diff --git a/api.go b/api.go
index a8a72c9e..edfc68e1 100644
--- a/api.go
+++ b/api.go
@@ -3,8 +3,10 @@ package main
 import (
 	"encoding/json"
 	"fmt"
+	"html/template"
 	"log"
 	"net/http"
+	"os"
 	"strings"
 	"time"
 
@@ -62,9 +64,10 @@ type EmailSender interface {
 
 // APIResponse wraps all the responses from this API.
 type APIResponse struct {
-	StatusCode int         `json:"status_code"`
-	Message    string      `json:"message"`
-	Response   interface{} `json:"response"`
+	StatusCode   int         `json:"status_code"`
+	Message      string      `json:"message"`
+	Response     interface{} `json:"response"`
+	TemplatePath string      `json:"-"`
 }
 
 type apiHandler func(r *http.Request) APIResponse
@@ -72,20 +75,21 @@ type apiHandler func(r *http.Request) APIResponse
 func apiWrapper(api apiHandler) func(w http.ResponseWriter, r *http.Request) {
 	return func(w http.ResponseWriter, r *http.Request) {
 		response := api(r)
-		if response.StatusCode != http.StatusOK {
-			http.Error(w, response.Message, response.StatusCode)
-		}
 		if response.StatusCode == http.StatusInternalServerError {
 			packet := raven.NewPacket(response.Message, raven.NewHttp(r))
 			raven.Capture(packet, nil)
 		}
-		writeJSON(w, response)
+		if strings.Contains(r.Header.Get("accept"), "text/html") {
+			writeHTML(w, response)
+		} else {
+			writeJSON(w, response)
+		}
 	}
 }
 
 // Checks the policy status of this domain.
 func (api API) policyCheck(domain string) *checker.Result {
-	result := checker.Result{Name: "policylist"}
+	result := checker.Result{Name: checker.PolicyList}
 	if _, err := api.List.Get(domain); err == nil {
 		return result.Success()
 	}
@@ -153,16 +157,20 @@ func (api API) Scan(r *http.Request) APIResponse {
 		scan, err := api.Database.GetLatestScan(domain)
 		if err == nil && scan.Version == models.ScanVersion &&
 			time.Now().Before(scan.Timestamp.Add(cacheScanTime)) {
-			return APIResponse{StatusCode: http.StatusOK, Response: scan}
+			return APIResponse{
+				StatusCode:   http.StatusOK,
+				Response:     scan,
+				TemplatePath: "views/scan.html.tmpl",
+			}
 		}
 		// 1. Conduct scan via starttls-checker
-		rawScandata, err := api.CheckDomain(api, domain)
+		scanData, err := api.CheckDomain(api, domain)
 		if err != nil {
 			return APIResponse{StatusCode: http.StatusInternalServerError, Message: err.Error()}
 		}
 		scan = models.Scan{
 			Domain:    domain,
-			Data:      rawScandata,
+			Data:      scanData,
 			Timestamp: time.Now(),
 			Version:   models.ScanVersion,
 		}
@@ -171,7 +179,11 @@ func (api API) Scan(r *http.Request) APIResponse {
 		if err != nil {
 			return APIResponse{StatusCode: http.StatusInternalServerError, Message: err.Error()}
 		}
-		return APIResponse{StatusCode: http.StatusOK, Response: scan}
+		return APIResponse{
+			StatusCode:   http.StatusOK,
+			Response:     scan,
+			TemplatePath: "views/scan.html.tmpl",
+		}
 		// GET: Just fetch the most recent scan
 	} else if r.Method == http.MethodGet {
 		scan, err := api.Database.GetLatestScan(domain)
@@ -278,14 +290,23 @@ func (api API) Queue(r *http.Request) APIResponse {
 			return APIResponse{StatusCode: http.StatusInternalServerError,
 				Message: "Unable to send validation e-mail"}
 		}
-		return APIResponse{StatusCode: http.StatusOK, Response: domainData}
+		// domainData.State = Unvalidated
+		// or queued?
+		return APIResponse{
+			StatusCode: http.StatusOK,
+			Response:   fmt.Sprintf("Thank you for submitting your domain. Please check postmaster@%s to validate that you control the domain.", domain),
+		}
 		// GET: Retrieve domain status from queue
+		// JSON only
 	} else if r.Method == http.MethodGet {
 		status, err := api.Database.GetDomain(domain)
 		if err != nil {
 			return APIResponse{StatusCode: http.StatusNotFound, Message: err.Error()}
 		}
-		return APIResponse{StatusCode: http.StatusOK, Response: status}
+		return APIResponse{
+			StatusCode: http.StatusOK,
+			Response:   status,
+		}
 	} else {
 		return APIResponse{StatusCode: http.StatusMethodNotAllowed,
 			Message: "/api/queue only accepts POST and GET requests"}
@@ -352,9 +373,10 @@ func getParam(param string, r *http.Request) (string, error) {
 
