Security Directory

I

RegioRevue.cz | Zpravodajství Ústeckého kraje

iteplice.cz

38

RegioRevue.cz is a regional news website focused on providing news and information about the Ústecký region in the Czech Republic. The site serves local residents and interested readers with regional news coverage and community updates. The business operates as a small-scale online media outlet with a clear regional focus. Technically, the website is built on WordPress using the Divi theme, leveraging Cloudfront CDN and Google Fonts for performance and styling. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, from a security and compliance perspective, the website lacks critical elements such as privacy and cookie policies, security headers, and explicit contact information for incident response or data protection. Analytics usage is present via Google Tag Manager, but privacy compliance is minimal. Overall, the domain registration data is consistent with the website's regional media purpose, and no blocking or WAF challenges were detected, allowing full content access. The site is safe for general audiences with no adult or explicit content detected.

A

Acro Jarmila Podzemská

acro-farm.cz

52

ACRO FARM is a small family-operated breeder specializing in colorful miniature horses and Irish cobs, emphasizing healthy animals with excellent character and active participation in driving, jumping, and therapy activities. The website showcases champion horses and provides detailed descriptions of their breeding goals and achievements. Technically, the site is built on the Webnode CMS platform, uses Cloudfront CDN, and integrates Google Analytics for visitor tracking. The site is accessible without WAF or blocking mechanisms but lacks advanced security headers and privacy compliance features. No WHOIS data is available, limiting domain legitimacy verification. Overall, the site serves a niche equestrian audience with basic but functional digital infrastructure.

A

Asociace chovatelů miniaturních koní

achmk.cz

54

The website www.achmk.cz represents the official online presence of the Asociace chovatelů miniaturních koní, a Czech association dedicated to miniature horse breeding. It serves a niche community of breeders and enthusiasts by providing detailed information on breeding standards, events such as shows and seminars, membership details, and sponsorships. The site is well-structured with clear navigation and relevant content tailored to its target audience. The business model is that of a non-profit association focused on community engagement and promotion of miniature horses within the Czech Republic. Technically, the website is built on the Webnode CMS platform and leverages AWS Cloudfront CDN for content delivery. It uses Google Analytics with IP anonymization for visitor tracking. The site is served over HTTPS with a valid SSL configuration, ensuring secure data transmission. However, it lacks advanced security headers and privacy-related policies, which are areas for improvement. The site shows basic mobile optimization and accessibility features but could benefit from enhancements to improve user experience on mobile devices. From a security perspective, the site demonstrates a moderate posture with HTTPS enabled and minimal tracking practices. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be a risk factor. The WHOIS data is unavailable or privacy protected, limiting transparency about domain ownership, but the website content and contact details support its legitimacy. Overall, the site is functional and serves its community well but should prioritize implementing privacy policies, security headers, and incident response information to enhance trust and compliance. Strategic recommendations include improving security best practices, enhancing mobile responsiveness, and increasing transparency around data protection.

The website going-public.de is currently a parked domain landing page primarily aimed at domain resale. It lacks any substantive business content, contact information, or legal policies, indicating it is not actively used for commercial or organizational purposes. The technical infrastructure relies on basic JavaScript and Cloudfront CDN for content delivery, with external scripts for advertising and tracking. There is no evidence of a CMS or advanced frameworks. Security posture is minimal with no visible security headers or privacy compliance mechanisms. The domain WHOIS data shows use of parkingcrew.net name servers, consistent with domain parking services, and lacks registrant details, reducing trustworthiness. Overall, the site presents low business credibility and poor user experience.

N

Nadácia Pontis

nadaciapontis.sk

59

Nadácia Pontis is a Slovak non-profit foundation dedicated to fostering positive changes through social innovation, philanthropy, and responsible business practices. The organization connects companies, organizations, and individuals to promote social impact initiatives. The website reflects a medium-sized, established non-profit entity with a clear mission and a professional online presence. The target audience includes firms, organizations, and individuals interested in social responsibility and innovation. The foundation offers services such as events, seminars, volunteer programs, and internships to engage its community. Technically, the website is built on WordPress 6.7.1 and leverages modern tools including Google Tag Manager, Google Analytics, Facebook Pixel, and various WordPress plugins for multilingual support, forms, and social media integration. The site is hosted with CDN support (Cloudfront) and uses HTTPS with strong SSL configuration. Performance and mobile optimization are good, though accessibility features are basic. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for forms, indicating good baseline security practices. However, explicit security headers are missing, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is trustworthy and professional, with extensive user tracking and marketing tools. The absence of explicit privacy and security policies is a gap that should be addressed to enhance compliance and user trust. The domain registration data aligns well with the organization's identity, supporting legitimacy. Strategic recommendations include adding privacy and security policies, implementing security headers, and publishing vulnerability disclosure information.

