Security Directory

A

Apodi

apodi.co.uk

60

Apodi is a UK-based healthcare services provider specializing in facilitating access to medicines and healthcare services, primarily serving pharmaceutical companies, healthcare professionals, and patients. Their offerings include market insight services, specialist healthcare professional (HCP) services, homecare, recruitment, HR and development, and a patient portal. The company positions itself as a trusted partner with strong industry certifications and a focus on improving patient outcomes through innovative healthcare solutions. The website reflects a professional and consistent brand image with clear navigation and comprehensive service descriptions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI/UX enhancement libraries. It is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Analytics tools such as Google Analytics and planned LinkedIn analytics are integrated with user consent. However, some security best practices like security headers are not visibly implemented, representing an area for improvement. From a security perspective, the site uses HTTPS with a strong SSL configuration and does not expose sensitive data. The cookie consent mechanism and privacy policy indicate good privacy compliance. The absence of a dedicated security policy or incident response contact reduces transparency. WHOIS data for the domain is unavailable or indicates the domain queried is not registered, which slightly impacts trust from a domain legitimacy standpoint but does not detract from the professional presentation and certifications. Overall, Apodi's website demonstrates a solid business and technical foundation with good security and privacy practices. Strategic improvements in security headers, incident response transparency, and domain registration clarity would enhance trust and security posture further.

3

3PIĘTRO

3pietro.eu

42

3PIĘTRO is a small real estate agency based in Poland, specializing in property sales, rental management, and home staging services primarily in Sosnowiec and nearby cities. The website presents a professional and content-rich platform with detailed property listings and team member contacts, supported by active social media channels. Technically, the site uses a custom real estate CMS with common web technologies such as jQuery, Bootstrap, and Google Fonts, delivering a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks important security headers and explicit privacy or cookie policies, which are compliance gaps. WHOIS data is unavailable due to registry privacy, limiting domain trust assessment, but the website content and structure indicate a legitimate local business. Overall, the site scores moderately well in content quality and business credibility but should improve privacy compliance and security best practices.

S

Schule Glarus

schule-glarus.ch

65

Schule Glarus is a public educational institution serving the Glarus region in Switzerland, offering kindergarten, primary, and secondary education. The website provides comprehensive information about the school’s offerings, locations, projects, and contact details, targeting parents, students, and the local community. The institution appears well-established with a clear focus on education and community engagement. Technically, the website is built on the GOViS CMS platform, uses modern libraries such as jQuery and Font Awesome, and integrates Matomo for privacy-conscious analytics. The site is mobile-optimized and accessible, with good SEO practices. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and incident response policies suggests room for improvement. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professional, reflecting a legitimate public institution.

E

Ein Hoch auf Sensibilität! – Hochsensibilität Schweiz

hs-schweiz.ch

49

Ein Hoch auf Sensibilität! – Hochsensibilität Schweiz is a Swiss-based small business focused on providing coaching, education, and resources related to high sensitivity (Hochsensibilität). The website offers comprehensive information, strategies, and support for highly sensitive individuals, their families, and professionals. Key services include coaching, workshops, a podcast, and a specialized card set for exploring sensitivity. The business positions itself as a niche expert in the Swiss market with a strong emphasis on community and awareness. Technically, the website is built on WordPress using the Avada theme and several plugins including Yoast SEO and Google Site Kit, indicating a modern and SEO-optimized infrastructure. The site is mobile-friendly and well-structured, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. Overall, the site is trustworthy, professional, and well-maintained, serving its target audience effectively.

G

Gemeinde Kestenholz

kestenholz.ch

67

Gemeinde Kestenholz operates as the official municipal government website for the community of Kestenholz in Switzerland. It provides residents and visitors with comprehensive information about local politics, administration, public services, events, and community life. The website leverages the GOViS eGovernment CMS platform, ensuring a structured and accessible digital presence. Key services include online administrative services, event announcements, and detailed information about municipal departments and political bodies. The site targets local residents and stakeholders seeking municipal information and services. Technically, the website employs modern web technologies including jQuery, Font Awesome, and Matomo analytics for visitor tracking with a strong emphasis on privacy compliance through a detailed cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure suitable for a small government entity. From a security perspective, the site enforces HTTPS and integrates cookie consent with granular user controls. While no explicit security headers were detected, the site does not expose sensitive data or vulnerable libraries. However, there is no publicly available security policy or incident response contact, which could be improved to enhance trust and preparedness. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include adding explicit security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen security posture and transparency.

