title: “BIMI: How to Display Your Brand Logo in Email Inboxes (Complete 2026 Guide)”
slug: “bimi-guide-display-brand-logo-inbox-email-authentication”
url: “/bimi-guide-display-brand-logo-inbox-email-authentication”
date: “2026-04-02”
author: “Mike Walton”
keywords:
– “BIMI email”
– “brand logo email inbox”
– “BIMI setup guide”
– “verified mark certificate”
– “email authentication BIMI”
tags:
– “Email Security”
– “BIMI”
– “Email Authentication”
– “Email Marketing”
status: “draft”

BIMI: How to Display Your Brand Logo in Email Inboxes (Complete 2026 Guide)

By Mike Walton, Founder of CertMS

*After 20+ years managing IT infrastructure and email systems, I’ve seen plenty of “nice-to-have” technologies. BIMI isn’t one of them anymore. When properly implemented, it’s one of the few email upgrades that both security teams and marketing departments genuinely agree on.*

Your competitors’ logos are showing up next to their emails in Gmail. Yours aren’t. That’s not just a branding problem – it’s a trust problem.

BIMI (Brand Indicators for Message Identification) puts your verified brand logo right next to your emails in supported inboxes. But here’s what most guides don’t tell you: only 4.57% of domains have valid BIMI records, and over half of those have configuration errors that prevent their logos from displaying.

Let me show you how to get BIMI right the first time.

What BIMI Actually Does

BIMI is a DNS-based standard that displays your brand logo next to emails you send – but only when those emails pass authentication. Think of it as the visual payoff for getting your DMARC, SPF, and DKIM configured correctly.

When someone receives an email from your domain:

The key word here is “authentication.” BIMI won’t display your logo for emails that fail DMARC. That’s the entire point – it’s a visual trust indicator that tells recipients “this email genuinely came from who it claims to be from.”

Why BIMI Matters for Your Business

Let’s talk numbers, because the impact here is measurable.

According to research from Red Sift and Entrust, brands displaying BIMI logos see:

• 21-39% higher open rates compared to emails without logos
• 90% increase in consumer confidence that an email is legitimate
• Up to 32% increase in purchasing decisions from email campaigns
• 44% improvement in brand recall after just 5 seconds of exposure

Tallyfy reported an 80% increase in click-through rates on their transactional emails after implementing BIMI – jumping from average rates to 15-25% CTR.

And it’s not just about marketing metrics. For Gen Z recipients specifically, emails without a visible logo negatively impacted purchasing decisions by 28%.

The business case practically writes itself: better deliverability, higher engagement, stronger brand recognition, and increased trust. All from a technology that builds on authentication infrastructure you should already have in place.

The Prerequisites: You Can’t Skip These

BIMI sits at the top of the email authentication pyramid. Before you can implement it, you need solid foundations.

DMARC at Enforcement

This is non-negotiable. BIMI requires your DMARC policy to be set to either p=quarantine or p=reject. Monitoring mode (p=none) won’t work.

Additionally, your pct value must be 100 – meaning your DMARC policy applies to all outgoing mail. You can’t use BIMI while only enforcing DMARC on a percentage of your traffic.

If you’re still on p=none, don’t skip ahead to BIMI. Work through your DMARC deployment properly first. Our complete DMARC guide covers the path from monitoring to enforcement.

Aligned SPF and DKIM

Your emails need to pass either SPF or DKIM with proper alignment. In practice, you want both configured correctly:

• SPF must include all legitimate sending sources (watch that 10-lookup limit)
• DKIM should use 2048-bit keys and sign with your domain (not your email provider’s domain)

DKIM alignment is particularly important because SPF breaks when emails are forwarded. If you’re relying solely on SPF, your BIMI logo won’t display for forwarded messages.

A Compliant Logo File

Your logo needs to meet specific technical requirements. This trips up more organizations than you’d expect – 27.5% of BIMI errors stem from non-compliant SVG files.

We’ll cover logo requirements in detail below.

VMC vs. CMC: Which Certificate Do You Need?

Here’s where BIMI gets interesting. Major email providers require proof that you actually own the logo you’re trying to display. That proof comes in the form of a certificate.

Verified Mark Certificate (VMC)

A VMC requires a registered trademark for your logo. The certificate authority verifies that:

• Your logo is a registered trademark
• Your organization legitimately owns that trademark
• Your domain is associated with your organization

VMCs cost approximately $1,500 per year and are issued by authorities like DigiCert and Entrust.

The big advantage: VMCs are supported by Gmail, Yahoo, Apple Mail, and other providers. Gmail specifically displays a blue checkmark next to your logo when you use a VMC – an additional trust signal for recipients.

Common Mark Certificate (CMC)

Google introduced CMCs in early 2025 as an alternative for brands without registered trademarks. Instead of proving trademark ownership, you demonstrate that:

• Your logo has been publicly displayed on your domain for at least 12 months
• Your organization controls that domain

CMCs are slightly cheaper (around $1,100 per year) and have faster issuance times since there’s no trademark verification.

The catch: CMC support is currently limited to Gmail. Yahoo will likely follow, but Apple has stated they won’t support CMCs. And critically, CMCs don’t get the blue checkmark in Gmail – just the logo.

Which Should You Choose?

Choose VMC if:

• Your logo is a registered trademark
• You need the Gmail blue checkmark for maximum trust signals
• You want support across all BIMI-compatible email clients
• Brand security is a high priority

Choose CMC if:

• You don’t have a trademark (or your trademark doesn’t exactly match your logo)
• Gmail is your primary audience
• Budget is a concern
• You want to implement BIMI quickly

For most businesses serious about email security and brand presence, the VMC is worth the additional investment.

Creating a BIMI-Compliant SVG Logo

This is where many implementations fail. BIMI doesn’t accept just any SVG file – it requires a specific format called SVG Tiny Portable/Secure (SVG P/S).

Technical Requirements

Your logo file must meet these specifications:

• Format: SVG Tiny 1.2 profile with baseProfile="tiny-ps"
• Dimensions: Square (1:1 aspect ratio) – the exact pixel dimensions don’t matter since SVG is scalable
• File size: Under 32 kilobytes
• Content: 100% vector-based – no embedded raster images

According to BIMI Group specifications, your SVG file must NOT include:

• External links or references
• Scripts, animation, or interactive elements
• x= or y= attributes in the root SVG element
• Embedded text (text should be converted to paths)
• External stylesheets

Creating the File

There’s currently no tool that exports SVG P/S format directly. The recommended workflow:

• Create in Adobe Illustrator and export as SVG Tiny 1.2
• Edit the exported file to:

– Change baseProfile="tiny" to baseProfile="tiny-ps"
– Remove any x="0" and y="0" attributes from the SVG tag
– Add a