Skip to content
Audit Complete

Results for https://www.nordvpn.com

Visit site
Spain Spain · Madrid Completed: Apr 7, 2026 20:14 UTC
Share card preview
Share on X Share on LinkedIn Share on Reddit Share on Hacker News Share via Email Download share image
Download JSON Download Markdown Report

Mobile 375 × 812

Screenshot of the audited page (Mobile 375×812)

Desktop 1440 × 900

Screenshot of the audited page (Desktop 1440×900)
C73

Site Health

Score: 73 / 100

Based on 8 categories, 0 sections

How is this calculated?

The overall score is a weighted average of individual category scores. Categories with more impact on user experience and security carry more weight.

Performance 25%Security 25%Accessibility 15%SEO 10%Infrastructure 10%Compliance 8%Content 5%Sustainability 2%

Weights reflect general web best practices. Individual needs may differ.

Top Priorities (5)

1

Content-Security-Policy header is missing

Security › Security Headers
2

No Content-Security-Policy header found

Security › Content Security Policy
3

No favicon or icon links detected

Accessibility › Favicon & Branding
4

Cross-Origin-Embedder-Policy header is missing

Security › Security Headers
5

Cross-Origin-Opener-Policy header is missing

Security › Security Headers
BeaverCheck badge
Embed this badge
[![BeaverCheck](https://beavercheck.com/badge?url=https%3A%2F%2Fwww.nordvpn.com)](https://beavercheck.com/results/74df2fa7-5eab-a5cc-903e-e952b5e4eed0)
<a href="https://beavercheck.com/results/74df2fa7-5eab-a5cc-903e-e952b5e4eed0"><img src="https://beavercheck.com/badge?url=https%3A%2F%2Fwww.nordvpn.com" alt="BeaverCheck Score"></a>
https://beavercheck.com/badge?url=https%3A%2F%2Fwww.nordvpn.com

This badge auto-updates with your latest scan result.

Was this report useful?

Thanks for your feedback!

Lighthouse Scores

Industry-standard audits powered by Google Lighthouse.

57
Performance Overall performance score (0–100) based on Core Web Vitals and other metrics. 90+ is good.
94
Accessibility Measures how accessible the page is for users with disabilities. Checks color contrast, ARIA labels, and semantic HTML.
100
Best Practices Checks for modern web development best practices including HTTPS, no console errors, and secure JavaScript.
92
SEO Measures basic SEO optimizations: meta tags, crawlability, link text, and mobile friendliness.

Core Web Vitals

Key metrics that affect user experience.

First Contentful Paint First Contentful Paint — how long until the browser renders the first piece of content. Under 1.8s is good.

2.97 s

Largest Contentful Paint Largest Contentful Paint — how long until the largest visible element loads. Under 2.5s is good.

8.62 s

Total Blocking Time Total Blocking Time — total time the main thread was blocked, preventing user input. Under 200ms is good.

422 ms

Cumulative Layout Shift Cumulative Layout Shift — measures visual stability. How much the page layout shifts during loading. Under 0.1 is good.

0.005

Speed Index Speed Index — how quickly content is visually displayed during load. Under 3.4s is good.

4.30 s

Time to Interactive Time to Interactive — how long until the page is fully interactive and responds to user input. Under 3.8s is good.

8.62 s

Detailed Report

Audit breakdown by category with detailed findings.

57

Performance

Insights

Remove large, duplicate JavaScript modules from bundles to reduce unnecessary bytes consumed by network activity.

Polyfills and transforms enable older browsers to use new JavaScript features. However, many aren't necessary for modern browsers. Consider modifying your JavaScript build process to not transpile Baseline features, unless you know you must support older browsers. Learn why most sites can deploy ES6+ code without transpiling

3rd party code can significantly impact load performance. Reduce and defer loading of 3rd party code to prioritize your page's content.

A long cache lifetime can speed up repeat visits to your page. Learn more about caching.

RequestCache TTLTransfer Size
nordvpn.com/cc/1800.0 s175.6 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/fcdbb93e-7e5...14400.0 s21.0 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/85522390-b3c...14400.0 s19.6 KiB
/v1/w_768,fr_auto/https://sb.nordcdn.com/transform/39faf6...14400.0 s16.3 KiB
s1.nordcdn.com/d/consent/prod/main.js604800.0 s54.4 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/07baa1ee-26b...14400.0 s7.4 KiB
/v1/https://sb.nordcdn.com/m/227f7bcb556ca93a/original/ne...14400.0 s4.4 KiB
/v1/https://sb.nordcdn.com/m/414edeaa4901aadb/original/no...14400.0 s4.1 KiB
/v1/https://sb.nordcdn.com/m/68844593adf43d9c/original/no...14400.0 s3.5 KiB
/v1/https://sb.nordcdn.com/m/190508c8d54d38db/original/no...14400.0 s2.8 KiB
/v1/https://sb.nordcdn.com/m/658d7868b0eb19bd/original/sa...14400.0 s1.4 KiB
/d/latest/i/index.js?cu=https://d.nordvpn.com/1/cc&p=nord...604800.0 s7.8 KiB
/v1/https://sb.nordcdn.com/m/7c93bd95ab5d2212/original/no...14400.0 s987 B
/v1/https://sb.nordcdn.com/m/35124688a977d7be/original/no...14400.0 s962 B
/v1/https://sb.nordcdn.com/m/506e8101f8e7d946/original/no...14400.0 s943 B
/v1/https://sb.nordcdn.com/m/5dd86f435e9b1aea/original/no...14400.0 s918 B
s1.nordcdn.com/d/consent/prod/main.css604800.0 s2.3 KiB
s1.nordcdn.com/d/consent/prod/init.js?pre=gdpr604800.0 s2.2 KiB

Your first network request is the most important. Reduce its latency by avoiding redirects, ensuring a fast server response, and enabling text compression.

