Vendor Trust Snapshot API

Vendor Trust Snapshot API API ID: 12508

Instantly assess the trustworthiness of any vendor domain. Returns a scored JSON report covering domain age, email authentication, HTTPS, security signals, legal pages, and support availability — in a single API call.
Use this API from your AI agent via MCP
Works with OpenClaw, Claude Code/Desktop, Cursor, Windsurf, Cline and any MCP-compatible AI client.
Docs & setup
Create a skill by wrapping this MCP: https://mcp.zylalabs.com/mcp?apikey=YOUR_ZYLA_API_KEY

Every time a company onboards a new vendor, evaluates a supplier, or vets a potential partner, someone has to manually check a dozen different signals — domain age, email security records, SSL, legal pages, support availability, and more. That process is slow, inconsistent, and often skipped entirely.

The Vendor Trust Snapshot API automates all of it in a single call.

Send any domain and get back a structured JSON trust report with an overall score from 0 to 100, covering 13 individual signals across five categories.

WHAT IT CHECKS:

Domain Intelligence:
- Domain age in days and original registration date
- Sourced from public RDAP data

Email Authentication:
- SPF record presence and validity
- DMARC policy detection
- DKIM configuration check

Security Signals:
- HTTPS and SSL certificate validation
- security.txt file presence
- Trust center page detection

Legal Pages:
- Privacy policy detection
- Terms of service detection
- Cookie policy detection
- Refund/returns policy detection

Support Availability:
- Status page detection
- Contact page detection
- Support/help page detection
- Support email extraction

TRUST SCORE:
Every response includes a weighted trust_score from 0 to 100 and a trust_level label: low, moderate, high, or very high. Scores are calculated from all 13 signals using weighted criteria so you can rank and filter vendors programmatically.

WHO THIS IS FOR:
- Procurement teams automating vendor evaluation workflows
- Fintech and payment platforms vetting merchants before onboarding
- B2B marketplaces verifying seller legitimacy
- Compliance tools building automated vendor risk reports
- Developers building internal vendor dashboards or scoring tools

No manual research. No multiple tools. One domain in, one trust report out.

API Documentation

Endpoints

Accepts a domain name and returns a full vendor trust report covering 13 signals across five categories: domain age, email authentication (SPF, DMARC, DKIM), security signals (HTTPS, security.txt, trust center), legal page detection (privacy policy, terms, cookies, refund), and support availability (status page, contact, support email). Returns a weighted trust score from 0 to 100 and a trust level label.



                                                                            
GET https://pr189-testing.zylalabs.com/api/12508/vendor+trust+snapshot+api/23808/check

check - Endpoint Features

Object Description
domain [Required]

Free test requests remaining: 3 of 3.

INPUT PARAMETERS

domain

API EXAMPLE RESPONSE

{"success":true,"domain":"stripe.com","checked_at":"2026-05-05T17:32:39.136Z","trust_score":92,"trust_level":"very high","domain_info":{"domain_age_days":11193,"domain_registered_date":"1995-09-12T04:00:00.000Z"},"email_auth":{"spf":true,"dmarc":true,"dkim":true},"security":{"https_enabled":true,"ssl_valid":true,"has_security_txt":false,"has_trust_center":true},"legal":{"has_privacy_policy":true,"has_terms_of_service":true,"has_cookie_policy":true,"has_refund_policy":false},"support":{"has_status_page":true,"has_contact_page":true,"has_support_page":true,"support_email":null},"signals_summary":{"total_signals_checked":13,"signals_passed":11,"signals_failed":2}}

Check - CODE SNIPPETS


curl --location --request GET 'https://zylalabs.com/api/12508/vendor+trust+snapshot+api/23808/check&domain=Required' --header 'Authorization: Bearer YOUR_API_KEY'

API Access Key & Authentication

After signing up, every developer is assigned a personal API access key, a unique combination of letters and digits provided to access to our API endpoint. To authenticate with the Vendor Trust Snapshot API simply include your bearer token in the Authorization header.
Headers
Header Description
Authorization [Required] Should be Bearer access_key. See "Your API Access Key" above when you are subscribed.

