Content-Security-Policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-i4muc52+6vmU0QrZX0qxwwtHZCf/FJXn31BjZy1OVKfvBG5L' 'self' 'unsafe-inline' https://*.paypal.com https://*.paypalobjects.com https://ad.doubleclick.net https://ade.googlesyndication.com https://adservice.google.com https://googleads.g.doubleclick.net https://googletagmanager.com https://pagead2.googlesyndication.com https://pypd.paypal-mktg.com https://tagmanager.google.com https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com; img-src 'self' https: data: https://region1.analytics.google.com https://region1.google-analytics.com https://www.analytics.google.com https://www.google-analytics.com; object-src 'none'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com; frame-src 'self' https://*.company-target.com https://*.paypal.com https://*.paypalobjects.com https://www.googletagmanager.com https://www.youtube-nocookie.com https://*.qualtrics.com; frame-ancestors 'self' https://*.paypal.com; connect-src 'self' 'unsafe-inline' https://*.adsrvr.org https://*.company-target.com https://*.demandbase.com https://*.paypal.com https://*.paypalobjects.com https://ad.doubleclick.net https://adservice.google.com https://browser-intake-us5-datadoghq.com https://google.com https://googleads.g.doubleclick.net https://pagead2.googlesyndication.com https://prod.uidapi.com https://region1.analytics.google.com https://region1.google-analytics.com https://www.analytics.google.com https://www.google-analytics.com https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com www.google.com www.googletagmanager.com https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp