indexo.dev

ico.org.uk

.uk toplist crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 415 ms crawled 2026-05-18

US · 104.20.22.243 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Information Commissioner's Office
Language
en

Open Graph

url
https://ico.org.uk/
title
Home

Technology

CDN
Cloudflare

Third-party hosts loaded (1)

  • cc.cdn.civiccomputing.com×1

Social

Registration

Registrar
Name.com LLC t/a Name.com, Inc.
Created
2007-09-14
Expires
2026-09-14 117 days left
Updated
2025-08-23
Name servers
  • chin.ns.cloudflare.com.
  • joaquin.ns.cloudflare.com.

DNS records live

NS
  • chin.ns.cloudflare.com
  • joaquin.ns.cloudflare.com
MX
  • 5 ico-org-uk.mail.protection.outlook.com
TXT
Show 8 TXT records
  • google-site-verification=bppsX_FhJJ1FqID2xWk2x_xDIKRBXdxoVh8JwZoLfZI
  • miro-verification=c182fabbc280e23036efb6043f0c025b6230fd80
  • vWDfZO1C/mhyotemKz+tho3KNwG+GaLBxBiVaI+0C/USdDbtvO7JZ6Y2880uaazzJkFuVQkkY8PUknX3yxI4DQ==
  • MS=ms98882170
  • apple-domain-verification=oGyuknPI9x7Y2Nl9
  • atlassian-domain-verification=gARFgF6pmVyKosliYpWqJUDqn5odDY8rqTvVsq/tjI7HBzmE23Tw50fPaDYhTyqx
  • docusign=6cb57f73-b34e-418d-99d0-0f283b9fb4d7
  • figma-domain-verification=dabbcd0f4d9d983cb3dc6168c4cee3068b6fe585687a7135aacfe1d7d5b8d0b0-1742223981

Email authentication strong

SPF
v=spf1 ip4:62.6.61.135 include:spf.protection.outlook.com include:msgfocus.com ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;pct=100;fo=1;rua=mailto:dmarc-rua@dmarc.service.gov.uk
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWgiOqlUV2ryKyLkb/8daEDFlRLMhB6hwcMxUe+yT5ier2NYzrglhBYMZVX4BWXlPVnMH+SOR01Yhgl9XL5H…
selectors probed

Certificate (current)

Thawte TLS RSA CA G1
from 2026-02-19 to 2027-03-23
Expires in 307 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://ico.org.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' https://ajax.cloudflare.com https://cc.cdn.civiccomputing.com/9/cookieControl-9.9.min.js https://js.globalpay.com/v1/globalpayments.js https://webservices.data-8.co.uk/javascript/ chatbot.ico.org.uk analytics.silktide.com; style-src 'self' 'unsafe-inline' https://webservices.data-8.co.uk/content/ https://fonts.googleapis.com/; connect-src 'self' http://localhost:* ws://localhost:* wss://localhost:* https://apikeys.civiccomputing.com/c/v https://clapi.civiccomputing.com https://webservices.data-8.co.uk/ wss://livechat.ico.org.uk *.ico.org.uk flexbot-app-anonymoustoken-prod.azurewebsites.net flexbot-app-bottoken-prod.azurewebsites.net directline.botframework.com wss://directline.botframework.com a.eu.silktide.com;
strict-transport-security
max-age=2592000

Links to (5)

Linked from (50)