HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 0
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
content-security-policy: default-src *.vimeo.com *.pusher.com *.scene7.com 'self' blob: *.google-analytics.com *.unibuddy.co unibuddy.co *.pusher.com *.adobedtm.com *.googleapis.com *.youtube.com *.google.com *.arcgis.com mapapi.geodata.gov.hk hkbuprod.112.2o7.net *.youtube-nocookie.com *.hkbu.edu.hk *.scene7.com *.adobe.com *.adobe.net *.adobe.io *.omniture.com adobedc.demdex.net *.adobedc.net; font-src * 'unsafe-inline' 'unsafe-eval' data: blob:; style-src data: *.licdn.com *.cdninstagram.com *.fbcdn.net 'self' 'unsafe-inline' *.adobedtm.com *.googleapis.com *.arcgis.com *.scene7.com; script-src *.gstatic.com *.licdn.com *.cloudflare.com *.google.com *.arcgis.com *.instagram.com *.jquery.com *.gstatic.com *.doubleclick.net *.cdninstagram.com 'self' 'unsafe-inline' 'unsafe-eval' 'unsafe-hashes' *.google-analytics.com *.adobedtm.com *.googleapis.com *.googletagmanager.com *.hkbu.edu.hk *.unibuddy.co *.scene7.com; img-src * data: blob:; worker-src 'self' blob:; frame-src https://www.google.com https://www.linkedin.com https://www.youtube-nocookie.com https://www.instagram.com https://www.youtube.com https://youtu.be https://www.facebook.com https://ss.initiumlab.com https://theinitium.com https://campaign.theinitium.com https://maps.google.com https://*.hkbu.edu.hk https://*.unibuddy.co https://unibuddy.co https://player.vimeo.com https://hkbuchtl.qualtrics.com
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=(),autoplay=(*),camera=(),display-capture=(),document-domain=(),encrypted-media=(),fullscreen=(self 'https://www.youtube.com'),gamepad=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),sync-xhr=(self),usb=(),screen-wake-lock=(),xr-spatial-tracking=()
last-modified: Wed, 08 Oct 2025 07:29:02 GMT
etag: W/"0-2386f26fb1bdc0"
x-vhost: www
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
pragma: no-cache
x-xss-protection: 0
cache-control: max-age=2592000,stale-while-revalidate=43200,stale-if-error=43200,public,immutable
content-type: text/css;charset=utf-8
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Age: 1911826
Date: Thu, 30 Oct 2025 10:32:48 GMT
X-Served-By: cache-bfi-krnt7300022-BFI
X-Cache: HIT
X-Timer: S1761820369.676282,VS0,VS0,VE1