-icon twitter" title="Share on Twitter">
							

						</a>
						<a href="https://media.mailhop.org/dmarcreport/images/2024/02/Fixing-DMARC-Enforcement-For-Smaller-and-Emerging-brands.mp3" target="blank" rel="noopener noreferrer" class="share-icon download" title="Download" download>
							

						</a>
					

						Link						
					

						<input value="https://dmarcreport.com/blog/podcast/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/" class="input-link input-link-10920" title="Episode URL" readonly />
					

					<button class="copy-link copy-link-10920" title="Copy Episode URL" aria-label="Copy Episode URL" readonly=""></button>
					

						Embed						

					
```

/\*! This file is auto-generated \*/ ’ title=“Embed Code” class=“input-embed input-embed-10920” readonly/>

```
					<button class="copy-embed copy-embed-10920" title="Copy Embed Code" aria-label="Copy Embed Code"></button>


```

Sometimes, even illegitimate emails pass the [DMARC check](https://dmarcreport.com/tools/dmarc-checker/), and that’s because of the \*\*lack of enforcement controls by the domain owners. This is one of the primary cybersecurity vulnerabilities that allow cybercriminals to fool people through [phishing emails](https://wjla.com/news/local/ai-phishing-scams-artificial-intelligence-email-scammers-grammar-spelling-errors-click-link-spot-signs-information-security-authentication-dmv).

In October 2022, phishing attacks targeted nearly [600 brand names](https://www.statista.com/statistics/266156/number-of-brands-hijacked-by-phishing-attacks/) globally. Microsoft, Google, and Yahoo emerged as the **top choices for spoofing**, and PayPal was the dominant payment system, being referenced in more than [84 percent of phishing attacks](https://www.statista.com/statistics/1319957/payment-services-impersonated-in-global-phishing-attacks/).

It’s true that bigger brands have [email authentication protocols](https://dmarcreport.com/what-is-dmarc/) in place, but what about the smaller and emerging brands?

We believe the instances of spoofing, spamming, and phishing emails are going to come down only when customers prompt the financial [consequences of impersonation](https://www.tookitaki.com/glossary/impersonation#:~:text=Financial%20Loss%3A%20Impersonators%20may%20use,unethical%20activities%20under%20their%20name.) onto **smaller businesses**.

![Dmarc report](https://media.mailhop.org/dmarcreport/images/2024/02/dmarc-report-12.jpg) 

## Impersonated Brands Avoid Being Accountable

Mostly, it’s the hundreds or thousands of companies, [nonprofits](https://dmarcreport.com/blog/why-non-profit-organizations-should-care-to-deploy-dmarc/), and other groups whose employees get \*\*caught up in fake emails that bear the brunt of the consequences. These deceptive emails might be annoying spam, but more commonly, they bring in harmful stuff like stolen passwords, [business email scams](https://www.kiplinger.com/business/work-email-phishing-scams-on-the-rise-the-kiplinger-letter), or [ransomware attacks](https://dmarcreport.com/blog/understanding-ransomware-as-a-service-raas/).

The sad part is that the victims who fall prey to these impersonations can’t really do much to get compensated. And the companies being impersonated? Well, they don’t really have a good reason to change what they’re doing. Moreover, smaller and emerging brands are \*\*more focused on the growth that directly adds money to their account and lack the bandwidth to take care of [cybersecurity](https://dmarcreport.com/blog/how-to-educate-or-train-employees-on-cybersecurity/).

![Gmail dmarc](https://media.mailhop.org/dmarcreport/images/2024/02/gmail-dmarc-7600.jpg) 

## What’s the Solution? Can Customers Change the Scenario for The Sake of Their Own Safety?

The trick here is to play the victim card. After all, customers have a lot of power. Customers need to get the brands riled up about the risks they face because of the company’s lack of ability to protect their personal and financial details and demand [SPF](http://autospf.com/spf-record-checker/spf-record-example/), DKIM, and [DMARC](https://dmarcreport.com/) email authentication protocols as a **non-negotiable part of the deal**. Small businesses are all about making sales, and they are likely to give in to reasonable requests to \*\*keep customers happy and prevent them from associating with their competitors.

Even a medium-sized government agency or a Fortune 5000 corporation can throw in \*\*demand for email authentication protocols in their contract without breaking the bank. It’s a small cost for the organization, and it significantly slashes the [risk of falling victim to email impersonations](https://www.bbc.com/news/technology-65486219).

Setting up all three authentication protocols takes a bit of time, but it won’t cost a hefty amount or too many resources. _Customers can also demand the brands to \*\*set up the protocols in a way that only they have to deal with the hassle of impersonating emails_.

