kaiahealth.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 297 ms crawled 2026-05-19

US · 141.193.213.21 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title

Kaia Health: Digitale Therapien bei COPD und Rückenschmerzen

Description

Zertifizierte Medizinprodukte mit digitalen Therapien bei Rückenschmerzen & COPD. Wir helfen dir, deine Symptome von zuhause aus zu lindern!

Language

Canonical

https://kaiahealth.de/

Translations

Open Graph

url: https://kaiahealth.de/
title: Kaia Health: Digitale Therapien bei COPD und Rückenschmerzen
locale: de_DE
site name: Kaia Health EU
description: Zertifizierte Medizinprodukte mit digitalen Therapien bei Rückenschmerzen & COPD. Wir helfen dir, deine Symptome von zuhause aus zu lindern!

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Matomo

Cookie consent

Cookiebot

Third-party hosts loaded (2)

consent.cookiebot.com×1
kaiahealth.matomo.cloud×1

Social

Contact

Email

Phone

+4989904226740

Registration

Updated

2026-02-23

Name servers

ns-1224.awsdns-25.org.
ns-1547.awsdns-01.co.uk.
ns-457.awsdns-57.com.
ns-929.awsdns-52.net.

DNS records live

NS

ns-1224.awsdns-25.org
ns-1547.awsdns-01.co.uk
ns-457.awsdns-57.com
ns-929.awsdns-52.net

MX

10 mxext1.mailbox.org
10 mxext2.mailbox.org
20 mxext3.mailbox.org

Verified for

Apple
Google

Email authentication strong

SPF: v=spf1 include:mailbox.org include:147829862.spf06.hubspotemail.net
no all qualifier
DMARC: v=DMARC1; p=reject;
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-27 to 2026-07-26

Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://kaiahealth.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self' data: blob: ws: 'unsafe-inline' 'unsafe-eval' *.kaiahealth.com kaiahealth.com *.kaia-health.com *.kaiahealth.de kaiahealth.de startkaia.de *.cookiebot.com *.salesloft.com *.hs-scripts.com *.googletagmanager.com *.hs-analytics.net *.hs-banner.com *.hsadspixel.net *.hsleadflows.net *.doubleclick.net *.google.com *.google.de *.hubspot.com *.hubapi.com *.facebook.net *.licdn.com *.linkedin.com *.facebook.com *.google-analytics.com *.cloudfront.net *.hsappstatic.net *.wpengine.com *.hsforms.net *.hsforms.com *.glassdoor.com *.gravatar.com *.sumo.com sumo.com *.greenhouse.io *.ads-twitter.com *.bing.com *.clarity.ms *.twitter.com t.co *.adsymptotic.com *.luckyorange.com *.googleapis.com *.matomo.cloud *.gstatic.com *.googleadservices.com *.googlesyndication.com google.com; frame-ancestors 'self' *.hubspot.com *.greenhouse.io
strict-transport-security: max-age=63072000; includeSubDomains; preload;