ppf.eu
HTML metadata
Technology
- CDN
- Vercel
- CMS
- Next.js
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (3)
- www.datocms-assets.com×20
- www.google.com×1
- www.googletagmanager.com×1
Social
Contact
- Address
- Evropská 2690/17, 16000, Prague, CZE
DNS records live
- NS
-
- ns1-05.azure-dns.com
- ns2-05.azure-dns.net
- ns3-05.azure-dns.org
- ns4-05.azure-dns.info
- MX
-
- 10 ppf-cz.mail.protection.outlook.com
- TXT
-
v=spf1 include:spf.protection.outlook.com include:spf.smartemailing.cz -all
Certificate (current)
R12
Expires in 36 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
DENY- permissions-policy
geolocation=(self), sync-xhr=(self), fullscreen=(self "https://*.youtube.com" "https://*.vimeo.com")- x-content-type-options
nosniff- content-security-policy
default-src 'self' blob: data: 'unsafe-inline' 'unsafe-eval' https://www.datocms-assets.com https://*.mux.com https://www.googletagmanager.com https://*.google-analytics.com https://stats.g.doubleclick.net https://*.hotjar.com:* http://*.hotjar.io https://*.hotjar.io wss://*.hotjar.com https://*.infogram.com https://player.vimeo.com https://*.vimeocdn.com https://*.youtube.com https://youtube.com/ https://*.ytimg.com https://*.facebook.com https://*.facebook.net https://fonts.gstatic.com https://cdn.cookielaw.org https://*.onetrust.com https://symbio-main.cloud.symbio.agency https://app.sli.do *.wowza.com https://www.google.com https://www.gstatic.com https://*.licdn.com https://px.ads.linkedin.com- strict-transport-security
max-age=31536000; includeSubDomains; preload