mercia-group.com

HTML metadata

Title: Mercia Group Ltd | Supporting Accountants in Practices
Description: Mercia Group provide CPD training, compliance services and marketing materials for accountancy practices and firms across the UK and Ireland.
Language: en
Canonical: https://www.mercia-group.com/

Open Graph

url: https://www.mercia-group.com/
title: Mercia Group Ltd | Supporting Accountants in Practices
description: Mercia Group provide CPD training, compliance services and marketing materials for accountancy practices and firms across the UK and Ireland.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (3)

www.googletagmanager.com×2
wilmingtonplc.my.site.com×1
www.buzzsprout.com×1

Social

Contact

Phone

899 3725 51

Registration

Registrar

Lexsynergy Limited

Created

2014-10-01

Expires

2026-10-01 134 days left

Updated

2025-09-01

Name servers

ns1.lexsynergy.net
ns2.lexsynergy.us
ns3.lexsynergy.info

DNS records live

NS

ns1.lexsynergy.net
ns2.lexsynergy.us
ns3.lexsynergy.info

MX

10 eu-smtp-inbound-1.mimecast.com
10 eu-smtp-inbound-2.mimecast.com

TXT

Show 7 TXT records

atlassian-domain-verification=hzBSM7kn4Nx2ztvTjLRpztq6vmxPlgSEzF25gF6p88TvoFgw0CGQIF0cx9K/gpyT
1lgblllg4clsbnsyj5gh60qg3kgjndlr
anthropic-domain-verification-epzwbp=fOfIaB7GTYTq9cB6UyodpKsq7
8xhtwpj5dsv5x15fgs5kgz02bgw05xtn
google-site-verification=clOhLOjU1_HFcLPG33h1vB_71Ljf6X21xyNCxey-Cyg
MS=ms13101746
0ed1fe018a9755a7abf79147318717f193d46ba663

Email authentication strong

SPF

v=spf1 ip4:62.172.138.59 ip4:62.172.138.60 include:eu._netblocks.mimecast.com include:mktomail.com include:_spf.salesforce.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1:d:s; rua=mailto:dmarc@wilmington.uriports.com; ruf=mailto:dmarc@wilmington.uriports.com

policy: reject (enforced)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8BPLiI6jz+1j8WT5Bufl6XoRlwl+d7yQiwpkNNDDm/T2JDBz4sdz9/Bc5ZRHT1K0PL850jRE/JaPdfhkCf…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VFCgFBeNPFLN7i1wYzOcuM03pVyBx7chO1LSam9ccE+cSVCaeWgdg3v82+hLVoOLxa+KlkbFaEjtzbizk…

selectors probed

Certificate (current)

WE1

from 2026-03-19 to 2026-06-17

Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.mercia-group.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=self, ambient-light-sensor=self, autoplay=self, camera=(), encrypted-media=self, fullscreen=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=(), iframe=self
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests; block-all-mixed-content; default-src 'self' https://*.omappapi.com https://*.crazyegg.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.youtube.com https://widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js https://go.wilmingtonplc.com https://www.googletagmanager.com https://tagmanager.google.com https://snap.licdn.com https://munchkin.marketo.net https://a.omappapi.com/app/ https://api.livechatinc.com https://cdn.livechatinc.com https://app.termly.io https://cdn.shareaholic.net https://m9m6e2w5.stackpathcdn.com https://partner.shareaholic.com https://app.termly.io https://z.omappapi.com/ https://widget.manychat.com https://www.google.com https://script.crazyegg.com/ https://www.shareaholic.com https://www.gstatic.com/recaptcha/releases/3kTz7WGoZLQTivI-amNftGZO/recaptcha__en_gb.js https://www.gstatic.com https://www.coursecheck.com/ https://www.google-analytics.com/ https://cdn.openshareweb.com/ https://wilmingtonplc--uat.sandbox.my
strict-transport-security: max-age=63072000; includeSubDomains