Content-Security-Policy Analysis for https://beta.zettle.com

Open Cached · just now

8 directives

Content-Security-Policy

Content-Security-Policy: default-src 'self' https://*.zettle.com https://*.izettle.com;connect-src 'self' https://*.zettle.com https://*.izettle.com https://0iv4qc8t05.execute-api.eu-west-1.amazonaws.com 'self' https://*.hotjar.com https://*.hotjar.io https://*.zettle.com https://0iv4qc8t05.execute-api.eu-west-1.amazonaws.com/ https://adservice.google.com/ https://analytics.google.com https://app.launchdarkly.com https://bat.bing.com https://c.friendbuy.com https://cdn.cookielaw.org https://cdn.friendbuy.com https://cdn.izettle.com https://cdn1.friendbuy.com https://clientstream.launchdarkly.com https://embed.friendbuy.com https://events.launchdarkly.com https://ga.zettletest.com https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location https://googleads.g.doubleclick.net/ https://logs-01.loggly.com https://my.izettle.com https://optanon.blob.core.windows.net https://pagead2.googlesyndication.com/ https://privacyportal-eu.onetrust.com https://region1.analytics.google.com https://region1.google-analytics.com https://sapi.searchblok.com https://secure.izettle.com https://sentry.io/api https://ssl.google-analytics.com https://stats.g.doubleclick.net https://status.izettle.com https://trc-events.taboola.com/1313048/ https://trc.taboola.com/1313048/ https://ws.friendbuy.com https://www.google-analytics.com https://www.google.co.uk/ads/ https://www.google.com.br/ads/ https://www.google.com.mx/ads/ https://www.google.com/ads/ https://www.google.com/pagead/ https://www.google.de/ads/ https://www.google.dk/ads/ https://www.google.es/ads/ https://www.google.fi/ads/ https://www.google.fr/ads/ https://www.google.ie/ads/ https://www.google.it/ads/ https://www.google.nl/ads/ https://www.google.no/ads/ https://www.google.se/ads/ https://www.izettle.com https://www.paypal.com https://www.paypalobjects.com wss://*.hotjar.com;frame-src 'self' https://*.zettle.com https://*.izettle.com https://*.zettle.com https://4896710.fls.doubleclick.net https://br.izettle.com https://cdn1.friendbuy.com https://de.izettle.com https://discover.izettle.com https://dk.izettle.com https://es.izettle.com https://fi.izettle.com https://fr.izettle.com https://gb.izettle.com https://go.pardot.com https://it.izettle.com https://izettle-community.force.com https://izettle.getfeedback.com https://izettle.go2cloud.org https://mx.izettle.com https://my.izettle.com https://nl.izettle.com https://no.izettle.com https://player.vimeo.com https://privacyportal-eu.onetrust.com https://se.izettle.com https://secure.livechatinc.com https://vars.hotjar.com https://websdk.ujetqa.co https://www.googletagmanager.com https://www.paypal.com https://www.youtube.com https://zettle-community.force.com https://zettle.go2cloud.org;style-src 'self' 'unsafe-inline' https://*.zettle.com https://*.izettle.com 'self' 'unsafe-inline' https://*.zettle.com https://cdn.cookielaw.org https://cdn.izettle.com https://optanon.blob.core.windows.net https://script.hotjar.com https://static.hotjar.com https://tagmanager.google.