Security Directory

C

cantamen GmbH

cantamen.de

0

cantamen GmbH is a German company specializing in software and services for the shared mobility sector, including carsharing, bikesharing, and corporate mobility solutions. With over 20 years of experience, they provide a comprehensive suite of products such as booking and management tools, customer apps, billing, and fleet management, supported by 24/7 customer and technical service. Their market position is that of an established, trusted provider in the shared mobility technology space, targeting B2B clients like fleet operators and mobility service providers. Technically, the website is built with standard web technologies (HTML5, CSS3, JavaScript) and serves content over HTTPS with good mobile optimization and moderate performance. However, it lacks advanced SEO and accessibility features and does not implement visible security headers or cookie consent mechanisms, which are areas for improvement. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the provided content. The absence of security headers and incident response contacts suggests room for enhancing security posture and compliance. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the website presents a professional and trustworthy business front with solid content quality and business credibility. Strategic improvements in privacy compliance, security headers, and contact transparency would further strengthen their digital maturity and security posture.

B

Bikepark Serfaus-Fiss-Ladis

bike-sfl.at

0

Bikepark Serfaus-Fiss-Ladis operates as an official mountain biking destination in Austria, offering bikepark access, biking schools, and trail information to outdoor enthusiasts and tourists. The website presents a professional and consistent brand image with clear contact details and social media presence, targeting a broad audience interested in biking and outdoor recreation. Technically, the site uses Bootstrap 3 and Google Tag Manager, indicating a moderate level of digital maturity with room for modernization and enhanced security. Security posture is moderate due to lack of visible security headers and absence of explicit privacy or cookie policies, which are critical for compliance and user trust. Overall, the site is safe, accessible, and trustworthy but would benefit from improved privacy compliance and security best practices.

S

Slovenská letecká agentúra, s. r. o.

siaf.sk

0

The website www.siaf.sk represents the official online presence of the Medzinárodné letecké dni SIAF, an international air show event organized by Slovenská letecká agentúra, s. r. o. The site provides comprehensive event information, news updates, multimedia galleries, and partner details, targeting aviation enthusiasts and the general public interested in air shows. The business operates primarily in the transportation sector with a focus on event organization and media dissemination, maintaining a consistent and professional brand image since its founding in 2006. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and FontAwesome, managed via the WebJET CMS platform. It demonstrates good mobile optimization and SEO practices, with a moderate performance profile. The site incorporates a cookie consent mechanism compliant with GDPR, uses HTTPS with strong SSL configuration, and implements CSRF tokens for AJAX requests, reflecting a solid digital maturity. From a security perspective, the site enforces HTTPS and includes cookie consent management, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration details align well with the business claims, indicating legitimacy and trustworthiness. Overall, www.siaf.sk is a well-maintained, trustworthy website with good content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its security posture and user trust.

D

Deutsche Bahn AG

db.jobs

0

Deutsche Bahn AG operates a comprehensive career portal at db.jobs, targeting a wide range of job seekers including students, graduates, professionals, and career changers in Germany. The site offers detailed information on over 500 professions, training programs, and application guidance, reinforcing Deutsche Bahn's position as a leading transportation employer. The platform is well-branded, professionally designed, and optimized for mobile devices, providing an excellent user experience with clear navigation and relevant content.

D

DB Fernverkehr AG

bahnundhotel.com

0

Bahn und Hotel is a German travel comparison portal specializing in train and hotel package deals, primarily targeting travelers interested in 1st class train travel within Germany and select European cities. The website is affiliated with DB Fernverkehr AG, a major player in the German transportation sector, and leverages official Deutsche Bahn branding and social media channels. The platform offers users an interactive search experience with date pickers, traveler selectors, and destination teasers, supporting a user-friendly booking process. Technically, the website employs modern web technologies including Laravel Livewire for reactive components, Alpine.js for frontend interactivity, and ES modules for JavaScript. Hosting and DNS are managed via Amazon Registrar, Inc., indicating a reliable infrastructure. The site is mobile optimized and accessible, with good SEO practices evident in meta tags and structured content. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. No explicit security or incident response policies are publicly available, and no vulnerability disclosure or security.txt files were found. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, Bahn und Hotel presents a professional and trustworthy online presence with a solid technical foundation and good business credibility. Security posture is adequate but could be improved by implementing DNSSEC, security headers, and explicit incident response information. Privacy compliance is good but would benefit from a visible cookie consent mechanism.

V

Verkehrsverbund Großraum Nürnberg

vgn.de

0

Verkehrsverbund Großraum Nürnberg (VGN) operates as a regional public transportation authority providing integrated ticketing and route planning services for the greater Nuremberg area in Germany. The website offers comprehensive information on schedules, tickets, service updates, and leisure activities, targeting commuters, students, tourists, and businesses. The digital presence is supported by a modern technical infrastructure including JavaScript frameworks, mapping libraries, and a custom CMS by roccas GmbH. Privacy and cookie compliance are well implemented, with clear policies and user consent mechanisms. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though formal security policies and incident response disclosures are absent. Overall, the website demonstrates high professionalism, trustworthiness, and user-centric design.

