What is a pristine spam trap (honeypot)?

Still have a question, spotted an error, or have a better explanation or a source we should cite?

A pristine spam trap (also called a honeypot) is an email address that was never used by a real person. It exists only to catch senders who scrape websites, buy lists, or harvest addresses without permission.

These addresses are deliberately planted by blocklists and mailbox providers in places where only bad actors would find them. Hidden in website code, leaked in public databases, scattered across forums. If you're building your list the right way (opt-in forms, confirmed signups), you'll never touch one. But if you bought a list or scraped contact info off the web, you're probably mailing several.

Why pristine traps are so dangerous: they prove you didn't get consent. Recycled spam traps were once real addresses that went inactive, so hitting one might just mean you need better list hygiene. But a pristine trap was never real. The only way you got it is through harvesting or purchasing. That's why blocklists like Spamhaus treat pristine trap hits as an instant red flag.

What happens if you hit one? Your domain or IP gets blocklisted fast. Delivery rates tank across all mailbox providers. And getting off a blocklist after a pristine trap hit is hard, because you can't just say "oops, bad hygiene." You have to prove you've completely rebuilt your list acquisition process.

How to avoid pristine spam traps: never buy lists, never scrape websites, never add people without explicit consent. Use double opt-in whenever possible. If you inherited a messy list or aren't sure where every address came from, running it through validation can flag addresses that look like traps (though pristine traps are deliberately hard to detect). The real fix is upstream. Clean acquisition practices, always.

If you're already on a blocklist and suspect you hit pristine traps, check our blocklist removal guide or ask us directly (we've walked through this with enough people to know what actually works).

Contributors

Who worked on this answer

Every name links to their profile. Every company links to their site. Real people, real accountability.

Ask an AI · tailored to your setup

Check if your domain or IP is blocklisted

I read this on the Email Almanac about pristine spam traps: "A pristine spam trap is an email address that was never used by a real person. It exists only to catch senders who scrape websites, buy lists, or harvest addresses without permission. These addresses are deliberately planted by blocklists and mailbox providers. If you bought a list or scraped contact info off the web, you're probably mailing several. Pristine trap hits prove you didn't get consent, which is why blocklists treat them as instant red flags." Help me understand if pristine spam traps are affecting MY list, and what I should do about it. I need: 1. How to tell if I've hit pristine traps (blocklist status, delivery patterns) 2. Where pristine traps might have come from in my specific list-building process 3. What I should check or fix right now 4. Whether I need list cleaning, re-permission campaigns, or both --- My details (the more you share, the better the advice): - Email platform/ESP: e.g. Mailchimp, SendGrid, HubSpot - Domain(s): your sending domain - Sending volume: e.g. 10,000/month - Type of email: marketing / transactional / mixed - How I built my list: [opt-in forms / purchased / inherited / scraped / affiliate leads / conference badge scans / other] - Current inbox rate (if known): e.g. 70% inbox, or "not sure" - Bounce rate: e.g. 3% - Complaint/spam rate: e.g. 0.2% - Blocklist status: check at https://reviewmyemails.com/tools/blacklist-checker - Recent delivery issues: [sudden drops, specific mailbox providers blocking, increased bounces] - Any list purchases or merges: when, from where - Last list clean: never / 6 months ago / ongoing

Edit the yellow boxes, then send to the AI of your choice.