Skip to main content

Is donedrinks.com a Scam? Security Check Results - DONE Drinks Reviews

donedrinks.com favicon

Is donedrinks.com Safe? Security Analysis for DONE Drinks

https://donedrinks.com

Check if donedrinks.com is a scam or legitimate. Free security scan and reviews.

RetailN/asmall
Webflow CMSGoogle Tag ManagerTikTok PixelIubenda (privacy and cookie management)YouTube iframe API
Analyzed 9/7/2025Completed 12:59:11 AM
10
Security Score
CRITICAL RISK

Security scan incomplete. 7 out of 9 security checks failed to complete. The website may be inaccessible or protected by security measures. Please retry the scan or verify the website is accessible.

AI Summary

DONE Drinks is a health-focused beverage company specializing in prebiotic protein drinks that support gut health. Launched in 2023, the brand offers lactose-free, non-GMO, and clean ingredient products in flavors such as Chocolate, Salted Caramel, and Strawberry. The company targets health-conscious consumers seeking nutritious and tasty protein drinks. The website is professionally designed, mobile-optimized, and integrates modern web technologies including Webflow CMS, Google Tag Manager, and TikTok Pixel for marketing and analytics. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance practices. Security posture is solid with HTTPS enabled and no exposed sensitive data, though DNSSEC is not enabled and some security headers could be improved. Overall, the domain registration and website content are consistent and legitimate, supporting a trustworthy online presence.

Detected Technologies

Webflow CMSGoogle Tag ManagerTikTok PixelIubenda (privacy and cookie management)YouTube iframe API

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

DONE Drinks operates in the retail sector with a niche focus on gut health and nutritional beverages. The business model centers on e-commerce sales and customer engagement through social media platforms like TikTok, Instagram, and Facebook. The company leverages modern digital marketing tools and analytics to reach its target audience. The domain age and registration details align with the company's founding year, indicating a new but credible market entrant. No parent or subsidiary companies were identified. The brand emphasizes clean, high-quality ingredients and positions itself as a premium health beverage provider.

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a moderate to good security maturity level. HTTPS is enforced, and no sensitive data is exposed in the HTML content. The use of a consent management platform (Iubenda) indicates attention to privacy compliance. However, DNSSEC is not enabled, and no Content-Security-Policy header was detected, which are areas for improvement. No explicit security policies or incident response contacts are published, limiting transparency in security governance. No vulnerabilities or malware indicators were found. Overall, the security posture is adequate for the business type but could be enhanced with additional headers and documented policies.

Strategic Recommendations

Priority Actions for Security Improvement

1

Enable DNSSEC on the domain to enhance DNS security and prevent spoofing.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

DONE Drinks

Description:

DONE Drinks offers high-protein, prebiotic-fiber nutrition drinks that are lactose-free, non-GMO, and free from artificial sweeteners. Flavors include Chocolate, Salted Caramel, and Strawberry.

Key Services:
Prebiotic protein drinksSubscription and direct salesCustomer engagement via social media
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
Webflow CMSGoogle Tag ManagerTikTok PixelIubenda (privacy and cookie management)YouTube iframe API
Frameworks:
Webflow
Platforms:
Webflow Hosting
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
75/100
Best Practices:
  • HTTPS enabled
  • No exposed sensitive data in HTML
  • Use of consent management platform (Iubenda)

Analytics & Tracking

Services:
Google AnalyticsTikTok Analytics
Tracking Level:moderate
Privacy Compliance:good

Advertising & Marketing

Tracking Pixels:
TikTok PixelGoogle Analytics (via GTM)
Marketing Tools:
Iubenda Cookie Consent
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with no blocking or WAF challenges.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

0/100
Score
Analysis failed - content could not be retrieved

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

0/100
Score
Analysis failed - content could not be retrieved

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

0/100
Score
Analysis failed - content could not be retrieved

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

0/100
Score
Analysis failed - content could not be retrieved
SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100
Score
Analysis failed - content could not be retrieved

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

0/100
Score
Analysis failed - content could not be retrieved

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

0/100
Score
Analysis failed - content could not be retrieved

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on the Webflow platform, leveraging its CMS and hosting capabilities. It uses modern JavaScript libraries and integrates third-party analytics and marketing tools such as Google Tag Manager and TikTok Pixel. The site is mobile-optimized with responsive design and good SEO metadata including Open Graph tags. Performance is moderate, with some reliance on external CDNs for assets. Accessibility features are basic but present. There is no evidence of technical debt or deprecated technologies. Opportunities exist to improve security headers and DNS configuration to further strengthen the technical infrastructure.
Analyze Another Website