V

Vareo Digital

vareo.si

52

Vareo Digital is a Slovenian digital consulting and solutions provider specializing in digital optimization, marketing automation, and web development primarily targeting medium-sized businesses. The company emphasizes a strategic approach combining marketing and technology to accelerate digital transformation. Their website is professionally designed, mobile-optimized, and provides clear navigation with content primarily in Slovenian and an English language option. Technically, the site uses modern frontend libraries and frameworks such as Bootstrap, jQuery, and GSAP, with Google Tag Manager for analytics and LinkedIn integration for social presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies could be improved. WHOIS data is unavailable due to the .digital TLD restrictions, limiting transparency but the website content and business presence indicate legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

W

Weidmüller Lanškroun s.r.o.

weidmueller-lanskroun.com

42

Weidmüller Lanškroun s.r.o. is a manufacturing subsidiary of the multinational Weidmüller Holding Co&KGaA, specializing in the production of precise spare parts, tools, molds, and providing metal and plastic pressing along with simple automation solutions. The company targets industrial clients requiring high-quality manufacturing services. The website reflects a professional and consistent brand image with clear contact details and partner affiliations, positioning the company as a reliable manufacturing entity within its sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Active24 infrastructure. The site is mobile optimized with good navigation and moderate performance. However, no CMS or advanced frameworks were detected, indicating a straightforward static or custom-built site. From a security perspective, the site uses HTTPS (implied by domain status and typical practice), but lacks visible security headers and does not implement DNSSEC. There is no privacy or cookie policy present, which is a compliance gap. No incident response or security policy information is provided. No forms are present on the main page, reducing attack surface but also limiting user interaction. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its security posture and regulatory adherence.

Q

QM Sports Care

qmsportscare.eu

44

QM Sports Care is a small retail business specializing in premium, natural-based massage and sports care products targeted at professional and recreational athletes. The company positions itself as a trusted supplier in the sports care market, emphasizing natural ingredients and quality. The website reflects a professional brand image with consistent branding and a clear focus on its target audience. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, and various UI libraries, providing a good user experience with mobile optimization and clear navigation. However, the site lacks visible privacy and cookie policies, which impacts compliance and trust. Security posture is moderate with HTTPS implied but no visible security headers or vulnerability disclosures. Overall, the site is safe and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Ř

Řešení pro audio / videokonference

headsety.cz

45

The website www.headsety.cz is an e-commerce platform specializing in professional audio and videoconferencing equipment, primarily targeting call centers, offices, and industrial users in the Czech Republic. The site offers a range of products including headsets, videoconferencing devices, and hands-free communication tools. The business presents itself professionally with clear product offerings, pricing, and customer support channels. The website is built on the OpenCart CMS platform and employs modern web technologies such as jQuery, Bootstrap, and Google Analytics for tracking and marketing purposes. Privacy and cookie policies are present and indicate GDPR compliance, enhancing user trust. However, the absence of WHOIS registrant data and lack of explicit security policies or incident response information slightly reduce the overall trustworthiness. The site uses HTTPS and has a cookie consent mechanism, but lacks visible security headers and a vulnerability disclosure page. Overall, the website is functional, secure at a basic level, and professionally maintained, suitable for its niche market.

MAXX Creative s.r.o. is a well-established creative agency based in the Czech Republic, specializing in marketing strategy, creative design, and campaign execution. Founded in 1998, the company has built a solid reputation with approximately 150 clients and multiple industry awards, positioning itself as a trusted partner for businesses seeking comprehensive creative services. The website reflects a professional and consistent brand image, targeting business clients in need of marketing and advertising solutions. Technically, the site employs modern frontend technologies including jQuery, Foundation, and Google Tag Manager, hosted on Tele3 infrastructure. The website is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks advanced security headers and published privacy or terms of service policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the site is trustworthy and professionally maintained, with a moderate to good security posture and compliance level.