A forced reflow occurs when JavaScript queries geometric properties (such as offsetWidth) after styles have been invalidated by a change to the DOM state. This can result in poor performance. Learn more about forced reflows and possible mitigations.

headings: [map[key:source label:Source valueType:source-location] map[granularity:1 key:reflowTime label:Total reflow time valueType:ms]]
items: [map[reflowTime:51.37 source:map[column:6326 line:2 type:source-location url:https://s1.nordcdn.com/d/latest/i/index.js?cu=https://d.nordvpn.com/1/cc&p=nordvpn&cv=nordvpn-main@0.244.0&sni=1 urlProvider:network]]]

Avoid chaining critical requests by reducing the length of chains, reducing the download size of resources, or deferring the download of unnecessary resources to improve page load.

description: [preconnect](https://developer.chrome.com/docs/lighthouse/performance/uses-rel-preconnect/) hints help the browser establish a connection earlier in the page load, saving time when the first request for that origin is made. The following are the origins that the page preconnected to.
title: Preconnected origins
description: Add [preconnect](https://developer.chrome.com/docs/lighthouse/performance/uses-rel-preconnect/) hints to your most important origins, but try to use no more than 4.
title: Preconnect candidates

Requests are blocking the page's initial render, which may delay LCP. Deferring or inlining can move these network requests out of the critical path.

URLTransfer SizeDuration
s1.nordcdn.com/d/consent/prod/init.js?pre=gdpr2.2 KiB838 ms
s1.nordcdn.com/d/consent/prod/main.css2.3 KiB904 ms
nordvpn.com/static/index.CUdPnOUj.css29.7 KiB450 ms
nordvpn.com/static/index.M940szoQ.css2.9 KiB

These insights are also available in the Chrome DevTools Performance Panel - record a trace to view more detailed information.

Redirects introduce additional delays before the page can be loaded. Learn how to avoid page redirects.

Estimated savings: 813 ms
URLTime Spent
www.nordvpn.com/813 ms
nordvpn.com/0.0 ms

Time to Interactive is the amount of time it takes for the page to become fully interactive. Learn more about the Time to Interactive metric.

TTI

The maximum potential First Input Delay that your users could experience is the duration of the longest task. Learn more about the Maximum Potential First Input Delay metric.

Diagnostics

Reduce unused JavaScript and defer loading scripts until they are required to decrease bytes consumed by network activity. Learn how to reduce unused JavaScript.

Estimated savings: 600 ms 70.3 KiB
URLTransfer SizeEst Savings
nordvpn.com/cc/175.2 KiB70.3 KiB

Consider reducing the time spent parsing, compiling and executing JS. You may find delivering smaller JS payloads helps with this. Learn how to minimize main-thread work

CategoryTime Spent
Other1.1 s
Style & Layout917 ms
Script Evaluation836 ms
Rendering367 ms
Parse HTML & CSS117 ms
Script Parsing & Compilation92 ms

Reduce unused rules from stylesheets and defer CSS not used for above-the-fold content to decrease bytes consumed by network activity. Learn how to reduce unused CSS.

Estimated savings: 0.0 ms 37.5 KiB
URLTransfer SizeEst Savings
@font-face{font-display:swap;font-family:Inter;font-style:normal;font-weight:400;src:url(data:font/…37.5 KiB37.5 KiB

More information about the performance of your application. These numbers don't directly affect the Performance score.

Layout shift culprits
Optimize DOM size
Font display
Improve image delivery
LCP breakdown
LCP request discovery
Modern HTTP
Optimize viewport for mobile
Minify CSS
Minify JavaScript
Avoids enormous network payloads Total size was 658 KiB
User Timing marks and measures 11 user timings
JavaScript execution time 0.7 s
Avoid long main-thread tasks 8 long tasks found
Image elements have explicit `width` and `height`
Page didn't prevent back/forward cache restoration
Network Requests
Network Round Trip Times 100 ms
Server Backend Latencies 3,090 ms
Tasks
Diagnostics
Metrics
Screenshot Thumbnails
Final Screenshot
Script Treemap Data
Resources Summary
Initial server response time was short Root document took 80 ms
Avoid large layout shifts 3 layout shifts found
INP breakdown
Avoid non-composited animations
94

Accessibility

These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.

ARIA

Using ARIA attributes in roles where they are prohibited can mean that important information is not communicated to users of assistive technologies. Learn more about prohibited ARIA roles.

Failing Elements
NordVPN is about being in control. With NordVPN, you get peace of mind knowing … div.mx-4 > div.container > astro-island > div

These are opportunities to improve the usage of ARIA in your application which may enhance the experience for users of assistive technology, like a screen reader.

Contrast

Low-contrast text is difficult or impossible for many users to read. Learn how to provide sufficient color contrast.