 // Writes `v` as a JSON object to http.ResponseWriter `w`. If an error
 // occurs, writes `http.StatusInternalServerError` to `w`.
-func writeJSON(w http.ResponseWriter, v interface{}) {
+func writeJSON(w http.ResponseWriter, apiResponse APIResponse) {
 	w.Header().Set("Content-Type", "application/json; charset=utf-8")
-	b, err := json.MarshalIndent(v, "", "  ")
+	w.WriteHeader(apiResponse.StatusCode)
+	b, err := json.MarshalIndent(apiResponse, "", "  ")
 	if err != nil {
 		msg := fmt.Sprintf("Internal error: could not format JSON. (%s)\n", err)
 		http.Error(w, msg, http.StatusInternalServerError)
@@ -362,3 +384,32 @@ func writeJSON(w http.ResponseWriter, v interface{}) {
 	}
 	fmt.Fprintf(w, "%s\n", b)
 }
+
+func writeHTML(w http.ResponseWriter, apiResponse APIResponse) {
+	// Add some additional useful fields for use in templates.
+	if apiResponse.TemplatePath == "" {
+		apiResponse.TemplatePath = "views/default.html.tmpl"
+	}
+	data := struct {
+		APIResponse
+		BaseURL    string
+		StatusText string
+	}{
+		APIResponse: apiResponse,
+		BaseURL:     os.Getenv("FRONTEND_WEBSITE_LINK"),
+		StatusText:  http.StatusText(apiResponse.StatusCode),
+	}
+	tmpl, err := template.ParseFiles(apiResponse.TemplatePath)
+	if err != nil {
+		log.Println(err)
+		raven.CaptureError(err, nil)
+		http.Error(w, "Internal error: could not parse template.", http.StatusInternalServerError)
+		return
+	}
+	w.WriteHeader(apiResponse.StatusCode)
+	err = tmpl.Execute(w, data)
+	if err != nil {
+		log.Println(err)
+		raven.CaptureError(err, nil)
+	}
+}
diff --git a/api_test.go b/api_test.go
index 923d4b4b..f3879736 100644
--- a/api_test.go
+++ b/api_test.go
@@ -1,6 +1,10 @@
 package main
 
 import (
+	"io/ioutil"
+	"net/http"
+	"net/url"
+	"strings"
 	"testing"
 
 	"github.com/EFForg/starttls-backend/checker"
@@ -40,3 +44,21 @@ func TestPolicyCheckWithQueuedDomain(t *testing.T) {
 		t.Errorf("Check should have warned.")
 	}
 }
+
+func testHTMLPost(path string, data url.Values, t *testing.T) ([]byte, int) {
+	req, err := http.NewRequest("POST", server.URL+path, strings.NewReader(data.Encode()))
+	if err != nil {
+		t.Fatal(err)
+	}
+	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
+	req.Header.Set("accept", "text/html")
+	resp, err := http.DefaultClient.Do(req)
+	if err != nil {
+		t.Fatal(err)
+	}
+	body, _ := ioutil.ReadAll(resp.Body)
+	if !strings.Contains(strings.ToLower(string(body)), "</html") {
+		t.Errorf("Response should be HTML, got %s", string(body))
+	}
+	return body, resp.StatusCode
+}
diff --git a/checker/domain.go b/checker/domain.go
index fd6a50a0..54c40b8a 100644
--- a/checker/domain.go
+++ b/checker/domain.go
@@ -57,7 +57,7 @@ func (d DomainResult) Class() string {
 }
 
