mirova.com

HTML metadata

Title

Mirova: Where Investing Meets Sustainability

Description

Mirova is an asset managerment company offering investment solutions that combine financial performance with environmental and social impact.

Language

en

Canonical

https://www.mirova.com/en

Translations

en
fr

Open Graph

url: https://www.mirova.com/en
title: Mirova: Where Investing Meets Sustainability
image:url: https://www.mirova.com/sites/default/files/styles/home_section/public/2019-04/mirova-kv-generique-v09-hd-rgb.jpg
site name: Mirova
description: Mirova is an asset managerment company offering investment solutions that combine financial performance with environmental and social impact.

Technology

CDN: Cloudflare
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (2)

code.jquery.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2009-10-14

Expires

2026-10-14 147 days left

Updated

2025-10-10

Name servers

ns.domainnetwork.se
ns2.domainnetwork.se
ns3.domainnetwork.com

DNS records live

NS

ns.domainnetwork.se
ns2.domainnetwork.se

MX

0 mail-in.protection.bpce-it.fr

TXT

Show 12 TXT records

WMFje5R0Lp2wu5vAgSg8n8sfEd2h6NvV3CeAnfi4ghvHA/y2nazHmBWrKPXAvN1SmGNqGc3Y4+2lPune8bviaQ==
MS=ms13845456
00D20000000NrFu=1TBaT00000002OR
00D7Q000004SD30=1TBTx00000002oD
00Dbd000004MQKv=1TBbd0000000ACH
0mr6740szrg4gm19swj19srw1mpl33ds
_871y4gc1b3p44bb8hn165qz4xkkon7u
_h6sc608y065vaa43rj8ypx009qt5fi8
_qzvesd3vfnbcnbflkxpwixevo4v98z4
docusign=efdd9277-5d7d-40d4-a8c0-9a12076459f3
google-site-verification=1p5xbwB2isYzIjY-go624eALqcz1VBK5Y3rdCVP4A_s
google-site-verification=3XQfd75jsDnSMxcVytZ8EKjT8jy9Wi5GI2YaT3ofFA4

Email authentication strong

SPF: v=spf1 include:_spf.bpce-it.fr include:spf.natixis.com include:amazonses.com ~all
softfail (~all)
DMARC: v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:2478bdc8@inbox.eu.redsift.cloud; ruf=mailto:2478bdc8@inbox.eu.redsift.cloud; adkim=s; aspf=s; fo=0; rf=afrf; ri=3600
policy: reject (enforced) · sp=reject
DKIM: no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2026-03-04 to 2026-09-19

Expires in 122 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.mirova.com/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), geolocation=(), fullscreen=(), autoplay=(), camera=(), display-capture=()
x-content-type-options: nosniff
content-security-policy: frame-src 'self' https://ppu-med.am.natixis.com/ https://ppu.am.natixis.com/ https://consent.cookiebot.com https://consentcdn.cookiebot.com/ https://www.google.com/ https://www.youtube.com/ https://www.googletagmanager.com/ https://www.gstatic.com/ https://cdn.jsdelivr.net https://newassets.hcaptcha.com https://mirova.libcast.com; object-src 'none'; script-src 'self' 'unsafe-eval' https://ppu-med.am.natixis.com/ https://ppu.am.natixis.com/ https://consent.cookiebot.com https://consentcdn.cookiebot.com/ https://www.google.com/ https://www.youtube.com/ https://www.googletagmanager.com/ https://www.gstatic.com/ https://cdn.jsdelivr.net https://cdn.matomo.cloud/ https://cdnjs.cloudflare.com https://code.jquery.com https://unpkg.com; script-src-attr 'self' 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://consent.cookiebot.com https://consentcdn.cookiebot.com https://hcaptcha.com https://cdn.matomo.cloud/ https://cdn.jsd
strict-transport-security: max-age=15552000; includeSubDomains; preload