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.zettle.com https://*.izettle.com 'self' 'unsafe-eval' 'unsafe-inline' http://cdn.izettle.com/jquery/ https://*.zettle.com https://accounts.livechatinc.com https://adservice.google.com/ddm/ https://app.storyblok.com https://bat.bing.com https://br.izettle.com https://c.friendbuy.com https://cdn.cookielaw.org https://cdn.friendbuy.com https://cdn.izettle.com https://cdn.livechatinc.com https://cdn.taboola.com/libtrc/unip/1313048/tfa.js https://cdn1.friendbuy.com https://code.jquery.com https://connect.facebook.net https://de.izettle.com https://discover.izettle.com https://djnf6e5yyirys.cloudfront.net https://dk.izettle.com https://embed.friendbuy.com https://es.izettle.com https://fi.izettle.com https://fr.izettle.com https://ga.zettletest.com https://gb.izettle.com https://geolocation.onetrust.com https://googleads.g.doubleclick.net https://it.izettle.com https://mx.izettle.com https://my.izettle.com https://nl.izettle.com https://no.izettle.com https://optanon.blob.core.windows.net https://pagead2.googlesyndication.com https://pi.pardot.com https://player.vimeo.com/api/player.js https://privacyportal-eu.onetrust.com https://s.ytimg.com https://script.hotjar.com https://se.izettle.com https://secure.livechatinc.com https://securetoken.googleapis.com https://sjs.bizographics.com https://snap.licdn.com https://ssl.google-analytics.com https://static.hotjar.com https://tagmanager.google.com https://tpc.googlesyndication.com/ https://trc.taboola.com/1313048/ https://unpkg.com/web-vitals/dist/web-vitals.iife.js https://websdk.ujetqa.co https://ws.friendbuy.com https://www.facebook.com https://www.google-analytics.com https://www.google.co.uk https://www.google.com https://www.google.com.br https://www.google.com.mx https://www.google.de https://www.google.dk https://www.google.es https://www.google.fi https://www.google.fr https://www.google.ie https://www.google.it https://www.google.nl https://www.google.no https://www.google.pt https://www.google.se https://www.googleadservices.com https://www.googleapis.com https://www.googletagmanager.com https://www.paypalobjects.com https://www.youtube.com/iframe_api;img-src 'self' data: https://*.zettle.com https://*.izettle.com 'self' data: http://a.storyblok.com http://img2.storyblok.com https://*.zettle.com https://4896710.fls.doubleclick.net https://ade.googlesyndication.com https://analytics.google.com https://assistly-production.s3.amazonaws.com https://bat.bing.com https://cdn.cookielaw.org https://cdn.izettle.com https://cds.taboola.com/ https://checkout.paypal.com https://cx.atdmt.com https://googleads.g.doubleclick.net https://i.vimeocdn.com https://i.ytimg.com https://i3.ytimg.com https://my.izettle.com https://optanon.blob.core.windows.net https://region1.analytics.google.com https://region1.google-analytics.com https://script.hotjar.com https://secure.livechatinc.com https://ssl.google-analytics.com https://ssl.gstatic.com https://static.hotjar.com https://stats.g.doubleclick.net https://t.paypal.com https://www.facebook.com https://www.google-analytics.com https://www.google.co.uk https://www.google.com https://www.google.com.br https://www.google.com.mx https://www.google.de https://www.google.dk https://www.google.es https://www.google.fi https://www.google.fr https://www.google.ie https://www.google.it https://www.google.nl https://www.google.no https://www.google.pt https://www.google.se https://www.googleadservices.com https://www.googletagmanager.com https://www.gstatic.com https://www.paypalobjects.com;font-src 'self' data: https://*.zettle.com https://*.izettle.com https://*.zettle.com https://cdn.izettle.com https://discover.izettle.com https://fonts.googleapis.com https://fonts.gstatic.com https://script.hotjar.com https://www.paypalobjects.com;media-src 'self' https://*.izettle.com https://a.storyblok.com