 func (d DomainResult) setStatus(status DomainStatus) DomainResult {
-	d.Status = DomainStatus(SetStatus(CheckStatus(d.Status), CheckStatus(status)))
+	d.Status = DomainStatus(SetStatus(Status(d.Status), Status(status)))
 	return d
 }
 
diff --git a/checker/domain_test.go b/checker/domain_test.go
index 7627379e..f9abb30c 100644
--- a/checker/domain_test.go
+++ b/checker/domain_test.go
@@ -21,23 +21,23 @@ var mxLookup = map[string][]string{
 // Fake hostname checks :)
 var hostnameResults = map[string]Result{
 	"noconnection": Result{
-		Status: Error,
+		Status: 3,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", Error, nil, nil},
+			Connectivity: {Connectivity, 3, nil, nil},
 		},
 	},
 	"nostarttls": Result{
-		Status: Failure,
+		Status: 2,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", Failure, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 2, nil, nil},
 		},
 	},
 	"nostarttlsconnect": Result{
-		Status: Error,
+		Status: 3,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", Error, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 3, nil, nil},
 		},
 	},
 }
@@ -73,10 +73,10 @@ func mockCheckHostname(domain string, hostname string) HostnameResult {
 		Result: &Result{
 			Status: 0,
 			Checks: map[string]*Result{
-				"connectivity": {"connectivity", 0, nil, nil},
-				"starttls":     {"starttls", 0, nil, nil},
-				"certificate":  {"certificate", 0, nil, nil},
-				"version":      {"version", 0, nil, nil},
+				Connectivity: {Connectivity, 0, nil, nil},
+				STARTTLS:     {STARTTLS, 0, nil, nil},
+				Certificate:  {Certificate, 0, nil, nil},
+				Version:      {Version, 0, nil, nil},
 			},
 		},
 		Timestamp: time.Now(),
diff --git a/checker/hostname.go b/checker/hostname.go
index 44bdb74b..05934b29 100644
--- a/checker/hostname.go
+++ b/checker/hostname.go
@@ -28,11 +28,11 @@ func (h HostnameResult) checkSucceeded(checkName string) bool {
 }
 
 func (h HostnameResult) couldConnect() bool {
-	return h.checkSucceeded("connectivity")
+	return h.checkSucceeded(Connectivity)
 }
 
 func (h HostnameResult) couldSTARTTLS() bool {
-	return h.checkSucceeded("starttls")
+	return h.checkSucceeded(STARTTLS)
 }
 
 // Modelled after policyMatches in Appendix B of the MTA-STS RFC 8641.
@@ -95,7 +95,7 @@ func smtpDialWithTimeout(hostname string, timeout time.Duration) (*smtp.Client,
 
 // Simply tries to StartTLS with the server.
 func checkStartTLS(client *smtp.Client) *Result {
-	result := MakeResult("starttls")
+	result := MakeResult(STARTTLS)
 	ok, _ := client.Extension("StartTLS")
 	if !ok {
 		return result.Failure("Server does not advertise support for STARTTLS.")
@@ -141,7 +141,7 @@ var certRoots *x509.CertPool
 // Checks that the certificate presented is valid for a particular hostname, unexpired,
 // and chains to a trusted root.
 func checkCert(client *smtp.Client, domain, hostname string) *Result {
-	result := MakeResult("certificate")
+	result := MakeResult(Certificate)
 	state, ok := client.TLSConnectionState()
 	if !ok {
 		return result.Error("TLS not initiated properly.")
@@ -188,7 +188,7 @@ func checkTLSCipher(hostname string, timeout time.Duration) *Result {
 }
 
 func checkTLSVersion(client *smtp.Client, hostname string, timeout time.Duration) *Result {
-	result := MakeResult("version")
+	result := MakeResult(Version)
 
