Skip to main content

Compliance frameworks

PhishFence maps to specific control requirements in major compliance frameworks. Use it as direct evidence in your audit, or as the monitoring layer that proves controls are operating.

Free instant readiness checks

Enter a domain and get an A to F grade with a per-mandate pass and fail checklist. No signup, read-only.

Is your email getting rejected by Gmail and Yahoo?

Scan my domain free →

Will your domain pass the PCI DSS 4.0 anti-phishing requirement?

Run my free PCI scan →

Is your email authentication ready for your NIS2 audit?

Check my NIS2 readiness →

Framework mappings

PCI DSS 4.0

Phishing-resistant authentication, anti-phishing monitoring, and the new Requirement 5.4.1 added in v4. Evidence pack maps PhishFence outputs directly to control sub-requirements.

View mapping →

SOC 2 (Trust Services Criteria)

CC6.7 (logical access security), CC7.2 (system monitoring), and CC7.3 (incident detection & response). Continuous monitoring evidence with retained audit log.

View mapping →

Need evidence for an upcoming audit?

Sign up free, monitor your domain, and download a compliance evidence pack within an hour. The pack maps PhishFence outputs to your framework's specific sub-controls so you can hand it directly to your auditor.

Start free