This walkthrough covers retailer reliability signals, FTC and BBB frameworks, payment-fraud red flags and prevention, and the specific issue types a shopper is most likely to encounter at a major chain. Each section stands alone; skip to whichever is most relevant to your current question.
How a shopper assesses retailer reliability
Large national chains carry a baseline of institutional credibility that smaller or newer online sellers do not. The chain has a physical address in nearly every major metropolitan area of the country, a national complaints record, a publicly documented return policy and a years-long BBB history. That baseline matters when a reader is trying to decide whether to trust the platform with a payment method, a home address, or a prescription transfer.
But institutional size is not the same as immunity from fraud. The retailer's brand name is one of the most commonly spoofed in phishing campaigns, precisely because consumers trust it. A shopper who would immediately recognise a fake bank email may not look as closely at an email that uses a recognisable logo and an urgent tone about a pending order. The trust brief on this page addresses both sides: how to evaluate the chain itself, and how to spot impersonators.
FTC guidance on online shopping
The Federal Trade Commission's consumer resources offer several baseline recommendations that apply directly to shopping at any major online retailer. The FTC recommends using a credit card rather than a debit card for online purchases — not because debit cards are inherently unsafe, but because the Fair Credit Billing Act gives credit-card holders stronger dispute rights. A disputed credit-card charge pauses payment while the dispute is investigated; a disputed debit-card charge is a refund process that may take longer.
The FTC also recommends keeping confirmation emails for online purchases. At a chain with as many order-management permutations as this one — ship-to-home, Drive Up, same-day delivery, in-store pickup — a confirmation email is not just a receipt. It is the timestamped record that anchors any dispute about what was ordered, when it was scheduled, and what the agreed price was. If a Drive Up order never arrives or a ship-to-home shipment is delayed past the stated window, the confirmation email is the document that matters.
BBB framework for retail complaints
The Better Business Bureau maintains a complaint portal at bbb.org/online that accepts complaints about national retail chains. A BBB complaint does not carry the weight of a legal filing, but for a chain of this size the BBB record is a useful data point for shoppers researching whether a pattern of complaints exists around a specific issue type — say, a recurring Drive Up pickup failure or a gift-card balance discrepancy.
Filing a BBB complaint is also one of the escalation paths that sometimes produces a direct response from a retailer's executive-resolution team, which handles cases that frontline customer service has not resolved. Many consumers are unaware that this path exists. It is not a guarantee of resolution, but it is faster than waiting for a case to age through the standard customer-service queue.
Payment-fraud prevention
Payment fraud at a major retailer takes several forms. The most common is account takeover: a bad actor gains access to a shopper's account through a reused or phished password and uses the saved payment method and shipping address to place orders. The second most common is return fraud, which is primarily a problem for the retailer but occasionally creates incorrect charges on a shopper's card through a processing error.
The prevention steps that matter most are also the least glamorous. A strong, unique password — one not shared with any other site — eliminates most account-takeover risk on its own. Adding multi-factor authentication (MFA) eliminates almost all of the remainder. A shopper who uses a unique password and has MFA enabled is not a realistic target for a credential-stuffing attack, which is the automated method that accounts for the majority of retail account compromises.
The account orientation page on this hub covers the sign-in security posture in more detail, including what a legitimate MFA prompt should look like and how to recognise a fake one.
Recognising phishing targeting the chain's shoppers
Phishing emails targeting shoppers of this chain typically use one of several pretexts: a fake order confirmation for an order the recipient did not place, a fake package-delivery failure notice, a fake gift card award, or a fake account-security alert. All four variants share a common mechanic: they create urgency and direct the reader to click a link that leads to a credential-harvesting page styled to resemble the retailer's sign-in screen.
The most reliable check is the sender domain. The chain sends email only from addresses ending in target.com. Any email from a domain like target-order-update.net, target-security-alert.co, or any other variation is not from the retailer. The second check is the link destination: hover over any link in a suspicious email before clicking; if the URL does not begin with https://www.target.com or a verified subdomain, do not click it.
Issue resolution reference table
The table below maps common shopper-trust issue types to the right resolution channel and describes what a typical resolution path looks like.
| Issue type | What to check first | Typical resolution path |
|---|---|---|
| Unrecognised charge on card | Order history in account dashboard; check for pre-auth vs. capture timing | Contact card issuer for dispute; retailer for merchandise refund if charge is valid but item missing |
| Account takeover / unauthorised orders | Sign-in history, recent orders; check if email or password was changed | Change password immediately; enable MFA; contact retailer to reverse fraudulent orders |
| Phishing email using brand name | Sender domain; link destination on hover | Do not click; report to FTC at ReportFraud.ftc.gov; delete email |
| Unresolved order dispute | Confirmation email vs. order status in dashboard | Retailer customer service; escalate to BBB complaint if unresolved after two attempts |
| Gift card balance discrepancy | Balance lookup via retailer's gift card page; receipt scan | Retailer gift card support line; document all transactions before calling |
| Fake gift-card solicitation | Is the message asking you to buy gift cards and share codes? That is fraud. | Do not comply; report to FTC; the chain never requests gift card payments for any reason |
Gift-card fraud: a specific warning
Gift-card fraud is worth its own paragraph because it disproportionately affects shoppers at major chains whose cards are sold nationally. The scheme works like this: a bad actor — posing as a government agency, a utility company, or even the retailer's own customer service — calls or messages a target and tells them a fee or fine must be paid immediately using gift cards. They instruct the person to buy physical gift cards at the nearest warehouse location, scratch the code panel, and read or photograph the codes.
No legitimate entity — not the IRS, not a utility company, not the retailer, not this hub — will ever request payment in gift cards. Gift cards have no fraud protection once the code is disclosed. If someone asks you to pay with a gift card bought at a retail chain, that is fraud, regardless of what story accompanies the request.