recoveryfriendlyworkplace.com

HTML metadata

Title: Recovery Friendly Workplace | NH Initiative & Employer Resources Recovery Friendly Workplace
Description: Recovery Friendly Workplace NH initiative with employer resources for recovery. Support employees in recovery through designated recovery friendly workplaces.
Language: en-US
Generator: WordPress 6.9.4
Canonical: https://www.recoveryfriendlyworkplace.com/

Open Graph

url: https://www.recoveryfriendlyworkplace.com/
title: Recovery Friendly Workplace | NH Initiative & Employer Resources
locale: en_US
site name: Recovery Friendly Workplace
description: Recovery Friendly Workplace NH initiative with employer resources for recovery. Support employees in recovery through designated recovery friendly workplaces.

Technology

Server: nginx
CMS: WordPress

Analytics

Microsoft Clarity

Fonts

Google Fonts

Third-party hosts loaded (4)

recoveryfriendlyworkplace.twic.pics×9
fonts.googleapis.com×3
fonts.gstatic.com×1
www.clarity.ms×1

Social

Contact

Email

info@recoveryfriendlyworkplace.com

Registration

Registrar

Squarespace Domains II LLC

Created

2018-01-14

Expires

2027-01-14 238 days left

Updated

2025-12-30

Name servers

ns-cloud-a1.googledomains.com
ns-cloud-a2.googledomains.com
ns-cloud-a3.googledomains.com
ns-cloud-a4.googledomains.com

DNS records live

NS

ns-cloud-a1.googledomains.com
ns-cloud-a2.googledomains.com
ns-cloud-a3.googledomains.com
ns-cloud-a4.googledomains.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

ib5fs75o6qgptp7vo0v07sg740

Verified for

Google

Email authentication weak

SPF

v=spf1 include:_spf.google.com include:sendgrid.net ~all

softfail (~all)

DMARC

not published

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvPP/HHS7IQ92C/x0U7pZhJhplimSyg52ceH/nKDC56vfhg6bbzRDpeHxqSUNjwtW1yfRDuoClAR8K…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KoOjjdqQ3EsyUvbAyGwGFr5Ehudc1Bwl8mYk2d2oh4JF1ThF59Rzhp8xD56aDf2oM6rrnHvUJSeuh5FRv…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCs2v2wXedlYfUEEgImpfDVX1LNACPSXB2lFenGr79HlWLv2sY3tje5IEZusBdI0btTa7izB1gavccozhX7mqsbSO…

selectors probed

Certificate (current)

R13

from 2026-04-02 to 2026-07-01

Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.recoveryfriendlyworkplace.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://maps.googleapis.com; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com/ https://*.clarity.ms/ https://sdk.privacy-center.org/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://edge.marker.io/ https://maps.googleapis.com https://maps.gstatic.com; script-src-attr 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: https://dev-recovery-friendly-workplace-2024.twic.pics/ https://dev-recovery-friendly-workplace.twic.pics/ https://*.vimeocdn.com/ https://*.clarity.ms https://*.bing.com https://maps.googleapis.com https://maps.gstatic.com https://recoveryfriendlyworkplace.twic.pics/ https://secure.gravatar.com/; connect-src 'self' https://www.google-analytics.com https://*.clarity.ms/ https://www.google.com/recaptcha/ https://vimeo.com/api/oembed.json
strict-transport-security: max-age=300