heart.org

HTML metadata

Title: American Heart Association | To be a relentless force for a world of longer, healthier lives
Description: Learn more about the American Heart Association's efforts to reduce death caused by heart disease and stroke. Also learn about cardiovascular conditions, ECC and CPR, donating, heart disease information for healthcare professionals, caregivers, and educators and healthy living.
Language: en
Canonical: https://www.heart.org/en/

Open Graph

url: https://www.heart.org/en/
title: American Heart Association | To be a relentless force for a world of longer, healthier lives
site name: www.heart.org
description: Learn more about the American Heart Association's efforts to reduce death caused by heart disease and stroke. Also learn about cardiovascular conditions, ECC and CPR, donating, heart disease information for healthcare professionals, caregivers, and educators and healthy living.

Technology

CDN: Cloudflare

Analytics

Cloudflare Insights
Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (7)

static.cloud.coveo.com×6
cdn.jsdelivr.net×2
fonts.googleapis.com×2
cdn.optimizely.com×1
fonts.gstatic.com×1
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar

MarkMonitor Inc.

Created

1995-01-12

Expires

2033-03-20 2497 days left

Updated

2026-02-04

Name servers

ns1.heart.org
ns2.heart.org
ns3.heart.org

DNS records live

NS

ns1.heart.org
ns2.heart.org
ns3.heart.org

MX

10 mxa-004ad404.gslb.pphosted.com
10 mxb-004ad404.gslb.pphosted.com

TXT

Show 33 TXT records

atlassian-domain-verification=wr0ya0BwFQu8Vgwj4IVqknt0BtdsexjgrzOi7uaJV37FhYfaSYjnTy7rvT4/X3ay
smartsheet-site-validation=NBYCJH_FAkfczv0NWHYCz23BupfUqiP1
91304c6a8883069f8782dae2cb90a46df779c79bf757f98f827a4ebdce2dcfac
amazonses:VfiqZkP9hhG7win/TuoC8MhmBZUJIbafUqyg/Ri35ds=
zapier-domain-verification-challenge=1d357551-81ba-440c-b06d-ba69803b1aa7
adobe-idp-site-verification=17906b455a972ccbb50f29326d331a80903ffaaab5b2685dcd39bb7baee22a75
pardot788973=573c3698502c38becff7f68e601b25dde1ae6a5c4e13567f8b61ac1f1114e93f
ec2664a9a21fe6ec44ced44ffbf71dc01dc571f43137daa67879ca9c4332b171
d0001f06076ee795fd8f6ed8ee335dbf8a0586ce1398f96d22976496af8321b1
amazonses:Gp8t333monR+Z+pkHmLGNMGIAMiCcgiUF2SvGFID21Y=
a158651cd971005b4c5ac1be12717c061e9d680c16520bb84e05cca7fac496b7
e2a89ae6f616fd2a14ae3e8599f5b04b1aa5cb259dfa63b8247135cb22bd4bac
google-gws-recovery-domain-verification=52951575
apple-domain-verification=8hFrlvXKt6ptWvva
_gyhvjv05qtvcoxh3w9w6yuc964rkika
jamf-site-verification=yfDpd5GCAcpA_OGxg69HBA
950be6f0-b621-4a6d-b581-b64e7e3451e7
amazonses:oFOXUa/mJPK9o1aHU8UCnGwHrDlsax73n7f1R5Ru1GM=
vz80hm9q9ywvxl3k7cnq1h06h8m6lkn9
amazonses:3PjxBfH8x2mjt00HCfj3yreBMgunFmcMdITdJHaJMsw=
eT43WZq3lX0x1cYG1yhc7ovUHMMImOHjqLkhYBrBSEJik9/mik/Yh6DZYIRfV2ntkQocksPYXOF5w59/AE/EcQ==
2013hywoiu9839t543j0s7543uw1
pardot_367141_*=3282f7e18b8fb276c10484d6e64943069e1bf4b644c5a45ee2a1ac1179563b70
webexdomainverification.GE1Q=8544d856-25e8-4bd6-8970-2022e2d3f624
adobe-idp-site-verification=dd453e9b4bcc86b56b4c5affdc4d94e35fa825496b96e7e30a1600da1b1643eb
google-site-verification=jg73xTolmPgO4ftTZbkXbWnzn1XkJhaDNREuc0paTKI
canva-site-verification=QHd2W3pEO3lwytLa7tHb5g
5d6034cac0b066309d34a1025c09b4bdf7b401b9c7323babeceb08a7cb1b9552
parsec-domain-verification=td_32QkWnktwYA194SKTNtjSNofBT5
6b6f456fcdd38625028257d3c5da05c99763350aaf335788e25ab55cf19bae1f
onetrust-domain-verification=a10e41a3f7374ac8bbd077607bc1d2a8
mandrill_verify.I_7a_CKUZEWq3TynrtyfGQ
google-site-verification=ykIr1-mduZQMgbORca6C0S5AJBCv7W2Jl6iQTgD9iFQ

Email authentication strong

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;fo=1;rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc.rua.inboxable@ymintelligence.com;ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarc.ruf.inboxable@ymintelligence.com

policy: reject (enforced) · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDV12C8Rub/cyVWqEU+P3fvkqU/Cg5MdYObh1F+w/51WW8DUOYxv1ZnhCXmI1gGoZTOvNHJvrslkH1TQFz+th…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhu2tNy7vW/GoEuXcmVaOgovt94VZeSH6vCrEulTGO+4h50mjECYoteomiy0lzwnlwVYMDwstSSvfUxPNT…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrLVZgzhvjShSn5jn8Kyfn7mJvF352SKdrI/4uGJqnuksA+8xC3uD38C8VH8tRpdJwTLTMZORWx7ZswX1HbcE/+q…

selectors probed

Certificate (current)

WE1

from 2026-05-06 to 2026-08-04

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.heart.org/

present

content-security-policy
x-frame-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googleoptimize.com https://*.cookielaw.org https://*.cloud.coveo.com https://*.googletagmanager.com https://*.fundraiseup.com https://*.google-analytics.com https://*.hotjar.com https://*.facebook.net https://*.quantserve.com https://*.adsrvr.org https://*.vimeocdn.com https://*.pixel.ad https://*.pardot.com https://*.optimizely.com https://*.doubleclick.net https://*.googleadservices.com https://*.sascdn.com https://*.id5-sync.com https://*.licdn.com https://*.ads-twitter.com https://*.googlesyndication.com *; style-src 'self' 'unsafe-inline' *; connect-src 'self' 'unsafe-inline' *; font-src 'self' data: *; img-src 'self' data: *; frame-src 'self' *; media-src 'self' blob: data: *