M

Mad Mimi

madmimi.com

66

Mad Mimi was a SaaS email marketing platform founded in 2006, offering services such as HTML email newsletters, subscriber growth, and email list management. The service was retired as of August 30, 2024, with GoDaddy consolidating its email marketing offerings under GoDaddy Digital Marketing. The website content reflects this transition and directs users to GoDaddy's new platform. Technically, the site uses modern JavaScript libraries, Google reCAPTCHA for bot protection, and is hosted via GoDaddy and Cloudfront CDN. However, DNSSEC is not enabled, and no explicit security headers are present, indicating room for security improvements. Privacy compliance is basic, with a cookie consent banner but no visible privacy policy or terms of service on the homepage. Overall, the site is functional but minimal, reflecting the retirement status of the service.

E

European Handball Federation (EHF)

ehftv.com

66

EHFTV.com is the official streaming platform of the European Handball Federation, providing live and on-demand handball competition content to fans worldwide. The platform offers a subscription-based model with free registration, enabling personalized fan experiences. It holds a strong market position as the primary digital destination for EHF competitions, supported by consistent branding and comprehensive content offerings. Technically, the site leverages modern web technologies including Next.js, cloud CDN services, and integrates multiple analytics and marketing tools while maintaining good performance and mobile responsiveness. Security posture is solid with HTTPS enforcement and domain transfer protection, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is robust, with comprehensive policies and cookie consent mechanisms implemented via Iubenda. Overall, EHFTV.com demonstrates a mature digital presence with high trustworthiness and professional execution.

마

마이페어(MyFair)

myfair.co

63

마이페어(MyFair) is a Korean-based online platform specializing in overseas exhibition booth reservation and comprehensive participation management services. The platform targets businesses, including SMEs, startups, and organizations seeking to participate in global trade shows. It offers key services such as exhibition search, booth reservation, professional partner matching, and management of exhibition-related tasks. The website is professionally designed with a clear structure and good user experience, primarily in Korean language, catering to the Korean market. Technically, the site uses modern frameworks like Next.js and React, integrates multiple marketing and analytics tools, and is hosted on a reliable CDN infrastructure. Security measures include HTTPS enforcement and standard security headers, although explicit privacy and cookie policies are missing. Overall, the site demonstrates a moderate to good security posture with room for improvement in privacy compliance and contact transparency.

The website wp-content.com is currently a parked domain primarily used for domain resale purposes. It displays a prominent domain sale banner linking to Afternic, a known domain marketplace. There is no active business content, no privacy or cookie policies, and no contact information provided. The technical infrastructure relies on basic HTML, CSS, JavaScript, and third-party ad/tracking scripts served via Cloudfront CDN. The site embeds an iframe from an unrelated domain, which may pose security risks. Security posture is weak with no visible HTTPS enforcement or security headers. Overall, the site lacks professionalism, trust indicators, and compliance with privacy regulations. The domain is privacy protected in WHOIS, consistent with domain resale practices but limiting transparency.

A

Axon Enterprise, Inc.

axon.com

70

Axon Enterprise, Inc. is a leading technology company specializing in public safety solutions, including TASER devices, police body cameras, cloud-based evidence management, AI-powered tools, and drone detection systems. The company targets law enforcement, federal agencies, enterprise, fire, EMS, corrections, and campus safety sectors, positioning itself as a market leader with a comprehensive ecosystem designed to protect life and enhance public safety operations. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on AWS with strong performance and mobile optimization. Security posture is robust with HTTPS, security headers, and privacy policies in place, though explicit vulnerability disclosure and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting Axon's reputation as a credible enterprise in the public safety technology market.

T

TwentyThree

twentythree.net

71

TwentyThree is a leading European video software company specializing in a comprehensive video marketing platform designed for businesses to leverage video content across customer journeys. The company positions itself as a pioneer with a full suite of video tools including webinars, video libraries, and personal video capabilities, targeting medium-sized to large enterprises primarily in the technology sector. The website reflects a mature digital presence with modern infrastructure, leveraging HubSpot CMS, Amazon Cloudfront hosting, and advanced analytics tools such as Google Analytics and Google Tag Manager. The site is well-optimized for mobile and SEO, providing an excellent user experience with clear navigation and professional branding. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the domain registration data corroborates the business legitimacy and history, supporting a high trust level.

I

Robot Challenge Screen

iatfglobaloversight.org

39

The website iatfglobaloversight.org currently serves a robot challenge screen that blocks direct access to its content. This challenge uses a JavaScript-based proof-of-work CAPTCHA mechanism, likely implemented as a Web Application Firewall (WAF) or security measure to prevent automated access. Due to this, no substantive business or contact information is accessible on the page. The domain is registered since 2007 with a reputable registrar and shows no privacy protection, indicating legitimacy. However, the lack of accessible content limits the ability to assess the company's business model, services, or compliance policies. Technically, the site uses advanced JavaScript for the CAPTCHA and is hosted on SiteGround with Cloudfront CDN for assets. Security posture is moderate given the presence of a WAF challenge but lacks standard security headers and DNSSEC. Privacy compliance and business credibility cannot be confirmed due to lack of visible policies or contact data.

