Content-Security-Policy: base-uri 'self'; child-src blob:; connect-src 'self' https://www.veeva.com https://veeva.matomo.cloud https://cdn.matomo.cloud https://cdn.cookielaw.org https://cdn.jsdelivr.net https://lltrck.com https://bam.nr-data.net https://nr-data.net https://*.wistia.com https://*.litix.io/ https://fast.wistia.net https://cdnjs.cloudflare.com https://*.sentry-cdn.com/ https://veeva.theorgwiki.com; default-src 'self'; font-src 'self' data: https://fonts.gstatic.com https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://*.wistia.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' https://www.veeva.com https://fast.wistia.net https://fast.wistia.com https://explore.veeva.com https://newassets.hcaptcha.com https://*.arcade.software https://www.surveymonkey.com/; img-src 'self' data: blob: https://www.veeva.com https://veevabasics.veeva.com https://vaultbasics.veeva.com https://cdn.cookielaw.org https://lltrck.com https://*.wistia.com https://*.wistia.net; media-src 'self' blob: data: https://*.wistia.com https://*.wistia.net; object-src 'self' https://www.veeva.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ajax.googleapis.com https://cdn.cookielaw.org https://veeva.matomo.cloud https://cdn.matomo.cloud https://*.wistia.com https://*.wistia.net https://src.litix.io https://*.sentry-cdn.com/ https://cdn.jsdelivr.net https://lltrck.com https://js-agent.newrelic.com https://momentjs.com https://explore.veeva.com https://js.hcaptcha.com https://www.veeva.com; style-src 'self' blob: 'unsafe-inline' https://www.veeva.com https://fonts.googleapis.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://explore.veeva.com https://fast.wistia.com; worker-src 'self' blob:; upgrade-insecure-requests