1. Spotting Fake Websites

Fake shopping websites cost consumers billions of dollars every year. They often look convincingly professional β€” sometimes cloning legitimate retailers almost perfectly. Here's how to tell them apart from the real thing:

  • Check the URL carefully. Look for slight misspellings (amazon vs arnaz0n, etc.), unusual domain extensions (.shop, .xyz, .store instead of .com), or extra words (real-amazon-deals.com). The URL should exactly match the legitimate retailer.
  • Look for HTTPS. Legitimate shopping sites always use HTTPS (the padlock icon). Note that HTTPS alone doesn't guarantee a site is legitimate β€” scammers can use HTTPS too β€” but a site without it is an immediate red flag.
  • Check the contact details. Legitimate businesses have a physical address, working phone number, and email. Test the contact form or call the number. No contact details is a red flag.
  • Research the domain age. Tools like Whois.net show when a domain was registered. A domain registered within the last few weeks selling heavily discounted goods is highly suspicious.
  • Read the reviews β€” elsewhere. Check Trustpilot, Google Reviews, and Reddit for the site's reputation. Don't rely on reviews displayed on the site itself.

2. Payment Safety

How you pay for purchases online is one of the most important decisions you make as a shopper:

  • Use a credit card, not a debit card. Credit cards offer significantly stronger consumer protections than debit cards. Under Section 75 of the Consumer Credit Act (UK) or the Fair Credit Billing Act (US), you can dispute charges for goods not received or misrepresented.
  • Consider virtual card numbers. Many banks now offer virtual card numbers (a unique number generated for each transaction) that limit the damage of a breach. Privacy.com (US) and similar services are excellent for this.
  • Use PayPal or similar where available. Services like PayPal, Apple Pay, and Google Pay don't share your card details with the retailer, and PayPal's buyer protection is robust.
  • Never pay by bank transfer or gift card. These are non-recoverable payment methods. Legitimate retailers don't ask for them.
  • Enable purchase notifications. Set up instant notifications for any transaction on your card so you can spot unauthorised charges immediately.

3. Password & Account Security

  • Use unique passwords for every shopping site. If one retailer is breached, you don't want the same credentials working elsewhere. A password manager (1Password, Bitwarden) makes this effortless.
  • Enable two-factor authentication (2FA). Available on Amazon, eBay, and most major retailers. Even if someone gets your password, they can't access your account without a second factor.
  • Use a dedicated email address for shopping. A separate email for retail accounts limits the exposure of your primary email to spam and phishing.
  • Check Have I Been Pwned. Visit haveibeenpwned.com to see if your email has appeared in known data breaches, and change passwords for any affected accounts.

4. Phishing & Email Scams

Phishing emails mimicking shipping notifications, order confirmations, and delivery alerts are among the most common scam vectors. Protect yourself:

  • Don't click links in emails. If you get an email claiming to be from Amazon, UPS, or any retailer, go directly to the website by typing the URL yourself β€” don't click the link in the email.
  • Check the sender's email address. Phishing emails often use addresses like amazon-support@gmail.com or noreply@amazon-service.net. Legitimate companies use their own domain.
  • Be suspicious of urgency. "Your account will be closed in 24 hours!" or "Verify your payment immediately!" are pressure tactics designed to make you act before thinking.
  • Verify package alerts independently. If you receive a suspicious delivery notification, track the package directly through the carrier's website using the tracking number from your original order confirmation.

5. Choosing Safe Retailers

The safest online shopping experience starts with choosing trustworthy retailers:

  • Stick to established retailers where possible. Amazon, eBay, major department stores, and brand websites are lowest risk. Third-party marketplace sellers on these platforms introduce more risk β€” check seller ratings carefully.
  • Use price comparison sites with care. Price aggregators can surface unfamiliar retailers offering suspiciously low prices. Research any unknown retailer before buying.
  • Check for trust signals. BBB accreditation (US), Trusted Shops certification (EU), or strong Trustpilot scores are positive indicators. Their absence isn't conclusive, but their presence helps.

6. Returns & Dispute Resolution

  • Read the returns policy before you buy. Some online retailers β€” especially those operating from overseas β€” have no-return policies or charge restocking fees. Know the terms upfront.
  • Keep all documentation. Save order confirmations, receipts, tracking numbers, and any communications with the retailer. You'll need these for disputes.
  • Act quickly on disputes. Credit card chargebacks and PayPal disputes have time limits (typically 60-120 days). Don't wait if something goes wrong.
  • Contact your bank first. If a retailer won't refund a legitimate complaint, contact your bank or credit card issuer to initiate a chargeback.

7. Quick Safety Checklist

βœ… Before You Buy β€” Check These

  • URL is correct, HTTPS, and from a recognisable domain
  • Site has real contact details (address, phone, email)
  • Payment method offers buyer protection (credit card or PayPal)
  • Returns policy is clear and acceptable
  • Independent reviews exist on Trustpilot/Google
  • Price seems realistic (not impossibly cheap)
  • 2FA is enabled on your account
  • Password is unique to this site