Security Directory

E

Efukt.com

efukt.com

58

Efukt.com is an adult humor and shock content website established in 2006, offering a variety of adult videos, pictures, and series with a focus on porn bloopers, amateur content, and explicit humor. The site targets an adult-only audience and monetizes primarily through advertising and affiliate marketing with adult service providers. Technically, the site uses a custom CMS with legacy JavaScript libraries and integrates Google Analytics and Alexa tracking. The hosting and DNS are managed via GoDaddy and Cloudflare respectively, but DNSSEC is not enabled. Security posture is moderate with HTTPS enabled but lacking security headers and explicit security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Business credibility is supported by domain age and consistent WHOIS data, though no direct company contact emails or phone numbers are published. Overall, the site is functional and serves its niche but has room for security and privacy improvements.

P

PCexpres

pcexpres.sk

52

PCexpres is a Slovakian company specializing in the service, buyback, and sale of electronic devices, particularly mobile phones and smart gadgets. The website presents a focused retail and service business model targeting general consumers in Slovakia. The company leverages the Shoptet e-commerce platform, integrating common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook SDK for user engagement and tracking. The site is well-structured with good design quality and mobile optimization, although it lacks explicit privacy and terms of service documentation. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but could be improved by adding explicit security headers and updating outdated libraries. Overall, the domain registration data aligns with the business claims, indicating legitimacy and consistent operation.

T

Tomáš Halo

tomashalo.com

44

The website tomashalo.com represents a small-scale creative professional portfolio operated by Tomáš Halo, offering services in web design, graphic design, and photography. The site is well-structured, primarily in Slovak, and targets clients seeking creative digital and print media services. The business model is that of a freelancer or small agency with a focus on showcasing past projects. Technically, the site is built on WordPress, utilizing common libraries such as jQuery and Google Analytics for tracking, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enabled and cookie consent in place, but lacks advanced security headers and uses an outdated jQuery version, which could pose vulnerabilities. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration status, which should be verified. Overall, the site is functional and professional but could improve in security and business transparency.

F

FETMED

fetmed.cz

47

FETMED is a specialized healthcare provider in the Czech Republic focusing on fetal medicine, genetics, and gynecology. The company operates two physical centers in Olomouc and Ostrava, offering comprehensive prenatal diagnostics, genetic consultations, psychological counseling, and pediatric cardiology. Their market position is that of a trusted regional specialist with experienced medical professionals and advanced diagnostic technologies. The website is professionally designed, mobile-optimized, and provides clear service information and contact channels. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA, ensuring a functional and user-friendly experience. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages are present, which impacts compliance and trust. Security posture is generally good with HTTPS enforced and use of CAPTCHA for forms, but the absence of security headers and WHOIS transparency reduces the overall security confidence. No vulnerabilities or exposed sensitive data were detected. Cookie consent is implemented properly, supporting GDPR compliance to some extent. Overall, the website is a credible and professional healthcare service platform with room for improvement in privacy disclosures and security hardening. The lack of WHOIS data is a concern but may be due to local registry policies. Strategic recommendations include publishing privacy and terms policies, adding security headers, and maintaining updated libraries to enhance security and compliance.

E

ERN GENTURIS

genturis.eu

56

ERN GENTURIS operates as a European Reference Network dedicated to patients with rare genetic tumour risk syndromes, aiming to improve diagnosis, treatment, and healthcare quality across Europe. The organization is positioned as a key healthcare network funded by the European Commission, collaborating with healthcare providers, researchers, and patient advocacy groups. Their services include expert healthcare access, patient referral guidance, educational initiatives, and research facilitation. The website reflects a professional and consistent brand aligned with European healthcare standards. Technically, the website employs a traditional JavaScript and jQuery-based stack with additional libraries such as Magnific Popup and Google Tag Manager for analytics. The site is mobile-optimized with moderate performance and basic accessibility features. While HTTPS is enforced, the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the site demonstrates good practices with no exposed sensitive data or vulnerable libraries detected. However, the lack of security headers and incident response information suggests moderate maturity in security posture. The domain WHOIS data is protected by EURid privacy policies, which is typical for .eu domains and justified given the healthcare context. Overall, the website presents a trustworthy and professional front for ERN GENTURIS, with strong business credibility and good content quality. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance the security posture and regulatory alignment.

T

tufi.sk

tufi.sk

60

Tufi.sk is a Slovakian e-commerce retailer specializing in furniture, home, garden, sports, and hobby products. The website targets general consumers in Slovakia offering a broad product range with a focus on convenience, competitive pricing, and customer satisfaction. The business operates primarily online using the Shoptet e-commerce platform and integrates multiple marketing and analytics tools to optimize user engagement and sales. The site is well-branded and professionally designed, with clear navigation and mobile optimization.

M

MR Studio Information Technologies

proon.tech

10

Proon.tech is a Slovak-based technology company offering an integrated SaaS platform for project management, CRM, and business activity management. The platform consolidates multiple business tools into a single solution aimed at improving efficiency and reducing operational costs for small to medium-sized enterprises. The company is positioned as a niche regional provider with a focus on Slovak and EU markets, supported by a development partner MR Studio Information Technologies. The website presents a professional and consistent brand image with clear business messaging and client references. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and various UI enhancement libraries. It uses Google Analytics and Facebook SDK for tracking and marketing purposes, with a compliant cookie consent mechanism in place. Hosting is provided via Websupport.sk, a known Slovak hosting provider. The site is mobile optimized and SEO friendly, though some accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent for privacy compliance. However, it lacks DNSSEC and explicit security headers, and no dedicated security or incident response policies are published. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, Proon.tech demonstrates a solid business and technical foundation with good privacy compliance and moderate security posture. Strategic improvements in security headers, DNSSEC, and explicit security policies would enhance its security maturity and trust further.

