indexo.dev

biffa.co.uk

.uk crawl

First seen 2026-04-14 · Last seen 2026-05-15 · ok HTTP/1.1 200 539 ms crawled 2026-05-08

GB · 20.108.127.95 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Waste Management – Affordable & Reliable Services - Biffa
Description
We provide sustainable and responsible solutions for all your business waste management needs from collection to disposal. Order online today!
Language
en
Canonical
https://www.biffa.co.uk/

Open Graph

url
https://www.biffa.co.uk/
title
Waste Management – Affordable & Reliable Services
site name
Biffa
description
Biffa is the leading integrated waste management company in the UK for businesses. Find out more about our sustainable and responsible commercial services today.

Technology

CDN
Azure Front Door
CMS
Gatsby
Analytics
  • Google Tag Manager
Cookie consent
  • Usercentrics
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • web.cmp.usercentrics.eu×4
  • dev.visualwebsiteoptimizer.com×1
  • fonts.gstatic.com×1
  • widget.trustpilot.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
123-Reg Limited t/a 123-reg
Created
1997-06-23
Expires
2026-06-23 34 days left
Updated
2025-06-24
Name servers
  • ns25.domaincontrol.com.
  • ns26.domaincontrol.com.

DNS records live

NS
  • ns25.domaincontrol.com
  • ns26.domaincontrol.com
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 20 eu-smtp-inbound-2.mimecast.com
TXT
Show 7 TXT records
  • MS=ms71980967
  • MS=ms17708964
  • wrike-verification=NjM1ODcxMDpmZDliNmQ1ZDM4ZjY0NjliZDIyNmI0NWRlYmJhYjA2YTdmNDcwYzk2MTlmOWY3YWJkYzg0NjMyNWQzYzFlMTRi
  • apple-domain-verification=1Q-1tn6-EmNnyutpkYjJD9rIuNOmwyfLWNPs8HTg6cw
  • peFppAgZqzcyweitZiBf8WWOFpB4VnR2U9mJp5WDeIM1bAJAZX3NfzcPSBeOsPD3IMzbGUmThhqOiOuH1AcimA==
  • google-site-verification=ML273cJTB2GiZgw-4sdRsTN3IaBEZub8jmTUr9hjApY
  • apple-domain-verification=Sj7dHIaxSxJ9hXZ3

Email authentication partial

SPF
v=spf1 include:eu._netblocks.mimecast.com include:_spf.sidetrade.net include:service-now.com include:nw010.com include:_spf.qualtrics.com include:_spf.rejuvenate.digital ip4:208.185.229.0/24 ip4:208.185.235.0/24 ip4:148.59.108.0/23 ip4:148.59.106.0/23 ip4:18.168.140.58 ip4:18.168.51.200 ip4:148.59.101.16/28 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@biffa.co.uk; ruf=mailto:dmarc@biffa.co.uk; fo=1
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9c6S/RZFrhmrwYoDU5R3OHXDXot6ymvIpCcpsiJgMmF8aqnL3OxyOClA6wl+j5M6xNNcGDAnjB0p+oPvd…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9gaHM5O7Sj+S+4tyH5nqMbUDWr7CNCI4YIrZ6aAF3glHXkI3/rn5V3BigmvrJ4DiOAyeKRYJZK0xP3Zq5gTkE+B…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-02-04 to 2027-03-08
Expires in 292 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.biffa.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
connect-src 'self' *; default-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.trueengage.com; font-src 'self' fonts.gstatic.com fonts.googleapis.com *.typekit.net *.hotjar.com *.fontshare.com; frame-src 'self' vimeo.com *.vimeo.com *.vimeocdn.com *.sharethis.com *.sharethisedge.com *.doubleclick.net www.googletagmanager.com biffacdnendpoint.azureedge.net *.youtube.com *.facebook.com biffa.qualtrics.com *.visualwebsiteoptimizer.com app.vwo.com outlook.office365.com outlook.office.com maps.googleapis.com *.google.com *.trustpilot.com *.usercentrics.eu; img-src 'self' data: * maps.googleapis.com; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' * maps.googleapis.com; style-src 'self' *.googleapis.com 'unsafe-inline' data: *.typekit.net *.postcodeanywhere.co.uk *.sharethis.com *.sharethisedge.com *.stackadapt.com *.visualwebsiteoptimizer.com app.vwo.com cdn.pushcrew.com *.trueengage.com outlook.office365.com outlook.office.com cdn.jsdelivr.net maps.googleapis.com *.produ
strict-transport-security
max-age=31536000; includeSubDomains

Links to (9)

Linked from (8)