What we verify

SSL and connection security

The padlock is the minimum bar for trust online, and it silently breaks more often than most owners realise. An expired certificate can take a store offline for hours before anyone notices.

TrustedOrigin checks the certificate your server is actually serving right now, monitors public certificate-transparency logs for every certificate issued for your domain, and warns you well before anything expires.

Live
TLS handshake every cycle
CT logs
issuance monitoring
Early
expiry warnings

What this check covers

Live connection checks

We perform a real TLS handshake with your server on every cycle, recording the certificate, its issuer, its remaining validity and the negotiated protocol version.

Certificate transparency monitoring

Every certificate publicly issued for your domain is tracked through certificate-transparency logs, so unexpected issuance does not go unnoticed.

Expiry warnings

Your trust score drops as expiry approaches and you are alerted in advance, so a lapsed certificate never surprises you or your visitors.

Modern protocol grading

Sites still serving outdated TLS 1.0 or 1.1 are flagged, encouraging the modern encryption levels browsers and customers expect.

What your visitors see

The verification panel shows a "Data Protection" certification with the live certificate issuer, the connection protocol, how long the certificate remains valid and a list of certificates on record.

Every result carries a date, so visitors can see the check is recent, and if a serious issue is ever found the badge is removed automatically until it is resolved.

Ready to earn your badge?

One script tag, one plan, every check included. Live on your site in minutes.

Get your badge See all checks