Date: Fri, 30 Jun 2017 07:34:07 GMT
Content-Type: text/html; charset=utf-8
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Vary: Accept-Encoding
X-Request-Id: 74629551-c180-4aae-b61f-684f28a095c7
Transfer-Encoding: chunked
HTTP/1.1 200 OK
Set-Cookie: _mutuoadesso_session=6a8a5bb69ca9c161608a61082656d8f4; path=/; HttpOnly; SameSite=Lax
Server: nginx
X-Frame-Options: SAMEORIGIN
ETag: W/"7418e06870ba3d14015a923783428ee4"
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src http: 'self' data:; connect-src *; frame-src *; img-src 'self' data: *.amazonaws.com http://*.amazonaws.com https://*.amazonaws.com *.amazon-adsystem.com http://*.amazon-adsystem.com https://*.amazon-adsystem.com bat.bing.com http://bat.bing.com https://bat.bing.com *.cloudfront.net http://*.cloudfront.net https://*.cloudfront.net *.credit-agricole.it http://*.credit-agricole.it https://*.credit-agricole.it staticstag.agricole.sdchlab.develon.com http://staticstag.agricole.sdchlab.develon.com https://staticstag.agricole.sdchlab.develon.com *.doubleclick.net http://*.doubleclick.net https://*.doubleclick.net *.ekomi.de http://*.ekomi.de https://*.ekomi.de *.facebook.com http://*.facebook.com https://*.facebook.com www.google.com http://www.google.com https://www.google.com www.google.it http://www.google.it https://www.google.it *.google-analytics.com http://*.google-analytics.com https://*.google-analytics.com www.googleadservices.com http://www.googleadservices.com https://www.googleadservices.com *.googletagmanager.com http://*.googletagmanager.com https://*.googletagmanager.com ssl.gstatic.com http://ssl.gstatic.com https://ssl.gstatic.com www.gstatic.com http://www.gstatic.com https://www.gstatic.com *.mouseflow.com http://*.mouseflow.com https://*.mouseflow.com *.ubiest.com http://*.ubiest.com https://*.ubiest.com; object-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' data: bat.bing.com http://bat.bing.com https://bat.bing.com *.cloudfront.net http://*.cloudfront.net https://*.cloudfront.net *.doubleclick.net http://*.doubleclick.net https://*.doubleclick.net connect.ekomi.de http://connect.ekomi.de https://connect.ekomi.de widgets.ekomi.com http://widgets.ekomi.com https://widgets.ekomi.com *.facebook.net http://*.facebook.net https://*.facebook.net tagmanager.google.com http://tagmanager.google.com https://tagmanager.google.com www.google.com http://www.google.com https://www.google.com www.google.it http://www.google.it https://www.google.it *.google-analytics.com http://*.google-analytics.com https://*.google-analytics.com *.googleapis.com http://*.googleapis.com https://*.googleapis.com www.googleadservices.com http://www.googleadservices.com https://www.googleadservices.com www.googletagmanager.com http://www.googletagmanager.com https://www.googletagmanager.com ssl.gstatic.com http://ssl.gstatic.com https://ssl.gstatic.com www.gstatic.com http://www.gstatic.com https://www.gstatic.com script.hotjar.com http://script.hotjar.com https://script.hotjar.com static.hotjar.com http://static.hotjar.com https://static.hotjar.com code.jquery.com http://code.jquery.com https://code.jquery.com *.mouseflow.com http://*.mouseflow.com https://*.mouseflow.com maps.ubiest.com http://maps.ubiest.com https://maps.ubiest.com www.youtube.com http://www.youtube.com https://www.youtube.com; style-src 'unsafe-inline' 'self' tagmanager.google.com http://tagmanager.google.com https://tagmanager.google.com fonts.googleapis.com http://fonts.googleapis.com https://fonts.googleapis.com widgets.ekomi.com http://widgets.ekomi.com https://widgets.ekomi.com
X-XSS-Protection: 0
Referrer-Policy: origin-when-cross-origin
Cache-Control: max-age=0, private, must-revalidate