 	// Check the TLS version of the existing connection.
 	tlsConnectionState, ok := client.TLSConnectionState()
@@ -235,7 +235,7 @@ func (c *Checker) CheckHostname(domain string, hostname string) HostnameResult {
 	}
 
 	// Connect to the SMTP server and use that connection to perform as many checks as possible.
-	connectivityResult := MakeResult("connectivity")
+	connectivityResult := MakeResult(Connectivity)
 	client, err := smtpDialWithTimeout(hostname, c.timeout())
 	if err != nil {
 		result.addCheck(connectivityResult.Error("Could not establish connection: %v", err))
diff --git a/checker/hostname_test.go b/checker/hostname_test.go
index a6fe9447..272d18bb 100644
--- a/checker/hostname_test.go
+++ b/checker/hostname_test.go
@@ -107,7 +107,7 @@ func TestNoConnection(t *testing.T) {
 	expected := Result{
 		Status: 3,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 3, nil, nil},
+			"connectivity": {Connectivity, 3, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
@@ -122,8 +122,8 @@ func TestNoTLS(t *testing.T) {
 	expected := Result{
 		Status: 2,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", 2, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 2, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
@@ -142,10 +142,10 @@ func TestSelfSigned(t *testing.T) {
 	expected := Result{
 		Status: 2,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", 0, nil, nil},
-			"certificate":  {"certificate", 2, nil, nil},
-			"version":      {"version", 0, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 0, nil, nil},
+			Certificate:  {Certificate, 2, nil, nil},
+			Version:      {Version, 0, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
@@ -168,10 +168,10 @@ func TestNoTLS12(t *testing.T) {
 	expected := Result{
 		Status: 2,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", 0, nil, nil},
-			"certificate":  {"certificate", 2, nil, nil},
-			"version":      {"version", 1, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 0, nil, nil},
+			Certificate:  {Certificate, 2, nil, nil},
+			Version:      {Version, 1, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
@@ -200,10 +200,10 @@ func TestSuccessWithFakeCA(t *testing.T) {
 	expected := Result{
 		Status: 0,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", 0, nil, nil},
-			"certificate":  {"certificate", 0, nil, nil},
-			"version":      {"version", 0, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 0, nil, nil},
+			Certificate:  {Certificate, 0, nil, nil},
+			Version:      {Version, 0, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
@@ -275,10 +275,10 @@ func TestFailureWithBadHostname(t *testing.T) {
 	expected := Result{
 		Status: 2,
 		Checks: map[string]*Result{
-			"connectivity": {"connectivity", 0, nil, nil},
-			"starttls":     {"starttls", 0, nil, nil},
-			"certificate":  {"certificate", 2, nil, nil},
-			"version":      {"version", 0, nil, nil},
+			Connectivity: {Connectivity, 0, nil, nil},
+			STARTTLS:     {STARTTLS, 0, nil, nil},
+			Certificate:  {Certificate, 2, nil, nil},
+			Version:      {Version, 0, nil, nil},
 		},
 	}
 	compareStatuses(t, expected, result)
diff --git a/checker/mta_sts.go b/checker/mta_sts.go
index 99aa238c..256c4d37 100644
--- a/checker/mta_sts.go
+++ b/checker/mta_sts.go
@@ -40,7 +40,7 @@ func getKeyValuePairs(record string, lineDelimiter string,
 }
 
 func checkMTASTSRecord(domain string) *Result {
-	result := MakeResult("mta-sts-txt")
+	result := MakeResult(MTASTSText)
 	records, err := net.LookupTXT(fmt.Sprintf("_mta-sts.%s", domain))
 	if err != nil {
 		return result.Failure("Couldn't find MTA-STS TXT record: %v", err)
@@ -63,7 +63,7 @@ func validateMTASTSRecord(records []string, result *Result) *Result {
 }
 
