This site uses cookies for analytics and to improve your experience. By clicking Accept, you consent to our use of cookies. Learn more in our privacy policy.

Someone is sending emails from your domain right now.

Can you see it?

Without email authentication, anyone can send an email that looks like it came from your company. To your clients. To your suppliers. To your own staff. The email address looks real. The display name looks real. And unless you have DMARC properly configured and monitored, you will never know it is happening.

BEACON is the DMARC monitoring platform we built to solve this problem. It shows you exactly who is using your email domain - legitimately and fraudulently - and gives you the tools to stop it.

From R150 per month. Built and managed by Kwik Support.

Check My Email Authentication

What BEACON shows you

DMARC is one of those things that even a lot of technical people struggle to explain clearly.

So here is what BEACON actually does, in plain terms.

Who is sending email using your domain

Every service, platform, and server that sends email as your company - your mail server, your marketing platform, your accounting software, your CRM. And anything that should not be there.

Whether your records are correctly configured

SPF, DKIM, and DMARC records are technical. A single syntax error can break authentication for your entire domain. BEACON checks your records continuously and alerts you when something is wrong.

When someone attempts to spoof your address

DMARC generates reports every time an email is sent using your domain. BEACON reads these reports and flags unauthorised senders - so you can see spoofing attempts.

How your DMARC policy is performing over time

DMARC has three enforcement levels: none (monitor only), quarantine (suspicious emails go to spam), and reject (fake emails are blocked outright). BEACON tracks your progress from monitoring to full enforcement, so you can move at a pace that does not disrupt your legitimate email.

We built BEACON because small businesses were being left out

Every business that sends email from its own domain needs DMARC - properly configured, at full enforcement (p=reject). That includes the one-person consultancy, the five-person law firm, and the home business with a professional email address. Without it, anyone can send fake emails as you, and your real emails risk landing in spam.

The problem is that managed DMARC services on the market cost R700 or more per month. For a 50-person company, that is a rounding error. For a small business or a sole trader, it is out of reach. So they go without, and their domains stay unprotected.

We were not willing to accept that. So we built BEACON - a managed DMARC platform that does the job properly, without the bells and whistles that push the price up. No enterprise dashboards designed for security teams. No features that small businesses will never use. Just proper SPF, DKIM, and DMARC implementation, continuous monitoring, and we manage everything.

From R150 per month. That is the gap we saw, and that is what BEACON fills.

No other IT support company in Cape Town has built their own DMARC platform. This is not a resold product or a white-labelled service. BEACON is ours.

Email authentication is not just security - it is compliance

Under POPIA (the Protection of Personal Information Act), every South African business that handles personal data must implement "appropriate, reasonable technical measures" to protect it.

Email is one of the primary channels through which personal data is shared - client details, financial information, contracts, ID numbers. When your email domain is not authenticated:

  • A spoofed email sent in your name could expose your clients' personal data
  • A successful phishing attack using your domain could lead to a data breach
  • A breach involving personal information triggers mandatory notification to the Information Regulator under POPIA Section 22

DMARC, SPF, and DKIM are documented, industry-standard security controls. Having them properly configured and monitored demonstrates that you are taking reasonable steps to protect email communications.

Not having them is an increasingly hard position to defend if something goes wrong.

Getting started takes less than a week

Step 1: We audit your current email authentication

We check your existing SPF, DKIM, and DMARC records. Most businesses either have no DMARC record, have an incomplete one, or have records that were set up once and never checked again.

Step 2: We configure or fix your records

We set up SPF, DKIM, and DMARC properly - making sure every legitimate email source is included and nothing is misconfigured.

Step 3: We start monitoring through BEACON

BEACON begins collecting DMARC reports from receiving mail servers. Within days, you have a clear picture of who is sending email using your domain.

Step 4: We move toward enforcement

Most businesses start with DMARC set to "none" (monitoring only) while we verify that all legitimate email sources pass authentication. Once we are confident, we move to "quarantine" and eventually "reject" - which means spoofed emails get blocked outright.

Step 5: Ongoing management

Email setups change. You add a new marketing tool, switch CRM systems, or change hosting providers. Each change can break authentication. BEACON reports these changes, and we update your records to prevent your email from  bouncing.

Transparent pricing, as always

BEACON managed DMARC: from R150 per month

That includes:

  • Initial audit of your current email authentication
  • SPF, DKIM, and DMARC configuration or correction
  • Continuous monitoring through the BEACON platform
  • Spoofing attempt alerts
  • Record updates when your email setup changes
  • Progress from monitoring to full DMARC enforcement (p=reject)
  • Ongoing management by our team

No setup fees. No hidden charges. No enterprise pricing that requires a "request a quote" conversation.

We deliberately built BEACON without the feature bloat that drives the price of other DMARC services into the hundreds of rands per month. You get proper implementation, proper monitoring, and proper management. That is what matters.

BEACON is available as a standalone service - you do not need to be on one of our managed IT plans. If all you need is email authentication management, that is fine. If you are already a managed client, BEACON integrates with your existing security setup.

Questions about DMARC and BEACON

What is DMARC, in simple terms?

DMARC is a rule you publish for your email domain that tells receiving mail servers what to do when they get an email claiming to come from you. If the email passes authentication (SPF and DKIM), it gets delivered. If it fails, DMARC tells the server to let it through, quarantine it, or reject it. Without DMARC, there is no rule - so everything gets through, including fake emails.

We already have SPF and DKIM. Do we need DMARC too?

SPF and DKIM without DMARC are like a security camera with nobody watching the screen. They verify emails, but they do not tell anyone what to do when verification fails. DMARC is the enforcement policy. Without it, spoofed emails can still reach your clients.

Will setting up DMARC affect our normal email?

Not if it is done properly. That is why we start in monitoring mode (DMARC policy set to "none") and only move to enforcement once we have confirmed all legitimate email sources pass authentication. BEACON shows us exactly what is happening before we change anything.

Is this just for big companies?

No. In fact, small businesses are the reason we built BEACON. Other managed DMARC services charge R700 or more per month, which prices out most small businesses. We built BEACON specifically to make proper DMARC affordable. R150 per month puts full email authentication within reach for any business that sends professional email from its own domain.

Can we see the BEACON dashboard ourselves?

Yes. We can provide access so you can see your authentication status and any spoofing attempts. Most clients prefer to let us manage it and receive summary reports, but the visibility is there if you want it.

What about businesses outside Cape Town?

DMARC management is entirely remote - it is DNS records and email reports, nothing to install on-site. We manage BEACON clients anywhere. Your domain does not need to be in Cape Town, South Africa, or even the same time zone.

Find out if your domain is being spoofed

Most businesses have no idea who is sending email using their domain. A quick check takes minutes and the answer is often surprising.

Call: 087 820 5005

WhatsApp: 081 526 1626

Email: support@kwik.support

Or visit beacon.kwik.support for more about the platform.

Check My Email Authentication

We take your privacy seriously. We'll only use your details for what you've asked us to do. Read our privacy policy.