HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"85d292a2359a35ed6f6a3ad838f9b5f6"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fwiLs2Ff8RKcIC3McFrhplx4v%2FJbrvG1i52ajzPGOLAlQ1mrFn6fDZzXWm6Bii66jU%2F0jB2yVsBsHa0vl3WO5yuvy0YSinfV4vfLqE6RPXKxkSfppxCf1QGJDuuoCOEhnDr5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31ebc6ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=357&x=1", cfExtPri, cfHdrFlush;dur=114

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"c99abcaf3d4639a51e132da9550b67a8"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sChGDq6RoLZAWqt0TO31iVM57OIM6oSEsVv2p4ZHkn6jiT6KVKpJ5kVm7bK%2Bzi0HX%2F0IMRIV2SiiKdm8huNP7PEO0g8yHmPAWJxCShgpdrVWQH%2BliJC69nJbj4CGsZwkki4s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31fbe6ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=367&x=1", cfExtPri, cfHdrFlush;dur=142

HTTP/2 204 No Content
date: Wed, 09 Jul 2025 07:50:35 GMT
access-control-allow-origin: https://www.brighthr.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 95c63b3a1b1ba0c8-CPH
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:36 GMT
content-type: application/json
content-length: 2706
content-encoding: gzip
content-md5: 6TUxyb3K6Cna8aJGGrKIIQ==
last-modified: Tue, 10 Jun 2025 19:12:40 GMT
etag: 0x8DDA852C56B6158
x-ms-request-id: 6cc2e24c-301e-0043-6474-dcb1af000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Thu, 10 Jul 2025 07:50:36 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 95c63b3daee0929a-CPH
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/svg+xml
content-encoding: br
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f95eaa9f6ce61f459dc623c25e420067"
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
x-matched-path: /images_next/vectors/flags/Australia.svg
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T7SGF5ESE2GVljfZwX5tNrQ5q9VpVXJNSXwzBaLOUKFHjOLl3Se2v4cgY51ie%2B%2FkcHPU4V7k%2BTD3P%2FEALaOBwgH9WoNk5dR9yYnCQ32JqyRYoIt158HebukLc%2FFtw5SvCBom"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 95c63b31bb42ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=31555&min_rtt=26350&rtt_var=4681&sent=512&recv=42&lost=0&retrans=0&sent_bytes=539721&recv_bytes=12430&delivery_rate=4151531&cwnd=206100&unsent_bytes=0&cid=cee182d0a76b5c41&ts=549&x=1", cfExtPri, cfHdrFlush;dur=0

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"5050a286c8586c86c1fb6cf2d6dea3a0"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iaU2UKB41%2FVnG99dD5er9%2Bz6X74ohIfrPXFtWXc85qA3GQZQmMKq6LI5FmobCSR0McR11gLcG2xYwx%2FKamqjue8XIi9foSUtw427rV%2FpC3lOGBgT4BDw62%2BBWB721ti83ETt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31fbe5ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=370&x=1", cfExtPri, cfHdrFlush;dur=139

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"797d42db6cd91c774ddad18d41ed180d"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NWu%2BJR4TwEZGo1S7XpU%2F2fy2BPzdorscBQxtG%2ByrKEQtmVsSmeUASq8hzChwPLFt3qaqwjWDNFjnux1lRYgpG0LICvxaLLr7vIwCPCWRT9MP2LxJWI5DXlY6YmV6eHXDvMyT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b323c67ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=35720&min_rtt=26922&rtt_var=15547&sent=67&recv=34&lost=0&retrans=0&sent_bytes=40726&recv_bytes=12041&delivery_rate=229333&cwnd=24000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=401&x=1", cfExtPri, cfHdrFlush;dur=108

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/svg+xml
content-encoding: br
cf-ray: 95c63b32a833abe4-CPH
cf-cache-status: HIT
access-control-allow-origin: *
age: 299799
cache-control: public, max-age=31536000
last-modified: Wed, 09 Apr 2025 14:58:18 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; form-action 'none'; sandbox
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-imgix-cache: MISS, MISS
x-imgix-id: 6c70439c77f418ff13507ddff58f0868e0a1129f
x-imgix-served-by: cache-chi-kigq8000098-CHI, cache-iad-kiad7000027-IAD
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"ca334d13be01eaaa3af0743fafe9513b"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B7%2BcOW2onmt2q2rsFw1uZvtsTHJ15WR%2ByYH14pt7RdA6gQWkcfgnyAwXgh9yAwPybfIxyN34nlA6MwtwxA%2F4J5%2FX%2BWZt3ZyrSuFecL68IShpxDErrkRo%2B9p4dChMajwZhfWu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31cb5febc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=44&recv=29&lost=0&retrans=0&sent_bytes=16647&recv_bytes=9103&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=342&x=1", cfExtPri, cfHdrFlush;dur=127

