Content-Security-Policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; upgrade-insecure-requests; img-src 'self' data: https:; font-src 'self' data: https://use.typekit.net https://p.typekit.net https://fonts.gstatic.com; style-src 'self' 'unsafe-inline' https://use.typekit.net https://p.typekit.net https://fonts.googleapis.com https://www.googletagmanager.com; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://region1.google-analytics.com https://googleads.g.doubleclick.net https://js.hs-analytics.net https://js-na1.hs-scripts.com https://js.hubspot.com https://js.hs-banner.com https://js.hsadspixel.net https://static.hsappstatic.net https://track.hubspot.com https://widget.trustpilot.com https://static.cloudflareinsights.com https://cdn-cookieyes.com https://log.cookieyes.com https://*.hotjar.com; connect-src 'self' https://www.google-analytics.com https://region1.google-analytics.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://track.hubspot.com https://perf-na1.hsforms.com https://cta-service-cms2.hubspot.com https://widget.trustpilot.com https://cdn-cookieyes.com https://log.cookieyes.com https://directory.cookieyes.com https://pagead2.googlesyndication.com https://www.google.com https://js.hs-banner.com https://static.hsappstatic.net https://www.googleadservices.com; frame-src 'self' https://www.googletagmanager.com https://widget.trustpilot.com; media-src 'self' https://d1adh2ppvaq3nw.cloudfront.net;