tous.com

HTML metadata

Title

TOUS

Description

Commerce Cloud Storefront Reference Architecture

Language

en

Canonical

https://www.tous.com/ic-en/

Translations

ar-sa
ca-es
cs-cz
de-de
el-gr
en-pr
en-sa
en-us
es-ci
es-cl
es-co
es-cr
es-es
es-mx
es-pe
es-pr
es-us
fr-fr
it-it
pl-pl
pt-pt
sk-sk

Technology

CDN: Cloudflare

Analytics

Cloudflare Insights
Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (12)

510004421.collect.igodigital.com×2
cdn.cookielaw.org×2
cdn.cquotient.com×2
www.googletagmanager.com×2
cdn.nagich.com×1
cdn.noibu.com×1
d.la11-core1.sfdc-cehfhs.salesforceliveagent.com×1
geolocation.onetrust.com×1
p.cquotient.com×1
service.force.com×1
static.cloudflareinsights.com×1
try.abtasty.com×1

Social

Registration

Registrar

Nom-iq Ltd. dba COM LAUDE

Created

1997-08-04

Expires

2026-08-03 75 days left

Updated

2025-07-29

Name servers

a1-20.akam.net
a2-64.akam.net
a22-64.akam.net
a4-67.akam.net
a5-67.akam.net
a7-64.akam.net

DNS records live

NS

a1-20.akam.net
a2-64.akam.net
a22-64.akam.net
a4-67.akam.net
a5-67.akam.net
a7-64.akam.net

MX

0 tous-com.mail.protection.outlook.com

TXT

Show 13 TXT records

wso2-domain-verification=huxzh9a1I7uZUEk
esputnik-verification=RVNQX0RWS19WMQAAvfsAAAGDNrA0wyr6vUEwF5AE
google-gws-recovery-domain-verification=38280798�
facebook-domain-verification=ucyom63pl5lffllyjqmsfwahh8d2d0
google-site-verification=yN4zWjAOZIq99lh1if8AbBq-8pmjMFSMFTO6m2wShZY
ahrefs-site-verification_ac8b1810c389c6dac43f6c6c6e5fa96492b7596485bf6b6f69b8eb5adcb1d69b
yandex-verification: 909c25a988aa78c6
successfactors-site-verification=NDQ2Mzg5ZGNiMzdlZWRhMzBkNWQxNmFjNWRlMjc4YmVmYjJhODU5MzYzMzcwYjUzMmFlZGJmMTI0OTc4YzAxNg==
atlassian-sending-domain-verification=830f0f10-7dec-48f7-8b39-a0ca5018bfb7
google-site-verification=H00MKhc_IdJQcW58L1-X4XHxRYVG41lDxJZ4-HtV5vo
atlassian-domain-verification=XBadAYLmESu1ptcNCj9XoItH4jxD99UKvx2In0vjuvZyeNIeKY6FpAPraHlZoaTj
sophos-domain-verification=54ea95e0d79db94790f8ce66e2b0b13d7fa71acf
mandrill_verify.kl1jPeyGpDkLUs9cUv9XyA

Email authentication strong

SPF

v=spf1 ip4:167.89.95.70 ip4:91.232.249.64/28 ip4:31.220.144.80/28 ip4:79.99.34.0/24 ip4:92.54.33.159/32 include:_briefspf.launchmetrics.com include:spf.emailsignatures365.com include:spf.protection.outlook.com include:shops.shopify.com include:_spf.salesforce.com include:spf.mandrillapp.com include:_spf.general.transactional-mail-a.com include:spfa.cpmails.com -all

strict (-all)

DMARC

v=DMARC1;p=quarantine;pct=100;rua=mailto:dmarc01@tous.com

policy: quarantine

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19J0ru6Nd6w0SmTz6Q2frA5RnRW5DNQ/9BXpOhFsgq274SPlEZtT5Ywfjs7R0HHfyQGhfATXSwm+Xoodyj…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCxHn6uah2xU2UUF0y4WIt4Bfba4dkFftqpqipU1D1WLcJ3NGuEvn2dateiRc28N/LX5KGkKK7zqzaFKTy7qNR5Ud…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV E36

from 2026-03-06 to 2027-01-26

Expires in 251 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.tous.com/ic-en/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors https://*.tous.com https://*.suotstudio.com https://metrica.yandex.com https://metrica.yandex.ru https://metrika.yandex.com.tr https://metrika.yandex.com https://metrika.yandex.ru https://metrika.yandex.com.tr https://webvisor.com https://*.demandware.net/
strict-transport-security: max-age=15768000 ; includeSubDomains ; preload

Links to (8)

Linked from (1)

linkhaitao.com×3