B

Bayerische Eisenbahngesellschaft mbH

bahnland-bayern.de

0

Bahnland Bayern is a well-established regional mobility platform operated by Bayerische Eisenbahngesellschaft mbH, focusing on providing comprehensive public transportation information, ticketing services, and travel assistance for Bavaria. The website demonstrates a strong market position as an official source for regional transport users, offering key services such as a ticket finder, mobility app (MoBY), and leisure destination guides. The platform targets residents and travelers in Bavaria, emphasizing accessibility and user-friendly design. Technically, the website is built on the Contao Open Source CMS, utilizing modern frontend libraries like Tiny Slider and Bootstrap for responsive design. It integrates Usercentrics for cookie consent management and Google Tag Manager for analytics, reflecting a mature digital infrastructure. Hosting appears to be managed via German providers, with secure HTTPS connections and good performance metrics. Accessibility is a priority, evidenced by BITV 2.0 certification and features like contrast and motion toggles. From a security perspective, the site enforces HTTPS and employs consent management, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. The WHOIS data is limited but consistent with the business purpose, supporting legitimacy. Overall, Bahnland Bayern presents a professional, secure, and user-centric platform with excellent content quality and technical implementation. Strategic improvements could include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

A

agilis Verkehrsgesellschaft mbH & Co. KG

agilis.de

0

agilis Verkehrsgesellschaft mbH & Co. KG is a regional railway company based in Regensburg, Germany, operating passenger rail services primarily in Bavaria. Since December 2010, it has been responsible for approximately 10% of the Bavarian regional passenger rail market, providing reliable and customer-focused transportation services. The company targets regional commuters and travelers within Bavaria, offering ticket sales, service notifications, and customer support through its website and multiple social media channels. The business model is based on public transport contracts with the Free State of Bavaria, emphasizing regional connectivity and service quality. Technically, the website is built on WordPress 6.8.1 with modern plugins such as Elementor for page building and Yoast SEO for search engine optimization. The site includes cookie consent mechanisms compliant with GDPR, uses HTTPS with strong SSL configuration, and integrates Google Analytics for traffic analysis. Accessibility features and mobile optimization are well implemented, providing a good user experience across devices. From a security perspective, the site employs standard security headers and enforces HTTPS, with no visible vulnerabilities or exposed sensitive data. However, there is no publicly available security policy or incident response contact information, which could be improved to enhance transparency and readiness. The cookie consent and privacy policies are comprehensive and GDPR compliant, reflecting a mature privacy posture. Overall, the website presents a professional, trustworthy, and user-friendly digital presence for agilis, supporting its role as a key regional transportation provider. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, and maintaining regular security audits to sustain and improve the security posture.

Z

Za horami, za dolami v Banskobystrickom kraji

zahoramizadolami.sk

0

The website zahoramizadolami.sk serves as a regional tourism and cultural promotion platform focused on the Banskobystrický kraj region in Slovakia. It offers information about local events, experiences, and regional products, targeting a general audience interested in tourism and cultural activities. The site is multilingual, supporting Slovak, English, and Hungarian languages, enhancing accessibility for diverse visitors. The business model revolves around content promotion, experience booking, and e-commerce for regional goods, positioning itself as a key regional tourism resource.

V

Verkehrsverbund Tirol

vvt.at

0

Verkehrsverbund Tirol (VVT) operates as the regional public transportation platform for Tirol, Austria, coordinating, planning, financing, and ordering public transit services. The website reflects a mature, well-established organization celebrating 30 years of service, offering a broad range of ticketing options and mobility services tailored to the regional audience. Their market position is strong within the regional transportation sector, supported by comprehensive service offerings and active community engagement through news and social media channels. Technically, the website employs modern JavaScript libraries, consent management tools like Cookiebot, and integrates Google Tag Manager and Hotjar for analytics, indicating a digitally mature infrastructure. Security posture is robust with HTTPS enforced and consent mechanisms in place, though some security headers could be further enhanced. Privacy compliance is well addressed with clear policies and user consent options. Overall, the site is professional, trustworthy, and user-friendly, serving its public service mission effectively.