Simple Transparent Pricing

No long-term commitment. Upgrade, downgrade, or cancel anytime. Free Trial includes up to 50 requests.

🚀 Enterprise

Starts at
$ 10,000/Year

  • Custom Volume
  • Custom Rate Limit
  • Specialized Customer Support
  • Real-Time API Monitoring
zeiss-logo amazon-logo zoom-logo decathlon-logo
Book a Call

Customer favorite features

  • ✔︎ Only Pay for Successful Requests
  • ✔︎ Free 7-Day Trial
  • ✔︎ Multi-Language Support
  • ✔︎ One API Key, All APIs.
  • ✔︎ Intuitive Dashboard
  • ✔︎ Comprehensive Error Handling
  • ✔︎ Developer-Friendly Docs
  • ✔︎ Postman Integration
  • ✔︎ Secure HTTPS Connections
  • ✔︎ Reliable Uptime

Vendor Trust Snapshot API FAQs

The API returns a comprehensive trust report for a given domain, including a trust score (0-100) and a trust level label. It covers 13 signals across five categories: domain intelligence, email authentication, security signals, legal pages, and support availability.

Key fields include `trust_score`, `trust_level`, `domain_info` (with `domain_age_days` and `domain_registered_date`), `email_auth`, `security`, `legal`, and `support`. Each category provides specific details about the vendor's trustworthiness.

The response is structured in JSON format, with a top-level object containing success status, domain checked, and a detailed breakdown of trust signals. Each category (domain, email, security, legal, support) is nested within the response for clarity.

The API provides information on domain age, email authentication (SPF, DMARC, DKIM), security features (HTTPS, SSL), legal compliance (privacy policy, terms of service), and support availability (contact pages, support emails).

Data accuracy is maintained through the use of public RDAP data for domain information and automated checks for email authentication and security signals. Regular updates and validation processes ensure the reliability of the information provided.

Typical use cases include procurement teams automating vendor evaluations, fintech platforms vetting merchants, B2B marketplaces verifying sellers, and compliance tools generating vendor risk reports, all benefiting from streamlined assessments.

Users can leverage the trust score and level to rank vendors programmatically, filter out low-trust options, and make informed decisions based on the detailed signals provided in the report, enhancing vendor management processes.

Users can expect a consistent structure in responses, with trust scores reflecting the cumulative assessment of signals. Common patterns include high scores for established domains with strong email and security practices, while newer or less compliant domains may score lower.

General FAQs

To obtain your API key, first sign in to your account and navigate to the API you want to use. From the API's Pricing section, choose a plan and complete the subscription process. Once subscribed, return to the API page and you will see your API Access Key displayed at the top of the documentation page. You can use this key to authenticate your requests.

You can’t switch APIs during the free trial. If you subscribe to a different API, your trial will end and the new subscription will start as a paid plan.

The free trial lasts for 7 days and allows you to make up to 50 API requests.

No, the free trial is available only once, so we recommend using it on the API that interests you the most. Most of our APIs offer a free trial, but some may not include this option.

Yes. If the API offers a free trial, you will see a "Free 7-Day Trial" option in its Pricing section. The trial lasts for 7 days and allows up to 50 API requests, enabling you to evaluate the API before subscribing to a paid plan.

Zyla API Hub is like a big store for APIs, where you can find thousands of them all in one place. We also offer dedicated support and real-time monitoring of all APIs. Once you sign up, you can pick and choose which APIs you want to use. Just remember, each API needs its own subscription. But if you subscribe to multiple ones, you'll use the same key for all of them, making things easier for you.

