Sign In
MailGuard · comparison

Mimecast and Conbool — side by side.

If you're looking for an email security platform hosted in the EU and billed by module, it's worth looking at the differences directly. This page compares publicly verifiable points — as of May 2026.

Request a demoMailGuard in detailUpdated: May 2026

In three sentences

What matters.

Mimecast Advanced Email Security is an established global Secure Email Gateway. Conbool MailGuard is a German alternative with EU hosting and modular licensing. Which fits you better depends on your hosting requirement, your licensing preference and your need for DACH-specific DLP detectors.

The five most common questions, side by side.

Every statement about Mimecast links to a public source. Every Conbool claim is verifiable in a demo.

Where is my data hosted?

Conbool MailGuard

Exclusively in EU data centres on ISO 27001-certified infrastructure. Contract party and data processor is Conbool GmbH in Germany. On request, the data location is named explicitly in your DPA.

MimecastMimecast Advanced Email Security

According to Mimecast's public Trust Center, Mimecast runs multiple cloud regions worldwide, including the US, UK, Germany, Australia and South Africa. Which region is active for your tenant depends on the contract and region assignment.

Source: Mimecast Trust Center, „Data Centers / Service Locations" (publicly available). Please confirm the active region for your tenant with the vendor.

Why it matters: For GDPR records of processing, NIS-2 risk assessments and KRITIS requirements, the concrete data location has to be documented.

How is licensing structured?

Conbool MailGuard

Modular per feature. You book phishing protection, attachment sandbox, DLP and audit log individually or as a bundle. Term monthly or yearly, no multi-year minimum.

MimecastMimecast Advanced Email Security

Mimecast bundles features into editions (S1/S2/S3 historically, or the newer „Advanced", „Advanced Plus" and „Industry Leading" bundles). What is included in each package is governed by Mimecast's current bundle overview.

Source: Mimecast Product Overview and bundle comparison on mimecast.com (publicly available since at least 2024). Contract terms are negotiated by Mimecast directly — please confirm with the vendor.

Why it matters: If you only need some features or want a shorter commitment, the model directly drives total cost of ownership.

What protection features are included by default?

Conbool MailGuard

In the standard tier: spam and phishing detection, BEC protection with behavioural analysis, attachment sandbox, URL rewriting, DLP with DACH detectors, and audit log. Each feature is configurable per tenant in the admin portal.

MimecastMimecast Advanced Email Security

Mimecast covers the same functional categories (anti-phishing, BEC protection, attachment sandboxing, URL protection, DLP). Which detailed features are included depends on the edition or bundle.

Source: Mimecast Advanced Email Security product page, 2026. For details see the Mimecast bundle comparison.

Why it matters: Both solutions cover the standard SEG features. The difference is not in the feature list but in hosting, licensing granularity and specialised detectors.

Which DACH-specific features does the solution offer?

Conbool MailGuard

DLP detectors with a DACH focus: German IBAN with checksum, VAT IDs (DE, AT, CH-UID), Swiss AHV number, German tax ID, social security number. Custom detectors via regex and lookup lists per tenant.

MimecastMimecast Advanced Email Security

Mimecast offers DLP with many predefined detectors. Which regional focuses are covered is governed by the current detector library.

Source: Mimecast DLP Documentation, „Predefined Content Types" (public, 2024+). Please check the specific DACH detectors with the vendor for your requirement.

Why it matters: If your compliance work has to handle German or Austrian identifiers (VAT ID, AHV), predefined DACH detectors save custom regex work.

How quick is the migration?

Conbool MailGuard

MX switch in under 30 minutes technically, plus default policies active immediately. Parallel operation with the existing gateway is supported, inbound mail is rerouted gradually. Detailed DLP tuning happens in the first days.

MimecastMimecast Advanced Email Security

Mimecast uses, according to documentation, the Mimecast Migration Toolkit, connector configuration and mail flow rules. The migration is documented as a guided process.

Source: Mimecast Knowledge Base, „Getting Started / Migration" (public, 2024+).

Why it matters: Migration duration and parallel operation are direct cost drivers in IT project planning.

Migration checklist

What to do specifically when migrating away from Mimecast.

