giata.com

HTML metadata

Title

GIATA | The Engine Behind Global Travel Technology

Description

Powering the global travel ecosystem with accurate data, hotel mapping, and AI-driven personalization. Trusted by 20.000+ businesses worldwide.

Language

en-US

Generator

WordPress 6.9.4

Canonical

https://www.giata.com/

Translations

de ×2
en ×2

Open Graph

url: https://www.giata.com/
title: Homepage
locale: en_US
site name: GIATA
description: Powering the global travel ecosystem with accurate data, hotel mapping, and AI-driven personalization. Trusted by 20.000+ businesses worldwide.

Technology

Server: Apache
CMS: WordPress

Third-party hosts loaded (3)

d3gd9x5cnjm3r1.cloudfront.net×377
js.hs-scripts.com×1
js.hsforms.net×1

Social

Registration

Registrar

1API GmbH

Created

1997-09-23

Expires

2027-09-22 489 days left

Updated

2025-11-24

Name servers

ns1.first-ns.de
robotns2.second-ns.de
robotns3.second-ns.com

DNS records live

NS

ns1.first-ns.de
robotns2.second-ns.de
robotns3.second-ns.com

MX

0 giata-com.mail.protection.outlook.de

TXT

atlassian-sending-domain-verification=180fe447-1f30-4523-8612-7c3ffac3a9fc
amazon-business-verification=8e631202984473649a4805d584f8a5506a43c9559f4e41c814e458a320c0fbb8

Verified for

Apple
Atlassian
Google
OpenAI

Email authentication strong

SPF

v=spf1 ip4:45.139.159.19 include:5405124.spf01.hubspotemail.net include:spf.protection.outlook.de include:spf-de.emailsignatures365.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@giatagmbh.uriports.com; ruf=mailto:dmarc@giatagmbh.uriports.com; fo=1; ri=86400

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCQWGgep4zBvh087K8qvnxSvQhcuveE+hu0frG/rM+j8q2e+nfrLR0kQOMqnf142T4beCqpXh6KRvNL59PzQS…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAJeCpSFBY3wNbmsY9YfpATCq+EEDaZ81i+blDYk4b7Ab9yx2D/9IV1E8tWWCtyW7AlRTsbGOzx2W6…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-12-12 to 2027-01-04

Expires in 228 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.giata.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: deny
permissions-policy: accelerometer=(), autoplay=(self), camera=(), encrypted-media=(), fullscreen=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self), usb=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'none'; img-src * data:; script-src 'self' https://www.google.com cdn.join.com widget.join.com join.com www.youtube-nocookie.com reactjs.org fonts.gstatic.com d3gd9x5cnjm3r1.cloudfront.net region1.google-analytics.com www.google.de google.de www.google-analytics.com px.ads.linkedin.com googletagmanager.com app.hubspot.com fonts.gioogleapis.com js.hsforms.net forms.hsforms.com static.hsappstatic.net www.giata.com 48752163.fs1.hubspotusercontent-na1.net forms-na1.hsforms.com js.hs-scripts.com js.hsadspixel.net js.usemessages.com js.hs-analytics.net js-na1.hs-scripts.com api.hubspot.com track.hubspot.com js.hs-banner.com api.hubapi.com www.googletagmanager.com pagead2.googlesyndication.com snap.licdn.com dmndfrcstng.com googleads.g.doubleclick.net www.googleadservices.com www.google.com region1.analytics.google.com google.com 'unsafe-inline'; style-src 'self' cdn.join.com widget.join.com join.com www.youtube-nocookie.com reactjs.org fonts.gstatic.com d3gd9x5cnjm3r1.cloudfront.
strict-transport-security: max-age=31536000; includeSubDomains