Transactional Email: What It Is and How It Works
A transactional email is an automated message sent in response to something a user did on your website or application. Order confirmations, password resets, shipping notifications, account verification links: these are all transactional emails. They are not promotional campaigns. Each one goes to a single person, triggered by that person's specific action.
These emails carry more weight than most teams realise. The average open rate for transactional email sits above 80%, compared to roughly 20% for marketing campaigns (Mailchimp, 2024 Email Marketing Benchmarks). That makes them the single highest-attention touchpoint your brand has with a customer. When a transactional email arrives late, lands in spam or never shows up at all, the customer notices immediately.
This guide covers what transactional email is, how it differs from marketing email, the five main categories of transactional messages, the technical infrastructure behind reliable delivery, and where UK GDPR consent rules apply.
What is a transactional email?
A transactional email is a one-to-one, non-promotional message triggered by a user action. It is not a bulk campaign. Every message is sent to one person, containing data specific to that person's interaction.
The technical flow works in three steps:
- Trigger: The user performs an action: places an order, requests a password reset or creates an account.
- System response: Your backend detects the event and sends a request to the email API (Application Programming Interface) or SMTP (Simple Mail Transfer Protocol) server.
- Delivery: The email service provider inserts the user's unique data (order number, name, transaction details) into a template and delivers the message within seconds.
Timing and reliability are critical. A customer who places an order and receives no confirmation within two minutes starts to worry. A password reset link that takes five minutes to arrive loses the user to frustration. This is why a fast, dependable sending infrastructure is essential for transactional email.
Transactional email is not a subset of email marketing. It is an operational requirement. Running an e-commerce site, a SaaS platform or a membership system without these emails is not practically possible.
Five common types of transactional email
Transactional emails cover a wide range of scenarios, but they generally fall into five categories. Each serves a different purpose and is triggered by a different event.
1. Account and login emails
This is the most common category. These messages support the full lifecycle of a user account:
- Welcome email: The first touchpoint after a new account is created. Introduces the brand and outlines next steps.
- Email verification (double opt-in): Confirms the address is real and active. Critical for list quality and permission-based collection.
- Password reset: Gives the user a time-limited link to regain access. Typically expires after 15 to 60 minutes for security.
- Two-factor authentication codes: One-time codes that strengthen login security.
- New device alert: Automatic notification when an account is accessed from an unfamiliar device.
2. Payment and order notifications
The backbone of e-commerce and SaaS platforms. These emails are directly tied to money:
- Order confirmation: Confirms the purchase with order number, item details and estimated delivery.
- Invoice and receipt: Sent after payment as a financial record.
- Payment failure (dunning): Alerts the customer when a card charge fails or a subscription renewal is declined. For SaaS companies, dunning emails are the first line of defence against churn.
- Refund and cancellation confirmation: Documents the reversal and sets expectations.
3. Event-triggered notifications
A specific system event or time condition triggers these messages:
- Shipping and delivery updates: Tells the customer when a package has been dispatched, is in transit or has been delivered.
- Comment and reply notifications: Fires when someone responds to the user's content on a platform.
- Event reminders: Automated reminders before a webinar, appointment or demo.
- Back-in-stock alerts: Notifies a user when a product they expressed interest in becomes available again.
4. Requested content and documents
These emails deliver something the user explicitly asked for:
- Data exports: The system prepares account data or reports in CSV (comma-separated values) or PDF (Portable Document Format) format and delivers them by email.
- Downloadable resources: E-books, guides or files offered as lead magnets.
- Contracts and documents: Links to documents requiring review or signature.
5. Usage reports and digests
Many businesses overlook this category, but it has strong potential for customer retention:
- Weekly or monthly usage summaries: The platform compiles the user's activity into a periodic report. Think of Spotify Wrapped: it reminds users of their relationship with the product and prompts re-engagement.
- Performance reports: SaaS tools automatically report campaign results and account metrics.
- Policy update notifications: Informs users when terms of service or privacy policies change.
At MailGraf, the pattern we see most often is businesses treating only order confirmations and password resets as transactional email. But usage reports, stock alerts and document delivery emails all fall into this category too, and when set up properly they strengthen customer engagement significantly.
