way-q.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-13 · ok HTTP/1.1 200 350 ms crawled 2026-05-13

IT · 188.213.170.226 · AS31034 Aruba S.p.A.

Reputation 92/100 no dmarc policy

sector b2b services type homepage

HTML metadata

Title: Way-Q | Compliance, Quality & Regulatory Affairs
Description: Way-Q, BU Quality & Regulatory di SPRIM Group: trasformiamo la complessità regolatoria in vantaggio competitivo per Food, FMCG, Life Sciences e MedTech in 150+ mercati.
Language: it
Canonical: https://www.way-q.com/

Open Graph

url: https://www.way-q.com/
title: Way-Q | Compliance, Quality & Regulatory Affairs
locale: it_IT
site name: Way-Q
description: Way-Q, BU Quality & Regulatory di SPRIM Group: trasformiamo la complessità regolatoria in vantaggio competitivo per Food, FMCG, Life Sciences e MedTech in 150+ mercati.
locale:alternate: en_US

Technology

Server: nginx

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Registration

Registrar

Tucows Domains Inc.

Created

2018-05-10

Expires

2027-05-10 355 days left

Updated

2026-05-03

Name servers

dns.technorail.com
dns2.technorail.com
dns3.arubadns.net
dns4.arubadns.cz

DNS records live

NS

dns.technorail.com
dns2.technorail.com
dns3.arubadns.net
dns4.arubadns.cz

MX

40 wayq-com0i.mail.protection.outlook.com

TXT

MS=ms56840002
google-site-verification=tloISUeCaukcxclD4VBWwp2x8D2vDa9AnoAZLdXGNKE
s8er2koju172qu8lab87lls3kr

Email authentication weak

SPF: v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-04-22 to 2026-07-21

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://way-q.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self' https://forms.zohopublic.eu; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://*.googletagmanager.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: blob: https://www.googletagmanager.com https://www.google-analytics.com https://*.google-analytics.com https://stats.g.doubleclick.net; connect-src 'self' https://www.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://stats.g.doubleclick.net; frame-src https://forms.zohopublic.eu https://www.googletagmanager.com; manifest-src 'self'; worker-src 'self' blob:
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site

Linked from (2)

sprimfood.com×2
sprim.es×2