## How is DMARC a Concrete Against Phishing Attacks?

\*\*DMARC prevents email-based menaces by ensuring that emails genuinely come from the claimed sender, making it difficult for malicious actors to forge or [impersonate legitimate email domains](https://www.infosecurity-magazine.com/news/disney-cyber-scheme-new-tactics/). DMARC goes beyond authentication; it **monitors incoming emails**, providing detailed reports on their authenticity. Additionally, it allows domain owners to set policies for handling emails that fail authentication checks, providing options to \*\*reject or quarantine such suspicious messages. By acting as a vigilant gatekeeper, DMARC significantly enhances the security of email communication, thwarting potential threats posed by [impersonation attacks](https://www.scmagazine.com/news/microsoft-most-impersonated-brand-in-phishing-attacks-again).

Does it sound too technical?

Let’s understand this in simpler words.

Imagine you have a secret club, and you only want your trusted friends to get in. Now, think of DMARC as the bouncer of that club.

DMARC helps to make sure that when someone sends an email claiming to be from your club, it’s actually legit. It does this by checking if the email is using your club’s official rules (authentication protocols like SPF and [DKIM](https://dmarcreport.com/what-is-dkim/)). If everything matches up, great! The email gets in. But if someone’s trying to fake it, \*\*DMARC rejects their entry!

So, DMARC is like the \*\*watchful bouncer making sure only the real, approved emails get through, and the impostors stay out . It helps prevent sneaky impersonation attacks on your club, which is actually your [email-sending domain](https://www.one.com/en/email/what-is-an-email-domain).

## DMARC Reporting Makes the Process More Effective

[DMARC reporting](https://dmarcreport.com/use-dmarcreports-to-monitor-your-domains/) means you allow recipients to send you \*\*feedback on every email they receive from you. These feedbacks come in the form of aggregate and forensic reports: [DMARC Aggregate reports](https://dmarcreport.com/dmarc-aggregate-reports/) provide a summary of email authentication results , aiding domain owners in understanding overall email usage. [DMARC Forensic reports](https://dmarcreport.com/dmarc-forensic-report/) offer detailed, individual-level insights into **failed authentication**, helping diagnose and address specific issues with email delivery.

We at \*\*DMARCReport can help you analyze and manage these reports to [prevent phishing](https://dmarcreport.com/blog/preventing-phishing-2024-insights-from-cscs-2023-report/) attacks or mitigate their after-effects. So, [contact us today](https://dmarcreport.com/contact/) to get more details.

## Topics

[ dkim ](/tags/dkim/)[ DMARC ](/tags/dmarc/)[ dmarc record ](/tags/dmarc-record/)[ email security ](/tags/email-security/)[ SPF ](/tags/spf/) 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead for DMARC Report's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Take control of your DMARC reports

Turn raw XML into actionable dashboards. Start free - no credit card required.

[Start Free Trial](https://app.dmarcreport.com/) [Check Your DMARC Record](/tools/dmarc-checker/) 

## Related Articles

[  Foundational 7m  4 sectors that need email authentication the most and why  Oct 15, 2024 ](/blog/4-sectors-that-need-email-authentication-the-most-and-why/)[  Foundational 4m  8 Misconceptions About DMARC and its Deployment for Businesses  Dec 4, 2023 ](/blog/8-misconceptions-about-dmarc-and-its-deployment-for-businesses/)[  Foundational 8m  9 technologies to protect your emails from cyber actors  Dec 10, 2024 ](/blog/9-technologies-to-protect-your-emails-from-cyber-actors/)[  Foundational 14m  Add TXT Record on Namecheap (SPF, DKIM & DMARC) - 2026  Mar 5, 2025 ](/blog/add-txt-record-on-namecheap-a-complete-dns-guide/)

```json
{"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DMARC Report","url":"https://dmarcreport.com","description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","publisher":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Fixing DMARC Enforcement For Smaller and Emerging Brands","description":"DMARC (RFC 7489) ties SPF and DKIM together by requiring alignment between the envelope sender and the visible From header.","url":"https://dmarcreport.com/blog/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/","datePublished":"2024-02-13T11:49:16.000Z","dateModified":"2026-04-16T15:53:43.000Z","dateCreated":"2024-02-13T11:49:16.000Z","author":{"@type":"Person","@id":"https://dmarcreport.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://dmarcreport.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://dmarcreport.com/blog/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/"},"articleSection":"foundational","keywords":"dkim, DMARC, dmarc record, email security, SPF","wordCount":1118,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg","caption":"Fixing DMARC Enforcement For Smaller and Emerging Brands","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://dmarcreport.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://dmarcreport.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://dmarcreport.com/foundational/"},{"@type":"ListItem","position":4,"name":"Fixing DMARC Enforcement For Smaller and Emerging Brands","item":"https://dmarcreport.com/blog/fixing-dmarc-enforcement-for-smaller-and-emerging-brands/"}]}
```