bigideasgroup.co.uk

HTML metadata

Title: BIG Ideas Group | BIG Ideas Group | London
Description: BIG Ideas Group | London
Language: en
Canonical: https://bigideasgroup.co.uk/

Open Graph

url: https://bigideasgroup.co.uk/
title: BIG Ideas Group | BIG Ideas Group | London
site name: BIG Ideas Group
description: BIG Ideas Group | London

Technology

Server: Google

Fonts

Google Fonts

Social widgets

Vimeo Embed

Third-party hosts loaded (6)

fonts.googleapis.com×3
api.mapbox.com×1
fonts.gstatic.com×1
player.vimeo.com×1
www.instagram.com×1
www.youtube.com×1

Contact

Address: 22 Charterhouse Square, EC1M 6DX, London, GB

Registration

Registrar

Easily Limited t/a easily.co.uk

Created

2001-01-29

Expires

2029-01-29 986 days left

Updated

2024-12-01

Name servers

ns0.dnsmadeeasy.com.
ns1.dnsmadeeasy.com.
ns2.dnsmadeeasy.com.
ns3.dnsmadeeasy.com.
ns4.dnsmadeeasy.com.

DNS records live

NS

ns0.dnsmadeeasy.com
ns1.dnsmadeeasy.com
ns2.dnsmadeeasy.com
ns3.dnsmadeeasy.com
ns4.dnsmadeeasy.com

MX

0 bigideasgroup-co-uk.mail.protection.outlook.com

TXT

replit-verify=08fb792a-dbdb-4f12-bcb8-086ac8258f57
slack-domain-verification=GguJp4kQewN32L4u9cCqegqtRabPndigq1Sazyak

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@bigideasgroup.co.uk; ruf=mailto:dmarc@bigideasgroup.co.uk; sp=reject; ri=84600;

policy: quarantine · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCb+2vQ7aWgOoK/Dl+PgHiaEyyRi659JzV0L4nUHoeS1s902o1b2HqLbqOLFw8QGa8sHue9raQPTbBWTINqKG…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BHcQIhI947Os1ZpOXWlk7kx6mI+kXHQs8MTUe8iNGUQWGd08+D5+tWCk7UWcIqZNdsyjr95dd+M8J…

selectors probed

Certificate (current)

E7

from 2026-03-19 to 2026-06-17

Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://bigideasgroup.co.uk/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: camera=(), microphone=(), geolocation=(), payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://accounts.google.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://accounts.google.com;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: blob: https:;media-src 'self' blob: data:;connect-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://*.mapbox.com https://events.mapbox.com https://api.open-meteo.com https://prod.spline.design https://unpkg.com https://accounts.google.com https://oauth2.googleapis.com;frame-src 'self' https://www.youtube.com https://player.vimeo.com https://www.instagram.com https://www.facebook.com https://www.tiktok.com https://www.google.com https://docs.google.com https://my.spline.design https://accounts.google.com;worker-src 'self' blob:;child-src 'self' blob:;object-src 'none';base-uri 'self';form-action 'self' https://accounts.google.com;frame-ancestors 'self' https://*.replit.dev https://*.replit.dev:* https://*.replit.app https://*.r
strict-transport-security: max-age=63072000; includeSubDomains, max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin

Linked from (2)

seedstudios.ai×2
seedstudio.ai×1