> ## Documentation Index
> Fetch the complete documentation index at: https://docs.lettr.com/llms.txt
> Use this file to discover all available pages before exploring further.

# BIMI Records

> Set up BIMI so your verified brand logo appears next to emails in supported inboxes like Gmail and Yahoo, building recognition and trust

Once you've set up your sending domain with SPF, DKIM, and DMARC in Lettr, BIMI is the final step that puts your brand logo next to every email you send. Instead of a generic avatar or blank icon in the recipient's inbox, they see your verified company logo — building instant recognition and trust.

## What Recipients See

Without BIMI, your emails appear with a generic icon or the first letter of your sender name. With BIMI, your verified brand logo displays as an avatar next to every message in supported clients like Gmail and Yahoo Mail.

This visual distinction helps your transactional emails (order confirmations, password resets, shipping notifications) stand out from spam and phishing attempts that may impersonate your domain.

### Benefits

* **Brand Recognition** — Your logo appears prominently in the inbox alongside every email sent through Lettr
* **Increased Trust** — Recipients can visually confirm emails are legitimately from you
* **Higher Engagement** — Branded emails see measurably higher open rates
* **Spam Differentiation** — Legitimate emails stand out from phishing attempts impersonating your domain

## Requirements

BIMI requires several components to be in place:

<Steps>
  <Step title="DMARC Enforcement">
    Your domain must have DMARC with enforcement enabled:

    * Policy must be `p=quarantine` or `p=reject`
    * Percentage must be `pct=100`

    ```
    v=DMARC1; p=reject; pct=100; rua=mailto:dmarc@example.com
    ```

    See [DMARC Configuration](/learn/domains/dmarc) for setup instructions.
  </Step>

  <Step title="SVG Logo">
    Your logo in SVG Tiny PS format meeting specific requirements.
  </Step>

  <Step title="Verified Mark Certificate (VMC)">
    A certificate from an authorized provider proving logo ownership. Required for Gmail, Yahoo, and other major clients.
  </Step>

  <Step title="BIMI DNS Record">
    A TXT record publishing your logo and certificate URLs.
  </Step>
</Steps>

<Warning>
  BIMI will not work with `p=none`. You must enforce DMARC at `quarantine` or `reject` level. Use [DMARCeye.com](https://dmarceye.com) to safely transition to DMARC enforcement.
</Warning>

## How BIMI Works

<Steps>
  <Step title="Email is sent and authenticated">
    Your email is sent from your domain and arrives at the recipient's mail server. The server performs SPF, DKIM, and DMARC authentication checks. DMARC must pass with a policy of `quarantine` or `reject`.
  </Step>

  <Step title="BIMI DNS lookup">
    After DMARC passes, the receiving server queries your domain's DNS for a BIMI TXT record at `default._bimi.yourdomain.com`. This record contains the URL to your logo and optionally a VMC certificate.
  </Step>

  <Step title="Logo and VMC retrieval">
    The server fetches your SVG logo from the HTTPS URL specified in the BIMI record. If the mailbox provider requires a Verified Mark Certificate (VMC), it also retrieves and validates the certificate to confirm logo ownership.
  </Step>

  <Step title="Logo displayed in inbox">
    Once verified, the recipient's email client displays your brand logo next to your message in the inbox, replacing the default avatar or initials.
  </Step>
</Steps>

## Logo Requirements

Your BIMI logo must meet these specifications:

| Requirement  | Specification                 |
| ------------ | ----------------------------- |
| Format       | SVG Tiny 1.2 Portable/Secure  |
| Shape        | Square (1:1 aspect ratio)     |
| Background   | Solid color (no transparency) |
| Minimum size | 32x32 pixels                  |
| File size    | Under 32 KB                   |
| Hosting      | HTTPS URL accessible publicly |

### SVG Tiny PS Specifics

BIMI uses a special SVG profile called "SVG Tiny Portable/Secure":

* No external references or links
* No scripts or animations
* Limited element set (basic shapes, paths, text)
* Must include `baseProfile="tiny-ps"` and `version="1.2"`

Example SVG header:

```xml theme={null}
<svg xmlns="http://www.w3.org/2000/svg"
     version="1.2"
     baseProfile="tiny-ps"
     viewBox="0 0 100 100">
  <!-- Logo content -->
</svg>
```