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"acde5bda6c630333668c16062c162e82"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VzxgFE8Y0vILoTMHj6wfsz4ue3Sfhku%2BrZhNKxLADjuXglck7s0pGrhQVXtSIv4hNyUC8kuEOhy0kl5HqKVkgQ4VvxtjBnUSGXZEPDchGtHHnjE%2FgrztcKIBsbtK%2Fqhmal0x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31dba5ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=353&x=1", cfExtPri, cfHdrFlush;dur=118

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"aa8444f5d8f6848e0742cf5b724386ba"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vEp1V0l%2FSCUEOb82IU7lNKsfSzc3KWAk0k4BoYQkB8fDf2m58LjqhutpZPuLZMd%2FsAEcQtn3ASIL6juE8r8qWlKBbKVokRYv5L9U7WUr6FtledDj5fwY%2BAOdmcFwk0J%2BhoLU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b320bfeebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=35720&min_rtt=26922&rtt_var=15547&sent=67&recv=34&lost=0&retrans=0&sent_bytes=40726&recv_bytes=12041&delivery_rate=229333&cwnd=24000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=385&x=1", cfExtPri, cfHdrFlush;dur=124

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/png
content-length: 5530
server: cloudflare
cf-ray: 95c63b328feaabe4-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 5790
cache-control: public, max-age=31536000
last-modified: Sat, 14 Jun 2025 02:15:38 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-imgix-cache: MISS, MISS
x-imgix-id: 331a8dfad39960b8d09763ccb6c90798fc34c3a4
x-imgix-served-by: cache-chi-klot8100023-CHI, cache-iad-kiad7000154-IAD
x-xss-protection: 1; mode=block
vary: Accept-Encoding
X-Firefox-Spdy: h2

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-length: 8534
content-encoding: gzip
content-md5: OJN37q+midtuw5oVrOeX/g==
last-modified: Tue, 01 Jul 2025 19:31:50 GMT
etag: 0x8DDB8D5ED12DDE8
x-ms-request-id: 8e667293-001e-0015-6efb-ea4040000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 19064
expires: Thu, 10 Jul 2025 07:50:34 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 95c63b328c2e929a-CPH
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: font/woff2
content-length: 32008
cf-ray: 95c63b31ab2cebc6-CPH
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: "49faf8d684863aba2c24eab8c66e15b1"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J2EXd9zIWh4bPBvJ94ml8wSK1iloenEn6VfpSy39CQebPgRBOGN8%2FBrCIGySdn2YGqUYeCZUy0%2BZQAX8%2B5HjaskAMtkQZGhm0K3NCBWONgUVNNAxrmAxx%2Fp2wV0sq6L9vSZM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=30&recv=25&lost=0&retrans=0&sent_bytes=4543&recv_bytes=8002&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=333&x=1", cfExtPri, cfHdrFlush;dur=0

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"55e57ab59c08a4272ad67541ab01b1bd"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KvouNHFiupzqyQHyJVEs%2BltCwNVQ0J2SQlTOl21EyCAMuOzxk%2Bt%2F5oW7AP1zEAjP6WMWtkNwL8ulCwfzPtz%2FIP%2BHMQ%2BbW1jPwaxEa7BqnbBQlhfJ0%2FG5EqvdHUmUbi1FZGxN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31dba8ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=347&x=1", cfExtPri, cfHdrFlush;dur=124

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"5c7e5160835eab1a0b3a5f73d9ceccbb"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mfAA%2FB%2FLKw2PvCwZuK8bsyCa0R%2FmazvqHRImsNxoaEPLUKHNlBgcDDyM5t3hX4zSotHLgQjdIEas6D1Ts%2F4O8DWR2D34N0H7ECKobbHeGBqVCYGx7pWC3hggSvAWiaouZbIn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b322c43ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=35720&min_rtt=26922&rtt_var=15547&sent=67&recv=34&lost=0&retrans=0&sent_bytes=40726&recv_bytes=12041&delivery_rate=229333&cwnd=24000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=387&x=1", cfExtPri, cfHdrFlush;dur=122

