kvistsolutions.com — domain check, WHOIS, DNS & reputation

HTML metadata

Title

Kvist Solutions

Description

Kvist is a sustainability platform for the construction and property industry. We help you track and report on sustainability in your projects and portfolio.

Language

en

Canonical

https://www.kvistsolutions.com/

Translations

en
no

Open Graph

url: https://www.kvistsolutions.com/
title: Kvist Solutions
site name: Kvist Solutions | Kvist Solutions
description: Kvist is a sustainability platform for the construction and property industry. We help you track and report on sustainability in your projects and portfolio.

Technology

CDN: Vercel

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×1
fonts.gstatic.com×1

Social

Registration

Registrar

Domeneshop AS dba domainnameshop.com

Created

2020-10-14

Expires

2026-10-14 131 days left

Updated

2025-11-03

Name servers

benedict.ns.cloudflare.com
jessica.ns.cloudflare.com

DNS records live

NS

benedict.ns.cloudflare.com
jessica.ns.cloudflare.com

MX

10 kvistsolutions-com.mail.protection.outlook.com

Verified for

1Password
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:_spf.domeneshop.no include:8584618.spf03.hubspotemail.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:f914ffb846ad4e85b5c5fd8746754fd4@dmarc-reports.cloudflare.net;

policy: reject (enforced)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R13

from 2026-05-01 to 2026-07-30

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.kvistsolutions.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-src 'self' https://forms.hsforms.com; worker-src 'self' blob:; connect-src 'self' https://l2jreiyh.api.sanity.io https://l2jreiyh.apicdn.sanity.io https://status.kvistsolutions.com https://forms.hsforms.com https://eu.i.posthog.com https://plausible.io; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https://cdn.sanity.io https://forms-na1.hsforms.com; manifest-src 'self'; media-src 'self'; object-src 'none'; script-src 'self' 'nonce-r/gQeTjHjngdqGcwvfFhCg=='; script-src-elem 'self' https://js.hsforms.net https://eu-assets.i.posthog.com *.posthog.com 'nonce-r/gQeTjHjngdqGcwvfFhCg=='; script-src-attr 'unsafe-inline'; style-src 'self' 'nonce-r/gQeTjHjngdqGcwvfFhCg=='; style-src-elem 'unsafe-inline' https://fonts.googleapis.com; style-src-attr 'unsafe-inline'; base-uri 'self'; form-action 'self' https://forms.hsforms.com; frame-ancestors 'none'; upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin

Links to (2)

linkedin.com×1
hubspot.com×1

Linked from (1)

kiiltoventures.com×1