Replacing Mimecast typically runs as a parallel MX migration in five steps. This checklist is tailored to existing Mimecast contracts.

  1. 1. Review the Mimecast contract and expiry date

    First clarify when the current Mimecast bundle ends and whether auto-renewal applies. Mimecast contracts often have multi-year terms — a gliding cutover keeps double costs low. Note the notice period and SOX / ISO audit dates.

  2. 2. Export the current Mimecast policies

    From the Mimecast Administration Console export anti-spoofing, URL Protection, Targeted Threat Protection and DLP policies. This is the template for the Conbool rules and saves starting from scratch.

  3. 3. Add Conbool as a secondary MX record

    A second MX with lower priority pointing at Conbool allows a controlled test mail flow without disabling Mimecast. You validate DLP, BEC and attachment rules on a representative sample.

  4. 4. MX cutover on a quiet weekday

    Once the test phase is clean, the MX records flip fully to Conbool. Mimecast stays available in parallel for stragglers. From this point the audit log runs entirely through Conbool.

  5. 5. Decommission the Mimecast tenant

    After 14–30 days with no mail volume on Mimecast the tenant is deactivated. Respect data retention per contract, migrate quarantine if needed, terminate the contract on time.

These steps are an experience grid and don't replace individual migration advice. In the consult we adapt the order to your setup.

Decision aid

When Conbool, when Mimecast.

Conbool MailGuard fits when …

  • You need to document EU hosting and a German contract party as a requirement.
  • You only need individual features or prefer a short commitment.
  • DACH DLP detectors (IBAN, VAT ID, AHV) matter in your standard.
  • You want to cancel monthly or yearly.

Mimecast fits when …

  • You need an established global platform with worldwide region choice.
  • You prefer a broadly bundled edition model with a large feature scope in one contract.
  • Existing Mimecast integrations (SIEM, M365 connectors) already run in your environment.
  • You want to establish global, multi-year enterprise master agreements.

Matched to your setup

Conbool MailGuard by industry and use case.

E-Mail-Sicherheit für Banken

BaFin-konforme Schutzmaßnahmen für Phishing- und Spear-Phishing-Vektoren.

Learn more

Spam-Filter Unternehmen

Multi-Engine-Spam-Filter mit Quarantäne-Selfservice und Reputation-Live-Score.

Learn more

Phishing-Schutz

BEC, Spear-Phishing und QR-Code-Phishing in Echtzeit erkennen und entfernen.

Learn more

Hornetsecurity-Alternative

Deutsche MailGuard-Alternative nach der Proofpoint-Übernahme.

Learn more

Phishing-Schutz

BEC, Spear-Phishing und QR-Code-Phishing erkennen und entfernen.

Learn more

Ransomware-Schutz E-Mail

Mehrstufige Anhang-Filter und URL-Reputation gegen Ransomware-Kampagnen.

Learn more

Spam-Filter Unternehmen

Spam und unerwünschte Massenmail mit DACH-Heuristiken filtern.

Learn more

CEO-Fraud-Schutz

BEC und CEO-Fraud-Attacken über Authentifizierungs-Layer abwehren.

Learn more

Also compared

Further Mimecast alternatives and cross-comparisons.

Mimecast is often weighed up against Proofpoint, Hornetsecurity and Microsoft Defender. Here are the direct comparison pages.

Frequently asked

See Conbool MailGuard in your own setup.

30-minute demo. Modular per feature. Hosting in the EU.

Request a demoMailGuard in detail

Sources and fairness note

Statements about Mimecast on this page rely exclusively on publicly accessible sources: Mimecast Trust Center, Mimecast product pages, Mimecast Knowledge Base and Mimecast documentation. Claims about internal processes, architecture details or roadmap items that are not publicly substantiated are avoided. Statements about Conbool rely on our product documentation, infrastructure certifications and contractual commitments.

As of May 2026. For your final decision we recommend you ask both vendors directly about the points relevant to you and get statements confirmed in writing.

Mimecast is a registered trademark of Mimecast Limited or the Mimecast group. Conbool is a trademark of Conbool GmbH. This page is an editorial comparison — not official Mimecast material.