C

CHEMAGAZÍN s.r.o.

laborexpo.cz

44

LABOREXPO is a well-established event organizer specializing in trade fairs and exhibitions for laboratory and process analysis equipment in the Czech Republic. The company, CHEMAGAZÍN s.r.o., founded in 2005, holds a strong market position with a focus on showcasing innovations and technologies relevant to laboratory professionals and industry stakeholders. The website provides comprehensive event information, partner details, and visitor guidance primarily in Czech with an English option, reflecting a regional focus with international accessibility. Technically, the site employs modern JavaScript libraries and frameworks such as jQuery, Foundation, and Slick Carousel, ensuring a responsive and interactive user experience. The presence of Google Analytics and retargeting scripts indicates moderate user tracking aligned with common marketing practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible security headers and published security policies, suggesting room for improvement in security posture and transparency. The WHOIS data confirms domain legitimacy and consistency with the business claims, supporting trustworthiness. Overall, the website is professional, content-rich, and trustworthy, with moderate technical and security maturity.

C

CHEMAGAZÍN s.r.o.

pigmentyapojiva.cz

43

The website pigmentyapojiva.cz represents a professional international conference focused on pigments and binders in the coatings industry. It serves as a platform for manufacturers, researchers, academia, and suppliers to collaborate and share knowledge. The event is organized by CHEMAGAZÍN s.r.o. in cooperation with academic and industry partners, positioning itself as a niche but reputable conference within the manufacturing sector in the Czech Republic. The site content is primarily in Czech with an English option, targeting industry professionals and researchers. Technically, the website employs a modern JavaScript stack including jQuery, Foundation framework, and various UI libraries such as SweetAlert2 and Slick Carousel. Google Analytics and Tag Manager are used for visitor tracking. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. No CMS or hosting provider details were detected. Performance is moderate with room for improvement. From a security perspective, the site uses HTTPS (implied by domain and scripts loaded from HTTPS sources), but no explicit security headers were detected in the provided data. A cookie consent banner is implemented, indicating some privacy compliance efforts, but no privacy policy or terms of service are published. Contact information is limited to a phone number, with no email or incident response contacts. No forms or data collection beyond analytics scripts were found. Overall, the website is legitimate and trustworthy with a solid business foundation but could improve its security posture and privacy compliance by publishing relevant policies, enhancing security headers, and providing clearer contact channels for security incidents.

M

MEVA-HU Kft

mevakomi.hu

44

MEVA-HU Kft is a Hungarian company specializing in industrial products including waste storage, oil management, warehousing, workshop equipment, and outdoor equipment. The company operates a B2B e-commerce platform supported by regional partner sites in Slovakia, Poland, Germany, and the Czech Republic. Their market position is that of an established regional supplier with a comprehensive product catalog and ISO 9001:2015 certification, indicating quality management standards. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience for industrial clients. Technically, the site uses a BohemiaSoft e-commerce platform with common JavaScript libraries and Google Analytics for tracking. Security posture is generally good with HTTPS, CSRF protections, and cookie consent mechanisms, though some outdated libraries and missing security headers present moderate risks. Privacy compliance is strong with clear GDPR-aligned policies and consent banners. Overall, the site is trustworthy and credible, with clear contact information and certifications. Recommendations include updating JavaScript libraries, enhancing security headers, and publishing a vulnerability disclosure policy to further strengthen security and trust.

F

Farmakoterapie

farmakoterapie.cz

51

Farmakoterapie.cz is a specialized Czech online medical journal and educational platform targeting healthcare professionals. It offers a wide range of clinical articles, case studies, video content, podcasts, and e-books primarily focused on pharmacotherapy and related medical fields. The site maintains partnerships with major pharmaceutical companies, enhancing its credibility and market position within the Czech healthcare sector. The content is professional, relevant, and designed to support medical education and clinical practice. Technically, the website employs modern web technologies including Bootstrap 5, jQuery, FontAwesome, and analytics tools such as Google Analytics and Google Tag Manager. The site is mobile optimized and provides a good user experience with clear navigation and structured content. However, some improvements in accessibility and SEO could be considered. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no explicit security headers were detected, and there is no visible cookie consent mechanism, which could be enhanced to improve GDPR compliance. The absence of a security.txt or vulnerability disclosure policy suggests room for improvement in transparency and incident response readiness. Overall, Farmakoterapie.cz presents a trustworthy and professional platform for its niche audience. The lack of WHOIS data limits domain ownership transparency but does not detract from the site's legitimacy given its content quality and industry partnerships. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and enhancing privacy compliance mechanisms.

