nestinsight.org.uk

.uk crawl

First seen 2026-05-10 · Last seen 2026-05-16 · ok HTTP/1.1 200 3741 ms crawled 2026-05-16

US · 107.180.226.66 · AS26347 New Dream Network, LLC

Reputation 100/100

Classifying

HTML metadata

Title

Nest Insight – household financial security research and innovation centre

Description

Nest Insight is a collaborative research unit, set up to understand and address the challenges facing Nest members and other defined contribution pension savers

Language

en-GB

Generator

WordPress 6.9.4

Canonical

https://www.nestinsight.org.uk/

Feeds

Open Graph

url: https://www.nestinsight.org.uk/
title: Nest Insight – household financial security research and innovation centre
locale: en_GB
site name: NEST Insight Unit
description: Nest Insight is a collaborative research unit, set up to understand and address the challenges facing Nest members and other defined contribution pension savers

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.googleapis.com×4

Social

Contact

Phone

2026-05-05 18

Address

st Insight© Copyright Nest 2026

Registration

Registrar

Nom-IQ Limited t/a Com Laude

Created

2016-06-16

Expires

2026-06-16 26 days left

Updated

2025-05-17

Name servers

nsgbr.comlaude.co.uk.
nssui.comlaude.ch.
nsusa.comlaude.net.

DNS records live

NS

nsgbr.comlaude.co.uk
nssui.comlaude.ch
nsusa.comlaude.net

MX

10 mx1.mailchannels.net
10 mx2.mailchannels.net

Email authentication strong

SPF

v=spf1 a ip4:64.90.62.162 ?all

neutral (?all)

DMARC

v=DMARC1; p=reject; sp=reject; adkim=s; aspf=s; fo=1; rua=mailto:Jjxafz1W7Nw@dmarc-rua.mailcheck.service.ncsc.gov.uk;

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

default: v=DKIM1; p=
google: v=DKIM1; p=
selector1: v=DKIM1; p=
selector2: v=DKIM1; p=
k1: v=DKIM1; p=
k2: v=DKIM1; p=
mail: v=DKIM1; p=
dkim: v=DKIM1; p=
s1: v=DKIM1; p=
s2: v=DKIM1; p=
mxvault: v=DKIM1; p=
smtpapi: v=DKIM1; p=

selectors probed

Certificate (current)

R12

from 2026-04-29 to 2026-07-28

Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.nestinsight.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:;
strict-transport-security: max-age=31536000;

Links to (33)

Linked from (1)

stream.co×1