Confirm your website uses HTTPS.
Small Business Security Fix List
12-point Small Business Cyber Checklist.
A plain-English starting point for owners who want to review website, email, account access, backups, and provider ownership before small issues become harder to untangle.
Make sure your domain has SPF.
Make sure your domain has DKIM.
Make sure your domain has DMARC.
Use multi-factor authentication on business email.
Remove old users from Google Workspace or Microsoft 365.
Review who has admin access to your website.
Keep your website platform, plugins, and forms updated.
Use a password manager for shared business tools.
Back up important business files.
Know who manages your domain, DNS, and email settings.
Keep a simple incident contact list for your web, email, IT, and business owner contacts.
Want a public-facing check?
The checklist helps you organize the basics. The Free Domain Risk Check reviews public website, domain, email authentication, TLS, and security-header signals for a clearer first look.
Run a Free Domain Risk CheckThis checklist is educational and practical. It is not a guarantee of security, legal advice, or a compliance certification.