nuvisan.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-09 · ok HTTP/1.1 200 5260 ms crawled 2026-05-09

US · 150.171.109.100 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Nuvisan | The Science CRO

Language

Canonical

https://www.nuvisan.com/en/

Translations

Open Graph

url: https://www.nuvisan.com
title: Nuvisan | The Science CRO

Technology

CDN: Azure Front Door

Analytics

Google Tag Manager

Cookie consent

Usercentrics

Third-party hosts loaded (3)

static.cloud.coveo.com×5
app.usercentrics.eu×1
www.googletagmanager.com×1

Social

Registration

Registrar

InterNetX GmbH

Created

2009-07-29

Expires

2026-07-29 71 days left

Updated

2025-07-03

Name servers

haley.ns.cloudflare.com
yoxall.ns.cloudflare.com

DNS records live

NS

haley.ns.cloudflare.com
yoxall.ns.cloudflare.com

MX

10 nuvisan-com.mail.protection.outlook.com

TXT

Show 6 TXT records

k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9kzX0fm87jClODmJQbUFkf5bX7mL8KjS3hcPI1aZLezwXjuq3z6pt+H6Lwt2Ov080iTeh7JHg/wTI6FKk/RWZIIJICkjTjqyFXVFp/wZjvvSLrfS8RW8eZOZCQye0pEQsSk/of91rgtkxAEke738xKbudnkpEI8aHEj7odL/RqwIDAQAB
pardot899681=b3e3fd557342b7a3cd7c22f3af292e4a2ff9b379750032e684b8321f3cf2216d
MS=31196A4EB1A09AA93C83ADCF6AEA129DE39F37CF
MS=ms62508835
docusign=a10e911c-94b2-4c73-a43b-caec742a39dc
google-site-verification=2S9P2Mho2Xur6j4_u4Gt13KtCkRNvmdxqWLw8wJrciw

Email authentication partial

SPF

v=spf1 mx a:mailrelay.nuvisan.com a:mail2.nuvisan.com a:mail3.nuvisan.com include:spf.mailjet.com include:aspmx.pardot.com include:spf.protection.outlook.com include:spf.crsend.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@nuvisan.com; ruf=mailto:dmarc@nuvisan.com; fo=1

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBxo+c7ZircYOvm65x+T+C1MKXnJ8vYO/fJlI5HoEyDXSo/JDnNBROmeu0BhzpgjGCeeWnFyqps6Gx…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-01-21 to 2027-01-25

Expires in 251 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.nuvisan.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(self), camera=(), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' data: *.google.com *.my.onetrust.com *.cookielaw.org *.googleapis.com *.gstatic.com *.onetrust.com *.g.doubleclick.net *.analytics.google.com *.cloud.coveo.com *.google-analytics.com *.googletagmanager.com *.fusebox.fm;script-src 'self' 'unsafe-eval' 'unsafe-inline' *.cookielaw.org *.cloud.coveo.com *.google-analytics.com *.googletagmanager.com *.g.doubleclick.net *.googleapis.com google.com *.google.com *.gstatic.com *.cloudflare.com *.cloudfront.net *.stripe.com *.googleadservices.com *.googlesyndication.com snap.licdn.com *.hs-scripts.com *.hs-banner.com *.hscollectedforms.net *.hs-analytics.net *.hsadspixel.net *.hubspot.com *.hsforms.net *.facebook.net mfpembedcdnwus2.azureedge.net *.fusebox.fm *.usercentrics.eu *.vimeo.com recaptcha.net *.recaptcha.net;style-src 'self' 'unsafe-inline' *.cloud.coveo.com *.googleapis.com *.gstatic.com cdnjs.cloudflare.com mfpembedcdnwus2.azureedge.net; img-src 'self' data: https:; connect-src 'self' data: https: *
strict-transport-security: max-age=31536000; includeSubDomains

Links to (3)

Linked from (1)

has-event.com×1