<Tip>
  Use a BIMI logo generator or converter to ensure your SVG meets all requirements.
</Tip>

## Creating a BIMI Record

Add a TXT record to your domain:

| Field | Value                                                                    |
| ----- | ------------------------------------------------------------------------ |
| Type  | TXT                                                                      |
| Name  | `default._bimi`                                                          |
| Value | `v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem` |

### Record Parameters

| Parameter | Required | Description                           |
| --------- | -------- | ------------------------------------- |
| `v=BIMI1` | Yes      | BIMI version identifier               |
| `l=`      | Yes      | URL to your SVG logo (HTTPS required) |
| `a=`      | No\*     | URL to your VMC certificate           |

\*VMC is required for Gmail, Yahoo, and most major email clients.

### Without VMC

If you don't have a VMC yet, you can still set up BIMI for clients that don't require it:

```
v=BIMI1; l=https://example.com/logo.svg
```

### With VMC

For full support including Gmail:

```
v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem
```

## Verified Mark Certificates (VMC)

A VMC proves you own the trademark for the logo you're displaying. It's issued by authorized certificate authorities.

### VMC Providers

| Provider | Website      |
| -------- | ------------ |
| DigiCert | digicert.com |
| Entrust  | entrust.com  |

### VMC Requirements

To obtain a VMC, you need:

* **Trademark Registration** - Logo must be registered with a recognized trademark office
* **Domain Ownership** - Prove you control the domain
* **Organization Verification** - Business identity verification

<Note>
  VMC certificates cost several thousand dollars annually and require trademark registration. Consider this investment carefully for brand protection benefits.
</Note>

### VMC File Format

The VMC is provided as a PEM file. Host it at an HTTPS URL:

```
https://example.com/bimi/vmc.pem
```

### VMC Lifecycle

VMC certificates are typically valid for one year. Plan for renewal:

* **Track expiration** — Set a calendar reminder at least 30 days before your VMC expires. If your VMC lapses, Gmail and Yahoo will stop displaying your logo immediately.
* **Renew early** — Certificate authorities can take several business days to reissue. Start the renewal process at least 2 weeks before expiration.
* **Update the hosted file** — After renewal, replace the PEM file at your hosted URL. The BIMI DNS record doesn't need to change as long as the URL remains the same.
* **Verify after renewal** — Send test emails to Gmail and Yahoo to confirm your logo still displays correctly after replacing the certificate.

## Verifying Your BIMI Setup

BIMI is configured entirely through DNS records — there is no BIMI configuration in the Lettr dashboard or API. Once you've added the BIMI TXT record to your DNS and ensured DMARC enforcement is in place, email clients will automatically look up and display your logo.

## Email Client Support

BIMI support varies by email client:

| Client            | VMC Required | Support Level |
| ----------------- | ------------ | ------------- |
| Gmail             | Yes          | Full support  |
| Yahoo Mail        | Yes          | Full support  |
| Apple Mail        | No           | Basic support |
| Fastmail          | No           | Basic support |
| AOL Mail          | Yes          | Full support  |
| Microsoft Outlook | Limited      | Testing phase |

<Note>
  BIMI adoption is still growing. Microsoft Outlook has limited support in testing, and many smaller clients don't support BIMI at all. Gmail and Yahoo Mail are the primary clients where BIMI makes a visible difference today. Even without universal support, these two clients cover a large share of most sender audiences.
</Note>

## Testing Your BIMI Setup

### 1. Validate DNS Record

Use a DNS lookup tool to verify your BIMI record:

```bash theme={null}
dig TXT default._bimi.example.com
```

Expected output:

```
default._bimi.example.com. 300 IN TXT "v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem"
```

### 2. Use BIMI Validators

* **BIMI Inspector** - bimigroup.org/bimi-generator
* **BIMI Lookup** - Check BIMI records and logo compliance
* **MXToolbox** - BIMI record validation

### 3. Send Test Emails

Send test emails to accounts at Gmail, Yahoo, and Apple Mail to verify logo display.

