remeha.nl

HTML metadata

Title: Remeha - Duurzame comfortoplossingen voor consument en utiliteit
Description: HR-ketels, warmtepompen, zonlichtinstallaties en collectieve verwarming. Voor consument, klein zakelijk en groot vermogen systeemoplossingen. Specialist in warmtecomfort sinds 1935.
Language: nl-NL
Canonical: https://www.remeha.nl/

Open Graph

title: Remeha - Duurzame comfortoplossingen voor consument en utiliteit
description: HR-ketels, warmtepompen, zonlichtinstallaties en collectieve verwarming. Voor consument, klein zakelijk en groot vermogen systeemoplossingen. Specialist in warmtecomfort sinds 1935.

Technology

CDN: Vercel
CMS: Next.js
JS framework: Next.js

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (4)

edge.sitecorecloud.io×21
cdn.cookielaw.org×1
edge-platform.sitecorecloud.io×1
www.googletagmanager.com×1

DNS records live

NS

ns1.eurodns.com
ns2.eurodns.com
ns3.eurodns.com
ns4.eurodns.com

MX

10 mxa-001e2d01.gslb.pphosted.com
10 mxb-001e2d01.gslb.pphosted.com

TXT

Show 5 TXT records

sc-bdr-prd-cd.azurewebsites.net
eQ040Zge5+IXXwKZbrorLDFm9la8sdoJ6M+cTpsITMA=
rovag_verification_token=6DD0734DA07C418CAF11D843A4D7B6DC
box-domain-verification=f9ba229e62e2d2c9d72472992af9c4eb33717f2f6159824b31a6f35f3d7c338a
amazonses:7Cs1LR5m+HjQU0BQBqPHI964IVBn+0qCxz3w2Ty8cbQ=

Verified for

1Password
Figma
Google
Meta
Microsoft 365
Miro

Email authentication partial

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: none (monitoring only)

DKIM

k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw53SaXYjdC+hYk3Ud2mFfCBGN7f1WVmYkCyTlbVMcveOzd/NaAmMiWOg8hnSqSGubb8ha4lNUchB1wgQxu…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1z35erXhEEbdUKquOq4NJdNsW1UMySPETzndBXt+fhJ1mAP5tlY+dRF4TTozKaPJLn/FkD/K0/QRcCVFLo05M3r…

selectors probed

Certificate (current)

R12

from 2026-04-25 to 2026-07-24

Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.remeha.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://cdn.cookielaw.org https://privacyportalde-cdn.onetrust.com https://www.youtube.com https://*.sitecorecloud.io https://ka-p.fontawesome.com https://kit.fontawesome.com https://xmf.remeha.co.uk https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.g.doubleclick.net https://*.google.com https://*.remeha.nl *.mavenoid.com mavenoidfiles.com *.mavenoidfiles.com *.twilio.com sentry.io *.sentry.io bdr-prd-platform-remehanl-39zh3j2ot-bdr-thermea-group.vercel.app; script-src 'self' 'unsafe-inline' 'unsafe-eval' bdr-prd-platform-remehanl-39zh3j2ot-bdr-thermea-group.vercel.app https://cdn.cookielaw.org https://privacyportalde-cdn.onetrust.com https://*.sitecorecloud.io https://*.googletagmanager.com https://*.google-analytics.com https://kit.fontawesome.com https://mediacdn.remeha.nl https://unpkg.com https://www.remeha.nl https://www.youtube.com https://*.hotjar.com/ https://cloudstatic.obi4wan.com https://snap.licdn.com/
strict-transport-security: max-age=63072000; includeSubDomains; preload;