indexo.dev

msdprivacy.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1688 ms crawled 2026-05-18

US · 192.0.66.136 · AS2635 Automattic, Inc

Reputation 100/100

Classifying

HTML metadata

Title
PRIVACY STATEMENT - MSD Privacy
Language
en-US
Canonical
https://www.msdprivacy.com/

Open Graph

url
https://www.msdprivacy.com/
title
PRIVACY STATEMENT - MSD Privacy
locale
en_US
site name
MSD Privacy
description
In 2001, Merck & Co., Inc., Rahway, NJ, USA, known as “MSD”, “our company”, “we”, “us”, “our,” which includes but is not limited to the covered entities: Merck Sharp & Dohme LLC, Rahway, NJ, USA, and Intervet, Inc.; established a Privacy Office to develop and oversee a global privacy program for our operations around the […]

Technology

Server
nginx
CMS
WordPress
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • cdn.cookielaw.org×2
  • gmpg.org×1
  • privacyseals.bbbprograms.org×1

Social

Registration

Registrar
MarkMonitor Inc.
Created
2018-06-08
Expires
2027-06-08 384 days left
Updated
2025-05-07
Name servers
  • ns-1083.awsdns-07.org
  • ns-2027.awsdns-61.co.uk
  • ns-411.awsdns-51.com
  • ns-578.awsdns-08.net

DNS records live

NS
  • ns-1083.awsdns-07.org
  • ns-2027.awsdns-61.co.uk
  • ns-411.awsdns-51.com
  • ns-578.awsdns-08.net
TXT
  • google-site-verification=O7c7T2cUY5UHNyP2ruEAIY9c4U44iuNu_QilBF7NGZk
  • mmf2zghb58yzh4cc41m0555xytp8gqwy
  • 8jxrgq8l9qbtjtnkpwwwch506bl2k1cl

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-02 to 2026-07-01
Expires in 43 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.msdprivacy.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https:; frame-src 'self' https:; frame-ancestors 'self'; img-src 'self' https: data:; media-src 'self' https: data: blob:; object-src 'none'; font-src 'self' https: data:; default-src 'self' https: wss:; base-uri 'none';
strict-transport-security
max-age=31536000

Links to (5)

Linked from (41)