Is a VMC necessary for BIMI to work with Gmail and Yahoo?

A VMC (Verified Mark Certificate) is required for Gmail to display the blue checkmark alongside your logo. While Yahoo may display your logo without a VMC, it is highly recommended for consistent verification across all supporting platforms and to maximize trust.

What DMARC policy is required for BIMI?

Your DMARC policy must be set to an enforcement mode, either p=quarantine or p=reject . A p=none policy will not enable BIMI logo display.

How long does it take for the BIMI logo to appear after implementation?

After implementing BIMI, the logo might appear almost instantly for some users, while for others, it could take a few hours or even days as DNS records propagate and mailbox providers update their caches. Yahoo has also noted a phased rollout, with mobile displaying logos more consistently than desktop initially.

My BIMI logo isn't displaying, what should I check?

First, ensure all email authentication (SPF, DKIM, DMARC) is correctly configured and passing. Verify your SVG logo meets BIMI's technical specifications and is hosted securely. Double-check your BIMI DNS record for any typos. If you're missing the Gmail blue checkmark, ensure you have a valid VMC.

How do I implement BIMI for email verification in Gmail and Yahoo? - Technical - Email deliverability - Knowledge base

Brand Indicators for Message Identification (BIMI) is an email specification that allows your brand's logo to appear next to your email messages in a recipient's inbox. This visual verification builds trust and recognition, making your emails stand out.

Implementing BIMI can significantly boost your email program's effectiveness, especially with major mailbox providers like

Google and

Yahoo. These providers support BIMI as an additional layer of trust, showcasing your logo and, in some cases, a verified blue checkmark. The requirements and steps might seem technical, but they are straightforward once broken down.

This guide outlines the essential steps to implement BIMI effectively for Gmail and Yahoo, helping you achieve that coveted visual verification.

Establish strong email authentication

Before you can even think about displaying your logo, your domain needs to be adequately protected with robust email authentication. This is the bedrock upon which BIMI stands. Without a strong SPF, DKIM, and DMARC implementation, your BIMI efforts will not succeed.

Specifically, your DMARC policy must be set to p=quarantine or p=reject. A p=none policy will prevent your BIMI logo from displaying. This enforcement policy tells mailbox providers what to do with emails that fail DMARC authentication, signifying that you are actively protecting your domain from unauthorized use. This commitment to security is what allows mailbox providers (like

Gmail and

Yahoo ) to trust your BIMI record. For a deeper understanding of DMARC's importance, explore the benefits of implementing DMARC.

Here's an example of a DMARC record that meets the requirements for BIMI implementation:

Example DMARC record for BIMI compliance

v=DMARC1; p=quarantine; rua=mailto:dmarcreports@yourdomain.com; ruf=mailto:forensicreports@yourdomain.com; fo=1;

Prepare your BIMI logo and obtain a VMC

Your brand logo is central to BIMI. It needs to meet specific technical requirements to be displayed correctly. The logo must be in SVG format, specifically SVG Tiny 1.2, and hosted on a secure (HTTPS) server. Additionally, it should be a square image with a transparent background to ensure optimal display across various email clients. For specific requirements, see what are the BIMI implementation steps.

Beyond the technical format, obtaining a Verified Mark Certificate (VMC) is crucial, especially for getting the

Gmail blue checkmark. A VMC legally verifies that your organization has the right to use the logo. This certificate is issued by a trusted Certificate Authority (CA) and links your authenticated domain to your official, registered trademark logo. While

Yahoo (and

AOL) may display your logo without a VMC,

Google mandates it for the highest level of verification and the blue checkmark. Learn more about VMC requirements for Google.

Ensure your logo adheres to these specifications to prevent display issues:

BIMI logo requirements

Format: SVG Tiny 1.2 is the required image format.
Dimensions: The logo should be square (e.g., 200x200 pixels).
Background: Use a transparent background for better integration with various email clients.
Accessibility: Ensure your logo is accessible and clearly represents your brand.
Hosting: Host your SVG file on a secure HTTPS server accessible via a public URL.

Publish your BIMI DNS record

Once your email authentication is solid and your logo (with a VMC, if aiming for

Gmail blue checkmark) is ready, the next step is to publish your BIMI record in your domain's DNS. This record is a TXT record that tells supporting email clients where to find your verified logo. It includes your BIMI version, the URL to your SVG logo file, and optionally, the URL to your VMC.

