Email Deliverability Masterclass

You can write the greatest cold email ever crafted, but it is worthless if it lands in spam. Email deliverability — the ability to consistently reach your recipient's primary inbox — is the foundation upon which every outreach campaign is built. This masterclass covers every technical and strategic factor that determines whether your emails get delivered, opened, and read.

What Is Email Deliverability?

Email deliverability refers to the percentage of emails you send that actually arrive in the recipient's inbox rather than their spam folder, promotions tab, or being bounced entirely. It is distinct from email delivery, which simply measures whether the receiving server accepted your message. An email can be "delivered" to a server but still end up in spam — that counts as a delivery success but a deliverability failure.

Deliverability is determined by a complex interplay of factors: your sender reputation, your domain and IP authentication, the content of your emails, recipient engagement patterns, and the policies of the receiving email provider. Understanding and optimizing each of these factors is essential for successful cold email campaigns.

The stakes are high. If your deliverability drops below 90%, you are leaving pipeline on the table. If it drops below 70%, your domain reputation is likely damaged and will take weeks or months to recover. The most successful cold email teams maintain deliverability rates above 95% through diligent setup and ongoing monitoring.

SPF: Sender Policy Framework

SPF is an email authentication protocol that allows domain owners to specify which mail servers are authorized to send email on behalf of their domain. When a receiving server gets an email claiming to be from your domain, it checks your SPF record to verify that the sending server is authorized.

To set up SPF, you add a TXT record to your domain's DNS configuration. The record looks something like:

v=spf1 include:_spf.google.com include:sendgrid.net ~all

This example authorizes Google Workspace and SendGrid to send email on behalf of your domain.

SPF Best Practices

• List all legitimate sending services in your record — if you use Google Workspace for regular email and a separate service for cold outreach, both need to be included
• Avoid using the +all mechanism, which authorizes any server to send as your domain
• Use ~all for a soft fail or -all for a hard fail on unauthorized senders
• Stay within the 10-lookup limit — each include statement counts as a lookup, and nested includes count as well
• Use tools like MxToolbox to verify your SPF record and check the lookup count

DKIM: DomainKeys Identified Mail

DKIM adds a digital signature to your outgoing emails that proves the message was not altered in transit and actually originated from your domain. The receiving server uses a public key published in your DNS records to verify this signature.

How DKIM Works

Setting up DKIM involves generating a public-private key pair. Your email sending service signs each outgoing message with the private key. You publish the public key as a DNS TXT record. When the receiving server gets your email, it looks up the public key and verifies the signature.

Most email sending services generate DKIM keys for you and provide the DNS record to publish. If you use multiple sending services, each needs its own DKIM selector. You might have one DKIM record for Google Workspace, another for your cold email tool, and another for your marketing automation platform.

DKIM is arguably the most important authentication protocol because it directly ties the message content to your domain. A message with a valid DKIM signature carries significantly more trust with receiving servers than one without it.

DMARC: Domain-Based Message Authentication

DMARC builds on SPF and DKIM to provide a policy framework for handling authentication failures. It tells receiving servers what to do when an email fails SPF and DKIM checks: nothing (monitor), quarantine it (send to spam), or reject it outright.

A basic DMARC record looks like:

v=DMARC1; p=none; rua=mailto:dmarc-reports@yourdomain.com

The p=none policy is the starting point, which monitors authentication results without taking action. Once you have verified that all legitimate email passes authentication, you can move to p=quarantine and eventually p=reject.

Phased DMARC Deployment

1. Weeks 1-2: Publish a p=none policy and collect reports
2. Weeks 3-4: Review reports and fix any authentication gaps
3. Weeks 5-6: Move to p=quarantine to start filtering unauthenticated email
4. After confirmation: Move to p=reject for maximum protection

The rua tag specifies where aggregate reports are sent. These reports tell you which servers are sending email as your domain and whether they pass authentication. This visibility is invaluable for identifying unauthorized use of your domain and verifying that your legitimate email is properly authenticated.

Google and Yahoo now require DMARC records for bulk senders. If you are sending more than 5,000 emails per day to Gmail or Yahoo recipients, a valid DMARC record is mandatory.

Sender Reputation: The Score That Matters Most

Your sender reputation is a score maintained by email providers that reflects your trustworthiness as a sender. It is influenced by:

• Your email volume and consistency
• Bounce rates
• Spam complaint rates
• Engagement rates (opens and replies)
• Spam trap hits
• Your authentication setup

IP Reputation vs. Domain Reputation

There are two types of sender reputation. IP reputation is tied to the IP address of the server sending your email. If you use a shared sending service, you share IP reputation with other senders on the same IP. Domain reputation is tied to your domain name and follows you regardless of which IP or service you use to send.

For cold email, domain reputation matters more than IP reputation because you typically send through services that use shared or rotating IPs.

Protecting Your Domain Reputation

• Send to verified email addresses only
• Keep bounce rates below 3%
• Maintain spam complaint rates below 0.1%
• Gradually increase sending volume
• Never purchase email lists

Check your sender reputation regularly. Google Postmaster Tools provides domain reputation data for Gmail recipients. Microsoft SNDS provides similar data for Outlook recipients. Third-party tools like Sender Score and Talos Intelligence provide broader reputation indicators.

Domain Warm-Up: The Critical First Weeks

A new domain or email account has no sending history. Email providers treat unknown senders with suspicion, so you need to build trust gradually through a process called warm-up.

Domain warm-up involves sending a small number of emails from your new domain and gradually increasing volume over two to four weeks. The key is to generate positive engagement signals — opens, replies, and clicks — during this period so that email providers associate your domain with legitimate, wanted email.

