medicalert.org.uk

.uk crawl

First seen 2026-04-18 · Last seen 2026-05-16 · ok HTTP/1.1 200 8296 ms crawled 2026-05-12

US · 13.33.235.104 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title: MedicAlert | Medical ID | Jewellery & Services
Description: The only UK charity offering the full medical ID service, to keep you safe in an emergency
Language: en
Generator: S-Digital AI
Canonical: https://www.medicalert.org.uk/

Open Graph

url: https://www.medicalert.org.uk
title: MedicAlertUK
description: MedicAlert speaks for our members when they can't, via our membership service and custom-made medical ID jewellery.

Technology

CDN: Amazon CloudFront
Server: Microsoft-IIS

Analytics

Google Tag Manager
Plausible

Cookie consent

Cookiebot

Fonts

Google Fonts

Third-party hosts loaded (7)

fonts.googleapis.com×2
consent.cookiebot.com×1
fonts.gstatic.com×1
js-eu1.hs-scripts.com×1
plausible.io×1
www.facebook.com×1
www.googletagmanager.com×1

Social

Contact

Email

info@medicalert.org.uk

Phone

Address

Suite 1, Liscombe South, Liscombe Park, Soulbury, LU7 0JL, Soulbury, UK

Registration

Registrar

Adept Design (Norfolk) Ltd t/a Adept

Created

2000-04-03

Expires

2028-04-03 683 days left

Updated

2026-03-27

Name servers

ns-1261.awsdns-29.org.
ns-136.awsdns-17.com.
ns-1998.awsdns-57.co.uk.
ns-646.awsdns-16.net.

DNS records live

NS

ns-1261.awsdns-29.org
ns-136.awsdns-17.com
ns-1998.awsdns-57.co.uk
ns-646.awsdns-16.net

MX

10 eu-smtp-inbound-1.mimecast.com
10 eu-smtp-inbound-2.mimecast.com

TXT

verification=0ed1fe018aa2dc6cad8cbe4bf88bc60f433f9b239d

Verified for

Brevo
Google
Meta

Email authentication strong

SPF

v=spf1 redirect=_setj1xuk9.sdmarc.net

no all qualifier

DMARC

v=DMARC1; p=reject; pct=100; rua=mailto:a.etj1xuk9@sdmarc.net,mailto:work@medicalert.org.uk; adkim=s; aspf=s

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYegoQQ9qL61pSet4YIhc0ZEnBIRyZSESFQJ4Nq/962SdS/WBGcLvq6Rqkek4Ap37NiynR1Un1kB4F…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-10-12 to 2026-11-11

Expires in 174 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.medicalert.org.uk/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' 'unsafe-inline'; style-src 'self' http://* 'unsafe-inline'; font-src https://fonts.gstatic.com 'self' https://*.cognitoforms.com; script-src 'self' http://* https://*.hotjar.io https://region1.analytics.google.com https://www.googletagmanager.com https://www.google.com https://fonts.gstatic.com https://connect.facebook.net https://*.hotjar.com https://*.8x8.com https://*.freshchat.com https://*.sharethis.com https://googleads.g.doubleclick.net https://www.paypalobjects.com https://*.stripe.com https://app.hushly.com 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https://*.snapchat.com https://*.tiktokw.us https://*.bing.net https://*.bing.com https://*.hubapi.com https://www.cognitoforms.com https://*.hubspot.com https://*.hscollectedforms.net https://static.hsappstatic.net https://www.google.com https://requestly.tech https://*.justgiving.com https://*.tiktok.com https://plausible.io https://region1.analytics.google.com https://*.hotjar.io wss://ws.hotjar.com htt