How does TrustSeal verify a domain?

You add a DNS TXT record we generate. Once detected, ownership is confirmed and the first account to verify owns the domain.

Is the badge tamper-resistant?

Yes. The embeddable badge checks live status on every load and is origin-bound to the claimed domain, so a copied badge cannot fake verification.

What do Pro and Free include?

Free gives one verified domain and a public seal page. Pro adds the embeddable badge, the Command Center, analytics and multiple domains.

Can I cancel anytime?

Yes. Cancelling stops renewal — your Pro access continues until the end of the period you already paid for.

Do you support international businesses?

TrustSeal is available in English, Hindi, Spanish and Arabic, with full right-to-left support for Arabic.

Trust Center

How TrustSeal measures trust: the methodology, standards, framework, and the signals behind every score.

Trust methodology

TrustSeal converts verifiable evidence into an explainable trust score (0–100) and a trust band. We start from proven domain ownership, then evaluate independent signal categories and combine their sub-scores under published weights. Every score is explainable: the public seal page shows the per-category breakdown and the per-signal evidence behind it.

Verification standards

Ownership is proven cryptographically via a unique per-claim DNS TXT token — not self-assertion.
The first account to verify a domain owns it within TrustSeal; tokens expire.
Verdicts are server-authoritative and re-checked over time; clients cannot alter their own score or band.
Clean verdicts are cached briefly and risky verdicts longer, so a freshly-weaponized domain cannot hide behind a stale good score.

Trust framework (the five bands)

Verified — ownership confirmed, signals strong.
Established — solid, consistent reputation history.
Limited — verified but with thin or new signals.
Caution — anomalies detected; review before transacting.
Risk — blocklist or impersonation signals; high risk.

Signal library

Signals are grouped into categories, each contributing a sub-score:

DNS — resolution, mail (MX), and email-auth records.
SSL/TLS — certificate validity, validation level, and age.
Reputation — blocklist providers and intelligence-graph signals.
WHOIS — domain age and registration data (where available).
Impersonation — look-alike / brand-impersonation patterns.
Legitimacy & web — site presence and consistency signals.

Confidence & coverage

Each verdict carries a confidence level reflecting how much signal coverage was available. A partial verdict (some categories not yet assessed) is labelled as such — TrustSeal never implies more certainty than the evidence supports.

Programmatic access

The methodology is queryable: the public Trust API (GET /api/trust/{domain}) returns the status, trust level, score, confidence, full breakdown, and signals as JSON. See the Documentation for details.