Security hardening + new tools deployment

- Hide Apache version (ServerTokens Prod)
- Add Permissions-Policy header
- Remove deprecated X-XSS-Protection
- Consolidate security headers to .htaccess only (remove duplicates from PHP)
- Deploy free tools: robots-analyzer, data-converter
- Deploy tools announcement blog post
- Update sitemap with new tools and blog post

blog/articles/business-intelligence-dashboard-design.php

@@ -1,10 +1,6 @@
 <?php
 // Enhanced security headers
-header('X-Content-Type-Options: nosniff');
-header('X-Frame-Options: DENY');
-header('X-XSS-Protection: 1; mode=block');
 header('Strict-Transport-Security: max-age=31536000; includeSubDomains');
-header('Referrer-Policy: strict-origin-when-cross-origin');
 
 // Article-specific SEO variables
 $article_title = "Business Intelligence Dashboard Design: Best Practices for 2025";
@@ -69,6 +65,7 @@ $read_time = 12;
     
     <!-- Styles -->
     <link rel="stylesheet" href="../../assets/css/main.css">
+    <link rel="stylesheet" href="../../assets/css/cro-enhancements.css">
     
     <!-- Article Schema Markup -->
     <script type="application/ld+json">
@@ -121,7 +118,7 @@ $read_time = 12;
         <div class="nav-container">
             <div class="nav-logo">
                 <a href="/">
-                    <img src="../../assets/images/ukds-main-logo.png" alt="UK Data Services" class="logo" loading="eager">
+                    <img loading="lazy" src="../../assets/images/ukds-main-logo.png" alt="UK Data Services" class="logo" loading="eager">
                 </a>
             </div>
             <div class="nav-menu" id="nav-menu">
@@ -1263,7 +1260,7 @@ $read_time = 12;
             <div class="footer-content">
                 <div class="footer-section">
                     <div class="footer-logo">
-                        <img src="../../assets/images/logo-white.svg" alt="UK Data Services" loading="lazy">
+                        <img loading="lazy" src="../../assets/images/logo-white.svg" alt="UK Data Services" loading="lazy">
                     </div>
                     <p>Enterprise data intelligence solutions for modern British business. Transform your operations with accurate, actionable insights and regulatory-compliant data services.</p>
                 </div>
@@ -1307,10 +1304,10 @@ $read_time = 12;
                 <p>&copy; <?php echo date('Y'); ?> UK Data Services. All rights reserved.</p>
                 <div class="social-links">
                     <a href="https://linkedin.com/company/uk-data-services" aria-label="LinkedIn" rel="noopener" target="_blank">
-                        <img src="../../assets/images/icon-linkedin.svg" alt="LinkedIn" loading="lazy">
+                        <img loading="lazy" src="../../assets/images/icon-linkedin.svg" alt="LinkedIn" loading="lazy">
                     </a>
                     <a href="https://twitter.com/ukdataservices" aria-label="Twitter" rel="noopener" target="_blank">
-                        <img src="../../assets/images/icon-twitter.svg" alt="Twitter" loading="lazy">
+                        <img loading="lazy" src="../../assets/images/icon-twitter.svg" alt="Twitter" loading="lazy">
                     </a>
                 </div>
             </div>
@@ -1375,5 +1372,6 @@ $read_time = 12;
         updateReadingProgress();
     });
     </script>
+<script src="../../assets/js/cro-enhancements.js"></script>
 </body>
 </html>