K

Kardioakademie IKEM

kardioakademie.cz

64

Kardioakademie IKEM is a specialized educational platform focused on postgraduate training in cardiology, offering modular courses targeted at medical professionals and cardiology specialists primarily in the Czech Republic. The website presents a professional and consistent brand image with good content quality and relevant educational information. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern plugins such as Yoast SEO and Cookiebot for SEO and privacy compliance respectively. The infrastructure is hosted via a Czech registrar and hosting provider, ensuring regional consistency and domain legitimacy. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, although there is room for improvement in security headers and explicit privacy policy documentation. Overall, the site is safe, trustworthy, and well-positioned within its niche educational market.

E

ERN GENTURIS

genturis.eu

56

ERN GENTURIS operates as a European Reference Network dedicated to patients with rare genetic tumour risk syndromes, aiming to improve diagnosis, treatment, and healthcare quality across Europe. The organization is positioned as a key healthcare network funded by the European Commission, collaborating with healthcare providers, researchers, and patient advocacy groups. Their services include expert healthcare access, patient referral guidance, educational initiatives, and research facilitation. The website reflects a professional and consistent brand aligned with European healthcare standards. Technically, the website employs a traditional JavaScript and jQuery-based stack with additional libraries such as Magnific Popup and Google Tag Manager for analytics. The site is mobile-optimized with moderate performance and basic accessibility features. While HTTPS is enforced, the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the site demonstrates good practices with no exposed sensitive data or vulnerable libraries detected. However, the lack of security headers and incident response information suggests moderate maturity in security posture. The domain WHOIS data is protected by EURid privacy policies, which is typical for .eu domains and justified given the healthcare context. Overall, the website presents a trustworthy and professional front for ERN GENTURIS, with strong business credibility and good content quality. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance the security posture and regulatory alignment.

E

everso | Live music experience

eversomusic.com

53

everso is a German-based live music experience provider offering an exclusive artist team of over 80 performers for successful events. The website targets event organizers seeking professional live music entertainment. The business model revolves around artist booking services, positioning itself as a specialized media and entertainment service provider. The website is built on WordPress with the Divi theme and uses modern plugins for multilingual support and SEO optimization. The technical infrastructure is moderately optimized for performance and mobile responsiveness. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the active and professional website suggests a legitimate business. Overall, the site is trustworthy but would benefit from enhanced transparency and security practices.

C

CHEMAGAZÍN s.r.o.

chemagazin.cz

49

CHEMAGAZÍN s.r.o. is a Czech-based media company operating an online magazine focused on chemistry, scientific research, industry, laboratories, and technology. The website serves professionals, researchers, and academics in the chemical sciences sector, offering news, articles, and an extensive archive of magazine issues dating back several years. The company has a well-established market presence since 2000, supported by industry partnerships and advertising. Technically, the website uses a modern tech stack including Laravel backend with Livewire, jQuery, Foundation, and various JavaScript libraries. It is hosted on Czech infrastructure with a reputable registrar and name servers. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and policies are missing. Privacy compliance is partial due to the absence of a dedicated privacy policy page. Overall, the site is professional, trustworthy, and content-rich, with good user experience and mobile optimization.

D

Diakonie ČCE

krabiceodbot.cz

53

Krabice od Bot is a prominent Czech non-profit initiative organized by Diakonie ČCE, focused on collecting and distributing Christmas gifts to children in need. The project enjoys strong market positioning as the largest charity gift collection in the Czech Republic, supported by reputable endorsements including the patronage of the president's wife. The website provides comprehensive information for donors, volunteers, and beneficiaries, facilitating engagement through clear navigation and calls to action. Technically, the site is built on Drupal 11 with integrations of modern JavaScript libraries and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent, representing areas for improvement. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy.

M

MR Studio Information Technologies

proon.tech

10

Proon.tech is a Slovak-based technology company offering an integrated SaaS platform for project management, CRM, and business activity management. The platform consolidates multiple business tools into a single solution aimed at improving efficiency and reducing operational costs for small to medium-sized enterprises. The company is positioned as a niche regional provider with a focus on Slovak and EU markets, supported by a development partner MR Studio Information Technologies. The website presents a professional and consistent brand image with clear business messaging and client references. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and various UI enhancement libraries. It uses Google Analytics and Facebook SDK for tracking and marketing purposes, with a compliant cookie consent mechanism in place. Hosting is provided via Websupport.sk, a known Slovak hosting provider. The site is mobile optimized and SEO friendly, though some accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent for privacy compliance. However, it lacks DNSSEC and explicit security headers, and no dedicated security or incident response policies are published. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, Proon.tech demonstrates a solid business and technical foundation with good privacy compliance and moderate security posture. Strategic improvements in security headers, DNSSEC, and explicit security policies would enhance its security maturity and trust further.

