headversity.com

HTML metadata

Title

#1 Mental Health Platform for Sport & Work | Headversity

Description

Standards-aligned mental health training solutions for workplaces and sport organizations with Headversity Work & Headversity Sport.

Language

en

Generator

WPML ver:4.9.2.1 stt:1,4;

Canonical

https://headversity.com/

Translations

en
fr

Open Graph

url: https://headversity.com/
title: #1 Mental Health Platform for Sport & Work | Headversity
locale: en_US
site name: Headversity
description: Standards-aligned mental health training solutions for workplaces and sport organizations with Headversity Work & Headversity Sport.

Technology

Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Third-party hosts loaded (6)

i0.wp.com×39
c0.wp.com×2
stats.wp.com×2
js.hsforms.net×1
s0.wp.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2017-08-01

Expires

2028-08-01 805 days left

Updated

2025-11-16

Name servers

ns-1082.awsdns-07.org
ns-1624.awsdns-11.co.uk
ns-28.awsdns-03.com
ns-561.awsdns-06.net

DNS records live

NS

ns-1082.awsdns-07.org
ns-1624.awsdns-11.co.uk
ns-28.awsdns-03.com
ns-561.awsdns-06.net

MX

0 headversity-com.mail.protection.outlook.com

TXT

anthropic-domain-verification-rz3m9s=xsPXvCBZ6FI84rRpunCsuEMzb

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:mailgun.org include:_spf1.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:vitalii@headversity.com; ruf=mailto:vitalii@headversity.com; fo=1;

policy: quarantine

DKIM

Show 6 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDuHuJNxsO5mcSZ6J0uG2q79A8Q36DyZtKE7f44Nb6947gru3FKSIaT+9yHHeTgFS+LjGF/+lxwNMQpOunFYj…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs53+1KwEoKb5wazY3PaHPRa36rm7XhqPwklcQn9l0OY2FwLlLlodv6yUWOBZ9VqiE9WAoiKPGiOP4l…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
s1: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvmPj72jGKYtOmrHcnObv5/C4OIDjL1XHfndgo5hcnX4aW5J++iAUko56VSU7qF5ec8lY4B+KTrLy+Gpo4l4ZM0O…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDFS6WRMs9BJHfvyVjDO12w61BvkEe/rdDxKegJRtiMRYqZ7oFlHfjOh119qE8Z2keJEDHzA1f7UI+G7Wcpk7lYXi…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

WR1

from 2026-04-06 to 2026-07-05

Expires in 47 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://headversity.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: browsing-topics=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: wss://* https://*;
strict-transport-security: max-age=31536000

Links to (7)

Linked from (1)

respectgroupinc.com×2