CODemail deliverabilityWhatsApp

Half Your Order Confirmations Are Landing in Spam — Why Email Is Failing COD Merchants and WhatsApp Is the Only Channel Customers Actually Check

Split screen showing a Shopify order confirmation email stuck in a spam folder on the left and the same confirmation delivered instantly via WhatsApp on the right

One in six emails sent by Shopify stores never reaches the inbox. That's the 2026 average — 83.1% deliverability across all ecommerce senders, according to inbox placement data from Unspam and Landbase. For a COD store doing 50 orders a day, that's roughly 8 customers whose order confirmation email lands in spam or vanishes entirely. Some of them place the order again. Some forget they ordered and refuse the package at their door. You pay the shipping both ways.

If your business runs on cash on delivery, email isn't just underperforming — it's actively creating the problems you're trying to solve. Duplicate orders inflate your fulfillment costs. Missed confirmations drive up return-to-origin rates. And every "did my order go through?" message your support team answers is time you're paying for because Gmail decided your transactional email looked like spam.

Why Are Shopify Order Confirmation Emails Going to Spam?

In November 2025, Gmail escalated enforcement on email authentication. Messages that fail to meet sender requirements now get temporarily or permanently rejected — not just filtered to spam, but bounced entirely. Yahoo followed with identical standards.

The requirements are straightforward: SPF, DKIM, and DMARC authentication on your sending domain, plus a spam complaint rate below 0.3% (Google recommends under 0.1%). Fully authenticated domains achieve 2.7x higher inbox placement than unauthenticated ones.

The problem is adoption. SPF is at 93% and DKIM at 90% across all senders, but DMARC — the one that actually prevents spoofing and tells Gmail you're legitimate — sits at just 64%. If you're sending from a free email address (yourstore@gmail.com) or using Shopify Email on a basic plan without custom domain authentication, you're in that 36% that Gmail treats as suspicious by default.

Most merchants don't realize this affects transactional emails too. Order confirmations, shipping updates, and receipt emails all flow through the same authentication pipeline. If your domain isn't verified, Gmail doesn't care that the email says "Order #4521 Confirmed" — it looks the same as bulk spam to the filter.

COD Markets Have an Email Problem That Prepaid Markets Don't

In markets where customers pay with credit cards at checkout, a missed confirmation email is annoying. The charge shows up on their bank statement. They know the order went through.

In COD markets — Pakistan, Egypt, Saudi Arabia, Nigeria, the Philippines, Indonesia — there's no charge. No bank notification. The only proof the customer has is that confirmation email. When it lands in spam or never arrives, the customer has zero evidence they ordered anything.

This creates three expensive problems:

  • Duplicate orders. The customer assumes the first order failed and places it again. You ship both. One gets refused at the door.
  • Delivery refusals. Three days pass. The customer forgot they ordered. A courier shows up with a package they weren't expecting. They say no.
  • Support overload. "Did my order go through?" becomes your most common support ticket. Each one takes 3–5 minutes to resolve. At 50 orders a day with a 17% email failure rate, that's 40+ unnecessary tickets per week.

There's a deeper issue specific to emerging markets: many customers use email addresses they barely check. In South Asia and MENA, the email address on an order form is often one created years ago for a social media signup. The phone number is their real digital identity — which is why WhatsApp order verification is already cutting COD returns by 40% for merchants who made the switch.

The Authentication Fix Takes 15 Minutes (But Won't Solve the Real Problem)

You should still fix your email authentication. It's table stakes, not optional.

  1. Set up SPF. Add a TXT record to your domain's DNS that tells Gmail which servers are allowed to send email on your behalf. Shopify's documentation walks through this in about 5 minutes.
  2. Enable DKIM. This cryptographically signs your outgoing emails so recipients can verify they weren't altered in transit. Your email provider (Shopify Email, Klaviyo, Mailchimp) will give you the DNS record to add.
  3. Publish a DMARC policy. Start with v=DMARC1; p=none; to monitor without blocking, then move to p=quarantine after 2–4 weeks of clean reports.