Typical Warm-Up Schedule

• Week 1: 5-10 emails per day
• Week 2: 20-30 emails per day
• Week 3: 50-75 emails per day
• Week 4: 100+ emails per day

These numbers are per sending account. If you have multiple accounts on the same domain, the total volume should still follow a gradual ramp.

During warm-up, send to your most engaged contacts first. Email colleagues, partners, or existing contacts who are likely to open and reply. Some teams use warm-up services that automatically exchange emails with a network of real inboxes, generating the open and reply signals that build reputation.

Critical Warm-Up Mistakes to Avoid

• Jumping straight to high volume — the fastest way to get blacklisted
• Sending exclusively to cold prospects during warm-up — mix in warm contacts
• Sending the same content to every recipient — variation signals legitimacy
• Skipping weekends and then sending a massive batch on Monday — maintain consistency

Content Quality Factors

Email providers analyze your message content to determine inbox placement. While authentication and reputation are the primary factors, content can tip the balance for borderline decisions.

Spam Trigger Words to Avoid

Words and phrases that increase spam filtering risk include: free, guaranteed, act now, limited time, click here, congratulations, winner, no obligation, risk-free, and urgent. These words are not automatic death sentences, but using several in a single email significantly increases the chance of spam filtering.

Formatting Best Practices

Keep your emails short and text-focused. The ideal cold email is 50-125 words. Avoid heavy HTML formatting, large images, or embedded media. Plain text emails or emails with minimal HTML consistently achieve better deliverability than heavily designed messages.

Watch your link-to-text ratio. One or two links in a 100-word email is fine. Five links in a 50-word email looks like spam. Never use link shorteners like bit.ly in cold email — email providers associate them with phishing attempts. Always use full URLs or hyperlinked text.

Personalization itself helps deliverability. When every email has unique content, email providers are less likely to flag them as bulk sends. Templates where only the name changes are more likely to trigger pattern-based spam detection.

Bounce Management

Bounces are one of the fastest ways to damage your sender reputation. A bounce occurs when your email cannot be delivered to the recipient's address.

Hard Bounces

Hard bounces indicate permanent delivery failure — the email address does not exist, the domain is invalid, or the recipient's server has permanently rejected your message. Hard bounces must be removed from your list immediately and never emailed again.

Soft Bounces

Soft bounces indicate temporary delivery failure — the recipient's mailbox is full, their server is temporarily unavailable, or the message is too large. Soft bounces can be retried, but if an address consistently soft bounces over multiple campaigns, treat it as a hard bounce.

Prevention

Prevent bounces by verifying every email address before adding it to a campaign. Email verification services like ZeroBounce, NeverBounce, or BriteVerify check addresses in real time and identify invalid, inactive, or risky addresses. Verification costs a fraction of a cent per address and should be standard practice for every campaign.

Set a hard bounce threshold for your campaigns. If your bounce rate exceeds 3%, pause the campaign immediately, clean your list, and investigate the source of bad addresses. Running a campaign with a high bounce rate compounds the damage with every send.

Monitoring and Troubleshooting

Consistent monitoring lets you catch and fix deliverability issues before they become critical.

Daily Metrics to Track

Set up dashboards that track:

• Delivery rate
• Bounce rate
• Open rate trends
• Spam complaint rate
• Blacklist status

Sudden drops in open rate often indicate a deliverability issue — your emails are being sent to spam, so recipients never see them.

Troubleshooting Checklist

If you notice declining deliverability, follow this sequence:

1. Check authentication records — use MxToolbox or Mail-Tester to verify that SPF, DKIM, and DMARC are all passing correctly
2. Check blacklists — services like MxToolbox aggregate multiple blacklist databases and tell you if your domain or IP appears on any
3. Review sending patterns — did you recently spike volume, change your content, or add a new sending service?
4. Examine bounce rate — a sudden increase points to list quality problems
5. Test your content — send a test email to Mail-Tester and review the score and recommendations

Recovery

Recovery from deliverability issues takes time and patience. If your domain reputation is damaged, reduce sending volume dramatically — back to warm-up levels. Focus on sending only to engaged recipients who will open and reply. Gradually rebuild volume over two to four weeks while monitoring reputation indicators. In severe cases, you may need to set up a new sending domain and warm it up from scratch, which is why maintaining good deliverability practices proactively is far more efficient than recovering from damage.

Advanced Deliverability Strategies

Inbox Rotation

Inbox rotation distributes your sending volume across multiple email accounts and domains. Instead of sending 200 emails per day from one account, you send 50 each from four accounts. This reduces per-account volume, decreasing the chance of any single account triggering spam filters.

Custom Tracking Domains

Custom tracking domains replace the default tracking links provided by your email sending service. Shared tracking domains are used by thousands of senders, including spammers, and can carry negative reputation. Setting up a custom tracking domain on your own infrastructure isolates your link reputation.

Engagement-Based Sending

Engagement-based sending prioritizes recipients who have historically engaged with your emails. By sending to engaged contacts first, you generate positive signals early in each campaign, which improves inbox placement for subsequent sends to less engaged segments.

Time-Zone-Based Sending

Time-zone-based sending delivers emails when recipients are most likely to be checking their inbox. Emails that arrive during business hours in the recipient's time zone get opened sooner, generating faster engagement signals that benefit your sender reputation.

Email deliverability is not a set-it-and-forget-it discipline. It requires ongoing attention, regular monitoring, and proactive optimization. The teams that treat deliverability as a core competency rather than a technical afterthought consistently outperform their peers in cold email outreach.