HTTP/2 200 
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self'; img-src 'self' data: blob: https:; font-src 'self' data: https://cdn.fontshare.com; style-src 'self' 'unsafe-inline' https://api.fontshare.com; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://js.hsforms.net https://challenges.cloudflare.com https://covalba-chatbot.vercel.app; connect-src 'self' https://api.hsforms.com https://*.hubspot.com https://*.hubapi.com https://www.googletagmanager.com https://www.google-analytics.com https://*.google-analytics.com https://analytics.google.com https://stats.g.doubleclick.net https://ad.doubleclick.net https://www.google.com https://challenges.cloudflare.com https://covalba-chatbot.vercel.app https://covalba-admin.paf-studio.dev; frame-src 'self' https://www.googletagmanager.com https://challenges.cloudflare.com https://maps.google.com https://www.youtube.com https://www.youtube-nocookie.com https://*.hubspot.com https://*.hsforms.com; upgrade-insecure-requests
content-type: text/html; charset=utf-8
date: Fri, 26 Jun 2026 10:48:25 GMT
etag: "651536608504870104a9983c0b7dfec9"
permissions-policy: camera=(), microphone=(), geolocation=(), payment=(), usb=()
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-matched-path: /contact
x-nextjs-prerender: 1
x-nextjs-stale-time: 300
x-vercel-cache: PRERENDER
x-vercel-id: cdg1::89nvs-1782470905284-cdec966a3413
content-length: 73082