Stop account takeover before it starts.
BreachID detects exposed employee and customer credentials on the dark web — then helps you fix the risk fast.
Daily monitoring. Actionable alerts. Audit-ready reporting for POPIA and cyber insurance.
FreeDark Web Scan
Understand not only what data has been compromised but how it impacts your business and employees.
Need a quick overview first? Download brochure.
Why it mattersDark web exposure is a business risk.
Stolen credentials are traded daily. Even when your systems were not directly breached, leaked logins can still be used to access your environment and customer portals.
BreachID gives you early visibility so you can act before attackers do — reducing account takeover risk, operational disruption, and reputational damage.
Outcomes teams care about
- Find exposed credentials early
- Prioritize what matters with source context
- Respond quickly with clear remediation steps
- Demonstrate due diligence to auditors and insurers
Compliance, insurance and executive reporting.
Insurers and regulators increasingly expect evidence that you can detect, prioritize and remediate credential exposure risk.
BreachID supports this with audit-ready reports, risk visibility and practical remediation guidance that teams can execute quickly.
Why choose BreachID over generic threat feeds?
- Built for action, not noise
- Customer credential exposure, not only internal accounts
- POPIA-forward positioning for South African organisations
- Reporting for both security teams and executives
- POPIAProtection of Personal Information Act
- GDPRGeneral Data Protection Regulation
- CCPACalifornia Consumer Privacy Act
- HIPAAHealth Insurance Portability and Accountability Act
Platform capabilities
BreachID is built to close the loop from detection to remediation — not just generate another alert feed.
Credential Exposure Monitoring
Continuously monitors for exposed employee and business credentials linked to your domains.
Customer Credential Exposure
Detects leaked credentials used by customers on your platform to reduce account takeover risk.
Source & Infection Context
Adds context to findings so teams can triage quickly and investigate likely exposure paths.
Alerting & Workflow
Supports operational response with clear actions your team can execute immediately.
Compliance & Insurance Reporting
Provides audit-ready reporting for governance, POPIA alignment and cyber insurance evidence.
Proof over promises.
Track measurable outcomes in your first month: first findings, remediation progress, and reduced credential exposure risk across employee and customer identities.
Choose the right plan for your risk profileBreachID plans
All plans include the same detection engine. As you move up, you increase monitored scope, reporting depth and support.
Spark
Small teams getting started with proactive monitoring
R1,495
Billed monthly (incl. VAT)
- •50 Breached Emails
- •2 Domains
- •Daily monitoring + alerts
Beacon
Growing businesses managing multiple domains
R4,830
Billed monthly (incl. VAT)
- •200 Breached Emails
- •5 Domains
- •PDF reporting + support desk
Lumen
Enterprise teams with customer portals and high login volume
R8,050
Billed monthly (incl. VAT)
- •500 Breached Emails
- •10 Domains
- •Investigation support + telephonic assistance
Every plan includes
- ✓Daily dark web scans of your domains
- ✓Employee and customer credential exposure detection
- ✓Alerts on newly discovered breach records
- ✓Remediation tracking workflows
- ✓Report export and scheduled reporting
- ✓Compliance and cyber-insurance readiness support
Need something tailored?
If your scope exceeds these tiers, contact us for a custom enterprise package.
Frequently Asked Questions
- Why BreachID if we already have security tools?
- How often does BreachID scan?
- What is a “Breached Email” in licensing terms?
- Do you monitor customer credentials as well as employee credentials?
- Do you store full leaked passwords?
- How does BreachID support compliance and cyber insurance?
- What should we do when exposure is detected?
- What if we outgrow a plan limit?
Competitor matrix
High-level positioning view for buyer conversations. This is a strategy aid, not a legal parity document.
| Vendor | Core Focus | Dark Web Exposure | Customer Credential Exposure | Actionability | Regional POPIA Positioning |
|---|---|---|---|---|---|
| BreachID | Dark web monitoring + remediation | Strong | Strong | Strong | Strong |
| SpyCloud | Identity exposure / ATO prevention | Strong | Strong | Medium | Light |
| Constella | Identity intelligence | Strong | Medium | Medium | Light |
| Flare | External threat exposure + CTI | Strong | Medium | Medium | Light |
| SOCRadar / Cyble | Broad CTI + exposure monitoring | Strong | Medium | Medium | Light |
Let's Start a Conversation
We'd love to hear from you! Whether you have a question, need a bit of guidance, or just want to learn more about our services, our team is here and happy to help.
Feel free to reach out using the contact details below. We'll make sure the right person gets back to you as soon as possible.
- Talk to Sales
- +27 10 593 0601
- sales@tph.io
- Customer Support
- Need support or have a question?
- Visit Support