diageoprivacycentre.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 5790 ms crawled 2026-05-19

IE · 52.17.142.199 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Diageo Privacy Centre
Description: We want you to feel comfortable with how we handle your personal data. This Privacy Centre makes it easy for you to know what information we have and what we do/don't do with it.
Language: en-GB
Canonical: https://www.diageoprivacycentre.com/en-gb

Open Graph

url: https://www.diageoprivacycentre.com/en-gb
title: Home

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Cookie consent

OneTrust

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (12)

cdn.jsdelivr.net×9
cdn-ukwest.onetrust.com×2
cdn.fonts.net×2
cdnjs.cloudflare.com×2
www.googletagmanager.com×2
cdn.quantummetric.com×1
fonts.gstatic.com×1
footer.diageohorizon.com×1
jnn-pa.googleapis.com×1
unpkg.com×1
use.typekit.net×1
www.google.com×1

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2022-08-03

Expires

2026-08-03 74 days left

Updated

2025-08-07

Name servers

dns1.cscdns.net
dns2.cscdns.net

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

10 custmx.cscdns.net

Verified for

Google

Email authentication strong

SPF: not published
DMARC: v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Corporation Service Company RSA OV SSL CA

from 2025-12-17 to 2026-12-18

Expires in 211 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.diageoprivacycentre.com/en-gb

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),ambient-light-sensor=(), battery=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), gyroscope=(), magnetometer=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src *.myidx.cloud 'self' staticcontents.investis.com media.idigitalcontents.com *.diageohorizon.com fonts.gstatic.com fonts.googleapis.com viz.tools.investis.com edge.api.brightcove.com; img-src *.myidx.cloud 'unsafe-inline' data: *; frame-src *.myidx.cloud 'self' *.zscaler.net *.zscalerone.net *.zscalertwo.net *.zscalerthree.net *.zscloud.net www.nyse.com *.doubleclick.net www.youtube-nocookie.com diageogb2024eutfm.q4web.com www.googletagmanager.com www.google.com my.matterport.com ir.connectidfeed.com consentcdn.cookiebot.com www.youtube.com viz.tools.investis.com player.vimeo.com irs.tools.investis.com otp.tools.investis.com; style-src *.myidx.cloud 'self' 'unsafe-inline' 'unsafe-eval' *.zscaler.net *.zscalerone.net *.zscalertwo.net *.zscalerthree.net *.zscloud.net https://cdn.quantummetric.com *.typekit.net cdn.fonts.net fonts.googleapis.com cdn.jsdelivr.net *.diageohorizon.com; font-src *.myidx.cloud 'self' 'unsafe-inline' data: fonts.idigitalcontents.com use.typekit.net h
strict-transport-security: max-age=15552000; includeSubDomains; preload