S

STOTEN.CZ

stoten.cz

57

STOTEN.CZ operates as a specialized retail e-commerce platform focused on table tennis equipment and apparel, targeting enthusiasts primarily in the Czech Republic. The website offers a broad catalog of products including paddles, rubbers, balls, clothing, and accessories, supported by a physical store and a table tennis academy. The business model centers on niche retail with additional services such as sponsorship and event organization, positioning itself as a trusted provider within its market segment. Technically, the website is built on the Shoptet e-commerce platform, utilizing legacy jQuery libraries alongside modern tracking tools like Google Analytics 4 and Facebook Pixel. The site is served over HTTPS with a good SSL configuration and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Mobile optimization and SEO practices are adequate, though some accessibility features could be enhanced. From a security perspective, the site employs CSRF tokens on forms and uses HTTPS, but the presence of an outdated jQuery version introduces potential vulnerabilities. Security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web attacks. Privacy compliance is basic, with cookie consent present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website presents a moderate risk profile with no signs of blocking or WAF interference. The lack of public WHOIS data reduces transparency but is typical for small retail businesses. Strategic recommendations include updating JavaScript libraries, implementing comprehensive security headers, and publishing clear privacy and security policies to enhance trust and compliance.

O

OREON

somelierskepotreby.cz

61

The website somelierskepotreby.cz operates as an e-commerce platform specializing in sommelier supplies and wine accessories, targeting consumers and professionals interested in wine-related products primarily in the Czech Republic and EU. The business offers a range of products including wine cooling containers, racks, serving accessories, glassware, bottles, and gift sets, with additional services such as product branding. The site is professionally designed with clear navigation and multi-language support, enhancing user experience and accessibility. Technically, the website is built on the Shoptet CMS platform, utilizing common web technologies such as jQuery, Google Tag Manager, Google Analytics, Microsoft Clarity, and Facebook SDK. It leverages Amazon Cloudfront CDN for content delivery and integrates modern payment APIs like Google Pay and Apple Pay. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers such as Content-Security-Policy and X-Frame-Options, and uses an outdated jQuery version which could pose vulnerabilities. No critical security issues or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for its niche retail business, though the absence of WHOIS data limits domain transparency and trust assessment. Strategic improvements in security headers and technology updates are recommended to enhance security posture and compliance.

R

ROCKETMOTORS

rocketmotors.sk

10

ROCKETMOTORS is a Slovakian e-commerce retailer specializing in motor vehicles such as ATVs, motorcycles, electric vehicles for children, and related accessories. The company targets general consumers interested in motorized recreational and utility vehicles. Their market position is that of a niche regional player with a comprehensive product offering and a customer-centric approach. The website is built on the Shoptet e-commerce platform, leveraging modern web technologies and integrations with Google Analytics, Facebook SDK, and other marketing tools. The technical infrastructure is solid, with good mobile optimization and moderate performance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website presents a professional and trustworthy front for the business.

J

JK šperky

jk.cz

57

JK šperky is a Czech-based jewelry retailer specializing in handcrafted gold jewelry and watches, emphasizing quality, craftsmanship, and original designs since 1991. The company targets Czech-speaking consumers seeking premium jewelry products with lifetime warranty and certified authenticity. The website is built on the Shoptet e-commerce platform, integrating standard marketing and analytics tools such as Google Analytics and Facebook SDK. Security posture is generally good with HTTPS and secure login forms, though some outdated libraries and missing security headers present minor risks. Privacy compliance is well addressed with clear cookie consent and privacy policies. The absence of WHOIS data slightly impacts domain trust but does not detract from the professional presentation and business legitimacy. Overall, JK šperky maintains a solid digital presence suitable for its market segment.

E

EXPRES MENU, s.r.o.

expresmenu.com

56

EXPRES MENU, s.r.o. is a Czech family-owned business specializing in the production and e-commerce sale of high-quality, healthy ready meals using a patented continuous thermal process (CTP) that ensures long shelf life without preservatives. The company targets consumers seeking convenient, nutritious food options and maintains a strong regional presence with media coverage and a dedicated blog. Technically, the website is built on the Shoptet CMS platform, leveraging common web technologies and analytics tools with GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS and CSRF protections, though some outdated libraries and missing security headers present moderate risks. The absence of WHOIS data reduces domain transparency but does not negate the evident legitimacy of the business. Overall, the site is professional, user-friendly, and trustworthy, with room for technical and security improvements.

