Hospitality security reports

Praní a čištění, s.r.o. is a well-established Czech laundry service company specializing in textile rental and cleaning services for hotels, spas, healthcare, social services, and workwear. The company emphasizes hygiene compliance, quality service, and long-standing tradition in the industry. Their website is professionally designed, content-rich, and targets institutional clients in hospitality and healthcare sectors. Technically, the site runs on WordPress with modern JavaScript libraries and includes secure form handling with SSL encryption. However, the absence of WHOIS data and cookie consent mechanisms slightly reduce trust and compliance scores. Security posture is generally good with HTTPS and secure forms, but could be improved with additional security headers and explicit policies. Overall, the website presents a credible business with room for enhanced privacy and security transparency.

T

Tirol Werbung

tirol.at

0

The website www.tirol.at serves as the official tourism portal for the Tirol region in Austria, operated by Tirol Werbung. It provides comprehensive travel guides, activity suggestions, accommodation options, and cultural information targeting tourists and travelers interested in visiting Tirol. The site is well-positioned as a regional tourism authority, offering key services such as newsletters, event information, and interactive maps to enhance visitor experience. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including Google Tag Manager for analytics, Usercentrics for consent management, and captcha.eu for form security. The website demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a professional and user-friendly digital presence. From a security perspective, the site enforces HTTPS, employs captcha on forms, and integrates consent management for GDPR compliance. While explicit security headers are not visible in the HTML, the overall security posture is strong with no exposed sensitive data or vulnerabilities detected. However, the absence of a public security policy or incident response contact is noted. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The lack of WHOIS data due to privacy protection does not detract from its legitimacy given the consistent branding, official contact information, and comprehensive content. Strategic recommendations include enhancing visible security headers and publishing a security policy to further strengthen trust.

L

Lehnen Websolutions GmbH & Co. KG

resavio.com

0

RESAVIO is a German-based company offering a comprehensive cloud-based hotel management software suite that integrates property management, channel management, online booking, and digital guest services. The company targets a broad range of accommodation providers including hotels, pensions, hostels, holiday apartments, and camping sites. With over 15 years of experience, RESAVIO positions itself as a trusted solution for direct booking optimization and online distribution. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content to its target audience. Technically, the website uses modern web technologies with a custom-built platform, ensuring good performance and mobile responsiveness. Security is well addressed with HTTPS and CSRF protection, though some advanced security headers and explicit security policies are not publicly visible. Privacy compliance is strong, with comprehensive privacy and cookie policies and a consent mechanism in place. The security posture is solid with no visible vulnerabilities or exposed sensitive data. The domain registration data aligns well with the business claims, enhancing trustworthiness. Social media presence and client testimonials further reinforce credibility. Overall, the website and business demonstrate a mature digital presence with good security and privacy practices. Strategically, RESAVIO should consider publishing explicit security policies and incident response contacts, enhancing security headers, and possibly adding a security.txt file to improve transparency and vulnerability management. These steps would further strengthen trust and compliance in the hospitality software market.

O

Holidays in Ötztal | Ötztal | oetztal.com

oetztal.xyz

0

The website www.oetztal.com serves as a tourism and holiday information portal for the Ötztal region, offering a variety of activity options for summer and winter visitors. The site targets tourists and holidaymakers interested in exploring the region, providing content focused on travel planning and local attractions. The business model appears to be centered on tourism promotion and information dissemination, with partnerships to related regional tourism sites. Technically, the website employs modern JavaScript libraries and tools such as Google Tag Manager and Cookiebot for analytics and cookie compliance, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS usage and cookie consent mechanisms, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration transparency. Overall, the site is safe for general audiences and does not contain adult or questionable content.

Hotel Bruno GmbH operates a family-run hotel located in Sölden, Tirol, Austria, catering primarily to tourists interested in skiing, hiking, and mountain biking. The hotel offers accommodation, wellness facilities, and dining services, positioning itself as a convenient and well-located lodging option near ski lifts and outdoor activities. The website is built on WordPress with Elementor and includes modern web technologies, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS data is unavailable, which slightly reduces trustworthiness. Overall, the site is professional, GDPR compliant, and safe for general audiences.

B

4 Sterne Hotel Ötztal | Längenfeld | Zimmer, Suiten & Ferienwohnungen

bergwelt.at

0

The website bergwelt.at represents a small hospitality business, specifically a 4-star hotel located in Ötztal, Längenfeld, Austria. It offers accommodation services including rooms, suites, and holiday apartments targeting tourists and travelers in the region. The website is built on WordPress using Elementor and Yoast SEO, indicating a moderate level of digital maturity with good SEO and mobile optimization. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information, limits its compliance and user trust. Security posture is weak due to missing security headers and unclear SSL configuration. Overall, the site is functional and professional but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

H

Hotel Alpenland

alpenland-obergurgl.at

0

Hotel Alpenland is a family-operated 4-star hotel located in Obergurgl, Austria, offering accommodations, wellness, and outdoor activity services targeting leisure travelers and families. The website is professionally designed using WordPress and Elementor, featuring modern technologies and integrated analytics with GDPR-compliant cookie consent. Security posture is strong with HTTPS and security headers, though explicit security and privacy policies are absent. The domain registration is consistent with the business identity, indicating legitimacy. Overall, the site presents a trustworthy and user-friendly digital presence for the hospitality business.