Failing Elements
NordVPN div.container > astro-island > div > span.heading-2xl
is div.container > astro-island > div > span.heading-2xl
about div.container > astro-island > div > span.heading-2xl
being div.container > astro-island > div > span.heading-2xl
in div.container > astro-island > div > span.heading-2xl
control. div.container > astro-island > div > span.heading-2xl
With div.container > astro-island > div > span.heading-2xl
NordVPN, div.container > astro-island > div > span.heading-2xl
you div.container > astro-island > div > span.heading-2xl
get div.container > astro-island > div > span.heading-2xl
peace div.container > astro-island > div > span.heading-2xl
of div.container > astro-island > div > span.heading-2xl
mind div.container > astro-island > div > span.heading-2xl
knowing div.container > astro-island > div > span.heading-2xl
that div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
internet div.container > astro-island > div > span.heading-2xl
connection div.container > astro-island > div > span.heading-2xl
is div.container > astro-island > div > span.heading-2xl
encrypted, div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
devices div.container > astro-island > div > span.heading-2xl
are div.container > astro-island > div > span.heading-2xl
shielded div.container > astro-island > div > span.heading-2xl
from div.container > astro-island > div > span.heading-2xl
malware div.container > astro-island > div > span.heading-2xl
and div.container > astro-island > div > span.heading-2xl
snoopers, div.container > astro-island > div > span.heading-2xl
and div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
digital div.container > astro-island > div > span.heading-2xl
life div.container > astro-island > div > span.heading-2xl
belongs div.container > astro-island > div > span.heading-2xl
to div.container > astro-island > div > span.heading-2xl
you. div.container > astro-island > div > span.heading-2xl

These are opportunities to improve the legibility of your content.

Visible text labels that do not match the accessible name can result in a confusing experience for screen reader users. Learn more about accessible names.

Failing Elements
download a VPN app div.container > div.col-span-12 > p > a.align-bottom
VPN meaning div.grid > div.col-span-12 > p > a.align-bottom
here div.flex > div > p#disclaimer > a.align-bottom
Interactive controls are keyboard focusable
Interactive elements indicate their purpose and state
The page has a logical tab order
Visual order on the page follows DOM order
User focus is not accidentally trapped in a region
The user's focus is directed to new content added to the page
HTML5 landmark elements are used to improve navigation
Offscreen content is hidden from assistive technology
Custom controls have associated labels
Custom controls have ARIA roles
`[aria-*]` attributes match their roles
`[aria-hidden="true"]` is not present on the document `<body>`
`[role]`s have all required `[aria-*]` attributes
Elements with an ARIA `[role]` that require children to contain a specific `[role]` have all required children.
`[role]`s are contained by their required parent element
`[role]` values are valid
`[aria-*]` attributes have valid values
`[aria-*]` attributes are valid and not misspelled
Buttons have an accessible name
Image elements have `[alt]` attributes
`[user-scalable="no"]` is not used in the `<meta name="viewport">` element and the `[maximum-scale]` attribute is not less than 5.
Select elements have associated label elements.
ARIA attributes are used as specified for the element's role
Elements with `role="dialog"` or `role="alertdialog"` have accessible names.
`[aria-hidden="true"]` elements do not contain focusable descendents
Document has a `<title>` element
`<html>` element has a `[lang]` attribute
`<html>` element has a valid value for its `[lang]` attribute
Links are distinguishable without relying on color.
Links have a discernible name
Lists contain only `<li>` elements and script supporting elements (`<script>` and `<template>`).
List items (`<li>`) are contained within `<ul>`, `<ol>` or `<menu>` parent elements
No element has a `[tabindex]` value greater than 0
Touch targets have sufficient size and spacing.
`[lang]` attributes have a valid value
Heading elements appear in a sequentially-descending order
Document has a main landmark.
Deprecated ARIA roles were not used
`[accesskey]` values are unique
`button`, `link`, and `menuitem` elements have accessible names
ARIA input fields have accessible names
ARIA `meter` elements have accessible names
ARIA `progressbar` elements have accessible names
Elements with the `role=text` attribute do not have focusable descendents.
ARIA toggle fields have accessible names
ARIA `tooltip` elements have accessible names
ARIA `treeitem` elements have accessible names
The page contains a heading, skip link, or landmark region
`<dl>`'s contain only properly-ordered `<dt>` and `<dd>` groups, `<script>`, `<template>` or `<div>` elements.
Definition list items are wrapped in `<dl>` elements
ARIA IDs are unique
No form fields have multiple labels
`<frame>` or `<iframe>` elements have a title
`<html>` element has an `[xml:lang]` attribute with the same base language as the `[lang]` attribute.
Input buttons have discernible text.
`<input type="image">` elements have `[alt]` text
Form elements have associated labels
The document does not use `<meta http-equiv="refresh">`
`<object>` elements have alternate text
Skip links are focusable.
Cells in a `<table>` element that use the `[headers]` attribute refer to table cells within the same table.
`<th>` elements and elements with `[role="columnheader"/"rowheader"]` have data cells they describe.
`<video>` elements contain a `<track>` element with `[kind="captions"]`
Tables have different content in the summary attribute and `<caption>`.
All heading elements contain content.
Uses ARIA roles only on compatible elements
Image elements do not have `[alt]` attributes that are redundant text.
Identical links have the same purpose.
Tables use `<caption>` instead of cells with the `[colspan]` attribute to indicate a caption.
`<td>` elements in a large `<table>` have one or more table headers.
100

Best Practices

General

Source maps translate minified code to the original source code. This helps developers debug in production. In addition, Lighthouse is able to provide further insights. Consider deploying source maps to take advantage of these benefits. Learn more about source maps.