 func checkMTASTSPolicyFile(domain string, hostnameResults map[string]HostnameResult) *Result {
-	result := MakeResult("policy-file")
+	result := MakeResult(MTASTSPolicyFile)
 	client := &http.Client{
 		// Don't follow redirects.
 		CheckRedirect: func(req *http.Request, via []*http.Request) error {
@@ -139,7 +139,7 @@ func validateMTASTSMXs(policyFileMXs []string, dnsMXs map[string]HostnameResult,
 }
 
 func (c Checker) checkMTASTS(domain string, hostnameResults map[string]HostnameResult) *Result {
-	result := MakeResult("mta-sts")
+	result := MakeResult(MTASTS)
 	result.addCheck(checkMTASTSRecord(domain))
 	result.addCheck(checkMTASTSPolicyFile(domain, hostnameResults))
 	return result
diff --git a/checker/mta_sts_test.go b/checker/mta_sts_test.go
index 41e033e1..1499b95b 100644
--- a/checker/mta_sts_test.go
+++ b/checker/mta_sts_test.go
@@ -38,7 +38,7 @@ func TestGetKeyValuePairs(t *testing.T) {
 func TestValidateMTASTSRecord(t *testing.T) {
 	tests := []struct {
 		txt    []string
-		status CheckStatus
+		status Status
 	}{
 		{[]string{"v=STSv1; id=1234", "v=STSv1; id=5678"}, Failure},
 		{[]string{"v=STSv1; id=20171114T070707;"}, Success},
@@ -57,7 +57,7 @@ func TestValidateMTASTSRecord(t *testing.T) {
 func TestValidateMTASTSPolicyFile(t *testing.T) {
 	tests := []struct {
 		txt    string
-		status CheckStatus
+		status Status
 	}{
 		{"version: STSv1\nmode: enforce\nmax_age:100000\nmx: foo.example.com\nmx: bar.example.com\n", Success},
 		// Support UTF-8
@@ -79,8 +79,8 @@ func TestValidateMTASTSMXs(t *testing.T) {
 		Result: &Result{
 			Status: 3,
 			Checks: map[string]*Result{
-				"connectivity": {"connectivity", 0, nil, nil},
-				"starttls":     {"starttls", 0, nil, nil},
+				"connectivity": {Connectivity, 0, nil, nil},
+				"starttls":     {STARTTLS, 0, nil, nil},
 			},
 		},
 	}
@@ -88,15 +88,15 @@ func TestValidateMTASTSMXs(t *testing.T) {
 		Result: &Result{
 			Status: 3,
 			Checks: map[string]*Result{
-				"connectivity": {"connectivity", 0, nil, nil},
-				"starttls":     {"starttls", 3, nil, nil},
+				"connectivity": {Connectivity, 0, nil, nil},
+				"starttls":     {STARTTLS, 3, nil, nil},
 			},
 		},
 	}
 	tests := []struct {
 		policyFileMXs []string
 		dnsMXs        map[string]HostnameResult
-		status        CheckStatus
+		status        Status
 	}{
 		{
 			[]string{"mail.example.com"},
diff --git a/checker/result.go b/checker/result.go
index e588b0da..02856acc 100644
--- a/checker/result.go
+++ b/checker/result.go
@@ -1,21 +1,36 @@
 package checker
 
-import "fmt"
+import (
+	"encoding/json"
+	"fmt"
+)
 
-// CheckStatus is an enum encoding the status of the overall check.
-type CheckStatus int32
+// Status is an enum encoding the status of the overall check.
+type Status int32
 
-// Values for CheckStatus
+// Values for Result Status
 const (
-	Success CheckStatus = 0
-	Warning CheckStatus = 1
-	Failure CheckStatus = 2
-	Error   CheckStatus = 3
+	Success Status = 0
+	Warning Status = 1
+	Failure Status = 2
+	Error   Status = 3
 )
 
