rcot.co.uk

HTML metadata

Title: Welcome to the home of The Royal College of Occupational Therapists | RCOT
Description: Welcome to the home of The Royal College of Occupational Therapists. RCOT champions occupational therapists and the profession, supporting over 36,000 members for more than 90 years.
Language: en
Generator: Drupal 10 (https://www.drupal.org)
Canonical: https://www.rcot.co.uk/

Technology

CDN: Cloudflare
CMS: Drupal

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (3)

cdn.jsdelivr.net×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Phone

+44 20 3141 4600

DNS records live

NS

jermaine.ns.cloudflare.com
sureena.ns.cloudflare.com

MX

10 eu-smtp-inbound-2.mimecast.com
20 eu-smtp-inbound-1.mimecast.com

TXT

Show 15 TXT records

msfpkey=4g25rhur12kj4kjp766hmd9a8
msfpkey=4h7zwgd3mr929r2ycm263tb29
sophos-domain-verification=556ad52eadc68058095253c5c92bec3d1330b02b
v=verifydomain MS=9456560
0ed1fe018a37b2c9382d1e4893ada2f7b60b796238
307ar0i8ng5cscq5d605lr3ass
asuid FD09A24BDF7C32DB0A62967FF00533407C1956EB734065A428D265C006966A3C
d365mktkey=DbWxINn50YwBhQ6xj3bRFxQqiyv8lobYEpbVINGKq2Ix
d365mktkey=P76zIJa385accuZcfxD26KxRzqHVmxD1x8FpKWxyWwEx
d365mktkey=PhfqxT0ycWzFM3xMYn5WoxRTJJ7lt1xZcMmtFgKqIdYx
d365mktkey=y8S7IxtZ68RNnnijsd4yb7i2RCa4sEUBHlvBk3W5kJIx
facebook-domain-verification=wzp84sshhok5eb0q4l80nby1ahse6d
google-site-verification=Kv8mEhnW7GaUgb_OihsoVOt1OnB2wzSpcv41WQXbD3M
msfpkey=1y5aggpmcmuqpdllejtzilf0t
msfpkey=38hxk1757vwocm14i06aedixp

Email authentication strong

SPF

v=spf1 ip4:83.97.17.141 include:em8028.rcot.co.uk include:eu._netblocks.mimecast.com include:spf.protection.outlook.com include:amazonses.com include:email.hivebrite.com include:spf.UK.exclaimer.net include:kallidus-suite.com include:gbr.pb-dynmktge.com include:sendgrid.net include:sendgrid.net ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:sxqnk2iy@ag.eu.dmarcian.com; ruf=mailto:sxqnk2iy@fr.eu.dmarcian.com;

policy: quarantine

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDD8DX1ugK9rjKBNLbefXJX+PegCuOgFemDdrXx2AVX4Z+JueCj6NMRZXBuEJF9vBNGY+lG0P+xkOxW70Puhd…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCbsFFf7QqJKJ+Z1G05s503NjuKPQOLeEYc6D1bTqNP1/c0CbKJeCAyzn9emOTtepmxJ1Iovb6d41YuulEmBV…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4T5xU7RUjc4vnPH9XdHVRpjdyKkSk0XpzPRPASJaeDMQQWcu2NVHXqIehEWBXSumbEmQYEHzi4T9fgSKk…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8rK2bbQjIiCwL8RR3eWrvZ7buCmpI0c8powHOiiE/vjpshdNd6oOBts3U9mQNWwmJVW3NGcriLIPFBVbkDDqP7J…

selectors probed

Certificate (current)

WE1

from 2026-05-03 to 2026-08-01

Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.rcot.co.uk/

present

strict-transport-security
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
missing Content Security Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),ambient-light-sensor=(),attribution-reporting=(),autoplay=(),bluetooth=(),browsing-topics=(),camera=(),compute-pressure=(),cross-origin-isolated=(),display-capture=(),document-domain=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),window-management=(),xr-spatial-tracking=()
x-content-type-options: nosniff
strict-transport-security: max-age=2592000