LAFRENTZ Baugesellschaft mbH is a specialized construction company based in Hannover, Germany, focusing on park deck renovation, building waterproofing, flood protection, and road marking services. The company targets commercial, public, and private clients with comprehensive services from planning to maintenance. Their market position is that of a niche specialist in construction waterproofing and related services within Germany. The website is professionally designed, mobile-optimized, and provides clear navigation and detailed service descriptions, supporting their business credibility. Technically, the site is built on the 1&1 IONOS Website Editor platform, using modern JavaScript libraries and CDN services, with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of a privacy policy and terms of service pages, though a cookie consent mechanism is present. Contact information is limited to a phone number with no email or social media links. WHOIS data lacks detailed registrant information, slightly reducing trust but not contradicting the business claims. Overall, the website is a good representation of a small specialized construction business with room for improvement in privacy and security transparency.

G

guidle

guidle.com

63

Guidle is a digital advertising and leisure planning platform primarily serving the DACH region, with a focus on providing diverse content such as events, restaurants, museums, and more. The platform targets both end consumers and business clients including municipalities and event organizers, offering services like digital ad mediation, managed content, and sector-specific solutions. The website demonstrates a professional and consistent brand presence with good content quality and user experience. Technically, the site leverages modern web technologies including Vue.js, Google Analytics, and CDN hosting via Amazon Cloudfront. It implements a comprehensive cookie consent mechanism aligned with GDPR requirements, ensuring user privacy and transparency. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent controls effectively. However, it lacks visible security headers and explicit security or incident response policies, which are recommended for enhanced protection. The absence of WHOIS data raises concerns about domain legitimacy, though the website content and structure suggest a legitimate business operation. Overall, Guidle presents a solid digital presence with room for improvement in security transparency and domain registration clarity. Strategic enhancements in security headers and incident response documentation would strengthen trust and compliance.

The website rhmerchandise.com is currently inaccessible due to a security challenge page implementing a proof-of-work captcha mechanism. This prevents access to any business-related content, contact information, or policies. The domain is registered since 2017 with GoDaddy and uses Amazon Cloudfront CDN for content delivery. The security challenge page indicates an intent to protect the site from automated access or abuse but severely limits external analysis. No privacy, cookie, or terms of service policies are visible, and no contact details or business information can be extracted. The technical infrastructure includes modern JavaScript with Web Workers and cryptographic functions for the captcha. However, no security headers or DNSSEC are enabled, representing minor security gaps. Overall, the site’s security posture is difficult to assess fully due to the blocking mechanism, but the domain registration appears legitimate.

M

Mixlr Ltd

mixlr.com

60

Mixlr Ltd operates a specialized live audio broadcasting platform that enables users to create, distribute, and host professional-quality live audio streams globally. Founded in 2010, the company has established itself as a trusted provider in the live audio streaming niche, serving diverse audiences including sports teams, podcasters, educators, and faith groups. The platform emphasizes ease of use, reliability, and professional sound quality without the complexity of traditional broadcasting tools. Technically, Mixlr leverages a modern tech stack including Ruby on Rails, Turbo, StimulusJS, and AWS infrastructure with Cloudfront CDN, ensuring fast and scalable performance. The website is well-designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though improvements such as enabling DNSSEC and publishing explicit security policies could enhance trust further. Privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR. Overall, Mixlr presents a credible, professional, and secure online presence with moderate user tracking for analytics and marketing purposes.

A

Aquarium GEOMAR

aquarium-geomar.de

60

Aquarium GEOMAR is a small educational and exhibition aquarium affiliated with the GEOMAR Helmholtz-Zentrum für Ozeanforschung in Kiel, Germany. It focuses on showcasing native marine species from the North and Baltic Seas, as well as some Mediterranean and tropical marine life, including popular local seals. The website serves as an informational portal for visitors, providing details about exhibits, visiting hours, and contact information. The business operates primarily as a local educational and tourist attraction with a non-commercial model. Technically, the website is built on the 1&1 IONOS Website Editor platform, utilizing technologies such as jQuery, skrollr for parallax effects, and Snowplow for analytics. It is hosted on 1&1 IONOS infrastructure with content delivered via Cloudfront CDN. The site is mobile optimized and performs moderately well, with good SEO and basic accessibility features. From a security standpoint, the website enforces HTTPS with excellent SSL configuration but lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, indicating GDPR awareness. Overall, Aquarium GEOMAR's website is professional, trustworthy, and safe for general audiences. It effectively supports the business's educational mission but could improve security posture by adding security headers and incident response information.