Č

Český Institut Metabolického syndromu

cims-ops.cz

45

Český Institut Metabolického syndromu is a Czech healthcare-focused non-profit organization dedicated to educating patients and professionals about metabolic syndrome. The website serves as a platform for disseminating information, organizing seminars, and providing resources such as articles and publications. It maintains partnerships with reputable pharmaceutical companies, enhancing its credibility in the healthcare sector. Technically, the website is built on WordPress with modern libraries and plugins, offering a good user experience and mobile optimization. However, the absence of privacy and cookie policies indicates compliance gaps, and the lack of WHOIS data reduces domain trustworthiness. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

I

Ing. Zuzana Balková EKO-IN®

eko-in.sk

47

EKO IN, operated by Ing. Zuzana Balková, is a Slovak-based environmental consultancy and training provider specializing in legislative compliance, audits, and support related to environmental and waste management laws. The website presents a professional and focused business offering services primarily to Slovak businesses and individuals seeking expertise in environmental legislation. The site is well-structured with clear navigation and modern frontend technologies, providing a good user experience and mobile optimization. However, it lacks critical privacy and cookie policies, security headers, and analytics transparency, which impacts its overall security and compliance posture. No blocking or WAF mechanisms were detected, indicating full accessibility. Contact information is clearly provided, but no phone numbers or social media links are present.

A

Ace IT s.r.o.

aceit.cz

53

Ace IT s.r.o. is a Czech-based technology company specializing in the creation of custom web projects, including websites, e-shops, and online applications, with a strong focus on quality and client-centric services since 2008. The company positions itself as a boutique agency delivering tailored solutions with an emphasis on performance and user experience. Their service portfolio includes web development, online marketing, hosting, and IT outsourcing, targeting businesses seeking professional digital presence and marketing support. Technically, the website demonstrates a mature digital infrastructure using modern frameworks such as Nette and Node.js, along with front-end technologies like Bootstrap and Google Fonts. The site is well-optimized for performance and mobile responsiveness, employs HTTPS with strong SSL configuration, and integrates advanced cookie consent management and CAPTCHA for form security, reflecting a good level of digital maturity. From a security perspective, the site enforces HTTPS, uses Cloudflare Turnstile CAPTCHA to mitigate spam, and provides a detailed cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS transparency and lack of explicit security policies or incident response contacts represent areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy digital front with solid privacy compliance and security practices. The main risk lies in the missing WHOIS data, which slightly impacts domain trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility features to further strengthen the security posture and compliance.

The website tavokraujas.lt represents the Vilniaus Universiteto Ligoninės Santaros Klinikų Kraujo centras, a major Lithuanian healthcare institution specializing in blood donation and transfusion services. The site provides comprehensive information about blood donation, donor registration, donor eligibility, and blood donation events. It serves as an important resource for potential donors and healthcare professionals in Lithuania. The business is well-positioned as a trusted healthcare provider with ISO 9001:2015 certification and affiliation with a leading university hospital. Technically, the website uses a variety of established JavaScript libraries and CSS frameworks such as jQuery, Bootstrap, and Owl Carousel to deliver a responsive and user-friendly experience. The site is mobile optimized and features multiple interactive forms for donor registration and event organization. However, there is no evidence of a CMS, and hosting details are not disclosed. From a security perspective, the website uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

I

INFO WEB s.r.o.

ladnafotografie.cz

49

LADNÁ FOTOGRAFIE is a small local photography studio based in Ladná near Břeclav, Czech Republic, specializing in portrait, still life, product, and other photographic services. The website serves as a professional portfolio showcasing various photographic works and targets local customers seeking photography services. The business is operated by INFO WEB s.r.o., founded in 2019, and maintains an active social media presence on Facebook and Instagram. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various plugins to deliver a visually appealing and responsive user experience. However, the site lacks critical compliance documents such as privacy and cookie policies, and no explicit contact information is provided on the pages analyzed. Security posture is moderate with HTTPS assumed but no security headers detected, and no analytics or tracking scripts are present, indicating minimal user tracking. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

