Avoiding common BIMI pitfalls: What goes wrong and how to fix it
BIMI (Brand Indicators for Message Identification) does one simple task— showing your brand logo next to your emails in the recipients’ inboxes. But getting there? Not so much.
You might think it’s easy to get your logo to be displayed next to your emails, but unfortunately, it’s nothing like setting a profile picture.
BIMI is an email security protocol that works to reinforce your brand identity, but it only does its job if it is configured correctly. That means your domain needs to have other authentication protocols, such as SPF, DKIM, and DMARC, in place with a strict DMARC policy. Then there’s the logo itself: it has to be very specific. There are a lot of other things that you must cater to if you want your logo to appear next to your emails.
But what if you don’t meet one or more requirements? Well, your logo simply won’t show up.
If something is off, even a minor misconfiguration, BIMI doesn’t provide a clear error. There’s no alert, no bounce, nothing obvious. Your emails will still go out, but the brand presence you were aiming for won’t be there.
Why is your BIMI logo not showing up?
If you think you have followed the rule book, yet your logo isn’t showing up, you likely missed a step or followed it incorrectly. Before we go on to fixing the problem, let’s identify the reasons that might be causing this problem in the first place.
Your DMARC policy is too relaxed
Even though you have configured SPF and DKIM for your domain, if your DMARC policy is set to “none”, BIMI just won’t work, and your logo won’t be published. Since the “none” policy offers no real protection, your domain isn’t seen as enforcing authentication by the receiving servers.
The SVG logo format isn’t correct
Your logo may look fine, but even minor issues in the file can still cause problems. It may not be in the exact SVG Tiny 1.2 format, or it may include elements that aren’t allowed, such as extra code or styles. These mistakes don’t always show up, but they can stop your logo from appearing. If you are unsure of your logo’s formatting, you can always double-check it using a BIMI validator.
The logo isn’t hosted on HTTPS
Your logo file must be hosted on a secure link that starts with https://. If it’s hosted on an insecure link (http), or if the link is broken or private, email providers won’t be able to access it. And your logo won’t show up even if the file itself is correct.
You don’t have a Verified Mark Certificate (VMC)
Some email providers, particularly Gmail and Apple Mail, require a VMC to display your logo. This certificate confirms that you legally own the logo. If you haven’t set up a VMC, your logo won’t show in these inboxes, even if everything else is set up correctly.
What do you need for BIMI to work?
One thing’s clear: for BIMI to work, it takes more than uploading your logo, and it does much more than just making your emails look pretty. BIMI is built on top of strong email authentication. It only works when your domain proves that it’s secure, trustworthy, and properly configured.
Here’s what you need to have in place:
Valid SPF and DKIM records
To use BIMI, your domain needs to prove that it sends safe, verified emails. You can do this by configuring SPF and DKIM for your sending domain.
With SPF, you list the mail servers that are allowed to send emails on your behalf. And with DKIM, each email is given a digital signature that helps verify it hasn’t been changed. Once you have them both in place, the receiving server can confirm that the email is really from you, which is the first step for BIMI to work.
A strict DMARC policy (quarantine or reject)
Think of BIMI as the top layer of your authentication setup; it only works if the layers below are solid. One of these layers is DMARC, which connects SPF and DKIM and instructs receiving servers on how to handle emails that fail these checks.
So, for BIMI to work, your DMARC policy must be set to either “quarantine” or “reject”. This shows that your domain actively enforces email authentication. A relaxed policy like “none” does not work because it doesn’t take any action against failed emails, which means your domain isn’t seen as fully protected.
An SVG logo in Tiny 1.2 format
BIMI has very specific requirements for logos.
To make your logo appear next to your emails, it must be in SVG Tiny 1.2 format. Moreover, the logo has to be clean, square, and meet strict formatting rules. That means no embedded text, no scripts, no external styles, and no unnecessary code. The file should not be too heavy and should follow BIMI guidelines exactly. Even small formatting mistakes can prevent the logo from being accepted.
A Verified Mark Certificate (VMC)
A Verified Mark Certificate is a digital certificate that proves you actually own the logo you’re trying to display. You can obtain it from any trusted authority, like DigiCert or Entrust, just as the government issues your passport. Without it, inboxes like Gmail and Apple Mail won’t show your logo, even if you’ve done everything else right. So, even if everything else is perfectly set up, your logo won’t appear in those inboxes without this certificate.
We must say that getting a VMC takes a bit of work; you’ll need to have a trademarked logo and go through a verification process. But it’s one of the final steps in making your BIMI setup complete.
So, what’s next?
Publishing your logo next to your emails is not just another marketing tactic; it’s about telling your recipients that the email is really from you. Now, this builds trust and reinforces your brand image.
So, if you’re ready to up your authentication game while also making your emails stand out, BIMI is certainly worth the effort, even if the setup takes a bit of work. If you want to streamline your BIMI configuration, our team at DuoCircle is here to help!