| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| X-Frame-Options | deny |
| Upgrade | h2,h2c |
| Expires | Thu, 01 Jan 1970 00:00:00 GMT |
| Cache-Control | must-revalidate |
| X-Xss-Protection | 1; mode=block |
| X-Content-Type-Options | nosniff |
| Vary | Accept-Encoding |
| Server | |
| Connection | Upgrade |
| Set-Cookie | CMSSESSIONID=F3KDQ6amyUsKXDiZsvOgW1_r2JaXWXCgFEcWrH7e.bnp-prod7; path=/; secure; HttpOnly; SameSite=Strict |
| Referrer-Policy | no-referrer-when-downgrade |
| Content-Security-Policy | default-src https://player.vimeo.com docs.google.com https://optimize.google.com https://www.splash-screen.net support.google.com https://cdn.cookielaw.org policies.google.com https://maps.googleapis.com optimize.google.com stats.g.doubleclick.net cse.google.com maps.google.com www.google.com https://9274211.fls.doubleclick.net https://leads.sandboxbnpparibas.pl prospectleads.bnpparibas.pl https://geolocation.onetrust.com leads.sandboxbnpparibas.pl bnp-paribas.user.com https://www.clarity.ms www.ratatu.pl https://bat.bing.com calendar.google.com analytics.twitter.com widget.user.com https://api.ehoundplatform.com https://privacyportal-fr.onetrust.com https://streetviewpixels-pa.googleapis.com googleads.g.doubleclick.net https://vimeo.com play.google.com developers.google.com qtank.salesmore.pl apis.google.com 'self'; font-src https://leads.sandboxbnpparibas.pl docs.google.com https://themes.googleusercontent.com/ fonts.googleapis.com prospectleads.bnpparibas.pl https://geolocation.onetrust.com leads.sandboxbnpparibas.pl support.google.com policies.google.com www.ratatu.pl calendar.google.com widget.user.com https://api.ehoundplatform.com https://fonts.gstatic.com googleads.g.doubleclick.net play.google.com developers.google.com themes.googleusercontent.com cse.google.com maps.google.com www.google.com apis.google.com https://9274211.fls.doubleclick.net 'self'; style-src docs.google.com support.google.com https://cdn.cookielaw.org policies.google.com https://maps.googleapis.com privacyportal.onetrust.com https://www.gstatic.com cse.google.com maps.google.com www.google.com https://9274211.fls.doubleclick.net https://fonts.googleapis.com https://leads.sandboxbnpparibas.pl prospectleads.bnpparibas.pl https://tagmanager.google.com https://geolocation.onetrust.com leads.sandboxbnpparibas.pl bnp-paribas.user.com www.googleapis.com www.ratatu.pl calendar.google.com widget.user.com https://api.ehoundplatform.com googleads.g.doubleclick.net play.google.com developers.google.com https://skk.erecruiter.pl apis.google.com https://www.ytimg.com 'self' 'nonce-vnyeyQ1vU6WPxf0HEpOYpw=='; img-src docs.google.com https://optimize.google.com https://img.youtube.com https://www.facebook.com https://cdn.cookielaw.org https://pixel.wp.pl policies.google.com https://cm.g.doubleclick.net stats.g.doubleclick.net https://lh3.ggpht.com maps.google.com www.google.com www.gstatic.com bcp.crwdcntrl.net https://9274211.fls.doubleclick.net www.google-analytics.com www.0.s-nk.pl https://leads.sandboxbnpparibas.pl fonts.googleapis.com leads.sandboxbnpparibas.pl ajax.googleapis.com bnp-paribas.user.com https://www.clarity.ms www.ratatu.pl https://www.googleapis.com widget.user.com https://ade.googlesyndication.com googleads.g.doubleclick.net developers.google.com https://skk.erecruiter.pl www.s3.cdn03.imgwykop.pl https://www.twitter.com https://emplocity.com https://googleads4.g.doubleclick.net https://www.googleadservices.com i.ctnsnet.com support.google.com https://ib.adnxs.com https://dot.wp.pl region1.google-analytics.com https://i.ytimg.com googleapis.com https://googleads.g.doubleclick.net maps.googleapis.com https://www.google-analytics.com/ https://maps.google.com gcm.ctnsnet.com www.googletagmanager.com cse.google.com https://www.emplocity.com https://tbl.tradedoubler.com clients1.google.com https://ad.doubleclick.net prospectleads.bnpparibas.pl https://geolocation.onetrust.com www.linkedin.com region1.analytics.google.com https://s1.2mdn.net https://bat.bing.com calendar.google.com https://www.google.pl analytics.twitter.com https://sp.analytics.yahoo.com https://maps.gstatic.com https://api.ehoundplatform.com https://streetviewpixels-pa.googleapis.com www.passets.pinterest.com https://i.vimeocdn.com https://developers.google.com play.google.com apis.google.com www.passets.pinimg.com 'self'; frame-src https://emplocity.com www.wykop.pl https://player.vimeo.com docs.google.com https://www.linkedin.com https://s-static.ak.facebook.com https://www.s-static.ak.facebook.com https://www.facebook.com support.google.com policies.google.com stats.g.doubleclick.net https://platform.linkedin.com www.googletagmanager.com cse.google.com maps.google.com