URLMap URL
nordvpn.com/cc/
nordvpn.com/static/web.G1HyAhrz.jsnordvpn.com/static/web.G1HyAhrz.js.map
nordvpn.com/static/utils.Cbt8C2xX.jsnordvpn.com/static/utils.Cbt8C2xX.js.map
nordvpn.com/static/Typography.astro_astro_type_script_index_0_lang.Ds8gm9zL.js/static/Typography.astro_astro_type_script_index_0_lang.D...
nordvpn.com/static/Tracy.astro_astro_type_script_index_0_lang.BGG1roXS.jsnordvpn.com/static/Tracy.astro_astro_type_script_index_0_lang.BGG1roXS.js.map
/static/TrackersRuntimeScript.astro_astro_type_script_ind.../static/TrackersRuntimeScript.astro_astro_type_script_ind...
nordvpn.com/static/Tooltip.CxcCQ2dg.jsnordvpn.com/static/Tooltip.CxcCQ2dg.js.map
nordvpn.com/static/Toggle.GDBvWU03.jsnordvpn.com/static/Toggle.GDBvWU03.js.map
nordvpn.com/static/throttle.DFVxsWuD.jsnordvpn.com/static/throttle.DFVxsWuD.js.map
nordvpn.com/static/Text.C3UZK_lN.jsnordvpn.com/static/Text.C3UZK_lN.js.map
nordvpn.com/static/store.DQUTDJsX.jsnordvpn.com/static/store.DQUTDJsX.js.map
nordvpn.com/static/StatusBar.FiLktfgR.jsnordvpn.com/static/StatusBar.FiLktfgR.js.map
nordvpn.com/static/sendTracyEvent.BnAI95h-.jsnordvpn.com/static/sendTracyEvent.BnAI95h-.js.map
nordvpn.com/static/sendEvent.D-Suf0I9.jsnordvpn.com/static/sendEvent.D-Suf0I9.js.map
nordvpn.com/static/Section.astro_astro_type_script_index_0_lang.Bzz070xq.jsnordvpn.com/static/Section.astro_astro_type_script_index_0_lang.Bzz070xq.js.map
nordvpn.com/static/ScrollRevealText.DCAchuPc.jsnordvpn.com/static/ScrollRevealText.DCAchuPc.js.map
nordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Dm6JX4GQ.jsnordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Dm6JX4GQ.js.map
nordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Cop7Qfos.jsnordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Cop7Qfos.js.map
nordvpn.com/static/ModalProvider.DfVISwGM.jsnordvpn.com/static/ModalProvider.DfVISwGM.js.map
nordvpn.com/static/Link.CpcDXfx6.jsnordvpn.com/static/Link.CpcDXfx6.js.map
nordvpn.com/static/js.cookie.bUZaaO7_.jsnordvpn.com/static/js.cookie.bUZaaO7_.js.map
nordvpn.com/static/isFlagAttributeEnabled.DpKWbKea.jsnordvpn.com/static/isFlagAttributeEnabled.DpKWbKea.js.map
nordvpn.com/static/getUserConnectionData.6JbCA4yp.jsnordvpn.com/static/getUserConnectionData.6JbCA4yp.js.map
nordvpn.com/static/getSectionInfo.BtsKDV8h.jsnordvpn.com/static/getSectionInfo.BtsKDV8h.js.map
nordvpn.com/static/getExperiments.BLe8T5px.jsnordvpn.com/static/getExperiments.BLe8T5px.js.map
nordvpn.com/static/getCookieValue.BAKycxQw.jsnordvpn.com/static/getCookieValue.BAKycxQw.js.map
nordvpn.com/static/Footer.astro_astro_type_script_index_0_lang.fkNycPst.jsnordvpn.com/static/Footer.astro_astro_type_script_index_0_lang.fkNycPst.js.map
nordvpn.com/static/extractGAExtraParams.ClFPXyZN.jsnordvpn.com/static/extractGAExtraParams.ClFPXyZN.js.map
nordvpn.com/static/constants.DK5GWugY.jsnordvpn.com/static/constants.DK5GWugY.js.map
nordvpn.com/static/constants.Cg0fBojz.jsnordvpn.com/static/constants.Cg0fBojz.js.map
nordvpn.com/static/client.DBJgs0r6.jsnordvpn.com/static/client.DBJgs0r6.js.map
nordvpn.com/static/buildGAExtraAttributes.BdGPlLjr.jsnordvpn.com/static/buildGAExtraAttributes.BdGPlLjr.js.map
nordvpn.com/static/browser.XDnACV9c.jsnordvpn.com/static/browser.XDnACV9c.js.map
nordvpn.com/static/Base.astro_astro_type_script_index_0_lang.DI-7jF0c.jsnordvpn.com/static/Base.astro_astro_type_script_index_0_lang.DI-7jF0c.js.map
nordvpn.com/static/Base.astro_astro_type_script_index_0_lang.CwMAZhEC.jsnordvpn.com/static/Base.astro_astro_type_script_index_0_lang.CwMAZhEC.js.map
nordvpn.com//IntersectAnimation.astro_astro_type_script_index_0_lang....
browser.sentry-cdn.com/9.34.0/extraerrordata.min.jsbrowser.sentry-cdn.com/9.34.0/extraerrordata.min.js.map
browser.sentry-cdn.com/9.34.0/bundle.min.jsbrowser.sentry-cdn.com/9.34.0/bundle.min.js.map
Uses HTTPS
Avoids deprecated APIs
Avoids third-party cookies
Allows users to paste into input fields
Avoids requesting the geolocation permission on page load
Avoids requesting the notification permission on page load
Displays images with correct aspect ratio
Serves images with appropriate resolution
Page has the HTML doctype
Properly defines charset
No browser errors logged to the console
No issues in the `Issues` panel in Chrome Devtools
Ensure CSP is effective against XSS attacks
Ensure proper origin isolation with COOP
Mitigate DOM-based XSS with Trusted Types
Redirects HTTP traffic to HTTPS
Use a strong HSTS policy
Mitigate clickjacking with XFO or CSP
Detected JavaScript libraries
92

SEO

These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on Core Web Vitals. Learn more about Google Search Essentials.