Transactional vs marketing email: key differences
These two email types serve different purposes, follow different rules and should run on different infrastructure. Mixing them up creates both legal and technical problems.
| Criterion | Transactional email | Marketing email |
|---|---|---|
| Trigger | User action (order, password reset) | Sender decision (campaign, newsletter) |
| Recipients | One at a time | Bulk (hundreds, thousands) |
| Content | User-specific transaction data | Promotions, news, offers |
| Consent required | Generally no (service necessity) | Yes, under UK GDPR and PECR |
| Send timing | Instantly, within seconds of the event | Scheduled date and time |
| Open rate | 80%+ | 15-25% |
| Unsubscribe link | Not applicable (operational necessity) | Required in every message |
Under UK GDPR, transactional emails are not classified as direct marketing because they are necessary for the performance of a service. However, if you add promotional content to a transactional email, such as a discount code or a cross-sell recommendation, the line blurs. Regulators may treat the message as marketing, which triggers consent requirements under PECR. The safest approach: keep commercial content to a minimum in transactional messages.
A common mistake is sending both types from the same infrastructure. When a marketing campaign generates high complaints, the sender reputation of that IP drops, and your transactional emails start landing in spam too. Order confirmations and password resets are emails the customer must see. Protect them by using separate sending infrastructure.
Why transactional email delivery matters more than you think
Transactional emails look like simple notifications, but the numbers tell a different story:
| Metric | Transactional email | Marketing email | Source |
|---|---|---|---|
| Average open rate | 80-85% | 15-25% | Mailchimp, 2024 |
| Click rate | 10-15% | 2-3% | Campaign Monitor, 2024 |
| Spam complaint rate | Below 0.1% | 0.5-1% | Postmark, 2025 |
| Inbox placement rate | 95%+ | 80-85% | Validity, 2024 |
These numbers reflect three strategic advantages:
Trust building. Transactional emails carry information the customer expects and needs. When an order confirmation arrives promptly, the customer thinks "this company has its act together." That trust spills over into how they receive your marketing emails too.
Brand reinforcement. Every transactional email is a brand touchpoint. Consistent design, tone and logo placement put your brand in front of the customer dozens of times. And unlike marketing email, the customer perceives it as service rather than promotion.
Revenue opportunity. High open rates, used carefully, create space for cross-sell and up-sell. Adding a "customers who bought this also liked" section to an order confirmation is common practice. But the commercial content must not overshadow the core message.
API vs SMTP: two ways to send transactional email
Reliable delivery depends on the right technical setup. Two main methods exist, plus one architectural decision that matters more than most teams realise.
API integration
The modern, recommended approach. Your web application sends an HTTP request directly to the email provider's API. Advantages:
- Speed: The system queues and sends the email in milliseconds.
- Flexibility: Template variables, attachments and priority levels are set in a single request.
- Real-time feedback: Webhooks notify you instantly of delivery, opens, clicks and bounces.
- Security: API key authentication is more secure than SMTP username and password.
SMTP relay
A more traditional method. If your existing systems already send email over SMTP, a relay service routes transactional emails through professional infrastructure. It offers compatibility with older systems but lacks the real-time feedback that API integration provides.
Sending separation: why it matters
Send transactional and marketing emails from separate IP addresses or subdomains. The reason is simple but critical: sender reputation is calculated per IP and per domain. If a marketing campaign triggers high bounce rates or complaints, transactional emails on the same IP suffer the same reputation hit.
Recommended setup:
mail.yourcompany.comfor marketing emailsnotify.yourcompany.comfor transactional emails
Configure separate SPF, DKIM and DMARC records for each subdomain. See our SPF, DKIM and DMARC guide for setup instructions. This isolation prevents marketing-side reputation issues from affecting the emails your customers rely on.
Transactional email and UK GDPR: do you need consent?
The short answer: for purely transactional emails, no. Under UK GDPR, processing personal data is lawful when it is necessary for the performance of a contract (Article 6(1)(b)). Sending an order confirmation after a purchase falls squarely into this category.
However, there are important boundaries:
- Adding promotional content changes the classification. A cross-sell block, a discount code or a referral prompt can push a transactional email into marketing territory. If a regulator or inbox provider classifies it as marketing, PECR consent rules apply.
