Is chatgpt.com legit?

58
/ 100
Use Caution
Industry: SaaS

You should use caution when interacting with chatgpt.com. While it's a globally recognized domain with strong technical security, critical missing elements like legal pages, contact information, and a very poor Trustpilot score raise significant concerns about user rights and support.

SaaS average: 81/100 · based on 62 sites

Checked: April 12, 2026 at 8:57 PM UTC · Refresh

Is chatgpt.com a scam? Here's what we found.

Security 90/100

This site boasts excellent technical security with modern encryption (TLS 1.3), a valid SSL certificate from a reputable issuer, and protection against common web vulnerabilities like clickjacking. Google Web Risk also finds no threats.

Identity 85/100

The domain is well-established for its type (over 3 years old), registered through a common corporate registrar, and has clear WHOIS information, indicating a transparent ownership structure. The long expiry date further solidifies its legitimate intent.

Reputation 45/100

While the site is globally recognized and clean on DNS blacklists, its extremely low Trustpilot score suggests widespread user dissatisfaction or negative experiences that cannot be ignored. The lack of a favicon is also unusual for such a prominent site.

Transparency 30/100

Transparency is a significant concern here. The complete absence of basic contact information, social media links, and even a favicon is highly unusual for a site of this stature, making it difficult for users to engage or seek assistance.

Compliance 25/100

The explicit lack of essential legal documents like a privacy policy and terms of service is a major failing, especially for a platform that handles user data and interactions, leaving users unaware of their rights or how their data is handled.

Infrastructure 75/100

The underlying infrastructure is robust with a fast page load, proper DNS setup, and email authentication. However, the site returning a 403 error for basic access and missing MX records for email handling are notable functional weaknesses.

Signals Detected

[+]
Tranco Rank: Rank #33

This is one of the most visited websites globally

[?]
Structured Data: None found

No structured data markup found

[~]
Branding: Missing

No favicon found — unusual for an established business

[+]
robots.txt: Selective access

Blocks crawlers by default but allows 130 specific paths (163 directives, references a sitemap)

[+]
SSL Certificate: Valid

Valid certificate, expires in 69 days

[?]
Certificate Issuer: Google Trust Services

Certificate issued by Google Trust Services

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Domain Age: 3 years, 4 months

Domain created 2022-11-30T23:59:19Z (3 years, 4 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[+]
Domain Expiry: 2026-11-30T23:59:19Z

Expires in 232 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Sitemap: 134 pages

Site maintains a proper sitemap with 134 indexed pages

[+]
DNS Resolution: 4 IP(s)

Resolves to: 2a06:98c1:3100::6812:202f, 2a06:98c1:310b::ac40:9bd1, 104.18.32.47, 172.64.155.209

[?]
Email (MX Records): None

No MX records found — domain may not handle email

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 2 server(s)

DNS providers: hassan.ns.cloudflare.com., savanna.ns.cloudflare.com.

[~]
Website Status: HTTP 403

Website returned status 403

[~]
Contact Info: Not found

No obvious contact information found on homepage

[-]
Legal Pages: Missing

No privacy policy or terms of service found

[~]
Social Media Presence: None found

No social media links found on homepage

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[~]
Trustpilot: 1.6/5 (2782 reviews)

Trustpilot rating: 1.6/5 based on 2782 reviews

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
Page Load Time: 33ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for chatgpt.com
<a href="https://verified.fyi/review/chatgpt.com"><img src="https://verified.fyi/badge/chatgpt.com?size=medium&style=full&theme=dark" alt="chatgpt.com trust score — verified.fyi" /></a>
[![chatgpt.com trust score](https://verified.fyi/badge/chatgpt.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/chatgpt.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating a Software as a Service (SaaS) platform like chatgpt.com, users often focus on its core functionality and reputation. This site is indeed a global heavyweight, indicated by its exceptionally high Tranco rank, which typically signifies a legitimate and widely used service. However, for a platform designed for user interaction and data processing, a shocking omission of basic legal pages like a Privacy Policy and Terms of Service is a significant red flag. Most established SaaS providers make these easily accessible to build trust and assure users of their data handling practices. The absence here forces users to navigate the platform without understanding their rights or how their information is managed. This is particularly concerning given the nature of a service powered by generative AI, which often relies on user input. Furthermore, the poor user feedback on Trustpilot, combined with missing contact information and a lack of social media presence directly on the homepage, paints a picture of a service that may not prioritize direct user support or transparency. While the site's technical security is strong, its commitment to user-centric policies and support appears to be severely lacking – use caution and be aware of these fundamental shortcomings.