default-src Keyword —

'self'

default-src Host

PayPal

https://*.zettle.com

ASN | Amazon

default-src Host —

https://*.izettle.com

ASN | Amazon

connect-src Keyword —

'self'

connect-src Host

PayPal

https://*.zettle.com

ASN | Amazon

connect-src Host —

https://*.izettle.com

ASN | Amazon

connect-src Host

AWS API Gateway

https://0iv4qc8t05.execute-api.eu-west-1.amazonaws.com

ASN | Amazon

connect-src Keyword —

'self'

connect-src Host

Hotjar

https://*.hotjar.com

ASN | Amazon

connect-src Host

Hotjar

https://*.hotjar.io

connect-src Host

PayPal

https://*.zettle.com

ASN | Amazon

connect-src Host

AWS API Gateway

https://0iv4qc8t05.execute-api.eu-west-1.amazonaws.com/

ASN | Amazon

connect-src Host

Google Conversion Tracking

https://adservice.google.com/

ASN | Google

connect-src Host

Google Analytics

https://analytics.google.com

ASN | Google

connect-src Host

LaunchDarkly

https://app.launchdarkly.com

ASN | Fastly

connect-src Host

Microsoft Advertising

https://bat.bing.com

ASN | Microsoft

connect-src Host —

https://c.friendbuy.com

connect-src Host

OneTrust

https://cdn.cookielaw.org

ASN | Cloudflare

connect-src Host —

https://cdn.friendbuy.com

ASN | Amazon

connect-src Host —

https://cdn.izettle.com

ASN | Amazon

connect-src Host —

https://cdn1.friendbuy.com

ASN | Amazon

connect-src Host

LaunchDarkly

https://clientstream.launchdarkly.com

ASN | Amazon

connect-src Host —

https://embed.friendbuy.com

connect-src Host

LaunchDarkly

https://events.launchdarkly.com

ASN | Amazon

connect-src Host —

https://ga.zettletest.com

connect-src Host

OneTrust

https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location

ASN | Cloudflare

connect-src Host

Google DoubleClick

https://googleads.g.doubleclick.net/

ASN | Google

connect-src Host

Loggly

https://logs-01.loggly.com

ASN | Amazon

connect-src Host —

https://my.izettle.com

ASN | Amazon

connect-src Host

Azure Blob Storage

https://optanon.blob.core.windows.net

ASN | Microsoft

connect-src Host

Google AdSense

https://pagead2.googlesyndication.com/

ASN | Google

connect-src Host

OneTrust

https://privacyportal-eu.onetrust.com

ASN | Cloudflare

connect-src Host

Google Analytics

https://region1.analytics.google.com

ASN | Google

connect-src Host

Google Analytics

https://region1.google-analytics.com

ASN | Google

connect-src Host —

https://sapi.searchblok.com

ASN | Amazon

connect-src Host —

https://secure.izettle.com

ASN | Amazon

connect-src Host

Sentry

https://sentry.io/api

ASN | Google Cloud

connect-src Host

Google Analytics

https://ssl.google-analytics.com

ASN | Google

connect-src Host

Google DoubleClick

https://stats.g.doubleclick.net

ASN | Google

connect-src Host —

https://status.izettle.com

ASN | Amazon

connect-src Host

Taboola

https://trc-events.taboola.com/1313048/

ASN | TABOOLA-AS Taboola.com ltd

connect-src Host

Taboola

https://trc.taboola.com/1313048/

ASN | Fastly

connect-src Host —

https://ws.friendbuy.com

connect-src Host

Google Analytics

https://www.google-analytics.com

ASN | Google

connect-src Host —

https://www.google.co.uk/ads/

ASN | Google

connect-src Host —

https://www.google.com.br/ads/

ASN | Google

connect-src Host —

https://www.google.com.mx/ads/

ASN | Google

connect-src Host

Google Search

https://www.google.com/ads/

ASN | Google

connect-src Host

Google Search

https://www.google.com/pagead/

ASN | Google

connect-src Host —

https://www.google.de/ads/

ASN | Google

connect-src Host —

https://www.google.dk/ads/

ASN | Google

connect-src Host —

https://www.google.es/ads/

ASN | Google

connect-src Host —

https://www.google.fi/ads/

ASN | Google

connect-src Host —

https://www.google.fr/ads/

ASN | Google

connect-src Host —

https://www.google.ie/ads/

ASN | Google

connect-src Host —

https://www.google.it/ads/

ASN | Google

connect-src Host —

https://www.google.nl/ads/

ASN | Google

connect-src Host —

https://www.google.no/ads/

ASN | Google

connect-src Host —

https://www.google.se/ads/

ASN | Google

connect-src Host —

https://www.izettle.com

ASN | Amazon

connect-src Host

PayPal

https://www.paypal.com

ASN | Fastly

connect-src Host

PayPal

https://www.paypalobjects.com

ASN | Fastly

connect-src Host

Hotjar

wss://*.hotjar.com

ASN | Amazon

frame-src Keyword —

'self'

