If you received a suspicious email that looks like it’s from us - or a company claiming to be associated with us - don’t click links, download attachments, or reply to the message. Report it to our Security team by forwarding the entire email to email@example.com. Include the email header and subject line, which helps us investigate where it came from and stop it from spreading to other customers.
What you received could be a phishing email. Phishing is when scammers send messages trying to trick you into giving them your personal information. These emails often impersonate trusted brands like Squarespace.
Tip: If your email provider prevents you from forwarding the email, it may have already been reported. In this case, delete it, and don't click any links or download attachments.
Watch a video
Spot a phishing scam
While scammers change their tactics frequently, look for these signs of a phishing or spoof message:
- Requests for your bank account, username, password, social security number, or identity. Never share this information.
- A claim that your account is compromised.
- An unsolicited email with a link to verify your account information.
- Typos in the From email address. It’s common to see something like firstname.lastname@example.org (typo).
- Suspicious links that don’t lead to www.squarespace.com. Before you click on a link, check the URL by copying it into your address bar without pressing Enter. Links in Squarespace emails preview as email.squarespace.com.
- Emails that mimic our design.
- Emails with .html attachments.
Tip: Learn more about phishing emails at OnGuard Online.
Scam Form Block submissions
We never contact customers about account, billing, domains, or any other issue through your website's Form Block. Be aware of people pretending to be Squarespace contacting you through this method.
Even though email@example.com and firstname.lastname@example.org are official Squarespace email addresses, the content you receive from these addresses comes from what site visitors enter in your Form Block.
If we detect a form submission containing suspicious content, you'll see a warning at the top of the email, but review every submission carefully and avoid clicking suspicious links. To learn more about preventing Form Block spam, visit Preventing Form and Newsletter Block spam.
Scam phone calls
We don't call our customers over the phone. Be aware of unsolicited phone calls from people pretending to be from Squarespace requesting private information.
Official Squarespace email addresses
If you're not sure if an email address belongs to us, compare it to this list of our official email addresses.
- email@example.com (Customer Support)
- Emails ending in @accelerationpartners.com (a Squarespace marketing partner)
- firstname.lastname@example.org (Form Block submissions from visitors to your site)
- email@example.com (Squarespace Domains)
- firstname.lastname@example.org or email@example.com (Email notifications from your site or Squarespace Domain)
- firstname.lastname@example.org (Form Block submissions from visitors to your site)
- email@example.com (Notifications from Squarespace Scheduling)
- firstname.lastname@example.org (Marketing emails from Squarespace)
- email@example.com (Transcripts from live chat sessions)
- firstname.lastname@example.org (Our Research team)
- email@example.com (Notifications from Squarespace Scheduling)
- firstname.lastname@example.org (Squarespace 5 billing notifications)
These email addresses can't receive inbound email. You can reply to email@example.com after contacting us from this Help Center.
Information we'll never request
- Your full credit card number
- Your bank account or routing number
- Your password
- Your social security number
Never share this information unless it’s with a known and trustworthy party.
Information we might request
Here's what we might ask for only when you contact us for support or make a domain change:
- Information to help us verify your account, like the last four digits of your credit card
- A copy of a government-issued ID to help with specific account access issues, or to verify your identity if our system flags a domain registration as suspicious. You may receive an automated email requesting this information.
- To click a link to verify your domain if you register, transfer, or make a change to your domain