caritaswestminster.org.uk

HTML metadata

Title

Homepage - Caritas Westminster

Language

en-GB

Generator

WordPress 6.9.4

Canonical

https://caritaswestminster.org.uk/

Feeds

Open Graph

url: https://caritaswestminster.org.uk/
title: Homepage - Caritas Westminster
locale: en_GB
site name: Caritas Westminster
description: Read our 2025 Annual Review Discover how we serve communities and support the most vulnerable across the Diocese of Westminster. Annual Review 2024 Discover our areas of work, achievements and […]

Technology

Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Fonts

Google Fonts

Social widgets

YouTube Embed

Third-party hosts loaded (6)

code.jquery.com×2
www.googletagmanager.com×2
cdn-cookieyes.com×1
confirmsubscription.com×1
fonts.gstatic.com×1
www.youtube.com×1

Social

Registration

Registrar

Cloudflare, Inc.

Created

2012-05-17

Expires

2027-05-17 363 days left

Updated

2026-04-17

Name servers

chan.ns.cloudflare.com.
dax.ns.cloudflare.com.

DNS records live

NS

chan.ns.cloudflare.com
dax.ns.cloudflare.com

MX

10 rcdow1.mailwallremote.com
20 rcdow2.mailwallremote.com

Email authentication strong

SPF: v=spf1 +a +mx +a:web1.insiteability.com -all
strict (-all)
DMARC: v=DMARC1; p=quarantine; adkim=s; aspf=s
policy: quarantine
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-04-16 to 2026-07-15

Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://caritaswestminster.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

weak frame protection
weak content type protection

Header values

referrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=(), accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options: nosniff, nosniff
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests;
strict-transport-security: max-age=63072000; includeSubDomains; preload, max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: unsafe-none, unsafe-none
cross-origin-embedder-policy: unsafe-none; report-to='default', unsafe-none; report-to='default'
cross-origin-resource-policy: cross-origin, cross-origin

Links to (6)

Linked from (2)

rcdow.org.uk×2
caritasvs.org.uk×1