Web Quality Index
Scan complete · Scanned May 12, 2026 · 55 of 55 standards scored (45 didn’t apply)

Home/Reports/thelabradorforum.com

thelabradorforum.com

12-year-old saaS / Product site based in United Kingdom, served through cloudflare, with email running through custom-or-self-hosted.

Site typeSaaS / Product
Built onwordpress
Hosted byWHG Hosting Services Ltd
Hosted fromUnited Kingdom
Registered witheNom, LLC
Domain age≈ 12 years
Sends email throughcustom-or-self-hosted
Managed hostWHG Hosting Services Ltd
CDN / WAFcloudflare
Web Quality Score
56/100
Solid
Meets the baseline standards we measure against — but with real room to improve.
Check breakdown
57 scored
A further 15 standards didn’t apply to this site — most are accessibility and privacy tests that need page contents to evaluate.
Is email from this domain trustworthy?
47
Needs work
13 standards behind this question
Pass2Review2Fail5
Fail

Stops scammers from emailing customers as you

You have DMARC set up, but in monitor-only mode — it's not actually rejecting spoofed mail.

WEBQ-01
Fail

Lists who's allowed to email as your business

No SPF record is published, so nothing tells mail providers who's allowed to send as you.

WEBQ-03
Fail

Keeps your email private in transit

No MTA-STS or TLS-RPT policy is published — incoming mail could be downgraded to plaintext.

WEBQ-24
Fail

You get reports when someone fakes your email

No DMARC aggregate-reporting address is published — you wouldn't see spoofing attempts.

WEBQ-77
Fail

A real tool for sending receipts and confirmations

no SPF record

WEBQ-81
Review

A clickable email link on your site

We couldn't find a tap-to-email link anywhere on your site.

WEBQ-84
Review

What's actually running your email

We couldn't confidently identify which service is hosting your email.

WEBQ-76
Pass

You email from your own domain, not Gmail

You send email from your own domain, not a free Gmail/Yahoo address.

WEBQ-75
Pass

Your email is being forwarded, not hosted

Mail to this domain is being forwarded — you have working email reachability.

WEBQ-85

4 additional standards didn't apply to this site

Is it fast?
50
Needs work
14 standards behind this question
Pass2Fail4
Fail

Your site uses the newest connection style

Your server still serves over the older HTTP/2 protocol — not the newer, faster HTTP/3.

WEBQ-30
Fail

Reachable on the modern internet

Your domain has no IPv6 address — only the older IPv4.

WEBQ-31
Fail

Your photos are saved in modern formats

Your images are served as JPEG or PNG when modern formats (WebP, AVIF) would cut their size by 30–60% with no visible loss.

WEBQ-32
Fail

Photos lower on the page wait their turn

Images below the fold aren't lazy-loaded — visitors download them up front even if they never scroll that far.

WEBQ-35
Pass

Pages get squeezed before they're sent

Your server compresses pages with Brotli or gzip — visitors download a fraction of the raw size.

WEBQ-10
Pass

Your homepage isn't bloated

Your homepage downloads at a reasonable size.

WEBQ-37

8 additional standards didn't apply to this site

Can people find this site?
66
Excellent
15 standards behind this question
Pass5Review1Fail4
Fail

Hidden labels that explain your business to Google

Your homepage doesn't publish any Schema.org structured data. Search engines and AI tools fall back to guessing what your site is — and they guess wrong more often than not.

WEBQ-12
Fail

Whether your behind-the-scenes labels are valid

We didn't find any structured-data tags on your homepage.

WEBQ-39
Fail

A trail showing where visitors are on your site

No breadcrumb schema is published. Search engines can't show breadcrumb trails under your listings, and visitors lose the trail to important pages.

WEBQ-40
Fail

How well your site feeds AI the right facts

We couldn't find any organization details in your page's structured data.

WEBQ-45
Review

A summary file for AI assistants

No /llms.txt file is published at your domain root.

WEBQ-15
Pass

How your site appears when shared or in search results

Your homepage has the title, description, OG, Twitter, and canonical tags.

WEBQ-11
Pass

Whether you're letting AI assistants read your site

You aren't blocking any AI crawlers in your robots.txt.

WEBQ-16
Pass

A clear headline on every page

Your homepage has a clear H1 heading — search engines and screen readers know what the page is about.

WEBQ-13
Pass

A map of your site for search engines

Your sitemap.xml and robots.txt are both published.

WEBQ-14
Pass

How easy it is to reach your deepest pages

Important pages are reachable in just a click or two from your homepage.

WEBQ-43

5 additional standards didn't apply to this site

Does this look like a real business?
67
Excellent
12 standards behind this question
Pass2Review2Fail2
Fail

Your reviews on Trustpilot

We couldn't find a Trustpilot listing. Many consumers check Trustpilot before buying — a missing listing reads as a missing reputation.