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:35 GMT
content-type: application/x-javascript
cf-ray: 95c63b38ea9f929a-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 4689
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DDAF40D6560EB0
last-modified: Thu, 19 Jun 2025 14:51:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding, X-OneTrust-IsBot
content-md5: 4nXSrq/3RuZt/94Bt/Th9g==
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: b3bd3f0b-401e-0004-2729-e1daf4000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
server: cloudflare
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: text/css; charset=utf-8
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"ff9c66d119cae9e9487eb3bf4a81f26b"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JyR0Ks26izvYGaDdUrM7NQFVHLBiiP9iMT1T4xVlm%2B4havzUSSOKRx7Ngkckh5y7fGLISbilQa0xxLdKKQ6HhB4dsX6zleVKRMK6qsLsU43BOJBXAMsb7lwge4Fmecw4gMuE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=2,i=?0
server: cloudflare
cf-ray: 95c63b31bb4eebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=350&x=1", cfExtPri, cfHdrFlush;dur=52

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"44cba4dd8ad9d1d4795709caa207fd5c"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=blb8qjkNJfqgHWodYdJ9sEZFvIJoyWZmR%2FrKfdSFu2%2FH%2B0p8L5M%2BGG5RgnY9tmItgNCMKyCUPAH2yoVVG7RrDqSsizcD61tmaW%2FNplYzn%2Bo%2FsQu7cwgzsS%2BV1C9yuDqn1IdW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31ebc0ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=45&recv=30&lost=0&retrans=0&sent_bytes=16673&recv_bytes=9633&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=350&x=1", cfExtPri, cfHdrFlush;dur=121

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"eee8a0c92a28d1cbea75c14d45f5ab88"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LlbcbpXLts3ZrPSGGVV%2FcQ3CrZqkcgmpNzIKdif%2Fvf9PxrLNP5IoXlkegHgZf80KiqNKg4E19aI4troMQ1fTsUq2DtPXbXXBZtE05DMxF5iM0o0gjiUTKuPRWFU7kIwjN4XR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b322c46ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=35720&min_rtt=26922&rtt_var=15547&sent=67&recv=34&lost=0&retrans=0&sent_bytes=40726&recv_bytes=12041&delivery_rate=229333&cwnd=24000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=392&x=1", cfExtPri, cfHdrFlush;dur=117

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:35 GMT
content-type: image/svg+xml
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"1304e2d8ac9d0f420861a8e387966eea"
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4T5eE%2Bo1G2MIqp3uPOYRwh2gdrsipupa6VoVytgxIXCtOZJ%2F9zS3b6O3uwerlSm9W%2F%2F1BcqTFm1V2VQXXVPWtazJUE9n4Is3dh4ZlxmmGqoHdn%2BEITwF4Z0sbfwGleUVlgP4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 95c63b36ce66ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=30040&min_rtt=26350&rtt_var=3687&sent=519&recv=47&lost=0&retrans=0&sent_bytes=544507&recv_bytes=12965&delivery_rate=5445935&cwnd=206100&unsent_bytes=0&cid=cee182d0a76b5c41&ts=1140&x=1", cfExtPri, cfHdrFlush;dur=0

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:36 GMT
content-type: application/x-javascript
cf-ray: 95c63b3d0e4a929a-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 73505
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DDAF40D674710F
last-modified: Thu, 19 Jun 2025 14:51:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding, X-OneTrust-IsBot
content-md5: 7nRUBTdENsCcw8dNgsdYtw==
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 620fd84f-501e-0008-6329-e14dfc000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
server: cloudflare
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"5fae6d89e16c6077de69486478703adb"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3jzkCyufmuorsEuxR2O8M63ppP3RbNBBlYIeZI9bySqFSsVn83tUUDXmTF5gcvz9Jvy%2FS75sbz2baidHTov74JAY8hiXgGghWrfTlvzlfFrZHE8NpKWUsb84nnaTaElGWlC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31cb5eebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=41&recv=26&lost=0&retrans=0&sent_bytes=16569&recv_bytes=8277&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=337&x=1", cfExtPri, cfHdrFlush;dur=105

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:36 GMT
content-type: application/javascript
content-length: 121733
content-encoding: gzip
content-md5: EMTNQOSbc0PpsEEA0He5Fg==
last-modified: Tue, 10 Jun 2025 19:12:51 GMT
etag: 0x8DDA852CB96C76C
x-ms-request-id: 812f8c08-901e-0065-7e52-daf9b7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3359
expires: Thu, 10 Jul 2025 07:50:36 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 95c63b3b6ce6929a-CPH
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/svg+xml
content-encoding: br
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9ac0a0ca776dafe7a4e0b17ab4506aee"
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
x-matched-path: /images_next/vectors/flags/UnitedKingdom.svg
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OysUE5PCWk31yjO11XYYsZvsJ3VCtlJCR04YeMwkQusbTSYOJzlkJTe3WZX4TejIbNZD%2B63hYDsCdCm4sd%2F0L7gfqZ%2FhYr98IsIB6qzczCpm04UdiSN34CS4WuvD7Awct2q6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 95c63b31ab30ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=30933&min_rtt=26350&rtt_var=4754&sent=515&recv=43&lost=0&retrans=0&sent_bytes=542345&recv_bytes=12480&delivery_rate=5445935&cwnd=206100&unsent_bytes=0&cid=cee182d0a76b5c41&ts=561&x=1", cfExtPri, cfHdrFlush;dur=0