This gets you from the unauthenticated penalty box into the 85–95% inbox placement range. For prepaid stores in North America or Europe, that might be good enough.

For COD merchants, it's not. Even at 90% deliverability, you're still missing 1 in 10 customers. And in markets where email open rates hover around 15–18% (compared to 21% globally), plenty of customers who do receive the email never open it. Authentication improves delivery, but it doesn't change the fact that email is the wrong channel for customers who live on their phones.

WhatsApp Has a 98% Open Rate Because It's Where Your Customers Already Are

WhatsApp messages get opened 98% of the time. Email sits at 21%. That's not a marginal difference — it's a different communication universe.

The performance gap goes beyond opens. 90% of WhatsApp messages are read within 3 minutes of delivery. Average response time is 45–90 seconds. For email, the average response takes over 6 hours. Click-through rates on WhatsApp range from 15% to 60% depending on message type, compared to 2–6% for email.

For COD order confirmations specifically, WhatsApp solves every problem email creates:

  • Instant delivery confirmation. The customer sees it within minutes, not hours. No spam filter between you and them.
  • No duplicate orders. When the customer has proof on the screen they check 80 times a day, they don't place the order again.
  • Delivery expectation setting. You can include estimated delivery date and tracking info in the same message. The customer knows exactly when to expect the courier.

In MENA, South Asia, and Southeast Asia, WhatsApp isn't a messaging app — it's the primary communication layer. Customers in Pakistan, Egypt, and the Philippines check WhatsApp before they check email, before they check SMS, before they check anything else. Sending an order confirmation by email to a customer in Karachi is like mailing them a letter — technically delivered, practically invisible.

SMS Still Works Where WhatsApp Doesn't

Not every market is WhatsApp-dominant. Parts of North Africa and Sub-Saharan Africa rely on basic SMS because smartphone penetration is still climbing. Some customers in rural areas have intermittent data connections but always receive texts.

SMS open rates sit around 90–95% — not as high as WhatsApp, but still 4x better than email. The delivery is instant and doesn't depend on internet connectivity or app installation.

The smart approach is layered: WhatsApp as the primary confirmation channel, SMS as the fallback for customers without WhatsApp, and email as the archival record. This way, every customer gets confirmation through the channel they actually use — not the one that's cheapest to send.

Order Confirmation Is Just the First Message That Matters

Once you move confirmations to WhatsApp or SMS, you realize the same logic applies to every customer touchpoint in the COD fulfillment chain:

  • OTP verification before shipping. Send a one-time code via WhatsApp to confirm the customer is real before you dispatch. This alone can cut fake order rates by 25–40%.
  • Shipping updates. "Your order shipped" and "Out for delivery today" messages via WhatsApp keep the customer expecting the package — reducing refusals from forgetfulness.
  • Delivery reminders. A WhatsApp message 2 hours before delivery ("Your courier is on the way — please keep cash ready") dramatically reduces failed delivery attempts.

Each of these messages, sent through email, has a meaningful chance of going unseen. Sent through WhatsApp, they're read within minutes. For COD merchants, the difference between a seen message and an unseen message is the difference between a completed delivery and a return-to-origin that costs you triple.

EasySell handles this full communication flow — WhatsApp and SMS confirmations, OTP verification, and delivery notifications — directly from the order form, so the customer's phone number becomes the primary confirmation channel instead of an email address they never check.

Start With One Change This Week

Pull up your support tickets from the last 30 days. Search for "order status," "did my order go through," and "didn't receive confirmation." Count them. That's your email failure cost in human hours — and it's the minimum, because it doesn't count the duplicate orders and delivery refusals you never traced back to a missed email.

Switch your order confirmations to WhatsApp. Keep email as a backup record. Fix your SPF/DKIM/DMARC authentication while you're at it — it takes 15 minutes and helps the emails that do go out. But stop treating email as your primary confirmation channel for customers who haven't voluntarily opened an email in months. The channel that works is the one your customer is already looking at.