untypical.co.uk

HTML metadata

Title

untypical - Changing the housing sector to make it better

Description

Bringing together two trusted UK housebuilding brands, Tilia Homes and Hopkins Homes, untypical aims to make a positive difference to UK housebuilding.

Language

en

Canonical

https://untypical.co.uk/

Translations

en-gb

Open Graph

url: https://untypical.co.uk/
title: untypical - Changing the housing sector to make it better
site name: untypical
description: Bringing together two trusted UK housebuilding brands, Tilia Homes and Hopkins Homes, untypical aims to make a positive difference to UK housebuilding.

Technology

Analytics

Google Tag Manager

Social widgets

Vimeo Embed

Third-party hosts loaded (6)

player.vimeo.com×2
cdn.jsdelivr.net×1
cdnjs.cloudflare.com×1
unpkg.com×1
www.google.com×1
www.googletagmanager.com×1

Contact

Address: St Peter Port, Guernsey, GY1 4BF. Company registration number: 68992

Registration

Registrar

CSC Corporate Domains, Inc

Created

2019-03-03

Expires

2027-03-03 287 days left

Updated

2026-02-28

Name servers

gabe.ns.cloudflare.com.
mallory.ns.cloudflare.com.

DNS records live

NS

gabe.ns.cloudflare.com
mallory.ns.cloudflare.com

MX

0 untypical-co-uk.mail.protection.outlook.com

TXT

Show 5 TXT records

apple-domain-verification=delxxECbcb9Lbe3B
knowbe4-site-verification=1aa183e6d836dbbe2d44b7bb4677b0c6
stripe-verification=8EF791563B8DA8BCE462926E781BFAC112F036CE770BCDAE4E321F38DB95D184
v=spf1 include:spf.protection.outlook.com include:spf.london.aquilaiajax.com include:spf-uk.emailsignatures365.com include:7650651.spf06.hubspotemail.net -all
MS=ms43560520

Certificate (current)

R12

from 2026-03-15 to 2026-06-13

Expires in 24 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://untypical.co.uk/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing Content Security Policy
weak content type protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(self), clipboard-write=(self), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=*, geolocation=*, gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(self), screen-wake-lock=(), serial=(), speaker-selection=(), usb=(), web-share=(), xr-spatial-tracking=(self)
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; upgrade-insecure-requests; form-action 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hsappstatic.net https://www.googletagmanager.com https://www.google-analytics.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://cdn.reciteme.com https://ajax.aspnetcdn.com https://code.jquery.com https://www.google.com https://eu.cookie-script.com https://cdn.cookie-script.com https://maps.googleapis.com https://cdn.jsdelivr.net https://www.jsdelivr.com https://cdnjs.cloudflare.com https://www.gstatic.com https://www.youtube.com https://www.youtube-nocookie.com https://use.typekit.net https://player.vimeo.com https://unpkg.com https://maps.gstatic.com https://mapsresources-pa.googleapis.com https://widget.trustpilot.com https://*.hs-scripts.com https://*.hscollectedforms.net https://*.hubspot.com https://*.hs-analytics.net https://*.hs-banner.com https://cc.cdn.civicco