- BIMI (Brand Indicators for Message Identification) lets you display your verified brand logo next to your emails in supported inboxes like Gmail, Yahoo Mail, and Apple Mail.
- BIMI requires a DMARC policy set to
p=quarantineorp=rejectbefore it will work. A policy ofp=noneis not BIMI-compliant. - Google now accepts Common Mark Certificates (CMCs), which means you no longer need a registered trademark to display your logo in Gmail inboxes.
- BIMI logos must be in SVG Tiny P/S 1.2 format, square, and hosted on a publicly accessible HTTPS URL.
- Studies show BIMI can increase open rates by 6-39% and boost consumer confidence in sender legitimacy by up to 90%.
If you have ever wondered how certain brands manage to display their official logo right next to their emails in Gmail or Yahoo Mail, the answer is BIMI. Unlike profile pictures or contact card images, BIMI logos are verified through a rigorous authentication process that proves you are who you claim to be. The result is a powerful visual trust signal that helps your emails stand out in crowded inboxes, reduces phishing risk, and improves engagement.
In this guide, we will break down exactly what BIMI is, how it works under the hood, what you need before you can implement it, and the step-by-step process to get your brand logo showing in inboxes. Whether you are an email marketer, IT administrator, or deliverability professional, this is everything you need to know about BIMI in 2026.
What Is BIMI and Why Does It Matter?
BIMI stands for Brand Indicators for Message Identification. It is an email specification that allows organizations to display a verified brand logo alongside their emails in supported inboxes. Think of it as the "blue checkmark" for email; it visually confirms to recipients that the message genuinely came from your organization.
The specification was first formalized in February 2019 by the AuthIndicators Working Group, which includes major players like Google, Yahoo (Verizon Media), Fastmail, Mailchimp, Proofpoint, Twilio SendGrid, and Valimail. Since then, adoption has accelerated rapidly. Gmail began supporting BIMI in 2021, Apple Mail added support in iOS 16 and macOS Ventura, and Yahoo has supported it since the early pilot phase.
BIMI matters for three critical reasons. First, it builds instant visual trust. When recipients see a familiar logo next to your email, they are far more likely to open it. Second, BIMI strengthens your security posture because it requires strict email authentication as a prerequisite, which protects your domain from spoofing. Third, in a landscape where mailbox providers are prioritizing engagement signals, higher open rates from BIMI can create a positive feedback loop that improves your overall sender reputation.
How BIMI Works: The Technical Flow
Understanding how BIMI functions behind the scenes helps you troubleshoot issues and appreciate why the prerequisites exist. Here is the step-by-step process that occurs every time you send an email to a BIMI-supporting inbox:
- Email arrives at the recipient's mail server. The receiving server first checks your SPF, DKIM, and DMARC records to verify the message is authenticated.
- DMARC alignment is verified. The server confirms that your DMARC policy is set to
p=quarantineorp=rejectand that the message passes alignment checks. - BIMI DNS lookup. If authentication passes, the server queries your DNS for a BIMI TXT record at
default._bimi.yourdomain.com. - Logo and certificate retrieval. The BIMI record contains a URL pointing to your SVG logo file and, optionally, a URL to your Verified Mark Certificate (VMC) or Common Mark Certificate (CMC).
- Certificate validation. If the mailbox provider requires a certificate (Gmail requires either a VMC or CMC), it validates the certificate against the logo.
- Logo display. Once all checks pass, the mailbox provider displays your logo next to the email in the recipient's inbox.
Important: If any step in this chain fails, such as a DMARC policy of p=none, a missing BIMI record, or an invalid certificate, your logo will not be displayed. The email may still be delivered, but without the visual branding.
Prerequisites: What You Need Before Setting Up BIMI
BIMI is not a standalone technology. It sits on top of your existing email authentication stack. Before you can implement BIMI, you must have the following in place:
SPF and DKIM Authentication
Both SPF and DKIM must be properly configured and passing for your sending domain. SPF verifies that emails originate from authorized servers, while DKIM adds a cryptographic signature proving the message has not been tampered with. If you need help setting these up, our email authentication guide walks through the process step by step.
DMARC at Enforcement Level
This is the most critical prerequisite. Your DMARC policy must be set to either p=quarantine or p=reject. A monitoring-only policy of p=none will not work. DMARC must also show proper alignment with either SPF or DKIM (ideally both). If you are still on p=none, you will need to progress through enforcement stages before BIMI becomes an option.
A Compliant SVG Logo
Your brand logo must meet specific technical requirements. It must be in SVG Tiny P/S 1.2 format, which is a secure subset of standard SVG. The image must be square, centered, and should not contain any scripts, external references, or interactive elements. Most standard SVG files exported from design tools like Adobe Illustrator or Figma will need conversion to meet the Tiny P/S profile.
