diff --git a/netlify.toml b/netlify.toml
index 0fb4192..be6d391 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -6,7 +6,18 @@
   for = "/*"
   [headers.values]
     Strict-Transport-Security = "max-age=31536000; includeSubDomains; preload"
+    Cache-Control = "public, max-age=31536000"
+    Referrer-Policy = "strict-origin-when-cross-origin"
+    X-Content-Type-Options = "nosniff"
     X-Frame-Options = "DENY"
     X-XSS-Protection = "1; mode=block"
-    Referrer-Policy = "no-referrer"
-    X-Content-Type-Options = "nosniff"
+    # Referrer-Policy = "no-referrer"
+    Access-Control-Allow-Origin = "*"
+    Vary = "Accept-Encoding"
+    Access-Control-Allow-Credentials = "true"
+    Feature-Policy = "geolocation 'self' https://mademistakes.com; autoplay 'none'; lazyload 'self' https://mademistakes.com; sync-xhr 'self' https://mademistakes.com"
+
+[[headers]]
+  for = "/assets/*"
+  [headers.values]
+    Cache-Control = "public, max-age=31536000"