WEBQ-60
Fail

Your company page on LinkedIn

We couldn't find a LinkedIn Company Page for this business. B2B prospects look for it before reaching out.

WEBQ-62
Review

Whether anyone's written about you lately

No news mentions of this domain in the last 30 days.

WEBQ-20
Review

Whether you have a Wikipedia entry

No Wikipedia entry was found for this business.

WEBQ-21
Pass

How long your domain has existed

Your domain has been registered for years — long enough to clear fraud-detection signals.

WEBQ-17
Pass

A contact form people can actually find

A visible contact form is reachable from your homepage.

WEBQ-83

6 additional standards didn't apply to this site

Can everyone use it?
67
Excellent
7 standards behind this question
Pass1Review2Fail1
Fail

A way to skip past the menu

No skip-to-content link is published. Keyboard users have to tab through every nav item on every page before reaching the content.

WEBQ-58
Review

Your photos have written descriptions

Some images on your homepage are missing alt text. Screen reader users hear silence where they should hear a description.

WEBQ-54
Review

Your headings are in a sensible order

Your heading levels skip — for example, an H1 followed by an H3 with no H2 in between. Screen reader users lose the outline of the page.

WEBQ-55
Pass

Your buttons and forms are labeled for screen readers

Interactive elements have proper ARIA labels — screen reader users get a clear description of each control.

WEBQ-57

3 additional standards didn't apply to this site

Is it safe to visit?
76
Excellent
21 standards behind this question
Pass10Review2Fail5
Fail

Your domain can't be quietly hijacked

DNSSEC is not enabled on your domain.

WEBQ-22
Fail

Only your approved vendors can issue your padlock

There's no CAA record at your registrar saying which companies are allowed to issue certificates for you.

WEBQ-23
Fail

Your site is on the browser-baked-in safe list

Your domain isn't on Chrome's HSTS preload list. The first visit from a new browser still has a brief window where an attacker could intercept it.

WEBQ-26
Fail

Visitors connect faster on the first click

Your server doesn't staple OCSP. Visitors' browsers may have to contact the CA themselves, slowing first connects.

WEBQ-91
Fail

Strict mode for your padlock check

Neither OCSP stapling nor Must-Staple is in play. A revoked cert wouldn't be caught quickly.

WEBQ-96
Review

Your certificate is publicly logged

Your certificate carries only one embedded SCT — modern browsers want at least two. Reissue from a CA that includes them.

WEBQ-92
Review

Browser-level protections for visitors

Your site isn't sending any of the standard browser-protection headers.

WEBQ-04
Pass

Your padlock isn't about to expire

Your SSL certificate is valid and not close to expiring.

WEBQ-05
Pass

WordPress isn't leaking your usernames

Your WordPress REST API doesn't leak usernames — attackers can't list accounts without already being authenticated.

WEBQ-06
Pass

Private files aren't open to the public

None of the common admin or developer paths are publicly reachable.

WEBQ-07
Pass

Old TLS versions are turned off

Only modern TLS (1.2 and above) is offered — TLS 1.0 and 1.1 are turned off.

WEBQ-27
Pass

Forgotten subdomains aren't an open door

No forgotten or claimable subdomains were found.

WEBQ-28
Pass

Your padlock isn't using outdated keys

Your certificate uses strong modern math (ECDSA P-256+ or RSA-2048+ with SHA-256+).

WEBQ-89
Pass

Your padlock loads cleanly on every device

Your server sends the full certificate chain — every device builds the path to a trusted root cleanly.

WEBQ-90
Pass

Your padlock renews on a healthy schedule

Your certificate uses a short validity window (≤ 90 days) — auto-renewal keeps revocation fast and frictionless.

WEBQ-95
Pass

Your padlock comes from a reputable vendor

Your certificate is issued by a tier-1 publicly trusted CA (Let's Encrypt, DigiCert, Google Trust, Sectigo, etc.).

WEBQ-97
Pass

Your site finishes its handshake quickly

Your TLS handshake completes quickly — under 300ms on a cold connection.

WEBQ-98

4 additional standards didn't apply to this site

Does it respect visitor privacy?
78
Excellent
6 standards behind this question
Pass4Fail1
Fail

Cookie consent banner for European visitors

No cookie banner detected, but trackers are present. If you serve EU or California traffic, this is a compliance gap.

WEBQ-46
Pass

How many outside companies you let watch your visitors

Your homepage loads a reasonable number of third-party services — clean privacy footprint.

WEBQ-49
Pass

What your site actually drops on visitors' phones

Your homepage sets only essential cookies before consent. Non-essential cookies fire after opt-in.

WEBQ-51
Pass

You have a privacy policy page

Your privacy policy page is reachable from the homepage.

WEBQ-47
Pass

You have a terms of service page

Your terms of service page is reachable from the homepage.

WEBQ-48

1 additional standard didn't apply to this site