KMayerProfessionele IT-diensten voor bedrijven in EuropaDienstenNeem contact op

Hoe de review werkt

How KMayer Exposure Lens AI moves from passive_public review to private verified results and a governed deeper lane.

Each request begins in passive_public. Verification protects private access, the verified-running state keeps the journey clear while processing continues en the results-ready email is sent only after both verification and completion. authorized_deep, read-only connector evidence en trusted export intelligence apply only when ownership, engagement en approvals are in place.

Review startenVeelgestelde vragenGebruiksbeleid tool

Three-lane model

passive_public, private_verified en authorized_deep keep the review governed.

The public review lane is passive-first and non-intrusive by design.

KMayer Exposure Lens AI reviews public DNS, mail authentication, HTTPS, TLS, headers, trust files, indexing signals, same-host public evidence, vendor ecosystem indicators en passive asset inventory clues. It does not perform exploit attempts, brute force, credential attacks, or intrusive testing in the public lane.

Review lane

passive_public

Public, non-intrusive review of external domain and trust signals.

  • DNS
  • mail authentication
  • HTTPS
  • TLS
  • headers
  • trust files
  • indexing signals
  • same-host public evidence
  • vendor ecosystem signals
  • passive asset inventory clues

Excludes: login attempts, brute force, exploit attempts, intrusive scanning, credential attacks, bypass attempts, private data access.

Review lane

private_verified

Protected results after business email verification.

  • executive summary
  • technical highlights
  • risk themes
  • evidence context
  • prioritized next steps
  • readiness for KMayer-assisted validation

Review lane

authorized_deep

Beheerde diepere review available only under verified ownership, active engagement, approved scope en explicit consent.

  • deeper technical validation
  • remediation planning
  • infrastructure review
  • cybersecurity follow-up
  • documentation for decision makers

Executive-journeyweergave

From public signal to governed deeper validation, the process stays clear for non-technical buyers.

01 Bounded start

Verzenden domain

The review starts from a bounded passive request and business context, not an unrestricted scan brief.

02 Trust gate

Verifieer e-mail

De eerste klantgerichte e-mail beschermt de privéroute voordat een voltooid resultaat wordt geleverd.

03 Publiek bewijs

Passive review runs

Publiek bewijs is collected first so the opening lane stays safe, non-invasive en explainable.

04 Privélevering

Ontgrendeling van privéresultaten

The verified recipient sees either the verified-running state or the completed private results page.

05 Geschiktheid vereist

Beheerde diepere review

If ownership and engagement qualify, authorized_deep can unlock a more decision-ready evidence set.

06 Approved context

Connector and export context

Read-only connectorbewijs and approved trusted exports can deepen confidence only when explicitly eligible.

07 Next-step lane

KMayer remediation lane

The output moves into validation, prioritization en deeper remediation planning rather than stopping at findings.

Review journey

De klantreis is bewust, privé en verificatiegericht vanaf de eerste aanvraag tot de afgeronde resultaten.

Step 1 Request-intake

Verzend het domein en de bedrijfsgegevens

Every request starts with domain validation, normalization en guarded input handling before any public fetch begins. Invalid, private-address, localhost en suspicious targets are rejected up front.

Bounded request capture before any review starts.

Step 2 Passive entry lane

Zet de passive_public review in de wachtrij

The default entry lane reviews public DNS, mail-trust posture, HTTPS reachability, TLS basics, visible headers, trust files, indexing signals en a tightly capped set of same-host public pages.

Eerst publiek bewijs, geen intrusieve verbreding.

Step 3 Trust checkpoint

Verzend eerst de verificatie-e-mail

The first customer-facing message is the verification email. It protects the private results route before any completed-results delivery is allowed.

Verification comes before private delivery.

Step 4 Ontvangersbewijs

Verifieer de aanvraag-e-mail

The one-time verification link confirms that the intended recipient is the person unlocking the private route, even if the opaque URL is forwarded or discovered out of context.

Privétoegang blijft gekoppeld aan de beoogde ontvanger.

Step 5 Verwerkingsduidelijkheid

Zie de verified-running status als de review nog verwerkt wordt

After verification, the private route can show a verified-running state instead of exposing incomplete results. This makes it clear that access is valid while preparation is still underway.

No partial result exposure while the review is still being prepared.

Step 6 Privéontgrendeling

Ontgrendel de privéresultaten wanneer de review klaar is

When the passive review has finished, the private page opens the completed results immediately for the verified recipient.

Completed results appear only on the verified route.

Step 7 Gefaseerde levering

Verzend de results-ready e-mail pas na verificatie en voltooiing

If the scan finishes before verification, the ready state is preserved but the results-ready email waits until verification occurs. No verified click means no results-ready email to that recipient.

Results-ready levering blijft geblokkeerd tot verificatie en voltooiing.

Step 8 Beslissingsondersteuning

Use the private results to understand risks, evidence, priorities en next steps

The unlocked page explains the executive summary, technical highlights, risk themes, evidence-source context, priorities, business or trust cues en practical next-step guidance.

Business framing and technical context stay together.

Step 9 Beheersened deeper lane

Activate authorized_deep only when ownership and engagement are verified

The deeper lane is governed. It applies only when verified ownership, active engagement en the right approvals exist for the reviewed domain or account.

authorized_deep is explicit, not anonymous or automatic.

