February 1, 2024: A new era of email authentication begins

From today, Google and Yahoo are rolling out new requirements for bulk senders, ushering in a new era of email compliance.

If you’re just learning about this now, here’s a quick summary: Google and Yahoo now require bulk senders – those who send more than or around 5,000 emails daily – to meet a set of authentication measures to ensure secure email delivery to addresses ending in gmail.com or yahoo.com.

The requirements come into effect from February 1, 2024, and will be enforced gradually and progressively. 

  • From Feburary 1, 2024: Bulk senders must implement requirements to avoid temporary errors on non-compliant email traffic.
  • April 2024: Non-compliant email traffic will start being rejected. The rejection rate will gradually increase.
  • From June 1, 2024: Bulk senders must implement one-click unsubscribe in all commercial & promotional mail.

If you don’t yet meet the requirements, now is the time to act.

In this article, we’ve curated a variety of resources to help you get ready – including our free Google and Yahoo Compliance Checker, Red Sift Investigate – and ensure your continued email marketing success. 

If you’re a marketer looking to better understand how to address the requirements and ensure deliverability, scroll to the bottom of this piece and you’ll find starred articles tailored to you – written by marketers, for marketers!

Breaking down Google and Yahoo’s requirements

This article breaks down the comprehensive list of requirements, their benefits, and provides guidance on how you can get ready for February 2024 and beyond. 

Read it here → A 2024 guide to mastering Google and Yahoo’s bulk email sender requirements 

The best tools to use to check your Google and Yahoo compliance

We realize that getting ready for these changes can be a daunting task. To help with this, we’ve identified some of the best tools you can use to check the compliance of your current email-sending setup. 

Read it here → The best tools to see if you meet Google and Yahoo’s new bulk sending requirements 

Common scenarios that may lead to failing the requirements

To help bring the requirements to life, we’ve laid out a list of common scenarios that may lead to non-compliance. They’re presented in a helpful, illustrative matrix format.

Read it here → Are you ready for Google & Yahoo’s bulk sending requirements? 

The world is not ready for Google and Yahoo’s bulk sending requirements

In light of the coming changes, we carried out some research to look at the world’s readiness for DMARC – and some of the revelations are startling. 33% of global enterprises have no DMARC record which automatically renders them non-compliant. The article dives into analysis per country and market index.

Read it here →  The world is not ready for Google & Yahoo’s bulk sending requirements: Now is the time to take action

Ready to check your Google Yahoo bulk sending compliance in less than 60 seconds?

Check your readiness now

2024: The year of DMARC as a business imperative

In this piece, our CEO explains why DMARC is no longer a nice-to-have. While Google and Yahoo’s bulk sending requirements are the main driver right now, there are a host of other requirements and recommendations on the way, from CISA, PCI DSS… the list goes on.

Read it here → 2024: The year of DMARC as a business imperative

What marketers should know about Google and Yahoo’s requirements for bulk senders ⭐

If you’re a marketer aiming to ensure consistent delivery to personal Google and Yahoo inboxes, it’s important you understand the upcoming changes and promptly review your sending practices. 

In this article, we’ll break down the requirements, explain what they mean, and help you get real-time insight into how your email setup stacks up with our free Google & Yahoo Compliance Checker tool, Red Sift Investigate.

Read it here → What marketers should know about Google and Yahoo’s requirements for bulk senders

Why successful email marketing relies on domain authentication ⭐

Domain authentication is a cornerstone of successful email marketing. So while the requirements may seem daunting right now, the rewards you will reap – across email deliverability and engagement rates, for example – are huge. We’ve mapped it all out for you and provided actionable tips on how you can make it into more inboxes. 

Read it here → Why successful email marketing relies on domain authentication

How marketers can work with their IT team ⭐

To implement the email authentication requirements that Google and Yahoo are mandating, marketers will need to collaborate with their IT team. If you’re unsure how to approach them or need guidance on how to communicate (and justify) your asks, this post should help you.

Read it here → How marketers can work with security to meet Google and Yahoo’s requirements

Free Google and Yahoo Compliance Checker tool 

If you want an easy way to make sure your email-sending domains are ready from February 1, 2024 and onwards, Red Sift makes it easy. 

In under a minute, our free Investigate tool checks how you stack up against Google and Yahoo’s requirements and provides a visual breakdown of exactly what you need to action. 

Check your readiness now → Red Sift Investigate

Where to go from here? 

It’s easy to try to ignore these new requirements from Yahoo and Google, but the repercussions for doing so will be significant. Take the first step today with Red Sift Investigate and reach out to your security team to get the conversation going. We are here to help, and you can always talk to a Red Sift expert to help begin your journey to Google and Yahoo bulk sender compliance.  

PUBLISHED BY

Francesca Rünger-Field

1 Feb. 2024

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
BEC

The threat of Business Email Compromise in US healthcare

Jack Lilley

Executive summary: Business Email Compromise is siphoning billions from U.S. healthcare by exploiting human trust instead of software flaws. Spoofed or hijacked messages authorize fraudulent payments, spark ransomware, and expose patient data—causing crippling financial, operational, and compliance damage. Deploying DMARC, MFA, and rigorous multi-person payment checks is now critical. 3 key takeaways Business Email…

Read more
Email

Cloudflare selects Red Sift as a preferred partner to provide DMARC and…

Rebecca Warren

AI-generated email attacks are rapidly growing in scale and sophistication, demanding stronger defenses from at-risk organizations. Starting today, Red Sift is excited to announce a new strategic partnership with Cloudflare, the leading connectivity cloud company, to deliver its market-leading email security application, Red Sift OnDMARC, to a broader global audience.  Today’s alignment enhances Cloudflare’s…

Read more
Cybersecurity

New Zealand moves to mandate DMARC enforcement

Jack Lilley

Executive summary: New Zealand’s Secure Government Email Framework mandates DMARC at p=reject—plus hard-fail SPF, universal DKIM, enforced MTA-STS, and TLS-RPT—by October 2025. The rules replace SEEMail, curb soaring phishing losses, and will affect every organization that emails the public sector. Key takeaways: The New Zealand Government has recently published the Secure Government Email (SGE) Common…

Read more
BEC

DMARC: The best ROI for your organization

Jack Lilley

Executive summary: Implementing DMARC delivers one of the clearest, fastest returns on investment in email security. By authenticating outgoing mail and blocking spoofed messages, DMARC cuts the direct costs of phishing and Business Email Compromise, safeguards brand reputation, and boosts deliverability—ultimately driving revenue and trimming operational workload. Key takeaways: Email is a critical communication tool for…

Read more