How do I tell a corporate email domain from a personal one?

Extract the part of the email after the @, then check it against a maintained list of free consumer providers like gmail.com and outlook.com. Anything that is not a known consumer or disposable provider and resolves to a real organization is almost always a corporate or business domain.

Can detecting a corporate domain tell me which company a customer works for?

The domain itself often names the employer directly (name@uber.com means Uber). For custom domains that are not obviously branded, an enrichment step resolves the domain to a company name, size, and the buyer's likely role, turning a generic business signal into a named account.

Does every order from a custom domain mean a B2B buyer?

No. Custom domains can be personal vanity domains, and corporate domains can belong to founders buying for personal use rather than wholesale accounts. Combining the domain with order quantity, spend, and the shipping address separates true B2B and wholesale buyers from individual employees.

How much does corporate domain detection cost with SonarID?

The domain and spend classification layer runs free on every order with no per-lookup cost. Full profile enrichment, used only when a signal justifies it, is a flat $0.05 per enrichment, and every plan has a concrete enrichment cap.

Why not just build my own list of company domains?

There are millions of legitimate business domains and only a few hundred consumer providers, so you classify by excluding the consumer ones, not by listing every company. Keeping the exclusion list current, normalizing subdomains and plus-addresses, and verifying that domains resolve to real organizations is the ongoing work a maintained system handles for you.

What is the difference between a corporate buyer and a fraudulent or disposable-email order?

Both fall outside the free consumer providers, but they behave differently. Corporate domains resolve to real organizations and often pair with normal spend and a consistent shipping address, while disposable or role domains map to throwaway inbox services and frequently coincide with promo-gaming or chargeback risk, so they get separate handling rather than B2B treatment.

Corporate Email Domain Detection: B2B Buyer Identification for Shopify

Corporate email domain detection is the practice of inspecting the email address on a Shopify order and determining whether it belongs to a personal mailbox (like gmail.com or outlook.com) or a business domain (like stripe.com, uber.com, or a smaller company's own domain). When an order arrives from name@notion.so instead of name@gmail.com, the domain itself is a signal: this buyer is using a work address, which usually means they are an employee, founder, or executive at that company. For Shopify merchants trying to separate B2B buyers and corporate accounts from ordinary consumers, the email domain is the fastest, cheapest, and most reliable place to start.

The mechanics are simple. Every email address has a local part (before the @) and a domain (after the @). Detection extracts that domain, normalizes it, and classifies it into one of three buckets: known free or consumer providers, known role or disposable domains, and everything else, which is overwhelmingly corporate or organizational. A domain that is not a free provider and resolves to a real company is a strong indicator of a business buyer. Layer on a lookup of who owns that domain and you can often name the employer behind the order without paying for data at all. This is exactly the free signal layer SonarID runs on every Shopify order before it ever spends a cent on enrichment, which is why understanding domain detection matters even if you never write a line of code yourself.

Why the email domain is such a strong signal

Consumers almost always check out with personal email. Gmail, Outlook, Yahoo, iCloud, and a short list of regional providers account for the overwhelming majority of DTC orders. So when an order breaks that pattern with a custom business domain, it is genuinely unusual, and unusual is where value hides. A buyer using name@a16z.com or name@figma.com is telling you something they did not mean to disclose: where they work. That single fact reframes the order. A $90 candle order is just a candle order until you notice it shipped to a buyer using a venture firm's domain, at which point it becomes a relationship worth a personal note.

This is the core idea behind treating your checkout as intelligence rather than transaction logging. If you have ever wondered who is actually buying from your Shopify store, the email domain is the first thread to pull. It needs no cookies, no third-party tracking, and no guesswork. The buyer handed you a work address voluntarily, and that address is a legitimate, first-party signal you already own.

The three buckets: how classification actually works

Robust domain detection sorts every incoming domain into one of three categories, and the order of operations matters.

Free and consumer providers. These are the domains you explicitly exclude from B2B signaling: gmail.com, googlemail.com, outlook.com, hotmail.com, live.com, yahoo.com, icloud.com, me.com, aol.com, proton.me, gmx.com, and a long tail of regional providers. Maintaining this list is the heart of accurate detection, because a single missing entry produces false positives.

Role, disposable, and suspicious domains. Temporary inbox services and obvious throwaway domains signal something different: not a corporate buyer, but a buyer who may be hiding identity, gaming a promo, or testing. These deserve their own handling and sometimes overlap with chargeback and fraud risk.

Everything else. Whatever is not a known consumer provider and not disposable is, by elimination, a custom domain. The vast majority of custom domains belong to a company, nonprofit, university, or government body. This bucket is where your B2B buyers, corporate accounts, founders, and executives live.

You classify by exclusion rather than by maintaining a list of every company on earth for one simple reason: there are millions of legitimate business domains and only a few hundred consumer providers. You cannot enumerate every employer, but you absolutely can enumerate the free inboxes. Detect the consumer domains precisely, and the corporate ones reveal themselves.

