HTTP Headers Analysis for https://exchange.se.com

Detected Technologies from Headers

See all in URL Inspect 11

Amazon CloudFront

YouTube

Adobe Marketo

Akamai

Akamai mPulse

Google Analytics

Google Conversion Tracking

Google DoubleClick

Google Tag Manager

Nginx

OneTrust

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000; includeSubdomains

Content-Security-Policy

Basic

default-src; script-src; connect-src; +11 more

default-src 'self';script-src https://*.go-mpulse.net 'self' https://s.go-mpulse.net/ https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://*.google-analytics.com/ https://gateway.zscaler.net/ https://*.se.com/ https://cdn.evgnet.com/ https://www.google-analytics.com/ https://www.googletagmanager.com/ https://cdn.cookielaw.org/ https://tagmanager.schneider-electric.com/ https://nebula-cdn.kampyle.com/ https://www.youtube.com/ https://www.youtube.com/iframe_api https://cdn.tagcommander.com/ https://t.contentsquare.net https://cdn.glaze.ai/ https://stat.glaze.ai/ https://privacy.trustcommander.net https://cdn.trustcommander.net/ https://www.googleadservices.com/ https://stats.g.doubleclick.net/ https://munchkin.marketo.net/ https://md-scp.kampyle.com/ https://snap.licdn.com/ https://googleads.g.doubleclick.net/ https://snap.licdn.com/ 'unsafe-inline' 'unsafe-eval'; connect-src https://*.go-mpulse.net https://*.akstat.io 'self' https://cdn.builder.io/ https://analytics.se.com/ https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://*.google-analytics.com/ https://googleads.g.doubleclick.net/ https://www.google.com/ https://collect.tealiumiq.com/event https://*.se.com/ https://schneiderelectricsas.germany-2.evergage.com/ https://www.google-analytics.com/ https://nebula-cdn.kampyle.com/ https://udc-neb.kampyle.com/ https://cdn.cookielaw.org/ https://stats.g.doubleclick.net/ https://stat.glaze.ai/ https://*.contentsquare.net/ https://178-gyd-668.mktoresp.com/ https://geolocation.onetrust.com/ https://ubt-eu.kampyle.com/ https://privacy.commander1.com/ https://geolocation.onetrust.com/ https://privacy.trustcommander.net/ https://privacyportal-eu.onetrust.com/ https://md-scp.kampyle.com/ https://px.ads.linkedin.com/ data:;object-src 'none';base-uri 'self';style-src 'self' https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://*.se.com/ https://md-scp.kampyle.com/ https://cdn.glaze.ai/ 'unsafe-inline'; img-src https://*.akstat.io 'self' https://cdn.builder.io/ https://d2osz8slymlqdp.cloudfront.net/ https://d2mbv8fjp9acyd.cloudfront.net/ https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://googleads.g.doubleclick.net/ https://*.se.com/ https://udc-neb.kampyle.com/ https://ad.doubleclick.net/ https://d33na3ni6eqf5j.cloudfront.net https://intstatcheck.wsecure.schneider-electric.com/ https://logws1330.ati-host.net/ https://logs1409.xiti.com/ https://cdn.cookielaw.org/ https://www.google-analytics.com/ https://c.az.contentsquare.net/ https://www.google.com/ https://www.google.co.in/ https://manager.tagcommander.com/ https://c.contentsquare.net/ https://d2uars7xkdmztq.cloudfront.net/ https://ad.douleclick.net/ https://www.googletagmanager.com/ https://adservice.google.com/ https://i.ytimg.com/ https://adservice.google.co.in/ https://px.ads.linkedin.com/ https://www.linkedin.com/ data: blob:;frame-src 'self' https://gateway.zscaler.net/ https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://www.youtube.com www.youtube.com https://nebula-cdn.kampyle.com/ https://www.googletagmanager.com/ https://csxd.contentsquare.net/ https://td.doubleclick.net/; frame-ancestors 'self' https://se--uatbfo22.sandbox.my.site.com/;font-src 'self' https://*.tiqcdn.com https://*.tiqcdn.cn https://*.tealiumiq.com https://*.kampyle.com https://*.medallia.com https://*.medallia.eu https://*.medallia.ca https://*.medallia.com.au https://*.se.com/ https://cdn.glaze.ai/ data:;form-action 'self';manifest-src 'self';media-src 'self';worker-src blob:;

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

bytes

Connection

Performance

Transfer-Encoding

Performance

chunked

Caching Headers

4 headers

Cache-Control

Caching

no-cache, no-store, must-revalidate

Etag

Caching

"69609dd6-16fa7"

Expires

Caching

Thu, 12 Feb 2026 22:35:44 GMT

Last-Modified

Caching

Fri, 09 Jan 2026 06:19:02 GMT

Content Headers

1 headers

Content-Type

Content

text/html

Server Headers

1 headers

Server

nginx

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

4 headers

Date

Other

Thu, 12 Feb 2026 22:35:44 GMT

Feature-Policy

Other

midi none;notifications none;push none;sync-xhr none;microphone none;camera none;magnetometer none;gyroscope none;speaker self;vibrate none;fullscreen self;payment none;

Server-Timing

Other

ak_p; desc="1770935744279_400321435_2405926063_251_19806_2_33_-";dur=1

X-Akamai-Transformed

Other

9 - 0 pmb=mRUM,3

Recommendations

Enable compression (gzip/brotli) to improve performance