What are the requirements for List-Unsubscribe headers to comply with Yahoo and Gmail?

Summary

To comply with the latest Yahoo and Gmail requirements, email senders, especially bulk senders, MUST implement a one-click unsubscribe process. This involves utilizing List-Unsubscribe headers, including both List-Unsubscribe and List-Unsubscribe-Post. The List-Unsubscribe header should contain a valid HTTPS URL. These requirements are rooted in the RFC 8058 standard. A List-Unsubscribe header with a mailto: URL can be used as an alternative. It's essential not to rely solely on List-Unsubscribe, as it's not universally supported, and a CAN-SPAM compliant unsubscribe link should also be included. Enforcing these standards is a relatively recent development, focusing on enhancing user experience and sender reputation. Avoid using HTTP URLs as they are non-compliant. For RFC 8058, avoid only using a POST link; the GET request to the HTTPS url must show the one-click opt-out.

Key findings

One-Click Unsubscribe: A one-click unsubscribe process is mandatory.
List-Unsubscribe Headers: Implementation requires both List-Unsubscribe and List-Unsubscribe-Post headers.
HTTPS URL is Required: The List-Unsubscribe header MUST contain a valid HTTPS URL.
RFC 8058 Compliance: Adherence to RFC 8058 standard is crucial for proper implementation.

Key considerations

User Experience: A streamlined unsubscribe process improves user experience.
Sender Reputation: Complying with these requirements enhances sender reputation.
Not a replacement for CAN-SPAM: List-Unsubscribe is not a complete replacement for a CAN-SPAM compliant link.
Enforcement: Email providers are now actively enforcing these guidelines.
Alternative mailto: Instead of the RFC 8058 setup, you can use a List-Unsubscribe header with a mailto: URL.

What email marketers say
10Marketer opinions

To comply with Yahoo and Gmail's requirements for List-Unsubscribe headers, senders must implement a one-click unsubscribe process. This involves including both List-Unsubscribe and List-Unsubscribe-Post headers in outgoing emails. The List-Unsubscribe header must contain an HTTPS URL, ensuring secure communication. This is mandatory for bulk email senders and aligns with CAN-SPAM regulations, streamlining unsubscription and improving deliverability. Enforcing one-click unsubscribe is a recent change, and adhering to these guidelines optimizes the unsubscribe experience for recipients.

Key opinions

One-Click Unsubscribe: Implementing a one-click unsubscribe process is mandatory for compliance.
List-Unsubscribe Headers: Both List-Unsubscribe and List-Unsubscribe-Post headers must be included.
HTTPS URL: The URL in the List-Unsubscribe header must be HTTPS.
Bulk Sender Requirement: These requirements primarily target bulk email senders.

Key considerations

CAN-SPAM Compliance: Using List-Unsubscribe headers helps comply with CAN-SPAM regulations.
Deliverability: Implementing one-click unsubscribe improves email deliverability.
User Experience: A streamlined unsubscribe process enhances the user experience.
Enforcement: The enforcement of one-click unsubscribe is a recent development.

Marketer view

Email marketer from StackOverflow user coding_expert, in a thread, explains that including both `List-Unsubscribe` and `List-Unsubscribe-Post` headers is required for modern email compliance. Including an HTTPS URL in the `List-Unsubscribe` header is also vital for one-click functionality.

May 2022 - StackOverflow

Marketer view

Email marketer from Email Geeks states how to do “one click” unsub in the list-unsubscribe headers is not new, but what’s new is us enforcing it.

September 2023 - Email Geeks

Marketer view

Email marketer from GMass mentions that the one-click unsubscribe is mandatory for bulk emails and must comply with regulations. The one-click unsubscribe should be implemented to comply with requirements.

August 2021 - GMass Blog

Marketer view

Email marketer from Litmus discusses optimizing the email unsubscribe process. They mention that incorporating List-Unsubscribe headers allows mailbox providers to offer easy unsubscription options to recipients.

December 2021 - Litmus

What the experts say
7Expert opinions

To comply with Yahoo and Gmail's requirements for List-Unsubscribe headers, a one-click unsubscribe mechanism using RFC 8058 is essential. This requires a List-Unsubscribe header with an HTTPS URL and a List-Unsubscribe-Post header. Alternatively, a List-Unsubscribe header with a mailto: URL can be used. It's crucial to avoid using only a POST link and ensure that if the HTTPS URL is accessed via GET, it displays a one-click opt-out option. Using HTTP URLs is non-compliant. Relying solely on List-Unsubscribe is deliverability malpractice; a CAN-SPAM compliant unsubscribe link is also necessary.