C

Constant Content

constant-content.com

66

Constant Content operates as a well-established content marketplace and custom content writing service provider, connecting businesses and brands with a network of freelance writers. The platform offers a wide range of content types including articles, product descriptions, blog posts, and whitepapers, serving a diverse clientele including large enterprises. The website demonstrates a professional and consistent brand presence with strong trust indicators such as client testimonials from reputable companies and a large catalog of content offerings. Technically, the site leverages modern web technologies and third-party analytics and marketing tools, hosted on a reliable CDN infrastructure. Security posture is adequate with HTTPS and secure form handling, though there is room for improvement in security headers and incident response transparency. Privacy compliance is supported by comprehensive privacy and terms pages, but lacks a visible cookie consent mechanism. WHOIS data is unavailable, which slightly impacts trust but does not outweigh the strong business signals present on the site.

The website embertone.com is currently inaccessible due to a security challenge page implementing a client-side proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism blocking direct access to the site content. As a result, no meaningful business, contact, or policy information is available from the page. The domain is registered since 2011 with GoDaddy.com, LLC and uses SiteGround nameservers, suggesting a legitimate registration and hosting setup. However, the lack of visible content and policies limits the ability to assess the company's business model or compliance posture. Technically, the site uses JavaScript with Web Workers for the CAPTCHA challenge and assets served via Cloudfront CDN. Security best practices such as DNSSEC and security headers are not enabled or visible. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the blocking mechanism and lack of accessible information.

F

FlixBus Global

flixbus.com.br

63

FlixBus Global operates a comprehensive intercity bus and train travel service spanning over 40 countries with more than 8,000 destinations. The company offers affordable, convenient, and sustainable travel options with modern amenities such as free Wi-Fi and power outlets onboard. Their digital presence includes a well-designed website and mobile app facilitating easy booking and real-time trip tracking. The brand is well-established with a large user base exceeding 90 million travelers in 2024, positioning it as a market leader in the transportation sector. Technically, the website leverages modern web technologies including Drupal CMS, cloud-based CDN services, and advanced analytics tools like Snowplow and Datadog RUM. The site is optimized for performance, mobile responsiveness, and accessibility, providing a seamless user experience. Privacy compliance is robust with a comprehensive privacy policy, cookie consent management, and GDPR adherence. From a security perspective, the site enforces HTTPS and employs best practices such as consent management and responsible disclosure mechanisms. However, explicit security headers and a published security policy are not clearly visible, suggesting room for improvement. The WHOIS data for the subdomain is unavailable, which is typical for subdomains but limits transparency. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected. The overall risk assessment is low, with the company maintaining a trustworthy and professional online presence. Strategic recommendations include enhancing security header implementation, publishing detailed security policies, and providing explicit security contact information to further strengthen trust and compliance.

F

Flix SE

flixbus.lt

47

Flix SE operates the www.flixbus.lt website, providing affordable bus travel services across Lithuania and Europe. The company offers a large network of routes, mobile app integration, and customer support, positioning itself as a leading transportation provider in the region. The website is professionally designed, multilingual, and optimized for mobile users, reflecting a mature digital presence. Technically, the site uses Drupal CMS, modern JavaScript frameworks, and integrates multiple analytics and advertising tools with a consent management platform, indicating compliance with privacy regulations such as GDPR. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. WHOIS data for the .lt domain is unavailable, likely due to registry restrictions, but the website's branding and infrastructure strongly support legitimacy. Overall, the site is trustworthy, user-friendly, and well-maintained, serving a broad audience of travelers.

F

Flix México

flix.com.mx

59

Flix México operates as a regional branch of the international FlixBus brand, providing affordable and modern intercity bus transportation services across Mexico and North America. The website is well-positioned in the market with a broad route network, mobile app integration, and live tracking features, targeting travelers seeking convenient and economical bus travel. The company leverages a strong brand presence and digital infrastructure to support its business model of online ticket sales and transportation services. Technically, the website employs modern web technologies including Drupal CMS, cloud CDN, advanced analytics, and consent management platforms, ensuring a good user experience and compliance with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Overall, the site is professional, trustworthy, and well-optimized for its audience, with room for improvement in transparency around security and contact information.

F

Flix SE

flixbus.ie

55

Flix SE operates the website www.flixbus.ie, providing affordable and extensive bus travel services across Ireland and internationally. The company partners with local coach operators and offers a large network of over 8,000 destinations in more than 40 countries. The website is professionally designed, mobile-optimized, and provides comprehensive travel information, booking capabilities, and real-time trip tracking. The technical infrastructure leverages modern technologies including Drupal CMS, cloud CDN, and advanced analytics tools. Security posture is strong with HTTPS, security headers, and consent management in place, though explicit incident response and vulnerability disclosure policies are not publicly found. Overall, the site demonstrates a mature digital presence with high trustworthiness and user experience quality.

