artfund.org

HTML metadata

Title: Art Fund
Description: Art Fund is the national charity for art. Discover more art with a National Art Pass and help us fund the vital work of museums and galleries across the UK.
Language: en
Canonical: https://www.artfund.org

Open Graph

url: https://www.artfund.org
title: Art Fund

Technology

CDN: Amazon CloudFront
CMS: Nuxt

Third-party hosts loaded (4)

js.stripe.com×1
maps.googleapis.com×1
unpkg.com×1
www.google.com×1

Contact

Address: 2 Granary Square, N1C 4BH, London, United Kingdom

Registration

Registrar

Mesh Digital Limited

Created

1998-12-24

Expires

2028-12-24 950 days left

Updated

2026-02-07

Name servers

ns-1520.awsdns-62.org
ns-106.awsdns-13.com
ns-1899.awsdns-45.co.uk
ns-826.awsdns-39.net

DNS records live

NS

ns-106.awsdns-13.com
ns-1520.awsdns-62.org
ns-1899.awsdns-45.co.uk
ns-826.awsdns-39.net

MX

10 eu-smtp-inbound-1.mimecast.com
10 eu-smtp-inbound-2.mimecast.com

TXT

Show 12 TXT records

atlassian-sending-domain-verification=e25a9057-3885-4562-ad99-26c9242da5ad
c6t4q6udj09dv1ub0oqvtnfhu
c6xLVPjU7E39qLErP8gV5vp2alv99EASgWuOVLmZIuOrW0pexJzvH/4BHtf46gWSRsoeBnOSJ4X9AuDZg92jUA==
docusign=0a42073f-df0b-430f-9430-a6bd80e4a00a
docusign=2ad7ff5f-2d77-4222-9d07-96d95150837d
google-site-verification=8fGdbfFWjpMKJ_HWakfV-uWCQ76pIatOo5eIYJW3o9k
google-site-verification=rbTx8Zc4p6QspZP5bcIKmylPpM8LVjvE3Z80jkPIcQI
GN-bWFuZ28tYmUzNjI5YmE=
MS=65D167A5767C4D8E6ABA43252B3545E73E6B4B5C
MS=ms31773901
anthropic-domain-verification-y88qza=Hpp30shl0adRHIUnPB91ukO0g
atlassian-domain-verification=uMvwf4stxII4kRzfVfAAIHlyYwchvGkpyZsq/9cBRcO1fjz9GDBAxZ84zriLwvC8

Email authentication strong

SPF

v=spf1 include:mango.gnatta.com include:eu._netblocks.mimecast.com include:_spf.atlassian.net include:_spf.salesforce.com  mx -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc-rua@dmarc.service.gov.uk, mailto:dmarc@artfund.org; ruf=mailto:dmarc@artfund.org; fo=1;

policy: quarantine

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1gU64wM331J2x42nJ5l0VWV9mz2yyXOQwlgqvQ5eOkANWTV43m7GSCUU9MBBKHDpm6+8o9nY+5vm506tZ…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8tvSmzHnj/KkHIVAuonmai05ZFiat3Js8GETYTxg0Pfb3773i53A56TIx89vrodwSgVPFTQFqQ1Tg/KOpQM6YlC…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2026-01-22 to 2027-02-21

Expires in 278 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.artfund.org/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: camera=(), microphone=(), geolocation=(self "https://*.google.com"), interest-cohort=(), fullscreen=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.oilstone.uk *.amplifyapp.com *.qaartfund.org *.uatartfund.org *.artfund.org *.cloudfront.net; media-src 'self' *.oilstone.uk *.amplifyapp.com *.qaartfund.org *.uatartfund.org *.artfund.org *.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.oilstone.uk *.amplifyapp.com *.qaartfund.org *.uatartfund.org *.artfund.org *.typeform.com *.instagram.com *.twitter.com *.infogram.com embed.acast.com *.clarity.ms *.bing.com *.dotdigital-pages.com *.soundcloud.com bat.bing.net *.googletagmanager.com tagmanager.google.com www.googleadservices.com unpkg.com www.google.com pagead2.googlesyndication.com googleads.g.doubleclick.net *.googleapis.com *.gstatic.com *.youtube.com *.ninetailed.io *.ninetailed.co js.stripe.com *.commercelayer.io *.auth0.com *.typekit.net *.doubleclick.net connect.facebook.net static.hotjar.com script.hotjar.com *.clarity.ms edge.fullstory.com bat.bing.com bat.bing.net secure.quantserve.com rules.quantcount.com unpkg.com *.unpkg.com sc-sta
strict-transport-security: max-age=63072000; includeSubDomains