Cache-Control | no-cache, no-store, max-age=0, must-revalidate |
Pragma | no-cache |
Transfer-Encoding | chunked |
Content-Type | text/html;charset=ISO-8859-1 |
Content-Encoding | gzip |
Content-Language | en-US |
Expires | 0 |
Vary | Accept-Encoding |
Server | |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Strict-Transport-Security | max-age=31536000 ; includeSubDomains |
X-Frame-Options | DENY |
Content-Security-Policy | default-src 'self' *.amazonaws.com *.google-analytics.com *.cloudfront.net *.userlike.com data: *.betrad.com *.wirecard.com *.cloudflare.com *.adform.net *.facebook.net *.facebook.com *.gstatic.com *.googleapis.com *.zendesk.com wss://*.zopim.com *.zopim.com *.google.com *.pgsitecore.com 'unsafe-inline' 'unsafe-eval' |
X-Powered-By | ASP.NET |