Security

Security starts with control.

ZentraLink is built for teams that want to manage domains, DNS, SSL and provider access more safely — and with a clear record of who changed what.

Create your account Talk to us

Observe first. Change deliberately.

Control at every step

A handful of principles run through the whole product. Together they keep you in charge of every change.

Read-only first

Every provider connection starts in read-only mode. ZentraLink shows you the full picture without being able to change anything.

Full access only when confirmed

Active DNS management is switched on deliberately, in a separate step that you confirm yourself.

Roles and permissions

Owner, Admin and Supporter roles decide who can see, request and approve changes.

Audit logs

Logins, DNS changes, provider tests and more are recorded with the person, time and details behind each action.

DNS snapshots

ZentraLink captures a snapshot before every change, so any record can be reviewed and rolled back.

Approval workflow

Critical changes, deletions and bulk edits can require a second person to approve them before they go live.

How a safe DNS workflow looks

From the first connection to the final change, every step is designed to be observed, checked and recorded.

Connect providers safely

Add a provider with encrypted credentials. The connection starts in read-only mode.

Review domains in read-only mode

See every zone, record, certificate and mail setting without any risk of changing them.

Spot risks early

Expiring certificates, missing SPF or DMARC and other issues are surfaced before they cause an outage.

Approve changes in a controlled way

Changes are requested, reviewed and — where required — approved before they reach your provider.

Keep a record of everything

Every change is logged and snapshotted, so you can always see what happened and undo it.

Built for trust

The foundations that keep your data and your customers' domains protected.

Encrypted credentials

Provider keys, two-factor secrets and SMTP passwords are encrypted and never shown again.

Separated accounts

Each account's data is strictly separated. One customer can never see another's domains.

Clear role model

Admin and Supporter roles make it easy to give each team member exactly the access they need.

Complete logging

Every meaningful action is recorded, giving you a full history for reviews and audits.

DPA and TOMs available

A data processing agreement and a list of technical and organisational measures are available for business customers.

Prepared for EU hosting

ZentraLink can be self-hosted on infrastructure you control, including in Germany or the EU.

Read the Data Processing Agreement & technical & organisational measures.

Security questions, answered

No. Every provider connection begins in read-only mode. ZentraLink can show your zones and records but cannot change anything until you explicitly switch that provider to active management.

See it for yourself

Create an account, connect a provider in read-only mode and explore how controlled DNS management feels.

Get started