Question everything
Even us.
Whether you’re evaluating PhishPrep or already running it, here are straight, honest answers — on deployment, data security, training, and pricing.
What is PhishPrep?
PhishPrep is a multichannel phishing simulation and security awareness training platform by IARM. It tests employees with realistic email, SMS, voice, Microsoft Teams, QR, and deepfake attacks, then closes the gaps with targeted micro-learning. It runs on-premise, in the cloud, or as a hybrid deployment, so you keep full control of your data
What makes PhishPrep different from other phishing simulation tools?
Four things: true multichannel coverage beyond email, on-premise and self-hosted deployment for full data control, behavioural risk scoring instead of click counts alone, and built-in micro-learning. It is also low-cost and available as a fully managed service
How much does PhishPrep cost?
PhishPrep is a low-cost phishing simulation solution. Pricing is based on your deployment model and the number of users or mailboxes, so you only pay for what you need. Share your team size and deployment preference and we will prepare a custom quote.
Can PhishPrep be self-hosted or run on-premise?
Yes. PhishPrep supports full on-premise, air-gapped, dedicated cloud, and hybrid deployment, with local data residency. It is not a SaaS-only product, so regulated organisations can keep all data inside their own environment
Is it legal to run phishing simulations on our own employees?
Running phishing simulations on your own workforce is a widely accepted security practice when carried out with proper internal approvals and policies. Whether explicit employee consent is required depends on your regional laws, so many organisations include simulations in their security awareness policy. PhishPrep provides the documentation and reporting to support a compliant program
Are real employee credentials captured or stored?
No. PhishPrep never stores real credentials. Simulated login pages are safe mock pages used only to measure awareness, so you get the behavioural insight without ever handling real passwords.
What results can we expect from PhishPrep?
Organisations typically see up to a 60% reduction in phishing click rates within six months, employees reporting suspicious messages up to 3X faster, and repeat clickers reduced by around 80% within three months through continuous simulation and micro-learning
Can I see a demo or trial first?
Yes. You can book a live demo or request a consultation to see PhishPrep run against your real-world scenarios and discuss a trial for your environment.