Prices are listed in USD (United States Dollar), EUR (Euro), CAD (Canadian Dollar), AUD (Australian Dollar), and GBP (British Pound). We accept all major debit and credit cards. Our payment system uses the latest security technology and is powered by Stripe, one of the world's most reliable payment companies. If you have any trouble paying by card, just contact us at [email protected]

Additionally, if you already have an active subscription in any of these currencies (USD, EUR, CAD, AUD, GBP), that currency will remain for subsequent subscriptions. You can change the currency at any time as long as you don't have any active subscriptions.
The local currency shown on the pricing page is based on the country of your IP address and is provided for reference only. The actual prices are in USD (United States Dollar). When you make a payment, the charge will appear on your card statement in USD, even if you see the equivalent amount in your local currency on our website. This means you cannot pay directly with your local currency.
Occasionally, a bank may decline the charge due to its fraud protection settings. We suggest reaching out to your bank initially to check if they are blocking our charges. Also, you can access the Billing Portal and change the card associated to make the payment. If these does not work and you need further assistance, please contact our team at [email protected]
Prices are determined by a recurring monthly or yearly subscription, depending on the chosen plan.
API calls are deducted from your plan based on successful requests. Each plan comes with a specific number of calls that you can make per month. Only successful calls, indicated by a Status 200 response, will be counted against your total. This ensures that failed or incomplete requests do not impact your monthly quota.
Zyla API Hub works on a recurring monthly subscription system. Your billing cycle will start the day you purchase one of the paid plans, and it will renew the same day of the next month. So be aware to cancel your subscription beforehand if you want to avoid future charges.
To upgrade your current subscription plan, simply go to the pricing page of the API and select the plan you want to upgrade to. The upgrade will be instant, allowing you to immediately enjoy the features of the new plan. Please note that any remaining calls from your previous plan will not be carried over to the new plan, so be aware of this when upgrading. You will be charged the full amount of the new plan.
To check how many API calls you have left for the current month, refer to the 'X-Zyla-API-Calls-Monthly-Remaining' field in the response header. For example, if your plan allows 1,000 requests per month and you've used 100, this field in the response header will indicate 900 remaining calls.

You can monitor your API usage through the response headers included with every request:

x-zyla-api-calls-monthly-used: Shows the total number of API requests you have used during the current billing period.
x-zyla-api-calls-monthly-remaining: Shows the number of API requests you have remaining for the current billing period.

The 'X-Zyla-RateLimit-Reset' header shows the number of seconds until your rate limit resets. This tells you when your request count will start fresh. For example, if it displays 3,600, it means 3,600 seconds are left until the limit resets.

Yes, you can cancel your subscription at any time. Simply go to the Pricing section of the API you're subscribed to and click the "Unsubscribe" button.

Please note that upgrades, downgrades, and cancellations take effect immediately. Once your subscription is canceled, access to the service will end immediately, regardless of any remaining API calls in your quota.

After 7 days, you will be charged the full amount for the plan you were subscribed to during the trial. Therefore, it's important to cancel before the trial period ends. Refund requests for forgetting to cancel on time are not accepted.
When you subscribe to an API free trial, you can make up to 50 API calls. If you wish to make additional API calls beyond this limit, the API will prompt you to perform an "Start Your Paid Plan." You can find the "Start Your Paid Plan" button in your profile under Subscription -> Choose the API you are subscribed to -> Pricing tab.
You can contact us through our chat channel to receive immediate assistance. We are always online from 8 am to 5 pm (EST). If you reach us after that time, we will get back to you as soon as possible. Additionally, you can contact us via email at [email protected]

Please have a look at our Refund Policy: https://zylalabs.com/terms#refund

Start Free Trial
 Service Level
100%
 Response Time
993ms

Category:

Security & Cybersecurity

Tags:

Related APIs

Routing Number Bank Lookup API

Routing Number Bank Lookup API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

267ms

Card Checker API

Card Checker API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

157ms

Credit Card Validator - BIN Checker API

Credit Card Validator - BIN Checker API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

179ms

Routing Bank Number Checker API

Routing Bank Number Checker API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

348ms

SWIFT - IBAN - Routing Bank Checker API

SWIFT - IBAN - Routing Bank Checker API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

472ms

Credit Card Integrity API

Credit Card Integrity API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

168ms

BIN Checker API

BIN Checker API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

367ms

Routing Number Validation API

Routing Number Validation API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

461ms

LBMA Price API

LBMA Price API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

253ms

BIN IP Insights API

BIN IP Insights API
Finance & Payments Free 7-Day Trial

Service Level:

100%

Response Time:

67ms