Content Best Practices

Descriptive link text helps search engines understand your content. Learn how to make links more accessible.

Link destinationLink Text
/m/8d5f43e805d0c30/original/Comprehensive-VPN-Testing-Rep...here

Format your HTML in a way that enables crawlers to better understand your app’s content.

Structured data is valid
Page isn’t blocked from indexing
Document has a `<title>` element
Document has a meta description
Page has successful HTTP status code
Links are crawlable
robots.txt is valid
Image elements have `[alt]` attributes
Document has a valid `hreflang`
Document has a valid `rel=canonical`

Lighthouse Scores

Industry-standard audits powered by Google Lighthouse. — Desktop

93
Performance Overall performance score (0–100) based on Core Web Vitals and other metrics. 90+ is good.
91
Accessibility Measures how accessible the page is for users with disabilities. Checks color contrast, ARIA labels, and semantic HTML.
100
Best Practices Checks for modern web development best practices including HTTPS, no console errors, and secure JavaScript.
92
SEO Measures basic SEO optimizations: meta tags, crawlability, link text, and mobile friendliness.

Core Web Vitals

Key metrics that affect user experience. — Desktop

First Contentful Paint First Contentful Paint — how long until the browser renders the first piece of content. Under 1.8s is good.

1.02 s

Largest Contentful Paint Largest Contentful Paint — how long until the largest visible element loads. Under 2.5s is good.

1.48 s

Total Blocking Time Total Blocking Time — total time the main thread was blocked, preventing user input. Under 200ms is good.

0 ms

Cumulative Layout Shift Cumulative Layout Shift — measures visual stability. How much the page layout shifts during loading. Under 0.1 is good.

0.006

Speed Index Speed Index — how quickly content is visually displayed during load. Under 3.4s is good.

1.02 s

Time to Interactive Time to Interactive — how long until the page is fully interactive and responds to user input. Under 3.8s is good.

1.48 s

Detailed Report

Audit breakdown by category with detailed findings.

93

Performance

Insights

Remove large, duplicate JavaScript modules from bundles to reduce unnecessary bytes consumed by network activity.

Polyfills and transforms enable older browsers to use new JavaScript features. However, many aren't necessary for modern browsers. Consider modifying your JavaScript build process to not transpile Baseline features, unless you know you must support older browsers. Learn why most sites can deploy ES6+ code without transpiling

3rd party code can significantly impact load performance. Reduce and defer loading of 3rd party code to prioritize your page's content.

Your first network request is the most important. Reduce its latency by avoiding redirects, ensuring a fast server response, and enabling text compression.

A forced reflow occurs when JavaScript queries geometric properties (such as offsetWidth) after styles have been invalidated by a change to the DOM state. This can result in poor performance. Learn more about forced reflows and possible mitigations.

headings: [map[key:source label:Source valueType:source-location] map[granularity:1 key:reflowTime label:Total reflow time valueType:ms]]
items: [map[reflowTime:50.095 source:map[type:text value:[unattributed]]]]

Avoid chaining critical requests by reducing the length of chains, reducing the download size of resources, or deferring the download of unnecessary resources to improve page load.

description: [preconnect](https://developer.chrome.com/docs/lighthouse/performance/uses-rel-preconnect/) hints help the browser establish a connection earlier in the page load, saving time when the first request for that origin is made. The following are the origins that the page preconnected to.
title: Preconnected origins
description: Add [preconnect](https://developer.chrome.com/docs/lighthouse/performance/uses-rel-preconnect/) hints to your most important origins, but try to use no more than 4.
title: Preconnect candidates
value: No additional origins are good candidates for preconnecting

Requests are blocking the page's initial render, which may delay LCP. Deferring or inlining can move these network requests out of the critical path.

URLTransfer SizeDuration
s1.nordcdn.com/d/consent/prod/init.js?pre=gdpr2.2 KiB276 ms
nordvpn.com/static/index.CUdPnOUj.css29.9 KiB293 ms
s1.nordcdn.com/d/consent/prod/main.css2.3 KiB291 ms
nordvpn.com/static/index.M940szoQ.css2.9 KiB173 ms

A long cache lifetime can speed up repeat visits to your page. Learn more about caching.

RequestCache TTLTransfer Size
nordvpn.com/cc/1800.0 s175.5 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/39ca2a01-6a2...14400.0 s45.7 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/6ece0039-0a5...14400.0 s30.1 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/39faf61f-6fe...14400.0 s21.4 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/85522390-b3c...14400.0 s19.6 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/fd518e73-8c3...14400.0 s10.3 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/1fd00f7d-a5e...14400.0 s9.6 KiB
s1.nordcdn.com/d/consent/prod/main.js604800.0 s54.4 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/07baa1ee-26b...14400.0 s7.4 KiB
/v1/https://sb.nordcdn.com/m/4d04fbeaa53c0380/original/th...14400.0 s7.4 KiB
/v1/fr_auto/https://sb.nordcdn.com/transform/1c414d1d-c7c...14400.0 s5.8 KiB
/v1/https://sb.nordcdn.com/m/1d7706f1ee3d2bb/original/tp-...14400.0 s3.3 KiB
/v1/https://sb.nordcdn.com/m/12bcfcf574fc6b06/original/cr...14400.0 s2.4 KiB
/d/latest/i/index.js?cu=https://d.nordvpn.com/1/cc&p=nord...604800.0 s7.9 KiB
/v1/https://sb.nordcdn.com/m/4dc4e405b9825bd4/original/pl...14400.0 s762 B
s1.nordcdn.com/d/consent/prod/main.css604800.0 s2.3 KiB
s1.nordcdn.com/d/consent/prod/init.js?pre=gdpr604800.0 s2.2 KiB

