aveneusa.com

HTML metadata

Title

Gentle Skin & Body Care | Avène USA

Description

Welcome to the Avène USA official site! Explore Avène products and regimens for all skin types, take our skin analysis quiz, and learn about skincare 101.

Language

en

Canonical

https://www.aveneusa.com/

Translations

en ×9
es ×7
fr ×6
de ×3
ru ×3
hr ×2
nl ×2
pt ×2
zh ×2
bg
cs
da
el
fi
it
pl
ro
sl
sr
sv
th
tr
vi

Technology

CDN: Fastly
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (30)

www.googletagmanager.com×3
www.eau-thermale-avene.be×2
www.eau-thermale-avene.ch×2
apps.bazaarvoice.com×1
cdn.dashsocial.com×1
d2jjzw81hqbuqv.cloudfront.net×1
kz.eau-thermale-avene.com×1
script.crazyegg.com×1
static.klaviyo.com×1
static.myshlf.us×1
static.zdassets.com×1
www.avene.co.uk×1
www.avene.com.au×1
www.avene.it×1
www.aveneindia.com×1
www.eau-thermale-avene.at×1
www.eau-thermale-avene.ba×1
www.eau-thermale-avene.bg×1
www.eau-thermale-avene.by×1
www.eau-thermale-avene.cl×1
www.eau-thermale-avene.co×1
www.eau-thermale-avene.co.nz×1
www.eau-thermale-avene.co.th×1
www.eau-thermale-avene.co.za×1
www.eau-thermale-avene.com×1
www.eau-thermale-avene.com.ar×1
www.eau-thermale-avene.com.br×1
www.eau-thermale-avene.com.hr×1
www.eau-thermale-avene.com.py×1
www.eau-thermale-avene.com.tr×1

Social

Contact

Email

Registration

Registrar

GoDaddy.com, LLC

Created

2003-06-27

Expires

2026-06-27 23 days left

Updated

2025-09-10

Name servers

ns31.domaincontrol.com
ns32.domaincontrol.com

DNS records live

NS

ns31.domaincontrol.com
ns32.domaincontrol.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

klaviyo-site-verification=Mi8VUp

Email authentication partial

SPF

v=spf1 include:spf.mandrillapp.com include:_spf.google.com include:mail.zendesk.com ip4:108.166.20.192 include:spf.mtasv.net include:customers.clickdimensions.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2KyiaOU51wDb+4qvuUyqGMb8QtthCVoLlCZ1IR/lda7jIfNG35cZYPa7YFgNPMNhRU8ldhFdnK46l3LNjp…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGgT33Nmg4qfaK+LUCa1458gT2SPMP3q3jeI2ArcAMFIHNCdaYE+a4kKtIA/K6mNY9knuRGlHVI57yHCQsrWhLwn…

selectors probed

Certificate (current)

R12

from 2026-05-07 to 2026-08-05

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.aveneusa.com/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing Content Security Policy
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-security-policy-report-only: font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.squarecdn.com *.googleapis.com *.narvar.com *.narvar.qa data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de api.bazaarvoice.com stg.api.bazaarvoice.com 'self' www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com core.spreedly.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com ge