bliss.org.uk

HTML metadata

Title: For babies born premature or sick | Bliss
Description: Our vision is that every baby born premature or sick in the UK has the best chance of survival and quality of life.
Language: en-GB
Generator: SEOmatic
Canonical: https://www.bliss.org.uk/

Open Graph

url: https://www.bliss.org.uk/
title: For babies born premature or sick | Bliss
locale: en_GB
see also: https://twitter.com/blisscharity
site name: Bliss
description: Our vision is that every baby born premature or sick in the UK has the best chance of survival and quality of life.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (7)

code.jquery.com×4
fonts.googleapis.com×4
cdn.kiprotect.com×1
cdnjs.cloudflare.com×1
fonts.gstatic.com×1
js.createsend1.com×1
www.googletagmanager.com×1

Social

Contact

Address: Fourth floor, Maya House, 134-138 Borough High Street, London,, SE1 1LB, London, United Kingdom

Registration

Registrar

Fastnet International Ltd

Created

1999-04-01

Expires

2027-04-01 316 days left

Updated

2026-03-30

Name servers

carrera.ns.cloudflare.com.
harvey.ns.cloudflare.com.

DNS records live

NS

carrera.ns.cloudflare.com
harvey.ns.cloudflare.com

MX

0 bliss-org-uk.mail.protection.outlook.com

TXT

google-site-verification=8ge8wygVNyS8278kVwysSZqfnwCtnWiBMAvJdLVPOmM
google-site-verification=fHy5qgbkCUD7AfKfqdjmhqLlt5XcP4cIfB8_rbWhp_4
EGWQXWL1BIFFETHVXCL6I5PGB8J7BUDELG906BDR3

Email authentication strong

SPF

v=spf1 mx ip4:212.42.180.221 ip4:212.49.216.9 ip4:79.173.130.66 ip4:87.224.83.66 include:spf.protection.outlook.com include:_spf.createsend.com include:spf.UK.exclaimer.net include:_spf.elasticemail.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:re+xzz1mbz9pyv@dmarc.postmarkapp.com; sp=none; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+oAfEjuCrrUwkj4pv/+eD1hzE8/S7Sz3Q7av8imIahKyy+e0r7fv5y4TbZDABuf0blujgkPP6uTHl…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4/YrSkN6+HbDJaFbO6L3DsEHwZiJjM2j7j0TpvqLid2nOO079dKBhJeU4JDisSieFoCsBhF/Gby+jAAW6…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwosLFUmK7CSZa5g5eW674WF3OdP9j7GSe79RzySioKevYOdbwIv+cCtmuELGN35sy1OOGclxkb/rFEz0S…

selectors probed

Certificate (current)

WE1

from 2026-04-12 to 2026-07-11

Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.bliss.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.jquery.com *.googleoptimize.com *.polyfill.io js.createsend1.com *.google.com *.googleapis.com *.google-analytics.com *.facebook.net *.gstatic.com *.hotjar.com *.muchloved.com cdnjs.cloudflare.com *.googletagmanager.com *.audioboom.com *.kiprotect.com *.recaptcha.net *.reciteme.com *.spotify.com *.maze.co *.tailwindcss.com *.calendly.com *.youtube.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.audioboom.com *.reciteme.com *.spotify.com *.googletagmanager.com; font-src 'self' fonts.gstatic.com *.hotjar.com *.reciteme.com *.spotify.com; img-src 'self' data: *.gstatic.com *.imgix.net *.google-analytics.com *.google.com *.google.co.uk *.googleapis.com s3.eu-west-2.amazonaws.com sr-bliss.s3.amazonaws.com *.facebook.com *.muchloved.com *.hotjar.com *.googletagmanager.com *.reciteme.com *.spotify.com; connect-src 'self' stats.g.doubleclick.net *.google-analytics.com *.googleapis.com *.getaddress.io *.hotjar.com *.
strict-transport-security: max-age=31536000

Links to (4)

Linked from (1)

slginvolvement.org.uk×2