Mark Certificates — BIMI Email Verification

Your Brand's
Digital Identity

Put your verified logo in every inbox.

VMC

Verified Mark Certificate

The Gold Standard. Requires a registered trademark. Get a verified blue checkmark and prove you're the official brand owner.

Buy now

CMC

Common Mark Certificate

No trademark required. Any established brand using its logo for 12+ months can verify their emails and show their logo in the inbox.

Buy now

BUNDLE

Mark Certificate + DMARC

Not yet DMARC-ready? Get DMARC enforcement support bundled with your VMC or CMC and go from zero to verified inbox faster.

Learn more

See the Difference in the Inbox

Your brand logo appears beside every email you send instantly building trust.
Without BIMI

Without BIMI

Emails arrive without brand logos. Recipients see only a generic avatar no visual trust signal, no brand recognition.

  • No logo displayed in inbox
  • No sender verification
  • Higher risk of being marked as spam
  • No visual differentiation from phishing emails
cmc

Common Mark Certificate

Your brand logo appears beside every email you send. No trademark required  just 12+ months of logo use and DMARC enforcement.

  • Logo displayed in recipients' inbox
  • Any company logo used for 12+ months
  • No trademark registration required
  • Enterprise-grade identity verification
  • Valid across all regions globally
vmc

Verified Mark Certificate

The gold standard for brands with registered trademarks. VMC displays your logo with a verified blue checkmark proving you're the official brand owner.

  • Logo displayed in recipients' inbox
  • Blue verified checkmark on opened emails
  • Utilizes a legally trademarked logo
  • Highest level of brand authentication
  • Region-specific (check your region)

Which Certificate is Right for You?

FEATURE VMC CMC
Logo displayed in inbox
Verified checkmark (blue tick)
Requires registered trademark
Logo used for 12+ months N/A
Available in all regions Region-specific
Phishing protection via BIMI
API support for management
Valid for 1 year per domain
Requires DMARC enforcement

BUY NOW

VMC
Verified Mark Certificate

For brands with a registered trademark. Includes verified blue checkmark.

Buy now

CMC
Common Mark Certificate

No trademark required. Any established brand using its logo for 12+ months can verify their emails and show their logo in the inbox.

Buy now

Mark Certificate + DMARC
Start from scratch - we handle everything.

Not yet DMARC-ready? Get DMARC enforcement support bundled with your VMC or CMC and go from zero to verified inbox faster.

Learn more

All Mark Certificates require DMARC enforcement. Learn more about DMARC →

How to Implement a Mark Certificate

When purchasing a Mark Certificate, there are some prerequisites that need to be completed. Click any step to learn more.

  • Deploy
    Deploy DMARC

    Set up DMARC standards for your domain (SPF + DKIM required).

    Deploy Domain-based Message Authentication, Reporting and Conformance (DMARC) standards for your domain. BIMI requires DMARC, which is an email authentication protocol that instructs recipients' servers on how to deal with fraudulent emails sent by unauthorised people using your domain. You should have at least SPF or DKIM in place to deploy DMARC. Implementing both is encouraged for the best protection against email-based threats.

  • TM

    Prove
    Prove Ownership of Your Logo

    VMC requires a registered trademark. CMC requires 12+ months of logo use.

    To qualify for a VMC, your logo must be legally trademarked with the appropriate office for your geographic region. For a CMC, you do not require legal registration of your logo, but you must have been actively using it for at least 12 months.

  • Convert
    Convert Your Logo to .SVG

    Your trademarked logo must be in SVG format (use Adobe Illustrator).

    To complete the Mark Certificate order process, you will need to ensure your trademarked logo has been converted to the .SVG format using Adobe Illustrator. This is a requirement for the certificate validation and for your logo to render correctly in email clients.

  • Purchase
    Purchase & Complete Validation

    ROne certificate per domain, valid for one year.

    Purchase a Mark Certificate and complete the validation process. A certificate is required for each individual email domain and is valid for one year. GlobalSign will verify your trademark registration (VMC) or logo usage history (CMC) during this process.

  • Upload
    Upload Certificate to Web Server

    Upload the issued PEM file to your public web server.

    Once the certificate is issued to you, you will receive an email with your entity certificate Privacy Enhanced Mail (PEM) file. Upload this file to your public web server so that email clients can verify your identity when delivering your emails.

  • Update
    Update or Create Your BIMI Record

    Add a BIMI TXT record to your domain's DNS.

    Use an online BIMI record-generating tool and add the produced BIMI TXT record to your domain's DNS. Once this is live, your brand logo will start appearing next to your emails in supported inboxes — including Gmail, Apple Mail, Yahoo, and more.

DMARC is the Foundation

Before you can display your logo in the inbox with a VMC or CMC, your domain must reach DMARC enforcement. It's a non-negotiable prerequisite and the biggest unlock in email security.

SPF

Verifies which servers are authorised to send email on behalf of your domain.

DKIM

Attaches a cryptographic signature to outgoing email, proving message integrity.

DMARC

Ties SPF and DKIM together with a policy and unlocks BIMI, CMC, and VMC.

Without DMARC enforcement, you cannot get a VMC or CMC.

DMARC enforcement (p=quarantine or p=reject) is mandatory for BIMI, CMC, VMC, and GMC. Check your domain's readiness before purchasing a certificate.

Check My Domain → Learn About DMARC →

Not DMARC-Ready Yet? We've Got You Covered.

Many organisations need deeper visibility, reporting, and expert guidance to progress safely to DMARC enforcement. GlobalSign has partnered with Red Sift, providing a clear, guided path to enforcement so you can unlock your VMC or CMC faster.

Explore DMARC Solutions → Explore DMARC Solutions →
  • Automatically discover all domains and subdomains sending email
  • Update DNS once and manage all protocols from a single platform
  • Continuously surface forgotten or misconfigured DNS records
  • Leverage a security-trained LLM for smarter insights
  • Backed by one of the highest-rated customer success teams
GlobalSign

Get a Mark Certificate for Trusted Email

Mark Certificates provide easy recognition, improve email deliverability, and help prevent spam. Talk to our team today.

Talk to Our Team

We'll help you find the right certificate for your brand.

Ready to get your brand in the inbox?

Check DMARC Readiness Talk to Us →