Frequently asked questions
Can't find an answer? Contact us.
About PhishGuardForTeams
What is PhishGuardForTeams?
PhishGuardForTeams is a phishing simulation and security awareness platform for small businesses. You send your employees realistic-looking phishing emails, track who clicks, and use that data to improve your team's security awareness — without needing a dedicated IT security staff member.
Who is it for?
Teams of 10–200 people. We're built for busy owners and lean ops teams, not enterprise security departments. If you've ever worried about your team clicking a sketchy email, you're our target customer.
How is this different from KnowBe4 or similar tools?
KnowBe4 is built for enterprises with security teams — complex setup, long contracts, and a product designed for security professionals. PhishGuardForTeams is designed to be set up by a non-technical owner in under 5 minutes, with transparent per-seat pricing and no enterprise contracts.
Getting started
How long does setup take?
Under 5 minutes. Sign up, add your employees (or upload a CSV), pick a phishing template, and launch. There's no domain configuration or mail server setup — we handle the sending infrastructure.
Do I need to set up anything with my email system?
No. We use our own shared sending domain (notify.phishguardforteams.com) for simulations. Your employees will receive emails that look like they come from a bank or payroll provider, but are actually sent by us.
Will the phishing emails end up in spam?
We maintain our sending domain's reputation carefully and implement SPF, DKIM, and DMARC. Deliverability is generally excellent, though individual email providers vary. We recommend your first campaign go to a small test group so you can verify delivery before sending to your whole company.
Privacy & safety
Do my employees know they're being tested?
That's up to you. Many organizations inform employees upfront that phishing simulations are part of their security program. Others prefer the element of surprise. Either approach is valid — studies show both are effective. We recommend disclosure in your employee security policy.
What happens when an employee clicks?
They're taken to a branded 'gotcha' landing page that explains this was a simulation and shows them exactly what red flags they should have spotted. No real harm is done — it's a teachable moment.
What data do you store about employees?
We store name, email, group tags, and campaign interaction history (sent, opened, clicked). We don't store passwords, IP addresses, or any personally sensitive data beyond what's necessary to run the simulation and show results.