From domain to employer: enrichment fills the gap

Knowing a domain is corporate is useful. Knowing whose corporate domain it is becomes transformative. The domain stripe.com tells you the buyer works at Stripe. A domain like brightpath-consulting.com tells you very little until you resolve it to a company name, headcount, industry, and the buyer's likely role. That resolution step is where order-level enrichment earns its keep, and it is the difference between "this is a business buyer" and "this is the head of partnerships at a 400-person fintech." We go deeper on the mechanic in how email domain matching identifies customers and on the broader question of whether you can identify a customer's employer from an order.

SonarID runs domain classification for free on every order, then escalates to a paid enrichment only when the signal justifies it, at a flat $0.05 per enrichment. The free layer catches the obvious corporate domains and pairs them with spend and shipping-address signals. The paid layer fills in the profile: company, title, seniority, and whether this person is a founder, executive, investor, or press contact. Every plan carries a concrete enrichment cap, so you are never spending enrichment budget on a gmail.com order that the free layer already classified as a likely consumer.

B2B buyers are not all the same

A corporate domain is a starting point, not a verdict. The same @company.com pattern can mean several very different things, and good detection separates them.

Wholesale and reseller buyers often order in repeat, high-quantity patterns from a business domain. These are prospects for a wholesale relationship, not VIP gifting. Order frequency and quantity, combined with the domain, surface them. See B2B customer detection for wholesale buyers for the full playbook.

Founders and executives buying for personal use show up on a corporate domain but with consumer-sized orders shipped to a residence. The domain says "works at a company"; the shipping address says "this is for them." That combination is a relationship signal, not a wholesale lead, and it is the focus of our guide to finding founders and executives in your orders.

Corporate gifting and procurement buyers place larger or bulk orders shipped to an office. The domain plus a commercial shipping address plus quantity points here.

Press and investors frequently use organizational domains too: a journalist at a publication's domain, or an associate at a venture firm. These warrant entirely different outreach.

Telling these apart is why the domain alone is never the whole story. SonarID combines the domain signal with spend analysis and the shipping address, because VIP scoring leans on the residence for personal-buyer signals while a commercial address points toward procurement. Identity resolution, done well, fuses these signals rather than relying on any one, which is the throughline of our identity resolution DTC strategy guide.

The edge cases that break naive detection

If domain detection were as simple as "not gmail equals corporate," every merchant would already do it. The reasons they do not, and the reasons homegrown attempts produce noise, come down to edge cases.

Subdomains and plus-addressing. name+shop@company.com and name@mail.company.com both need normalization back to the root domain before classification.

Company-branded consumer aliases. Some custom domains are personal vanity domains, not employers. A solo buyer using their own name's domain is not a B2B account, and treating them as one inflates your corporate counts.

Catch-all and parked domains. A domain that exists but hosts no real company is noise. Resolving the domain to an actual organization, not just confirming it is non-free, prevents false positives.

Regional and ISP-bundled providers. Many countries have ISP email domains that function like Gmail. Miss them on your exclusion list and you will mislabel ordinary consumers as businesses.

Stale company data. Acquisitions, rebrands, and shutdowns mean a domain's owner can change. Enrichment data needs freshness, which is one reason data quality matters more than raw speed.

These are the reasons a maintained, continuously updated detection system beats a static spreadsheet of "known company domains." The exclusion list has to stay current, the normalization has to be correct, and the resolution step has to verify the domain points at a real organization.

What to do once you have detected a B2B buyer

Detection without action is just trivia. The point of flagging corporate domains is to change what happens next. A few patterns that work:

Route the order to the right team. A wholesale-pattern corporate order should reach your sales team; a founder buying for personal use should reach your CX or partnerships lead. Real-time alerts to Slack or your support tool make this automatic.

Tag and segment. Apply a corporate or B2B customer tag so these accounts feed targeted Klaviyo flows and reporting rather than getting lost in your general consumer list.

Personalize the follow-up. A buyer from a notable company deserves a different post-purchase message than a first-time consumer. This is the practical edge of ecommerce personalization built on identity data.

Open the relationship. A corporate buyer who loves your product is a potential wholesale account, a referral inside their company, or a partnership. The order is the introduction.

The merchants who win with this do not treat a corporate-domain order as a one-time sale. They treat it as the first visible touchpoint in a relationship they can now name, route, and nurture, because the buyer told them who they work for at checkout.

Where SonarID fits

You can build basic domain detection yourself with an exclusion list and a few hours of work. What is hard to maintain is the freshness of that exclusion list, the normalization edge cases, and especially the resolution step that turns brightpath-consulting.com into a named company with a buyer's likely role. SonarID does all three on every Shopify order in real time: free domain and spend classification first, then a flat $0.05 enrichment only when the signal warrants it, with alerts to Slack and Klaviyo and a VIP dashboard so corporate buyers, founders, executives, and press never slip past unnoticed. The email domain your customer used at checkout is the cheapest intelligence you will ever get. The only question is whether you are reading it.