careys.co

HTML metadata

Title

Careys | Home

Description

Over 50 years ago, three brothers began building a legacy. Together, they created a company that has always stayed true to the core value at its heart -…

Language

en-GB

Generator

SEOmatic

Canonical

https://www.careys.co/

Translations

en-gb

Feeds

News RSS Feed RSS

Open Graph

url: https://www.careys.co/
title: Home
locale: en_GB
site name: Careys
description: Over 50 years ago, three brothers began building a legacy. Together, they created a company that has always stayed true to the core value at its heart -…

Technology

CDN: Cloudflare

Analytics

Google Analytics
Google Tag Manager

Third-party hosts loaded (4)

careys-group.transforms.svdcdn.com×33
www.googletagmanager.com×3
www.google-analytics.com×2
www.bdl.co×1

Social

Contact

Email

say.hello@careys.co

Phone

02089000221

Address

Carey House, Great Central Way, HA9 0HR, Wembley, Middlesex, United Kingdom

DNS records live

NS

ns77.domaincontrol.com
ns78.domaincontrol.com

MX

10 eu-smtp-inbound-1.mimecast.com
10 eu-smtp-inbound-2.mimecast.com

TXT

Show 7 TXT records

0ed1fe018a6b8ff85d515b49918eeefca80d06d56f
google-site-verification=_6C-N9S_oN5TUZFzMxvvjdYoLXVDzYAGhPLLbK-azjA
autodesk-domain-verification=_VcbHqcfodpCyQ_PbQdT
0320292f-935a-4774-9d36-41cdb4cedfac
v=spf1 include:_u.careys.co._spf.smart.ondmarc.com ~all
MS=ms47582267
apple-domain-verification=OTlIM3xqOQMCHOuc

Certificate (current)

E7

from 2026-04-04 to 2026-07-03

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.careys.co/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: no-referrer-when-downgrade
permissions-policy: accelerometer=(), ambient-light-sensor=(), battery=(), camera=(), display-capture=(), document-domain=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), speaker-selection=(), usb=(), web-share=(self), xr-spatial-tracking=(), autoplay=(self "https://www.youtube.com" "https://www.youtube-nocookie.com" "https://player.vimeo.com"), encrypted-media=(self "https://www.youtube.com" "https://www.youtube-nocookie.com" "https://player.vimeo.com"), fullscreen=(self "https://www.youtube.com" "https://www.youtube-nocookie.com" "https://player.vimeo.com"), picture-in-picture=(self "https://www.youtube.com" "https://www.youtube-nocookie.com" "https://player.vimeo.com")
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src 'self' https://www.googletagmanager.com https://www.google-analytics.com https://analytics.google.com https://stats.g.doubleclick.net https://region1.google-analytics.com https://consentcdn.cookiebot.com https://formspree.io https://vimeo.com https://*.vimeo.com https://*.vimeocdn.com https://www.careys.co; script-src 'self' https://www.googletagmanager.com https://www.google-analytics.com https://cdn.craft.cloud https://consent.cookiebot.com https://consentcdn.cookiebot.com https://player.vimeo.com https://cdn.jsdelivr.net 'sha256-yKluCNycFSWJl7HDW5vRU7/FgSDp7FPN0lFQSUqFLqw=' https://www.careys.co; style-src 'self' 'unsafe-hashes' https://cdn.craft.cloud https://fonts.googleapis.com https://consent.cookiebot.com https://consentcdn.cookiebot.com 'unsafe-inline' https://www.careys.co; font-src 'self' https://cdn.craft.cloud https://fonts.gstatic.com https://cdn.jsdelivr.net data: https://www.careys.co; img-src 'self' data: https: blob: https://www.google-
strict-transport-security: max-age=2592000

Links to (5)

Linked from (2)

supplychainschool.co.uk×2
bdl.co×1