A VMC or CMC Certificate
Different mailbox providers have different certificate requirements. Gmail accepts both Verified Mark Certificates (VMCs) and Common Mark Certificates (CMCs). Apple Mail requires a VMC. Yahoo Mail does not require a certificate but uses it as a reputation signal when available.
As of September 2024, Gmail began accepting Common Mark Certificates (CMCs) for BIMI. Unlike VMCs, CMCs do not require a registered trademark. This change makes BIMI accessible to small businesses, startups, and organizations that have not yet trademarked their logo, as long as they can demonstrate at least one year of consistent logo usage.
VMC vs CMC: Which Certificate Do You Need?
Understanding the difference between these two certificate types is essential for choosing the right path for your organization.
| Feature | VMC (Verified Mark Certificate) | CMC (Common Mark Certificate) |
|---|---|---|
| Trademark Required | Yes, registered trademark mandatory | No, logo must be in consistent use for 1+ year |
| Cost | Approximately $1,000-$1,500/year | Approximately $300-$500/year |
| Gmail Support | Yes | Yes (since September 2024) |
| Apple Mail Support | Yes | No (VMC required) |
| Yahoo Mail Support | Yes (optional but recommended) | Yes (optional but recommended) |
| Blue Checkmark in Gmail | Yes | No |
| Issuing Authorities | DigiCert, Entrust | DigiCert, Entrust |
| Best For | Enterprises with registered trademarks | SMBs and organizations without trademarks |
If your organization has a registered trademark and you want the blue checkmark icon in Gmail, go with a VMC. If you do not have a trademark or want a lower-cost entry point, a CMC will still get your logo displayed in Gmail and Yahoo inboxes. You can always upgrade to a VMC later.
How to Set Up BIMI: Step-by-Step Guide
Once you have confirmed all prerequisites are in place, follow these steps to implement BIMI for your domain.
Step 1: Prepare Your SVG Logo
Create or convert your brand logo to the SVG Tiny P/S 1.2 format. The key requirements are:
- File format: SVG Tiny P/S (Profile/Secure) version 1.2
- Dimensions: Square aspect ratio (equal width and height)
- Background: Solid color background (no transparency); the logo should be centered and visible at small sizes
- No scripts, external images, or interactive elements
- File size: Keep it as small as practical (under 32KB is recommended)
Several tools can help with conversion, including the BIMI Group's SVG conversion tool and Adobe Illustrator's SVG Tiny export option. After conversion, validate your SVG file using the BIMI Group's official validator.
Step 2: Host Your Logo
Upload your SVG file to a publicly accessible HTTPS URL. The URL must be reachable by mailbox providers at all times. Use a reliable hosting platform or CDN. Avoid temporary storage or URLs that require authentication.
Example URL: https://yourdomain.com/brand/logo-bimi.svg
Step 3: Obtain Your Certificate
Apply for a VMC or CMC through DigiCert or Entrust. The validation process varies:
- For VMC: You will need to provide proof of trademark registration. The issuer verifies your logo against the registered mark. Timeline: typically 1-4 weeks.
- For CMC: You need to demonstrate consistent use of the logo for at least one year. Provide evidence such as your website, marketing materials, or social media profiles. Timeline: typically 1-2 weeks.
Once issued, the certificate will be provided as a PEM file. Host this file at a publicly accessible HTTPS URL as well.
Step 4: Publish Your BIMI DNS Record
Add a TXT record to your domain's DNS at the selector default._bimi.yourdomain.com. The record format is:
default._bimi.yourdomain.com. IN TXT "v=BIMI1; l=https://yourdomain.com/brand/logo-bimi.svg; a=https://yourdomain.com/brand/certificate.pem"The l= parameter points to your SVG logo URL. The a= parameter points to your VMC or CMC certificate URL. If you are targeting a mailbox provider that does not require a certificate (like Yahoo without a VMC), you can set a= to empty, but including a certificate is strongly recommended.
Step 5: Verify and Monitor
After publishing your DNS record, allow 24-48 hours for propagation. Then verify your setup using a BIMI lookup tool. Send test emails to Gmail, Yahoo, and Apple Mail accounts to confirm your logo appears. Be aware that logo display can take days to weeks to fully propagate, and it may not appear on every single email immediately.
Common Pitfall: If your logo is not appearing after several days, check these frequent issues: DMARC policy still set to p=none, SVG file not in the correct Tiny P/S format, certificate URL returning a 404, or DNS record published on the wrong subdomain.
Which Mailbox Providers Support BIMI?