Reducing the download time of images can improve the perceived load time of the page and LCP. Learn more about optimizing image size

URLResource SizeEst Savings
header#Hero_01 > div.relative > picture.absolute > img.h-full header#Hero_01 > div.relative > picture.absolute > img.h-full
/v1/fr_auto/https://sb.nordcdn.com/transform/39ca2a01-6a2...45.0 KiB33.7 KiB
A man using a VPN service on his phone to access a free and open internet. span > div > picture > img
/v1/fr_auto/https://sb.nordcdn.com/transform/6ece0039-0a5...29.4 KiB22.7 KiB
NordVPN app interface on a laptop showcasing a super-fast VPN connection. span > div > picture > img
/v1/fr_auto/https://sb.nordcdn.com/transform/39faf61f-6fe...20.6 KiB15.2 KiB
A security feature with anti-malware functionalities and advanced browsing prot… span > div > picture > img
/v1/fr_auto/https://sb.nordcdn.com/transform/85522390-b3c...18.9 KiB14.6 KiB

These insights are also available in the Chrome DevTools Performance Panel - record a trace to view more detailed information.

Diagnostics

Reduce unused rules from stylesheets and defer CSS not used for above-the-fold content to decrease bytes consumed by network activity. Learn how to reduce unused CSS.

Estimated savings: 0.0 ms 37.5 KiB
URLTransfer SizeEst Savings
@font-face{font-display:swap;font-family:Inter;font-style:normal;font-weight:400;src:url(data:font/…37.5 KiB37.5 KiB

Reduce unused JavaScript and defer loading scripts until they are required to decrease bytes consumed by network activity. Learn how to reduce unused JavaScript.

Estimated savings: 0.0 ms 69.7 KiB
URLTransfer SizeEst Savings
nordvpn.com/cc/175.2 KiB69.7 KiB

More information about the performance of your application. These numbers don't directly affect the Performance score.

Redirects introduce additional delays before the page can be loaded. Learn how to avoid page redirects.

Estimated savings: 287 ms
URLTime Spent
www.nordvpn.com/287 ms
nordvpn.com/0.0 ms
Time to Interactive 1.5 s
Layout shift culprits
Optimize DOM size
Font display
LCP breakdown
LCP request discovery
Modern HTTP
Optimize viewport for mobile
Max Potential First Input Delay 40 ms
Minify CSS
Minify JavaScript
Avoids enormous network payloads Total size was 738 KiB
User Timing marks and measures 15 user timings
JavaScript execution time 0.1 s
Minimizes main-thread work 1.0 s
Image elements have explicit `width` and `height`
Page didn't prevent back/forward cache restoration
Network Requests
Network Round Trip Times 30 ms
Server Backend Latencies 3,280 ms
Tasks
Diagnostics
Metrics
Screenshot Thumbnails
Final Screenshot
Script Treemap Data
Resources Summary
Initial server response time was short Root document took 80 ms
Avoid large layout shifts 2 layout shifts found
INP breakdown
Avoid long main-thread tasks
Avoid non-composited animations
91

Accessibility

These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.

ARIA

Using ARIA attributes in roles where they are prohibited can mean that important information is not communicated to users of assistive technologies. Learn more about prohibited ARIA roles.

Failing Elements
NordVPN is about being in control. With NordVPN, you get peace of mind knowing … div.mx-4 > div.container > astro-island > div

These are opportunities to improve the usage of ARIA in your application which may enhance the experience for users of assistive technology, like a screen reader.

Contrast

Low-contrast text is difficult or impossible for many users to read. Learn how to provide sufficient color contrast.

Failing Elements
NordVPN div.container > astro-island > div > span.heading-2xl
is div.container > astro-island > div > span.heading-2xl
about div.container > astro-island > div > span.heading-2xl
being div.container > astro-island > div > span.heading-2xl
in div.container > astro-island > div > span.heading-2xl
control. div.container > astro-island > div > span.heading-2xl
With div.container > astro-island > div > span.heading-2xl
NordVPN, div.container > astro-island > div > span.heading-2xl
you div.container > astro-island > div > span.heading-2xl
get div.container > astro-island > div > span.heading-2xl
peace div.container > astro-island > div > span.heading-2xl
of div.container > astro-island > div > span.heading-2xl
mind div.container > astro-island > div > span.heading-2xl
knowing div.container > astro-island > div > span.heading-2xl
that div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
internet div.container > astro-island > div > span.heading-2xl
connection div.container > astro-island > div > span.heading-2xl
is div.container > astro-island > div > span.heading-2xl
encrypted, div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
devices div.container > astro-island > div > span.heading-2xl
are div.container > astro-island > div > span.heading-2xl
shielded div.container > astro-island > div > span.heading-2xl
from div.container > astro-island > div > span.heading-2xl
malware div.container > astro-island > div > span.heading-2xl
and div.container > astro-island > div > span.heading-2xl
snoopers, div.container > astro-island > div > span.heading-2xl
and div.container > astro-island > div > span.heading-2xl
your div.container > astro-island > div > span.heading-2xl
digital div.container > astro-island > div > span.heading-2xl
life div.container > astro-island > div > span.heading-2xl
belongs div.container > astro-island > div > span.heading-2xl
to div.container > astro-island > div > span.heading-2xl
you. div.container > astro-island > div > span.heading-2xl

These are opportunities to improve the legibility of your content.