B

Borgmann Automobilhändler GmbH

borgmann-krefeld.de

0

Borgmann Automobilhändler GmbH operates as a medium-sized automobile dealership based in Krefeld, Germany, specializing in new and used vehicle sales and servicing for Volkswagen Group brands including VW, Audi, Skoda, Seat, Cupra, as well as GWM commercial vehicles. The company targets local customers seeking passenger cars, transporters, and motorhomes, positioning itself as a trusted regional dealer with comprehensive service offerings. The website reflects this business focus with clear branding, relevant content, and a professional presentation. Technically, the website is built on the TYPO3 CMS platform, leveraging modern frontend libraries such as jQuery, FontAwesome, Owl Carousel, and Bootstrap components. Hosting is provided by SchlundTech, a reputable German hosting provider. The site is mobile-optimized and incorporates SEO best practices including structured data and meta tags. Cookie consent is managed via Cookiebot, ensuring compliance with GDPR and providing users with granular control over cookie categories. From a security perspective, the site enforces HTTPS and integrates standard tracking tools like Google Analytics and Facebook Pixel responsibly with user consent. While explicit security headers are not fully confirmed, no critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the site demonstrates a solid security posture appropriate for its business scale. The domain WHOIS data aligns with the website's business claims, showing consistent hosting and domain usage without suspicious patterns. No WAF or blocking mechanisms interfere with content accessibility, allowing full analysis. The site maintains a high level of trustworthiness and professionalism, making it a reliable digital presence for the Borgmann Automobilhändler GmbH. Strategic recommendations include enhancing security headers, publishing terms of service and security policies, and maintaining up-to-date third-party libraries to further strengthen compliance and security posture.

В

Василеви-2005 ЕООД

vasilevi.com

0

Автошкола Василеви - София is a Bulgarian driving school established in 2006, offering comprehensive driving courses for all categories, including specialized courses such as restoration of control points and ADR dangerous goods transport. The business operates primarily in Sofia and the surrounding region, targeting individuals seeking driver education and certification. The website is professionally designed using WordPress with Elementor and WooCommerce, indicating a moderate level of digital maturity. SEO optimization is supported by Yoast SEO Premium, and GDPR compliance is addressed through privacy and cookie policies. Security posture is adequate with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are not explicitly detected. Overall, the site presents a trustworthy and professional image consistent with its business claims.

R

Romantic Road Coach

romanticroadcoach.com

0

Romantic Road Coach is a small transportation business specializing in day trips and minibus tours along the Romantic Road in Germany, targeting tourists and travelers seeking scenic and cultural experiences. The company offers online booking and optional services such as wine tasting and hotel pick-up, positioning itself as a niche regional tourism provider. The website is built on WordPress with modern plugins and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

N

nextbike GmbH

nextbike.de

0

nextbike GmbH operates a leading bike-sharing platform active in over 300 cities worldwide, primarily targeting urban commuters and residents. The company offers app-based bike rentals with flexible tariffs including base rates and subscription models. The website reflects a mature digital presence with strong branding, comprehensive content, and clear user guidance. Technically, the site is built on WordPress with modern frontend components and includes robust SEO and mobile optimization. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, nextbike presents a trustworthy and professional online presence aligned with its transportation sector business model.

N

nextbike business

nextbike.net

0

Nextbike business operates as a European market leader in bike-sharing, providing tailored mobility solutions including both station-based and stationless systems. The company is positioned under the parent company TIER Mobility and targets urban mobility customers and business clients across Europe. The website content is professionally presented in German, with strong SEO and structured data implementation, reflecting a mature digital presence. Technically, the site is built on WordPress with common plugins and libraries, offering good mobile optimization and user experience. However, the absence of visible privacy and cookie policies, security headers, and WHOIS registration data introduces concerns regarding compliance and domain legitimacy. Security posture is moderate but could be improved with enhanced headers and explicit policies. Overall, the site is functional and professional but requires improvements in privacy compliance and security transparency to strengthen trust and regulatory adherence.

V

Via Julia

viajulia.de

0

Via Julia is a cultural and tourism project centered on the historic Roman road from Günzburg to Salzburg, Germany. It promotes sustainable regional development and tourism through a marked long-distance cycling route and related cultural initiatives. The website serves as an informational platform for tourists and cycling enthusiasts, providing route details, historical context, and event listings. The project appears to be a small-scale, non-profit initiative with a niche audience focused on cultural heritage and outdoor activities. Technically, the website is built on Drupal 7 with an older jQuery version and uses Matomo for analytics, respecting Do Not Track settings. The site is mobile optimized and has a clear navigation structure, though some modernization of the tech stack is advisable. Security posture is moderate with HTTPS enabled but lacking security headers and cookie consent mechanisms. No sensitive data collection forms or contact emails are visible, reducing risk exposure. Overall, the security posture is adequate for the site's scope but could be improved by implementing security headers, updating libraries, and adding privacy compliance features. The domain registration aligns with the website's geographic and thematic focus, supporting legitimacy. No suspicious or malicious indicators were found. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security and incident response policies, upgrading the CMS and JavaScript libraries, and improving security headers to strengthen trust and resilience.

The website viaclaudia.org is registered to Via Claudia August e.V., a German non-profit organization likely involved in transportation or cultural heritage given the name. However, the website content is currently inaccessible due to a TYPO3 CMS site configuration error, resulting in a 'Page Not Found' error. This prevents any meaningful content or business information from being presented to visitors. The domain is well-established, created in 2001, and registered with a reputable registrar without privacy protection, indicating legitimacy. Technically, the site uses TYPO3 CMS but lacks proper configuration and visible security headers or policies. No privacy, cookie, or terms of service policies are present, and no contact information is available on the error page. No WAF or security challenge mechanisms are detected, and no analytics or advertising scripts are present. The content safety rating is safe as no adult or questionable content is found. Overall, the site suffers from critical accessibility and content issues that severely limit its usability and trustworthiness.