E

EXPRES MENU, s.r.o.

expresmenu.cz

10

EXPRES MENU, s.r.o. is a Czech family-owned business specializing in the production and online retail of high-quality ready meals and food products. The company leverages a patented continuous thermal process (CTP) to produce meals with long shelf life without preservatives, targeting health-conscious consumers and outdoor enthusiasts. The website reflects a mature e-commerce platform with a clear brand identity and regional supplier partnerships. Technically, the site uses the Shoptet CMS platform with integrations for Google Analytics, Facebook SDK, and Pinterest tracking, providing a modern but moderately performing infrastructure. Security posture is adequate with HTTPS and CSRF protections, though improvements in security headers and library updates are recommended. Privacy compliance is strong with comprehensive cookie consent and privacy policies in Czech language. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is professional, trustworthy, and safe for general audiences.

A

A.D Shop AB

morework.se

53

Morework.se is an established Swedish e-commerce business specializing in material handling, carts, and storage solutions for workplaces. It operates under the parent company A.D Shop AB and has been active since 2006, offering a broad product range with a focus on quality and fast delivery. The website targets business customers needing reliable workplace equipment and storage products. Technically, the site is built on a custom ASP.NET platform using mature JavaScript libraries and integrates Google reCAPTCHA for form security. Analytics and marketing tools such as Google Analytics, Google Ads, and LiveChat are employed to enhance user engagement and track performance. Security posture is solid with HTTPS and form protections, though improvements in HTTP security headers are recommended. The WHOIS data for the www subdomain is missing, but the overall business legitimacy is supported by consistent branding, contact information, and a strong credit rating. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanisms.

A

A.D Shop AB

more.nu

56

More.nu is a Swedish retail and manufacturing business specializing in store fixtures, glass showcases, wall systems, mannequins, and office furniture. It operates as part of A.D Shop AB, targeting retail businesses and office environments with a focus on quality products and direct import. The website is professionally designed with clear navigation and mobile optimization, supporting multiple customer interaction forms protected by Google reCAPTCHA. Technically, the site uses ASP.NET WebForms with common JavaScript libraries, though some libraries are outdated. Security posture is moderate with HTTPS enabled and CAPTCHA protection but lacks advanced security headers and uses older jQuery versions. Privacy compliance is basic with a cookie consent banner and privacy policy present. The domain WHOIS data is missing, which reduces trust from a domain registration perspective but the website content and business information are consistent and professional.

e-line Systemy Internetowe is a small Polish technology company specializing in internet systems and software development, primarily serving business and local government clients. The website is currently under reconstruction, providing limited content but clear contact information and a professional business focus. The technical infrastructure is basic, utilizing HTML, CSS, and an outdated version of jQuery, with no detected CMS or advanced frameworks. Security posture is weak due to lack of visible HTTPS confirmation, missing security headers, and outdated libraries. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the website presents a modest digital presence with room for significant improvements in security, privacy, and technical modernization.

B

B2B GAMING SERVICES MALTA Ltd.

b2bgamingservices.com

63

B2B GAMING SERVICES MALTA Ltd. is a well-established B2B provider of comprehensive platform solutions for sports betting, casino, and gaming in regulated markets. Founded in 1997 and with a domain registered since 2013, the company holds licenses from the Malta Gaming Authority and the Hellenic Gaming Commission, and certifications including ISO 27001 and ISO 9001, underscoring its commitment to regulatory compliance and quality management. The website presents a professional image with clear branding and a focus on business partners such as operators and white labels. Technically, the site is built on WordPress with a modern theme and uses Google Analytics and Tag Manager for tracking, hosted with DNS managed by Cloudflare. Security posture is moderate with HTTPS enabled but lacks visible security headers and DNSSEC. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but could improve transparency and security practices.

B

BRICOL-M

bricol.cz

56

BRICOL-M operates a specialized e-commerce platform focused on bottles and related packaging products, serving primarily the Czech and Slovak markets. The website offers a broad catalog of bottle types, closures, and accessories, targeting both individual consumers and businesses. The platform supports user registration, social logins, and guest checkout, indicating a mature e-commerce setup. Technically, the site leverages the Shoptet e-commerce framework, integrates modern tracking and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook SDK, and employs HTTPS with good security practices. Privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanism. However, WHOIS data is unavailable, which slightly impacts trust signals but does not detract significantly from the site's legitimacy given the professional presentation and contact information. Security posture is solid but could be enhanced by publishing explicit security policies and vulnerability disclosure information.

C

CIME SHOP

cime-shop.cz

57

CIME-shop.cz is a Czech Republic based e-commerce retailer specializing in garden and workshop tools and machinery. The company operates as an authorized dealer for well-known brands such as Milwaukee, Stiga, Honda, Ego, and Echo, targeting both professional and hobbyist customers. The website presents a professional and user-friendly interface with clear navigation and comprehensive product categories. Technically, the site is built on the Shoptet platform, utilizing standard web technologies including JavaScript, jQuery, and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though some improvements in HTTP security headers and updating outdated libraries are recommended. The absence of WHOIS data reduces domain trustworthiness, but the website's content and business presence suggest legitimate operations. Overall, the site scores well in content quality, technical implementation, security, and privacy compliance, making it a reliable platform for its target audience.

