Technical Reference · 2026 Edition

How to Create a BIMI SVG Tiny P/S File (2026 Guide)

Last updated July 4, 2026 4 min read

How to Create a BIMI SVG Tiny P/S File (2026 Guide)

Brand Indicators for Message Identification (BIMI) displays your organization's logo next to authenticated messages in supported email clients. To publish a BIMI record, you must provide a logo file that conforms to a restricted XML profile called SVG Tiny Portable/Secure (P/S).

This article explains the requirements of the SVG Tiny P/S profile, the elements you must remove from your source file, and the methods you can use to produce a compliant logo for your Verified Mark Certificate (VMC) application.

The Security Rationale Behind SVG Tiny P/S

The W3C defined the SVG Tiny P/S profile to eliminate the security risks of rendering vector graphics inside email clients [1]. Standard SVG supports scripting, external resource loading, and network requests. An email client that renders standard SVG exposes recipients to cross-site scripting (XSS) attacks and tracking pixels embedded in the message body.

SVG Tiny P/S removes all dynamic and external capabilities. The result is a static, self-contained file that describes geometry only.

The Forbidden Elements

The following elements cause W3C validation to fail. A Certificate Authority rejects any VMC application that includes them.

| Element Type | Reason for Prohibition | |---|---| |