indexo.dev

dsptoolkit.nhs.uk

.uk crawl

First seen 2026-04-22 · Last seen 2026-05-17 · ok HTTP/1.1 200 2836 ms crawled 2026-05-16

GB · 3.8.14.90 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Data Security and Protection Toolkit
Language
en

Technology

CMS
Ghost

DNS records live

NS
  • ns-1109.awsdns-10.org
  • ns-1848.awsdns-39.co.uk
  • ns-382.awsdns-47.com
  • ns-910.awsdns-49.net
TXT
  • www.dsptoolkit.nhs.uk

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M04
from 2025-12-28 to 2027-01-27
Expires in 252 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://dsptoolkit.nhs.uk/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • referrer-policy
findings
  • short HSTS max-age
  • missing content type protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
content-security-policy
upgrade-insecure-requests;Frame-ancestors 'self';img-src 'self' data:;font-src 'self' https://assets.nhs.uk;report-uri /csp/enforce/
strict-transport-security
max-age=2592000
content-security-policy-report-only
script-src 'self' 'nonce-l+lAEx68tL4hID8+XxCm2wqyDs9m/fhX+Tl/DVzFK/c=' https://www.googletagmanager.com https://www.google-analytics.com;connect-src 'self' 'nonce-l+lAEx68tL4hID8+XxCm2wqyDs9m/fhX+Tl/DVzFK/c=' https://region1.google-analytics.com https://www.google-analytics.com https://www.google-analytics.com:443 https://stats.g.doubleclick.net;img-src 'self' data: https://www.google-analytics.com;default-src 'self' 'unsafe-inline';font-src 'self' https://assets.nhs.uk;report-uri /csp/report/

Links to (1)

Linked from (5)

See all sites whose homepage links to dsptoolkit.nhs.uk →