surfspot.nl Review

Titletag	Descriptiontag	language
SURFspot \| Smart deals for education		Dutch; Flemish

Alexarank
157261

Ip adress

87.238.163.141

Nameserver

ns1.surfnet.nl
ns1.zurich.surf.net
ns3.surfnet.nl
ns2.surfnet.nl

Status code

200

robots.txt

N/A

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 19 Aug 2025 22:22:02 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://surfspot.nl/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 19 Aug 2025 22:22:03 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: https://www.surfspot.nl/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Aug 2025 22:22:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=mb3fbhigns6p5iacc3b0h2ks1a; expires=Tue, 19-Aug-2025 23:22:05 GMT; Max-Age=3600; path=/; domain=www.surfspot.nl; secure; HttpOnly; SameSite=None
Set-Cookie: X-Magento-Vary=d0c13f26c398baca81a1a36680f9b6f3c3272c78a7cb3fde56db17b7c0633c27; expires=Tue, 19-Aug-2025 23:22:05 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=Lax
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Expires: Mon, 19 Aug 2024 22:22:05 GMT
x-built-with: Hyva Themes
Link: ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=image, ; rel=preload; fetchpriority=high; as=script, ; rel=preload; fetchpriority=high; as=script, ; rel=preload; fetchpriority=high; as=script, ; rel=preload; fetchpriority=high; as=style
X-Magento-Tags: FPC
Content-Security-Policy: font-src data: https://*.gstatic.com fonts.gstatic.com *.googleapis.com *.gstatic.com data: https://*.zopim.com https://use.fontawesome.com/releases/v5.8.2/webfonts/ https://cdnjs.cloudflare.com *.userway.org data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com http://saml.staging2.esser-emmerik.nl *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net https://*.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ www.google.com https://www.paypal.com www.xtento.com https://www.googletagmanager.com/ *.google.com/ c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * https://surfspot.zendesk.com https://dev.visualwebsiteoptimizer.com https://app.vwo.com *.cloudfront.net *.bugsnag.com *.userway.org 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data:  www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net data: t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io maps.googleapis.com maps.gstatic.com *.gstatic.com *.googleapis.com https://images.unsplash.com https://portal.payconiq.com https://static.buckaroo.nl https://www.paypalobjects.com https://*.gstatic.com https://www.magezon.com/productfile/ https://wm-livechat-2-prod-dot-watermelonmessenger.appspot.com/assets/svg/ www.magecomp.com/media/ www.xtento.com static.mailplus.nl www.schoolspot.nl v2.zopim.com webstats.surf.nl www.google.nl *.doubleclick.net https://optimize.google.com https://static.zdassets.com https://amcglobal.sc.omtrdc.net https://surfspot.zendesk.com/embeddable/avatars/ cdn.xtento.com http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ https://www.google.com/ https://www.magezon.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com https://surfspot.zendesk.com https://dev.visualwebsiteoptimizer.com https://app.vwo.com *.cloudfront.net *.bugsnag.com *.userway.org data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com https://*.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ maps.googleapis.com maps.gstatic.com fonts.googleapis.com *.googleapis.com *.gstatic.com https://cdn.jsdelivr.net/npm/@ryangjchandler/spruce@2.x.x/dist/spruce.umd.js www.gstatic.com/recaptcha/ https://static.buckaroo.nl https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl https://buckaroo.nl https://www.paypal.com https://checkout.buckaroo.nl/api/buckaroosdk/script https://*.mailplus.nl https://static.zdassets.com https://surfnl.containers.piwik.pro https://api.smooch.io/faye www.xtento.com cdn.xtento.com https://irmago.surfconext.nl http://www.googletagmanager.com/ https://www.googletagmanager.com/ *.google.com/ js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com https://surfspot.zendesk.com https://dev.visualwebsiteoptimizer.com https://app.vwo.com https://js-agent.newrelic.com https://bam.eu01.nr-data.net *.cloudfront.net *.bugsnag.com *.userway.org 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com https://*.googleapis.com https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl https://*.google.com https://*.gstatic.com https://use.fontawesome.com/releases/v5.8.2/css/ https://cdnjs.cloudflare.com https://*.mailplus.nl https://wm-livechat-2-prod-dot-watermelonmessenger.appspot.com/ https://surfnl.containers.piwik.pro/container-debugger/icons.css https://surfnl.containers.piwik.pro/container-debugger/animate.min.css https://surfnl.containers.piwik.pro/container-debugger/styles.css unsafe-inline assets.braintreegateway.com https://surfspot.zendesk.com https://dev.visualwebsiteoptimizer.com https://app.vwo.com *.cloudfront.net *.bugsnag.com *.userway.org 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com http://www.googleadservices.com/ http://www.google-analytics.com/ https://www.googleadservices.com/ https://www.google-analytics.com/ 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com *.googleapis.com wss://websocketservice-externalapi.prod.buckaroo.io https://static.buckaroo.nl wss://websockets.buckaroo.io/ https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl https://applepay.buckaroo.io https://www.paypal.com https://dpm.demdex.net/ ekr.zdassets.com/ https://surfnl.piwik.pro https://surfnl.containers.piwik.pro https://surfspot.zendesk.com wss://api.smooch.io/faye http://stats.g.doubleclick.net/ https://stats.g.doubleclick.net/ http://www.google-analytics.com/ https://www.google-analytics.com/ api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com https://dev.visualwebsiteoptimizer.com https://app.vwo.com https://bam.eu01.nr-data.net *.cloudfront.net *.bugsnag.com *.userway.org 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Content-Encoding: br

iframe