Best practices

Touch targets with sufficient size and spacing help users who may have difficulty targeting small controls to activate the targets. Learn more about touch targets.

Failing Elements
Pricing div.header-nav > div.group > div.flex > a.align-bottom

These items highlight common accessibility best practices.

Visible text labels that do not match the accessible name can result in a confusing experience for screen reader users. Learn more about accessible names.

Failing Elements
download a VPN app div.container > div.col-span-12 > p > a.align-bottom
VPN meaning div.grid > div.col-span-12 > p > a.align-bottom
here div.flex > div > p#disclaimer > a.align-bottom
Interactive controls are keyboard focusable
Interactive elements indicate their purpose and state
The page has a logical tab order
Visual order on the page follows DOM order
User focus is not accidentally trapped in a region
The user's focus is directed to new content added to the page
HTML5 landmark elements are used to improve navigation
Offscreen content is hidden from assistive technology
Custom controls have associated labels
Custom controls have ARIA roles
`[aria-*]` attributes match their roles
`[aria-hidden="true"]` is not present on the document `<body>`
`[role]`s have all required `[aria-*]` attributes
Elements with an ARIA `[role]` that require children to contain a specific `[role]` have all required children.
`[role]`s are contained by their required parent element
`[role]` values are valid
`[aria-*]` attributes have valid values
`[aria-*]` attributes are valid and not misspelled
Buttons have an accessible name
Image elements have `[alt]` attributes
`[user-scalable="no"]` is not used in the `<meta name="viewport">` element and the `[maximum-scale]` attribute is not less than 5.
Select elements have associated label elements.
ARIA attributes are used as specified for the element's role
Elements with `role="dialog"` or `role="alertdialog"` have accessible names.
`[aria-hidden="true"]` elements do not contain focusable descendents
Document has a `<title>` element
`<html>` element has a `[lang]` attribute
`<html>` element has a valid value for its `[lang]` attribute
Links are distinguishable without relying on color.
Links have a discernible name
Lists contain only `<li>` elements and script supporting elements (`<script>` and `<template>`).
List items (`<li>`) are contained within `<ul>`, `<ol>` or `<menu>` parent elements
No element has a `[tabindex]` value greater than 0
`[lang]` attributes have a valid value
Heading elements appear in a sequentially-descending order
Document has a main landmark.
Deprecated ARIA roles were not used
`[accesskey]` values are unique
`button`, `link`, and `menuitem` elements have accessible names
ARIA input fields have accessible names
ARIA `meter` elements have accessible names
ARIA `progressbar` elements have accessible names
Elements with the `role=text` attribute do not have focusable descendents.
ARIA toggle fields have accessible names
ARIA `tooltip` elements have accessible names
ARIA `treeitem` elements have accessible names
The page contains a heading, skip link, or landmark region
`<dl>`'s contain only properly-ordered `<dt>` and `<dd>` groups, `<script>`, `<template>` or `<div>` elements.
Definition list items are wrapped in `<dl>` elements
ARIA IDs are unique
No form fields have multiple labels
`<frame>` or `<iframe>` elements have a title
`<html>` element has an `[xml:lang]` attribute with the same base language as the `[lang]` attribute.
Input buttons have discernible text.
`<input type="image">` elements have `[alt]` text
Form elements have associated labels
The document does not use `<meta http-equiv="refresh">`
`<object>` elements have alternate text
Skip links are focusable.
Cells in a `<table>` element that use the `[headers]` attribute refer to table cells within the same table.
`<th>` elements and elements with `[role="columnheader"/"rowheader"]` have data cells they describe.
`<video>` elements contain a `<track>` element with `[kind="captions"]`
Tables have different content in the summary attribute and `<caption>`.
All heading elements contain content.
Uses ARIA roles only on compatible elements
Image elements do not have `[alt]` attributes that are redundant text.
Identical links have the same purpose.
Tables use `<caption>` instead of cells with the `[colspan]` attribute to indicate a caption.
`<td>` elements in a large `<table>` have one or more table headers.
100

Best Practices

General

Source maps translate minified code to the original source code. This helps developers debug in production. In addition, Lighthouse is able to provide further insights. Consider deploying source maps to take advantage of these benefits. Learn more about source maps.

