End-user experience

Quarantine digest — recipients decide for themselves.

Daily email digest with every quarantined mail from the last 24 hours. Single-click release directly from the mail, no login needed. No more "please release my mail from X" tickets for the admin team.

What's in the digest

Every recipient with at least one quarantined mail in the 24-hour window receives an HTML email at a configurable time in the morning containing:

  • List of all quarantined mails: sender, subject, time received, detection reason (spam score, phishing pattern, sandbox verdict)
  • Two single-click buttons per mail: Release (mail arrives immediately, sender optionally whitelisted) and Discard (mail deleted, sender optionally blocked)
  • Button for "Trust this sender" (permanent whitelist entry)
  • Link to the self-service portal for more detailed handling (mail preview, header inspection)

How the security model works

The action links in the digest are cryptographically signed tokens, bound to:

  • Recipient address — the link only works when accessed from the address the digest was sent to (prevents forwarding abuse)
  • Mail ID — one token per quarantined mail, a click consumes the token
  • Action — a release token cannot be used for discard and vice versa
  • Expiry — token valid for 7 days, after that the recipient must use the portal with login

Configuration

Per domain (in the standard plan also per tenant) configurable:

  • Send time — e.g. 7:00 AM, before the recipient's workday starts
  • Language — DE or EN, more on request
  • Subject template — e.g. "[Your tenant] Quarantine summary: 5 mails"
  • Branding — own logo, own footer text (standard plan)
  • Send threshold — only send if at least N mails are in quarantine (default: 1)
  • Opt-out — recipients can unsubscribe; the operator decides whether that's allowed

Operations benefit

Without end-user self-service, false-positive complaints land at the admin team. For a mid-sized company with 200 mailboxes that's typically 5–15 tickets per week of "where is my mail from X" — operator hours lost to other work. With quarantine digest:

  • Recipients see for themselves what was blocked and can release it
  • The admin team only sees real escalations (mail completely missing, phishing wave)
  • For hosting resellers: no more end-customer tickets at reseller support
  • The audit log records every end-user action (who released what, when)

In a cluster setup

The digest is sent once per recipient — regardless of which cluster node the mails physically reside on. The system aggregates quarantine content across all nodes and assembles a single consolidated mail. The recipient is unaware of the cluster.

Free the admin team from false-positive tickets.

Quarantine digest is included in the standard plan and 30-day trial — end-user self-service without admin intervention.

See pricing