A domain escrow service holds the buyer’s money in trust until the domain lands in the buyer’s registrar account, then releases the funds to the seller. That much is standard. What almost nobody tells you is where that protection stops, and for anyone buying an aged domain, the gap between “the name arrived” and “the asset arrived” is where most of the money gets lost.
What you are actually paying for is history. The backlinks, the index status, the years on the clock. Escrow was never designed to verify any of that.
What Domain Escrow Protects, and What It Quietly Does Not
Domain escrow protects the transaction, not the asset. It guarantees that money and ownership swap in the correct order, and it verifies through WHOIS that you became the registrant. It does not verify that the domain is clean, that it belongs to the person selling it, or that its backlink profile survived the handover.
Property lawyers separate closing from title. Domain escrow is the closing agent. Title insurance is a different product, and in the domain world nobody sells it.
| What escrow does | What escrow will not touch |
| Holds the buyer’s funds in a trust account until transfer is confirmed | Whether the seller legitimately owns the name (a hijacked domain still transfers cleanly) |
| Confirms via WHOIS that the registrant record now shows the buyer | Whether the domain carries a manual action, a spam history, or a Google penalty |
| Gives the buyer a defined inspection window to reject the domain | Whether the backlinks you paid for are still live, or were pointed elsewhere last week |
| Blocks the classic “pay first, get ghosted” and “transfer first, never get paid” failures | Registration expiry, DNS records, MX leftovers, and Search Console access, all of which need separate handling |
| Reduces chargeback exposure for sellers, since funds clear before the domain moves | Trademark exposure. A UDRP loss after purchase is your problem, not the escrow agent’s |
Read that right column again before you fund anything.
Standalone Escrow, Built-in Escrow, or Just a Push
Use a standalone domain escrow service for private deals with strangers. Use the marketplace’s built-in escrow when the deal originated there. Skip escrow only for low-value transfers where the loss would not sting, and never because the seller asked you to.
The channel you sourced the domain through usually decides this for you. Where you found the name is a separate discussion, covered in where and how to find aged domains.
| Deal situation | Sensible route | Why |
| Private deal, seller found through WHOIS outreach or a forum, $500 and up | Standalone escrow (Escrow.com is the default the industry actually uses) | No platform sits between you. Nothing else enforces the sequence |
| Bought through a marketplace listing or auction | The platform’s built-in escrow, already priced into the commission | Paying twice for the same protection is just donating money |
| Both parties happen to sit at the same registrar, small sum, known counterparty | Registrar account push, sometimes with no escrow at all | A push lands in minutes. The exposure window is tiny |
| Any deal where the seller pushes you toward a specific escrow link | Stop | The fake escrow clone is one of the most expensive scams in this industry, and it always arrives as a helpful link |
| High five figures and up, or cross-border | Standalone escrow with concierge or broker handling | Wire routing, currency, and identity checks get messy fast at that level |
MostDomain takes most of this decision off the table, since escrow and provenance checks come baked into every listed name. On a private deal, you carry the process yourself.
How the Money and the Domain Actually Move
The sequence runs six steps and usually takes 3 to 7 business days: both parties agree terms inside the escrow platform, the buyer funds, escrow confirms the money is held, the seller transfers, the buyer inspects and accepts, escrow releases payment.
Nothing exotic here. The failures come from the timing, not the steps.
- Terms first, funds second. Domain, price, transfer method, inspection window, and who eats the fee go into the domain escrow record before anyone sends anything. Vague terms cause most disputes.
- Funding clears at different speeds. A wire takes 2 to 3 days to land. Cards clear faster and cost more.
- The seller transfers only after escrow confirms the money is held. Anyone asking for release before transfer has misunderstood the product.
- Escrow checks WHOIS, and that is the whole of the verification. Registrant record shows your name, job done, as far as the platform is concerned.
- The inspection clock starts on delivery, not on funding. That distinction matters more than it sounds, and it comes back below.
- Release is quick. Most services disburse the same or next business day after you accept.
What the Handover Actually Costs
Escrow.com charges 3.25% on transactions up to $5,000, drops to 0.89% between $5,001 and $25,000, and switches to $162.50 plus 0.25% above $25,001. On a $2,000 domain that works out to roughly $65 by wire, or $126 if you pay by card or PayPal.
Sedo’s transfer service sits at 3% with a $60 minimum, worth knowing if you assumed marketplace escrow was free. It never is. It gets folded into commission or bolted on quietly.
The domain escrow fee is also only one line on the bill:
| Cost line | Typical range | Notes |
| Escrow fee | 0.25% to 3.25% depending on tier | Buyer usually pays, but this is negotiable and often split |
| Payment method premium | Card and PayPal run roughly double the wire rate | On a $2,000 name that gap is about $61 |
| International surcharge | $25 added when the buyer sits outside the escrow provider’s home country | Covers intermediary bank fees on the wire |
| Registrar transfer fee | Roughly $8 to $20 for a .com | Adds a full year to the registration, so it is not purely a cost |
| Renewal, if the domain is close to expiry | One year at your registrar’s rate | Transfers fail on domains inside 30 days of expiry. Renew before you start |
Budget the whole column. The headline percentage is the smallest part of it.