frame-src Host

PayPal

https://*.zettle.com

ASN | Amazon

frame-src Host —

https://*.izettle.com

ASN | Amazon

frame-src Host

PayPal

https://*.zettle.com

ASN | Amazon

frame-src Host

Google DoubleClick

https://4896710.fls.doubleclick.net

ASN | Google

frame-src Host —

https://br.izettle.com

ASN | Amazon

frame-src Host —

https://cdn1.friendbuy.com

ASN | Amazon

frame-src Host —

https://de.izettle.com

ASN | Amazon

frame-src Host —

https://discover.izettle.com

ASN | Amazon

frame-src Host —

https://dk.izettle.com

ASN | Amazon

frame-src Host —

https://es.izettle.com

frame-src Host —

https://fi.izettle.com

ASN | Amazon

frame-src Host —

https://fr.izettle.com

ASN | Amazon

frame-src Host —

https://gb.izettle.com

ASN | Amazon

frame-src Host

Salesforce Pardot

https://go.pardot.com

ASN | Amazon

frame-src Host —

https://it.izettle.com

ASN | Amazon

frame-src Host

Salesforce Sites

https://izettle-community.force.com

ASN | Amazon

frame-src Host —

https://izettle.getfeedback.com

ASN | Amazon

frame-src Host —

https://izettle.go2cloud.org

ASN | Amazon

frame-src Host —

https://mx.izettle.com

frame-src Host —

https://my.izettle.com

ASN | Amazon

frame-src Host —

https://nl.izettle.com

ASN | Amazon

frame-src Host —

https://no.izettle.com

ASN | Amazon

frame-src Host

Vimeo

https://player.vimeo.com

ASN | Cloudflare

frame-src Host

OneTrust

https://privacyportal-eu.onetrust.com

ASN | Cloudflare

frame-src Host —

https://se.izettle.com

ASN | Amazon

frame-src Host

LiveChat

https://secure.livechatinc.com

ASN | Akamai

frame-src Host

Hotjar

https://vars.hotjar.com

ASN | Amazon

frame-src Host —

https://websdk.ujetqa.co

frame-src Host

Google Tag Manager

https://www.googletagmanager.com

ASN | Google

frame-src Host

PayPal

https://www.paypal.com

ASN | Fastly

frame-src Host

YouTube

https://www.youtube.com

ASN | Google

frame-src Host

Salesforce Sites

https://zettle-community.force.com

frame-src Host —

https://zettle.go2cloud.org

ASN | Amazon

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

PayPal

https://*.zettle.com

ASN | Amazon

style-src Host —

https://*.izettle.com

ASN | Amazon

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

PayPal

https://*.zettle.com

ASN | Amazon

style-src Host

OneTrust

https://cdn.cookielaw.org

ASN | Cloudflare

style-src Host —

https://cdn.izettle.com

ASN | Amazon

style-src Host

Azure Blob Storage

https://optanon.blob.core.windows.net

ASN | Microsoft

style-src Host

Hotjar

https://script.hotjar.com

ASN | Amazon

style-src Host

Hotjar

https://static.hotjar.com

ASN | Amazon

style-src Host

Google Tag Manager

https://tagmanager.google.com

ASN | Google

script-src Keyword —

'self'

script-src Keyword —

'unsafe-eval'

script-src Keyword —

'unsafe-inline'

script-src Host

PayPal

https://*.zettle.com

ASN | Amazon

script-src Host —

https://*.izettle.com

ASN | Amazon

script-src Keyword —

'self'

script-src Keyword —

'unsafe-eval'

script-src Keyword —

'unsafe-inline'