G

Gemeinde Zams - Tourismusverband TirolWest Freizeit- und Veranstaltungs OG

zammer-lochputz.at

0

Zammer Lochputz is a regional tourism website promoting a natural gorge and outdoor excursion destination in Tyrol, Austria. The site provides detailed visitor information including opening hours, prices, guided tours, and local legends, targeting tourists and families interested in nature and hiking. The business operates as a small regional tourism entity under the Gemeinde Zams and TirolWest tourism association. Technically, the website uses Contao CMS with jQuery and integrates Matomo and Facebook Pixel for analytics and marketing. The site is mobile optimized and well-structured with good content quality. Security posture is moderate with HTTPS enabled and cookie consent implemented, but missing reCAPTCHA keys and lack of security headers reduce security maturity. No terms of service or explicit security policies are present. Overall, the website is trustworthy and professional, serving its tourism audience effectively.

H

Hotel & Therme AQUA DOME

aqua-dome.at

0

Hotel & Therme AQUA DOME is a premium alpine spa hotel located in the Ötztal valley, Tyrol, Austria. It offers a comprehensive wellness experience including thermal baths, spa treatments, fitness facilities, and culinary services. The business targets wellness tourists, couples, families, and singles seeking relaxation and alpine experiences. The website is professionally designed, mobile optimized, and provides clear navigation and booking options. Technically, it uses modern frameworks such as Next.js and React, with integrated consent management and advertising pixels. Security posture is good with HTTPS and consent mechanisms, though explicit security headers and incident response policies are not publicly documented. The domain WHOIS data is unavailable, likely due to privacy protection, but the website's trust indicators and certifications support its legitimacy. Overall, the site demonstrates a mature digital presence aligned with hospitality industry standards.

P

Panorama Peak Apartment

panoramapeak-apartment.at

0

Panorama Peak Apartment is a small hospitality business offering a modern vacation apartment in Längenfeld, Austria, targeting tourists interested in ski and hiking holidays. The website is built on the Wix platform, utilizing Wix's proprietary technologies and hosting services. The technical infrastructure is standard for Wix sites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and some JavaScript hardening, but lacks explicit security headers and privacy policies. The absence of WHOIS data reduces transparency and trustworthiness. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

H

Hotel Restaurant Grauer Bär

grauer-baer.com

0

Hotel Restaurant Grauer Bär is a small hospitality business located in Sölden, Austria, offering alpine hotel accommodation and regional culinary experiences. The website is professionally designed using TYPO3 CMS, featuring multilingual support and integrated booking and wellness services. The technical infrastructure includes modern JavaScript libraries and Google Analytics for visitor tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. The domain WHOIS data is unavailable, which raises some concerns about registration transparency but the website content and contact information support business legitimacy. Overall, the site provides a good user experience with clear navigation and relevant content for tourists seeking alpine hospitality.

G

Geierwallihof

geierwallihof.at

0

Geierwallihof is a small family-run hospitality business located in Vent, Austria, offering mountain lodging and traditional Tyrolean cuisine at 2,000 meters altitude. The website reflects a well-established business with a strong local heritage dating back to 1985, supported by positive customer reviews and comprehensive service offerings. Technically, the site is built on Joomla CMS with modern frameworks like UIkit and Leaflet.js, providing a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain trust analysis but external trust signals and professional presentation support legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations.

L

Landhaus Schöpf Romed

schoepf-romed.at

0

Landhaus Schöpf Romed is a small hospitality business located in the Ötztal region of Austria, providing accommodation services to tourists and visitors. The website is professionally designed using WordPress with Elementor and supports multilingual content via TranslatePress. It incorporates a comprehensive cookie consent mechanism ensuring GDPR compliance and user privacy. Contact information including email, phone, and a contact form is clearly presented, enhancing business credibility. The website uses Google Maps and Google reCAPTCHA services with explicit user consent, reflecting good privacy practices. However, no explicit security policy or incident response information is provided, which could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses and does not raise immediate concerns.

D

Dismasnhof

dismasnhof.at

0

Dismasnhof is a hospitality business based in Austria, providing accommodation services likely targeted at general visitors and tourists. The website is built on WordPress using Elementor and includes a professional cookie consent mechanism ensuring GDPR compliance. The site is accessible without any WAF or security challenges, indicating good availability and user experience. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not published. The domain WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is common for small hospitality businesses. Overall, the website demonstrates a good balance of business professionalism, privacy compliance, and security best practices.