G

Golfshop4you

golfshop4you.cz

54

Golfshop4you.cz is a specialized retail business focused on golf equipment and accessories, operating both an e-commerce platform and a physical store in Prague, Czech Republic. The company offers a wide range of products including golf clubs, bags, balls, clothing, shoes, and related accessories, complemented by services such as fitting and equipment servicing. Their market position is that of a niche, trusted golf retailer serving golf enthusiasts in the Czech market. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and outdated libraries updated. Privacy compliance is strong, with clear GDPR policies and cookie consent banners. Overall, the site is professional, trustworthy, and well-structured, though domain WHOIS data is unavailable, which slightly limits trust verification. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

O

Organikk

organikk.cz

55

Organikk.cz is a Czech Republic based e-commerce platform specializing in sustainable lifestyle products including household items, personal care, kitchenware, dental care, and fashion accessories. The company emphasizes eco-friendly, chemical-free, and plastic-free products, supporting small producers and environmental causes. The website is professionally designed with clear navigation, comprehensive product information, and customer testimonials, positioning Organikk as a niche leader in sustainable retail within its market. Technically, the site runs on the Shoptet platform, uses modern analytics and marketing tools with GDPR-compliant cookie consent, and maintains a good security posture with HTTPS and CSRF protections. However, the WHOIS data is unavailable, limiting domain trust assessment. Overall, Organikk demonstrates a mature digital presence with room for security header enhancements and updated libraries.

A

ABX software s.r.o.

dotykove-pokladny.cz

54

ABX software s.r.o. operates the website dotykove-pokladny.cz, providing point-of-sale systems, software, and hardware primarily targeting restaurants, retail shops, rental businesses, and hotels within the Czech Republic. The company emphasizes individualized customer service, technical support availability seven days a week, and nationwide presence with sales representatives. The website is built on the Shoptet e-commerce platform, integrating standard tracking and cookie consent mechanisms, and presents content professionally in Czech. However, the absence of WHOIS registration data raises concerns about domain legitimacy verification. Security posture is generally good with HTTPS and CSRF protections, but could be improved with additional security headers and updated libraries. Privacy compliance is well addressed with clear policies and consent management. Overall, the website is functional, trustworthy, and business-focused, but domain registration transparency should be verified to enhance trust.

S

Schools United s.r.o.

kraloveskoly.cz

58

Schools United s.r.o. operates a professional e-commerce platform specializing in custom clothing and supplies for schools, sports teams, and interest groups primarily in the Czech Republic. The company offers tailored apparel collections and school equipment through a user-friendly online shop, supported by strong customer testimonials and a clear brand identity. The website is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies, reflecting a mature digital presence. Technically, the site leverages the Shoptet e-commerce platform with integrations for analytics and marketing tools such as Google Analytics, Facebook SDK, and Poptin. Security posture is solid with HTTPS enforcement and CSRF protections, though explicit security headers could be improved. The absence of WHOIS data indicates privacy protection, common for such businesses, but reduces transparency. Overall, the site demonstrates a trustworthy and professional business with good compliance and technical standards.

C

Cukrářství Pudová

cukrarstvipudova.cz

58

Cukrářství Pudová is a small retail confectionery business based in the Czech Republic, specializing in cakes, pastries, and confectionery products for various occasions. The company emphasizes its 18+ years of experience and offers both online ordering and physical pickup options in Opava and Dolní Benešov. The website is built on the Shoptet e-commerce platform, leveraging standard web technologies including jQuery and Google Analytics for tracking. The site is well-structured, mobile-optimized, and includes essential business information and social media presence, enhancing customer trust and engagement. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements can be made by adding security headers and formal security policies. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the overall website professionalism and content quality support a positive business credibility. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and verifying domain registration details to improve trust and compliance.

C

CENTROPEN, a.s.

centropen.de

47

CENTROPEN, a.s. is a medium-sized European manufacturer and retailer specializing in writing and drawing instruments, including markers, pens, and creative products for office, industry, schools, children, and artists. The company maintains a professional online presence with multi-language support and active social media channels. Their business model focuses on manufacturing and B2B/B2C retail, targeting a broad audience from businesses to hobbyists. The website content is well-structured and relevant to their market segment, reflecting a consistent brand image.

C

CENTROPEN, a.s.

centropen.sk

44

CENTROPEN, a.s. is a well-established Slovak manufacturing and retail company specializing in writing instruments and creative products. With a history dating back to 1940, the company serves a broad audience including office users, schools, hobbyists, and artists. The website reflects a mature business with multilingual support and a clear product catalog. Technically, the site uses a mix of legacy and modern JavaScript libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the site.

S

Schindler, spol. s r.o.

lapierre-bike.cz

10

Schindler, spol. s r.o. operates a professional e-commerce platform specializing in the distribution and retail of Lapierre bicycles and related cycling products in the Czech Republic. The website offers a comprehensive product catalog, including road bikes, mountain bikes, e-bikes, and accessories, targeting cycling enthusiasts and retailers. The company maintains a consistent brand presence with multi-language support and provides technical documentation and manuals to support customers. Technically, the site is built on the Shoptet e-commerce platform, leveraging modern web technologies such as Google Analytics and Tag Manager for marketing and analytics purposes. The site is well-structured, mobile-optimized, and employs HTTPS with standard security headers, reflecting a good security posture. However, the absence of WHOIS data limits domain trust verification, and no explicit security or incident response policies are published. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, though terms of service and vulnerability disclosure information are not evident. Overall, the website is professional, secure, and trustworthy, with room for improvement in transparency and security documentation.

