indexo.dev

gettingitrightfirsttime.co.uk

.uk crawl

First seen 2026-05-30 · Last seen 2026-06-01 · ok HTTP/1.1 200 283 ms crawled 2026-05-31

US · 34.120.190.48 · AS396982 Google LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Getting It Right First Time - GIRFT
Description
The Getting It Right First Time (GIRFT) programme is helping to improve the quality of care within the NHS by bringing improvements
Language
en-GB
Generator
WordPress 7.0
Canonical
https://gettingitrightfirsttime.co.uk/
Feeds

Open Graph

url
https://gettingitrightfirsttime.co.uk/
title
Getting It Right First Time - GIRFT
locale
en_GB
site name
Getting It Right First Time - GIRFT
description
The Getting It Right First Time (GIRFT) programme is helping to improve the quality of care within the NHS by bringing improvements

Technology

Server
nginx
CMS
WordPress 7.0
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • www.googletagmanager.com×4
  • gmpg.org×1

Social

Contact

Email

DNS records live

NS
  • ns1.siteground.net
  • ns2.siteground.net
MX
  • 10 mx10.antispam.mailspamprotection.com
  • 20 mx20.antispam.mailspamprotection.com
  • 30 mx30.antispam.mailspamprotection.com

Email authentication partial

SPF
v=spf1 +a +mx +ip4:35.214.17.180 include:gettingitrightfirsttime.co.uk.spf.auto.dnssmarthost.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; aspf=r; adkim=r;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRpDONtZtOTic0E3kgbERq04vNepBbBJWaH5WW3Fs5TQfARurPcZ0ndUMgUxgsCfvuIKGm/i/KMk7jFcRyEw…
selectors probed

Certificate (current)

R12
from 2026-05-28 to 2026-08-26
Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://gettingitrightfirsttime.co.uk/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (5)

Linked from (2)