- April 2022
- Engineering Memo · External Release
Transactional email — order confirmations, password resets, shipping notifications — has different deliverability requirements from cold outreach email. Transactional email must reach the inbox reliably, at low volume, with near-zero tolerance for spam folder placement. Cold outreach email generates higher complaint rates than any other email type, has more aggressive spam trap exposure from purchased or scraped contact lists, and requires sending practices (higher volume, less engaged lists) that generate negative reputation signals. Sending both from the same infrastructure without traffic separation contaminates the transactional sender's reputation with cold email signals — one of the most damaging and most preventable deliverability configuration mistakes.
How Cross-Contamination Occurs
When cold outreach and transactional email share the same DKIM signing domain, every cold email complaint and spam trap hit accumulates on the same domain reputation that ISPs evaluate for transactional messages. The domain reputation model at Gmail attributes signal quality to the DKIM signing domain — and it does not distinguish between complaint signals generated by cold outreach and complaint signals generated by transactional messages. A cold outreach campaign that generates 0.5% complaints from a purchased B2B list adds thousands of complaint signals to the signing domain's reputation, which Gmail then applies when evaluating subsequent transactional messages from the same domain.
The IP-level contamination is equally direct: cold outreach and transactional email sharing the same IP pool means that the IP reputation built from cold outreach sending — higher spam trap hit rates, higher complaint rates, more ISP throttle responses — applies to transactional message delivery. The ISP cannot distinguish between a transactional password reset and a cold outreach message when evaluating the sending IP's reputation; it evaluates the IP's overall signal history, which includes all message types sent from that IP.
The cross-contamination is not theoretical — it is one of the most frequently observed patterns in deliverability incident investigations. A programme that begins experiencing transactional email delivery problems (password resets arriving late, order confirmations in spam folders) is often found, on investigation, to have recently expanded a cold outreach programme using the same sending infrastructure as the transactional email. The cold outreach generated reputation signals that degraded the transactional email's delivery performance, even though the transactional messages themselves were perfectly configured and their recipients were expecting them.
Figure 1 — Cold Email to Transactional Reputation Contamination Path
The Correct Architecture: Complete Traffic Separation
The solution to cold email / transactional reputation cross-contamination is complete traffic separation at both the IP and domain level. Cold outreach must use a completely separate sending infrastructure from transactional email: separate IP pool, separate DKIM signing domain, separate PowerMTA VMTA (if using PowerMTA), and separate monitoring in separate Postmaster Tools properties.
The separation at the domain level is the more critical of the two: even if the IP pools are different, DKIM signing from the same domain means the domain reputation accumulates all signals together. A transactional message signed with brand.com and a cold outreach message signed with brand.com both contribute to brand.com's domain reputation at Gmail. The separation must include different signing domains: brand.com for transactional, reach.brand.com or outreach-brand.com for cold outreach.
Many programmes are reluctant to use a different domain for cold outreach because they want the brand recognition in the From: header. The trade-off is direct: using brand.com for cold outreach keeps the brand visible but contaminates the transactional reputation; using a separate cold outreach domain protects the transactional reputation but reduces brand recognition in cold outreach. For any programme where transactional email delivery is commercially critical (e-commerce, SaaS, financial services), protecting the transactional domain's reputation is the correct priority. The separate cold outreach domain can be branded (outreach.brand.com, mail.brand.com) to maintain some brand association while providing the necessary reputation isolation.
Diagnosing Existing Cross-Contamination
For programmes already experiencing transactional deliverability problems and suspecting cross-contamination, the diagnosis requires reviewing the DKIM signing configuration across all email types and checking whether any high-complaint traffic is using the same signing domain as the transactional email. The DMARC aggregate reports provide this data: every source sending with brand.com in the DKIM d= field appears in the aggregate report, with authentication status and the ISP's source-level assessment.
If the aggregate report shows that a high-volume source (an outreach tool, a sales engagement platform, or a marketing ESP) is signing with brand.com — and that source is generating elevated complaint rates — the cross-contamination is confirmed. The immediate action: switch the outreach source to a separate signing domain immediately. The DKIM configuration change takes effect as soon as the new key is published in DNS and the source is reconfigured to use it. From that moment, the outreach signals stop accumulating on brand.com's reputation, and the transactional reputation begins its recovery trajectory.