C

CENTROPEN, a.s.

centropen.cz

9

CENTROPEN, a.s. is a well-established Czech manufacturer specializing in writing instruments such as pens, markers, and creative tools for office, school, hobby, and artistic use. The company emphasizes its long tradition dating back to 1940, Czech production, and high-quality products. The website reflects a medium-sized manufacturing and retail business with a clear focus on multiple customer segments including children, students, and professionals. The digital presence includes multiple specialized microsites and active social media channels, supporting brand engagement and product promotion. Technically, the website uses a combination of legacy and modern web technologies including jQuery 1.11.3, Leaflet.js for maps, Google Fonts, and slick carousel for UI components. The site is mobile optimized with good navigation and content structure, though some technical improvements could enhance performance and security. The cookie consent mechanism is implemented in compliance with GDPR, providing users control over cookie preferences. From a security perspective, the site uses HTTPS but lacks visible advanced security headers and uses an outdated jQuery version which could pose risks. No explicit security policies or incident response contacts are published, which could be improved to enhance trust and compliance. The absence of WHOIS data reduces domain registration transparency, but the website content and branding strongly indicate a legitimate and established business. Overall, CENTROPEN's website is professional, content-rich, and compliant with privacy regulations, but could benefit from technical and security enhancements to strengthen its digital maturity and trustworthiness.

K

Květiny family flowers

kvetinyfamilyflowers.cz

58

Květiny Family Flowers is a Czech Republic-based small retail business specializing in flower sales and floral services including bouquets, wedding arrangements, plants, and funeral floral products. The company emphasizes a long-standing tradition of 44 years and offers delivery services with video recording for customer assurance. The website is built on the Shoptet e-commerce platform and integrates standard marketing and analytics tools such as Google Analytics and Facebook Pixel. The digital infrastructure is moderately modern with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and CSRF protections, though some security headers could be improved and the jQuery library is outdated. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the site presents a professional and trustworthy online presence for a local flower retailer.

N

Naughty Harbor s.r.o.

naughtyharbor.cz

58

Naughty Harbor s.r.o. operates a Czech Republic-based adult e-commerce website specializing in the sale of realistic silicone sex dolls and related accessories, alongside a sex doll private rental service in Prague. The website targets an adult audience exclusively, offering a broad catalog of products categorized by appearance, size, and brand. The business positions itself as a niche market leader in the Czech adult toy and service sector, emphasizing quality and customer experience through reviews and detailed product information. Technically, the website is built on the Shoptet e-commerce platform, utilizing a mix of legacy and modern web technologies including jQuery 1.11.3, Google Tag Manager, Google Analytics (GA4), Hotjar, and Mouseflow for analytics and user behavior tracking. The site is HTTPS secured and implements cookie consent mechanisms, though it lacks visible security headers and up-to-date privacy documentation. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but it does not publish a privacy policy or terms of service in the analyzed content, nor does it provide a security.txt or vulnerability disclosure mechanism. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration transparency. Overall, the website presents a professional and functional adult e-commerce platform with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and domain registration transparency are recommended to enhance trust and regulatory adherence.

D

Dansk Lægemiddel Information A/S

medicin.dk

61

Medicin.dk is a well-established Danish healthcare information platform operated by Dansk Lægemiddel Information A/S, providing authoritative and clinically relevant medicine information to both the general public and healthcare professionals. The platform includes multiple service sites tailored to different audiences and integrates with various healthcare IT systems, positioning itself as a trusted national resource. Technically, the website employs a legacy but stable JavaScript stack including jQuery and jQuery UI, enhanced with modern SDKs like Scandit for barcode scanning and Matomo for privacy-conscious analytics. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements are possible. Security-wise, the site uses HTTPS and disables cookies in analytics to respect privacy, but lacks advanced security headers and explicit incident response documentation. The WHOIS data confirms a consistent and legitimate registration aligned with the business's history and location. Overall, Medicin.dk presents a professional, trustworthy, and user-friendly digital presence with room for security and compliance enhancements.

L

Liechtensteinische Landesverwaltung

gesetze.li

54

The website gesetze.li is an official government legal database operated by the Liechtensteinische Landesverwaltung, providing up-to-date consolidated legal texts and state treaties for the Principality of Liechtenstein. It serves legal professionals, government officials, and the general public interested in Liechtenstein law. The site offers comprehensive search capabilities including full text, titles, abbreviations, and legal reference numbers, with a focus on accuracy and official information dissemination. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Matomo analytics integrated for user behavior tracking. The site is served over HTTPS with good SSL configuration, ensuring secure data transmission. The design is professional and consistent with government branding, optimized for mobile devices with basic accessibility features. From a security perspective, the site enforces HTTPS and secure form submissions but lacks advanced security headers and published security policies. There is no cookie consent mechanism despite the use of analytics, which may present minor privacy compliance gaps. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the official government entity, indicating high legitimacy. Overall, the website is a trustworthy and authoritative source for Liechtenstein legal information, with recommendations to enhance privacy compliance and security transparency to further strengthen user trust and regulatory adherence.