BIMI support varies across email clients. Here is the current state of support as of 2026:
| Mailbox Provider | BIMI Support | Certificate Requirement | Notes |
|---|---|---|---|
| Gmail | Yes | VMC or CMC required | Displays blue checkmark for VMC holders |
| Yahoo Mail | Yes | Optional (recommended) | Early BIMI adopter; logo displays without certificate |
| Apple Mail | Yes | VMC required | Supported on iOS 16+, macOS Ventura 13+, iCloud.com |
| Fastmail | Yes | Optional | Full BIMI support |
| Microsoft Outlook | No | N/A | No BIMI support announced as of 2026 |
| AOL Mail | Yes | Optional | Inherited from Yahoo/Verizon Media |
Even though Microsoft Outlook does not currently support BIMI, implementing it now positions you for future adoption and provides immediate benefits across Gmail, Yahoo, and Apple Mail, which together represent the majority of consumer email users globally.
How BIMI Impacts Deliverability and Engagement
While BIMI is technically an authentication and branding standard, its indirect effects on deliverability are significant. Here is how:
Higher open rates. Studies consistently show that emails displaying a verified brand logo earn higher open rates. Research indicates increases of 6-10% in the US and up to 39% in the UK. Higher open rates signal positive engagement to mailbox providers, which reinforces your domain reputation.
Reduced phishing and spoofing. Because BIMI requires DMARC enforcement, implementing it inherently protects your domain from impersonation. When bad actors try to spoof your domain, the absence of your logo serves as a red flag to recipients.
Stronger authentication posture. To qualify for BIMI, you must have SPF, DKIM, and DMARC fully configured and aligned. This authentication stack is exactly what Gmail, Yahoo, and Microsoft now require of bulk senders. BIMI is essentially the visible reward for getting your authentication right.
Realistic Implementation Timeline
BIMI is not an overnight project. Here is a realistic timeline for organizations starting from scratch:
- Weeks 1-4: SPF and DKIM configuration, DMARC deployment at
p=none, and authentication monitoring. - Weeks 5-8: Progress DMARC to
p=quarantine, thenp=reject. Monitor DMARC reports to ensure all legitimate sources are authenticated. - Weeks 9-10: Prepare SVG logo (convert to Tiny P/S format, validate), begin VMC/CMC application.
- Weeks 11-12: Receive certificate, publish BIMI DNS record, test across supported mailbox providers.
- Weeks 13+: Monitor logo display, troubleshoot any issues, track engagement improvements.
If you already have DMARC at enforcement level, you can skip the first eight weeks and potentially have BIMI live within 2-4 weeks.
Common BIMI Mistakes to Avoid
Even experienced email teams run into issues with BIMI implementation. Here are the most frequent mistakes:
- Wrong SVG format. Standard SVG files will not work. The logo must be in SVG Tiny P/S 1.2 format specifically. Always validate your file before publishing.
- DMARC still at p=none. This is the single most common reason BIMI fails. You must be at
p=quarantineorp=reject. - Publishing the BIMI record on the wrong domain. If you send emails from
mail.yourdomain.com, your BIMI record must be published for that specific subdomain, not the root domain. - Certificate and logo mismatch. The logo in your certificate must exactly match the SVG file referenced in your BIMI record. Any discrepancy will cause validation failure.
- Expecting instant results. Logo display can take days or even weeks to appear across all recipients. BIMI rollout is gradual, and mailbox providers may not show your logo on every single email immediately.
Frequently Asked Questions
BIMI itself is not required for email delivery. However, it requires DMARC enforcement, which is now mandatory for bulk senders sending to Gmail, Yahoo, and Microsoft. BIMI is a competitive advantage layered on top of required authentication. It will not prevent your emails from being delivered without it, but it can significantly improve engagement and brand recognition.
The BIMI standard itself is free. The primary cost is the certificate: VMCs typically cost $1,000-$1,500 per year, while CMCs are approximately $300-$500 per year. You will also need to factor in time for DNS configuration, logo preparation, and ongoing monitoring. If you already have DMARC at enforcement level, the incremental cost is primarily the certificate.
Yes, since September 2024, Gmail accepts Common Mark Certificates (CMCs), which do not require a registered trademark. You need to demonstrate at least one year of consistent logo usage. However, Apple Mail still requires a VMC, which does require a trademark. Yahoo Mail does not require any certificate for basic logo display.
As of 2026, Microsoft Outlook does not support BIMI. Microsoft has not announced a timeline for BIMI adoption. However, implementing BIMI now still provides benefits across Gmail, Yahoo Mail, Apple Mail, and Fastmail, and positions you for future Outlook support when it arrives.
After publishing your BIMI DNS record, allow 24-48 hours for DNS propagation. However, logo display can take days to weeks to appear consistently across all recipients. Gmail in particular rolls out logo display gradually. Be patient and continue monitoring during this period.