Cold email is a legitimate outreach tool for many B2B programmes. Used correctly — on separate infrastructure, with separate reputation management, with GDPR-compliant list sourcing — it generates pipeline without damaging the sender's core email reputation. The architecture that makes this possible is the traffic separation that gives cold outreach its own reputation space to operate in, independent of the transactional infrastructure that commercial operations depend on. Build the separation before starting cold outreach; retrofit it immediately if contamination is already occurring; and the two email types can coexist without the reputation interference that shared infrastructure inevitably produces.
The Commercial Severity of Transactional Delivery Failure
Transactional email delivery failure has immediate commercial consequences that promotional email delivery failure does not. A promotional campaign that has 30% inbox placement is a marketing effectiveness problem — the programme generates less revenue than it could, but recipients who miss the promotion are not directly harmed. A password reset email that goes to spam is a customer experience failure — the user cannot access their account, contacts support, and may abandon the service. An order confirmation that is spam-classified creates customer anxiety about whether the purchase was processed, generating support contacts and potentially chargebacks.
These transactional delivery failures have quantifiable costs: support contacts cost €3-15 each to resolve, customer churn from frustrating authentication experiences has a lifetime value cost, and chargebacks cost €25-100 each plus processing overhead. For e-commerce programmes generating 10,000 transactional messages per day, even a 5% spam classification rate (500 messages going to spam) generates hundreds of avoidable support contacts per day with direct cost impact that makes transactional deliverability a first-class commercial concern.
Cold email reputation contamination of transactional infrastructure is particularly insidious because it is gradual. Cold outreach begins generating complaint signals; the domain reputation moves from High to Medium over weeks; transactional inbox placement drops from 98% to 85% — a barely noticeable change in the aggregate metric but representing 1,500 transactional messages per day going to spam from a 10,000-message transactional volume. The gradual degradation makes the correlation between cold outreach expansion and transactional delivery problems easy to miss without systematic monitoring across traffic types.
Monitoring for Cross-Contamination
Detecting cross-contamination requires monitoring that can distinguish transactional performance from cold outreach performance on shared infrastructure. The monitoring approach: tag all transactional messages with a campaign identifier (X-Campaign-ID: transactional) and all cold outreach messages with a separate identifier (X-Campaign-ID: cold-outreach). The accounting log ETL pipeline uses this tag to segment delivery outcomes by traffic type. Separate per-type complaint rate, bounce rate, and deferral rate queries reveal whether the two traffic types are having different delivery experiences.
If the per-type analysis shows that cold outreach has 0.3% complaint rate and 2% spam trap exposure while transactional has 0.01% complaint rate and negligible spam trap exposure — but both are sharing the same signing domain — the transactional performance will degrade over time as the domain reputation reflects the combined signal history. The monitoring reveals the contamination risk before it becomes a delivery problem; the architecture change (separate signing domains) resolves it before commercial impact occurs.
For programmes that have not yet implemented per-type tagging, the DMARC aggregate report provides a simpler contamination check: all sources signing with brand.com appear in the aggregate report. If any source shows high message volume with elevated complaint or failure rates, and is using brand.com as the signing domain, that source is contributing to brand.com's reputation signals. Identify those sources, verify whether they are cold outreach traffic, and if so, implement separate signing as the immediate remediation.
Retroactive Separation: Recovery After Contamination
For programmes where cross-contamination has already occurred and transactional deliverability has been degraded, the recovery process combines the traffic separation architecture implementation with the standard reputation recovery protocol. First, implement the traffic separation immediately: switch all cold outreach to a separate signing domain and IP pool. This stops new contamination signals from accumulating on the transactional domain's reputation immediately.
Second, follow the reputation recovery protocol for the transactional domain: resume transactional sending at normal volume (transactional email must keep sending even during recovery — delaying password resets and order confirmations is never acceptable), monitor Postmaster Tools for the transactional domain's spam rate trend, and confirm that the trend is improving week-over-week as the cold outreach signals age out of the 30-day rolling window. The recovery timeline is 4-8 weeks depending on the severity of contamination — the same timeline as any other reputation recovery from the same complaint rate history.