F

FlixBus India Private Limited

flixbus.in

58

FlixBus India Private Limited operates a comprehensive online bus ticket booking platform offering affordable and comfortable intercity bus travel across India. The company leverages a large global brand presence and extensive network to connect major Indian cities with modern buses equipped with amenities such as sleeper beds, air conditioning, and real-time GPS tracking. The website reflects a mature digital infrastructure with modern technologies, strong mobile optimization, and good SEO practices. Privacy and cookie policies are implemented with user consent mechanisms, supporting GDPR compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though dedicated security policy and incident response information are absent. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

F

FlixBus Inc

flixbus.ca

56

FlixBus Inc operates a leading low-cost intercity bus travel service in Canada and the US, providing affordable and comfortable transportation options with a wide network of over 8,000 destinations across more than 40 countries. The company leverages a modern digital infrastructure including a React-based website, mobile app, and cloud CDN services to deliver a seamless booking and travel experience. Their platform supports real-time trip tracking, online ticketing, and customer support through a dedicated help portal. Security posture is strong with HTTPS, modern security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data due to privacy protection is typical for commercial brands but limits domain registration transparency. Overall, FlixBus presents a professional, trustworthy, and technically mature online presence aligned with its market leadership in transportation.

F

Flix SE

flix.com

63

Flix SE operates a prominent European transportation platform offering bus and train ticket booking services across more than 40 countries and 8,000 destinations. The company emphasizes affordable, comfortable, and sustainable travel with features such as free Wi-Fi and assigned seating. The website is professionally designed, mobile-optimized, and integrates modern technologies including React-based UI components, CDN hosting, and advanced analytics tools like Datadog RUM and Usercentrics for consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be verified further. Privacy compliance is well addressed with clear policies and consent mechanisms. Despite the absence of WHOIS data for the domain, the website's branding, external domain relationships, and social media presence strongly support its legitimacy. Overall, Flix presents a trustworthy and user-friendly digital presence aligned with its business goals.

F

FlixBus Sverige

flixtrain.se

52

FlixBus Sverige operates as a major intercity bus transportation provider offering affordable and comfortable travel options across Sweden and Europe. The company provides a comprehensive route network with over 3,000 destinations in more than 40 countries, supported by a modern online booking platform and mobile app. Their services include airport shuttles and onboard amenities such as free Wi-Fi and charging ports, targeting general travelers seeking cost-effective and environmentally friendly transportation. Technically, the website is built on a modern stack including React and Drupal CMS, leveraging cloud-based CDN services for performance. It employs advanced analytics and consent management tools to ensure GDPR compliance and user tracking transparency. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS with strong SSL configurations and implements multiple security headers. While no explicit security or incident response policies are published, the site uses a consent management platform and avoids exposing sensitive data. The absence of WHOIS data for the www subdomain is noted but does not detract from the site's legitimacy given the professional presentation and consistent branding. Overall, FlixBus Sverige's website demonstrates a high level of professionalism, security, and compliance, supporting its position as a trusted transportation service provider. Strategic improvements include publishing explicit security policies and enhancing direct contact information for security and customer support.

F

FlixBus Sverige

flixbus.se

53

FlixBus Sverige operates as a major intercity bus transportation provider offering affordable and convenient travel options across Sweden and Europe. The website presents a professional and comprehensive platform for booking bus tickets, exploring routes, and accessing travel services including airport shuttles. The company targets general consumers seeking sustainable and cost-effective travel solutions. Technically, the website employs modern web technologies including React, Google Tag Manager, and Usercentrics for consent management, hosted on Amazon Cloudfront CDN, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policy and incident response contacts are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a mature digital presence consistent with a large transportation business, with minor gaps in direct contact information and security transparency.

F

Flix SE

flixbus.ro

52

Flix SE operates the www.flixbus.ro website, providing affordable and extensive intercity bus travel services across Romania and Europe. The company is positioned as a leading transportation provider with a large network of routes and modern amenities such as Wi-Fi and real-time tracking. The website is professionally designed, mobile-optimized, and offers a seamless user experience for booking and managing bus tickets. Technically, the site uses modern JavaScript frameworks, CDN hosting, and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the domain and website present a trustworthy and credible business presence with good privacy compliance and user trust signals.

F

FlixBus Portugal

flixbus.pt

54

FlixBus Portugal operates as a major intercity bus transportation provider, offering extensive routes across Portugal and Europe. The company leverages a strong digital presence with a user-friendly website and mobile app, facilitating easy ticket booking and real-time travel tracking. Their market position is robust, supported by a large network and multiple subsidiary brands such as FlixTrain and Greyhound. Technically, the website employs modern technologies including React, Drupal CMS, and cloud-based CDNs, ensuring good performance and mobile optimization. Security measures are well implemented with HTTPS, security headers, and a consent management platform, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a high level of professionalism, compliance with privacy regulations, and trustworthy branding.