Key opinions

One-Click Unsubscribe via RFC 8058: Implementing RFC 8058 one-click unsubscribe is a core requirement.
HTTPS URL Mandatory: The List-Unsubscribe header must include an HTTPS URL.
List-Unsubscribe-Post Header: RFC 8058 requires the inclusion of the List-Unsubscribe-Post header.
Non-Compliance with HTTP: Using HTTP URLs for one-click unsubscribe does not meet the requirements.

Key considerations

Mailto: URL Alternative: A List-Unsubscribe header with a mailto: URL can be used as an alternative to RFC 8058.
GET Request Handling: If the HTTPS URL is accessed via GET, it must present a one-click opt-out button.
Supplemental CAN-SPAM Link: A CAN-SPAM compliant unsubscribe link should always be present, in addition to List-Unsubscribe headers.
Avoid Sole Reliance: Do not rely solely on List-Unsubscribe as it's not supported by all email clients.

Expert view

Expert from Email Geeks shares it is deliverability malpractice to rely on list unsubscribe as the sole method of unsubscribe. List unsubscribe headers are not supported by every email client- they’re a bonus but it does not replace an actual unsubscribe link that complies with can spam.

November 2021 - Email Geeks

Expert view

Expert from Email Geeks explains that you must have a non-interactive, in-application unsubscribe, either a List-Unsubscribe header with a mailto: URL or an RFC 8058 List-Unsubscribe-Post header.

June 2021 - Email Geeks

Expert view

Expert from Email Geeks explains that you can't have only a POST link. To do RFC 8058 you must have an https link in your List-Unsubscribe header, and if accessed via GET it must display a one-click opt-out button to the user.

May 2022 - Email Geeks

Expert view

Expert from Email Geeks clarifies that if you don’t have an https url in your List-Unsubscribe header then you are not implementing RFC 8058 one-click unsubscribe, and that means you’re not complying with the published requirements.

August 2024 - Email Geeks

What the documentation says
4Technical articles

Gmail, Yahoo, and Microsoft emphasize the importance of one-click unsubscribe for bulk senders. Achieving this requires including both a List-Unsubscribe header with a valid HTTPS URL and a List-Unsubscribe-Post header in outgoing emails, in accordance with the RFC8058 standard. This setup streamlines the unsubscribe process and enhances sender reputation.

Key findings

One-Click Unsubscribe: One-click unsubscribe is a requirement for bulk senders.
List-Unsubscribe Headers: Both List-Unsubscribe and List-Unsubscribe-Post headers are necessary.
HTTPS URL: The List-Unsubscribe header must contain a valid HTTPS URL.
RFC8058 Compliance: Adhering to the RFC8058 standard is crucial for proper implementation.

Key considerations

Sender Reputation: Implementing a clear unsubscribe mechanism improves sender reputation.
Bulk Sender Focus: These requirements primarily apply to bulk email senders.
Clear Mechanism: Implementing a clear unsubscribe mechanism, preferably one-click, is essential.

Technical article

Documentation from RFC Editor details the RFC8058 standard, highlighting the use of List-Unsubscribe-Post header. This outlines the procedure for a one-click unsubscribe mechanism using HTTP POST requests.

June 2023 - RFC-Editor.org

Technical article

Documentation from Gmail Help explains that to enable one-click unsubscribe, include both a List-Unsubscribe header and a List-Unsubscribe-Post header in your outgoing email. The List-Unsubscribe header should contain an HTTPS URL.

April 2024 - Gmail Help

Technical article

Documentation from Yahoo Sender Hub shares that bulk senders must implement one-click unsubscribe. This is done using the List-Unsubscribe header with a valid HTTPS URL and a List-Unsubscribe-Post header.

April 2021 - Yahoo Sender Hub

Technical article

Documentation from Microsoft specifies implementing a clear unsubscribe mechanism, preferably one-click. They recommend using List-Unsubscribe headers to allow for easy unsubscription, improving sender reputation.

January 2025 - Microsoft Documentation

Using one-click unsubscribe with Amazon SES | AWS Messaging ...

Gmail and Yahoo have announced new requirements for bulk senders that take effect in February 2024. The requirements aim to reduce delivery of malicious or unwanted email to the users of these mailbox providers. We recommend that Amazon SES senders who operate outside of the SES sandbox assume these bulk sender requirements apply to them. […]

Amazon Web Services

One-click List-unsubscribe is Now Required | SocketLabs

Another day, another mailbox provider requirement. Get all you need to know about one-click list-unsubscribe headers to stay compliant.

SocketLabs

FAQs - About list-unsubscribe and list-help headers in emails – Home

👋 List-unsubscribe header What is a list-unsubscribe header? A list-unsubscribe header, also referred to as "one-click unsubscribe", is an email header that includes detailed instructions about a b...

Home