## Common BIMI Configurations

### Basic Setup (No VMC)

For testing or clients that don't require VMC:

```
# DNS Record
default._bimi.example.com TXT "v=BIMI1; l=https://example.com/bimi-logo.svg"
```

### Production Setup (With VMC)

For full email client support:

```
# DNS Record
default._bimi.example.com TXT "v=BIMI1; l=https://example.com/bimi-logo.svg; a=https://example.com/bimi.pem"

# Required DMARC
_dmarc.example.com TXT "v=DMARC1; p=reject; pct=100; rua=mailto:dmarc@example.com"
```

### Subdomain Configuration

BIMI can be configured per subdomain:

```
# Root domain
default._bimi.example.com TXT "v=BIMI1; l=https://example.com/main-logo.svg"

# Subdomain with different logo
default._bimi.mail.example.com TXT "v=BIMI1; l=https://example.com/mail-logo.svg"
```

## Troubleshooting

<AccordionGroup>
  <Accordion title="Logo not displaying">
    * Verify DMARC is set to `p=quarantine` or `p=reject` with `pct=100`
    * Check that the BIMI record exists at `default._bimi.yourdomain.com`
    * Ensure logo URL is accessible via HTTPS
    * Verify SVG meets Tiny PS requirements
    * For Gmail/Yahoo, VMC is required
  </Accordion>

  <Accordion title="BIMI record not found">
    * Check DNS record is at `default._bimi.example.com` (not `_bimi.example.com`)
    * Allow time for DNS propagation
    * Verify record syntax is correct
  </Accordion>

  <Accordion title="SVG validation errors">
    * Ensure SVG uses Tiny PS profile
    * Remove any scripts, animations, or external references
    * Check aspect ratio is 1:1 (square)
    * Verify background is solid (no transparency)
    * Keep file size under 32 KB
  </Accordion>

  <Accordion title="VMC validation failing">
    * Ensure VMC file is accessible at HTTPS URL
    * Check VMC hasn't expired
    * Verify VMC domain matches sending domain
    * Confirm trademark registration is current
  </Accordion>

  <Accordion title="Logo displays inconsistently">
    * BIMI display depends on sender reputation
    * New domains may not show logos immediately
    * Some clients cache logos, so changes may take time to appear
    * Check that all authentication (SPF, DKIM, DMARC) is passing
  </Accordion>
</AccordionGroup>

<Warning>
  BIMI logo display is not guaranteed. Email clients consider factors like sender reputation, authentication status, and user engagement when deciding whether to show logos.
</Warning>

## BIMI Implementation Checklist

Use this checklist before launching BIMI:

* [ ] DMARC policy is `p=quarantine` or `p=reject`
* [ ] DMARC percentage is `pct=100`
* [ ] SPF and DKIM are verified and passing
* [ ] Logo meets SVG Tiny PS requirements
* [ ] Logo is square with solid background
* [ ] Logo file is under 32 KB
* [ ] Logo is hosted at HTTPS URL
* [ ] VMC obtained (for Gmail/Yahoo support)
* [ ] VMC hosted at HTTPS URL
* [ ] BIMI TXT record created
* [ ] Tested with BIMI validator tools
* [ ] Sent test emails to verify display

## Best Practices

1. **Nail DMARC first** - BIMI won't work without DMARC enforcement
2. **Use your registered trademark** - Required for VMC
3. **Keep logos simple** - Complex logos may not render well at small sizes
4. **Test across clients** - Verify appearance in multiple email apps
5. **Monitor authentication** - BIMI fails if SPF/DKIM/DMARC fail
6. **Update gradually** - Allow time for caches to refresh when changing logos
7. **Consider all sizes** - Logos display at various sizes (32px to 100px+)

## Related Topics

<CardGroup cols={2}>
  <Card title="DMARC" icon="shield" href="/learn/domains/dmarc">
    Required for BIMI (enforcement mode)
  </Card>

  <Card title="Sending Domains" icon="paper-plane" href="/learn/domains/sending-domains">
    Configure SPF and DKIM
  </Card>

  <Card title="Deliverability" icon="inbox" href="/knowledge-base/best-practices/deliverability">
    Email deliverability best practices
  </Card>

  <Card title="Security" icon="lock" href="/knowledge-base/best-practices/security">
    Email security best practices
  </Card>
</CardGroup>