F

FlixBus Polska

flixbus.pl

53

FlixBus Polska operates a comprehensive intercity bus service platform targeting travelers in Poland and across Europe. The website offers extensive travel options with over 400,000 daily connections to thousands of cities, emphasizing affordable and comfortable travel. The business is positioned as a market leader with a strong brand presence and a large customer base. Technically, the site is built on a modern stack including Drupal CMS, cloud CDN, and advanced analytics tools, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS enforcement and privacy compliance mechanisms, though explicit security policies and incident response contacts are not publicly visible. The WHOIS data is privacy protected, which is typical for commercial domains, and does not raise immediate concerns given the professional site and brand consistency. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

F

Flix SE

flixbus.no

58

FlixBus is a leading European intercity bus service provider offering affordable and extensive bus travel options across Norway and over 35 countries in Europe. The company operates a large route network with modern buses equipped with amenities such as free Wi-Fi and power outlets, facilitating convenient and comfortable travel. The website is professionally designed, mobile-optimized, and provides comprehensive travel information and booking capabilities through both web and mobile app platforms. Technically, the site uses modern JavaScript frameworks, CDNs, and analytics tools, ensuring fast performance and good user experience. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a mature, trustworthy, and user-friendly digital presence for a major transportation company.

F

Flix SE

flixbus.mk

10

Flix SE operates the website www.flixbus.mk, providing affordable and extensive bus travel services across Europe, including North Macedonia. The company offers a large network of daily bus lines and destinations, supported by a modern digital platform with multilingual support and mobile app integration. The website is professionally designed, mobile-optimized, and provides a user-friendly booking experience. Technically, the site uses modern JavaScript frameworks, CDN hosting, and integrates multiple analytics and marketing tools while maintaining good security practices such as HTTPS and consent management. However, WHOIS data is unavailable, likely due to privacy protection, which is common for large commercial entities. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected, good privacy compliance, and high business credibility.

F

FlixBus Italia

flixbus.it

11

FlixBus Italia operates a comprehensive intercity bus service network across Italy and Europe, offering low-cost travel options to over 8,000 destinations in more than 40 countries. The company leverages a strong digital presence with an intuitive website and mobile app that facilitate easy booking, real-time tracking, and onboard amenities such as Wi-Fi and power outlets. FlixBus holds a leading market position in the European transportation sector, supported by its parent company Flix SE and subsidiaries like FlixTrain and Greyhound. Technically, the website employs modern frameworks like React, uses CDN hosting for performance, and integrates advanced analytics and consent management tools. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and user-centric design.

F

Flix SE

flixbus.hu

11

FlixBus is a leading European transportation company specializing in affordable and eco-friendly bus travel across Hungary and over 40 countries. The website offers extensive information about routes, services, and booking options, supported by a modern technical infrastructure including React, Drupal CMS, and multiple analytics and consent management tools. The site is well-optimized for mobile and accessibility, providing a professional user experience. Security posture is strong with HTTPS enforcement and consent mechanisms, though explicit security policies and incident response contacts are not prominently published. Overall, the site reflects a mature, trustworthy brand with a large market presence and comprehensive service offerings.

F

FlixBus France

flixbus.fr

11

FlixBus France operates as a major intercity bus transportation service provider, offering affordable travel options across France and Europe with a network covering over 8,000 destinations in more than 40 countries. The company leverages a strong digital presence with a modern, user-friendly website and mobile app that facilitate easy booking, real-time trip tracking, and customer engagement. The brand is well-established and trusted, supported by extensive social proof and consistent branding across multiple platforms. Technically, the website employs modern web technologies including React, Honeycomb UI framework, and is hosted on Amazon Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site integrates advanced analytics and marketing tools such as Google Tag Manager, Datadog RUM, Adjust, and Usercentrics for consent management, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and manages user consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response contacts and vulnerability disclosure mechanisms are not publicly visible, representing an area for improvement. Overall, FlixBus France presents a low-risk profile with strong business credibility, good privacy compliance, and a secure, performant web presence. Strategic recommendations include publishing clear security incident response information and adopting a security.txt file to enhance transparency and trust.

F

FlixBus España

flixbus.es

11

FlixBus España operates as a major intercity bus transportation provider offering affordable travel options across Spain and Europe. The company leverages a comprehensive online platform and mobile app to facilitate ticket booking, real-time trip tracking, and customer engagement. The website reflects a mature digital presence with strong branding, multilingual support, and extensive route coverage. Technically, the site employs modern web technologies including React, Drupal CMS, and cloud-based CDN services ensuring fast performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and consent management, though explicit security policies and incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, supporting a large user base and multiple subsidiaries.

F

FlixBus Česko

flixbus.cz

10

FlixBus Česko operates as a regional branch of the international FlixBus brand, providing affordable intercity bus travel across the Czech Republic and Europe. The website offers extensive information about routes, services, and booking options, targeting general consumers seeking convenient and cost-effective transportation. The company leverages a strong brand presence and a large network of destinations, positioning itself as a leading player in European bus travel. Technically, the website employs modern web technologies including React, Drupal CMS, and multiple third-party analytics and marketing tools such as Google Tag Manager, Datadog RUM, and Usercentrics CMP for consent management. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a good user experience across devices. From a security perspective, the site enforces HTTPS and integrates consent management for GDPR compliance. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data and lack of visible incident response contacts or security policies represent areas for improvement. Overall, the website is professional, trustworthy, and well-maintained, though the lack of public WHOIS information slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency around security policies and incident response, verifying security headers, and improving contact information visibility.

