malinandgoetz.com

HTML metadata

Title: skincare you trust+scents you love. | (MALIN+GOETZ)
Description: products designed to fit into your life. for every skin type, tone + gender. - MALIN+GOETZ is guided by the philosophy of less, but better. our mission is to design high quality, easy-to-use skincare, fragrances....
Language: en
Canonical: https://www.malinandgoetz.com/

Open Graph

url: https://www.malinandgoetz.com/
title: skincare you trust+scents you love. | (MALIN+GOETZ)
description: (MALIN+GOETZ) apothecary and lab featuring face, body, and hair products made with natural ingredients for Women and Men. Founded and made in New York.

Technology

CMS: Gatsby

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (10)

d21m4dsqdd3b9h.cloudfront.net×14
cdn.cookielaw.org×3
cdn.dashhudson.com×2
connect.nosto.com×2
maps.googleapis.com×2
vice-prod.sdiapi.com×2
www.googletagmanager.com×2
cdn-widgetsrepository.yotpo.com×1
static.klaviyo.com×1
www.facebook.com×1

Social

Contact

Address: 330 Seventh Ave, Floor 21, 10001, New York, New York, US

Registration

Registrar

Nom-iq Ltd. dba COM LAUDE

Created

2002-10-14

Expires

2026-10-14 148 days left

Updated

2025-09-14

Name servers

dns1.comlaude-dns.com
dns2.comlaude-dns.net
dns3.comlaude-dns.co.uk
dns4.comlaude-dns.eu

DNS records live

NS

dns1.comlaude-dns.com
dns2.comlaude-dns.net
dns3.comlaude-dns.co.uk
dns4.comlaude-dns.eu

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 9 TXT records

klaviyo-site-verification=TpbYR7
klaviyo-site-verification=X4Nr29
google-site-verification=6XMAhy-hS0H5Fy0FqVsDBI6K_8unQ1D3S87UL81BTKI
google-site-verification=ek8X82Ejk_cPgO0ZceLG5eevCAthx-HM13ztq847Oxk
klaviyo-site-verification=TqeQkQ
docusign=8e330705-ffc5-4903-8034-f3d27004032b
MS=ms41067548
google-site-verification=qGEwvvQhE1Uzo4Ip6wGBuYPjTWaiK6qRHSWFDzATzk4
_globalsign-domain-verification=9gjTOgOwNgUIPRId0RRgEFtiTSNwAWcC72voIoue27

Email authentication partial

SPF

v=spf1 a mx include:smtp.groovehq.com include:spfus.rocketseed.com include:_spf.google.com include:mail.zendesk.com include:sendgrid.net ip4:38.140.254.226 ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

Show 6 DKIM selectors

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuT7qC1a0l0j5EqbyyDU3pvkwZC+2mnH0gq0U22ZEtX85OI7/RKl1yX9rhpZRBHL9b55c7zVWMvC357…
google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TxmIcz+C5XsFo9eB9nscPYyfD+RkpS41gfd3deW/K2pUNKPQwNKEYPQ+eI9aZcUsVQZJ27uPqLTBz…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Kn2ctYM+arwI5hGgEwa5ZqXW2QHowtJoSctiJSdFDEIPig3Ua7H1dAuOTyKqJAvNmiwevrc65tXnZ1OC4…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxOdyHVIBBTxJXTsyQIoKfNnAVN/2P/J3FgN5rY9My8sHvehxkoKEx4k/cUP4xbXBAy1qNzR91uApOW3UV…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

R13

from 2026-03-22 to 2026-06-20

Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.malinandgoetz.com/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options

findings

CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: connect-src *.tiktok.com *.clarity.ms *.aptrinsic.com *.googleapis.com likeshop.me acsbap.com acsbapp.com *.doubleclick.net *.cloudflare.com *.likeshop.me *.acsbapp.com *.cdnbasket.net *.cdnwidget.com *.bouncex.net *.knocommerce.com *.grin.co *.getletterpress.com *.agkn.com *.malinandgoetz.com tte-prod.telemetry.vaultdcr.com *.vaultdcr.com *.adroll.com *.adnxs.com *.pinterest.com *.cookielaw.org https://www.malinandgoetz.com/ https://www.malinandgoetz.com/* *.shopmy.us api.shopmy.us *.sdiapi.com *.sdiapi.net *.nosto.com analytics.google.com *.klaviyo.com www.google.com *.cloudfront.net *.googleadservices.com *.stripe.com *.yotpo.com *.google-analytics.com *.malinandgoetz.co.uk https://www.malinandgoetz.co.uk/ https://www.malinandgoetz.co.uk/* https://eu.malinandgoetz.com/* https://eu.malinandgoetz.com/ *.eu.malinandgoetz.com 'self' https://www.malinandgoetz.ca/ https://www.malinandgoetz.ca/* *.malinandgoetz.ca https://www.malinandgoetz.com.hk/ https://www.malinandgoetz.com.hk/* *.malin
strict-transport-security: max-age=31557600
content-security-policy-report-only: font-src use.fontawesome.com maxcdn.bootstrapcdn.com fonts.gstatic.com *.fontawesome.com *.stripe.com *.stripecdn.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.link.com *.yotpo.com *.googleapis.com *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.yotpo.com swellrewards.com *.swellrewards.com 'self' www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com *.nosto.com *.nos.to *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors *.stripe.com stripe.com *.link.com 'self'; frame-

Links to (5)

Linked from (2)

malinandgoetz.co.uk×1
runvenicebeach.com×1