Does using a new from address on the same domain affect email deliverability?

Yes, it can. While a new from address on the same domain is usually preferred, if that particular from address generates high spam complaints or bounce rates, it can still negatively impact the overall domain's sender reputation. This is why segmenting email streams and implementing dedicated DKIM selectors is important.

Should I use a different DKIM selector for software alerts if they're on my main domain?

You should use a different DKIM selector for software alerts, even if they are sent from the same domain as your marketing emails. This allows mailbox providers to track the reputation of the alert stream separately, minimizing the risk of issues with one affecting the other. This is part of a broader strategy to separate transactional and marketing emails .

Should I use an ESP for software-generated email alerts?

Yes, if possible. Routing software alerts through a reputable transactional ESP can greatly enhance deliverability. These providers specialize in high-volume, time-sensitive emails and have infrastructure optimized for reliable delivery, often with dedicated IP addresses and robust feedback loops that can help you avoid a blocklist (or blacklist).

Should I use a new domain or a new from address for software email alerts? - Sender reputation - Email deliverability - Knowledge base

Q: Is it better to use a new domain or a new from address for software email alerts?

For software alerts, it's generally better to use a new from address on your existing main domain. This leverages your established sender reputation and brand recognition, making it more likely for your alerts to reach the inbox. A completely new domain for low-volume sends can struggle to build reputation and cause recipient confusion.

When deploying software, a common consideration for email alerts is how to manage their sending infrastructure. The primary concern is often to prevent these alerts from negatively impacting the sender reputation of the main domain, which is typically used for marketing campaigns or crucial business communications. This leads to a strategic decision: should you establish a completely new domain for these alerts, or is it sufficient to simply use a new from address on your existing domain, such as notifications@yourdomain.com?

The volume of such notifications is often low, which might suggest that they pose little risk to your primary domain's reputation. However, even low-volume sends need careful consideration, especially if they are generated dynamically for each user and contain sensitive data, as this can affect how they are perceived by mailbox providers.

Understanding the nuances of email deliverability, sender reputation, and authentication protocols like SPF, DKIM, and DMARC is crucial for making this decision. Our goal is to ensure that your alerts reach the inbox reliably without inadvertently damaging your core email sending capabilities.

The impact of email types on sender reputation

Email types fundamentally differ in how mailbox providers evaluate them. Transactional emails, like software alerts, are typically expected and often critical for user experience. Marketing emails, on the other hand, are often unsolicited and can lead to higher complaint rates or lower engagement if not managed well. Each type of email builds a distinct reputation, even if sent from the same domain.

Sender reputation is built on various factors, including bounce rates, spam complaint rates, and engagement metrics. If your software alerts were to unexpectedly generate high complaint rates due to misconfiguration or content issues, this could indeed spoil the reputation of your main domain. This is why many organizations consider segmenting their email traffic.

The key is to minimize collateral damage. If one type of email experiences deliverability issues, you want to contain that impact so it doesn't affect other crucial email streams. This principle guides the decision on whether to use a new domain or just a new from address.

Google's email sender guidelines themselves suggest that if you send from multiple IP addresses, you should ideally use a different IP for each message type. While this specifically refers to IPs, the underlying principle of separating different email streams to manage reputation is consistent.

Using a new from address on your existing domain

For software-generated alerts, using a new from address on your existing domain is generally the preferred approach, assuming your current domain has a healthy sending reputation. This method leverages the established trust and brand recognition associated with your main domain. Your customers are already familiar with it and are less likely to flag emails from it as suspicious, reducing the risk of them being sent to spam or even a blocklist (or blacklist).

Creating a new from address on your existing domain means you don't need to build a new domain's reputation from scratch. This is a significant advantage, especially for low-volume sends, which can make warming up a new domain particularly challenging and time-consuming.

Regarding authentication, you should maintain the same DKIM signing domain as your from address. However, it is a good idea to use a different DKIM selector for these notifications. This allows you to track and manage the reputation of this specific email stream independently without setting up a completely new domain.

The return-path (RFC 5321.From) address can also utilize a subdomain, like bounces.yourdomain.com, if your software configuration supports it. This can further help with bounce management and isolating those metrics.

Considering the alternative: a dedicated domain

New from address on existing domain

Reputation: Leverages the established reputation of your main domain.
Branding: Maintains consistent brand recognition, reducing user confusion and increasing trust.
Setup: Simpler to implement. No new SPF, DKIM, or DMARC records for a completely new domain.
Monitoring: Easier to manage reputation within a single domain, perhaps with a different DKIM selector for segmentation.