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"ef5739a644828bb7d10e4d0e5815c0d6"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WPhhRQ5npDcP5%2BCN6wa0e7xjjDcRAp0cOB6JqpAIMmGC2yZ7M%2F9I7ovhi3Axqcf5bQ64EomM843CMwnMq9JTtJ5PiTJO8DHWSImeVjOtfkzfEInl3dBY6wxXfIVx5RnE3Rp9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31bb55ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=44&recv=29&lost=0&retrans=0&sent_bytes=16647&recv_bytes=9103&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=340&x=1", cfExtPri, cfHdrFlush;dur=62

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"66550a94aae20227e628293202f6946a"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=amZ%2Fip5z%2Br3GUKI8XF9o5Po48laSrPFOdKcpu3nE1k3J2hQ63%2BSchZG9h9SC12WIK17kPWVg71%2BguhoR9ciZdauZFEHl94niK7cFdcTBawIzJGe0cmctBynIC%2BCjiIJNPSij"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31bb59ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=44&recv=29&lost=0&retrans=0&sent_bytes=16647&recv_bytes=9103&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=341&x=1", cfExtPri, cfHdrFlush;dur=61

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"4353b1eb4c2c2d9d2075fdf8375448d5"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2VJCPYFVNgm3uYw8KgdjbYyKUZDH7O%2F0QE5h5Zjfxt0PhUD%2F1R1obQG8YdotcVt3TP5sK9gvVGZcas9RIw9Btgn2w5Z3UvuwY6uZgscE2DHtWL9%2BR1yjIrxIlOVIl2w1RL4h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b320bfdebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=46&recv=31&lost=0&retrans=0&sent_bytes=16700&recv_bytes=10406&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=371&x=1", cfExtPri, cfHdrFlush;dur=138

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"6c4303392e317bdf8020f7bdd4df4652"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rrRp1pQP2QXNvqp4mp7XFYIrJuwyH259FJ7JMG6cOXh6FLZNKZ%2Fm%2BXAA0bkLVRXZFlYBfS1%2B4nM4B2DruzbQ%2FO5hd3303%2FBmkffmMFTpA%2BNQIsV8CM8fhJj4HOjWVmeqJ9WM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b323c61ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=35720&min_rtt=26922&rtt_var=15547&sent=67&recv=34&lost=0&retrans=0&sent_bytes=40726&recv_bytes=12041&delivery_rate=229333&cwnd=24000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=399&x=1", cfExtPri, cfHdrFlush;dur=110

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"e7fb244957dfe608308935ea1d60113c"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OF%2Fldw1S77r1knofmZsmQYFg0MzB2Tm1be2GFa5ScXkdXbQDcva1zIp2YfxQg3EeULYekmdRkFn0ZAktfIbmBKKNldFFmIHmuHG%2FqoqR4ZzxVxaH%2F9mg8ObTngsWJyGa4%2BXI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b323c68ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=34995&min_rtt=26922&rtt_var=13111&sent=110&recv=35&lost=0&retrans=0&sent_bytes=88726&recv_bytes=12088&delivery_rate=772615&cwnd=48000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=407&x=1", cfExtPri, cfHdrFlush;dur=102