F

FlixBus Україна

flixbus.ua

10

FlixBus Україна operates as a major intercity bus transportation provider offering extensive routes across Ukraine and Europe. The website serves as a digital platform for ticket booking, trip planning, and real-time tracking, targeting general consumers seeking affordable and convenient bus travel. The company is part of the larger Flix SE group, with subsidiaries including FlixTrain and Greyhound, indicating a strong market position in transportation. Technically, the website employs modern frameworks such as React and Honeycomb UI, uses CDN hosting via Cloudfront, and integrates multiple analytics and marketing tools with user consent management. Security posture is strong with HTTPS, security headers, and consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is professional, accessible, and trustworthy with good privacy compliance.

F

FlixBus UK

flixbus.co.uk

47

FlixBus UK operates as a major intercity coach travel provider offering affordable and extensive bus services across the UK and Europe. The company leverages a large network connecting thousands of destinations with modern amenities such as free Wi-Fi and real-time trip tracking. Their business model focuses on digital ticketing and app-based booking, targeting general consumers seeking cost-effective and sustainable travel options. The website reflects a mature, well-established brand with consistent branding and professional content. Technically, the website employs modern web technologies including React, Honeycomb UI framework, and cloud-based CDN hosting via AWS Cloudfront. It integrates multiple analytics and marketing tools such as Google Tag Manager, Datadog RUM, and Usercentrics for GDPR compliance. The site is mobile-optimized, accessible, and performs well with fast load times and good SEO practices. From a security perspective, the site enforces HTTPS and uses consent management platforms to comply with privacy regulations. While explicit security headers are not fully enumerated, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit incident response or security policy pages suggests room for improvement in transparency. Overall, the website is trustworthy, professional, and well-aligned with the company's business goals. The lack of WHOIS data for the www subdomain is explained by UK domain registration rules and does not detract from legitimacy. Strategic recommendations include enhancing visible security policies, verifying all security headers, and expanding contact information for improved user trust.

F

Flix SE

flixbus.be

10

FlixBus is a major European transportation company specializing in affordable intercity bus travel across more than 40 countries and 3,000 destinations. The website provides comprehensive information about their services, including online ticket booking, real-time bus tracking, and onboard amenities such as Wi-Fi and power outlets. The company positions itself as a leader in the European bus travel market with a strong brand presence and extensive network. Technically, the website is built on a modern Drupal CMS platform, leveraging multiple third-party services for analytics, marketing, and performance optimization, including Google Tag Manager, Datadog RUM, Snowplow Analytics, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with fast loading times supported by CDN infrastructure. From a security perspective, the site enforces HTTPS, implements key security headers, and uses a consent management platform to comply with privacy regulations. However, explicit security policies, incident response contacts, and vulnerability disclosure programs are not publicly available, representing areas for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, though WHOIS data is unavailable due to registry restrictions. The domain's privacy protection is justified given the business type. The site demonstrates a mature digital presence with extensive tracking and marketing tools, balanced by strong privacy controls.

F

FlixBus Österreich

flixbus.at

61

FlixBus Österreich operates as a major intercity bus transportation provider in Austria and across Europe, offering affordable and sustainable travel options. The company is part of Flix SE, a large transportation group with subsidiaries including FlixTrain and Greyhound. The website is professionally designed, multilingual, and provides comprehensive travel information and booking capabilities via a dedicated shop subdomain. The technical infrastructure leverages modern web technologies, CDNs, and advanced analytics tools, ensuring fast performance and good user experience across devices. Security posture is strong with HTTPS enforcement and consent management, though explicit security policies are not prominently published. Overall, the site reflects a mature digital presence aligned with a reputable transportation business.

F

Flix SE

flixbus.al

56

Flix SE operates the www.flixbus.al website, providing affordable and eco-friendly intercity bus travel services across Europe, targeting Albanian-speaking customers. The company is a major player in the European transportation sector, offering extensive routes and modern amenities. The website is professionally designed, multilingual, and optimized for mobile users, reflecting a mature digital infrastructure. Technically, the site uses Drupal CMS, integrates multiple analytics and marketing tools, and employs strong security practices including HTTPS and security headers. Privacy compliance is robust with clear policies and consent management. However, direct contact information and explicit security policies are not prominently available. Overall, the site demonstrates a strong security posture and business credibility with no critical vulnerabilities detected.