Ö

Ötztal Tourismus

oetztaltourismus.com

0

Ötztal Tourismus operates a B2B information and service portal focused on tourism in the Ötztal region of Austria. The website serves as a resource for local accommodation providers and tourism professionals, offering marketing campaign details, product development updates, and service ordering options. The organization positions itself as a regional tourism authority with a medium-sized operational scale. Technically, the website employs modern JavaScript libraries and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain reduces confidence in domain registration legitimacy, but the website content and technical setup indicate a professional and trustworthy entity. Strategic recommendations include enhancing security headers, publishing security policies, and improving contact information visibility.

G

Gurgl Carat

gurgl-carat.com

0

Gurgl Carat is a professional event and congress venue located in the Ötztal/Tirol region of Austria, catering to events with up to 500 attendees. The website presents a modern and well-structured digital presence, utilizing advanced technologies such as Google Tag Manager, Cookiebot for cookie consent management, and interactive JavaScript libraries. The site is mobile optimized and provides a good user experience with clear navigation and relevant content focused on event hosting services. However, the absence of publicly accessible privacy policy and terms of service pages, as well as missing contact information, limits full transparency and user trust. The security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks some security headers and vulnerability disclosure mechanisms. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and should be further investigated. Overall, the website is functional and professional but would benefit from enhanced compliance documentation and security best practices.

G

Winter & summer holidays | Gurgl | gurgl.com

gurgl.com

0

The website www.gurgl.com presents itself as a tourism and hospitality platform focused on alpine holidays in Obergurgl & Hochgurgl, offering skiing, hiking, and nature relaxation experiences. The content is professionally presented with good design quality and clear navigation, targeting tourists and holidaymakers interested in alpine vacations. The technical infrastructure includes modern JavaScript libraries and modules, Google Tag Manager, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent mechanisms denying ad personalization by default, but lacks explicit security headers and published security policies. The absence of WHOIS registrant data and privacy policy pages introduces some trust concerns. Overall, the site is functional and professional but could improve transparency and security practices.

O

Holidays in Ötztal | Ötztal | oetztal.com

oetztal.com

0

The website www.oetztal.com serves as a regional tourism portal for the Ötztal valley in Austria, offering comprehensive information about holiday options, activities, and seasonal events. It targets tourists and holidaymakers interested in exploring the region, providing a user-friendly platform to plan vacations. The site leverages modern web technologies including JavaScript frameworks and third-party services such as Google Tag Manager and Cookiebot for analytics and privacy compliance. Despite the lack of WHOIS data, the website presents a professional and trustworthy front with good content quality and user experience. Security posture is moderate with HTTPS enforced and cookie consent implemented, though improvements in security headers and explicit privacy policies are recommended. Overall, the site is suitable for general audiences and maintains a good balance between functionality and compliance.

Ö

Ötztal

oetztal-hub.com

0

Ötztal.com is a professionally designed tourism website promoting the Ötztal valley in Austria as a year-round holiday destination. It offers comprehensive information about summer and winter activities, targeting tourists and holidaymakers. The site uses modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The presence of detailed cookie consent mechanisms indicates a good level of privacy awareness. However, the absence of explicit privacy policy and terms of service pages in the analyzed content is a gap. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy despite the professional appearance of the website. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but security headers are not detected and no incident response or security policy information is found. Overall, the site is safe and trustworthy for general audiences, but domain registration status should be verified for full trust.

Hotel pro kočky Trubská is a specialized hospitality service provider offering premium boarding and care for cats in the Czech Republic. Established in 2008, the business targets cat owners seeking luxury accommodation with features such as temperature-controlled rooms, secured balconies, veterinary care, and online webcam monitoring. The website reflects a small local business with clear contact information and a focused service offering. Technically, the site uses common web technologies including jQuery, Bootstrap, and Google Analytics, hosted likely via WEDOS, a Czech hosting provider. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is basic, with HTTPS usage implied but missing explicit security headers and advanced protections on forms. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced security and compliance measures.

Služby Boskovice s.r.o. is a municipal service provider in Boskovice, Czech Republic, offering a wide range of public amenities including city baths, sports facilities, sauna, camping, and energy services. The website serves as an information portal for schedules, pricing, events, and contact details, targeting local residents and visitors. The business operates in hospitality and public services sectors with a medium-sized local presence. Technically, the website uses legacy JavaScript libraries such as jQuery 1.6.1 and includes Google Analytics for visitor tracking. The site implements a cookie consent banner but lacks a formal privacy policy and visible security headers, indicating partial privacy compliance and security posture. WHOIS data is missing, which raises concerns about domain registration transparency but does not negate the apparent legitimacy of the municipal services presented. Overall, the website is functional with basic design and navigation but requires modernization and improved security practices.

