ikeafoundation.org

HTML metadata

Title

Homepage - IKEA Foundation

Language

en-GB

Canonical

https://ikeafoundation.org/

Translations

cs
da
de-ch
de-de
en
es
fi
fr-be
fr-ca
fr-fr
hr
hu
it
ja
ko
nb
nl-be
nl-nl
pl
pt
ro
sk
sl
sr
sv
uk
zh

Feeds

Open Graph

url: https://ikeafoundation.org/
title: Homepage - IKEA Foundation
locale: en_GB
site name: IKEA Foundation
description: Find out about the partners we fund and the amount, duration and scope of our grants. Learning how to do things better is at the heart of our culture. We believe there are always ways to improve, so we can increase our impact for people and the planet.
locale:alternate: sl_SI

Technology

CDN: Cloudflare
CMS: WordPress

Third-party hosts loaded (3)

ajax.googleapis.com×2
cdnjs.cloudflare.com×2
gmpg.org×1

Social

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2009-06-19

Expires

2027-06-19 395 days left

Updated

2026-05-07

Name servers

udns1.cscdns.net
udns2.cscdns.uk

DNS records live

NS

udns1.cscdns.net
udns2.cscdns.uk

MX

0 ikeafoundation-org.mail.eo.outlook.com

TXT

Show 6 TXT records

cisco-ci-domain-verification=14615e479a2d66688fbc8f7fee98cd8c076fb20de634d8fabb92462579f34a8c
95hfs8e5is8crk1pthim1do87o
airalo-domain-verification=Zf9lWg415PBZe0i
apple-domain-verification=znKNFDb3S2dziN0l
docusign=ede740b9-a77c-423b-b03a-5ea4b8f016a2
canva-site-verification=X7MJq-17_M3Suxct_Cdfcw

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p= reject; fo=1; rua=mailto:dmarc_rua@ikea.com; ruf=mailto:dmarc_ruf@ikea.com

policy: reject (enforced)

DKIM

selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5hgtp78DVn6561vpVitJkD7/bTqyqSPMQm7LT4WxOloho3PtzstbjanABD8Gp6Rh5NGxJU+hq0Fs6gHeva2…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-03-29 to 2026-06-27

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://ikeafoundation.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: no-referrer
x-frame-options: DENY
permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(self "https://ikeafoundation.org/"),gyroscope=(),layout-animations=(self),legacy-image-formats=(self),magnetometer=(),microphone=(),midi=(),oversized-images=(self),payment=(),picture-in-picture=(),publickey-credentials-get=(),speaker-selection=(),sync-xhr=(self),unoptimized-images=(self),unsized-media=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' https: https://ikeafoundation.org; connect-src https:; font-src data: https:; img-src 'strict-dynamic' data: https: 'nonce-UEoEHzRQ28WlxYA6Fb3qVp9UXmjUWrnTbeHzKHYDNGA5oAzT7kwdse4MG0GAH1X0WjGYWgpq4uyRsaS1TJalxAcagytSM7GaRbJvkv8andJyutXvDKSjD427R6E06li1'; script-src 'self' 'unsafe-inline' https: https://ikeafoundation.org; style-src 'self' 'unsafe-inline' https: https://ikeafoundation.org
strict-transport-security: max-age=31536000