Suped

Why are transactional emails with passing SPF, DKIM, and DMARC landing in spam?

9 Marketer opinions6 Expert opinions5 Technical articles1 Resource

Summary

Even when transactional emails pass SPF, DKIM, and DMARC, they can still land in spam due to a variety of factors beyond authentication. These include content and audience issues, infrastructure problems like incorrect rDNS records, and poor sender reputation built from low engagement, spam complaints, and high bounce rates. Suspicious email content, blacklisted IP addresses, and using 'no-reply' addresses also contribute. New IP addresses require gradual warming up, and maintaining a clean email list is crucial. Sudden sending volume spikes or using shared IP addresses can trigger spam filters. DMARC policy enforcement, appropriate DKIM key length and feedback loops play a role as well. Mailbox providers like Gmail and Microsoft consider various factors beyond authentication: user reports, content, and sending patterns. Finally, dev testing practices can significantly impact the reputation of the email program. In essence, authentication is just one piece; sender reputation, content quality, infrastructure and sending practices all play significant roles.

Key findings

  • Sender Reputation: A poor sender reputation due to low engagement, spam complaints, or high bounce rates can cause emails to land in spam.
  • Content and Audience: Issues likely stem from content problems or incorrect audience targeting, especially with testing content. Spam filters analyze email content for suspicious keywords, excessive capitalization, and poor HTML coding.
  • Infrastructure: Incorrect rDNS records and other infrastructure issues can impact deliverability, even with proper authentication.
  • IP Reputation: If the sending IP address is on a blocklist, emails will likely land in spam, regardless of authentication. Also sharing an IP can impact deliverability
  • Engagement Rates: Low engagement rates (opens, clicks) can negatively impact deliverability.
  • No-Reply Addresses: Using a 'no-reply' email address can negatively impact deliverability due to discouraged engagement.
  • IP Warm-up: New IP addresses require gradual warming up to avoid triggering spam filters.
  • List Hygiene: Maintaining a clean email list by removing inactive subscribers and invalid email addresses is crucial.
  • Sending Volume: Sudden spikes in sending volume can trigger spam filters.
  • DMARC Policy: A DMARC policy of 'none' only monitors and doesn't actively filter spam.
  • DKIM Key Length: Using an appropriate DKIM key length (at least 1024-bit) is crucial for security and deliverability.
  • Feedback Loops: Feedback loops (FBLs) allow senders to identify and remove subscribers marking emails as spam.
  • Dev Testing: Automated dev testing practices generating uninterested emails can negatively impact engagement metrics and sender reputation.
  • Gmail Filters: Gmail's spam filters consider factors beyond authentication: user reports, content, and sending patterns.
  • Microsoft SmartScreen: Microsoft's SmartScreen filter uses machine learning to identify spam, recommending best practices for bulk email.

Key considerations

  • Monitor Reputation: Regularly monitor your sender reputation and address any issues promptly.
  • Optimize Content: Ensure email content is relevant, engaging, and avoids spam triggers.
  • Verify Infrastructure: Verify your rDNS records and ensure your infrastructure is properly set up. Check IP for AWS space issues
  • IP Monitoring: Check your IP address against blocklists and take steps to remove it if necessary.
  • Boost Engagement: Implement strategies to improve email engagement, such as personalization and relevant content.
  • Avoid No-Reply: Consider using a real reply-to address to encourage engagement.
  • Warm-up New IPs: If using a new IP address, gradually warm it up to establish a good sending reputation.
  • Maintain List Hygiene: Regularly clean your email list to remove inactive or invalid addresses.
  • Control Sending Volume: Avoid sudden spikes in sending volume and maintain a consistent sending pattern.
  • Use Strong DKIM Keys: Ensure you are using a sufficiently strong DKIM key length (at least 1024-bit).
  • Enforce DMARC: Implement a stricter DMARC policy (quarantine or reject) after careful monitoring.
  • Implement FBLs: Set up feedback loops with mailbox providers to monitor spam complaints and remove problematic subscribers.
  • Dedicated IP: Consider using a dedicated IP address for greater control over your sending reputation.
  • Separate Dev Testing: Isolate dev testing to a separate subdomain to prevent damaging your main domain's reputation.
  • Follow Microsoft Guidelines: Adhere to Microsoft's best practices for bulk email, including list hygiene and unsubscribe options.
  • Content Check: Use aboutmy.email to check content issues.

What email marketers say
9Marketer opinions

Even when transactional emails pass SPF, DKIM, and DMARC authentication, they can still land in spam due to various factors. These include a poor sender reputation built from low engagement, spam complaints, and high bounce rates. Suspicious email content, blacklisted IP addresses, and using 'no-reply' addresses also contribute. New IP addresses require gradual warming up, and maintaining a clean email list is crucial. Sudden sending volume spikes or using shared IP addresses can trigger spam filters. Essentially, authentication is just one piece of the deliverability puzzle; sender reputation, content quality, and sending practices all play significant roles.

