gopay.com

HTML metadata

Title

Payment gateway that helps you earn more | GoPay

Description

GoPay payment gateway for online stores and businesses. Fast integration, modern payment methods, and reliable support that truly helps.

Language

en

Canonical

https://www.gopay.com/en/

Translations

cs
en
hu
pl
sk

Open Graph

url: https://www.gopay.com/en/
title: Payment gateway that helps you earn more | GoPay
site name: GoPay
description: GoPay payment gateway for online stores and businesses. Fast integration, modern payment methods, and reliable support that truly helps.

Technology

Server: Apache
CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (5)

static1.gopaycdn.com×9
use.typekit.net×3
site.gopaycdn.com×2
p.typekit.net×1
www.googletagmanager.com×1

Social

Registration

Registrar

Gransy, s.r.o.

Created

1998-09-04

Expires

2026-09-03 106 days left

Updated

2025-08-26

Name servers

ns-1141.awsdns-14.org
ns-1564.awsdns-03.co.uk
ns-212.awsdns-26.com
ns-766.awsdns-31.net

DNS records live

NS

ns-1141.awsdns-14.org
ns-1564.awsdns-03.co.uk
ns-212.awsdns-26.com
ns-766.awsdns-31.net

MX

1 smtp.google.com

Email authentication partial

SPF

v=spf1 include:_awsp.gopay.com include:_awst.gopay.com include:_awsd.gopay.com include:_awse.gopay.com include:_th.gopay.com include:_spf.google.com include:_spf.salesforce.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:re+5ef8b7d5a3d9@inbound.dmarcdigests.com

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDKoNJAAeawsRRjgoh01e37fBy7sZ5E7g8VizZxkVDLhNQmmb5UKBJJegLefVQSvpsVq4lbFw/BKe9mp…
google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u9eMTUPvQvVPiGvMTrUuMcX7F3rpb4hDoUQ8HhbicHYRlteP3oRosoyvr/C/BAdBSkDNwy43RKeso…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-02-18 to 2027-03-20

Expires in 304 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gopay.com/en/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), midi=(), camera=(), usb=(), magnetometer=(), accelerometer=(), gyroscope=(), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' *.gopay.cz gopay.com *.gopay.com goshop.com *.google-analytics.com stats.g.doubleclick.net *.google.com *.google.cz *.googletagmanager.com *.smartsuppcdn.com *.gopaycdn.com *.gopaycdn-test.com *.hotjar.com *.hotjar.io wss://*.hotjar.com *.bing.com *.clarity.ms; connect-src 'self' 'unsafe-inline' 'unsafe-eval' *.gopay.cz gopay.com *.gopay.com goshop.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.google.com *.google.cz *.googleapis.com cdn.getbeyond.io *.googletagmanager.com *.hostedstatus.com *.leady.com *.crazyegg.com *.hotjar.com *.hotjar.io wss://*.hotjar.com googleads.g.doubleclick.net *.googlesyndication.com *.smartsuppchat.com *.smartsuppcdn.com *.smartsupp.com wss://*.smartsupp.com *.gopaycdn.com *.gopaycdn-test.com *.clarity.ms *.licdn.com *.linkedin.com *.seznam.cz *.bing.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.gopay.cz gopay.com *.gopay.com goshop.com *.gstatic.com *.google-analytics.com stats.g.d
strict-transport-security: max-age=31536000; includeSubdomains; preload

Links to (9)

Linked from (2)

fedia-promo.cz×1
casinoohnelizenzdeutschland.com×1