URLMap URL
nordvpn.com/cc/
nordvpn.com/static/web.G1HyAhrz.jsnordvpn.com/static/web.G1HyAhrz.js.map
nordvpn.com/static/utils.Cbt8C2xX.jsnordvpn.com/static/utils.Cbt8C2xX.js.map
nordvpn.com/static/Typography.astro_astro_type_script_index_0_lang.Ds8gm9zL.js/static/Typography.astro_astro_type_script_index_0_lang.D...
nordvpn.com/static/Tracy.astro_astro_type_script_index_0_lang.BGG1roXS.jsnordvpn.com/static/Tracy.astro_astro_type_script_index_0_lang.BGG1roXS.js.map
/static/TrackersRuntimeScript.astro_astro_type_script_ind.../static/TrackersRuntimeScript.astro_astro_type_script_ind...
nordvpn.com/static/Tooltip.CxcCQ2dg.jsnordvpn.com/static/Tooltip.CxcCQ2dg.js.map
nordvpn.com/static/throttle.DFVxsWuD.jsnordvpn.com/static/throttle.DFVxsWuD.js.map
nordvpn.com/static/Text.C3UZK_lN.jsnordvpn.com/static/Text.C3UZK_lN.js.map
nordvpn.com/static/store.DQUTDJsX.jsnordvpn.com/static/store.DQUTDJsX.js.map
nordvpn.com/static/StatusBar.FiLktfgR.jsnordvpn.com/static/StatusBar.FiLktfgR.js.map
nordvpn.com/static/sendTracyEvent.BnAI95h-.jsnordvpn.com/static/sendTracyEvent.BnAI95h-.js.map
nordvpn.com/static/sendEvent.D-Suf0I9.jsnordvpn.com/static/sendEvent.D-Suf0I9.js.map
nordvpn.com/static/Section.astro_astro_type_script_index_0_lang.Bzz070xq.jsnordvpn.com/static/Section.astro_astro_type_script_index_0_lang.Bzz070xq.js.map
nordvpn.com/static/ScrollRevealText.DCAchuPc.jsnordvpn.com/static/ScrollRevealText.DCAchuPc.js.map
nordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Dm6JX4GQ.jsnordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Dm6JX4GQ.js.map
nordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Cop7Qfos.jsnordvpn.com/static/Script.astro_astro_type_script_index_0_lang.Cop7Qfos.js.map
nordvpn.com/static/ModalProvider.DfVISwGM.jsnordvpn.com/static/ModalProvider.DfVISwGM.js.map
nordvpn.com/static/Link.CpcDXfx6.jsnordvpn.com/static/Link.CpcDXfx6.js.map
nordvpn.com/static/js.cookie.bUZaaO7_.jsnordvpn.com/static/js.cookie.bUZaaO7_.js.map
nordvpn.com/static/isFlagAttributeEnabled.DpKWbKea.jsnordvpn.com/static/isFlagAttributeEnabled.DpKWbKea.js.map
nordvpn.com/static/getUserConnectionData.6JbCA4yp.jsnordvpn.com/static/getUserConnectionData.6JbCA4yp.js.map
nordvpn.com/static/getSectionInfo.BtsKDV8h.jsnordvpn.com/static/getSectionInfo.BtsKDV8h.js.map
nordvpn.com/static/getExperiments.BLe8T5px.jsnordvpn.com/static/getExperiments.BLe8T5px.js.map
nordvpn.com/static/getCookieValue.BAKycxQw.jsnordvpn.com/static/getCookieValue.BAKycxQw.js.map
nordvpn.com/static/Footer.astro_astro_type_script_index_0_lang.fkNycPst.jsnordvpn.com/static/Footer.astro_astro_type_script_index_0_lang.fkNycPst.js.map
nordvpn.com/static/extractGAExtraParams.ClFPXyZN.jsnordvpn.com/static/extractGAExtraParams.ClFPXyZN.js.map
nordvpn.com/static/constants.DK5GWugY.jsnordvpn.com/static/constants.DK5GWugY.js.map
nordvpn.com/static/constants.Cg0fBojz.jsnordvpn.com/static/constants.Cg0fBojz.js.map
nordvpn.com/static/client.DBJgs0r6.jsnordvpn.com/static/client.DBJgs0r6.js.map
nordvpn.com/static/buildGAExtraAttributes.BdGPlLjr.jsnordvpn.com/static/buildGAExtraAttributes.BdGPlLjr.js.map
nordvpn.com/static/browser.XDnACV9c.jsnordvpn.com/static/browser.XDnACV9c.js.map
nordvpn.com/static/Base.astro_astro_type_script_index_0_lang.DI-7jF0c.jsnordvpn.com/static/Base.astro_astro_type_script_index_0_lang.DI-7jF0c.js.map
nordvpn.com/static/Base.astro_astro_type_script_index_0_lang.CwMAZhEC.jsnordvpn.com/static/Base.astro_astro_type_script_index_0_lang.CwMAZhEC.js.map
nordvpn.com//IntersectAnimation.astro_astro_type_script_index_0_lang....
browser.sentry-cdn.com/9.34.0/extraerrordata.min.jsbrowser.sentry-cdn.com/9.34.0/extraerrordata.min.js.map
browser.sentry-cdn.com/9.34.0/bundle.min.jsbrowser.sentry-cdn.com/9.34.0/bundle.min.js.map
Uses HTTPS
Avoids deprecated APIs
Avoids third-party cookies
Allows users to paste into input fields
Avoids requesting the geolocation permission on page load
Avoids requesting the notification permission on page load
Displays images with correct aspect ratio
Serves images with appropriate resolution
Page has the HTML doctype
Properly defines charset
No browser errors logged to the console
No issues in the `Issues` panel in Chrome Devtools
Ensure CSP is effective against XSS attacks
Ensure proper origin isolation with COOP
Mitigate DOM-based XSS with Trusted Types
Redirects HTTP traffic to HTTPS
Use a strong HSTS policy
Mitigate clickjacking with XFO or CSP
Detected JavaScript libraries
92

SEO

These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on Core Web Vitals. Learn more about Google Search Essentials.

Content Best Practices

Descriptive link text helps search engines understand your content. Learn how to make links more accessible.

Link destinationLink Text
/m/8d5f43e805d0c30/original/Comprehensive-VPN-Testing-Rep...here

Format your HTML in a way that enables crawlers to better understand your app’s content.

Structured data is valid
Page isn’t blocked from indexing
Document has a `<title>` element
Document has a meta description
Page has successful HTTP status code
Links are crawlable
robots.txt is valid
Image elements have `[alt]` attributes
Document has a valid `hreflang`
Document has a valid `rel=canonical`

Send Feedback