B

BMWeshop.sk

bmweshop.sk

53

BMWeshop.sk is an e-commerce website specializing in BMW lifestyle products such as clothing, accessories, toys, and collectibles targeted primarily at BMW enthusiasts in Slovakia. The website is built on the Shoptet platform and uses common web technologies including jQuery, Google Analytics, and Facebook SDK for tracking and marketing purposes. The site presents a professional design with consistent branding and clear navigation, offering a good user experience. However, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security-wise, the site enforces HTTPS and uses CSRF tokens but relies on an outdated jQuery version and lacks visible security headers, which could expose it to vulnerabilities. The WHOIS data is privacy protected, which is common for small e-commerce businesses but reduces transparency. Overall, the site is functional and trustworthy but would benefit from improved security practices and privacy compliance.

Hansestadt Wismar operates an official municipal website serving citizens, tourists, and local businesses with comprehensive information and services including administrative tasks, event calendars, and tourism promotion. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site uses a legacy but functional tech stack centered around jQuery and IKISS CMS, with moderate performance and good mobile optimization. Security posture is adequate with cookie consent and HTTPS implied, but lacks explicit security headers and vulnerability disclosure mechanisms. WHOIS data aligns with the website's claims, reinforcing legitimacy. Overall, the site is a trustworthy government portal with room for technical and security enhancements.

C

Citybikes

citybikes.cz

58

Citybikes.cz is a Czech Republic-based e-commerce retailer specializing in urban bicycles, electric bikes, and related accessories. Established since 2006, the company targets urban cyclists, families, and seniors seeking sustainable and healthy transportation options. The website offers a broad catalog of products including folding bikes, children's bikes, and bike accessories, supported by repair and conversion services. Technically, the site is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook Pixel for marketing and analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy trust scores. Overall, the website is professional and trustworthy from a user perspective but would benefit from enhanced transparency on domain registration and security policies.

The Europski Potrošački Centar Hrvatska (ECC Croatia) operates as a national consumer protection center affiliated with the European Consumer Centres Network (ECC-Net). It provides advisory services and assistance for cross-border consumer complaints within the EU, Norway, Iceland, and the UK. The website targets Croatian consumers and EU cross-border shoppers, offering information on consumer rights, complaint resolution, and referrals to competent authorities. The organization functions as a government or non-profit entity, emphasizing consumer protection and education. Technically, the website employs a moderately modern technology stack including Bootstrap 3.3.6, jQuery 1.11.3, Font Awesome, and Owl Carousel. It is mobile responsive with good SEO practices and clear navigation. However, some JavaScript libraries are outdated, and no CMS or hosting provider details are evident. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS but lacks visible security headers such as Content Security Policy or HSTS. Forms use POST methods securely, and no sensitive data is exposed in the HTML. The absence of a cookie consent mechanism and security policy pages indicates partial GDPR compliance. WHOIS data is unavailable due to GDPR privacy restrictions, but the site’s affiliation with official EU and Croatian government entities supports its legitimacy. Overall, the website is professional, trustworthy, and serves an essential public service role. Security and privacy practices could be improved by implementing security headers, cookie consent, and publishing incident response information. The domain’s privacy protection is justified given GDPR regulations. The site poses low risk and is a reliable resource for consumer protection in Croatia.

S

Spådam.se

spadam.se

45

Spådam.se is a Swedish website offering professional psychic and medium services including tarot readings, spiritual guidance, and coaching. The business targets adults interested in spiritual and psychic consultations, operating primarily through paid phone lines and online services. The website presents a professional and consistent brand image with clear navigation and multiple contact phone numbers for different service lines. Technically, the site uses a modern tech stack including Materialize CSS, jQuery, and Cookiebot for cookie consent management, with integrations for Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers are not clearly detected and no incident response or security policy pages are found. WHOIS data for the www.spadam.se subdomain is missing, which slightly reduces trustworthiness, but the main domain spadam.se is presumably registered. Overall, the website is compliant with GDPR cookie consent requirements and provides a good user experience with moderate tracking and advertising transparency.

N

NAJ.SK

naj.sk

10

NAJ.SK is a Slovak-based e-commerce retailer specializing in fashion products including footwear, clothing, and accessories for men, women, and children. The website presents a well-structured online store with a broad product catalog and clear navigation, targeting general consumers interested in fashion retail. The business operates on the Shoptet platform, leveraging modern web technologies and integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Pricemania remarketing. The website is secured with HTTPS and employs standard security practices including CSRF protection on forms. However, some security headers are not explicitly detected, and there is no published security policy or incident response information. Privacy compliance is addressed with a comprehensive privacy policy and terms of service, though cookie policy presence is less explicit. Overall, the site demonstrates a good balance of business credibility, technical implementation, and security posture, suitable for a medium-sized regional e-commerce business.

T

Tollwood Gesellschaft für Kulturveranstaltungen und Umweltaktivitäten mbH

tollwood.de

11

Tollwood Gesellschaft für Kulturveranstaltungen und Umweltaktivitäten mbH operates a well-established cultural and environmental festival in Munich, Germany, known for its Winterfestival and Sommerfestival events. The website provides comprehensive information about events, sustainability initiatives, and market offerings, targeting a broad audience including families and culture enthusiasts. The business model centers on event organization, ticket sales, and promoting sustainable gastronomy and crafts. Technically, the site is built on WordPress with modern SEO and caching plugins, delivering fast and mobile-optimized user experiences. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-positioned in its niche.

