Is plaid.com legit?

75
/ 100
Mostly Safe
Industry: Finance

This site appears mostly safe, demonstrating a strong technical foundation and good overall practices. However, the mention of non-reversible payment methods and incomplete legal pages are notable concerns consumers should be aware of.

Finance average: 81/100 · based on 48 sites

Checked: April 27, 2026 at 5:28 PM UTC

Is plaid.com a scam? Here's what we found.

Security 70/100

While the SSL certificate and TLS version are excellent, the presence of payment red flags and an excessive number of external scripts detract from an otherwise solid security posture. Google Web Risk found no threats.

Identity 90/100

The domain is very old (30 years) and WHOIS information is fully visible, positively indicating a long-established and transparent entity behind the site.

Reputation 85/100

The site has moderate global traffic and is not on any DNS blacklists, suggesting a generally good reputation despite the lack of a Trustpilot profile.

Transparency 75/100

Contact information is readily available, and there's a good social media presence. However, the significant amount of hidden content raises questions about full transparency.

Compliance 70/100

The site has some legal pages, but the partial presence (missing either a privacy policy or terms of service) is a standard compliance requirement for businesses.

Infrastructure 90/100

Excellent DNS and email configurations with DMARC present, showing a well-managed and robust hosting and communication infrastructure. DNSSEC is unsigned, which is a minor point.

Signals Detected

[+]
Tranco Rank: Rank #11961

This site has moderate global traffic

[+]
Structured Data: Found

Site uses structured data identifying itself as: Organization

[~]
Payment Red Flags: 1 flag(s)

Mentions non-reversible payment methods: western union

[~]
External Scripts: 21 scripts

Excessive number of external scripts — may indicate malicious injection

[~]
Hidden Content: 27 hidden elements

Excessive hidden content found — may indicate cloaking or deceptive content

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 30 years, 1 months

Domain created 1995-08-16T04:00:00Z (30 years, 1 months ago)

[?]
Registrar: Gandi SAS

Registered through Gandi SAS

[+]
Domain Expiry: 2026-08-15T04:00:00Z

Expires in 109 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
DNS Resolution: 12 IP(s)

Resolves to: 2600:9000:223e:cc00:1d:e80d:8080:93a1, 2600:9000:223e:f000:1d:e80d:8080:93a1, 2600:9000:223e:fa00:1d:e80d:8080:93a1, 2600:9000:223e:3800:1d:e80d:8080:93a1, 2600:9000:223e:e600:1d:e80d:8080:93a1, 2600:9000:223e:da00:1d:e80d:8080:93a1, 2600:9000:223e:8200:1d:e80d:8080:93a1, 2600:9000:223e:c00:1d:e80d:8080:93a1, 52.222.236.125, 52.222.236.67, 52.222.236.16, 52.222.236.70

[+]
Email (MX Records): 5 record(s)

Mail servers: aspmx.l.google.com., alt2.aspmx.l.google.com., alt1.aspmx.l.google.com., aspmx2.googlemail.com., aspmx3.googlemail.com.

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 4 server(s)

DNS providers: ns-1123.awsdns-12.org., ns-1688.awsdns-19.co.uk., ns-309.awsdns-38.com., ns-967.awsdns-56.net.

[+]
SSL Certificate: Valid

Valid certificate, expires in 169 days

[?]
Certificate Issuer: Amazon

Certificate issued by Amazon

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
robots.txt: Present

robots.txt has 20 directives and references a sitemap

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[?]
Server: AmazonS3

Web server: AmazonS3

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Sitemap: 1904 pages

Site maintains a proper sitemap with 1904 indexed pages

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[~]
Legal Pages: Partial

Website is missing either privacy policy or terms of service

[+]
Social Media Presence: 3 platforms

Website links to multiple social media platforms

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
Page Load Time: 560ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for plaid.com
<a href="https://verified.fyi/review/plaid.com"><img src="https://verified.fyi/badge/plaid.com?size=medium&style=full&theme=dark" alt="plaid.com trust score — verified.fyi" /></a>
[![plaid.com trust score](https://verified.fyi/badge/plaid.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/plaid.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Plaid.com positions itself as a critical player in financial technology, connecting consumer bank accounts to apps and services. For a site handling such sensitive data, trust is paramount. Unlike a typical e-commerce site, the primary concern for users isn't 'is it safe to buy from plaid.com' but rather 'is plaid.com a scam' in terms of data handling and reliability. Our analysis shows the site has been online for over 30 years, an impressive feat that dwarfs most fintech startups and suggests a well-established operation – a strong indicator for any financial service. This longevity, coupled with robust technical infrastructure like DMARC email authentication and a modern TLS setup, paints a picture of a company investing in its digital presence and security. However, it's not without a few areas for improvement. The absence of a complete set of legal pages (either a privacy policy or terms of service) is unusual and potentially problematic for a finance-related entity. Most legitimate financial platforms prioritize explicit legal documentation to build user confidence and meet regulatory requirements. Additionally, while perhaps not directly related to its core function, the mention of Western Union as a payment method can be a red flag. For a business facilitating digital financial connections, one would expect more secure and traceable payment options if they were directly handling transactions. Should users proceed, they should always ensure they understand how their data is being used, especially given the crucial role Plaid plays in linking bank accounts.