S

Bavarian shipping at Lake Starnberger See, Ammersee, Tegernsee and Königssee

seenschifffahrt.de

0

The website www.seenschifffahrt.de serves as the official online presence for Bavarian shipping services across four major lakes: Königssee, Tegernsee, Starnberger See, and Ammersee. It targets general audiences interested in regional transportation and tourism services. The site is built on TYPO3 CMS, indicating a moderate level of technical maturity and content management capabilities. The design and navigation are professional and user-friendly, supporting a positive user experience. However, the site lacks critical privacy and cookie policies, which are essential for GDPR compliance, especially given its European location. Security posture is basic, with no evident security headers or incident response information, suggesting room for improvement in protecting user data and enhancing trust. Overall, the site is functional and relevant but requires enhancements in privacy, security, and contact transparency to elevate its compliance and credibility.

R

Romantische Straße

romantischestrasse.de

0

Romantische Straße is a well-established German tourism organization promoting the country's oldest and most popular holiday route, spanning 29 towns over 460 kilometers. The website serves as an information hub for travelers interested in nature, culture, art, culinary experiences, and hospitality along this scenic route. It offers key services including tourist information, interactive maps, bus service bookings via the Romantic Road Coach, and an online shop for related products. The site targets tourists and cultural travelers primarily within Germany and internationally via its English version. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for GDPR compliance. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. Performance is moderate, with a rich media presence including interactive SVG maps and sliders. From a security perspective, the site uses HTTPS with anonymized IP tracking for analytics and implements a cookie consent mechanism. However, it lacks visible security headers and published privacy or security policies, which are recommended for compliance and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, Romantische Straße presents a professional and trustworthy online presence with strong business credibility in the tourism sector. Strategic improvements in privacy documentation, security headers, and accessibility would further enhance its security posture and compliance standing.

E

Euregio-Camper

euregio-camper.de

0

Euregio-Camper is a small, established camper rental business operating primarily in Germany, offering a fleet of motorhomes for rent with over 30 years of experience. The website is built on a modern WordPress platform using Elementor and Astra theme, providing a professional and user-friendly experience. The site includes a GDPR-compliant cookie consent mechanism and detailed information about their vehicles and services, targeting individuals and families interested in camper travel in the Euregio region. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No explicit incident response or security policies are published. Overall, the website demonstrates a solid digital presence with good privacy compliance and business credibility.

Personenschiffahrt Kropf GmbH & Co KG operates a specialized passenger shipping service in Bamberg, Germany, offering scenic boat tours through the UNESCO World Heritage area. The company targets tourists and local visitors seeking leisure and sightseeing experiences on the water. Their business model focuses on providing scheduled and special cruises with onboard services, catering also to group reservations. The website reflects a small local business with consistent branding and clear service offerings. Technically, the site is built on the cm4all CMS platform hosted by Strato, using older JavaScript libraries and standard web technologies. The site is mobile-optimized and provides basic accessibility and SEO features. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and uses outdated libraries that could pose risks. No incident response or security policy information is provided. Overall, the website is professional and trustworthy for its business scope but could improve technical and security aspects.

B

BKK Budapesti Közlekedési Központ

bkkinfo.hu

0

BKK Budapesti Közlekedési Központ is the primary public transportation authority in Budapest, Hungary, providing comprehensive travel planning, ticketing, and real-time traffic updates. The website serves residents and visitors with detailed information on public transport services, accessibility, and operational changes. It holds a strong market position as the official transport provider with a large user base. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and MapLibre GL JS for interactive maps. It is hosted likely behind Cloudflare, ensuring good performance and security. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is solid with HTTPS enforced and secure login forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident in the HTML and could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and well-maintained, with no detected vulnerabilities or suspicious content. Strategic recommendations include enhancing security headers and continuous monitoring of third-party scripts to maintain security integrity.

N

nextbike GmbH

molbubi.hu

0

MOL Bubi is a well-established public bike-sharing service operating in Budapest, Hungary, managed by nextbike GmbH in partnership with BKK and the city of Budapest. The service offers environmentally friendly urban mobility solutions with flexible rental options via a dedicated mobile app. The website reflects a professional and consistent brand image, targeting urban commuters and tourists seeking convenient transport alternatives. Technically, the site leverages modern web technologies including Bootstrap, jQuery, and integrates third-party analytics and marketing tools such as Google Analytics and Facebook Pixel, hosted on AWS and Cloudflare CDN, ensuring good performance and availability. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though the absence of a public security policy and incident response contacts suggests room for improvement. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media presence, supporting user confidence.