+var statusText = map[Status]string{
+	Success: "Success",
+	Warning: "Warning",
+	Failure: "Failure",
+	Error:   "Error",
+}
+
+// StatusText returns the text version of the Result Status
+func (r Result) StatusText() string {
+	return statusText[r.Status]
+}
+
 // SetStatus the resulting status of combining old & new. The order of priority
 // for CheckStatus goes: Error > Failure > Warning > Success
-func SetStatus(oldStatus CheckStatus, newStatus CheckStatus) CheckStatus {
+func SetStatus(oldStatus Status, newStatus Status) Status {
 	if newStatus > oldStatus {
 		return newStatus
 	}
@@ -28,7 +43,7 @@ func SetStatus(oldStatus CheckStatus, newStatus CheckStatus) CheckStatus {
 // warning messages associated.
 type Result struct {
 	Name     string             `json:"name"`
-	Status   CheckStatus        `json:"status"`
+	Status   Status             `json:"status"`
 	Messages []string           `json:"messages,omitempty"`
 	Checks   map[string]*Result `json:"checks,omitempty"`
 }
@@ -91,3 +106,48 @@ func (r *Result) addCheck(checkResult *Result) {
 	// SetStatus sets Result's status to the most severe of any individual check
 	r.Status = SetStatus(r.Status, checkResult.Status)
 }
+
+// IDs for checks that can be run
+const (
+	Connectivity     = "connectivity"
+	STARTTLS         = "starttls"
+	Version          = "version"
+	Certificate      = "certificate"
+	MTASTS           = "mta-sts"
+	MTASTSText       = "mta-sts-text"
+	MTASTSPolicyFile = "mta-sts-policy-file"
+	PolicyList       = "policylist"
+)
+
+// Text descriptions of checks that can be run
+var checkNames = map[string]string{
+	Connectivity:     "Server connectivity",
+	STARTTLS:         "Support for inbound STARTTLS",
+	Version:          "Secure version of TLS",
+	Certificate:      "Valid certificate",
+	MTASTS:           "Inbound MTA-STS support",
+	MTASTSText:       "Correct MTA-STS DNS record",
+	MTASTSPolicyFile: "Correct MTA-STS policy file",
+	PolicyList:       "Status on EFF's STARTTLS Everywhere policy list",
+}
+
+// Description returns the full-text name of a check.
+func (r Result) Description() string {
+	return checkNames[r.Name]
+}
+
+// MarshalJSON writes Result to JSON. It adds status_text and description to
+// the output.
+func (r Result) MarshalJSON() ([]byte, error) {
+	// FakeResult lets us access the default json.Marshall result for Result.
+	type FakeResult Result
+	return json.Marshal(struct {
+		FakeResult
+		StatusText  string `json:"status_text,omitempty"`
+		Description string `json:"description,omitempty"`
+	}{
+		FakeResult:  FakeResult(r),
+		StatusText:  r.StatusText(),
+		Description: r.Description(),
+	})
+}
diff --git a/checker/result_test.go b/checker/result_test.go
new file mode 100644
index 00000000..04a7554a
--- /dev/null
+++ b/checker/result_test.go
@@ -0,0 +1,41 @@
+package checker
+
+import (
+	"bytes"
+	"encoding/json"
+	"testing"
+)
+
+func TestMarshalResultJSON(t *testing.T) {
+	// Should set description and status_text for CheckResult w/ recognized keys
+	result := Result{
+		Name:   "starttls",
+		Status: Success,
+	}
+	marshalled, err := json.Marshal(result)
+	if err != nil {
+		t.Fatal(err)
+	}
+	if !bytes.Contains(marshalled, []byte("\"status_text\":\"Success\"")) {
+		t.Errorf("Marshalled result should contain status_text, got %s", string(marshalled))
+	}
+	if !bytes.Contains(marshalled, []byte("\"description\":\"")) {
+		t.Errorf("Marshalled result should contain description, got %s", string(marshalled))
+	}
+
+	// Should survive unrecognized keys
+	result = Result{
+		Name:   "foo",
+		Status: 100,
+	}
+	marshalled, _ = json.Marshal(result)
+	if err != nil {
+		t.Fatal(err)
+	}
+	if bytes.Contains(marshalled, []byte("\"status_text\":\"")) {
+		t.Errorf("Result with unrecognized keys shouldn't output status_text, got %s", string(marshalled))
+	}
+	if bytes.Contains(marshalled, []byte("\"description\":\"")) {
+		t.Errorf("Result with unrecognized keys shouldn't output status_text, got %s", string(marshalled))
+	}
+}
diff --git a/models/scan.go b/models/scan.go
index 883bc781..e39ff912 100644
--- a/models/scan.go
+++ b/models/scan.go
@@ -16,3 +16,13 @@ type Scan struct {
 	Timestamp time.Time            `json:"timestamp"` // Time at which this scan was conducted
 	Version   uint32               `json:"version"`   // Version counter
 }
+
+// CanAddToPolicyList returns true if the domain owner should be prompted to
+// add their domain to the STARTTLS Everywhere Policy List.
+func (s Scan) CanAddToPolicyList() bool {
+	if policyResult, ok := s.Data.ExtraResults[checker.PolicyList]; ok {
+		return s.Data.Status == checker.DomainSuccess &&
+			policyResult.Status == checker.Failure
+	}
+	return false
+}
diff --git a/queue_test.go b/queue_test.go
index 5686bc67..d9f7a8d5 100644
--- a/queue_test.go
+++ b/queue_test.go
@@ -6,6 +6,7 @@ import (
 	"io/ioutil"
 	"net/http"
 	"net/url"
+	"strings"
 	"testing"
 
