When you come across a subdomain like api.feedback.us.pendo.io, it's worth knowing what kind of service it actually is. This isn't a store or a sign-up page β it's an API endpoint, likely used by Pendo's product analytics platform to collect feedback from end users. That explains why the homepage returns nothing more than a JSON message: it's not meant for human browsing.
For an API, the signals here are strong. The connection uses modern encryption, the domain has a four-year history with no blacklist incidents, and it runs on Google Cloud infrastructure. Pendo is a well-established company, so the subdomain being part of a larger legitimate business adds confidence. The lack of contact information or legal pages on this specific subdomain is completely normal β those belong on the main website, not on a machine-to-machine endpoint.
If you're a developer or IT manager checking whether to trust traffic to this subdomain, the answer is yes. It's a well-maintained, secure API from a reputable provider. There's no evidence of scam behavior or misconfiguration. For end users whose feedback is being sent here, there's nothing to worry about. So is api.feedback.us.pendo.io a scam? No, all signs point to it being a legitimate part of Pendo's infrastructure.