F

FlixBus USA

flixbus.com

58

FlixBus USA operates as a major intercity bus transportation provider offering extensive routes across the United States and internationally. The company leverages a modern digital platform to provide convenient ticket booking, real-time trip tracking, and onboard amenities such as Wi-Fi and power outlets. Their market position is strong, supported by partnerships with Greyhound and FlixTrain, and a large user base exceeding 90 million travelers. The website reflects a mature digital presence with excellent content quality and user experience. Technically, the website is built on modern frameworks including React and Drupal CMS, hosted on Amazon Cloudfront CDN, and integrates advanced analytics and consent management tools. The site is mobile-optimized, accessible, and SEO-friendly, ensuring broad reach and usability. Security posture is robust with HTTPS enforcement and use of consent platforms, though explicit security headers and incident response information are not publicly detailed. The WHOIS data for the domain is unavailable, which is unusual for a large established brand and may indicate privacy protection or registrar policies. Despite this, the website's professional design, extensive content, and trusted partnerships support its legitimacy. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, FlixBus USA presents a secure, professional, and user-friendly platform for bus travel services. Strategic recommendations include enhancing transparency around security policies and incident response, confirming security headers, and providing clear contact information to further strengthen trust and compliance.

A

Artsy

artsy.net

70

Artsy is a leading global online art marketplace founded in 2009 and headquartered in New York, USA. It connects art collectors, galleries, artists, and enthusiasts by providing a platform to discover, buy, and sell fine art. The website offers a rich user experience with editorial content, auction participation, and gallery partnerships, positioning itself as the world's largest online art marketplace. Technically, Artsy employs a modern technology stack including React, Express, and cloud-based CDN hosting, ensuring fast performance and mobile optimization. The site uses multiple third-party analytics and marketing tools such as Segment, Braze, Google Analytics, and Salesforce Messaging, indicating a mature digital marketing infrastructure. Security-wise, Artsy enforces HTTPS, implements strong security headers, and avoids exposing sensitive data, reflecting a good security posture. However, the absence of visible privacy and cookie policies and lack of explicit incident response or vulnerability disclosure mechanisms indicate areas for compliance and security improvement. Overall, Artsy presents a professional, trustworthy, and well-structured online presence with minor gaps in privacy compliance.

The website ydea.it is currently a parked domain page primarily advertising the domain for sale. The content is minimal, with no business services or company information presented. The domain was registered in 2012 and is consistent with a long-held domain now offered for resale. Technically, the site uses basic JavaScript and external ad network scripts, hosted via Amazon Cloudfront CDN. There is no evidence of a CMS or advanced frameworks. Security posture is weak with no visible security headers or privacy policies, and no HTTPS status provided. The site lacks contact information, privacy, cookie, or terms of service policies, indicating low compliance and business credibility. Overall, the site is low trust and low content quality, suitable only for domain investors or buyers.

Deutsche Eigentümer Allianz BVFI24 operates as a real estate community and membership platform targeting property owners, investors, and individuals interested in real estate acquisition primarily in Germany and the D-A-CH region. The website offers networking opportunities, educational content, expert access, and VIP property search services, positioning itself as a modern and comprehensive real estate alliance. Technically, the site is built on a modern stack with CDN delivery, PWA support, and uses Facebook Pixel for marketing analytics. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and incident response information. Privacy compliance is partial due to missing privacy policy and terms of service pages. Overall, the site is professional and trustworthy but could improve transparency and security practices.

H

Hartmut HÄUSLER Training

haeusler.training

62

Hartmut HÄUSLER Training is a small German educational and training service provider specializing in real estate, economy, medicine, and pedagogy. The company emphasizes its extensive experience and customer service, targeting businesses and professionals primarily in Mecklenburg-Vorpommern, Brandenburg, and Berlin. The website is professionally designed, multilingual, and includes clear contact information and GDPR-compliant forms. Technically, the site uses modern JavaScript libraries, CDN hosting, and enforces HTTPS with reCAPTCHA protection on forms, indicating a mature digital infrastructure. Security posture is good but could be improved by adding security headers and incident response information. Privacy compliance is evident with cookie consent and privacy policy presence. WHOIS data is unavailable due to privacy protection or query failure, which slightly reduces trust but is justified for this business type. Overall, the website is trustworthy, professional, and well-positioned in its niche.

L

LVM Versicherung

lvm.de

63

LVM Versicherung is a well-established German insurance company with over 125 years of experience, offering a broad range of insurance, financial, and advisory services to private and business customers. The website reflects a mature digital presence with comprehensive product offerings, customer service portals, and strong branding consistency. The company targets a broad audience including private individuals and commercial clients, positioning itself as a trusted partner in insurance and finance sectors. Technically, the website employs modern web technologies including Angular framework, cloud-based CDN delivery via Amazon Cloudfront, and integrates consent management and tracking tools such as Consentmanager.net and Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, providing a fast and user-friendly experience. From a security perspective, the site enforces HTTPS and uses consent mechanisms to comply with GDPR. While explicit security headers are not fully confirmed, no critical vulnerabilities or exposed sensitive data were found. The WHOIS data is limited due to DENIC policies but shows no suspicious indicators, and the domain age aligns reasonably with the company's long-standing history. Overall, the website demonstrates a high level of professionalism, security awareness, and compliance, making it a trustworthy platform for customers. Strategic improvements could include publishing explicit security policies and incident response contacts to enhance transparency and trust.