indexo.dev

barclaycard.co.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2382 ms crawled 2026-05-18

DE · 23.197.141.32 · AS16625 Akamai Technologies, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Homepage | Barclaycard
Description
Apply for a credit card, access your online banking and learn more about incentives, balance transfers and other benefits of being a Barclaycard holder
Language
en
Canonical
https://www.barclaycard.co.uk/personal

Open Graph

url
https://www.barclaycard.co.uk/personal
title
Homepage | Barclaycard
locale
en_GB
description
Apply for a credit card, access your online banking and learn more about incentives, balance transfers and other benefits of being a Barclaycard holder

Technology

CMS
Joomla

Third-party hosts loaded (2)

  • rum.hlx.page×1
  • smetrics.barclays.co.uk×1

Social

Registration

Registrar
CSC Corporate Domains, Inc
Created
1996-04-29
Expires
2027-04-29 343 days left
Updated
2026-04-25
Name servers
  • a1-71.akam.net.
  • a10-66.akam.net.
  • a11-67.akam.net.
  • a12-64.akam.net.
  • a18-65.akam.net.
  • a9-66.akam.net.
  • ns2.barcap.com.
  • ns3.barcap.com.
  • ns7.barcap.com.

DNS records live

NS
  • a1-71.akam.net
  • a10-66.akam.net
  • a11-67.akam.net
  • a12-64.akam.net
  • a18-65.akam.net
  • a9-66.akam.net
  • ns2.barcap.com
  • ns3.barcap.com
  • ns7.barcap.com
MX
  • 10 mxa-00146204.gslb.pphosted.com
  • 10 mxb-00146204.gslb.pphosted.com
TXT
  • docker-verification=be2aef33-18a1-435b-81e7-be4ebff24294
  • gospaceai-site-verification=c77504b0c72aecc7f47d1c61d9ec78d4b1748915a0c1bf5a517a48bef6d46cd8
  • B0A0R85297
Verified for
  • Adobe
  • Apple
  • Cisco
  • DocuSign
  • Google
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert EV RSA CA G2
from 2025-08-19 to 2026-09-17
Expires in 119 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.barclaycard.co.uk/personal

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none'; base-uri 'self'; frame-ancestors 'self' https://*.barclays.co.uk https://*.uk.barclays; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.crownpeak.com https://collect.tealiumiq.com https://tags.tiqcdn.com https://assets.adobedtm.com https://barclaysinternational.sc.omtrdc.net https://bat.bing.com https://cdn.decibelinsight.net https://app.decibelinsight.com https://collection.decibelinsight.net https://data.rci.eggplant.cloud https://googleads.g.doubleclick.net https://img.en25.com https://metrics.responsetap.com https://static-ssl.responsetap.com https://www.google.com https://www.googleadservices.com https://www.gstatic.com https://www.google-analytics.com https://www.media.barclays.co.uk https://edigitalsurvey.com https://barclaysbankplc.demdex.net https://siteintercept.qualtrics.com https://*.siteintercept.qualtrics.com https://btttag.com https://*.btttag.com https://widget.decibelinsight.net https://portal.decibel.com https://v6-eu.api.decibel.com http
strict-transport-security
max-age=63072000

Links to (6)

Linked from (7)