K

Kultura Boskovice

kulturaboskovice.cz

0

Kultura Boskovice operates a well-structured cultural event website serving the Boskovice region in the Czech Republic. The site provides comprehensive listings of cultural events, including concerts, theater, festivals, and courses, targeting local residents and visitors interested in cultural activities. The business model is primarily non-profit and community-focused, offering event information and linking to ticket sales via a trusted external platform. The website is built on Drupal 10, leveraging modern web technologies and ensuring good mobile responsiveness and accessibility.

P

Posilovna GYM13

gym13.cz

0

Posilovna GYM13 is a small fitness center located in Modřice near Brno, Czech Republic, offering gym facilities, personal training, and a related e-commerce platform for fitness supplements under FITNESS13. The business emphasizes quality equipment, a clean environment, and customer service. Technically, the website uses modern web technologies including Google Analytics, jQuery, and Mapy.cz API, with a moderate performance and basic mobile optimization. Security posture is moderate with HTTPS implied but lacking visible security headers and privacy compliance elements such as privacy and cookie policies. The absence of WHOIS data reduces transparency but the website content and contact information appear legitimate. Overall, the site is professional and trustworthy but could improve compliance and security practices.

H

Hradby restaurant s.r.o.

hradby.cz

0

Restaurace Hradby is a small hospitality business based in the Czech Republic, specializing in Italian pizza baked in a wood-fired rotary oven, daily menus, weekend specialties, burgers, local beer, and accommodation services. The company operates a professional website with clear branding and an online ordering partner site. The website is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy or security policies. The absence of WHOIS data raises concerns about domain legitimacy, though the website content and business information appear consistent and professional. Overall, the site is functional and trustworthy for general users but would benefit from enhanced transparency and security documentation.

Y

Yogiam

yogiam.cz

0

Yogiam is a small Czech wellness business specializing in yoga, massage, nutrition counseling, and accommodation rental. The website presents a professional and well-structured digital presence with clear service offerings and contact information. The business targets general wellness and yoga enthusiasts in the local region. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile responsiveness and SEO optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and social media presence support legitimacy. Overall, Yogiam demonstrates a solid foundation for a small wellness business with room for improvement in privacy and security transparency.

B

Beast gym

beastgym.cz

0

Beast gym is a small fitness and combat sports facility located in Slavkov u Brna, Czech Republic. The business offers a variety of services including gym facilities with quality equipment, combat sports training such as boxing and kickboxing, solarium services, Power Plate conditioning, personal training, and a fitness bar. The website is professionally designed, targeting fitness enthusiasts and local community members interested in health and sports activities. The business appears to be active since at least 2020, with a clear focus on providing comprehensive fitness and wellness services in a local market. Technically, the website is built on WordPress 6.6.2 with a modern tech stack including Bootstrap, jQuery, and various plugins for UI enhancements like carousels and lazy loading. The site is mobile optimized and SEO friendly, with good content structure and metadata. Performance is moderate, with room for improvement in accessibility features. Security posture is decent with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and formal vulnerability disclosure mechanisms. The security evaluation shows no critical vulnerabilities or exposed sensitive data, but the absence of WHOIS data raises concerns about domain registration transparency. The website includes clear contact information and social media presence, enhancing business credibility. Privacy compliance is addressed with a cookie policy and privacy policy linked, indicating GDPR awareness. Overall, Beast gym presents a trustworthy and professional online presence for a local fitness business, but should improve domain registration transparency and enhance security headers to strengthen trust and security posture further.

S

STROJÍRNA OSLAVANY, spol. s.r.o.

permonium.cz

0

Permonium is a Czech Republic-based family entertainment park operated by STROJÍRNA OSLAVANY, spol. s.r.o. The park offers a unique blend of educational and recreational activities targeting schools, families, and corporate clients. Its services include themed attractions, events, e-ticketing, and gift vouchers, positioning it as a regional leader in hospitality and leisure. The website is built on WordPress with modern front-end technologies and integrates third-party services such as Google Analytics and Facebook SDK for marketing and analytics purposes. GDPR compliance and cookie consent mechanisms are well implemented, reflecting a mature approach to privacy. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts trustworthiness. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site is professional, user-friendly, and content-rich, supporting a positive user experience and business credibility.

E

Era Restaurant

era-restaurant.com

0

Era Restaurant is a hospitality business based in Brussels, offering dining services including private rooms. The website is built using modern frontend technologies such as Bootstrap and Font Awesome, indicating a moderate level of digital maturity. However, the lack of WHOIS registration data raises concerns about domain legitimacy. The website lacks critical compliance documents such as privacy and cookie policies, and no contact information is explicitly provided, which impacts business credibility and trust. Security posture is weak due to missing security headers and unknown SSL configuration. Overall, the site is functional and visually professional but requires significant improvements in security, compliance, and transparency to enhance trustworthiness and regulatory adherence.