script-src Host —

http://cdn.izettle.com/jquery/

ASN | Amazon

script-src Host

PayPal

https://*.zettle.com

ASN | Amazon

script-src Host

LiveChat

https://accounts.livechatinc.com

ASN | Akamai

script-src Host

Google Conversion Tracking

https://adservice.google.com/ddm/

ASN | Google

script-src Host

Storyblok

https://app.storyblok.com

ASN | Amazon

script-src Host

Microsoft Advertising

https://bat.bing.com

ASN | Microsoft

script-src Host —

https://br.izettle.com

ASN | Amazon

script-src Host —

https://c.friendbuy.com

script-src Host

OneTrust

https://cdn.cookielaw.org

ASN | Cloudflare

script-src Host —

https://cdn.friendbuy.com

ASN | Amazon

script-src Host —

https://cdn.izettle.com

ASN | Amazon

script-src Host

LiveChat

https://cdn.livechatinc.com

ASN | Akamai

script-src Host

Taboola

https://cdn.taboola.com/libtrc/unip/1313048/tfa.js

ASN | Fastly

script-src Host —

https://cdn1.friendbuy.com

ASN | Amazon

script-src Host

jQuery

https://code.jquery.com

ASN | Fastly

script-src Host

Facebook

https://connect.facebook.net

ASN | Facebook

script-src Host —

https://de.izettle.com

ASN | Amazon

script-src Host —

https://discover.izettle.com

ASN | Amazon

script-src Host

AWS CloudFront

https://djnf6e5yyirys.cloudfront.net

ASN | Amazon

script-src Host —

https://dk.izettle.com

ASN | Amazon

script-src Host —

https://embed.friendbuy.com

script-src Host —

https://es.izettle.com

script-src Host —

https://fi.izettle.com

ASN | Amazon

script-src Host —

https://fr.izettle.com

ASN | Amazon

script-src Host —

https://ga.zettletest.com

script-src Host —

https://gb.izettle.com

ASN | Amazon

script-src Host

OneTrust

https://geolocation.onetrust.com

ASN | Cloudflare

script-src Host

Google DoubleClick

https://googleads.g.doubleclick.net

ASN | Google

script-src Host —

https://it.izettle.com

ASN | Amazon

script-src Host —

https://mx.izettle.com

script-src Host —

https://my.izettle.com

ASN | Amazon

script-src Host —

https://nl.izettle.com

ASN | Amazon

script-src Host —

https://no.izettle.com

ASN | Amazon

script-src Host

Azure Blob Storage

https://optanon.blob.core.windows.net

ASN | Microsoft

script-src Host

Google AdSense

https://pagead2.googlesyndication.com

ASN | Google

script-src Host

Salesforce Pardot

https://pi.pardot.com

ASN | Amazon

script-src Host

Vimeo

https://player.vimeo.com/api/player.js

ASN | Cloudflare

script-src Host

OneTrust

https://privacyportal-eu.onetrust.com

ASN | Cloudflare

script-src Host

YouTube

https://s.ytimg.com

ASN | Google

script-src Host

Hotjar

https://script.hotjar.com

ASN | Amazon

script-src Host —

https://se.izettle.com

ASN | Amazon

script-src Host

LiveChat

https://secure.livechatinc.com

ASN | Akamai

script-src Host

Google API JS Client

https://securetoken.googleapis.com

ASN | Google

script-src Host —

https://sjs.bizographics.com

ASN | Akamai

script-src Host

https://snap.licdn.com

ASN | Akamai

script-src Host

Google Analytics

https://ssl.google-analytics.com

ASN | Google

script-src Host

Hotjar

https://static.hotjar.com

ASN | Amazon

script-src Host

Google Tag Manager

https://tagmanager.google.com

ASN | Google

script-src Host

Google AdSense

https://tpc.googlesyndication.com/

ASN | Google

script-src Host

Taboola

https://trc.taboola.com/1313048/

ASN | Fastly

script-src Host

unpkg

https://unpkg.com/web-vitals/dist/web-vitals.iife.js

ASN | Cloudflare

script-src Host —

https://websdk.ujetqa.co

script-src Host —

https://ws.friendbuy.com

script-src Host

Facebook

https://www.facebook.com

ASN | Facebook

script-src Host

Google Analytics

https://www.google-analytics.com

ASN | Google

script-src Host —

https://www.google.co.uk

ASN | Google

script-src Host

Google Search

https://www.google.com

ASN | Google

script-src Host —

https://www.google.com.br

ASN | Google

script-src Host —

https://www.google.com.mx

ASN | Google

script-src Host —

https://www.google.de

ASN | Google

script-src Host —

https://www.google.dk

ASN | Google

script-src Host —

https://www.google.es

ASN | Google

script-src Host —

https://www.google.fi

ASN | Google

script-src Host —

https://www.google.fr

ASN | Google

script-src Host —

https://www.google.ie

ASN | Google

script-src Host —

https://www.google.it

ASN | Google

script-src Host —

https://www.google.nl

ASN | Google

script-src Host —

https://www.google.no

ASN | Google

script-src Host —

https://www.google.pt

ASN | Google

script-src Host —

https://www.google.se

ASN | Google

script-src Host

Google Conversion Tracking

https://www.googleadservices.com

ASN | Google

script-src Host

Google API JS Client

https://www.googleapis.com

ASN | Google

script-src Host

Google Tag Manager

https://www.googletagmanager.com

ASN | Google

script-src Host

PayPal

https://www.paypalobjects.com

ASN | Fastly

script-src Host

YouTube

https://www.youtube.com/iframe_api

ASN | Google

img-src Keyword —

'self'

img-src Scheme —

data:

img-src Host

PayPal

https://*.zettle.com

ASN | Amazon

img-src Host —

https://*.izettle.com

ASN | Amazon

img-src Keyword —

'self'

img-src Scheme —

data:

