date: |
Mon, 07 Oct 2024 13:26:53 GMT |
content-type: |
text/html |
transfer-encoding: |
chunked |
connection: |
close |
cf-ray: |
8cee39b56ba31c88-AMS |
cf-cache-status: |
HIT |
accept-ranges: |
bytes |
age: |
77135 |
cache-control: |
public, max-age=14400 |
expires: |
Mon, 07 Oct 2024 17:26:53 GMT |
last-modified: |
Tue, 03 Sep 2024 13:36:08 GMT |
strict-transport-security: |
max-age=31536000; includeSubdomains; preload |
content-security-policy: |
connect-src 'self' *.addthis.com *.akafms.net *.akamaihd.net *.brightcove.com *.brightcove.net *.brightcovecdn.com *.contentsquare.net *.decibel.com *.decibelinsight.net *.demdex.net *.digitalpfizer.com *.digitalpfizer.com.cn *.evidon.com *.force.com *.hapyak.com *.hotjar.com *.hotjar.io *.kampyle.com *.llnw.net *.llnwd.net *.medallia.com *.medallia.eu *.pfizer.com *.pfizerstatic.io *.salesforce-sites.com *.thunderhead.com 1vrf04rusa.execute-api.eu-west-1.amazonaws.com 223i44638a.execute-api.eu-west-1.amazonaws.com 6q7zxrfi35.execute-api.eu-west-1.amazonaws.com acsbapp.com appsapi.veinteractive.com/api bam.nr-data.net blob: c.az.contentsquare.net/v2 cdn.acsbapp.com cdn.cookielaw.org cdn.linkedin.oribi.io code.jquery.com cookiee1.veinteractive.com/api d2qrdklrsxowl2.cloudfront.net dpm.demdex.net drs2.veinteractive.com edge.adobedc.net geoip-js.maxmind.com/geoip/v2.1/country geolocation.onetrust.com/ house-cloudfront.ap-northeast-1.prod.boltdns.net house-cloudfront.ap-southeast-1.prod.boltdns.net house-cloudfront.ap-southeast-2.prod.boltdns.net house-cloudfront.eu-west-1.prod.boltdns.net house-cloudfront.us-east-1.prod.boltdns.net https://ms-forms-service-production.digitalpfizer.com/ https://ms-forms-service-staging.digitalpfizer.com/ https://ms-forms-service-uat.digitalpfizer.com/ https://next-gen-search-production.api.digitalpfizer.com.cn https://www.google.com/recaptcha/api.js interactive.digitalpfizer.com js-agent.newrelic.com l.betrad.com loremflickr.com manifest.prod.boltdns.net maps.googleapis.com metrics.articulate.com newton-api.eu.cloudhub.io pfe-dse-dar-poc.auth.us-east-1.amazoncognito.com pfizer-privacy.my.onetrust.com/ pfizer.sc.omtrdc.net pfizer.tt.omtrdc.net/ sessionapi.veinteractive.com sitecatalyst.omniture.com/sc15/activitymap storybook.js.org tagmanager.google.com uploads.interactivity.brightcove.com uploads.intercomcdn.com vlswbkfag3.execute-api.eu-west-1.amazonaws.com web1.acsbapp.com wss: www.facebook.com www.google-analytics.com www.interactivemanager.pfizer; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.cloudflare.com/cdn-cgi/scripts *.cloudfront.net/js/hapyak.js *.cloudfront.net/js/partners/brightcovePlugin *.decibel.com *.decibelinsight.net *.digitalpfizer.com *.digitalpfizer.com.cn *.dotomi.com *.edison.sh *.force.com *.hotjar.com *.janrain.com *.janraincapture.com *.janrainsso.com *.kampyle.com *.medallia.com *.medallia.eu *.pfizer.com *.pfizer.com.cn *.pfizerstatic.io *.salesforce-sites.com *.salesforce.com *.salesforceliveagent.com *.thunderhead.com *.youtube.com a.volvelle.tech acsbapp.com activitymap.adobe.com/sc15/activitymap/ aim-tag.hcn.health/js/ ajax.cloudflare.com ajax.googleapis.com/ajax/libs/webfont/* analytics.twitter.com app.contentsquare.com assets.adobedtm.com bam.nr-data.net blob: c.betrad.com c.evidon.com cdn.cookielaw.org cdn.di-capt.com/ cdnjs.cloudflare.com code.jquery.com config1.veinteractive.com connect.facebook.net d1v9u0bgi1uimx.cloudfront.net/static/sso_lite.js d2qrdklrsxowl2.cloudfront.net fast.fonts.net/jsapi geolocation.onetrust.com/ googleads.g.doubleclick.net https://assets.adobedtm.com