Skip to main content

Is primeriti.es a Scam? Security Check Results - El Corte Inglés, S.A. Reviews

E

Is primeriti.es Safe? Security Analysis for El Corte Inglés, S.A.

https://primeriti.es

Check if primeriti.es is a scam or legitimate. Free security scan and reviews.

RetailSpainenterprise
JavaScriptAdobe DTM (Adobe Dynamic Tag Management)Google Tag ManagerInsider SDKSwiper.js+1 more
Analyzed 9/6/2025Completed 2:09:20 AM
46
Security Score
HIGH RISK

AI Summary

Primeriti is a flash sales e-commerce platform operated by El Corte Inglés, S.A., a leading retail company in Spain. The website offers discounted branded fashion, sportswear, accessories, and home products targeting consumers looking for exclusive deals. The platform leverages the strong brand reputation of El Corte Inglés and integrates secure user authentication via the parent company's OAuth system. The site is well-branded, professionally designed, and provides comprehensive privacy and cookie policies in Spanish, demonstrating compliance with GDPR requirements. Contact information and a designated Data Protection Officer are clearly provided, enhancing trust and transparency. Technically, the website employs modern JavaScript libraries, tag management tools like Google Tag Manager and Adobe DTM, and a content delivery network associated with the parent company. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced, encrypted data transmission, and secure login mechanisms. However, explicit security headers and a public incident response policy are not evident, and a cookie consent mechanism is missing, which are areas for improvement. Overall, the website presents a high level of professionalism, security, and compliance suitable for an enterprise retail business. The domain registration data aligns with the business entity, confirming legitimacy. Strategic recommendations include implementing explicit cookie consent, publishing a security policy, and enhancing security headers to further strengthen the security posture and compliance.

Detected Technologies

JavaScriptAdobe DTM (Adobe Dynamic Tag Management)Google Tag ManagerInsider SDKSwiper.jsDust.js templating

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Primeriti operates within the retail and e-commerce sectors, focusing on flash sales of branded fashion and home products. Its competitive advantage lies in its affiliation with El Corte Inglés, providing brand trust and exclusive deals. The business model centers on limited-time discount campaigns targeting fashion-conscious consumers. Revenue streams likely include direct sales and affiliate marketing. The target customer segment includes general consumers in Spain interested in discounted branded goods. Growth indicators include frequent campaign updates and a broad brand portfolio. The partnership ecosystem includes El Corte Inglés account services and CDN infrastructure. The company's operations reflect a mature digital presence with strategic use of marketing and analytics tools.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

d*****@elcorteingles.es

Phone Numbers (1)

900******

Physical Addresses (1)

Calle Hermosilla 112, 28009 Madrid

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a mature security posture with enforced HTTPS, encrypted data transmission, and secure user authentication integrated with El Corte Inglés OAuth. Privacy policies are comprehensive and GDPR compliant, with a named Data Protection Officer contact. However, the absence of explicit security headers such as Content-Security-Policy and X-Frame-Options, and lack of a public incident response or vulnerability disclosure page, represent gaps. No vulnerabilities or exposed sensitive data were detected in the HTML content. The site uses modern libraries and tag management but should enhance security transparency and cookie consent mechanisms to align with best practices and regulatory expectations.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement an explicit cookie consent mechanism to comply fully with GDPR and ePrivacy directives.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

El Corte Inglés, S.A.

Description:

Primeriti es la Web de Ventas Flash de El Corte Inglés con lo último en descuentos en moda y complementos de las mejores marcas a precios con grandes descuentos

Key Services:
Flash salesDiscounted branded fashion and accessoriesHome productsNewsletter subscription
Content Quality:

excellent

Branding:

consistent

Technical Stack

Technologies:
JavaScriptAdobe DTM (Adobe Dynamic Tag Management)Google Tag ManagerInsider SDKSwiper.jsDust.js templating
Frameworks:
Omnistore ecommerce API
Platforms:
Web
Performance:

moderate

Mobile:

excellent

Accessibility:

good

SEO:

good

Security Assessment

Security Score:
85/100
Best Practices:
  • HTTPS enforced
  • Encrypted data transmission
  • Secure login via El Corte Inglés OAuth
  • No exposed sensitive data in HTML
  • Use of security tokens in forms

Analytics & Tracking

Services:
Google AnalyticsBing AdsAdobe DTM
Tracking Level:moderate
Privacy Compliance:good

Advertising & Marketing

Ad Networks:
Bing Ads
Tracking Pixels:
Google Analytics (via GTM)Bing Ads pixelAdobe DTM
Marketing Tools:
Adobe DTMInsider SDK
Transparency Level:good

Website Quality Assessment

Design Quality:excellent
User Experience:excellent
Content Relevance:excellent
Navigation Clarity:excellent
Professionalism:excellent
Trustworthiness:high

Key Observations

1

Website is a professional e-commerce platform operated by El Corte Inglés group

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

0/100
Score
Analysis failed - content could not be retrieved

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

25/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

EU business without adequate privacy measures

CRITICAL

EU businesses are subject to strict GDPR requirements

Third-party services without privacy policy

HIGH

Detected services: Google Analytics, Facebook, Twitter, YouTube

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy85% confidence
Contact Information Found90% confidence
emailphone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

17/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100
Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 include:cust-spf.exacttarget.com -all
DNS Lookups:1/10
Policy:-all
DMARC Details
Policy:reject
Aggregate Reports:bf6aa36e@inbox.eu.redsift.cloud
Forensic Reports:bf6aa36e@inbox.eu.redsift.cloud

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100
Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

70/100
Score

Unregistered MX Record

HIGH

MX record points to unregistered domain: mail.primeriti.es

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

DNS Records

A Records:185.90.81.234
Name Servers:
dns3.elcorteingles.esDNS only
dns4.elcorteingles.esDNS only
dns5.elcorteingles.esDNS only
dns6.elcorteingles.esDNS only
MX Records:
10: mail.primeriti.es

DNSSEC Status

DNSSEC Not Enabled

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on a modern tech stack including JavaScript frameworks, Adobe DTM for tag management, Google Tag Manager, and Insider SDK for marketing automation. It uses the Omnistore ecommerce API and Dust.js templating engine. Hosting and CDN services are provided by Grupo El Corte Inglés infrastructure. The site is mobile-optimized with responsive design and good accessibility features. Performance is moderate, with room for optimization. SEO is well addressed with proper meta tags and Open Graph data. The site uses asynchronous loading for scripts to improve load times. Overall, the technical implementation supports a robust and scalable e-commerce platform.
Analyze Another Website