3 Reasons why DMARC – and BIMI – are essential for all marketers in retail

At Red Sift, we talk a lot about how our mission is to democratize the technology essential for cybersecurity. In short, make it accessible for everyone. And there’s a specific reason for this, namely that the problems which arise from incorrect email security configuration don’t just impact IT departments, they impact entire businesses. 

We recently published a brand new report evaluating email security in the retail sector. Email is an essential tool that the retail industry uses daily, both to prospect to new customers and to communicate with existing ones. But right now, 90% of global retailers aren’t correctly DMARC configured, meaning they are open and vulnerable to email fraud. 

So, while many retail marketers are pumping precious time and resource into their email campaigns, incorrect DMARC setup could be scuppering their efforts. At best your outbound emails could be going straight into spam, and at worst hackers could be impersonating your brand to bombard your customers with fake emails and phishing scams. 

In this blog post, we’ve compiled 3 reasons why correct DMARC setup should be a priority for all marketers in retail.

But first: what is DMARC?

DMARC is an email authentication protocol that protects domains from exact domain impersonation. When properly configured, DMARC uses existing protocols DKIM and SPF to ensure that emails sent using your domain are legitimate, preventing hackers from impersonating your brand and damaging your reputation. Correct DMARC configuration can also improve email deliverability rate, as receiving senders can see that your emails have come from a reputable source. The setup and configuration of your DMARC policy can seem daunting at first, but it really doesn’t need to be – that’s where OnDMARC comes in.

1. You may not know it yet, but your reputation relies on it

In retail, reputation is everything. We found that 67% of people trust a company less after a data breach, and 22% won’t use a company again if they are hacked. It’s clear that a business’s brand equity is intrinsically linked with how customers view their integrity, and it’s key that this is upheld at all times.

But while retailers tend to focus on online reviews, customer service, and quality of goods as key indicators of their trustworthiness, they overlook some key infrastructure issues that are putting them at risk every day – namely their email security setup and DMARC configuration. 

Retail businesses are in constant communication with customers via email, and more often than not these retail databases house highly sensitive information like email addresses, phone numbers, and credit card details. It’s difficult to imagine an industry more vulnerable to the effects of cybercrime, and even harder to understand why only 10% of retail businesses have implemented a secure DMARC policy so far. 

If you’re a marketing professional in retail, getting your organization’s DMARC policy properly configured to p=reject is vital, because it means that your company’s brand is protected against impersonation, and your customers are better safeguarded against phishing emails and cyber attacks. 

67% of people trust a company less after data breach

2. Deliverability can depend on DMARC

DMARC configuration plays a major role in the deliverability rate of all emails. Currently, around 80% of consumer inboxes are fully DMARC configured, and global DMARC records have jumped up by over 2 million in the last 3 years. More and more domains are putting the right email security in place, meaning that now a whopping 1 in 6 emails don’t even get delivered.

Whether you’re sending out promotional or transactional emails to customers, if they aren’t coming from a DMARC configured domain, they may end up dumped in spam or even blocked – really not an ideal scenario for any marketer.

As a sector that relies so heavily on email, it’s more important than ever that retail businesses catch up and correctly configure their DMARC policies. Once this is done, they can expect to see more ROI and stop email marketing efforts from going to waste.

email deliverability and DMARC

3. BIMI for brand impressions and much more

BIMI stands for Brand Indicators for Message Identification. This new standard allows businesses to show their registered logo on their emails using a Verified Mark Certificate (VMC). Essentially, this combines the deliverability and anti-spoofing benefits of DMARC.

BIMI has a number of benefits. For a start, it increases your brand impressions, as more people are seeing your trademarked logo in the inbox, instead of a blank avatar. It’s also been proven to have a positive impact on how consumers interact with emails. We found that showing a logo on an email can increase open rates by as much as 39%, buying behavior by 32%, and brand recall by as much as 120%.

Trust is a key component of any consumer relationship. While BIMI isn’t a security protocol itself, the appearance of a registered logo in an email using a VMC tells the recipient that the sender is DMARC compliant, meaning the email can be trusted. We found that showing a verified logo on an email increases consumer confidence in that email by 84%.

This might seem like a relatively simple concept, but the use of BIMI is rapidly increasing, and businesses that hold back are risking missing out on the benefits. You can check if your domain is BIMI ready and find out more about our end-to-end BIMI solution here.

BIMI increases brand impressions

Find out more

Ultimately, DMARC is a necessary layer of security that safeguards your brand, your customers, your deliverability, and your marketing efforts. To find out more about retail’s threats and opportunities in the current email landscape, plus the business benefits of DMARC and BIMI, download our latest report below.

download the whitepaper red sift

PUBLISHED BY

Sabrina Evans

8 Oct. 2021

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
News

Winter wins: Red Sift OnDMARC wraps up 2024 as a G2 DMARC…

Francesca Rünger-Field

The season of giving has brought us another reason to celebrate! Red Sift OnDMARC continues its winning streak in G2’s Winter 2025 report, earning Leader status in the DMARC category for another consecutive season. This recognition reflects our strong market presence and the unwavering satisfaction of our customers. Cheers to wrapping up 2024 on…

Read more
AI

Text classification in the age of LLMs

Phong Nguyen

As natural language processing (NLP) advances, text classification remains a foundational task with applications in spam detection, sentiment analysis, topic categorization, and more. Traditionally, this task depended on rule-based systems and classical machine learning algorithms. However, the emergence of deep learning, transformer architectures, and Large Language Models (LLMs) has transformed text classification, allowing for…

Read more
Security

How to drive cybersecurity as a top business priority

Jack Lilley

Everyone has a role to play in protecting the enterprise. Whether you’re shaping strategy or implementing solutions, aligning efforts to mitigate critical risks ensures a stronger, more resilient enterprise. If you missed Red Sift’s recent webinar on “From Data to Buy-In: Driving Cybersecurity as a Top Business Priority” we’ve got you covered. The session…

Read more
DMARC

BreakSPF: How to mitigate the attack

Red Sift

BreakSPF is a newly identified attack framework that exploits misconfigurations in the Sender Policy Framework (SPF) a widely used email authentication protocol. A common misconfiguration involves overly permissive IP ranges, where SPF records allow large blocks of IP addresses to send emails on behalf of a domain. These ranges often include shared infrastructures like…

Read more