Content-Security-Policy: default-src       'self'     ;     script-src       'unsafe-inline'       'unsafe-eval'       'self'       https://js.intercomcdn.com       https://widget.intercom.io       https://www.google.com       https://www.googletagmanager.com       https://*.cookiebot.com       https://*.storyblok.com       https://player.vimeo.com       https://*.google-analytics.com     ;     style-src       'self'       'unsafe-inline'       https://f.videocdn.com       https://www.gstatic.com       https://assets.calendly.com     ;     img-src       'self'       data:       blob:       https://*.storyblok.com       https://imgsct.cookiebot.com       https://*.gynzy.com       https://www.googletagmanager.com       https://www.google.com       https://www.google.ar       https://www.google.be       https://www.google.de       https://www.google.dk       https://www.google.es       https://www.google.fi       https://www.google.fr       https://www.google.it       https://www.google.mx       https://www.google.nl       https://www.google.no       https://www.google.se       https://www.google.co.uk       https://www.google.co.in       https://www.google.kz       https://www.google.sc       https://www.google.at       https://www.google.gr       https://www.google.ca       https://www.google.ch       https://www.google.pl       https://www.google.sr       https://www.google.lk       https://www.google.com.ua       https://www.google.com.mx       https://www.google.com.sg       https://www.google.com.ar       https://www.google.com.tr       https://www.google.com.sv       https://www.google.com.au       https://www.google.com.qa       https://www.google.com.ec       https://www.google.com.kh              https://calendar.google.com       https://lh3.googleusercontent.com       https://i.vimeocdn.com       https://storage.googleapis.com       https://assets.calendly.com       https://downloads.intercomcdn.com       https://js.intercomcdn.com       https://static.intercomassets.com       https://public-assets.typeform.com     ;     font-src       'self'       data:       blob:       https://fonts.gstatic.com       https://fonts.intercomcdn.com     ;     connect-src       'self'       https://cdn.plyr.io       https://*.cookiebot.com       https://*.storyblok.com       https://www.google.com       https://analytics.google.com       https://calendar.google.com       https://region1.analytics.google.com       https://*.intercom.io       wss://*.intercom.io       https://*.intercom-messenger.com       wss://*.intercom-messenger.com       https://www.google.nl       https://www.google.be       https://www.google.de       https://*.google-analytics.com       https://*.gynzy.com     ;     frame-ancestors       https://*.storyblok.com     ;     frame-src       https://consentcdn.cookiebot.com       https://player.vimeo.com       https://www.googletagmanager.com       https://calendar.google.com       https://calendly.com       https://www.recaptcha.net       https://www.google.com       https://js.stripe.com       https://gynzy.typeform.com       https://m.stripe.network     ;     object-src       'none'     ;     base-uri       'self'     ;     form-action       'self'     ;     media-src       data:       https://cdn.plyr.io       https://js.intercomcdn.com     ;     report-uri       https://event-publisher-api.gynzy.com/reporting-api/main;       report-to main-endpoint     ;