| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Content-Security-Policy | img-src 'self' blob: data: https://www.paypalobjects.com https://t.paypal.com googletagmanager.com *.online-metrix.net content.paysend.com https://*.googleapis.com *.hsforms.com *.onfido.com *.hsforms.net cdn-ukwest.onetrust.com linkedin.com tiktok.com yieldmo.com *.hubapi.com hm.baidu.com *.hubspot.com utt.impactcdn.com api.ipify.org ipv4.icanhazip.com api.segment.io cdn.leantech.me *.zdassets.com zdorigin.com *.zendesk.com zopim.com zendesk.com.cdn.cloudflare.net https://api.eu.amplitude.com paysendhelp.zendesk.com cloud.paysend.com https://static.intercomassets.com google-analytics.bi.owox.com trustly.com cdn.paysend.com paysend.com api.paysend.com site.paysend.com strapi.paysend.com strapi-test.paysend.com entry.paysend.io https://vk.com/ https://www.google-analytics.com/ https://bat.bing.com/ https://www.facebook.com/ https://www.google.com/ https://www.google.ru/ https://c.bing.com *.google.co.uk *.google.com *.google.ae *.google.cz *.google.pl *.google.kz *.google.co.uz *.googe.com.ua *.google.rs *.clarity.ms; default-src 'self' data: https://embed.fillout.com/ https://server.fillout.com https://api.teamtailor.com/v1/ https://scripts.teamtailor-cdn.com/widgets/eu-pink/jobs.js https://gpp.paysend.com https://www.paypal.com help.paysend.com https://api.sumsub.com privacyportal-uk.onetrust.com *.google.rs *.online-metrix.net content.paysend.com 'unsafe-inline' 'unsafe-eval' webgw.purelive.ae *.luluone.com *.zdassets.com *.hsforms.com *.hsforms.net https://js-eu1.hsforms.net *.zendesk.com api.smooch.io wss://api.smooch.io https://api.eu.amplitude.com https://strapi.paysend.com https://strapi-test.paysend.com *.trustly.com www.woopra.com https://suggestions.dadata.ru/ https://wzrkt.com https://d2r1yp2w7bby2u.cloudfront.net https://paysend.com https://www.paysend.com https://bat.bing.com https://boards.greenhouse.io www.googleoptimize.com wss://sync.onfido.com *.onfido.com cdn.plaid.com api.paysend.com wss://nexus-websocket-a.intercom.io *.intercomcdn.com *.intercom.io wss://site.paysend.com site.paysend.com www.google.co.uk *.baidu.com *.mail.ru widget.trustpilot.com forum.awd.ru www.youtube.com *.doubleclick.net *.dc-storm.com *.googlesyndication.com wss://asiacreditbank.paysend.com https://vk.com wss://www.paysend.com https://site.psysend.com wss://site.paysend.com sync.1dmp.io *.rmtag.com twemoji.maxcdn.com *.gstatic.com www.google-analytics.com *.cybertonica.com *.doubleclick.net *.facebook.com *.google.com *.google.ru maps.googleapis.com www.googletagmanager.com tagmanager.google.com mc.yandex.ru www.googleadservices.com *.facebook.net wss://paysend.com https://paysend.com *.google.com *.google.ru https://fonts.googleapis.com maps.googleapis.com https://themes.googleusercontent.com https://fonts.gstatic.com https://assets.zendesk.com *.rfihub.com *.rfihub.net *.outbrain.com *.linksynergy.com *.tradedoubler.com https://sentry.io https://api.onfido.com *.onfido.com https://paysend-iframe.private.fin.ag https://api.amplitude.com https://api.amplitude.com/ sentry.paysend.io trustly.com https://api2.checkout.com https://www.sofort.com google-analytics.bi.owox.com https://static.intercomassets.com strapi.paysend.com strapi-test.paysend.com cloud.paysend.com api.eu.amplitude.com utt.impactcdn.com cdn.leantech.me api.segment.io api.ipify.org ipv4.icanhazip.com utt.impactcdn.com ressjs-eu1.hs-scripts.com cdn-ukwest.onetrust.com js-eu1.hs-scripts.com js-eu1.hs-analytics.net js-eu1.hs-banner.com js-eu1.hscollectedforms.net js-eu1.hsadspixel.net *.hsforms.com *.hsforms.net *.hubapi.com hm.baidu.com *.hubspot.com geolocation.onetrust.com cdn-ukwest.onetrust.com snap.licdn.com *.googleapis.com cdn.jsdelivr.net kycwebview.blob.core.windows.net *.clarity.ms *.appsflyer.com https://js.appboycdn.com/web-sdk/5.7/braze.min.js http://braze.com https://sdk.fra-02.braze.eu https://sentryg2.paysend.io; worker-src 'self' blob: |
| Cf-Ray | 92c1a8085ae69702-AMS |
| Local-Instance-Host-Id | lw-ps-tc07.c24.local |
| X-Frame-Options | SAMEORIGIN |
| Strict-Transport-Security | max-age=15552000; includeSubDomains; preload |
| Vary | accept-encoding |
| Content-Type | text/html; charset=utf-8 |
| X-Powered-By | Express |
| X-Content-Type-Options | nosniff |
| Server | cloudflare |
| Date | Sun, 06 Apr 2025 13:33:20 GMT |
| Content-Language | en |
| Set-Cookie | user_lang=en-NL; Path=/; SameSite=lax; Secure |
| Connection | keep-alive |
| Access-Control-Allow-Origin | * |
| Cf-Cache-Status | DYNAMIC |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar