29 November 2023

Reading time: 3 min

Email Delivery: New Rules from Google, Yahoo, and Microsoft

Let’s explore the latest updates on email delivery requirements from Gmail, Yahoo, and now Microsoft. Learn what’s required, what happens if you don’t comply, and how to stay on track.

News

Latest updates (April 2025)

Following Gmail and Yahoo, Microsoft is also tightening its rules to fight spam and protect users. Starting in May 2025, senders targeting Microsoft domains (e.g., @outlook.com, @hotmail.com) will need to meet new authentication and security requirements.

Microsoft’s requirements are essentially the same as those introduced by Gmail and Yahoo last year:

Properly configured SPF, DKIM, and DMARC
Aligned sender domain
Simple unsubscribe link
Spam complaint rate below 0.3%

Read the official Microsoft announcement

Coming soon: We’ll be sharing more updates and new MailUp features to help you stay compliant. Stay tuned—webinars and learning resources are on the way to guide you through these changes.

Over the past year, Google Gmail and Yahoo have changed their email receiving policies, introducing new requirements for bulk email senders to improve security and protection.

Complying with these rules is crucial for anyone sending emails—to avoid ending up in spam folders and harming your deliverability.

That said, if you’re already following deliverability best practices, none of this should come as a surprise: these requirements reflect the same principles MailUp has always recommended.

Let’s review what these best practices are and how you can meet (or confirm you already meet) the new standards.

TRY MAILUP

Activate now the free trial to discover MailUp's potential.

From developing integrations to strategic support, from creating creative concepts to optimizing results.

START NOW

Google and Yahoo’s requirements

Google and Yahoo are now requiring all email senders, both large and small, to comply with these requirements:

● Authenticate your sending domain using SPF or DKIM authentication
● Allow simple unsubscription
● Maintain a rate of spam reports in Google Postmaster Tools below 0.1%

For senders of more than 5,000 emails in a day, two additional correlated configurations are required:

The sender domain must be aligned with either the DKIM signature domain or the envelope sender (SPF alignment)
You need to create a DMARC policy (link), even if it is set to “none”

This may sound complicated, but these are actually long-established best practices in the industry, which we have been advising all our clients to adopt for years, and which we help to implement with our services and the advice of our professionals.

But let’s look at the details of each new rule and how to apply it.

Authenticate your sender domain with SPF or DKIM methods

Sender domain authentication is a bit like an ID card: it is the official recognition that proves you are who you say you are.

What Google and Yahoo require you to do is stop using a free sender domain such as @gmail or @yahoo, and start using your own proprietary domain (@yourcompany.com), authenticating it with SPF or DKIM email authentication methods.

This is one of the first best practices that we at MailUp have always recommended to reduce the risk of ending up in the spam folder, ensure that you are recognizable, and safeguard your sender reputation.

To get help implementing an authentication method, you can request the Brand Shield service in the Deliverability Pro Pack and obtain assistance creating your own dedicated IP address and setting up SPF and DKIM authentication parameters. Fill out this form to find out more.

Enable simple unsubscription

Google and Yahoo will require you to enable one-click unsubscription for emails permitting unsubscription. Unsubscription is, in fact, another important best practice for optimizing deliverability and reducing spam reports. Quality, as we have always said, is better than quantity: it is better to have fewer contacts, who are however genuinely interested in receiving your emails, rather than many inactive contacts who are likely to find your emails irrelevant and annoying, and flag them as spam at some time in the future.

Keep in mind that when someone flags your message as spam, this signal affects your reputation as a sender and damages your subsequent mailing campaigns, affecting your reputation as a whole. A simple unsubscription, on the other hand, affects only a single recipient, without doing any damage to the rest of your database.

Note: enabling one-click unsubscribe does not necessarily mean changing the unsubscribe system you have included in the message text, especially if it is an unsubscribe link requiring additional confirmation.
MailUp implements the One Click List Unsubscribe header which allows you to comply with this requirement with no effort on your part.

Keep spam rates under control

Keeping spam reporting levels low has always been critical to ensuring that emails have a chance of getting into your recipients’ inbox.
MailUp helps you monitor them easily:

From the Statistics Area of the message, go to the “Unsubscribe Rate” tab to check the number of total spam reports and the rate of reports of each individual message
With Spam Check, you can prevent the risk of being reported as spam when creating your message. In the “Check up” tab > “Spam Check” you can in fact check the possibility of the message being considered spam by ISPs
The Deliverability Index, an indicator based on a unique algorithm that you will find in the dashboard of your MailUp platform, allows you to keep an eye on any deliverability issues and spam or bounce risks. Directly from your platform, you can view your deliverability score, keep track of it, and receive guidance on corrective actions to improve it.
With the Deliverability Pro Pack you receive targeted coaching from top industry professionals, including tailored advice, advanced tools, and ad hoc services to keep spam reporting rates below Google’s expected threshold. Contact us here to learn more about the Deliverability Pro Pack.

Enable DMARC protocol

Senders who send more than 5,000 emails per day will also need to configure another security protocol called DMARC (Domain-based Message Authentication, Reporting & Conformance).

DMARC ensures that emails actually come from the domain they claim to represent by verifying the alignment of SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) records. Configuring DMARC properly is a measure that helps protect you from phishing and spoofing attacks (fraud, data and identity theft). In other words, it ensures that only legitimate emails from your domain reach recipients’ inbox, improving your reputation as a sender and your delivery rates.

Configuring DMARC properly is critical, but it can also be complicated; this is why we recommend you contact us via this form and request more information about our Deliverability Pro Pack, MailUp’s package of advanced services and tools to enhance your deliverability. The package includes a targeted service entirely concerned with helping you implement DMARC and monitoring its implementation.

Configure DMARC with the help of MailUp experts: fill out the form to receive more information from our team!

Share this article

Paola Bergamini

I was born in 1993 in Como and I escaped from this little town to study in Milan, where I graduated in 2017 in philosophy. I've always been interested in marketing and communication and I love writing and reading. As Content Editor at MailUp, I try to keep up to date with Email and Digital Marketing news, in order to share trends, theories and tools about this constantly evolving sector.