Y

Yokan Lodge

yokanlodge.com

0

Yokan Lodge is a luxury hospitality business located in the Sine Saloum region of Senegal, offering suites, villas, and tents in a natural setting. The website presents a professional image with clear branding and social media presence, targeting tourists and travelers seeking upscale accommodation. The technical infrastructure leverages modern frontend technologies such as Bootstrap, jQuery, and FontAwesome, providing a responsive and visually appealing user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with no evident security headers or privacy policies, indicating room for improvement in compliance and protection measures. Overall, the website is functional and content-rich but requires enhancements in security and privacy compliance to strengthen trust and reduce risk.

A

Artfood Traiteur

artfood.be

0

Artfood Traiteur is a small hospitality business specializing in organic and sustainable event catering services based in Brussels, Belgium. The company targets both professional and private clients, offering bespoke catering for weddings, corporate events, and private parties with a strong emphasis on environmental responsibility and quality gastronomy. The website reflects a professional and consistent brand image supported by multiple recognized sustainability certifications. Technically, the site is built on WordPress using modern frameworks like Bootstrap and integrates Google Analytics, Tag Manager, and reCAPTCHA for analytics and security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers and formal security policies are absent. The WHOIS data is restricted by the registry, which is common for privacy protection and justified for this business type. Overall, the website is trustworthy, well-structured, and compliant with privacy norms, though it lacks explicit privacy and terms of service pages.

M

Mirai Summer Fest 2024

miraifest.cz

0

Mirai Summer Fest is a regional event promotion website focused on organizing and marketing a summer music festival across fourteen cities in the Czech Republic. The site provides event information, ticket sales via a partner domain, and engages users with multimedia content and social media integrations. The business model centers on live event promotion and ticketing, targeting a general audience interested in music and entertainment. Technically, the website is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and various analytics and marketing tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site uses HTTPS and a cookie consent mechanism but lacks visible security headers and explicit privacy or terms of service pages, which are recommended for compliance and trust. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, though the website content and technology usage suggest a legitimate business operation. Overall, the site is professionally designed and safe for general audiences, with room for improvement in security and compliance documentation.

V

Vinofol, s.r.o.

veltlinium.cz

0

Veltlinium.cz is a Czech Republic-based hospitality business specializing in wine tasting and event hosting. The company operates a degustation cellar offering quality wines, sparkling wines, juices, and homemade delicacies in a scenic environment near the Novomlýnská lakes. Their services include hosting corporate and private events with a capacity of up to 140 guests. The business is relatively young, founded around 2019, and is operated by Vinofol, s.r.o., a registered Czech company. The website reflects a professional and consistent brand image with clear contact details and social media presence, targeting mature audiences interested in wine and events. Technically, the website employs modern front-end technologies including Bootstrap, Semantic UI, jQuery, and Owl Carousel. It integrates Google Tag Manager and Google Analytics with a cookie consent mechanism, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, no CMS or hosting provider details are explicitly identified. From a security perspective, the site enforces HTTPS and uses consent-based tracking scripts. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with no visible privacy policy or terms of service pages, though cookie consent is implemented. Overall, the website presents a trustworthy and legitimate business with a solid digital presence. Strategic improvements in privacy documentation, security headers, and incident response transparency would enhance compliance and security posture. The risk level is moderate with no critical issues detected.

A

AIRA Fitness s.r.o.

friendsfit.cz

0

Friends Fitness, operated by AIRA Fitness s.r.o., is a well-established fitness center in Brno, Czech Republic, founded in 2014. The company offers a broad range of fitness and wellness services including group classes, personal training, advanced fitness technologies, nutritional counseling, and wellness treatments. Their market position is that of a local fitness provider with a strong community focus and personalized service offerings. The website reflects a good level of digital maturity, utilizing modern JavaScript libraries and APIs such as Google Maps, FullCalendar, and reCAPTCHA for enhanced user experience and security. However, some SEO and privacy compliance aspects could be improved. Security posture is solid with HTTPS and spam protection, but lacks visible security headers and formal security policies. Overall, the business demonstrates credibility with clear contact information, customer testimonials, and active social media presence.

D

DISH Digital Solutions GmbH

hd.digital

0

DISH Digital Solutions GmbH operates a professional website offering SaaS digital solutions tailored for restaurants and food service businesses. The company provides tools for managing online reservations and orders, enabling restaurants to create their own websites and reduce dependency on third-party aggregators. With over 350,000 restaurants using their solutions, DISH holds a strong market position in the hospitality technology sector. The website content is well-structured, professionally designed, and targets restaurant owners seeking digital transformation. Technically, the website leverages modern technologies including Google Tag Manager, Google Analytics, Adobe Experience Platform Launch, and Usercentrics for consent management, built on a WordPress CMS. The site is mobile-optimized and integrates Google reCAPTCHA v3 for form security. SEO practices are implemented via Yoast SEO plugin, contributing to good search visibility. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks explicit security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection. No exposed sensitive data or vulnerabilities were detected. Privacy compliance is partial; while consent management is present, no explicit privacy or cookie policy pages were found. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website presents a low risk profile with strong business credibility and technical maturity. The lack of WHOIS transparency due to redacted data is common for this business type and does not raise immediate concerns. Strategic improvements in privacy documentation, security headers, and direct contact channels would further strengthen trust and compliance.