Check the Title Before You Fund
Aged domains are prime hijacking targets, and domain escrow will happily process the sale of a stolen name. The original owner can claw it back later through a registrar dispute, leaving you with neither the domain nor the money. Provenance checking happens before funding, or not at all.
The pattern is depressingly consistent. An attacker phishes a registrar account, lists the name below market within hours, then applies pressure so the deal closes before the real owner notices anything.
Signals worth walking away from:
- WHOIS shows the registrant changed inside the last 30 days, especially on a domain that is otherwise a decade old.
- The domain moved registrar very recently, with no explanation that makes sense.
- Privacy protection was switched on right before the listing went up.
- The asking price sits well below what comparable names go for, paired with urgency. “Another buyer is interested” is a sentence that has cost people a lot of money.
- The seller will not produce any purchase history, and gets defensive when asked.
- A site that has been running for years is suddenly, quietly available.
Pull the WHOIS history and the Wayback record. Then search the domain alongside the word “stolen”, which sounds crude and occasionally works.
Push, Transfer, and the 60-Day Lock That Ruins Deals
Two mechanisms move a domain. A registrar push moves it between accounts at the same registrar, often in minutes. An inter-registrar transfer uses an EPP auth code and takes 5 to 7 days, including a mandatory waiting period during which the seller can still cancel.
Here is the part that catches aged domain buyers specifically. ICANN imposes a 60-day transfer lock after any registration, transfer, or registrant change. No registrar overrides it. Asking nicely changes nothing.
Aged domains get caught at the drop or flipped soon after acquisition, which means the seller often physically cannot run an inter-registrar transfer at the moment you want to buy.
| Situation | What you can actually do |
| Domain was registered or transferred inside the last 60 days | Take a push at the seller’s registrar (locks do not block same-registrar pushes), or agree to hold the deal in escrow until the lock lifts. Escrow.com’s own terms cover this scenario by continuing to hold funds until the period expires |
| Domain is clear of the lock | Standard inter-registrar transfer. Seller unlocks, releases the auth code, you initiate at your registrar and approve |
| You plan to move the domain again after purchase | You will inherit a fresh 60-day lock. Factor that into your deployment timeline before you buy, not after |
| Transfer is pending and the clock is running | Do not accept in escrow until the domain is visibly in your account. “I sent it” is not delivery |
The two-clock problem deserves a name. Your domain escrow inspection window might run 3 to 5 days. An inter-registrar transfer can eat 7. Negotiate a longer window, or take the push.
The Inspection Window Checklist Aged Domain Buyers Actually Need
The inspection period exists so you can reject the domain before funds release. Most buyers use it to confirm the name is in their account, then click accept. For an aged domain, that is checking the wrapper and ignoring the contents.
Escrow.com’s terms are unforgiving here. Reject the domain and you have 10 calendar days to return it to the seller, or the funds release to them anyway, minus fees. This window is the only real leverage you will ever hold. Use all of it.
Verify inside the window, roughly in this order:
- Registrar and registrant confirmed. Your name, your account, WHOIS updated. Not a screenshot from the seller.
- Expiry date and who paid for it. Check the date on the record, not the seller’s word.
- Index status has not changed since you evaluated it. A domain that was indexed at negotiation and deindexed at handover is a different asset.
- The backlinks still resolve. Spot-check the referring pages that made the domain worth buying. If the seller stripped the content those links pointed to, the equity may be walking out the door with them.
- No outbound 301 was quietly installed during the negotiation period. This one is easy to miss and expensive.
- DNS, nameservers, and MX records are documented. Transfers do not carry DNS with them, and stale mail records have a habit of surviving longer than anyone expects.
- Search Console property released. If the seller still holds a verified property on that domain, they can still see your data. Ask them to remove it.
- Nothing new appears in a fresh WHOIS history pull. Ownership should have moved exactly once, to you.
Judging whether a domain’s history was ever worth anything is a separate discipline, covered properly in how to evaluate an aged domain. This checklist does something narrower: it confirms that the asset you evaluated is the asset that arrived.
Conditions Worth Writing Into the Escrow
Domain escrow terms are negotiable, and almost nobody negotiates them. On an aged domain purchase, the conditions written into the escrow record are worth more than the fee you paid for it.
Ask for these before funding. A legitimate seller shrugs and agrees.
- A written statement that the domain carries no active manual action, and confirmation they will share a Search Console screenshot on request.
- Registration paid through a specific date, so you are not inheriting a renewal bill in eleven days.
- No content removal, no nameserver changes, and no new redirects between agreement and handover.
- Cooperation on releasing any verified Search Console or analytics properties.
- An inspection window sized for the transfer method, not the platform’s default. Ask for 7 days if the domain is moving between registrars.
- Fee split stated explicitly. Silence here defaults to the buyer paying, which may be fine, but it should be a choice.
A seller who refuses all of these is telling you something. Listen.
