Is wish.com legit?

67
/ 100
Mostly Safe
Industry: E-commerce

Wish.com is mostly safe, but be aware of some notable transparency and compliance issues. The lack of standard legal pages and readily available contact information are concerning for a major e-commerce platform.

E-commerce average: 73/100 · based on 28 sites

Checked: April 27, 2026 at 7:03 PM UTC

Is wish.com a scam? Here's what we found.

Security 90/100

The security posture is strong with a valid SSL certificate, modern TLS 1.3, an HSTS header, and robust clickjacking protection. Google Web Risk also confirms no threats for the site.

Identity 95/100

The domain is very old and registered with a reputable registrar, indicating a long-standing online presence. WHOIS data is publicly available through MarkMonitor, suggesting a transparent ownership.

Reputation 80/100

The site has moderate global traffic, isn't blacklisted, and has a well-established history based on domain age. However, the lack of a Trustpilot profile prevents external reputation validation.

Transparency 55/100

The site links to social media and has custom branding, but the use of urgency tactics and the complete absence of clear contact information significantly detract from its transparency.

Compliance 40/100

This category is a major weakness due to the complete lack of essential legal pages like a privacy policy or terms of service, which is a significant compliance and trust concern for any online business.

Infrastructure 90/100

The site boasts solid DNS and email infrastructure with multiple name servers, DMARC, and multiple IPs. These are all signs of a well-maintained and robust backend.

Signals Detected

[+]
Structured Data: Found

Site uses structured data identifying itself as: WebSite

[+]
Tranco Rank: Rank #17285

This site has moderate global traffic

[~]
Urgency Tactics: 2 patterns found

Site uses multiple urgency/scarcity tactics — common in scam sites

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 31 years, 9 months

Domain created 1995-01-03T05:00:00Z (31 years, 9 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[+]
Domain Expiry: 2027-12-07T16:42:32Z

Expires in 588 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[+]
DNS Resolution: 4 IP(s)

Resolves to: 2600:1f18:2265:c01:e875:7e5b:e27f:8224, 2600:1f18:2265:c00:e866:c8b3:a71c:9b69, 44.216.229.120, 34.199.26.52

[+]
Email (MX Records): 5 record(s)

Mail servers: aspmx.l.google.com., alt1.aspmx.l.google.com., alt2.aspmx.l.google.com., alt4.aspmx.l.google.com., alt3.aspmx.l.google.com.

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 4 server(s)

DNS providers: ns-1071.awsdns-05.org., ns-1818.awsdns-35.co.uk., ns-433.awsdns-54.com., ns-760.awsdns-31.net.

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
SSL Certificate: Valid

Valid certificate, expires in 214 days

[?]
Certificate Issuer: Amazon

Certificate issued by Amazon

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
robots.txt: Present

robots.txt has 27 directives and references a sitemap

[+]
Sitemap: 52 pages

Site maintains a proper sitemap with 52 indexed pages

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Website Status: Online

Website is live and responding

[~]
Contact Info: Not found

No obvious contact information found on homepage

[-]
Legal Pages: Missing

No privacy policy or terms of service found

[+]
Social Media Presence: 3 platforms

Website links to multiple social media platforms

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[?]
Page Load Time: 1287ms

Average page load time

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for wish.com
<a href="https://verified.fyi/review/wish.com"><img src="https://verified.fyi/badge/wish.com?size=medium&style=full&theme=dark" alt="wish.com trust score — verified.fyi" /></a>
[![wish.com trust score](https://verified.fyi/badge/wish.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/wish.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Navigating the waters of online shopping can be tricky, and for a major e-commerce platform like Wish.com, understanding its trustworthiness is key. Unlike many fly-by-night operations, Wish.com sits on a remarkably old domain, over three decades old, which is a significant marker of a long-term business commitment. This deep-rooted history, often seen in established retailers, suggests a certain level of stability that newer sites simply can't match. However, a closer look reveals some areas where Wish.com could improve, particularly concerning consumer protection. For any online marketplace, transparency is paramount. The absence of readily available contact information and, more critically, the lack of distinct privacy policy and terms of service pages are substantial red flags. Legitimate e-commerce sites typically place these documents front and center to inform customers about their rights, data privacy, and the terms of their purchases. This omission could leave consumers feeling vulnerable and unsupported if issues arise, especially given the platform's known reliance on urgency tactics to drive sales, which should always be approached with caution in online retail. Despite these concerns, the technical backbone of Wish.com appears sound, with robust security measures and a well-maintained infrastructure. This suggests the operational aspects of the site are professionally managed. For consumers, the takeaway is to proceed with awareness. While the platform has a long history and strong technical security, the missing legal information means you should be extra diligent when making purchases, understanding that your recourse might be less clear than with a retailer that clearly outlines its policies.