thekitchenclub.se

HTML metadata

Title: The Kitchen Club restauranger
Description: The Kitchen Club är en kedja med restauranger i Sverige. Idag finns vi i Mölndal, Uppsala och Solna. Välkommne in till klubben!
Language: sv
Canonical: https://www.thekitchenclub.se/

Open Graph

url: https://www.thekitchenclub.se/
title: The Kitchen Club restauranger
locale: sv
description: The Kitchen Club är en kedja med restauranger i Sverige. Idag finns vi i Mölndal, Uppsala och Solna. Välkommne in till klubben!

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (2)

dc.services.visualstudio.com×1
www.googletagmanager.com×1

Contact

Address: Huvudkontor: Mathildatorget 9, 169 75 SolnaOm vår webbplatsCoor.seCookiepolicy,Integritetspolicy ochTillgänglighetsredogörelse

DNS records live

NS

dns1.zaccodigitaltrustlabs.com
dns2.zaccodigitaltrustlabs.net
dns3.zaccodigitaltrustlabs.se
dns4.zaccodigitaltrustlabs.se
ns1.zaccodns.com
ns2.zaccodns.se

MX

1 thekitchenclub-se.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:wijtngak@ag.eu.dmarcian.com; ruf=mailto:wijtngak@fr.eu.dmarcian.com;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdj5gXiuTojNDcRbIZrl2JeTmA+MIL2pKq+TjIynvJ913Pwy4DtTjbQxUunI6m9YQyMHglqKbAwuun…

selectors probed

Certificate (current)

WE1

from 2026-05-08 to 2026-08-06

Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.thekitchenclub.se/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: publickey-credentials-get=(), xr-spatial-tracking=(), screen-wake-lock=(), cross-origin-isolated=(), web-share=(), picture-in-picture=(), keyboard-map=(), encrypted-media=(), display-capture=(), usb=(), serial=(), payment=(), midi=(), microphone=(), magnetometer=(), geolocation=(), camera=(), fullscreen=(), autoplay=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: report-uri https://www.coor.com/report-endpoints/report; report-to report-endpoint; script-src https://*.cookiebot.com https://*.lifeinside.io https://tracker.leadenhancer.com https://adsby.bidtheatre.com https://snap.licdn.com https://www.google.com https://googleads.g.doubleclick.net https://www.gstatic.com https://www.googleadservices.com https://*.hotjar.com https://js-eu1.hs-scripts.com https://js-eu1.hsleadflows.net https://js-eu1.hs-banner.com https://js-eu1.hs-analytics.net https://js-eu1.hubspot.com https://js-eu1.usemessages.com https://bat.bing.com https://connect.facebook.net https://cdn.ontame.io https://*.inzynk.io https://*.livechatinc.com https://www.juicer.io https://widget.datablocks.se https://js.monitor.azure.com https://*.optimizely.com https://optimizely.s3.amazonaws.com https://cdn-assets-prod.s3.amazonaws.com 'self' https://*.googletagmanager.com https://www.googletagmanager.com 'unsafe-inline'; frame-src https://consentcdn.cookiebot.com https://www.google.com h
strict-transport-security: max-age=31536000; includeSubDomains; preload