datev.de

HTML metadata

Title: DATEV | Führend in Software, Service & Wissen.
Description: Unterstützung für Steuerberatung, Wirtschaftsprüfung, Rechtsberatung, Unternehmen & den öffentlichen Sektor.
Language: de
Canonical: https://www.datev.de/web/de

Open Graph

title: DATEV | Führend in Software, Service & Wissen.
description: Unterstützung für Steuerberatung, Wirtschaftsprüfung, Rechtsberatung, Unternehmen & den öffentlichen Sektor.

Technology

Cookie consent

OneTrust

Third-party hosts loaded (3)

datev.scene7.com×15
assets.adobedtm.com×2
cdn.cookielaw.org×1

Social

Registration

Updated

2026-04-21

Name servers

ns01.datev.de.
ns02.datev.com.

DNS records live

NS

ns01.datev.de
ns02.datev.com

MX

0 cdxmailin01.datev.de
0 cdxmailin02.datev.com

TXT

jamf-site-verification=Wq3I6ioOWAoilFKc_reM3Q
hcp-domain-verification=1106efa57eaa39bcb3911b49a40ba18e2667cdc4b8b9ec034ec86e9023419708

Email authentication strong

SPF

v=spf1 include:_spf.datev.de ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;rua=mailto:dmarc-a@reports.datev.de

policy: quarantine

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAVO6Ux4I/Ic0nBnpV7gAZ70LkHKXNTjgtq/RW4olVsnn3n6RSZqQIyze8IcsNf4T96fbo16slB1X0NtkP…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCxeNI6N5nqfW+p6ldo5QN6YQ1Kss54nBp2AD0+7WcQ/tsw47fj5fdixT/olsN4ZA+lGx0fTqyhJ1zOyXEiiv1mD8…

selectors probed

Certificate (current)

Thawte TLS RSA CA G1

from 2026-02-10 to 2027-03-11

Expires in 296 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.datev.de/web/de

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: origin-when-cross-origin
x-frame-options: deny
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(self), usb=(), web-share=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), hid=(), idle-detection=(), interest-cohort=(), serial=(), unload=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://localhost:58456 *.ads.linkedin.com *.bazaarvoice.com *.datev.com *.datev.de *.grafana.net *.scene7.com *.onetrust.com adobedc.demdex.net api.ipify.org apps.bazaarvoice.com assets.adobedtm.com connect.facebook.net dtveg.sc.omtrdc.net edge.adobedc.net eu-api.friendlycaptcha.eu faro-collector-prod-eu-west-2.grafana.net googleads.g.doubleclick.net px.ads.linkedin.com www.redditstatic.com pixel-config.reddit.com alb.reddit.com salesviewer.org snap.licdn.com www.datev-magazin.de www.facebook.com www.google.com www.google.de www.googletagmanager.com ldgnrtn.com ; media-src 'self' blob: *.scene7.com ; base-uri 'self'; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=31557600
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site