On October 3, 2023, Google and Yahoo announced a new set of email delivery requirements that will become mandatory in February 2024.

For senders who send more than 5,000 emails per day to Gmail addresses, Google will require a series of authentication measures to ensure secure email delivery to its inboxes. While Yahoo does not specify minimum delivery requirements, it will follow Google’s criteria.

The following requirements will be enforced:
  • Implementation of SPF and DKIM
  • Sending with a matched “From” domain in either the SPF or DKIM domain
  • Sending from a domain with a DMARC policy of at least p=none
  • Valid Forward and Reverse DNS (FCrDNS)
  • One-click unsubscribe (RFC 8058)
  • Low spam reporting rate

The full requirements are listed in Google’s help article.

Google and Yahoo’s joint stance promises a sea change in email security, ensuring that inboxes worldwide are more secure by enforcing industry-recognized best practices.

What does this mean for senders?

Failure to comply with these requirements means that emails sent to Gmail and Yahoo inboxes will not be delivered. Considering that Gmail’s 1.8 billion inboxes represent nearly a quarter of the world’s email users, these enforcement actions have serious consequences for companies that do not comply with these requirements and rely on email communications for their business.

The good news is that these requirements are already considered best practice across the email ecosystem. They use open standards that are accessible to everyone, such as SPF, DKIM and DMARC, which can be implemented quickly and securely with the right solution. For organizations that have not yet implemented these measures, there has never been a better time to get ahead of the curve and prepare for the demands of Google and Yahoo.

Nomasis, with our partner Red Sift, will be happy to assist you with your project.

Contact us for further questions:

Patrick Trevisan, Nomasis AG