HTTP Headers Analysis for https://pearsonplc.com

Detected Technologies from Headers

See all in URL Inspect 41

AWS API Gateway

AWS CloudFront

YouTube

Google Maps

Google Tag Manager

Brightcove

Spotify

Google reCAPTCHA

Google Hosted Libraries

Google DoubleClick

Google Analytics

Google Conversion Tracking

New Relic

Cloudflare CDN

Google Static File Front End

Apple Podcasts

Google API JS Client

TikTok Analytics

Leadfeeder

Google Fonts

Cloudflare Web Analytics

Hotjar

unpkg

Google Search

BootstrapCDN

Demandbase

Facebook

OneTrust

Cloudflare CDNJS

AWS

jQuery

Salesforce Pardot

Vimeo

IDX

JW Player Active incidents

Drupal

Highcharts

jsDelivr

Google Cloud

Google Cloud Storage

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552000; includeSubDomains; preload

Content-Security-Policy

Basic

default-src; script-src; style-src; +7 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Present

interest-cohort=()

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

connection: close
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

must-revalidate, no-cache, private

Expires

Caching

Sun, 19 Nov 1978 05:00:00 GMT

cache-control: must-revalidate, no-cache, private
expires: Sun, 19 Nov 1978 05:00:00 GMT

Content Headers

Content-Language

Content

en-GB

Content-Type

Content

text/html; charset=UTF-8

content-language: en-GB
content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: __cf_bm=AlLjekzwNkRyn.V35LD7U7IwkiVKXlP3IMgecUt.94U-1775951928-1.0.1.1-CAerOLc133nXAzoD7QFm6GpWNTcoedFDbZPgCB4Age9YqiDwDPOJHwztt08X6_gkt6trFKQrTB2mi29yW1smU6mp7R77M3GTD7aJgFhx0lM; path=/; expires=Sun, 12-Apr-26 00:28:48 GMT; domain=.pearson.com; HttpOnly; Secure; SameSite=None
_cfuvid=.bZMZ0c2_XnMM._eSXg6IEPyXen9NEgFEnB8Kz0m5Bg-1775951928243-0.0.1.1-604800000; path=/; domain=.pearson.com; HttpOnly; Secure; SameSite=None

Other Headers

Cf-Cache-Status

Other

MISS

Cf-Ray

Other

9eadf0fe8fa3d46a-IAD

Date

Other

Sat, 11 Apr 2026 23:58:48 GMT

Link

Other

URL https://plc.pearson.com/en-US

rel=alternate hreflang=en

URL https://plc.pearson.com/en-GB

rel=alternate hreflang=en-GB

X-Drupal-Cache

Other

HIT

X-Host

Other

RRMPF-2-PRD-11

X-Ua-Compatible

Other

IE=edge

cf-cache-status: MISS
cf-ray: 9eadf0fe8fa3d46a-IAD
date: Sat, 11 Apr 2026 23:58:48 GMT
link: <https://plc.pearson.com/en-US>; rel="alternate"; hreflang="en", <https://plc.pearson.com/en-GB>; rel="alternate"; hreflang="en-GB"
x-drupal-cache: HIT
x-host: RRMPF-2-PRD-11
x-ua-compatible: IE=edge

Recommendations

Enable compression (gzip/brotli) to improve performance