- Data processing rules still apply. Even though consent for the email itself may not be required, you must still handle the personal data (email address, name, order details) in compliance with UK GDPR. That means having a lawful basis, keeping data secure and honouring data subject rights.
- Dunning and renewal emails sit in a grey area. A payment failure notification is transactional. But a "your subscription is about to expire, here is a discount to renew" email looks more like marketing. Draw the line based on whether the primary purpose is informational or promotional.
The practical rule: keep transactional emails purely informational. If you want to include marketing content, keep it minimal and clearly secondary to the transactional message.
How transactional email works in MailGraf
MailGraf supports transactional email delivery through its API and SMTP relay infrastructure. Every transactional email benefits from the same CSA-certified sending reputation that powers marketing campaigns, but with the option to use a dedicated subdomain to keep the two streams separate.
For teams that need fast, reliable delivery without building their own infrastructure, the setup is straightforward: connect your application to the MailGraf API, define your email templates, and let the platform handle authentication, delivery and bounce management.
Transactional email reports in MailGraf show delivery status, open tracking and bounce details per message. If a transactional email bounces, the system handles it the same way as campaign bounces: hard bounces are suppressed immediately, soft bounces are retried automatically.
At MailGraf, we configure transactional and marketing sends on separate subdomains for every account where both types are in use. This separation protects transactional deliverability from any reputation fluctuations on the marketing side.
Best practices for transactional email
One message, one purpose. Each transactional email should communicate exactly one thing. Do not load an order confirmation with a newsletter signup form, blog recommendations and a coupon code. The customer opened this email for specific information. Let them find it instantly.
Brand consistency. Logo, colours and typography should match your marketing emails. When a customer receives a transactional message, the visual language should feel familiar. Consistency signals professionalism and trust.
Single, clear call to action. A password reset email needs one button: "Reset my password." An order confirmation needs: "Track my order." The action should be obvious at a glance.
Mobile-first design. Most transactional emails are opened on mobile devices. Email width should be 600 pixels, call-to-action buttons at least 44x44 pixels, and font size no smaller than 14 pixels.
Instant delivery. The value of a transactional email is time-dependent. A password reset link that arrives five minutes late has already lost the user. Aim for delivery within 30 seconds. Use asynchronous processing and message queues so email sending does not block your application's main thread.
Clear subject lines. Transactional email subjects should be descriptive, not clever. "Your order is confirmed #12345" works. "We have exciting news!" does not. The customer should know exactly what the email contains before opening it.
Frequently asked questions
What is a transactional email in simple terms?
A transactional email is an automated message sent to one person in response to something they did on a website or application. Order confirmations, password resets and shipping notifications are the most common examples. These emails carry user-specific data and are not promotional.
What is the main difference between transactional and marketing email?
Transactional email is triggered by a user action and contains information specific to that user. Marketing email is planned by the sender and distributed in bulk to promote products, offers or content. Transactional emails see open rates above 80%, while marketing emails average 15-25%.
Do transactional emails need consent under UK GDPR?
Generally no. Transactional emails are sent as part of delivering a service, which is a lawful basis under UK GDPR (performance of a contract). However, adding significant promotional content to a transactional email may reclassify it as marketing, which would require consent under PECR.
Can I add marketing content to a transactional email?
You can, but carefully. A small product recommendation or a link to related content is common practice. But if the promotional element dominates the message, inbox providers and regulators may treat it as marketing email. Keep the transactional purpose front and centre.
Should I send transactional and marketing emails from the same domain?
No. Use separate subdomains or IP addresses. If a marketing campaign damages your sender reputation through high complaints or bounces, your transactional emails will be affected too. Separating the streams protects password resets and order confirmations from ever landing in spam because of a marketing issue.
Why are transactional email open rates so high?
Because the recipient triggered the email themselves and is actively waiting for it. A customer who just placed an order expects a confirmation. Someone who requested a password reset is refreshing their inbox. This personal expectation creates engagement rates that promotional emails cannot match.
Originally published: Apr 9, 2026
Professional email marketing platform.
Don't miss out
Get the latest email marketing tips and exclusive updates.