R

RAV Armaturen GmbH

rav-valve.com

45

RAV Armaturen GmbH is a German manufacturer specializing in industrial valves, particularly safety-relevant ball valves used in sectors such as petrochemicals, gas industry, and pipeline construction. The company has a long-standing market presence since 1997 and targets industrial clients requiring high-precision valve solutions. Their website reflects a professional and consistent brand image with clear contact information and multilingual support (German and English). Technically, the website is built on standard HTML5, CSS, and JavaScript with jQuery 1.11.3. While the site is functional and moderately optimized for mobile, it lacks modern security features such as DNSSEC and security headers. No CMS or advanced frameworks are detected, indicating a relatively simple but stable infrastructure. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from domain but not explicitly confirmed in data), but lacks DNSSEC and security headers, which are recommended for enhanced protection. No cookie consent mechanism is present, which may impact GDPR compliance. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, appropriate for the business type. No incident response or vulnerability disclosure information is found. Overall, the website is trustworthy and professional but could improve its security posture and privacy compliance. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and updating JavaScript libraries to mitigate vulnerabilities.

S

Stadt Flensburg

flensburg.de

58

The website www.flensburg.de serves as the official digital portal for the city of Flensburg, Germany. It provides a broad range of municipal services and information including citizen services, social programs, cultural and educational resources, political and administrative details, and urban planning information. The site targets residents, local businesses, and visitors, positioning itself as a comprehensive government resource. The business model is that of a government municipal service provider, focusing on public service delivery rather than commercial activities. Technically, the site employs a mix of established JavaScript libraries such as jQuery 1.11.3, FontAwesome 5, jPlayer, and Flowplayer, indicating a moderately mature digital infrastructure. The site appears to be custom-built or uses a proprietary CMS, with good mobile optimization and accessibility features like visual assistance tools. Performance is moderate, with room for modernization of some libraries. From a security perspective, the site uses HTTPS and includes accessibility and privacy-related CSS and scripts, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a cookie policy and consent mechanism present but no clear privacy policy or terms of service pages found. Incident response and vulnerability disclosure information are absent. Overall, the website is a trustworthy and professional government portal with good content quality and business credibility. However, it would benefit from enhanced privacy disclosures, security header implementation, and clearer contact information to improve compliance and user trust.

K

Kreis Nordfriesland

nordfriesland.de

52

Kreis Nordfriesland operates an official government website serving the Nordfriesland district in Germany, providing comprehensive information and services related to administration, politics, economy, tourism, and culture. The site targets local citizens, businesses, and visitors, offering online services such as appointment booking, job listings, and public announcements. The website maintains a consistent and professional brand image with clear navigation and relevant content tailored to its audience. Technically, the website employs a traditional web stack with jQuery and jQuery UI, supplemented by specialized scripts for chatbots and job APIs. The site appears to be built on a CMS commonly used by German public institutions, likely TYPO3, and demonstrates good mobile optimization and accessibility standards. Performance is moderate, with room for modernization of legacy libraries. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the official nature of the site. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

S

SIPTRUNK.DE

siptrunk.de

51

SIPTRUNK.DE operates as a German-language online comparison portal specializing in SIP trunk telephone connections for businesses. The platform offers country-specific filtering and provider listings aimed at helping companies select appropriate telephony solutions. The website is small in scale with a niche market focus within the telecommunications sector in Germany. The content is basic and primarily informational, with limited interactive elements or advanced features. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11.3, Backbone.js, and Underscore.js, alongside Google Tag Manager for analytics and tracking. The site lacks modern SEO optimization and accessibility features, and mobile optimization is basic. Performance is moderate but could benefit from modernization and improved responsiveness. From a security perspective, the site does not present visible security headers or cookie consent mechanisms, which are important for GDPR compliance and overall security posture. The use of outdated JavaScript libraries introduces potential vulnerabilities. No forms or email contacts are present, limiting attack surface but also reducing user engagement options. The domain WHOIS data shows a consistent registration status without privacy protection, supporting legitimacy but lacking detailed registrant information. Overall, the website is functional but basic, with moderate trustworthiness. Security and privacy compliance improvements are recommended to enhance user trust and regulatory adherence.

J

Jamnica plus d.o.o.

jamnica.hr

10

Jamnica plus d.o.o. operates a professional website focused on promoting its natural mineral water and beverage products primarily targeting Croatian consumers. The company maintains a consistent brand presence with product information, recipes, and news updates. The website leverages common web technologies such as jQuery, Slick Carousel, and SVG icons, providing a good user experience with mobile optimization and clear navigation. Privacy and cookie policies are implemented with GDPR compliance, reflecting a mature approach to user data protection. However, the site lacks explicit security policies and uses an outdated jQuery version, which may pose security risks. No blocking or WAF mechanisms interfere with content accessibility, and social media integration is active, enhancing brand engagement.

M

mgo fachverlage

mgo-fachverlage.de

51

mgo fachverlage is a specialized German publishing company focusing on Fachbücher (specialized books), Fachzeitschriften (journals), Arbeitsmaterialien (work materials), and digital formats. The website positions itself as a niche player in the education and professional publishing sector, targeting professionals and academics. The business model revolves around content creation and distribution in specialized fields, with a clear focus on German-speaking markets. The website uses WordPress with the Avada theme and integrates advanced tools such as Slider Revolution for content presentation and multiple analytics platforms including self-hosted Matomo and Google Analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent managed by Usercentrics, but lacks visible security headers and explicit security policies. Overall, the site is professional and trustworthy but could improve transparency around privacy policies and incident response. The risk level is low with no detected vulnerabilities or suspicious content.

