Checklist IP Platform Certification This checklist helps you assess whether your email sending platform meets the essential terms and conditions and criteria for IP platform certification. It provides an initial overview — for further details, please refer to the linked documents. Company name Your first and last name Your email address Terms and Conditions Basic Participation Requirements 1.2 The company operates and fully controls the technical platform for sending commercial bulk emails. yesno 1.2 At least three months of sending history are available. yesno 2.2.1 All sending IP addresses can be fully identified. yesno 2.2.2 Infrastructure is used exclusively for commercial bulk email sending. yesno 2.2.5 Proof of responsibility and technical control of the sending servers (via DNS token or WHOIS) is possible. yesno 2.2.6 PTR and FQDN entries are configured correctly and unambiguously. yesno Criteria 1.1 Trust and Transparency 1.1.1 Postal address and digital contact options (email or contact form) are easy to find on the website. yesno 1.1.2 Transparent data protection information on data processing is available on the website. yesno 1.1.3 RFC-compliant email format and SMTP communication are ensured. yesno 1.2 Abuse Prevention 1.2.1 An abuse role account is available under the organisation's domain. A 24-hour response following notification on business days is possible. yesno 1.2.2 For email sending platform providers: Mechanisms for enforcing CSA criteria are applied, for example rate limiting, blocking, or volume limits. yesno 1.2.3 For email sending platform providers: Customer accounts are protected against misuse, for example through 2FA. yesno 1.2.4 Redirect links can be deactivated within 24 hours of notification in the event of misuse, for example phishing. yesno 1.2.5 Implementation of the "X-CSA-Complaints" header including DKIM signature is possible. yesno 1.2.6 Technical security measures are in place for mail servers, for example no open relay, no backscatter, and monitoring. yesno 1.2.7 Emails are sent exclusively via current TLS-secured connections. yesno 1.3 Authentication 1.3.1 SPF entries are configured with "-all" or "~all". yesno 1.3.2 Emails are sent with a valid DKIM signature. yesno 1.3.2 DKIM contains at least the header elements From, Date, and To. yesno 1.3.2 The DKIM parameter "l=" is not used. yesno 1.3.3 The "d=" tag of the DKIM domain is correctly assigned – either the customer domain (for platform providers) or the sender's own domain (for own senders). yesno 1.3.3 There is at least one "relaxed" DKIM alignment with "Header-From". yesno 1.4 List Hygiene 1.4.1 The email sending platform offers list unsubscribe functionality including one-click unsubscribe (POST HTTPS, RFC-compliant) and list help header functionality. yesno 1.4.2 A functioning unsubscribe option without login is included in every commercial email of an advertising nature, for example via link or email. This requirement does not apply to transactional emails. yesno 1.4.3 For email sending platform providers: An unsubscribe link is available as a platform functionality. yesno 1.4.4 Bounce processing in accordance with RFC 5321 is possible. yesno 1.4.5 Sending to non-existent recipients is prevented. yesno 1.5 Reputation 1.5.4 The sender's reputation with participating CSA mailbox and security providers is in good standing. yesno If applicable: please describe in more detail Your information will be treated confidentially.