 	"github.com/EFForg/starttls-backend/models"
@@ -23,6 +24,30 @@ func validQueueData(scan bool) url.Values {
 	return data
 }
 
+func TestQueueHTML(t *testing.T) {
+	defer teardown()
+
+	body, status := testHTMLPost("/api/queue", validQueueData(true), t)
+	if status != http.StatusOK {
+		t.Errorf("HTML POST to api/queue failed with error %d", status)
+	}
+	if !strings.Contains(string(body), "Thank you for submitting your domain") {
+		t.Errorf("Response should describe domain status, got %s", string(body))
+	}
+}
+
+func TestQueueErrorHTML(t *testing.T) {
+	defer teardown()
+
+	body, status := testHTMLPost("/api/queue", url.Values{}, t)
+	if status != http.StatusBadRequest {
+		t.Errorf("HTML POST status should be %d, got %d", http.StatusBadRequest, status)
+	}
+	if !strings.Contains(string(body), "Bad Request") {
+		t.Errorf("Response should contain failed status text, got %s", string(body))
+	}
+}
+
 func TestGetDomainHidesEmail(t *testing.T) {
 	defer teardown()
 
diff --git a/scan_test.go b/scan_test.go
index 2d1ef7b9..2004f000 100644
--- a/scan_test.go
+++ b/scan_test.go
@@ -4,13 +4,80 @@ import (
 	"encoding/json"
 	"io/ioutil"
 	"net/http"
+	"net/http/httptest"
 	"net/url"
 	"strings"
 	"testing"
+	"time"
 
+	"github.com/EFForg/starttls-backend/checker"
 	"github.com/EFForg/starttls-backend/models"
 )
 