During the recovery period, some transactional messages will still experience elevated spam classification. For the most critical transactional messages (password resets, payment confirmations), implementing multiple delivery paths (send via a secondary IP/domain combination maintained at High reputation specifically for critical transactional fallback) ensures these critical messages continue to deliver reliably during the recovery period.
Cold email and transactional email can coexist in the same business without infrastructure interference. The architecture that makes this possible is simple, standard, and well-documented: separate VMTAs, separate IP pools, separate signing domains, separate monitoring. The programmes that implement this architecture from the start of their cold outreach programmes protect their transactional infrastructure from the reputation signals that cold outreach inevitably generates. Those that implement it after contamination has occurred recover successfully, with a 4-8 week recovery timeline and a commitment never to commingle traffic types on shared infrastructure again. Either way, the separation is the solution. Build it deliberately; maintain it permanently; and cold email will generate pipeline without ever threatening the transactional delivery that commercial operations depend on.
Cold Email Compliance: The GDPR Dimension
Beyond the reputation management concern, cold email in European markets — or to EU-based contacts from anywhere — raises GDPR compliance questions that affect which contacts can legally be approached via cold email and how. Under GDPR, the lawful basis for cold B2B email is typically "legitimate interests" (Article 6(1)(f)) — the sender has a legitimate interest in reaching the recipient that is not overridden by the recipient's privacy rights. This basis requires a documented legitimate interests assessment (LIA) for the cold email programme, a genuine connection between the programme's interests and the recipients' professional context, and a straightforward unsubscribe mechanism.
The GDPR compliance dimension is relevant to the reputation contamination discussion because non-compliant cold email — emailing B2B contacts without a valid lawful basis, or without clear unsubscribe mechanisms — is more likely to generate complaints (from contacts who mark it as spam because they have no valid opt-out mechanism) and is more likely to include contacts who should never have been emailed. Both of these outcomes generate the reputation signals that contaminate the transactional infrastructure when separation is not in place.
Compliant cold email — with a documented LIA, a relevant contact list sourced from professional directories rather than scraped from websites, and a clear unsubscribe mechanism — generates lower complaint rates than non-compliant cold email. The compliance requirement and the reputation management requirement are therefore aligned: a properly compliant cold email programme generates fewer reputation-damaging signals than a non-compliant one, even from the same infrastructure. For EU-based programmes or programmes reaching EU contacts, building compliance into the cold email programme is both legally required and operationally beneficial for reputation management.
Infrastructure Sizing for Cold Email
Cold email requires different infrastructure sizing than promotional email. The expected complaint rate for well-executed cold outreach (0.1-0.5% depending on list quality and relevance) is 3-10x higher than the target complaint rate for promotional email (below 0.05%). This higher baseline complaint rate means cold outreach IPs will have lower reputation tiers than promotional email IPs with the same sending quality — which means they need more IPs to maintain the throughput capacity that the lower rate limits on lower-reputation IPs impose.
For a programme sending 50,000 cold outreach messages per day at expected complaint rates, 2-4 dedicated cold outreach IPs with monthly warmup to a Medium reputation tier provides adequate throughput capacity. The IPs will typically stabilise at Medium rather than reaching High, because the cold outreach complaint rates are above the threshold that maintains High reputation at Gmail. This is expected and acceptable for cold outreach infrastructure — Medium reputation with controlled complaint rates is the sustainable steady state for well-managed cold email, not an indication that the infrastructure is failing.
The cold outreach IP pool should be monitored via Postmaster Tools (cold.brand.com property) separately from the transactional and promotional infrastructure. If the cold outreach domain reputation drops to Low, it indicates that complaint rates have exceeded the sustainable level and the cold outreach list quality needs immediate review. Monitoring the cold outreach infrastructure independently allows this quality signal to be acted on without affecting the management of the transactional and promotional infrastructure's reputation.
Cold email is a scalable business development tool when its infrastructure requirements are correctly addressed. Separate signing domain. Separate IP pool. Separate monitoring. Compliant list sourcing. Appropriate complaint rate expectations and thresholds. When all of these are in place, cold email programmes can generate significant pipeline without ever creating the reputation interference with transactional infrastructure that this note documents. The architecture is simple; the discipline to maintain it is the operational commitment that makes cold email a productive, reputation-safe channel for B2B programmes that need it.
