Best Practices to Prevent Emails Ending up in Recipients Spam Folder

Best Practices to Prevent Emails Ending up in Recipients Spam Folder

Introduction to SPF, DKIM, and DMARC

SPF, DKIM AND DMARC are authentication methods designed to prevent email spoofing. In this day, regardless of whether you are using Black Pearl Mail or not, it is considered standard practice to implement SPF, DKIM and DMARC in order to reduce the chances of your emails ending up in your recipients spam folder.

What is email spoofing?

Email spoofing is when an attacker sends an email that appears to come from your organisation using a rogue email server. 

How does SPF & DKIM work?

SPF works by publishing the known IP addresses that your email will be sent from. The recipient can then use these IPs to determine if the email came from the actual sender. If it doesn't match one of the IP addresses in the SPF record, then the recipient can mark the email as spam.

DKIM works by creating a public and private key pair. The private key is used to add a digital signature to the headers of the email. The public key is publicly available so that the digital signature can be validated. If the signature isn't validated, then the recipient can flag the email as spam.

What about DMARC?

DMARC utilises SPF and DKIM to determine the authenticity of an email. It allows email senders to determine how recipients should handle messages that are failing DKIM and SPF (i.e. reject, quarantine, allow).

What next?

Black Pearl Mail strongly recommend that you implement SPF, DKIM, and DMARC, following the recommended best practices from your email provider. You can follow these practices in the help articles found in the section below.

How to setup SPF, DKIM, and DMARC


DKIM (Note: ensure 2048 bit key is generated if possible)

Google Workspace

DKIM (Note: ensure 2048 bit key is generated if possible)

If you have any questions related to this article, please contact for assistance.

    • Related Articles

    • Dark Mode and Your Emails

      While Dark Mode presents a lot of positives for users, it also presents challenges for application developers. Since email needs to look great across the ever-changing landscape of devices and email clients (including those that don't support Dark ...
    • Disable Branding on Internal Emails for Office 365

      What will you need to do? If you would like to turn off branding for all internal emails, then this can be achieved by modifying the existing Black Pearl Mail Office 365 rule to exclude internal emails from routing through Black Pearl Mail. If you ...
    • Default Group: Templates and Domains

      First, login to the Black Pearl Mail App: Logging in Once logged in, navigate to the “Groups” icon in the top navigation bar You will now be presented with the below screen To choose the default template for new and reply emails you simply click on ...
    • Exclude Large Emails from Routing Through Black Pearl Mail

      What will you need to do? The maximum size of an email that be sent through Black Pearl Mail is 18 MB. If you would like to send an email with an attachment larger than this, then we will need to exclude them from routing through Black Pearl Mail If ...
    • "550 5.4.1 Recipient address rejected: Access denied" When Sending to Mail-enabled Public Folders in Microsoft 365

      What is the issue? When sending to mail-enabled public folders in Microsoft 365, a bounce is returned stating the following: "550 5.4.1 Recipient address rejected: Access denied" Why is this happening? This is caused by Directory Based Edge Blocking ...