Is depop.com legit?

68
/ 100
Mostly Safe
Industry: E-commerce

Depop.com appears to be a mostly safe platform, primarily due to its long-standing domain, high traffic, and robust technical security. However, significant compliance gaps like missing legal pages and an inaccessible website status raise concerns that users should be aware of.

E-commerce average: 71/100 · based on 28 sites

Checked: April 18, 2026 at 8:02 AM UTC · Refresh

Is depop.com a scam? Here's what we found.

Security 90/100

The site boasts strong technical security, featuring modern TLS 1.3, an HSTS header, and clickjacking protection. Google Web Risk also confirms no immediate threats, providing a solid foundation for user safety.

Identity 95/100

With a domain age of over 20 years and a well-known registrar like Amazon, Depop.com projects a very strong and established identity, indicating it's not a fly-by-night operation.

Reputation 80/100

Its high Tranco rank confirms a significant and well-established online presence. While a missing Trustpilot profile is noted, it doesn't detract significantly from the overall solid reputation based on traffic and domain age.

Transparency 60/100

While contact information is present, the absence of social media links on the homepage and basic branding suggest less transparency or engagement than a major marketplace might typically offer. The website returned 403, which is concerning for accessibility.

Compliance 40/100

The critical absence of a privacy policy and terms of service is a major compliance issue for a platform handling user data and transactions, indicating a significant legal gap.

Infrastructure 65/100

Despite generally good infrastructure including robust DNS and email authentication, the HTTP 403 status code (Forbidden) when trying to access the website is a significant functional problem. This indicates users might be blocked from accessing the site, compromising its utility.

Signals Detected

[?]
Structured Data: None found

No structured data markup found

[+]
Tranco Rank: Rank #8110

This is a well-known, high-traffic website

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 20 years, 5 months

Domain created 2006-02-08T22:05:23Z (20 years, 5 months ago)

[?]
Registrar: Amazon Registrar, Inc.

Registered through Amazon Registrar, Inc.

[+]
Domain Expiry: 2027-02-08T22:05:23Z

Expires in 296 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[?]
Branding: Basic

Site has a favicon but no social sharing metadata

[+]
SSL Certificate: Valid

Valid certificate, expires in 48 days

[?]
Certificate Issuer: Google Trust Services

Certificate issued by Google Trust Services

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[?]
robots.txt: Not found

No robots.txt file — common for small sites

[+]
DNS Resolution: 4 IP(s)

Resolves to: 2a06:98c1:58::db, 2606:4700:7::db, 162.159.140.221, 172.66.0.219

[+]
Email (MX Records): 5 record(s)

Mail servers: aspmx.l.google.com., alt1.aspmx.l.google.com., alt2.aspmx.l.google.com., alt3.aspmx.l.google.com., alt4.aspmx.l.google.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 4 server(s)

DNS providers: ns-522.awsdns-01.net., ns-1277.awsdns-31.org., ns-1995.awsdns-57.co.uk., ns-367.awsdns-45.com.

[~]
Website Status: HTTP 403

Website returned status 403

[+]
Contact Info: Found

Website appears to have contact information

[-]
Legal Pages: Missing

No privacy policy or terms of service found

[~]
Social Media Presence: None found

No social media links found on homepage

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Sitemap: Not found

No sitemap found — common for smaller sites

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[?]
Certificate Transparency: Unable to check

Could not query certificate transparency logs

[+]
Page Load Time: 140ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for depop.com
<a href="https://verified.fyi/review/depop.com"><img src="https://verified.fyi/badge/depop.com?size=medium&style=full&theme=dark" alt="depop.com trust score — verified.fyi" /></a>
[![depop.com trust score](https://verified.fyi/badge/depop.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/depop.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Navigating online marketplaces requires a closer look at their legitimacy and reliability. Depop.com, a prominent platform for buying and selling unique fashion, generally positions itself as a trustworthy option, but like any online service, it has its nuances. For a platform dealing with user-generated content and financial transactions, robust security is paramount. Depop.com scores well here, employing modern encryption and server protections. This means your personal and payment information is generally handled with care, which is a baseline expectation for any established e-commerce site. Most reputable marketplaces also show a long history, and Depop's domain has been active for over two decades, signaling stability and longevity in a rapidly changing digital landscape. This long-standing presence, coupled with high global traffic, usually indicates a well-used and recognized service. However, potential users should be aware of some critical aspects. The most glaring issue identified is the absence of easily accessible privacy policies and terms of service. For an e-commerce platform that handles user data and facilitates transactions, these legal documents are not just formalities; they define user rights, responsibilities, and how personal information is used. This is a significant deviation from what is typical for established fashion marketplaces and could leave users feeling less protected. When considering a marketplace like Depop, always look for clear legal guidelines, and be cautious if they're not readily available. Additionally, the website returned an HTTP 403 status during our check, which means access was forbidden, though this might be a temporary issue or specific to our testing environment. For any user, being unable to access the site is a serious concern.