The Onboarding Checklist: Cold Email Infrastructure Setup
When setting up cold email infrastructure for a programme that also sends transactional email, the infrastructure checklist ensures that the separation is complete and correctly implemented before any cold outreach begins:
1. Generate a new DKIM private key for the cold outreach signing domain (cold.brand.com or outreach-brand.com). 2. Publish the DKIM public key in DNS for the cold outreach domain at the chosen selector. 3. Provision dedicated IPs for the cold outreach pool — separate from all promotional and transactional IPs. 4. Configure the cold outreach VMTA in PowerMTA with the cold outreach IP bindings and the cold outreach DKIM signing key. 5. Register the cold outreach domain as a separate property in Google Postmaster Tools. 6. Configure FBL processing for the cold outreach pool IPs — separate from the transactional FBL. 7. Verify the DKIM signing is correct using mail-tester.com (confirm the d= value shows the cold outreach domain, not brand.com). 8. Run DMARC aggregate report monitoring for the cold outreach domain via a separate rua= address. Only after all eight steps are verified should any cold outreach volume begin through the new infrastructure.
This checklist takes 1-2 days to complete for a new cold email programme. It takes years to recover from the transactional reputation damage that a missing step can cause. The investment in following the checklist completely is the prevention investment that keeps the architecture separation reliable from the first cold outreach send forward.
Cold email without infrastructure separation is cold email with a slow-burning fuse attached to the transactional sender's reputation. The fuse may take weeks or months to ignite depending on cold outreach volume and complaint rate, but the ignition is inevitable when the two traffic types share infrastructure. Build the separation; verify it with the checklist; and the fuse is never attached in the first place. That is the outcome that correct cold email infrastructure architecture guarantees.
Operational Summary: The Rules for Cold Email and Transactional Coexistence
The rules that make cold email and transactional email coexist without reputation interference are simple enough to state in three sentences: Never share DKIM signing domains between cold outreach and transactional email. Never share IP pools between cold outreach and transactional email. Monitor each traffic type's reputation independently so problems in one never go undetected before affecting the other.
These rules are simple to follow when the architecture is set up correctly from the beginning. They require more work to implement retroactively when contamination has already occurred. They are impossible to follow retroactively after severe contamination has damaged the transactional domain's reputation, at which point the only path is recovery — which follows the recovery timeline of the note on reputation recovery.
The programmes that maintain transactional delivery at 98%+ inbox placement year after year, regardless of their cold outreach volume, are the ones that follow these rules consistently. They are not exceptional operators; they are disciplined ones. The architecture is known; the rules are documented; the outcome is reliable. Build the separation, follow the rules, and cold email will never damage the transactional sender score that commercial operations depend on.
Separate the traffic. Monitor independently. Follow the rules. Cold email and transactional email can coexist productively in the same business -- they just cannot coexist on the same infrastructure without the separation architecture that keeps their reputation signals independent. Build that architecture; maintain it permanently; and both traffic types will perform at the level they are capable of, without either contaminating the other.
Transactional delivery is non-negotiable. Cold email reputation is manageable. Keep them separate and both stay true. That is the complete operational answer to the cross-contamination problem this note describes.
The architecture decision that prevents cold email from damaging transactional delivery is made once. The protection it provides lasts indefinitely. Make the decision correctly the first time, and the cross-contamination problem this note documents will never be an operational reality for the programme.
Three rules. Two domains. One decision. Separate the traffic, and cold email will never be the reason transactional delivery fails.
Transactional infrastructure is the engine; cold email is the fuel that powers growth. Run them on separate circuits and both run at full power. Connect them, and the engine stalls when the fuel quality varies. The separation is simple; the consequences of omitting it are not. Separate the circuits.
Infrastructure Assessment
Our managed infrastructure includes complete traffic type separation as a standard architectural requirement — cold outreach and transactional email operate on separate VMTAs, separate IP pools, and separate DKIM signing domains, with independent reputation monitoring for each traffic type. Request assessment →