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:36 GMT
content-type: text/css
content-md5: dIH5shy27L66mhu4/gDB5Q==
last-modified: Tue, 10 Jun 2025 19:12:56 GMT
x-ms-request-id: cfc80d93-a01e-0023-1692-decd30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,ETag,Last-Modified,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 73505
expires: Thu, 10 Jul 2025 07:50:36 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 95c63b3dbef3929a-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/svg+xml
content-encoding: br
cf-ray: 95c63b329823abe4-CPH
cf-cache-status: HIT
access-control-allow-origin: *
age: 167042
cache-control: public, max-age=31536000
last-modified: Thu, 10 Apr 2025 05:53:50 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; form-action 'none'; sandbox
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-imgix-cache: MISS, MISS
x-imgix-id: b72c42d9f07f784bcf9aeb0d961df7a3ef31ebe7
x-imgix-served-by: cache-chi-klot8100059-CHI, cache-iad-kiad7000169-IAD
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: image/svg+xml
content-encoding: br
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"62f2b76ed858c1d18e5c02f7cefe2a3f"
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
x-matched-path: /images_next/vectors/flags/NewZealand.svg
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=deTDTaJpuuGkGwY0wXJANYnJcOZDnONKyNLPJNvFebLHGa8F7pcIXlPXjTqk%2Bh3fxfg8RktYYeL7xn060zRWnlEOMH9K6nQjez8TRAFgkLPelQgRI8WdhFtgtz52RyIKjp09"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 95c63b31bb47ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=31555&min_rtt=26350&rtt_var=4681&sent=509&recv=42&lost=0&retrans=0&sent_bytes=537440&recv_bytes=12430&delivery_rate=4151531&cwnd=206100&unsent_bytes=0&cid=cee182d0a76b5c41&ts=549&x=1", cfExtPri, cfHdrFlush;dur=0

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: text/css; charset=utf-8
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"a67bfd2aba2288f960d3c7d7cb50a858"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hUSQ5d1MBLTBVfZdmZ%2BFdoUwE4ykXHPVd3x1kLSN5lvdXX5iD1Y0DEvYQnvyymdiLKBqBuIxHBKSzw0KD%2BBdNpPoGwSD2CLOuV10Ipcq3fFMV8LIDM9n%2FhT%2B%2F9phns1vdbUL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=2,i=?0
server: cloudflare
cf-ray: 95c63b31bb4aebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=42&recv=27&lost=0&retrans=0&sent_bytes=16595&recv_bytes=8551&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=338&x=1", cfExtPri, cfHdrFlush;dur=36

HTTP/3 200 OK
date: Wed, 09 Jul 2025 07:50:34 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=31536000,immutable
etag: W/"8bbf7184fb25c3ae78681193ecbf2cf9"
strict-transport-security: max-age=15552000; includeSubDomains
content-security-policy: default-src 'self' blob: data: https: wss:; frame-ancestors 'self' *.brighthr.com app.brighthr.ie app.brighthr.com.au *.brightsafe.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pixel.byspotify.com lex.33across.com *.adroll.com *.awin1.com *.bing.com *.cloudflareinsights.com *.convertexperiments.com *.doubleclick.net https://bat.bing-int.com *.driftt.com *.dwin1.com connect.facebook.net *.google.com *.google-analytics.com *.googleadservices.com maps.googleapis.com *.googleoptimize.com *.googletagmanager.com *.quantcount.com *.quantserve.com *.gstatic.com  *.hotjar.com cdn.landbot.io snap.licdn.com app-lon04.marketo.com cdn.dreamdata.cloud app.vwo.com munchkin.marketo.net *.mplat-ppcprotect.com *.nyltx.com *.onetrust.com qvdt3feo.com *.rakuten.com lantern.roeyecdn.com *.ruleranalytics.com the.sciencebehindecommerce.com smct.co js.smct.co js.smct.io *.stackadapt.com *.stripe.com *.visualwebsiteoptimizer.com *.youtube.com *.clarity.ms px.ads.linkedin.com; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob:; report-uri https://brighthr.report-uri.com/r/d/csp/enforce;
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QxQikOT4XHz5UQ%2Bd%2BpXws5SmrJNoZGXrvGNL3Mhu39%2Fs8%2FZSmDgKABohVcw1vOCvfOlNagzUZkIkW0ciaEcj9YccL44zUC0XlGMVHGzwUWDzAGUD4kFFleVPr8VRqVH0bZ5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 95c63b31ebd7ebc6-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=33492&min_rtt=26922&rtt_var=14788&sent=46&recv=31&lost=0&retrans=0&sent_bytes=16700&recv_bytes=10406&delivery_rate=92431&cwnd=12000&unsent_bytes=0&cid=cee182d0a76b5c41&ts=372&x=1", cfExtPri, cfHdrFlush;dur=124

HTTP/2 200 OK
date: Wed, 09 Jul 2025 07:50:35 GMT
content-type: image/webp
content-length: 3156
server: cloudflare
cf-ray: 95c63b36cc87abe4-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 167043
cache-control: public, max-age=31536000
last-modified: Tue, 15 Apr 2025 22:27:34 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-imgix-cache: MISS, MISS
x-imgix-id: 42447aa183017b7771ccfdf23779c3ed0009a5fd
x-imgix-served-by: cache-chi-kigq8000053-CHI, cache-iad-kiad7000097-IAD
x-xss-protection: 1; mode=block
vary: Accept-Encoding
X-Firefox-Spdy: h2