Completely new domain

Reputation: Requires a dedicated and often lengthy domain warming process, especially for low-volume sends.
Branding: Can cause brand confusion and may lead to recipients questioning legitimacy or ignoring emails.
Setup: Involves setting up and authenticating a new domain from scratch with SPF, DKIM, and DMARC. This can also still associate it with your primary entity.
Monitoring: Requires separate monitoring of reputation metrics for the new domain.

While the idea of a completely new domain might seem appealing for isolation, it introduces significant challenges. Building a positive sending reputation for a brand new domain takes time and consistent, positive sending behavior. With low-volume alerts, achieving this warm-up effectively can be difficult, leaving your alerts vulnerable to filtering or outright blocking (or blacklisting).

Furthermore, a new domain can confuse your recipients. They might not immediately recognize the sender, leading to decreased open rates, increased spam complaints, or even blocklisting. This erosion of trust can be more damaging than keeping alerts on your main domain with proper separation measures.

Even with a new domain, you still need to set up and maintain its DNS records, including SPF, DKIM, and DMARC. This adds administrative overhead. Remember, even if it's a new domain, it is still implicitly associated with your overall brand and could indirectly impact your main domain's perception if it performs poorly.

Strategic considerations for email authentication

Regardless of whether you use a new from address or a new domain, robust email authentication is paramount. This includes setting up Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), and Domain-based Message Authentication, Reporting, and Conformance (DMARC).

For transactional emails, even if they contain sensitive data and are personalized, consider routing them through a dedicated Email Service Provider (ESP) or a transactional email service. These services are optimized for deliverability and can handle the complexities of email sending at scale, helping you avoid common deliverability issues. If keeping email sending internal is a necessity due to data sensitivity, then setting up a dedicated Mail Transfer Agent (MTA) and using a separate IP address from your corporate email system is advisable. This strategy is critical for isolating email streams.

The overarching principle is to separate different categories of email (corporate, transactional, marketing) as much as possible. This segregation helps to prevent issues with one stream, such as a temporary blocklist (or blacklist) listing, from affecting the deliverability of your other, more critical communications. This also applies to the domains and subdomains you use for these different types of emails.

Email authentication and infrastructure

To ensure optimal deliverability and protect your sender reputation, always ensure proper email authentication. Set up SPF, DKIM, and DMARC for all sending domains and subdomains. For transactional alerts, using a dedicated DKIM selector can help isolate reputation metrics even when sending from your main domain. Consider using a transactional ESP for these messages for enhanced deliverability.

Views from the trenches

Best practices

Always separate corporate email traffic from transactional and marketing emails to protect core communications.

Utilize different DKIM selectors for different types of emails sent from the same domain to help with reputation segmentation.

Implement SPF, DKIM, and DMARC thoroughly for all domains and subdomains used for sending.

Common pitfalls

Sending high-risk or low-engagement email types from your primary domain without proper segmentation, risking its reputation.

Creating a new domain for low-volume transactional emails, which makes warming up the domain and building its reputation very difficult.

Failing to implement or properly configure email authentication (SPF, DKIM, DMARC) for all sending points.

Expert tips

Ensure that any new from address is easy for users to identify and, if needed, easy to unsubscribe or manage preferences for.

Regularly monitor your domain's sender reputation through tools like Google Postmaster Tools.

Always keep sensitive data secure, regardless of the sending method, and comply with all privacy regulations.

Expert view

Expert from Email Geeks says that using a new 'From' address with the current domain is preferable for software-generated reports, assuming the existing sending reputation is good. Using a different DKIM key for notifications is also recommended, and a subdomain in the return path is acceptable if the software allows.

2020-04-07 - Email Geeks

Expert view

Expert from Email Geeks says that when signing with DKIM, the signing domain should match the domain in the 'From' (RFC 5322.From) address, and any selector can be used.

2020-04-07 - Email Geeks

Final recommendation

For software email alerts, especially those with low volume and sensitive content, the most effective strategy is usually to use a new from address on your existing, well-reputed domain. This approach leverages your established brand trust and avoids the significant challenges of building reputation for a brand new domain.

While using a new from address on the same domain is generally recommended, ensure you implement robust email authentication, such as SPF, DKIM with a unique selector for alerts, and DMARC. This helps maintain distinct reputations for different email streams while consolidating branding and infrastructure under one trusted domain.