img-src Host

Storyblok

http://a.storyblok.com

ASN | Amazon

img-src Host

Storyblok

http://img2.storyblok.com

ASN | Amazon

img-src Host

PayPal

https://*.zettle.com

ASN | Amazon

img-src Host

Google DoubleClick

https://4896710.fls.doubleclick.net

ASN | Google

img-src Host

Google AdSense

https://ade.googlesyndication.com

ASN | Google

img-src Host

Google Analytics

https://analytics.google.com

ASN | Google

img-src Host

Amazon S3

https://assistly-production.s3.amazonaws.com

ASN | Amazon

img-src Host

Microsoft Advertising

https://bat.bing.com

ASN | Microsoft

img-src Host

OneTrust

https://cdn.cookielaw.org

ASN | Cloudflare

img-src Host —

https://cdn.izettle.com

ASN | Amazon

img-src Host

Taboola

https://cds.taboola.com/

ASN | TABOOLA-AS Taboola.com ltd

img-src Host

PayPal

https://checkout.paypal.com

ASN | Fastly

img-src Host —

https://cx.atdmt.com

img-src Host

Google DoubleClick

https://googleads.g.doubleclick.net

ASN | Google

img-src Host

Vimeo

https://i.vimeocdn.com

ASN | Fastly

img-src Host

YouTube

https://i.ytimg.com

ASN | Google

img-src Host

YouTube

https://i3.ytimg.com

ASN | Google

img-src Host —

https://my.izettle.com

ASN | Amazon

img-src Host

Azure Blob Storage

https://optanon.blob.core.windows.net

ASN | Microsoft

img-src Host

Google Analytics

https://region1.analytics.google.com

ASN | Google

img-src Host

Google Analytics

https://region1.google-analytics.com

ASN | Google

img-src Host

Hotjar

https://script.hotjar.com

ASN | Amazon

img-src Host

LiveChat

https://secure.livechatinc.com

ASN | Akamai

img-src Host

Google Analytics

https://ssl.google-analytics.com

ASN | Google

img-src Host

Google Static File Front End

https://ssl.gstatic.com

ASN | Google

img-src Host

Hotjar

https://static.hotjar.com

ASN | Amazon

img-src Host

Google DoubleClick

https://stats.g.doubleclick.net

ASN | Google

img-src Host

PayPal

https://t.paypal.com

ASN | Cloudflare

img-src Host

Facebook

https://www.facebook.com

ASN | Facebook

img-src Host

Google Analytics

https://www.google-analytics.com

ASN | Google

img-src Host —

https://www.google.co.uk

ASN | Google

img-src Host

Google Search

https://www.google.com

ASN | Google

img-src Host —

https://www.google.com.br

ASN | Google

img-src Host —

https://www.google.com.mx

ASN | Google

img-src Host —

https://www.google.de

ASN | Google

img-src Host —

https://www.google.dk

ASN | Google

img-src Host —

https://www.google.es

ASN | Google

img-src Host —

https://www.google.fi

ASN | Google

img-src Host —

https://www.google.fr

ASN | Google

img-src Host —

https://www.google.ie

ASN | Google

img-src Host —

https://www.google.it

ASN | Google

img-src Host —

https://www.google.nl

ASN | Google

img-src Host —

https://www.google.no

ASN | Google

img-src Host —

https://www.google.pt

ASN | Google

img-src Host —

https://www.google.se

ASN | Google

img-src Host

Google Conversion Tracking

https://www.googleadservices.com

ASN | Google

img-src Host

Google Tag Manager

https://www.googletagmanager.com

ASN | Google

img-src Host

Google Static File Front End

https://www.gstatic.com

ASN | Google

img-src Host

PayPal

https://www.paypalobjects.com

ASN | Fastly

font-src Keyword —

'self'

font-src Scheme —

data:

font-src Host

PayPal

https://*.zettle.com

ASN | Amazon

font-src Host —

https://*.izettle.com

ASN | Amazon

font-src Host

PayPal

https://*.zettle.com

ASN | Amazon

font-src Host —

https://cdn.izettle.com

ASN | Amazon

font-src Host —

https://discover.izettle.com

ASN | Amazon

font-src Host

Google Fonts

https://fonts.googleapis.com

ASN | Google

font-src Host

Google Fonts

https://fonts.gstatic.com

ASN | Google

font-src Host

Hotjar

https://script.hotjar.com

ASN | Amazon

font-src Host

PayPal

https://www.paypalobjects.com

ASN | Fastly

media-src Keyword —

'self'

media-src Host —

https://*.izettle.com

ASN | Amazon

media-src Host

Content-Security-Policy

Content-Security-Policy-Report-Only