Starting early February 2024, major inbox providers like Gmail and Yahoo are requiring some senders to meet a new standard of email authentication. While these standards have long been considered best practices, they will now be required in order to ensure a high deliverability rate and to keep your emails out of the spam box.
Anyone sending emails through third-party applications such as Flodesk needs to follow these new requirements. Failure to comply with these new requirements could result in your emails bouncing or being marked as spam.
All senders who send email to Gmail accounts must meet these requirements:
Set up SPF or DKIM email authentication if you’re using a custom domain
Keep spam rates below 0.10% and avoid ever reaching a spam rate of 0.30% or higher
All senders who send more than 5,000 messages per day to Gmail accounts must meet these requirements:
Send emails from a custom domain
Set up both SPF and DKIM email authentication for your domain
Set up a DMARC email policy for your sending domain. Learn more about setting a DMARC policy here.
Keep spam rates below 0.10% and avoid ever reaching a spam rate of 0.30% or higher
Marketing messages and subscribed messages must support one-click unsubscribe and include a clearly visible unsubscribe link in the message body
When will these requirements be implemented?
Google has indicated that enforcement will be gradual, with requirements more strictly enforced by April 2024. You can read Google’s timeline here. We recommend taking action by February to prevent any disruptions to your email marketing.
If I’m a Flodesk member, do I need to get a custom domain?
Inbox providers (like Gmail, Yahoo, Outlook, etc) have automatic filters working to screen every email and evaluate if they’re a potential threat. They commonly mark as spam—or even block entirely forever—mass emails sent from a free email address, as this is a common behavior for spammers and bad actors.
If you are using a free email address on Flodesk to send emails, we strongly recommend you get a custom domain and authenticate your domain via DKIM or SPF at a minimum.
A custom domain means that you’re sending email from a domain name that you own. An example of a custom domain would be you@yourname.com.
A “free email” address is an email address from a free email provider, such as Gmail, Yahoo, and Hotmail. Some examples of free email addresses are you@gmail.com, you@yahoo.com, you@hotmail.com, etc.
In certain cases, you may be required to set up a custom domain to continue sending unlimited emails from Flodesk.
If you’re using Flodesk and are not ready for a custom domain yet, we’re here to help. While you prepare to purchase your custom domain, Flodesk will rewrite your sender address so that your emails are sent from one of our verified domains. This will allow you to continue nurturing your list.
How do I implement one-click unsubscribe?
If you are using Flodesk to send your emails, we have already taken care of this for you. Our team has added the additional code needed to allow Gmail to surface up the one-click unsubscribe link for users who wish to use it.
Why are mailbox providers pushing these kinds of requirements?
Email abuse is a common problem in the world of email. While inbox providers have taken measures to ensure their users' safety, it’s increasingly essential that some responsibility also falls on senders. It can be challenging to distinguish legitimate senders from spam or phishing attempts, which makes it difficult to reward good senders and keep unwanted emails out of users' inboxes.
What should you have in place to meet these new requirements?
Regardless of your list size, set up the following to give your emails the highest chances of being delivered:
If you’re a bulk sender (sending 5,000 emails per day or more), you’re required to have these in place.