D

Dernier Quartier Général de Napoléon

dqgn.be

0

Dernier Quartier Général de Napoléon operates a historical museum located in Belgium, dedicated to Napoleon's last headquarters. The museum offers exhibitions, educational programs, and events targeting a broad audience including families and history enthusiasts. It holds a niche position in cultural heritage tourism near the Battle of Waterloo site. The website is multilingual and professionally designed, reflecting a well-maintained digital presence. Technically, the site is built on WordPress with Elementor and OceanWP theme, integrating modern web technologies and SEO best practices. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though security headers could be improved. WHOIS data is restricted, limiting domain ownership transparency, but the website's association with official regional domains and social media presence supports its legitimacy. Overall, the site is trustworthy, user-friendly, and compliant with privacy regulations.

D

Destination Brabant wallon

waterlooandbeyond.be

0

Destination Brabant wallon is a regional tourism organization promoting the Walloon Brabant province in Belgium. The website offers comprehensive tourism information including themed trips, cultural events, accommodation booking, and interactive maps. It targets tourists and visitors interested in exploring the region's heritage, leisure, and family activities. The site is built on WordPress with Elementor and WooCommerce, integrating modern web technologies and third-party booking services. Privacy and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. WHOIS data is restricted by registry policy, but the website's professional presentation and official branding support its legitimacy. Overall, the site is a high-quality, trustworthy tourism portal with good technical and security maturity.

S

Summer holidays & Winter holidays | Sölden | soelden.com

soelden.com

0

The website www.soelden.com serves as a tourism portal for the Sölden region in Austria, promoting summer and winter holiday activities such as skiing, biking, and hiking. The site targets tourists and outdoor sports enthusiasts, providing information and services related to alpine nature exploration and urban experiences in the valley. The business model focuses on destination marketing and visitor engagement, positioning itself within the hospitality industry. The website demonstrates a good level of content quality and branding consistency, with a professional design and clear navigation. From a technical perspective, the site employs modern JavaScript libraries including GSAP, Swiper, Leaflet, and Rive, alongside Google Tag Manager and Cookiebot for analytics and cookie consent management. The performance is moderate with good mobile optimization, though accessibility features are basic. No CMS or hosting provider details were identified from the provided data. Security posture shows room for improvement; while HTTPS is presumably enabled (not explicitly confirmed), no security headers were detected in the analyzed content. The site implements a cookie consent mechanism, indicating some privacy compliance efforts, but lacks visible privacy policy, terms of service, or security incident contact information. The WHOIS data is unavailable, raising concerns about domain registration legitimacy. Overall, the website is functional and professionally presented but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration to improve trustworthiness and compliance.

D

Destination Brabant wallon

destinationbw.be

0

Destination Brabant wallon is a regional tourism organization promoting the Brabant wallon province in Belgium. The website offers comprehensive information on attractions, events, accommodations, and activities, targeting tourists and families. It integrates booking widgets from reputable partners to facilitate direct reservations. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern web technologies and performance optimizations. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is restricted due to registry policy, but the website content and structure indicate a legitimate and professional entity. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations.

PRAGOPERUN, spol. s r.o. is a Czech-based company specializing in the supply, servicing, and modernization of industrial laundry equipment primarily serving the Czech and Slovak markets. The company positions itself as a leading provider with over 30 years of experience, offering a comprehensive range of services including machinery sales, professional warranty and post-warranty servicing, laundry marking, project financing, and consulting. Their target audience includes industrial laundries, hospitality sectors such as hotels and restaurants, healthcare, social care, and government institutions. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their business clientele. Technically, the website is built on the MySUITU CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper for interactive elements. The site is mobile optimized with good SEO practices and loads at a moderate speed. Security-wise, the website enforces HTTPS and uses secure forms with GDPR consent checkboxes, but lacks advanced security headers and a cookie consent mechanism. No WHOIS data was retrievable, which raises some concerns about domain registration transparency. Overall, the security posture is solid but could be improved by implementing additional HTTP security headers and formalizing security policies. The absence of WHOIS data and cookie consent are notable gaps in compliance and trust. The business appears credible and well-established based on website content and partner affiliations, but domain registration opacity slightly reduces trustworthiness. Strategic improvements in privacy compliance and security transparency would enhance the company’s digital maturity and customer confidence.

