Is gravatar.com legit?

88
/ 100
Trusted
Industry: Software & Downloads

Gravatar.com is a trusted a platform, demonstrating robust security measures and a long-standing online presence. The only minor concerns are the lack of clear contact information and an unsigned DNSSEC record.

Software & Downloads average: 78/100 · based on 75 sites

Checked: April 21, 2026 at 7:29 PM UTC

Is gravatar.com a scam? Here's what we found.

Security 95/100

Excellent security posture with modern TLS 1.3, valid SSL, and strong content security policies. The site is clean on Google Web Risk, indicating no known malware or phishing threats.

Identity 95/100

A highly established domain with over two decades of history, registered through a reputable enterprise registrar, which speaks to its legitimacy and stability.

Reputation 95/100

Outstanding reputation, evidenced by its extremely high Tranco rank, extensive web archive history, and being clean on all DNS blacklists. It's a globally recognized and visited website.

Transparency 80/100

While the site has legal pages and some social media presence, the absence of easily accessible contact information on the homepage slightly detracts from full transparency.

Compliance 95/100

Strong compliance foundation with both privacy policy and terms of service readily available, which is essential for user trust and legal adherence.

Infrastructure 90/100

Solid infrastructure with good DNS resolution, robust email authentication through SPF and DMARC, and fast page load times. The only minor improvement would be enabling DNSSEC.

Signals Detected

[+]
Tranco Rank: Rank #133

This is one of the most visited websites globally

[?]
Structured Data: None found

No structured data markup found

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 21 years, 0 months

Domain created 2004-07-15T20:57:48Z (21 years, 0 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[+]
Domain Expiry: 2027-07-15T20:57:48Z

Expires in 450 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[+]
DNS Resolution: 4 IP(s)

Resolves to: 192.0.80.242, 192.0.80.240, 192.0.80.241, 192.0.80.239

[+]
Email (MX Records): 2 record(s)

Mail servers: mx2.ams.automattic.com., mx1.dfw.automattic.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 3 server(s)

DNS providers: ns1.automattic.com., ns2.automattic.com., ns3.automattic.com.

[+]
SSL Certificate: Valid

Valid certificate, expires in 79 days

[?]
Certificate Issuer: Let's Encrypt

Certificate issued by Let's Encrypt

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[?]
Branding: Basic

Site has a favicon but no social sharing metadata

[+]
robots.txt: Present

robots.txt has 56 directives

[?]
Sitemap: 1 pages

Sitemap found with 1 entries

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: nginx

Web server: nginx

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Website Status: Online

Website is live and responding

[~]
Contact Info: Not found

No obvious contact information found on homepage

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[?]
Social Media Presence: 1 platform

Website links to one social media platform

[+]
Web Archive History: 21 years

Earliest archive snapshot from 20040806

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Certificate Transparency: Unable to check

Could not query certificate transparency logs

[+]
Page Load Time: 426ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for gravatar.com
<a href="https://verified.fyi/review/gravatar.com"><img src="https://verified.fyi/badge/gravatar.com?size=medium&style=full&theme=dark" alt="gravatar.com trust score — verified.fyi" /></a>
[![gravatar.com trust score](https://verified.fyi/badge/gravatar.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/gravatar.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating a service like Gravatar.com, which handles personal profile information across many websites, trust is paramount. Gravatar's primary function is to provide a globally recognized avatar, simplifying your online identity. A legitimate service in this sector should demonstrate stability, clear ownership, and robust security measures, especially considering the spread of user data. Gravatar.com, owned by Automattic (the company behind WordPress), showcases many hallmarks of an established and trustworthy entity. Its domain has been active for over 21 years, a very strong indicator of longevity and commitment, far exceeding what you'd see from a fly-by-night operation. Security is well-implemented with modern encryption and content policies, which is crucial for handling user accounts. While a handful of low ratings on Trustpilot exist, this is not uncommon for services that are widely used and integrated across the web, and the small number of reviews compared to its global usage suggests these are not indicative of systemic issues. For any platform managing your identity, transparent legal documents are key, and Gravatar delivers on this with visible Privacy and Terms pages. Ultimately, Gravatar stands as a legitimate and reliable option for managing your presence online.