B

BKK Budapesti Közlekedési Központ

bkk.hu

0

BKK Budapesti Közlekedési Központ is the primary public transportation authority in Budapest, Hungary, providing comprehensive transit services including travel planning, ticketing, and real-time traffic updates. The website serves residents and visitors with detailed information on schedules, ticket prices, and mobility options such as bike sharing (MOL Bubi) and contactless payments (Budapest Pay&GO). The company is well-established, with a domain age dating back to 1999, and holds multiple industry awards reflecting its professionalism and service quality. Technically, the website employs modern web technologies, including Google Tag Manager and Cloudflare Insights, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers could be further confirmed. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements. Contact information is transparent and comprehensive, including email, phone, and physical address. Overall, the website demonstrates high trustworthiness and professionalism, supporting BKK's market position as a leading transportation provider.

F

FormBeat

formbeat.com

0

FormBeat is a specialized AI-powered cycling analytics platform designed to help cyclists of all fitness levels improve their training and performance. The company offers a subscription-based SaaS model with monthly and yearly plans, integrating with popular cycling platforms such as Strava, Garmin, and Zwift. The website demonstrates a high level of professionalism, excellent content quality, and a clear focus on user experience and mobile optimization. Technically, the platform leverages modern JavaScript frameworks (Vue.js), cloud CDN hosting, and multiple analytics and marketing tools to deliver a fast and responsive user experience. Security posture is good with HTTPS enforced and CSRF protections, though there is room for improvement in security headers and explicit privacy compliance mechanisms. Overall, the business appears legitimate and well-positioned in the niche cycling analytics market, with strong trust indicators such as testimonials and recognized trademarks.

N

NRW.Mobidrom GmbH

verkehr.nrw

0

Verkehr.NRW is the official traffic information portal for the German state of Nordrhein-Westfalen, operated by NRW.Mobidrom GmbH. The website provides comprehensive real-time traffic updates, routing options for various transport modes including car, bike, public transport, and intermodal solutions, as well as additional services like fuel price comparisons and construction alerts. It serves residents and visitors seeking reliable and up-to-date traffic information within the region. The portal is positioned as a trusted government-affiliated service with a medium-sized operational scope and a focus on transportation sector services. Technically, the website is built on the Liferay CMS platform, leveraging modern web technologies such as OpenLayers for mapping, jQuery, and Clay UI components. The infrastructure appears well-maintained with good mobile optimization, accessibility, and SEO practices. Hosting and domain registration are consistent with the regional focus, and the site uses HTTPS with appropriate security headers, ensuring secure user interactions. From a security perspective, the portal demonstrates good practices including HTTPS enforcement, CAPTCHA protection on contact forms, and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit published security policies or incident response contacts, and DNSSEC is not enabled, which could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, Verkehr.NRW presents a professional, trustworthy, and secure platform for traffic information in Nordrhein-Westfalen. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and providing explicit security and incident response information to further enhance trust and security posture.

R

RegioEntsorgung AöR

regioentsorgung.de

0

RegioEntsorgung AöR operates as a regional public authority focused on waste disposal and recycling services in Germany. The website provides comprehensive information about waste separation, collection services, service locations, customer support, and career opportunities. It targets residents and businesses within its service region, positioning itself as a trusted local waste management provider. The business model is centered on public service delivery with direct citizen engagement. Technically, the website is built on TYPO3 CMS, a robust and mature content management system. It employs responsive design, SVG icons, and modern JavaScript for interactive elements. The site includes a cookie consent mechanism compliant with GDPR, uses Google Analytics for tracking, and is optimized for mobile and accessibility standards. Performance is moderate, with good SEO and navigation clarity. From a security perspective, the site enforces HTTPS and implements cookie consent controls. However, it lacks explicit security policy documentation, incident response contacts, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website demonstrates a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security transparency and incident response readiness would enhance trust and resilience.

I

idealo.de

flights-idealo.co.uk

0

Flights-idealo.co.uk is a UK-targeted flight price comparison website operated by idealo internet GmbH, a well-established company in the online price comparison market. The platform aggregates flight offers from numerous airlines and travel agents, providing users with a comprehensive and user-friendly interface to find cheap flights quickly. The website is part of the idealo brand family, which operates multiple regional sites, enhancing its market presence and trustworthiness. Technically, the site employs modern web technologies including React, Apollo GraphQL, and styled components, ensuring a responsive and performant user experience. The use of HTTPS and consent management tools like Usercentrics demonstrates a commitment to security and privacy compliance. However, the WHOIS data for the domain is unavailable due to a domain registration error related to naming rules, which does not appear to impact the legitimacy or operation of the site. Security posture is good but could be improved by adding explicit security headers and publishing a security policy. Overall, the site is professional, trustworthy, and well-positioned in the flight comparison market.

C

CBS spol, s.r.o.

slovenskozneba.sk

0

CBS spol, s.r.o. operates the website slovenskozneba.sk, offering aerial photography, videography, and related media services focused on Slovakia. The company has established a strong market position with a large database of aerial images and a significant number of published books. Their business model includes professional aerial imaging services, book publishing, and experiential flights. The website is built on WordPress with Bootstrap, reflecting a modern and responsive design. While the site uses HTTPS and Google Analytics, it lacks some security headers and a cookie consent mechanism, which are areas for improvement. Contact information and company details are clearly presented, supporting business credibility. Overall, the site is professional, trustworthy, and well-structured, with moderate user tracking and basic privacy compliance.

idealo.com serves as a landing page primarily redirecting users to flights.idealo.com, focusing on travel price comparison services. The website content is minimal, with no direct business contact information or forms on the main domain. The technical infrastructure is basic, relying on JavaScript for redirection and minimal HTML content. There is no evidence of advanced frameworks or CMS usage. Security posture is weak due to lack of HTTPS confirmation, absence of security headers, and missing WHOIS registration data. Privacy compliance is minimal, with only a basic privacy policy linked on the flights subdomain and no cookie consent mechanism. Overall, the site appears legitimate but lacks transparency and robust security features, warranting caution.

D

DEKRA ELS

dekra-els.de

0

DEKRA ELS is a German-based service provider specializing in event and promotion personnel, professional vehicle transfers, and fleet management. The company operates under the DEKRA brand, indicating a strong market position within the transportation and event logistics sector. Their website is professionally designed using WordPress and the Divi theme, targeting businesses requiring staffing and logistic services for events. The technical infrastructure is modern and hosted on OVH, with standard plugins for cookie consent and analytics. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though the absence of explicit privacy policies, terms of service, and security policies indicates room for compliance improvement. No blocking or WAF challenges were detected, allowing full content access and analysis.

R

renault

renault.sk

0

Renault Slovakia operates a comprehensive automotive website offering new, used, and commercial vehicles, including electric and hybrid models. The site targets Slovak consumers interested in Renault's vehicle range and related services such as financing and after-sales support. The website demonstrates a solid market position as part of the global Renault brand, with consistent branding and a professional presentation. Technically, the site uses modern web technologies including React, optimized images, and integrates Google Analytics and Tag Manager for tracking. Cookie consent is managed via OneTrust, indicating attention to privacy compliance, though explicit privacy and terms of service pages were not found in the provided content. Security posture is good with HTTPS enforced, but could be improved by adding security headers and publishing security policies. Overall, the site is trustworthy and well-maintained, suitable for its business purpose.

C

CHAPS spol. s r.o.

cp.sk

0

The website cp.sk is operated by CHAPS spol. s r.o. and serves as a comprehensive platform for searching and purchasing tickets for various transportation modes including trains, buses, MHD (local public transport), and airplanes within Slovakia. It aggregates schedules from multiple carriers and provides real-time location tracking for trains and buses. The platform targets general travelers in Slovakia and holds a strong market position as a leading travel timetable and ticketing service. The business model revolves around providing aggregated transport data and direct ticket sales through the application.

W

Wirtschaftsbetriebe Duisburg - AöR

ob-karl-lehr-bruecke.de

0

The website represents Wirtschaftsbetriebe Duisburg - AöR, a public entity managing the OB-Karl-Lehr-Brückenzug infrastructure project in Duisburg, Germany. The site provides detailed information about the project's importance to local traffic and logistics, targeting residents, commuters, and stakeholders in transportation and urban infrastructure. The business is positioned as a key municipal infrastructure provider with a focus on transportation and logistics facilitation. Technically, the website is built on TYPO3 CMS, uses modern web technologies, and integrates Matomo for analytics. The site is hosted on DomainControl nameservers and uses HTTPS with good SSL configuration. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site has HTTPS enabled and uses secure cookies for analytics, but lacks several security headers and a formal security policy or incident response contact. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained, with moderate technical and security maturity. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance the security posture and compliance level.

radrevier.ruhr is a professionally managed regional tourism website focused on promoting cycling and bike holidays in the Ruhrgebiet area of Germany. It offers comprehensive route information, planning tools, and thematic cycling routes, positioning itself as a leading urban cycling travel region certified by the ADFC. The platform targets cycling tourists and outdoor enthusiasts, providing rich content and digital resources to enhance visitor experience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates SEO and cookie consent tools effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Privacy compliance is robust, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity suitable for its tourism promotion role.

D

Deutsche Bahn AG

bahnhof.de

0

bahnhof.de is the official platform operated by Deutsche Bahn AG providing comprehensive information about passenger train stations across Germany. It offers live departure and arrival times, station facilities, accessibility information, and local services to travelers. The website is well-positioned as a leading national transportation information portal, serving a broad audience of train passengers and mobility users. Technically, the site leverages modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security policies and incident response information are absent. Overall, bahnhof.de demonstrates a mature digital presence with high trustworthiness and professional content.