A

Avenue Restaurace

avenuejihlava.cz

0

Avenue Restaurace is a newly established hospitality business located in Jihlava, Czech Republic, offering international cuisine with a focus on fresh ingredients and a unique dining experience in a two-story glass space. The restaurant caters to a broad audience including local residents, tourists, and event organizers, providing services such as dine-in, catering, private event hosting, takeaway, and wedding receptions. The business leverages a modern digital presence with multilingual support and integrated reservation systems to enhance customer engagement. Technically, the website is built on the Dish.co platform, utilizing modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Adobe Dynamic Tag Management for analytics and marketing. The site is mobile-optimized with good SEO practices and accessibility features, although some improvements in security headers and performance optimization could be made. From a security perspective, the website employs HTTPS and cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are absent, suggesting room for improvement in formal security governance. The WHOIS data aligns well with the business claims, indicating a legitimate and consistent registration. Overall, Avenue Restaurace presents a professional and trustworthy online presence suitable for its hospitality market segment. Strategic enhancements in security policy transparency and technical hardening would further strengthen its risk posture and customer trust.

The website apartman-medulin.cz represents a small hospitality business specializing in vacation apartment rentals in Medulin, Croatia. It targets tourists seeking comfortable and modern accommodation near the sea and local attractions. The site provides detailed descriptions of the apartments and the surrounding area, emphasizing the natural beauty and amenities of Medulin. The business appears to be locally focused with a clear service offering in the hospitality sector. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Contact Form 7, with jQuery and Owl Carousel for interactive elements. The site is mobile optimized and loads with moderate performance. However, there is a lack of advanced SEO and accessibility features, and no evident analytics or marketing tools are integrated. From a security perspective, the site uses HTTPS, which is a positive indicator. However, no security headers are detected, and there is no visible privacy or cookie policy, which are important for GDPR compliance and user trust. The absence of WHOIS data reduces domain trustworthiness and raises concerns about domain registration transparency. Overall, the website is functional and provides relevant content for its target audience but lacks in privacy compliance and security best practices. Strategic improvements in these areas would enhance trust and legal compliance.

D

Dernier Quartier Général de Napoléon

dernier-qg-napoleon.be

0

Dernier Quartier Général de Napoléon operates a specialized museum located in Belgium, dedicated to Napoleon's Last Headquarters, offering historical exhibitions and intergenerational events. The museum targets families, history enthusiasts, and tourists interested in the Napoleonic era and the Battle of Waterloo. The website is multilingual and professionally designed, providing comprehensive visitor information and event details. The business model focuses on cultural heritage preservation and tourism engagement. Technically, the site is built on WordPress with Elementor and OceanWP theme, integrating Google Analytics and Tag Manager for visitor tracking, and employs a cookie consent mechanism to comply with privacy regulations. Security posture is solid with HTTPS and no evident vulnerabilities, though security headers could be improved. WHOIS data is restricted, limiting domain ownership transparency, but the website's content and external links to official tourism and historical sites support its legitimacy. Overall, the site is trustworthy, user-friendly, and compliant with GDPR requirements.

C

Château d'Hélécine

chateaudhelecine.be

0

Château d'Hélécine is a cultural and recreational venue located in Hélécine, Belgium, offering visitors access to a historic castle, park, and various leisure activities including mini-golf, fishing, and a pop-up bar. The site targets tourists, families, and local visitors, with a focus on promoting regional tourism and outdoor activities. The business is affiliated with the Province du Brabant wallon, indicating a public or governmental backing. The website is multilingual, supporting French, Dutch, and English, enhancing accessibility for diverse visitors. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Slider Revolution, hosted by OVH. It uses HTTPS and modern web technologies, providing a moderate performance and good mobile responsiveness. SEO is well addressed with structured data for events and proper meta tags. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide a cookie consent mechanism or detailed privacy policy, which are important for GDPR compliance. There is no incident response or vulnerability disclosure information available. The site does not appear to be behind a WAF or security challenge, and no critical vulnerabilities were detected in the visible content. Overall, the website is professionally designed and trustworthy for its intended audience but would benefit from enhanced privacy compliance, security headers, and transparency regarding data protection and incident response to improve its security posture and regulatory adherence.

K

Kraj pod Javořicí, z.s.

krajpodjavorici.cz

0

Kraj pod Javořicí, z.s. operates a professional and content-rich official tourism portal focused on promoting the natural and cultural attractions of the Kraj pod Javořicí region in the Czech Republic. The website targets tourists interested in exploring the towns of Telč, Třešť, and Počátky, offering event calendars, gastronomic tips, accommodation information, and newsletters. The organization appears to be a small non-profit destination management entity dedicated to regional tourism promotion. Technically, the website is built on Drupal 9, leveraging modern web technologies such as Google Analytics, Google Tag Manager, and CookieHub for cookie consent management. The site is mobile-optimized with good SEO practices and clear navigation, providing a positive user experience. However, some security headers are not explicitly detected, and there is no published privacy policy or terms of service, which are areas for improvement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosures, and comprehensive privacy documentation. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and presentation suggest a trustworthy organization. Overall, the site demonstrates a solid digital presence for a regional tourism entity but would benefit from enhanced privacy and security documentation to improve compliance and trustworthiness.

