Is odtahova-sluzba-nonstop.cz Safe? Security Analysis for Pištora
Check if odtahova-sluzba-nonstop.cz is a scam or legitimate. Free security scan and reviews.
AI Summary
The website www.odtahova-sluzba-nonstop.cz represents a small Czech towing service company named Pištora, offering vehicle towing and related automotive services primarily in Prague and across the European Union. Their key offerings include 24/7 towing for vehicles and other loads up to 6 tons, insurance coverage for transported items, vehicle storage, and assistance with vehicle registration and repairs. The business targets vehicle owners and automotive service clients in need of reliable towing and transport solutions. Technically, the website uses legacy JavaScript libraries such as Prototype.js and Scriptaculous, along with Lightbox for image galleries, and integrates Google Analytics for visitor tracking. The site lacks modern CMS indications and shows basic design and navigation quality. Mobile optimization and accessibility are minimal, and no HTTPS enforcement or security headers were detected in the provided content, indicating a need for security improvements. From a security perspective, the absence of HTTPS and security headers, lack of privacy and cookie policies, and missing WHOIS registration data raise concerns about the website's security posture and trustworthiness. While the content is legitimate and relevant to the business, the lack of compliance with privacy regulations and security best practices exposes the site to potential risks. Overall, the website is functional and provides relevant business information but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and user safety.
Detected Technologies
🧠AI Business Intelligence
Technology stack, business insights, and market analysis powered by AI.
Business Intelligence
Market & Strategic Analysis
The company operates in the transportation sector, focusing on vehicle towing and automotive services within Prague and the broader EU market. It appears to be a small-sized local business with partnerships in the Czech automotive and transport industry. The business model revolves around service provision with additional offerings such as vehicle storage and rental. The website content suggests a stable but modest market position without evident expansion or digital transformation strategies. Revenue streams likely come from towing services, vehicle storage, and related automotive assistance. The absence of detailed company registration or VAT information limits deeper business intelligence insights. The partnership ecosystem includes Czech transport dispatchers, auto repair shops, and vehicle salvage yards, indicating a well-integrated local network.
Extracted Contact Information
Marketing Intelligence Data
Phone Numbers (1)
Security Posture Analysis
Comprehensive Security Assessment
The current security posture is weak due to the lack of HTTPS enforcement, absence of security headers, and no visible privacy or cookie policies. The use of outdated JavaScript libraries may introduce vulnerabilities if not properly maintained. No forms are present to analyze for secure data handling, but the presence of Google Analytics without privacy disclosures suggests moderate user tracking without compliance. The missing WHOIS data further reduces trust in domain legitimacy. Incident response and security policy information are not provided, indicating low maturity in security governance. The site would benefit from implementing HTTPS, security headers, privacy compliance measures, and transparent data protection policies to improve its security stance.
Strategic Recommendations
Priority Actions for Security Improvement
Implement HTTPS with a valid SSL/TLS certificate to secure all website traffic.
✨Observations
AI-powered comprehensive website and business analysis.
AI-Enhanced Website Analysis
Business Insights
Pištora
Odtahová služba Praha provides national and international vehicle towing services including transport of vehicles and other loads up to 6 tons across the EU, with 24/7 availability and insurance coverage. Additional services include vehicle storage, rental of replacement vehicles, auto repair recommendations, and assistance with vehicle registration and inspections.
basic
moderate
Technical Stack
moderate
poor
basic
basic
Security Assessment
- Use of Google Analytics with asynchronous loading
Analytics & Tracking
Advertising & Marketing
Website Quality Assessment
Key Observations
Website is accessible with full content and no blocking detected
🛡️Security Headers
HTTP security headers analysis and recommendations.
Security Headers
HTTP security headers analysis
Missing Strict-Transport-Security header
HIGHForces HTTPS connections
Missing X-Frame-Options header
HIGHPrevents clickjacking attacks
Missing X-Content-Type-Options header
MEDIUMPrevents MIME type sniffing
Missing Content-Security-Policy header
HIGHControls resources the browser is allowed to load
Missing X-XSS-Protection header
MEDIUMLegacy XSS protection (deprecated but still recommended)
Missing Referrer-Policy header
LOWControls referrer information sent with requests
Missing Permissions-Policy header
MEDIUMControls browser features and APIs
Sensitive data may be cached
LOWCache-Control header should include "no-store" for sensitive pages
👤GDPR Compliance
Privacy and data protection assessment under GDPR regulations.
GDPR Compliance
Privacy and data protection assessment
No Privacy Policy found
HIGHGDPR requires a clear and accessible privacy policy
No Cookie Policy found
HIGHGDPR requires clear information about cookie usage
No Cookie Consent Banner found
HIGHGDPR requires explicit consent for non-essential cookies
EU business without adequate privacy measures
CRITICALEU businesses are subject to strict GDPR requirements
Third-party services without privacy policy
HIGHDetected services: Google Analytics
GDPR Compliance Analysis
🛡️NIS2 Compliance
Network & Information Security Directive compliance assessment.
NIS2 Compliance
Network & Information Security Directive
No information security framework found
HIGHNIS2 requires documented cybersecurity and information security measures
No vulnerability disclosure policy
MEDIUMNIS2 encourages coordinated vulnerability disclosure
No security policy documentation found
HIGHNIS2 requires documented cybersecurity governance and risk management
No incident response procedures found
HIGHNIS2 requires documented incident response and business continuity plans
No business continuity planning found
MEDIUMNIS2 emphasizes operational resilience and business continuity
No security contact information
HIGHNIS2 requires clear incident reporting channels
No vulnerability reporting mechanism
MEDIUMClear vulnerability reporting supports coordinated disclosure
No NIS2 reference found
LOWConsider explicitly mentioning NIS2 compliance efforts
Critical sector without clear security compliance
HIGHDetected sectors: digital
📧Email Security
SPF, DKIM, and DMARC validation and email security assessment.
Email Security
SPF, DKIM, and DMARC validation
No DKIM record found
MEDIUMDKIM adds cryptographic signatures to emails
No BIMI Record
LOWBIMI displays brand logos in email clients
No MTA-STS Policy
MEDIUMMTA-STS enforces TLS for email delivery
No TLS-RPT Record
LOWTLS-RPT provides reporting for email TLS issues
No email authentication configured
CRITICALDomain is vulnerable to email spoofing
🏆SSL/TLS Security
Certificate validity and encryption analysis.
SSL/TLS Security
Certificate validity and encryption analysis
SSL Certificate Expires Within 90 Days
MEDIUMSSL certificate expires in 87 days
Mixed Content Detected
MEDIUM6 resources loaded over insecure HTTP
Partial SSL/TLS Assessment
LOWCompleted 2 of 4 security checks due to time constraints
Certificate Details
OCSP Status
📊DNS Health
DNS configuration and security assessment.
DNS Health
DNS configuration and security assessment
DNSSEC Not Enabled
MEDIUMDNSSEC is not configured for this domain
CAA Records Not Configured
LOWCertificate Authority Authorization (CAA) records not found
No DMARC Record
MEDIUMDMARC policy not configured
Domain Registration Details
DNS Records
DNSSEC Status
DNS Performance
⚡Network Security
Port scanning and network exposure analysis.
Network Security
Port scanning and network exposure analysis
Good Network Security Posture
LOWNo unnecessary services detected on common risky ports
🔧Technical Analysis
Detailed technical findings and analysis from AI assessment.
Technical Analysis
Comprehensive security assessment findings