wpa.org.uk

HTML metadata

Title: Health Insurance from WPA | UK Private Medical Insurance
Description: Health insurance for individuals, families and businesses from the most trusted health insurer in the UK. Award-winning private medical insurance.
Language: en
Canonical: https://www.wpa.org.uk/home

Open Graph

url: https://www.wpa.org.uk/home
title: Health Insurance from WPA | UK Private Medical Insurance
description: Health insurance for individuals, families and businesses from the most trusted health insurer in the UK. Award-winning private medical insurance.

Technology

CDN: Azure Front Door
CMS: Next.js

Analytics

Google Tag Manager

Social widgets

Vimeo Embed

Third-party hosts loaded (9)

cc.cdn.civiccomputing.com×2
www.googletagmanager.com×2
apikeys.civiccomputing.com×1
clapi.civiccomputing.com×1
js.monitor.azure.com×1
player.vimeo.com×1
sacmsmedia.blob.core.windows.net×1
talkdeskchatsdk.talkdeskapp.com×1
uksouth-0.in.applicationinsights.azure.com×1

Social

Contact

Address: Rivergate House, Blackbrook Park, TA1 2PE, Taunton, Somerset, GB

Registration

Registrar

CSC Corporate Domains, Inc

Created

1999-07-06

Expires

2027-07-06 411 days left

Updated

2025-07-02

Name servers

dns1.cscdns.net.
dns2.cscdns.net.

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

10 wpa-org-uk.mail.protection.outlook.com

TXT

ikrhvm4t6bg4gnoi5k85bppqti
access-domain-verification=5825faba7083dafcaa2c7b69f8b407e17ffd57fe7c3222c7161292bbc7a8ecc5
v=spf1 ip4:104.211.88.55 include:spf.protection.outlook.com include:eu._netblocks.mimecast.com ~all

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-05-09 to 2026-06-09

Expires in 20 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.wpa.org.uk/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=(), autoplay=(self "https://player.vimeo.com"), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(self "https://player.vimeo.com"), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self "https://player.vimeo.com"), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(self), usb=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), hid=(), idle-detection=(), interest-cohort=(), serial=(), unload=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'nonce-MmRmMjdiNGEtYzRkZi00MzZkLWJhZGUtYzI3YTg5YzhlNzNm' 'sha256-/yqmalSKORzVtgkHcbktxdIbLdgLwm9oxyQhsEESzqA=' 'sha256-0ZrukkP5hGKAW2SX5G1+5bVTS+NMJWCMejZOd3Vzzug=' 'sha256-1O3zCxjCXysGa9518nZ1i13REo12ne6HQExpulRp9t4=' 'sha256-34lhQqTnNPO4N/RamlbDTPb0Xgdx8aBnWob1vFUAgkw=' 'sha256-64Vi2x3BHaym0mI252lqaORmyjh5lqgwlfIg0QUxvms=' 'sha256-6LE5UsNHQD5Ll8Kz6J3XOZub5DeDgG3btdrbb+oc6J4=' 'sha256-7mu4H06fwDCjmnxxr/xNHyuQC6pLTHr4M2E4jXw5WZs=' 'sha256-EE1fyepn9qcjai4+ZiqNIabuhKWVgPIR9hAVO6bUkf4=' 'sha256-GILLU7U0zwOapn7QOnNbEvKsDt4/PCXrNDWMS8+c5F4=' 'sha256-Gwvbi/qncEWQBFs8X0cc6IwUgjWR4VWODT51EDuUREQ=' 'sha256-IriJfgODwamBVSLXWJ2wGjQljiPoSdEIf9ublbHYccI=' 'sha256-IwO+tSnTMYLlL8jiqlXvWY/GDJGwAe5q4RpXV1JSvIM=' 'sha256-JvqtKCXVOiSjPYF2uxsbElN2CDwOUTElrId8IF/GulA=' 'sha256-Kg0Ltr8kuTFW2eLmIIJWnrjRK08SA6V/vr0gxP8uF6E=' 'sha256-KkSddTCGnpJoyzvDfaFgOpeICPLugyE3sMtw7N+A5EA=' 'sha256-MjkPkSCIm6CtJx6iu8x+rtKZ9K1a7+LBQozWqgpzay0=' 'sha256-MscIcXqbBH6QKM+SX7eAVkyeuocQp83yp
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin