Is BIMI available for email clients and what are its implementation requirements?

Key findings

• Growing support: While initially limited, major email clients such as Gmail, Apple Mail, Yahoo Mail, and Fastmail now support BIMI, making it a viable option for many brands. The BIMI Group continues to update on client adoption.
• Authentication foundation: BIMI implementation is strictly contingent on robust email authentication. This requires a strong DMARC policy (at least `p=quarantine` or `p=reject`), along with correctly configured SPF and DKIM records to ensure message authenticity and alignment.
• Verified mark certificate (VMC): For some providers, notably Gmail, a Verified Mark Certificate (VMC) is a mandatory component. This digital certificate verifies the authenticity of the brand's logo and adds an extra layer of trust.
• SVG logo requirement: The brand logo must be in a specific Scalable Vector Graphics (SVG) Tiny 1.2 format, hosted at a secure (HTTPS) URL, and often requires specific sizing and styling. Validating your SVG is a critical step.
• Reputation dependence: Email providers will typically only display BIMI logos for senders with established positive sending reputations, indicating that a brand sends legitimate, desired mail.

Key considerations

• DMARC policy enforcement: Before pursuing BIMI, ensure your DMARC policy is set to at least `p=quarantine` or `p=reject`. This is a foundational security requirement that can impact email deliverability if not handled carefully.
• Logo preparation: The logo must be vector-based (SVG), square, and accurately represent your brand. Specific formatting is crucial for proper display across different clients.
• VMC acquisition: If aiming for Gmail support, obtaining a VMC from a qualified certificate authority is essential. This involves a validation process to confirm brand ownership.
• DNS record creation: A BIMI DNS TXT record needs to be published for your sending domain, pointing to your SVG logo and VMC (if applicable). Precision in this step is vital.
• Monitoring and troubleshooting: After implementation, monitor your email delivery and BIMI display across various clients. Issues can arise from incorrect DNS entries, logo formatting, or evolving client requirements. Sometimes, troubleshooting authentication records is part of the process.

Key opinions

• Brand recognition: Marketers generally believe BIMI offers a significant opportunity to increase brand recognition and presence directly in the inbox, making emails stand out.
• Trust and security perception: The visual validation (logo display) is seen as a way to build recipient trust, indicating that the email is legitimate and not a phishing attempt. This can indirectly improve sender reputation.
• Engagement potential: Many anticipate that displaying a logo could lead to higher open rates and overall email engagement, as recipients are more likely to open emails from recognized and trusted brands.
• Gradual adoption: While some key clients support BIMI, marketers recognize that universal adoption is still some way off, meaning the impact won't be immediately seen by all subscribers.
• Complexity of setup: The prerequisite of a strict DMARC policy and the need for a VMC are often cited as significant barriers for some organizations.

Key considerations

• Investment justification: Marketers need to assess the return on investment (ROI) for BIMI implementation, weighing the costs of VMC and setup against the projected benefits in brand recognition and engagement.
• Prerequisite readiness: Before even considering BIMI, ensuring full DMARC compliance with an enforced policy is crucial. Many marketers are still working towards this foundational step.
• Impact on engagement metrics: While BIMI aims to improve engagement, marketers will need to carefully monitor metrics like open rates and click-through rates post-implementation to truly gauge its effectiveness. See our guide on BIMI's impact on engagement.
• Provider-specific requirements: Marketers must be aware that not all email clients have the exact same requirements for BIMI display, particularly regarding the VMC. Understanding these nuances is key for broad application.
• Image fidelity: The SVG logo must be precisely formatted to render correctly across various email clients and devices, preventing distorted or pixelated displays.

Key opinions

• Live and available: Experts confirm that BIMI is now generally available and not confined to a trial, implying broader accessibility for brands meeting the criteria.
• Strict authentication: It's consistently stressed that a DMARC policy of `p=quarantine` or `p=reject` is mandatory. Without this, BIMI will not work, as it's designed to build upon a verified sending domain. Our guide on DMARC, SPF, and DKIM covers these essentials.
• Reputation is key: Beyond technical setup, a positive sending reputation (low complaint rates, high engagement) is crucial for mailbox providers to trust and display your logo. Without it, the logo may not appear even if all technical requirements are met.
• Specific client support: While support is expanding, experts clarify that BIMI is currently primarily seen on major clients like Gmail, Yahoo (Verizon Media properties), and Apple Mail, not universally across all mailboxes.
• Ongoing monitoring: Experts recommend continuous monitoring of BIMI implementation, especially for display issues, as email ecosystems are dynamic. Direct communication with providers (if possible) can help resolve specific display problems.

Key considerations

• Strategic implementation: Brands should view BIMI as part of a larger deliverability and brand trust strategy, not a standalone fix for email issues. Authentication standards are foundational.
• VMC necessity: Experts emphasize that for major clients like Gmail, a VMC is critical. This adds a cost and a validation step that brands must account for.
• Logo compliance: The SVG logo must strictly adhere to the technical specifications to ensure proper rendering across different email environments. Non-compliant logos will simply not display.
• Impact on deliverability: While BIMI itself isn't a direct deliverability factor, its reliance on a strong DMARC policy directly contributes to improved email authentication, which does impact deliverability.

Key findings

• DMARC policy enforcement: BIMI documentation consistently states that a DMARC policy of `p=quarantine` or `p=reject` is a fundamental requirement. This policy ensures that emails are properly authenticated and prevents unauthorized use of a brand's domain.
• SVG Tiny 1.2 format: The brand logo must be a Scalable Vector Graphics (SVG) file compliant with the SVG Tiny 1.2 Portable/Secure profile. This specific format ensures consistent rendering and security.
• BIMI DNS record: A TXT record must be published in the domain's DNS that includes the BIMI version, the URL to the SVG logo file, and optionally, the URL to the Verified Mark Certificate.
• Verified mark certificate (VMC): While optional for some mail clients, documentation, particularly from providers like Google, indicates that a VMC issued by an accredited Certificate Authority (CA) is required for full functionality (e.g., in Gmail).
• Security and trust: BIMI is presented as a means to enhance trust and combat phishing by providing a visual identifier tied to authenticated email, ensuring only legitimate senders display their logos.

Key considerations

• Strict adherence to DMARC: Documentation emphasizes that BIMI will not function without a strong DMARC policy correctly enforced, reinforcing the idea that it's an additive layer of trust, not a replacement for core email security. This includes proper DMARC setup.
• Logo hosting: The SVG logo must be hosted on a secure (HTTPS) server and accessible by mailbox providers. This ensures the integrity and availability of the brand's visual identity.
• VMC procurement process: Obtaining a VMC involves a verification process with a recognized Certificate Authority, confirming the legitimate use of the brand's logo. This can take time and involves a cost.
• DNS record accuracy: Precision in creating the BIMI DNS TXT record is paramount, as errors can prevent logo display. This includes correct formatting and pointing to the right URLs for both the logo and VMC. Further details can be found in our guide on email client support for BIMI.