optro.ai

HTML metadata

Title: Optro | AI-Powered GRC Software
Description: Transform how you manage risk with Optro (formerly AuditBoard). The AI-powered GRC platform trusted by over 50% of the Fortune 500. Learn more.
Language: en
Canonical: https://optro.ai

Open Graph

url: https://optro.ai
title: Optro | AI-Powered GRC Software
description: Transform how you manage risk with Optro (formerly AuditBoard). The AI-powered GRC platform trusted by over 50% of the Fortune 500. Learn more.

Technology

CDN: Netlify
CMS: Next.js

Third-party hosts loaded (5)

cdn.sanity.io×23
rmkwjgaf.api.sanity.io×2
cdn.getsmartcontent.com×1
dev.visualwebsiteoptimizer.com×1
js.qualified.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2022-01-02

Expires

2030-01-02 1324 days left

Updated

2026-02-15

Name servers

ns-1061.awsdns-04.org
ns-1970.awsdns-54.co.uk
ns-198.awsdns-24.com
ns-756.awsdns-30.net

DNS records live

NS

ns-1061.awsdns-04.org
ns-1970.awsdns-54.co.uk
ns-198.awsdns-24.com
ns-756.awsdns-30.net

MX

1 smtp.google.com

TXT

Show 5 TXT records

notion-domain-verification=cwOJbRJGYDWiwFWn74x21Z5hc9RWqNTMeXRDlZiR6z1
anthropic-domain-verification-fppabg=FhTX0Od4zjc9K4lCRfdkHELNO
google-site-verification=hsxUxWlwo8bUTp0SI3dwIT9JArUITwABqPHorbtCPyA
google-site-verification=qIyoMlhy6vUtbC6kRs98lq4pO9RIQzRuAk7hTpa_SMo
google-site-verification=rO2F-lsL0VoI0JjgxU3gHqxfgGU2YAxBwXlOI3KRJNU

Email authentication strong

SPF

v=spf1 include:_spf.optro_ai._d.easydmarc.pro -all

strict (-all)

DMARC

v=DMARC1;p=reject;rua=mailto:d01eb2ad78@rua.easydmarc.us,mailto:sre-team@auditboard.com;ruf=mailto:d01eb2ad78@ruf.easydmarc.us,mailto:sre-team@auditboard.com;fo=1

policy: reject (enforced)

DKIM

google: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXj4aUybMs7Hxal2RSupvk0rvJzIHaP53lxTffcrB5eijwQ31GAWHsCtEp2xGO9nY36O3Rkpw0ZDweTd…

selectors probed

Certificate (current)

E8

from 2026-04-21 to 2026-07-20

Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://optro.ai/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.auditboard.com *.optro.ai *.42chat.com *.doubleclick.net *.google.com *.googlesyndication.com *.greenhouse.io *.marketo.com *.vidyard.com https://www.facebook.com https://www.youtube.com; connect-src 'self' https: *.auditboard.com *.optro.ai wss://*.qualified.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https: *.auditboard.com *.optro.ai *.cloudfront.net *.google-analytics.com *.googleapis.com *.marketo.com *.marketo.net *.ubembed.com https://optimize.google.com https://www.googleanalytics.com https://www.googleoptimize.com https://www.googletagmanager.com https://www.youtube.com https://use.typekit.net; frame-ancestors 'self' *.auditboard.com *.optro.ai https://*.sanity.io http://localhost:*; frame-src 'self' *.auditboard.com *.optro.ai https://app.netlify.com https://app.qualified.com https://app-ab39.marketo.com *.googletagmanager.com *.vidyard.com *.visualwebsiteoptimizer.com https://www.google.com https://excon-shell-prod.web.app https://app.vwo.
strict-transport-security: max-age=31536000