https://m.addthis.com https://pkg-cdn.digitalpfizer.com https://s7.addthis.com https://v1.addthisedge.com https://www.google.com/recaptcha/api.js https://www.gstatic.com/ https://www.youtube.com https://z.moatads.com/ interactive.digitalpfizer.com js-agent.newrelic.com js.adsrvr.org/ js.maxmind.com/js/apis/geoip2/v2.1 l.evidon.com maps.googleapis.com/maps-api-v3/api/js/ maps.googleapis.com/maps/api/js maxcdn.bootstrapcdn.com pfcopayoffers-stage.pfizersite.io platform.twitter.com player.interactivity.brightcove.com/ player.vimeo.com players.brightcove.net px.ads.linkedin.com px.veinteractive.com s.ytimg.com/yts/jsbin s3-eu-west-1.amazonaws.com s3.amazonaws.com/docs.gcs.digitalpfizer.com s3.amazonaws.com/pfe_im/ sadmin.brightcove.com/js snap.licdn.com ssl.google-analytics.com static.ads-twitter.com t.contentsquare.net tagmanager.google.com tpc.googlesyndication.com/sodar vjs.zencdn.net www.geoplugin.net www.google-analytics.com www.googleadservices.com/pagead www.googletagmanager.com www.gstatic.com/charts www.interactivemanager.pfizer; frame-src 'self' *.digitalpfizer.com *.fls.doubleclick.net *.force.com *.hapyak-hosted.com *.hapyak.com *.kampyle.com *.medallia.com *.medallia.eu *.pfizer.com *.pfizerstatic.io *.salesforce-sites.com *.salesforce.com *.salesforceliveagent.com *.youtube.com activitymap.adobe.com/sc15/activitymap/ aim-tag.hcn.health/ bid.g.doubleclick.net blob: config1.veinteractive.com d2qrdklrsxowl2.cloudfront.net hapyak-assets.s3.amazonaws.com https://m.addthis.com https://maps.google.com https://player.simplecast.com/ https://s7.addthis.com https://v1.addthisedge.com https://www.google.com/ https://www.google.com/recaptcha/api.js https://www.youtube.com https://z.moatads.com/ insight.adsrvr.org interactive.digitalpfizer.com interactivity-uploads.s3.us-east-1.amazonaws.com/ intercom-sheets.com l3.evidon.com pfizer-grv.janrainsso.com pfizer.demdex.net pfizergrv-qa.janrainsso.com platform.twitter.com player.interactivity.brightcove.com player.vimeo.com players.brightcove.net resources.interactivity.brightcove.com sketchfab.com staticxx.facebook.com syndication.twitter.com td.doubleclick.net/ uploads.interactivity.brightcove.com v5.organimi.com vars.hotjar.com where-to-buy.co www.facebook.com www.google.com/maps www.interactivemanager.pfizer www.medtargetsystem.com/; default-src 'none'; child-src 'self' blob:; font-src 'self' data: https:; frame-ancestors 'self' *.hapyak.com; img-src 'self' blob: data: https:; manifest-src 'self'; media-src 'self' *.akafms.net *.akamaihd.net *.boltdns.net *.brightcovecdn.com *.llnw.net *.llnwd.net *.media.brightcove.com *.secure.brightcove.com blob: data: js.intercomcdn.com manifest.prod.boltdns.net; object-src 'self' players.brightcove.net; style-src 'self' 'unsafe-inline' https:; worker-src 'self' blob:; report-uri https://pfeprod.report-uri.com/r/t/csp/enforce |
referrer-policy: |
same-origin |
x-content-type-options: |
nosniff |
x-edison-type: |
Lite |
x-frame-options: |
SAMEORIGIN |
x-xss-protection: |
1; mode=block |
set-cookie: |
__cf_bm=S58nQyJTuSMh6FirMRoGhFlR4rB8cYe9G9esmgGDvBo-1728307613-1.0.1.1-FfEVpm.xVsI7rk_oCVcKKA2O5Q006_GDBZcovrLcJhPJ_OSda7do7uA4Ex9qDZOBRxmjiOh2eDv53SNuP74uwA; path=/; expires=Mon, 07-Oct-24 13:56:53 GMT; domain=.pfizer.be; HttpOnly; Secure; SameSite=None,__cfruid=a556382d81572c250f4797b1b99e813cb331c969-1728307613; path=/; domain=.pfizer.be; HttpOnly; Secure; SameSite=None,_cfuvid=Ok8LIrw_5GU5Vcrci1AFs7YdpHlMHO2Svb3Vf2Oj5qM-1728307613519-0.0.1.1-604800000; path=/; domain=.pfizer.be; HttpOnly; Secure; SameSite=None |
server: |
cloudflare |