hey-creative.co.uk

.uk crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 353 ms crawled 2026-06-01

GB · 35.214.65.177 · AS15169 Google LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title

Home - HEY Creative

Language

en-GB

Generator

Elementor 4.0.9; features: e_font_icon_svg, additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-swap

Canonical

https://hey-creative.co.uk/

Feeds

HEY Creative » Feed RSS
HEY Creative » Comments Feed RSS

Open Graph

url: https://hey-creative.co.uk/
title: Home - HEY Creative
locale: en_GB
site name: HEY Creative
description: Advancing our cultural landscape HEY Creative is Hull & East Yorkshire’s Cultural Compact – developing arts, culture and heritage through cross-sector partnerships. Find out more Read more Read more Read more

Technology

Server: nginx
CMS: WordPress
jQuery: 3.7.1

Analytics

Google Tag Manager

Cookie consent

Iubenda

Fonts

Adobe Fonts

Third-party hosts loaded (4)

embeds.iubenda.com×1
gmpg.org×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Email

DNS records live

NS

ns13.domaincontrol.com
ns14.domaincontrol.com

MX

0 heycreative-co-uk0i.mail.protection.outlook.com

TXT

prowly-verification=8e91487b3281f7c85a0a1c2a39e940bc91df5be24f489682dc6115584821bbab
NETORGFT19230906.onmicrosoft.com
proxy-ssl.webflow.com

Email authentication partial

SPF

v=spf1 include:secureserver.net -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R13

from 2026-04-19 to 2026-07-18

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://hey-creative.co.uk/

present

x-content-type-options
permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff

Links to (7)

Linked from (1)

bridspa.com×1