U

UFI The Global Association of the Exhibition Industry

ufi.org

51

UFI The Global Association of the Exhibition Industry is a professional membership organization that serves trade show organizers, venue owners, service providers, and industry associations worldwide. It offers key services including global events, education programs, industry resources, and awards to support and promote the exhibition industry. The website reflects a well-established global association with consistent branding and comprehensive content tailored to industry professionals. Technically, the website is built on WordPress and leverages common libraries such as jQuery, Google Analytics, and Yoast SEO for performance and search optimization. The site is mobile-optimized, accessible, and uses HTTPS to secure communications. Privacy and cookie policies are prominently presented with consent mechanisms, indicating good compliance with data protection regulations. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to privacy protection is typical for organizations of this nature and does not detract from the site's legitimacy. Overall, the website demonstrates a strong professional presence with good technical and privacy practices. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

E

EL og IT Forbundet

elogitmedlem.no

54

EL og IT Forbundet operates a member login portal primarily serving Norwegian electrical and IT professionals. The website provides secure access through BankID and two-factor authentication, reflecting a focus on member security and privacy. The business is positioned as a medium-sized trade union with an established presence since 2015, catering to a specialized professional audience. The portal's content is minimal but functional, emphasizing secure member access rather than broad informational content. Technically, the site leverages IBM Domino XPages technology with Dojo Toolkit and Bootstrap frameworks, indicating a legacy but stable infrastructure. The use of external libraries like jQuery and Google Fonts supports a moderate level of modern web standards. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO practices. Security posture is moderate, with HTTPS implied and strong authentication methods in place. However, the absence of visible security headers and lack of privacy or cookie policies indicate gaps in compliance and best practices. No vulnerabilities or exposed sensitive data were detected in the provided content. The site does not employ advertising or extensive tracking, which supports user privacy but also limits marketing insights. Overall, the website is a secure and legitimate member portal with a clear business focus but lacks comprehensive privacy and security disclosures. Strategic improvements in policy transparency, security headers, and mobile accessibility would enhance trust and compliance.

T

Tech-Access Canada

tech-access.ca

47

Tech-Access Canada operates as a national network of 70 Technology Access Centres (TACs) across Canada, providing critical support to entrepreneurs and businesses by facilitating access to emerging technologies and applied research. The organization plays a pivotal role in driving innovation and business growth nationwide, positioning itself as a key enabler in the Canadian technology ecosystem. Their services include technology access, industry collaboration, and innovation facilitation, targeting primarily Canadian businesses and industry stakeholders. The website reflects a medium-sized, well-established non-profit entity founded in 2016, with a clear focus on supporting technology-driven economic development. From a technical perspective, the website is built on WordPress CMS with a modern but somewhat dated technology stack including jQuery 1.11.3 and several popular plugins such as RevSlider and Modern Events Calendar Lite. The site is mobile optimized, accessible, and incorporates SEO best practices. Analytics and tracking are implemented via Google Analytics, Google Tag Manager, and Clicky Analytics, with basic privacy compliance mechanisms including cookie consent and privacy policies. Security posture is generally good with HTTPS enforced and domain transfer protections in place. However, there are areas for improvement such as enabling DNSSEC, upgrading outdated JavaScript libraries, and implementing additional security headers like Content Security Policy. No explicit security policy or incident response information is published, which could be enhanced to improve trust and compliance. Overall, the website presents a professional and trustworthy digital presence aligned with its mission. The risk profile is low with no signs of malicious activity or content safety concerns. Strategic recommendations include technical security enhancements, improved transparency on security policies, and continued adherence to privacy regulations to maintain and strengthen stakeholder trust.

Golfový klub Osyčina is a regional golf club located in Dobříkov u Chocně, Czech Republic, operating a 9-hole golf course with additional facilities such as a driving range, practice areas, and a golf simulator. The club offers services including training, tournaments, children's activities, and accommodation in a traditional wooden clubhouse and partner pension. The website reflects a small but active community-focused business with a clear target audience of golf enthusiasts and families in the region. Technically, the website uses a custom CMS (Web-SOUL) with legacy technologies such as jQuery 1.11.3 and FancyBox for galleries. It integrates Google Analytics, Google Tag Manager, and Facebook SDK for tracking and marketing. The site has basic mobile optimization and accessibility features but could benefit from modernization and performance improvements. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating GDPR awareness. However, no explicit security headers were detected, and the use of an outdated jQuery version poses potential vulnerabilities. WHOIS data is unavailable, which reduces domain trustworthiness, but the active social media presence and detailed content support legitimacy. Overall, the website is functional and professional for its business scope but should address technical and security improvements to enhance trust and compliance.

2

2123design s.r.o.

2123design.cz

41

2123design s.r.o. is a Czech Republic based graphic design company established in 2005, specializing in visual styles, illustrations, and typesetting for print media such as books and brochures. The company targets both small and large businesses and organizations, offering a unique combination of graphic design, illustration, and typesetting services. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses legacy technologies such as jQuery 1.11.3 and Google Maps API loaded over HTTP, which pose security risks. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Security posture is moderate with no visible security headers or incident response information. Overall, the domain registration data supports the legitimacy and longevity of the business.