No Security Risks Detected
This domain appears to be safe and secure
100%
Score
Disclaimer: This assessment is based on automated analysis of publicly available information. Results are for informational purposes only. For critical applications, consult security professionals.
Scan Information
Last checked:April 9, 2026 05:22:35
Scan Complete
Refresh page after 10 minutes
for updated results
Page Information
Target URL
https://privacycenter.instagram.com/policies/cookies/
Page Title
Meta Cookies Policy
Site FaviconStatus
Active
Host Information
Domain
privacycenter.instagram.com
Server
N/A
Country
United States
IP Address
57.144.172.34
ASN Information
32934
FACEBOOK
Technologies
HSTS
Security
SSL Certificate
HTTPS Enabled
Secure
Certificate Issuer
N/A
Valid From
2026-04-08 05:22:39
Valid Until
2027-04-09 05:22:39
Subject Name
privacycenter.instagram.com
Performance Statistics
11
Total Requests
2
Domains
2
IP Addresses
91.19 KB
Transfer Size
Content Size567.81 KB
HTTP Headers
Cache-Control
private, no-cache, no-store, must-revalidate
Connection
keep-alive
Content-Encoding
zstd
Content-Type
text/html; charset="utf-8"
Date
Thu, 09 Apr 2026 05:22:39 GMT
Expires
Sat, 01 Jan 2000 00:00:00 GMT
Pragma
no-cache
Strict-Transport-Security
max-age=31536000; preload; includeSubDomains
Transfer-Encoding
chunked
Vary
Accept-Encoding
X-Content-Type-Options
nosniff
X-FB-Debug
lamc9LvN315aAGwKN5LHP/idFD2+hAWfymawcPfPaLt1423pnsMD5hXnN2IuYlnWT+EUH3TWyvCNNjAkiAkJzg==
X-Frame-Options
DENY
X-XSS-Protection
0
accept-ch
viewport-width,dpr,Sec-CH-Prefers-Color-Scheme,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model
accept-ch-lifetime
4838400
content-security-policy
default-src *.facebook.com *.fbcdn.net *.instagram.com blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'nonce-b9Ydq5xK' blob: 'self' 'wasm-unsafe-eval';style-src data: blob: 'unsafe-inline' *.fbcdn.net *.facebook.com *.instagram.com;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* ws://localhost:* blob: *.instagram.com *.cdninstagram.com wss://*.instagram.com:* 'self' https://meta.privacy-gateway.cloudflare.com/relay;font-src *.facebook.com data: *.fbcdn.net *.instagram.com https://fonts.gstatic.com;img-src *.instagram.com *.facebook.com *.fbcdn.net data: blob: *.cdninstagram.com *.fbsbx.com android-webview-video-poster: *.oculuscdn.com *.giphy.com *.tenor.co *.tenor.com www.googleadservices.com *.doubleclick.net *.google.com *.google.co.uk https://www.gstatic.com;media-src *.facebook.com *.fbcdn.net *.instagram.com *.cdninstagram.com *.fbsbx.com data: blob: https://*.giphy.com *.tenor.co *.tenor.com;child-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;frame-src *.instagram.com *.facebook.com *.fbsbx.com fbsbx.com data: www.googleadservices.com *.doubleclick.net *.google.com *.google.co.uk;manifest-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;object-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;upgrade-insecure-requests;
cross-origin-embedder-policy-report-only
require-corp;report-to="coep_report"
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-resource-policy
same-origin
document-policy
force-load-at-top
include-js-call-stacks-in-crash-reports
origin-agent-cluster
?1
origin-trial
ArDvqjFKr1fHThlSM8Kkp74sxlOCFTeqYJMXCGqCG/VJmcYlO/0UavmpqPDit2KppDf1THInNpwA36GmtgPOug8AAAB2eyJvcmlnaW4iOiJodHRwczovL3d3dy5pbnN0YWdyYW0uY29tOjQ0MyIsImZlYXR1cmUiOiJDcmFzaFJlcG9ydGluZ1N0b3JhZ2VBUEkiLCJleHBpcnkiOjE3NzY3Mjk2MDAsImlzU3ViZG9tYWluIjp0cnVlfQ==
permissions-policy
accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
report-to
{"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coep\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.instagram.com\/error\/ig_web_error_reports\/?device_level=unknown&brsid=7626625651426487510&comet_app_key=38&cpp=C3&cv=1036961647&st=1775712159404"}]}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.instagram.com\/error\/ig_web_error_reports\/"}],"group":"permissions_policy"}
reporting-endpoints
coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", coep_report="https://www.facebook.com/browser_reporting/coep/?minimize=0", default="https://www.instagram.com/error/ig_web_error_reports/?device_level=unknown&brsid=7626625651426487510&comet_app_key=38&cpp=C3&cv=1036961647&st=1775712159404", permissions_policy="https://www.instagram.com/error/ig_web_error_reports/"
x-stack
www
27 headers detected
Technology Stack Analysis
HSTS
Security
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.
Website Cookies 2
ig_did
.instagram.com
HttpOnly Secure None
Value
46E3D39E-4EA7-4084-8436-7183A29602B0
Expires:4/9/2027
datr
.instagram.com
HttpOnly Secure None
Value
nzfXaZOHxxD3EdAa-pbf8tU8
Expires:5/14/2027
External Links 0
Requested Domains 2
privacycenter.instagram.com
Subdomain
No category information available
static.xx.fbcdn.net
Unknown Type
No category information available