K

Klima-Bündnis Services

stadtradeln.de

0

STADTRADELN is an established international campaign managed by Klima-Bündnis Services that promotes cycling as a means to improve climate protection, increase bicycle traffic, and enhance quality of life in municipalities. The website serves as a platform for participants and municipalities to register, track cycling activities, and access campaign information. The site is built on TYPO3 CMS with a modern, responsive design and integrates Matomo analytics configured to disable cookies, reflecting some privacy awareness. Security posture is good with HTTPS enforced and secure login mechanisms, though explicit security policies and privacy documentation are not found in the provided content. Overall, the website is professional, trustworthy, and well-positioned in its niche.

A

ADIP, spol. s r. o.

adipsk.sk

0

ADIP SLOVAKIA, spol. s r. o. is a well-established distributor of automotive spare parts and accessories primarily serving the transportation sector in Slovakia and the Czech Republic. With over 28 years of market presence, the company offers a comprehensive product catalog exceeding one million items from more than 300 suppliers, supported by a proprietary distribution system and customer e-commerce platform. The website reflects a professional business presence with clear navigation, relevant content, and legal compliance documents. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, ensuring a responsive and user-friendly experience. Security measures include HTTPS, cookie consent with granular controls, and Google reCAPTCHA integration, although some security headers and policies are absent. Overall, the site demonstrates good privacy compliance and business credibility, with room for improvement in formal security policies and accessibility.

L

Vendre sa moto rapidement et au meilleur prix du marché avec Le coin moto

lecoinmoto.fr

0

Lecoinmoto.fr is a French small business website dedicated to facilitating the sale of motorcycles by providing free quick valuation and handling the sales process including secure payment. The website targets motorcycle owners in France seeking a fast and efficient way to sell their vehicles at the best market price. The business operates as an online service platform with a clear and focused value proposition. Technically, the website uses a modern Bootstrap 5.2.1 framework ensuring responsive design and moderate performance. The hosting provider is OVH, a reputable French hosting company. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is limited to a single email address with no phone or physical address provided. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security transparency.

D

DS.C. DELIVERY SOLUTIONS S.A.

sameday.ro

0

SAMEDAY is a well-established Romanian courier and logistics company founded in 2007, offering rapid parcel delivery services including innovative locker-based delivery (easybox) and next-day courier options. The company has a strong market position in Romania, recently expanding through acquisition and maintaining a large network of delivery points. Their digital maturity is evidenced by a modern WordPress-based website, mobile app integration, and use of advanced analytics and performance optimization tools. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security headers and incident response policies could be improved. Overall, the website is professional, user-friendly, and compliant with GDPR, reflecting a trustworthy and credible business.

T

TESTCAR s.r.o.

testcar.cz

0

TESTCAR s.r.o. operates a network of vehicle technical inspection stations across the Czech Republic, providing services such as regular technical inspections for road vehicles, ADR inspections, individual vehicle imports, and sales of ecological stickers. The company is well-established since 2007 and maintains multiple branch locations, indicating a solid market presence in the transportation sector. The website is built on WordPress using Elementor and JetEngine, with integration of Google Maps API for branch location display, although the map currently has an API key issue preventing proper loading. Security posture is moderate with HTTPS enabled but lacking security headers and formal security or privacy policies. Contact information is comprehensive and clearly presented, enhancing business credibility. However, the absence of privacy and cookie policies indicates compliance gaps that should be addressed.

S

STK RITZ s.r.o.

stk-novyjicin.cz

0

STK RITZ s.r.o. is a Czech Republic based company specializing in vehicle technical inspections, emission measurements, and related regulatory services. Established in 1996, the company operates a certified technical inspection station with ISO 9001:2009 certification and partnership with DEKRA, serving personal, commercial, and special vehicles. The website presents a professional and well-structured digital presence, targeting vehicle owners and operators requiring compliance with Czech vehicle regulations. The business model focuses on service provision for mandatory vehicle inspections and technical data issuance. Technically, the website is built on WordPress using Elementor and Slider Revolution plugins, with jQuery as a JavaScript library. The site is mobile optimized and includes cookie consent mechanisms, reflecting a moderate level of digital maturity. Performance is moderate, with good SEO and accessibility basics, though security headers are not evident in the provided data. Security posture is adequate with HTTPS enabled and cookie consent implemented, but the absence of WHOIS transparency and missing security headers suggest areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a comprehensive privacy and cookie policy in Czech language. Contact information is clearly provided, including phone numbers, email, physical address, and a contact form. Overall, the website and business appear legitimate and professional, though the lack of WHOIS data transparency slightly reduces trust. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving WHOIS transparency to strengthen domain trustworthiness.

N

Nikey s.r.o.

nikey.cz

0

Nikey s.r.o. is a Czech company operating a network of 11 vehicle washing centers and 18 fuel stations specialized in serving truck and bus transportation across the Czech Republic. The company offers personalized fuel dispensing systems, flexible washing programs, parking solutions, and vehicle interior disinfection services. Their market position is that of a medium-sized regional player with over 200 corporate clients and a strong focus on quality and customer satisfaction. Technically, the website employs a modern but somewhat dated technology stack including Bootstrap 3, jQuery, and Google Maps API, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though lacking explicit security policies and advanced HTTP headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with room for improvement in security transparency and accessibility.

