On a blacklist? The recovery protocol
Recovery from an email blacklist follows a fixed order: confirm which list you're on, stop all sending, fix the behaviour that got you listed, request delisting, then rebuild volume slowly. Skip a step — particularly the fix — and you'll be relisted within days, and repeat listings are harder to escape than first ones. Most listings are recoverable in one to two weeks if you treat the blacklist as a symptom rather than the disease.
What is a blacklist, and does yours actually matter?
A blacklist (blocklist, DNSBL) is a published register of domains and IPs flagged for spam-like behaviour, which receiving mail servers consult before accepting your email. There are dozens, and they are not equal. Spamhaus is the one with real teeth — major providers weight it heavily, and a Spamhaus domain listing will visibly gut your delivery. Barracuda and SpamCop matter to the organisations using those filters. Many of the rest are noise: obscure lists that no major provider consults, whose main function is alarming people who run a check tool.
So the first move is proportionate diagnosis, not panic. Check your sending domain and IP against the major lists, note exactly which ones flag you, and read the listing reason each one publishes. As the Cold Email Deliverability guide argues throughout, deliverability decisions should be made on evidence, and blocklists are unusually generous with evidence — most tell you why you're listed.
Why did it happen?
Blacklists are triggered by behaviour, and in B2B cold email the causes are a short list: a high hard-bounce rate from an unverified list, a volume spike that pattern-matches a compromised account, spam-trap hits (dead addresses maintained specifically to catch careless senders — scraped and purchased lists are full of them), recipient complaints, or missing authentication making your mail look forged.
Notice that every one of those is a data or discipline failure, not bad luck. This matters for the protocol: the listing is a symptom. Delisting without fixing the cause is like resetting a tripped fuse without unplugging the faulty appliance.
What is the recovery protocol, step by step?
The mechanism runs on a simple chain of cause and effect. When you confirm the specific listing, then you know which delisting process applies and what evidence the operator saw. When you stop sending immediately, then you stop feeding the pattern that keeps the listing alive — continuing to send while listed is the single most common way a one-week problem becomes a permanent one. When you fix the root cause — re-verify the entire list, suppress every past bounce, correct authentication, cap volume back to 25–40 emails a day per inbox — then a delisting request becomes credible. When you then submit that request through the operator's process (most have a self-service form; some delist automatically after a clean period), then the listing typically clears in hours to days. When you resume, then you resume at warm-up volumes, not where you left off — the receiving providers' own filters have longer memories than the blocklist does.
Two additions. First, run a placement test before trusting your own eyes — inbox placement testing tells you whether delivery has actually recovered, because "delisted" and "landing in the inbox" are not the same thing. Second, never pay a delisting service. Reputable list operators do not charge for removal, and the ones that do charge are running a protection racket you shouldn't fund.
When do you abandon the domain instead?
When the maths says so. If you've been listed more than once, if Spamhaus has you on a persistent domain listing, or if placement hasn't recovered after two clean weeks, the cost of rehabilitation starts exceeding the cost of starting over. A fresh secondary domain costs a few pounds and three to four weeks of warm-up; a scorched one can absorb months of careful sending and still underperform.
This is exactly why cold outbound belongs on secondary domains in the first place — the domain is designed to be replaceable, even though the goal is never to replace it. Losing one is a contained operational cost, not a business crisis.
How do you make sure this never happens again?
Institutionalise the boring controls: verification before every send, permanent bounce suppression, steady volumes, full authentication, and weekly monitoring so drift shows up before a listing does. The Google and Microsoft sender requirements are a useful forcing function here — build to their published thresholds and you are, in passing, staying far inside blocklist territory.
It is also worth naming the structural cause: blacklistings cluster around outbound run by someone doing it off the side of their desk, without the checks. That is an argument for running outbound as a system with built-in guardrails rather than an improvised activity — the same argument, from a different angle, as the BDR-versus-system cost comparison. The protocol above will get you off a list; the system stops you needing it.
Next step: the Growth System Audit — £450, seven days, credited against any build — maps where your growth system leaks and what to build first.
Total Format builds the systems UK B2B service firms grow on — AI-powered outbound, automation, and reporting — so growth stops depending on the founder's time.
Map your growth system. The £450 audit takes seven days and is credited against any build.
BOOK THE AUDIT