indexo.dev

mvoplatform.nl

.nl crawl

First seen 2026-05-13 · Last seen 2026-05-19 · ok HTTP/1.1 200 504 ms crawled 2026-05-19

US · 172.67.70.218 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Home - MVO Platform
Language
nl-NL
Canonical
https://www.mvoplatform.nl/
Translations
  • en-gb
  • nl-nl

Open Graph

url
https://www.mvoplatform.nl/
title
Home
locale
nl_NL
site name
MVO Platform
description
Een sterke overheid stimuleert bedrijven om maatschappelijk verantwoord te ondernemen én roept hen ter verantwoording bij schendingen.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Plausible
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • plausible.io×2
  • fonts.gstatic.com×1

Social

Contact

Phone

Registration

Registrar
Metaregistrar B.V.
Created
2007-05-21
Updated
2025-05-12
Name servers
  • lee.ns.cloudflare.com
  • liz.ns.cloudflare.com

DNS records live

NS
  • lee.ns.cloudflare.com
  • liz.ns.cloudflare.com
MX
  • 10 smtp1.somo.nl
  • 10 smtp2.somo.nl

Email authentication strong

SPF
v=spf1 include:mailgun.org +mx -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=none; adkim=r; aspf=r; pct=100;
policy: reject (enforced) · sp=none
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-05-12 to 2026-08-10
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.mvoplatform.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src https: data: blob:; script-src 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'unsafe-inline' https: data:; img-src data: https: blob: android-webview android-webview-video-poster:; font-src data: https:; connect-src * data:; media-src https: data: blob:; worker-src https: blob:; frame-src 'self' https: blob:; frame-ancestors 'self'; upgrade-insecure-requests
strict-transport-security
max-age=15552000

Links to (5)

Linked from (3)