pragma: no-cache
X-Content-Type-Options: nosniff
Date: Mon, 05 Mar 2018 20:02:53 GMT
Content-Type: text/html; charset=UTF-8
HTTP/1.1 200 OK
Connection: keep-alive
X-UA-Compatible: IE=edge
Link: <https://www.jumpforward.be/fr/home>; rel="alternate"; hreflang="fr"
Content-language: nl
Link: <https://www.jumpforward.be/nl/home>; rel="alternate"; hreflang="nl"
X-XSS-Protection: 1; mode=block
Transfer-Encoding: chunked
expires: -1
X-Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' use.typekit.net www.googletagmanager.com www.google-analytics.com cdnjs.cloudflare.com tagmanager.google.com https://connect.facebook.net static.hotjar.com script.hotjar.com https://www.youtube.com https://s.ytimg.com tags.tiqcdn.com maps.googleapis.com optimizely.com stats.g.doubleclick.net mobistar.emsecure.net googleadservices.com www.googleadservices.com platform.twitter.com cdn.optimizely.com ad.atdmt.com; style-src 'self' 'unsafe-inline' use.typekit.net fonts.googleapis.com cdnjs.cloudflare.com tagmanager.google.com; img-src 'self' www.google-analytics.com *.typekit.net use.typekit.net data: ssl.gstatic.com www.gstatic.com www.facebook.com https://img.youtube.com csi.gstatic.com maps.googleapis.com maps.gstatic.com *.hotjar.com; frame-src *.youtube.com *.youtu.be vars.hotjar.com; child-src *.youtube.com *.youtu.be; font-src 'self' *.typekit.net fonts.gstatic.com; connect-src 'self' performance.typekit.net www.google-analytics.com wss://ws2.hotjar.com insights.hotjar.com; report-uri /report-csp-violation
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
Cache-Control: must-revalidate, no-cache, private
X-Generator: Drupal 8 (https://www.drupal.org)
Strict-Transport-Security: max-age=1000
X-WebKit-CSP: script-src 'self' 'unsafe-eval' 'unsafe-inline' use.typekit.net www.googletagmanager.com www.google-analytics.com cdnjs.cloudflare.com tagmanager.google.com https://connect.facebook.net static.hotjar.com script.hotjar.com https://www.youtube.com https://s.ytimg.com tags.tiqcdn.com maps.googleapis.com optimizely.com stats.g.doubleclick.net mobistar.emsecure.net googleadservices.com www.googleadservices.com platform.twitter.com cdn.optimizely.com ad.atdmt.com; style-src 'self' 'unsafe-inline' use.typekit.net fonts.googleapis.com cdnjs.cloudflare.com tagmanager.google.com; img-src 'self' www.google-analytics.com *.typekit.net use.typekit.net data: ssl.gstatic.com www.gstatic.com www.facebook.com https://img.youtube.com csi.gstatic.com maps.googleapis.com maps.gstatic.com *.hotjar.com; frame-src *.youtube.com *.youtu.be vars.hotjar.com; child-src *.youtube.com *.youtu.be; font-src 'self' *.typekit.net fonts.gstatic.com; connect-src 'self' performance.typekit.net www.google-analytics.com wss://ws2.hotjar.com insights.hotjar.com; report-uri /report-csp-violation
Link: </nl/home>; rel="revision"
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' use.typekit.net www.googletagmanager.com www.google-analytics.com cdnjs.cloudflare.com tagmanager.google.com https://connect.facebook.net static.hotjar.com script.hotjar.com https://www.youtube.com https://s.ytimg.com tags.tiqcdn.com maps.googleapis.com optimizely.com stats.g.doubleclick.net mobistar.emsecure.net googleadservices.com www.googleadservices.com platform.twitter.com cdn.optimizely.com ad.atdmt.com; style-src 'self' 'unsafe-inline' use.typekit.net fonts.googleapis.com cdnjs.cloudflare.com tagmanager.google.com; img-src 'self' www.google-analytics.com *.typekit.net use.typekit.net data: ssl.gstatic.com www.gstatic.com www.facebook.com https://img.youtube.com csi.gstatic.com maps.googleapis.com maps.gstatic.com *.hotjar.com; frame-src *.youtube.com *.youtu.be vars.hotjar.com; child-src *.youtube.com *.youtu.be; font-src 'self' *.typekit.net fonts.gstatic.com; connect-src 'self' performance.typekit.net www.google-analytics.com wss://ws2.hotjar.com insights.hotjar.com; report-uri /report-csp-violation
X-Frame-Options: SameOrigin