REST API

Developer portal ›

SecuMailer has a REST API for sending secure emails. Both the GDPR and the NTA 7516 functionality are fully accessible via this API.

The API is documented with OpenAPI specification 3.0.1.

The REST API has webhook functionality, which means that the SecuMailer platform can communicate email events with an HTTPS endpoint of the sender.

SMTP API

The SMTP API is usually the simplest integration option for many backend applications because backend applications often have a provision for an SMTP client on board.

We have successfully integrated for customers with Salesforce, SAP and Centric. We have also successfully integrated with patient file systems such as Medisoft Dossier Manager.

GraphQL API

The SecuMailer platform offers insight into email events. This can be done on the basis of a (push) webhook call (see REST API above) and on the basis of a (pull) GraphQL endpoint.

Get a Demo

Name(Required)

Contact Sales

Your Name(Required)

DORA compliance for secure financial sector communication

Meet the Digital Operational Resilience Act (DORA) requirements for secure, compliant, and uninterrupted email communication in your financial workflows.

From January 2025, all European financial institutions — and their critical ICT and communications suppliers — must comply with the Digital Operational Resilience Act. SecuMailer ensures your email communications meet the highest security, confidentiality, and resilience requirements without disrupting daily operations.

Book a free GDPR compliance walkthrough
Contact Sales
Dora

What is DORA?

A unified EU standard for financial sector digital resilience

DORA (Digital Operational Resilience Act) is a European regulation designed to ensure the entire financial sector — including banks, insurers, pension funds, and their critical suppliers — can withstand and recover from cyber incidents. It focuses on securing the full supply chain, with strong emphasis on ICT risk management, incident response, and operational continuity.

Key points (visual bullet cards):

  • Applies to: Banks, insurers, pension funds, investment firms, payment providers, ICT & communication suppliers.

  • Core requirements: ICT risk management, incident monitoring, penetration testing, outsourcing controls, cyber threat intelligence sharing.

  • Alignment: Closely linked to NIS2, but with a sharper focus on the financial sector.

Three core pillars of DORA

Applies to:
Banks, insurers, pension funds, investment firms, payment providers, ICT & communication suppliers.

Core requirements:
ICT risk management, incident monitoring, penetration testing, outsourcing controls, cyber threat intelligence sharing.

Alignment:
Closely linked to NIS2, but with a sharper focus on the financial sector.

How SecuMailer supports DORA compliance

  • End-to-end encryption

    All outgoing messages encrypted automatically, no user decision needed.

  • Two-factor authentication (2FA)

    SMS verification for sensitive communications.

  • Inbox delivery

    Messages arrive directly in the recipient’s trusted mailbox, no portals.

  • Complete audit trail

    Transmission, delivery, and read confirmations logged automatically.

  • Data minimization

    Automatic message deletion after delivery, keeping only legal proof.

  • Interoperable

    Works seamlessly with other secure email solutions in the sector.

How SecuMailer aligns with DORA’s 5 pillars

To comply, your secure email solution must provide:

  • Prevention

    Secure-by-default encryption, phishing-resistant authentication

  • Detection

    Automated logging & monitoring of all message transactions

  • Response

    Instant blocking and revocation of compromised sessions

  • Remediation

    Minimal data retention reduces breach impact

  • Reporting

    Full audit trails for compliance and incident reports

  • Secure infrastructure & logging for legal proof

Key technical capabilities for DORA compliance

Certified to ISO 27001:2022, NEN 7510, NTA 7516, eIDAS.

All infrastructure hosted in secure EU data centers.

No portals or special logins for recipients.

Easily handles millions of secure messages per day without performance drop.

Be DORA-ready

The DORA compliance deadline is approaching fast. SecuMailer gives financial institutions and their ICT partners a proven, certified, and easy-to-use email security solution that meets all operational resilience requirements — without slowing down your workflows.

Ensure your email is DORA-compliant

Speak with our specialists to see how SecuMailer keeps your financial communications fully aligned with the Digital Operational Resilience Act — without disrupting daily operations..
Request a free compliance consultation