www.google.com static.ak.facebook.com https://www.wykop.pl https://www.youtube.com https://9274211.fls.doubleclick.net https://leads.sandboxbnpparibas.pl www.facebook.com prospectleads.bnpparibas.pl leads.sandboxbnpparibas.pl https://bid.g.doubleclick.net bnp-paribas.user.com https://4397256.fls.doubleclick.net https://td.doubleclick.net www.ratatu.pl https://accounts.google.com calendar.google.com widget.user.com https://api.ehoundplatform.com https://vimeo.com googleads.g.doubleclick.net play.google.com https://web.facebook.com developers.google.com apis.google.com 'self'; script-src https://player.vimeo.com www.widgets.pinterest.com https://optimize.google.com https://app.ehoundplatform.com https://cdn.cookielaw.org https://pixel.wp.pl https://unpkg.com https://platform.linkedin.com https://www.gstatic.com www.google.com www.assets.pinterest.com https://9274211.fls.doubleclick.net https://www.youtube.com www.google-analytics.com www.0.s-nk.pl https://leads.sandboxbnpparibas.pl https://www.google.com https://cse.google.com fonts.googleapis.com leads.sandboxbnpparibas.pl ajax.googleapis.com bnp-paribas.user.com https://partner.googleadservices.com https://www.clarity.ms www.cdn.api.twitter.com www.ratatu.pl https://www.googleapis.com www.platform.linkedin.com www.static.ak.facebook.com widget.user.com https://apis.google.com https://skk.erecruiter.pl https://emplocity.com https://px.wp.pl https://www.googleadservices.com https://www.splash-screen.net https://www.s-static.ak.facebook.com https://www.oauth.googleusercontent.com https://maps.googleapis.com googleapis.com https://ssl.google-analytics.com https://googleads.g.doubleclick.net maps.googleapis.com privacyportal.onetrust.com https://maps.google.com www.googletagmanager.com https://cdn.jsdelivr.net clients1.google.com https://ad.doubleclick.net https://connect.facebook.net prospectleads.bnpparibas.pl https://tagmanager.google.com https://geolocation.onetrust.com https://leads.sanboxbnpparibas.pl https://s.ytimg.com http://platform.linkedin.com www.linkedin.com https://bat.bing.com https://www.bnpparibas.pl https://www.google.pl analytics.twitter.com https://api.ehoundplatform.com https://maps.gstatic.com https://vimeo.com https://developers.google.com https://prospectleads.bnpparibas.pl player.vimeo.com https://www.google-analytics.com analytics.google.com www.platform.twitter.com https://www.apis.google.com 'self' 'nonce-vnyeyQ1vU6WPxf0HEpOYpw==' 'strict-dynamic'; object-src docs.google.com https://stats.g.doubleclick.net support.google.com https://cdn.cookielaw.org policies.google.com https://maps.googleapis.com stats.g.doubleclick.net cse.google.com maps.google.com www.google.com https://9274211.fls.doubleclick.net https://www.youtube.com https://leads.sandboxbnpparibas.pl prospectleads.bnpparibas.pl https://geolocation.onetrust.com leads.sandboxbnpparibas.pl bnp-paribas.user.com www.ratatu.pl https://bat.bing.com calendar.google.com widget.user.com https://api.ehoundplatform.com googleads.g.doubleclick.net play.google.com developers.google.com apis.google.com; connect-src https://emplocity.com docs.google.com https://api.bigdatacloud.net https://pagead2.googlesyndication.com https://v.clarity.ms https://www.splash-screen.net https://www.facebook.com support.google.com https://cdn.cookielaw.org policies.google.com https://maps.googleapis.com region1.google-analytics.com stats.g.doubleclick.net cf.bnpparibas.pl https://app.userengage.com wss://bnp-paribas.user.com www.googletagmanager.com cse.google.com maps.google.com www.google.com https://9274211.fls.doubleclick.net https://www.youtube.com https://leads.sandboxbnpparibas.pl prospectleads.bnpparibas.pl https://geolocation.onetrust.com leads.sandboxbnpparibas.pl bnp-paribas.user.com region1.analytics.google.com www.splash-screen.net https://www.clarity.ms www.ratatu.pl https://bat.bing.com calendar.google.com analytics.twitter.com https://www.google.pl widget.user.com https://y.clarity.ms https://api.ehoundplatform.com https://privacyportal-fr.onetrust.com https://vimeo.com googleads.g.doubleclick.net play.google.com developers.google.com https://www.google-analytics.com analytics.google.com qtank.salesmore.pl apis.google.com https://csp.withgoogle.com 'self'; form-action 'self'; report-to csp-endpoint; base-uri 'self' |
| Strict-Transport-Security | max-age=31536000; includeSubDomains |
| Content-Type | text/html;charset=UTF-8 |
| X-Cdn | Imperva |
| Date | Mon, 21 Apr 2025 03:55:17 GMT |
| Pragma | no-cache |
| Reporting-Endpoints | csp-endpoint="https://www.bnpparibas.pl" |
| X-Iinfo | 13-26920379-26783511 pNNy RT(1745207717856 3) q(0 0 0 1) r(1 1) U12 |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar