Why 20% of Business Emails Never Arrive

Published April 2025 · 8 min read · by mailcheck

1 in 5

legitimate business emails never reach the inbox — not spam, just gone

You just sent an important proposal to a client. You got no bounce, no error, no notification. The email simply vanished — accepted by the receiver's mail server, analyzed by their spam filters, and silently discarded.

This happens to approximately 20% of legitimate business email. Not spam — legitimate, wanted email that never arrives. The cost? Lost deals, delayed projects, missed opportunities, and eroded trust. Let's look at the data.

The Numbers: Email Deliverability by Domain Type

We analyzed DNS records across thousands of domains using the mailcheck API. Here's what we found:

🏛️ Government Domains

34% have no DMARC policy or p=none. 12% have broken SPF records. Many EU institutions are vulnerable to spoofing.

🏢 Enterprise (Fortune 500)

18% have SPF DNS lookup count exceeding 10. 8% have expired or weak DKIM keys. Average score: 72/100.

🚀 SaaS Startups

45% have no DMARC record at all. 22% have multiple SPF records (RFC violation). Average score: 58/100.

🏪 Small Business

67% have no DMARC, 38% have SPF set to ?all (passive). Average deliverability score: 42/100.

The Root Causes

1. SPF Misconfiguration (Affects ~35% of domains)

SPF (Sender Policy Framework) tells receivers which IP addresses are authorized to send email on behalf of your domain. The most common problems:

Multiple SPF records — RFC 7208 says you can only have ONE. Having two causes receivers to reject your email.
DNS lookup overflow — More than 10 includes/lookups causes a PermError. Google Workspace (2 lookups) + SendGrid (1) + Mailchimp (1) + Salesforce (1) + your own MX/A records = fast overflow.
Using ~all when you mean -all — Softfail (~all) doesn't prevent spoofing; it just marks email as "suspicious."

2. DKIM Weaknesses (Affects ~15% of domains)

DKIM proves email wasn't tampered with in transit. Problems include:

1024-bit keys — Cryptographically weak. Microsoft and Yahoo penalize these.
Missing selector records — When providers rotate selectors and don't update your DNS, DKIM verification silently fails.
No DKIM at all — Still the majority of small businesses.

3. DMARC Missing or Weak (Affects ~60% of domains)

DMARC ties SPF and DKIM together with a policy. The grim reality:

40%+

of domains with DMARC use p=none — effectively no protection

Without p=reject, attackers can forge your domain with near-impunity. Gmail and Microsoft are increasingly treating p=none as equivalent to no DMARC at all.

The Business Impact

Let's quantify the damage. Say your organization sends 10,000 emails per month:

At 80% deliverability — 2,000 emails never arrive. That's 2,000 lost touchpoints per month.
Financial cost — At an average customer LTV of $500 and 2% conversion rate, that's $20,000/month in lost revenue.
Support overhead — "Did you get my email?" becomes the most-asked question in your support queue.
Reputation damage — Clients who don't receive your emails don't blame their IT — they blame you.

What to Do About It

Step 1: Audit your domain — Check your deliverability score right now:

curl https://korpo.pro/api/v1/check/yourdomain.com

Step 2: Fix the top issues — Read our SPF/DKIM/DMARC fix guide for step-by-step instructions.

Step 3: Monitor continuously — DNS records change. Providers rotate keys. Set up automated monitoring.

Check Your Domain Score — Free

No signup, no API key. Just enter your domain.

Get Started Free