Step 10 Approved evidence

Add read-only connectors and trusted exports only when eligible

read-only connector evidence, trusted export intelligence, monitoring, history en deeper explainability can extend the review only inside that governed lane and only when the workflow allows them.

Connector and export context deepen the result only when the engagement qualifies.

Beslismatrix

Use the first private result to decide what can happen now, what gets deeper with authorization en where KMayer helps next.

What you get now

  • Passieve externe posture-review, eerst opgebouwd uit publiek bewijs.
  • Private verified delivery with executive summary, technical highlights en first priorities.
  • Veilige niet-invasieve signaalverzameling zonder loginpogingen, brute force of exploitgedrag.

Wat dieper wordt met autorisatie

  • Read-only connectorbewijs wanneer tenant of domein is goedgekeurd.
  • Trusted export intelligence after quarantine, review en approved-for-parse controls.
  • Stronger provenance, vendor and asset context, monitoring continuity en remediation sequencing.

What KMayer can validate next

  • Whether the highest-risk signals map cleanly to real control owners and operational impact.
  • Whether authorized_deep is commercially justified for the reviewed environment.
  • How to turn the result into a practical remediation conversation without widening scope unsafely.

Why verification is required

Private results are intended for the verified recipient. Verification closes the trust gap between the public submission flow and the non-indexed private results route en it keeps completed-results email delivery aligned to the right recipient.

Wat de publieke modus nooit doet

De publieke modus blijft alleen passief. Er worden geen loginpogingen, brute force, credential spraying, exploitgedrag, intrusieve tests, hidden-path probing of actieve internetbrede scans uitgevoerd.

What KMayer can help with after the review

KMayer can validate the findings, prioritize the highest-impact fixes, determine whether authorized deeper review is justified, interpret connector-backed or trusted-export evidence en move the work into assisted remediation planning.

Who provides the review

KMayer provides KMayer Exposure Lens AI. KMayer is the company and provider, while KMayer Exposure Lens AI is the tool and service family used for this review workflow.

Waar dieper bewijs vandaan komt

Deeper evidence is governed, verified en added only when it improves decision confidence.

The first review stays passive. When ownership and engagement are verified, KMayer can extend the review with approved read-only connector context, trusted export intelligence, monitoring, history en remediation sequencing.

Terug naar de tool Neem contact op met KMayer

Passive evidence first

Publieke signalen bepalen de veilige basislaag.

The first review is passive and bounded: DNS, mail posture, HTTPS, TLS, trust files, indexing signals en capped same-host public evidence are evaluated before any deeper lane is considered.

  • DNS, mail trust, HTTPS, TLS, headers, trust files en indexing posture.
  • No login attempts, brute force, exploit behavior, or intrusive widening.

Beheersened deeper context

authorized_deep activates only with proof and scope.

The deeper lane is not anonymous. It requires verified ownership, active engagement, approved scope en explicit approval for read-only connector evidence or trusted export intelligence.

  • Connector and export evidence remain read-only, attributable en bounded.
  • Privé noindex-afhandeling en verificatiecontroles blijven de toegang sturen.

Decision-ready follow-through

Deeper evidence improves confidence, history en remediation sequencing.

When eligible, connector and trusted-export context can strengthen provenance, vendor ecosystem interpretation, passive asset inventory, monitoring, history en the sequence of practical remediation work.

  • Use deeper context to validate priority and ownership before change work.
  • Move from findings into KMayer-assisted remediation planning when justified.
Passive first Verified ownership Approved read-only evidence Privé noindex result KMayer-assisted remediation

Bewijs reading lane

Read the public-signal guides that explain what the passive lane is observing.

Use these guides to understand the boundary between safe public evidence, governed deeper review en practical next steps.

Bewijs reading lanePassieve externe exposure-reviewUnderstand what passive public-signal review can show and what it cannot claim.Bewijs reading lanePassive Exposure ChecklistUse a structured checklist for DNS, mail, TLS, headers, trust files en ownership review.Bewijs reading laneE-mail and Web Trust SignaalsReview SPF, DKIM, DMARC, TLS, HTTPS, headers en visible trust-signal basics.

Neem contact op

Neem contact op met KMayer

Heeft u vragen of deskundige IT-support nodig? Wij helpen graag. Of u nu managed diensten, cybersecurityoplossingen of cloudinfrastructuur zoekt, ons professionele team staat klaar. Laten we samen uw organisatie versterken met IT-oplossingen op maat.

Neem vandaag contact op

KMayer Ltd | European Trade Centre, 7th Kilometer Business District, 1784 Sofia, Bulgaria | +31 10 8998556

© 2026 KMayer Technology Solution. Alle rechten voorbehouden.

Clutch Icon
Erkend voor kwaliteit: 5-sterrenbeoordeling op Clutch.co
Call Icon
Gratis nummer Nederland: + 31 10 8998556
Email Icon
NL
KMayer - IT Service Provider
Privacybeleid

Our website is committed to protecting your privacy. We collect and process data to enhance your experience, such as recognizing you when you return and understanding how you interact with our content. Your information is used responsibly to ensure that our diensten remain valuable, secure en tailored to your needs. For a detailed explanation of how we handle and protect your data, please refer to our Privacybeleid