Trust report
notion.so
89/100 — trusted. Long-established, no impersonation patterns, no scam-correlated signals.
Verdict driven by: redirects to a different domain (www.notion.com); page has no <title>; large response served uncompressed — worth extra caution before trusting.
Top scam signals
- Redirects to a different domain (www.notion.com)Cross-domain redirects can be legitimate (rebrand) but are common in cloaked scams.
- Page has no <title>Well-maintained sites always set a page title.
- Large response served uncompressedEnable gzip or brotli at the edge to cut transfer size dramatically.
SL Trust Core
89
safe
Category breakdown
Identity & Age70/100
1 signal · weight 22
Impersonation Risk100/100
1 signal · weight 22
Red Flags100/100
1 signal · weight 18
Transparency88/100
9 signals · weight 14
Security96/100
8 signals · weight 8
Email70/100
1 signal · weight 4
Infrastructure100/100
5 signals · weight 4
Content86/100
4 signals · weight 3
Performance63/100
2 signals · weight 3
Technical Health100/100
3 signals · weight 2
Positive signals
- Site responded with 200
- HTTPS is enforced
- Served through Cloudflare
- 4 address record(s) resolved
- IPv6 (AAAA) available
- 2 authoritative nameservers
Warnings
- Page has no <title>
- Redirects to a different domain (www.notion.com)
- Large response served uncompressed
Critical
None detected.
Recommendations
Top 1 things to fix
- low · contentSet a page title
Every page should have a descriptive <title> for browsers and search engines.
- Root label
- notion
- TLD
- .so
- Uses punycode (xn--)
- no
- Mixed-script (homoglyph)
- no
- Brand match
- no known brand embedded
- Typosquat check
- no typosquat pattern
- Phishing suffix tokens
- none
No impersonation patterns detected
Domain doesn't look like a typosquat, doesn't embed a well-known brand, and uses ASCII characters.
+8
- Payment red flags
- none detected
- Urgency / pressure language
- none detected
- Disposable-domain combo
- no
- Page text length scanned
- 3,924 chars
No scam-correlated language found on the home page
No crypto-only / gift-card / wire-only payment demands, and no obvious urgency tactics.
+6
RDAP returned 403
- Final URL
- https://www.notion.com/
- Status
- 200
- Response time
- 806ms
- Server
- cloudflare
- CDN
- Cloudflare
- Content-Type
- text/html; charset=utf-8
- Body size
- 413.2 KB
- Redirects
- 2
Redirect chain
- 301 → https://www.notion.so/
- 301 → https://www.notion.com/
Site responded with 200
Final URL: https://www.notion.com/. Response time 806ms.
+8
HTTPS is enforced
All redirects stayed on HTTPS. Traffic is encrypted end-to-end.
+10
Served through Cloudflare
Sites behind a major CDN benefit from DDoS protection and edge caching.
+4
- A
- 208.103.161.1, 208.103.161.2
- AAAA
- 2602:f79a::2, 2602:f79a::1
- MX
- —
- NS
- dana.ns.cloudflare.com, woz.ns.cloudflare.com
- TXT count
- 8
4 address record(s) resolved
+4
IPv6 (AAAA) available
Modern dual-stack setup.
+2
2 authoritative nameservers
+2
ssl timed out after 8000ms
HSTSContent Security PolicyReferrer Policymissing: X-Frame-Optionsmissing: X-Content-Type-Optionsmissing: Permissions Policy
HSTS is set
Tells browsers to only use HTTPS for this domain.
+6
Content Security Policy is set
Restricts which scripts and resources the page can load.
+5
Missing X-Frame-Options
Prevents clickjacking by disallowing framing.
-3
Missing X-Content-Type-Options
Blocks MIME-sniffing browser attacks.
-2
Referrer Policy is set
Controls what referrer information is sent with requests.
+2
Missing Permissions Policy
Restricts access to powerful browser features (camera, mic, etc.).
-2
- SPF
- v=spf1 ~all
- DMARC
- v=DMARC1; p=quarantine; pct=100; rua=mailto:re+1b3a27dd30bc@inbound.dmarcdigests.com;
- DMARC policy
- quarantine
- DKIM selectors found
- —
No MX records — domain does not receive email
Next.js· frameworkSvelte· jsTailwind CSS· cssCloudflare· cdnVercel· hosting
- Title
- —
- Description
- Build Custom Agents, search across all your apps, and automate busywork. The AI workspace where teams get more done, faster.
- Language
- en-us
- Charset
- utf-8
5 technologies detected
Next.js, Svelte, Tailwind CSS, Cloudflare, Vercel
Built on a modern framework
+3
Mobile viewport configured
+2
Page has no <title>
Well-maintained sites always set a page title.
-3
refundnot found
shippingnot found
cookiesnot found
- Phone numbers
- 1232780281, 86395226000, 81422546562-0, 694447784172, 54587-14688150, 25140-9696
Privacy policy linked from home page
+6
Terms of service linked from home page
+5
Contact page linked from home page
+5
About page linked from home page
+3
No refund/return policy found
Reputable sites usually publish a refund/return policy.
-3
No cookie policy found
Reputable sites usually publish a cookie policy.
-2
5 social profile(s) linked
twitter, facebook, instagram, linkedin, youtube
+3
Phone number published
+2
Diagnostics
Scan performance
engine 5.1.0 · report v5
Total scan time
8015 ms
Cache
Miss
Final response
806 ms
Redirects
2
Plugins executed
18
Plugins failed
5
Signal confidence
72%
Per-plugin timings
sslfailed · 8000 ms
phishstatsfailed · 3500 ms
http806 ms
sitemap605 ms
robots378 ms
urlhausfailed · 343 ms
email-security15 ms
rdapfailed · 5 ms
dns4 ms
reputation0 ms
impersonation0 ms
safe-browsingfailed · 0 ms
security-headers0 ms
tech0 ms
content0 ms
redirects0 ms
performance0 ms
red-flags0 ms