You will need to create a TXT record in your DNS settings for the subdomain default._bimi. If you are not familiar with adding DNS records, consult your DNS provider's documentation or contact your IT team. Accuracy is key here, as any errors can prevent your logo from displaying.

Here's how a typical BIMI DNS TXT record looks, including the VMC URL (which is essential for

Google's blue checkmark):

Example BIMI DNS TXT Record

default._bimi IN TXT "v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem;"

Monitor and troubleshoot BIMI display

While

Gmail and

Yahoo both support BIMI, their exact implementation details can vary. Understanding these nuances is key to a successful deployment. For Gmail, the blue checkmark is directly tied to the presence of a VMC. Without it, your logo might not appear, or you won't get the visual verified badge. For Yahoo, while a VMC is not strictly required for the logo to appear, it is recommended for higher trust and consistency across various platforms.

Rollout can also differ. Yahoo has indicated that its BIMI logo display is fully rolled out on mobile, with desktop not yet at 100%. This means you might see your logo on mobile Yahoo apps before seeing it consistently on desktop. Gmail's BIMI support, including the blue checkmark, is available to all Google Workspace customers and personal Google Accounts, but sometimes requires a hard refresh to load. If your BIMI logo isn't appearing, troubleshooting steps can help identify common issues.

Continuous monitoring of your DMARC reports is also vital. This helps you ensure that your email authentication remains robust and that legitimate emails are consistently passing DMARC alignment. Any issues here can directly impact your BIMI logo display.

Here's a quick comparison of key aspects for

Google and

Yahoo BIMI implementation:

Feature	Gmail	Yahoo
DMARC policy	Requires enforcement policy (p=quarantine or p=reject).	Requires enforcement policy (p=quarantine or p=reject).
VMC requirement	Required for the Google blue checkmark.	Not strictly required for logo display, but recommended for full trust and mobile checkmark.
Logo display	Displays logo with VMC after DMARC pass. Checkmark with VMC.	Displays logo after DMARC pass. Checkmark with BIMI (and usually VMC).
Rollout consistency	Generally consistent across platforms, with blue checkmark for VMC.	Fully rolled out on mobile, desktop might vary.

Views from the trenches

Best practices

Ensure your DMARC policy is at p=quarantine or p=reject to enable BIMI.

Obtain a Verified Mark Certificate (VMC) for the blue checkmark in Gmail and enhanced trust.

Host your SVG Tiny 1.2 logo on an HTTPS server with a public URL.

Regularly monitor your DMARC reports to ensure continuous authentication success.

Common pitfalls

Not having an enforcing DMARC policy (p=none) will prevent BIMI from working.

Using an incorrect SVG format or a logo that isn't publicly accessible.

Expecting instant display across all email clients; rollout can be progressive.

Ignoring DMARC reports, which can lead to authentication failures and BIMI issues.

Expert tips

Consider a phased approach to DMARC enforcement, gradually moving from p=none to p=quarantine.

Validate your SVG file carefully before deployment using online tools.

Test your BIMI implementation across various email clients and devices (mobile, desktop).

Be aware that some email providers might manually downgrade or remove logos for abuse.

Marketer view

A marketer from Email Geeks says that Google is now providing an additional reward for getting a VMC, which is a blue checkmark, boosting marketer adoption of BIMI.

2023-05-03 - Email Geeks

Expert view

An expert from Email Geeks confirms that Gmail requires both VMC and DMARC for BIMI to display properly.

2023-05-03 - Email Geeks

The impact of successful BIMI implementation

Implementing BIMI for

Gmail and

Yahoo involves a series of technical steps, but the payoff in brand recognition and trust is significant. By ensuring your DMARC policy is enforced, preparing your logo correctly with a VMC, and publishing the proper DNS record, you can unlock a powerful visual indicator that helps your emails stand out in the inbox.

The blue checkmark in

Gmail adds an extra layer of verified authenticity, while Yahoo's BIMI support further reinforces your sender reputation. This investment in email authentication is not just about a logo, it's about building lasting confidence with your recipients.

While the process may require attention to detail, the long-term benefits of enhanced deliverability, increased engagement, and protection against phishing make BIMI an essential component of modern email security and marketing strategies.