Scams That Escrow Alone Will Not Stop
Domain escrow blocks the simple frauds, so the sophisticated ones route around it instead of through it. Most work by getting you to trust a link, or by moving the domain out of the seller’s hands before the money is real.
| Scam | The tell | What to do |
| Fake escrow clone site | A “helpful” link from the other party. The site looks flawless, has valid HTTPS, sometimes staffs a support line | Type the escrow provider’s address yourself. Every time. This single habit prevents the most costly loss in the category |
| Transfer for inspection | Buyer asks the seller to hand over the domain “just to verify” before paying | Every technical verification a buyer needs can be done without possession |
| Chargeback after delivery | Buyer pays through a reversible method outside escrow, receives the domain, then reverses the payment. PayPal offers no seller protection on intangible goods | This is the whole reason escrow exists. Do not step outside it |
| Overpayment refund | Buyer sends more than agreed and asks for the difference back. The original payment reverses later | Refuse partial refunds on any deal, always |
| Stolen domain, clean transfer | Below-market price, rushed timeline, recent WHOIS change | Provenance check before funding. Escrow will not do this for you |
When a Deal Goes Sideways
Recourse depends on how fast you move. Inside the domain escrow window you hold leverage. After release you are into registrar disputes and lawyers, and the odds fall away sharply.
| Stage | Route | Cost and realistic timeline |
| Inside the inspection window | Reject through the escrow platform, which mediates. Buyer gets refunded if the seller cancels the transfer | Days. This is the cheap outcome, which is why the window matters |
| Unauthorized transfer discovered | Contact both registrars immediately, then file under ICANN’s Transfer Dispute Resolution Policy | TDRP is free or low cost, designed for non-lawyers. Weeks to a few months |
| Trademark dispute over the name | UDRP proceeding | Roughly $1,500 in WIPO fees, around two months start to finish |
| Registrars uncooperative, high-value name | Litigation | Slow and expensive. Only rational when the domain is worth substantially more than the legal bill |
Report hijacking within hours rather than days. Registrars can lock a domain in place while they investigate, but only if it is still reachable.
Closing the Loop Between the Deal and the Asset
Domain escrow is a sequencing tool. It makes money and ownership change hands in the correct order, and it does that job well enough that the industry has quietly stopped thinking about it.
The thinking that still needs doing sits on either side. Before funding: does this person actually own what they are selling. During inspection: did the history I paid for survive the move. Neither question is the escrow agent’s job, and neither disappears because a 3.25% fee got paid. Once the name is in your account and clean, the acquisition story continues in buying an aged domain, and if you ever end up on the other side of the table, the mechanics look quite different from the seller’s side.
One last thing people forget. Set a calendar reminder for the day your own 60-day lock expires. Six weeks out that date feels arbitrary, and then one afternoon you will want to consolidate registrars and discover you cannot.
FAQ
Do I really need a domain escrow service, or is it overkill?
Above a few hundred dollars, with a counterparty you do not know, domain escrow stops being optional. The fee is small next to the downside. Below that threshold with a same-registrar push, plenty of people transact directly and never have a problem, though “never had a problem” is not the same as “was protected”.
How long does a domain escrow transaction take?
Budget 3 to 7 business days end to end for a domain escrow deal. A same-registrar push can compress that to a single day, while an inter-registrar transfer alone consumes 5 to 7 days because of the mandatory waiting period, and wire funding adds another 2 to 3 on the front.
Who pays the escrow fee, the buyer or the seller?
Whoever negotiates it. Buyers pay by default on most platforms, splits are common in broker deals, and professional sellers sometimes absorb the whole thing to keep a transaction moving. Just make sure the split is written down before funding.
Can domain escrow protect me if the domain turns out to have a Google penalty?
No, and this trips up a lot of first-time aged domain buyers. Domain escrow verifies that the WHOIS registrant changed. Nothing more. Penalty and spam history is something you diagnose before you agree a price, not something the escrow agent screens for.
What happens if the domain is stuck in the 60-day ICANN lock?
You take a push at the seller’s registrar instead, or the escrow provider continues holding the funds until the lock expires. Both are normal. What is not normal is a seller who fails to mention the lock until after you have funded.
Is marketplace escrow the same thing as a standalone domain escrow service?
Functionally similar, structurally different. Marketplace escrow comes bundled into the platform’s commission and only covers deals that originated there. A standalone domain escrow service exists for private transactions, where no platform stands between the two parties.
Should I accept the domain in escrow as soon as the seller says it was transferred?
Never on their word alone. Accept only when the domain is visibly in your registrar account, WHOIS reflects you as registrant, and your inspection checklist has cleared. Acceptance is irreversible, and once funds release, your leverage is gone.
References
- Escrow.com, “Fees and Calculator”
- Escrow.com, “Terms of Using the Escrow Platform”
- Escrow.com, “How Domain Name Escrow Works”
- ICANN, “Transfer Policy”
- ICANN, “Registrar Transfer Dispute Resolution Policy”
- NameExperts, “What is Domain Name Escrow and How Does it Work”
- DomainDetails, “Domain Fraud Prevention, Red Flags to Watch When Buying or Selling”
- WIPO, “Schedule of Fees under the UDRP”
- Namecheap, “Protect Domain Transactions with Escrow Services”