P

Popeyes

popeyeschicken.cz

0

The website represents Popeyes, a restaurant chain specializing in chicken products, targeting customers in the Czech Republic. The site is built using modern web technologies such as React and Webpack, with integration of LaunchDarkly for feature management. However, the content is minimal with loading placeholders visible, indicating incomplete or dynamically loaded content. There is a lack of visible privacy, cookie, or terms of service policies, and no contact information is provided, which impacts user trust and compliance. Security headers and SSL configuration details are not evident from the provided data, suggesting room for improvement in security posture. The WHOIS data is unavailable, which raises concerns about domain legitimacy and transparency. Overall, the website is accessible but lacks comprehensive content and compliance features, resulting in a moderate risk profile.

C

Corky's BBQ

corkysbbq.com

0

Corky's BBQ is a regional restaurant chain specializing in Memphis-style BBQ and ribs, offering dine-in services across multiple locations, online ordering for delivery and pickup, nationwide shipping of BBQ products, and catering services including private party rooms. The website reflects a well-established business with a consistent brand presence and active social media engagement. Technically, the site uses a modern technology stack including Umbraco CMS, JavaScript libraries, Braintree payment gateway, and analytics tools such as Google Analytics and Microsoft Application Insights. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is generally good with HTTPS enforced and use of reCAPTCHA, but lacks some security headers and explicit security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. WHOIS data is unavailable, which reduces domain trustworthiness and suggests further verification is needed. Overall, the website is professional and trustworthy but could improve in transparency and security documentation.

V

Visit Hainaut

visithainaut.be

0

Visit Hainaut is a regional tourism website dedicated to promoting the Hainaut province in Belgium, focusing on cycling and walking routes, local points of interest, and cultural experiences. The site targets tourists and locals interested in exploring the region's outdoor activities and heritage. The business operates as a medium-sized entity within the hospitality sector, providing informational content and community engagement through blogs and social media. Technically, the website is built on WordPress using Elementor and various Jet plugins, ensuring a modern and responsive design. It integrates Google Analytics and Facebook Pixel for user tracking and marketing insights. Security-wise, the site enforces HTTPS and uses reCAPTCHA for form protection, but lacks some advanced security headers and a publicly accessible privacy policy, which are areas for improvement. Overall, the website presents a professional and trustworthy front with good content quality and user experience, though enhancing privacy compliance and security practices would strengthen its posture.

V

VICTOR Bozar Café

victorbozarcafe.be

0

VICTOR Bozar Café is a small hospitality business located in Brussels, Belgium, offering café and restaurant services with a strong emphasis on art and architecture, integrated within the Bozar arts center. The website provides detailed information about the café, its menu, event spaces, and contact details, targeting visitors to the cultural center and local clientele. Technically, the website uses a modern JavaScript stack including jQuery, Owl Carousel, and Google Maps API, with integration of the Zenchef booking system. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate; HTTPS is used but no advanced security headers or privacy policies are present, indicating room for improvement in compliance and security best practices. The WHOIS data for the domain is not publicly available due to restrictions, limiting domain trust verification. Overall, the website is functional, professional, and safe for general audiences, but lacks some compliance and security features.

L

Love Ciabatta

love-ciabatta.be

0

Love Ciabatta is a small hospitality business operating a sandwich shop, bakery, and breakfast restaurant located in Brussels, Belgium. Established in 2017, it offers delivery, takeaway, and reservation services, targeting local residents and visitors. The website reflects a consistent brand image with good content quality and clear navigation. Technically, it is built on a modern React framework hosted on OVH, leveraging CentralApp's SaaS platform, and includes analytics via Pirsch. Security posture is good with HTTPS and basic security practices, though some HTTP headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained.

La Pharmacie Anglaise is a small hospitality business operating a cocktail bar located in Brussels, Belgium. The website serves primarily as an informational portal providing contact details, social media links, and a downloadable cocktail menu. The business targets an adult audience, as indicated by the age restriction notice on the site. The market position appears local and niche, focusing on cocktail enthusiasts and nightlife patrons. The business has been established since 2015, consistent with the domain registration data. Technically, the website is simple and built with basic HTML and CSS, utilizing Google Fonts for typography. It is hosted by OVH sas, a reputable hosting provider. The site shows basic mobile optimization and accessibility but lacks advanced technical features or CMS integration. Performance is moderate given the minimal content and resources. From a security perspective, the site lacks critical security headers and does not enable DNSSEC. There is no evidence of HTTPS enforcement or advanced security policies. Privacy and cookie policies are absent, indicating potential compliance gaps with GDPR and related regulations. No forms or data collection mechanisms are present, reducing immediate data protection risks but also limiting user engagement. Overall, the website is functional for its purpose but requires improvements in security posture and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing HTTPS and security headers, publishing privacy and cookie policies, and considering vulnerability disclosure mechanisms.