diff --git a/netlify.toml b/netlify.toml
index afa5d5d..bc16615 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -16,6 +16,35 @@
 [[headers]]
   for = "/*"
   [headers.values]
-    X-Content-Type-Options = "nosniff"
     X-Frame-Options = "DENY"
     X-XSS-Protection = "1; mode=block"
+    X-Content-Type-Options = "nosniff"
+    Referrer-Policy = "no-referrer"
+    Strict-Transport-Security = '''
+        max-age=31536000;
+        includeSubDomains
+    '''
+    Content-Security-Policy = '''
+        default-src 'self';
+        style-src 'self' 'unsafe-inline';
+        img-src 'self'
+    '''
+    Permissions-Policy = '''
+        accelerometer=(none),
+        ambient-light-sensor=(none),
+        autoplay=(none),
+        camera=(none),
+        encrypted-media=(none),
+        fullscreen=(none),
+        geolocation=(none),
+        gyroscope=(none),
+        magnetometer=(none),
+        microphone=(none),
+        midi=(none),
+        payment=(none),
+        picture-in-picture=(none),
+        speaker=(none),
+        usb=(none),
+        vibrate=(none),
+        vr=(none)
+    '''