K

KAR

kar.cz

0

KAR is a well-established Czech company founded in 2011, specializing in comprehensive service solutions for truck and bus transportation. The company operates multiple modern service centers across Czech regions and acts as a dealer for IVECO BUS, offering sales, maintenance, and custom manufacturing services. Their website reflects a mature digital presence built on WordPress with Elementor, optimized for performance and SEO. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the company demonstrates high business credibility and trustworthiness with clear contact information and certifications.

F

FESH FESH Group v.o.s.

feshfesh.group

0

FESH FESH Group v.o.s. operates a professional racing team based in the Czech Republic, focusing on motorsport events, team activities, and news dissemination. The website serves as a hub for fans and stakeholders to access updates, event information, and team details. The business targets motorsport enthusiasts and operates a niche but professional presence within the transportation sector. Technically, the website is built on WordPress with Elementor and JetEngine plugins, hosted likely by Websupport, and incorporates modern web technologies including Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and standard security headers present, though DNSSEC is not enabled. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism in Czech language, aligning with GDPR requirements. No explicit security or incident response policies are published, and no terms of service page was found. Overall, the domain registration details are consistent with the business claims, supporting legitimacy and trustworthiness.

Č

ČSAD Ostrava a.s.

cova.cz

0

ČSAD Ostrava a.s. is a well-established transportation and logistics company in the Czech Republic with a history dating back to 1992 and roots from 1949. The company offers a broad range of services including international truck transport, spedition, logistics, vehicle servicing, and management of bus stations and real estate. The website reflects a professional and consistent brand presence targeting business clients and job seekers in the transport sector. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Maps API, and includes privacy and cookie consent mechanisms. Security posture is adequate with HTTPS and reCAPTCHA usage, though security headers and explicit policies could be improved. The domain WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the site is functional, secure, and compliant with GDPR, providing a trustworthy digital presence for the company.

Č

ČSAD LOGISTIK Ostrava a.s.

csadlogistik.cz

0

ČSAD LOGISTIK Ostrava a.s. is a Czech logistics and transportation company offering a wide range of services including domestic and international trucking, warehousing, customs services, and combined transport solutions. The company is part of the OSTRA GROUP holding, indicating a stable market position within the transportation sector in the Czech Republic. Their website presents a professional image with clear service offerings and contact information, targeting businesses requiring logistics solutions. Technically, the website is built on WordPress using Elementor and several JetPlugins, supported by modern SEO and GDPR compliance tools such as Yoast SEO and Complianz GDPR plugin. The site is mobile-optimized and includes cookie consent mechanisms, reflecting a mature digital infrastructure. Analytics and marketing tools like Google Tag Manager and Leady are used for tracking and retargeting, balanced with user privacy considerations. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent banners. However, additional security headers could be implemented to enhance protection. No exposed sensitive data or vulnerabilities were detected in the content. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, the website demonstrates a solid business and technical foundation with good privacy compliance and security posture. Strategic improvements in security headers and domain transparency could further strengthen trust and resilience.

A

ADIP, spol. s r. o.

adip.cz

0

ADIP, spol. s r. o. is a well-established distributor of automotive spare parts and accessories operating primarily in the Czech Republic and Slovakia. With over 34 years in the market, the company offers a comprehensive product catalog exceeding one million items from more than 300 suppliers, supported by a proprietary distribution system and customer e-commerce platform. The website reflects a professional business presence targeting automotive industry clients including truck, bus, and passenger vehicle operators. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, delivering a responsive and user-friendly experience. Security posture is adequate with HTTPS and GDPR compliance, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy and business credible, though the absence of WHOIS data slightly reduces domain trustworthiness.

V

Vimec Polska

vimecpolska.pl

0

Vimec Polska is a specialized company providing mobility and accessibility solutions primarily targeting seniors and individuals with disabilities. Their product range includes stairlifts, vertical platforms, stair climbers, and home lifts, designed to improve mobility within residential and public buildings. The company is part of the larger Vimec group, with a strong international presence indicated by multiple regional websites. The website is professionally designed using WordPress and Elementor, with good content quality and clear navigation. Privacy and cookie policies are implemented with Iubenda, reflecting GDPR compliance. However, WHOIS data for the domain is unavailable, which slightly impacts trustworthiness. The site uses HTTPS and modern web technologies but lacks some security headers and formal security policies.

V

Vimec

vimec.de

0

Vimec is a medium-sized company specializing in home lifts and platform lifts, with a strong international presence evidenced by 150,000 lift installations worldwide. The website targets the German market but is part of a broader international ecosystem with localized partner sites in multiple countries. The business model focuses on manufacturing and distributing accessibility and mobility solutions for residential environments. Technically, the website is built on WordPress using Elementor and Astra theme, with modern SEO and tracking tools implemented. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism via Iubenda, but lack explicit security headers and published security policies. Overall, the site demonstrates good professionalism and moderate trustworthiness but would benefit from enhanced privacy and security disclosures.