+func TestScanHTMLRequest(t *testing.T) {
+	defer teardown()
+
+	// Request a scan!
+	data := url.Values{}
+	data.Set("domain", "eff.org")
+	body, status := testHTMLPost("/api/scan", data, t)
+	if status != http.StatusOK {
+		t.Errorf("HTML POST to api/scan failed with error %d", status)
+	}
+	if !strings.Contains(string(body), "eff.org") {
+		t.Errorf("Response should contain scan domain, got %s", string(body))
+	}
+}
+
+func TestScanWriteHTML(t *testing.T) {
+	scan := models.Scan{
+		Domain: "example.com",
+		Data: checker.DomainResult{
+			Domain: "example.com",
+			Status: checker.DomainSuccess,
+			HostnameResults: map[string]checker.HostnameResult{
+				"example.com": checker.HostnameResult{
+					Domain:   "example.com",
+					Hostname: "mx.example.com",
+					Result: &checker.Result{
+						Checks: map[string]*checker.Result{
+							checker.Connectivity: checker.MakeResult(checker.Connectivity),
+							checker.STARTTLS:     checker.MakeResult(checker.STARTTLS),
+							checker.Certificate:  checker.MakeResult(checker.Certificate),
+							checker.Version:      checker.MakeResult(checker.Version),
+						},
+					},
+				},
+			},
+			PreferredHostnames: []string{"mx.example.com"},
+			ExtraResults: map[string]*checker.Result{
+				checker.PolicyList: checker.MakeResult(checker.PolicyList),
+			},
+		},
+		Timestamp: time.Now(),
+		Version:   1,
+	}
+	response := APIResponse{
+		StatusCode:   http.StatusOK,
+		Response:     scan,
+		TemplatePath: "views/scan.html.tmpl",
+	}
+
+	w := httptest.NewRecorder()
+	writeHTML(w, response)
+	resp := w.Result()
+	body, err := ioutil.ReadAll(resp.Body)
+	if err != nil {
+		t.Fatal(err)
+	}
+	if !strings.Contains(strings.ToLower(string(body)), "</html") {
+		t.Errorf("Failed to write full HTML, got %s", string(body))
+	}
+	if strings.Contains(strings.ToLower(string(body)), "Add your email domain") {
+		t.Errorf("Should be prompted to join policy list, got %s", string(body))
+	}
+}
+
 // Tests basic scanning workflow.
 // Requests a scan for a particular domain, and
 // makes sure that the scan is persisted correctly in DB across requests.
diff --git a/views/default.html.tmpl b/views/default.html.tmpl
new file mode 100644
index 00000000..234679a1
--- /dev/null
+++ b/views/default.html.tmpl
@@ -0,0 +1,16 @@
+<html>
+  <head>
+    <title>STARTTLS Everywhere</title>
+  </head>
+  <body>
+    {{ if ne .StatusCode 200 }}
+      <p>{{ .StatusText }}</p>
+    {{ end }}
+
+    {{ if ne .Message "" }}
+      <p>{{ .Message }}<p>
+    {{ end }}
+
+    <p>{{ .Response }}<p>
+  </body>
+</html>
diff --git a/views/scan.html.tmpl b/views/scan.html.tmpl
new file mode 100644
index 00000000..b52c9dc5
--- /dev/null
+++ b/views/scan.html.tmpl
@@ -0,0 +1,47 @@
+<html>
+  <body>
+    <h1>Scan results for {{ .Response.Domain }}</h1>
+    <em>You're viewing unstyled results. You can enable Javascript to view styled content.</em>
+
+    <h2>Summary</h2>
+    {{ if eq .Response.Data.Status 0 }}
+      <p>Congratulations, your domain passed all checks.</p>
+    {{ else if eq .Response.Data.Status 1 }}
+      <p>Your domain passed all checks with some warnings. See below for details.</p>
+    {{ else }}
+      <p>There were some problems with your domain. See below for details.</p>
+    {{ end }}
+
+    <p>{{ .Response.Data.Message }}</p>
+
+    <h2>STARTTLS Everywhere Policy List</h2>
+    {{ with index .Response.Data.ExtraResults "policylist" }}
+      {{ .Description }}: <strong>{{ .StatusText }}</strong>
+      <ul>
+        {{ range $_, $message := .Messages }}
+          <li>{{ $message }}</li>
+        {{ end }}
+      </ul>
+    {{ end }}
+    {{ if .Response.CanAddToPolicyList }}
+        <a href="{{ .BaseURL }}/add-domain">Add your email domain the STARTTLS Everywhere Policy List</a>
+    {{ end }}
+
+    <h2>Mailboxes</h2>
+    {{ range $hostname, $hostnameResult := .Response.Data.HostnameResults }}
+      <h3>{{ $hostname }}</h3>
+      <ul>
+        {{ range $_, $r := $hostnameResult.Checks }}
+          <li>
+            {{ $r.Description }}: <strong>{{ $r.StatusText }}</strong>
+            <ul>
+              {{ range $_, $message := $r.Messages }}
+                <li>{{ $message }}<li>
+              {{ end }}
+            </ul>
+          </li>
+        {{ end }}
+      </ul>
+    {{ end }}
+  </body>
+</html>