Key opinions

  • Sender Reputation: A poor sender reputation due to low engagement, spam complaints, or high bounce rates can cause emails to land in spam.
  • Email Content: Spam filters analyze email content for suspicious keywords, excessive capitalization, and poor HTML coding.
  • IP Reputation: If the sending IP address is on a blocklist, emails will likely land in spam, regardless of authentication.
  • Engagement Rates: Low engagement rates (opens, clicks) can negatively impact deliverability.
  • No-Reply Addresses: Using a 'no-reply' email address can negatively impact deliverability due to discouraged engagement.
  • IP Warm-up: New IP addresses require gradual warming up to avoid triggering spam filters.
  • List Hygiene: Maintaining a clean email list by removing inactive subscribers and invalid email addresses is crucial.
  • Sending Volume: Sudden spikes in sending volume can trigger spam filters.
  • Shared IPs: Using a shared IP address can impact deliverability due to the reputation of other users on the same IP.

Key considerations

  • Monitor Reputation: Regularly monitor your sender reputation and address any issues promptly.
  • Optimize Content: Ensure email content is relevant, engaging, and avoids spam triggers.
  • IP Monitoring: Check your IP address against blocklists and take steps to remove it if necessary.
  • Boost Engagement: Implement strategies to improve email engagement, such as personalization and relevant content.
  • Avoid No-Reply: Consider using a real reply-to address to encourage engagement.
  • Warm-up New IPs: If using a new IP address, gradually warm it up to establish a good sending reputation.
  • Maintain List Hygiene: Regularly clean your email list to remove inactive or invalid addresses.
  • Control Sending Volume: Avoid sudden spikes in sending volume and maintain a consistent sending pattern.
  • Dedicated IP: Consider using a dedicated IP address for greater control over your sending reputation.
Marketer view

Email marketer from Litmus shares that low engagement rates (opens, clicks) can negatively impact deliverability. If subscribers are not interacting with transactional emails, mailbox providers may start filtering them as spam.

November 2022 - Litmus
Marketer view

Email marketer from Neil Patel explains that even with proper authentication, a poor sender reputation can cause emails to land in spam. Reputation is built over time based on subscriber engagement, spam complaints, and bounce rates.

January 2025 - Neil Patel
Marketer view

Email marketer from Reddit explains that even with proper authentication, if the sending IP address is on a blocklist, emails will likely land in spam. IP reputation is influenced by the sending history of all users sharing the same IP.

February 2022 - Reddit
Marketer view

Email marketer from GMass responds that sudden spikes in sending volume can trigger spam filters. Maintaining a consistent sending volume helps establish a predictable sending pattern and improves deliverability.

November 2024 - GMass
Marketer view

Email marketer from Quora shares that using a shared IP address can impact deliverability, as the sender's reputation is influenced by the sending practices of other users sharing the same IP. A dedicated IP address gives more control over sender reputation.

July 2022 - Quora
Marketer view

Email marketer from Stackoverflow responds that using a 'no-reply' email address can negatively impact deliverability as it discourages engagement and prevents feedback loops. Mailbox providers may view this as a sign of less reputable sending practices.

July 2022 - Stackoverflow
Marketer view

Email marketer from Mailjet shares that spam filters analyze email content for suspicious keywords, excessive use of capitalization or exclamation points, and poor HTML coding. Transactional emails with content that resembles spam can be filtered despite authentication.

August 2023 - Mailjet
Marketer view

Email marketer from Sendgrid explains that new IP addresses need to be 'warmed up' gradually by sending small volumes of emails and slowly increasing the sending rate. Sending large volumes of emails from a new IP can trigger spam filters, even with proper authentication.

October 2022 - Sendgrid
Marketer view

Email marketer from Email on Acid explains the importance of maintaining a clean email list by removing inactive subscribers and invalid email addresses. Sending emails to non-existent addresses can increase bounce rates and negatively impact sender reputation.

April 2021 - Email on Acid

What the experts say
6Expert opinions

Even when transactional emails pass SPF, DKIM, and DMARC, deliverability issues can arise. The problem often stems from content issues, incorrect audience targeting, or infrastructure problems like improper rDNS setup. Dev testing practices that generate high volumes of uninterested emails can also negatively impact engagement, leading to spam placement. Furthermore, sudden increases in sending volume can trigger spam filters. Maintaining good engagement and proper infrastructure is key, regardless of authentication.

Key opinions

  • Content and Audience: Issues likely stem from content problems or incorrect audience targeting, especially with testing content.
  • Infrastructure: Incorrect rDNS records and other infrastructure issues can impact deliverability, even with proper authentication.
  • Dev Testing: Automated dev testing practices generating uninterested emails can negatively impact engagement metrics.
  • Engagement: Low engagement rates (opens, clicks, high deletion rates) signal to mailbox providers that recipients don't want the emails.
  • Sending Volume: Sudden increases in sending volume can trigger spam filters.

