You spent hours on it. Wrote the subject line, polished the copy, placed every button exactly right. Hit Send. Then it landed in spam and the subscriber never saw it.
This happens constantly. Validity data puts the number at roughly 20% of legitimate emails that never reach the inbox. One in five of your messages, gone. Most senders have no idea.
Below: why it happens, and a 7-step checklist you can finish in half an hour. No SMTP acronyms required.
How spam filters work (plain English)
Think of a security guard at the entrance to an office building. He has a staff list, a watchlist of known troublemakers, and cameras tracking behavior throughout the lobby.
A spam filter works the same way. Every incoming message goes through three checks:
Who are you?
The reputation of your sending domain and IP. Whether you have a proper ID: SPF, DKIM, DMARC.
What are you carrying?
Email content: spam trigger words, suspicious links, the ratio of text to images.
Are you expected?
Recipient engagement: do people open your emails, click, or hit the spam button?
The guard is strict because he has to be. Statista puts global spam at 45% of all email traffic. Nearly half. Filters are tuned to be aggressive, because the cost of letting one spam message through is lower than the cost of missing it.
The problem is collateral damage. If your campaign looks even slightly spammy, you are in the risk zone.
7 reasons your emails land in spam
A dirty email list
Invalid, non-existent, and abandoned addresses. When you send to them, the message bounces back. That is called a bounce. Once your bounce rate passes 2%, filters conclude you are not maintaining your list and start treating you as a suspect sender.
Missing authentication (SPF, DKIM, DMARC)
These are the ID documents for your email. SPF tells receiving servers which servers are allowed to send on your domain's behalf. DKIM is a digital signature proving the message was not tampered with in transit. DMARC tells servers what to do when the signature is absent. Without all three, your email is like a visitor with no ID. Maybe they get in. More likely they do not.
Spam trigger words in subject and body
"FREE", "Act now!", "Make money fast", "You've been selected". Filters have these memorized. Your offer may be genuinely free. The filter does not care — it sees the trigger word and acts.
A hidden unsubscribe link
If someone wants out and cannot find the button, they take the easier path: hit "Spam." That is much worse than an unsubscribe, because every complaint chips away at your sender reputation.
Too many spam complaints
Google's threshold is 0.1% complaint rate — one complaint per 1,000 delivered messages. Cross that line and Gmail starts routing your mail to spam. Not just for people who complained: for everyone. Recovering takes time.
Sending at volume without warming up
A new domain or fresh IP that immediately blasts thousands of emails is a red flag. Legitimate senders ramp up gradually. Jumping straight to full list volume looks exactly like what spammers do.
Subscribers who never opted in
Contacts collected at a conference three years ago? Leads from a CRM form they barely remember filling out? They do not know who you are. The first thing many will do is click "Spam". Without double opt-in, this is almost guaranteed.
Google and Yahoo's 2024 rules — what changed
From February 2024
Google and Yahoo now require bulk senders (5,000+ emails per day) to have SPF, DKIM, and DMARC configured. Without authentication, messages are rejected outright — they do not even reach the spam folder.
"I only send 500 emails, this does not apply to me" — a lot of people think that. But requirements have only tightened over time. If the threshold is 5,000 today, it could be 1,000 next year. Set up authentication now, while it is still a recommendation rather than an instant block.
Beyond authentication, Google now requires a visible one-click unsubscribe. Not a small-print link buried in the footer — an actual button people can see.
Checklist — 7 steps to get out of spam
Enough background. Here are concrete actions. Most take under 30 minutes.
Check and clean your list
The fastest thing you can do right now. Upload your list to a validator — it flags dead addresses, typos, and risky contacts. Remove the bad ones and your bounce rate drops immediately.
Manual checking is not realistic at scale. uChecker identifies invalid addresses in seconds and helps you get your bounce rate back under control. 30 free checks — enough to size up your list.
Check your list for free →Set up SPF, DKIM, and DMARC
Three locks on your door. SPF lists which servers can send on your domain's behalf. DKIM puts a digital seal on every message. DMARC tells receiving servers what to do when the seal is missing. All three are configured in your domain's DNS. If you're not sure how, ask your hosting provider — they can usually do it in five minutes.
Put an unsubscribe button somewhere obvious
Do not hide it. Put it near the top or clearly visible at the bottom, in readable text. Sounds counterintuitive — why make it easy to leave? Because the alternative is a spam click, which damages your domain reputation far more than a clean unsubscribe.
Remove spam words from your subject and preheader
Scan both. "FREE", "90% off", "Act now!!!" are filter triggers. Replace vague excitement with specifics: instead of "Free webinar!!!" try "Email marketing webinar, March 15 — no cost to attend".
Warm up your domain
If the domain is new or has not been used for campaigns in a while, start small. 50 emails on day one, 100 on day two, 200 on day three. Ramp gradually over 2–4 weeks. It takes time, but the reputation you build is the foundation everything else runs on.
Remove inactive subscribers
If someone has not opened anything in 90 days, take them off the active list. Before you delete them, send a re-engagement email first. If there is still no response, remove them. Inactive subscribers suppress your open rate and drag down your sending reputation.
Turn on double opt-in
Someone enters their email, gets a confirmation message, clicks the link — only then do they go into your list. You will collect 20–30% fewer sign-ups. But every address that makes it through belongs to a real person who actually wants to hear from you.
How to check if you're in spam right now
Your emails may already be going to spam and you do not know it. Three ways to find out:
Send a test to yourself
Send your campaign to a Gmail account, a Yahoo account, and an Outlook account. Check all three — results vary by provider. If any one of them puts the message in spam, there is a problem.
Mail Tester
Go to mail-tester.com, send a message to the address shown, and get a spam score from 1 to 10. Below 7 means there is work to do on deliverability.
Your campaign metrics
Open rate below 15%? Bounce rate above 2%? Complaint rate above 0.1%? These numbers say some portion of your mail is not reaching the inbox.
Numbers worth knowing
- Bounce rate: under 2% is fine; above that is a problem
- Complaint rate: under 0.1% is fine; above that triggers Gmail filtering
- Open rate: 20–30% is healthy; below 15% is a warning sign
Domain reputation — your credit score in email
It is exactly like a credit score. Built over years, wrecked in a day.
Every mailbox provider keeps a file on your domain: how many messages you send, how many get opened, how many bounce, how many trigger complaints. All of it feeds into a score.
❌ What hurts your reputation
- • High bounce rate
- • Spam complaints
- • Hitting spam traps
- • Sudden volume spikes
- • Sending without authentication
✅ What helps your reputation
- • A clean, validated list
- • High open and click rates
- • Consistent sending volume
- • SPF/DKIM/DMARC configured
- • Low complaint rate
One specific hazard: spam traps. Providers take old abandoned addresses and convert them into bait. If you send to one, they conclude you have not cleaned your list in a long time. The reputation hit is immediate. The only real protection is validating your list on a regular schedule.
The short version
Ending up in spam is not permanent. In the vast majority of cases it comes down to two things: a dirty list and missing authentication. Fix those and you fix most of the problem.
You do not need to read RFC documents or understand SMTP internals. Run through the checklist above. Clean the list. Set up authentication. Add a visible unsubscribe. Pull the spam words from your subject line. Warm up the domain. All of that is doable in a single afternoon.
The easiest starting point is step one: checking your list. It takes a couple of minutes and immediately shows you where you are losing deliverability.
Check your list in uChecker — 30 free checks to see where your addresses stand.
Check your list for free