Key considerations

  • Review Content: Carefully review email content to ensure it is relevant and avoids spam triggers.
  • Target Audience: Ensure you are targeting the correct audience with relevant emails.
  • Verify Infrastructure: Verify your rDNS records and ensure your infrastructure is properly set up.
  • Separate Dev Testing: Isolate dev testing to a separate subdomain to prevent damaging your main domain's reputation.
  • Monitor Engagement: Monitor engagement metrics and adjust sending practices accordingly.
  • Ramp Up Sending: Avoid sudden increases in sending volume; gradually ramp up sending as needed.
Expert view

Expert from Spam Resource answers that if you've recently increased your sending volume, it's possible that filters are reacting to this change, even if you have proper authentication in place. Sudden increases in volume can be seen as a sign of spam.

June 2022 - Spam Resource
Expert view

Expert from Email Geeks explains if emails are landing in spam despite passing authentication, the issue is likely with content or audience. If it is testing content it is likely a content issue. She also suggests ensuring the rDNS is correctly setup and not a random IP in AWS space and suggests using aboutmy.email to check.

August 2021 - Email Geeks
Expert view

Expert from Email Geeks recommends using a subdomain for dev testing (e.g., devs.mydomain.co) to prevent mistakenly damaging the main domain's reputation.

March 2022 - Email Geeks
Expert view

Expert from Word to the Wise explains that engagement is a critical factor. Even with passing authentication, low open rates, click-through rates, and high deletion rates can signal to mailbox providers that recipients don't want the emails, leading to spam placement.

November 2021 - Word to the Wise
Expert view

Expert from Email Geeks shares an experience where automated dev testing generated more receipts than actual customers, with those emails going to a corporate Gmail account. This resulted in Gmail seeing less than half of the messages being interacted with.

November 2022 - Email Geeks
Expert view

Expert from Word to the Wise explains that infrastructure issues, such as incorrect rDNS records, can impact deliverability even when authentication passes. Proper infrastructure setup is essential for establishing trust with mailbox providers.

January 2022 - Word to the Wise

What the documentation says
5Technical articles

Even when transactional emails pass SPF, DKIM, and DMARC, they can still land in spam. This is because mailbox providers like Gmail and Microsoft consider factors beyond authentication, such as user reports, content, and sending patterns. A DMARC policy of 'none' only monitors authentication and doesn't enforce spam filtering. Using an appropriate DKIM key length is also crucial for security. Setting up feedback loops (FBLs) is valuable for identifying and removing subscribers who mark emails as spam, improving deliverability.

Key findings

  • Gmail Filters: Gmail's spam filters consider factors beyond authentication: user reports, content, and sending patterns.
  • DMARC Policy: A DMARC policy of 'none' only monitors and doesn't actively filter spam.
  • Microsoft SmartScreen: Microsoft's SmartScreen filter uses machine learning to identify spam, recommending best practices for bulk email.
  • DKIM Key Length: Using an appropriate DKIM key length (at least 1024-bit) is crucial for security and deliverability.
  • Feedback Loops: Feedback loops (FBLs) allow senders to identify and remove subscribers marking emails as spam.

Key considerations

  • Optimize for Gmail: Focus on content quality, user engagement, and consistent sending patterns to improve Gmail deliverability.
  • Enforce DMARC: Implement a stricter DMARC policy (quarantine or reject) after careful monitoring.
  • Follow Microsoft Guidelines: Adhere to Microsoft's best practices for bulk email, including list hygiene and unsubscribe options.
  • Use Strong DKIM Keys: Ensure you are using a sufficiently strong DKIM key length (at least 1024-bit).
  • Implement FBLs: Set up feedback loops with mailbox providers to monitor spam complaints and remove problematic subscribers.
Technical article

Documentation from RFC 7489 (DMARC standard) explains that a DMARC policy of 'none' only monitors authentication results and does not instruct receiving mail servers to reject or quarantine messages that fail authentication. A stricter policy of 'quarantine' or 'reject' can improve deliverability but requires careful monitoring.

September 2024 - RFC Editor
Technical article

Documentation from SparkPost shares the value of setting up feedback loops (FBLs) with mailbox providers to receive notifications when subscribers mark emails as spam. This allows senders to identify and remove problematic subscribers from their lists.

August 2023 - SparkPost
Technical article

Documentation from DKIM.org shares that using an appropriate key length for DKIM signatures is crucial. Shorter key lengths may be considered less secure and can impact deliverability. They recommend using at least a 1024-bit key.

November 2022 - DKIM.org
Technical article

Documentation from Microsoft explains that their SmartScreen filter uses machine learning to identify and filter spam. They advise senders to follow best practices for bulk email, including list hygiene, unsubscribe options, and content quality, to avoid being flagged as spam.

June 2022 - Microsoft
Technical article

Documentation from Google Postmaster Tools explains that Gmail's spam filters consider various factors beyond authentication, including user reports, email content, and sending patterns. Even with SPF, DKIM, and DMARC, emails can be marked as spam if they trigger these filters.

December 2021 - Google

Related resources
1Resource

SPF, DKIM, DMARC: How Email Authentication Works
SPF, DKIM, DMARC: How Email Authentication Works

SPF, DKIM, DMARC are email authentication protocols you must set to ensure your emails are marked as genuine. Improve your email deliverability with our guide.

SendLayer - Reliable Email Deliverability Made Easy

Related questions