C

Centar za poduzetništvo d.o.o.

czp.hr

43

Centar za poduzetništvo d.o.o. is a regional entrepreneurial support center serving the Dubrovnik-Neretva County in Croatia. The organization focuses on providing a range of services including education, business consulting, credit programs, and assistance with EU funding projects. Their website reflects a government-affiliated entity aimed at fostering entrepreneurship and small business growth in the region. The target audience primarily consists of local entrepreneurs and small business owners seeking support and resources. Technically, the website employs a modern technology stack featuring jQuery, Bootstrap, FontAwesome, and various plugins for enhanced user experience and accessibility. The site is mobile-optimized, uses HTTPS with strong SSL configuration, and integrates Google Analytics and UserWay accessibility tools, indicating a mature digital infrastructure. The website content is well-structured, professionally designed, and includes clear navigation and relevant business information. From a security perspective, the site enforces HTTPS and obfuscates email addresses to reduce spam. However, it lacks explicit security policies and incident response contact details. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and a consent mechanism in place. The website demonstrates a good security posture but could improve by adding formal security documentation and security headers. Overall, the website is trustworthy, professional, and serves its business purpose effectively. The domain registration data aligns with the website's claims, reinforcing legitimacy. Strategic recommendations include enhancing security transparency, publishing incident response information, and maintaining regular security audits to sustain trust and compliance.

M

Međimurska energetska agencija d.o.o. MENEA

menea.hr

46

Međimurska energetska agencija d.o.o. MENEA is a Croatian regional energy agency established in 2008, focusing on energy consulting, project management, energy planning, and systematic energy management. The agency serves municipalities, businesses, and stakeholders in the energy sector, leveraging EU funding and regional initiatives to promote sustainable energy solutions. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its audience. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for enhanced user experience and accessibility. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy, well-maintained, and aligned with the business's mission and market position.

F

F TRUCKS a.s.

fordtrucks.cz

44

F TRUCKS a.s. operates the official Czech website for Ford Trucks, providing comprehensive information and services related to new and used commercial trucks, servicing, financing, and after-sales support. The company targets commercial truck buyers and fleet operators within the Czech Republic, positioning itself as a key regional distributor and service provider for Ford Trucks. The website is professionally designed, localized in Czech, and integrates multiple social media channels to engage its audience. Technically, the website employs a modern technology stack including jQuery, Foundation framework, and various JavaScript libraries for UI and analytics. It uses multiple analytics and tracking services such as Piwik PRO, Microsoft Clarity, Google Tag Manager, and Facebook Pixel, indicating a mature digital marketing infrastructure. The site is hosted likely by REG-TELE3, consistent with the domain's Czech registration and nameservers. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and security headers. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, showing consistency and legitimacy. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security policy transparency and security header implementation would enhance its security posture and compliance maturity.

B

Parik24 — офіційні ставки на бокс онлайн з вигідними коефіцієнтами

bepolite.eu

53

The website 'Parik24' is an online platform specializing in boxing betting, targeting boxing fans primarily in Ukraine and internationally. It offers a variety of betting markets including live betting and detailed odds, positioning itself as a niche sports betting media site. The site is built on WordPress with common front-end libraries such as jQuery and Bootstrap, indicating a moderate level of technical maturity. The design is professional and content is relevant and well-structured, though accessibility features are basic. Security posture is limited with no visible security headers or privacy policies, and no contact information is provided, which may impact user trust and compliance with regulations. Overall, the site is functional and content-rich but requires improvements in security and privacy compliance to enhance credibility and user trust.

G

GDPR CENTRUM

gdprcentrum.cz

58

GDPR CENTRUM is a Czech-based small business collective of IT and legal professionals specializing in GDPR certification, implementation, consultancy, and software development. The company targets small businesses, sole proprietors, and online merchants, offering affordable and free GDPR compliance tools including a documentation generator. The website is professionally designed with clear navigation and comprehensive content in Czech, reflecting a strong focus on GDPR education and practical compliance support. Technically, the site uses a modern but somewhat dated tech stack including Bootstrap and jQuery 1.12.4, with good mobile optimization but lacking some modern security headers and explicit privacy/cookie policies. Security posture is moderate with HTTPS usage but missing advanced security configurations and incident response details. WHOIS data is unavailable, which reduces domain trustworthiness, but the detailed content and contact information support legitimacy. Overall, the site provides valuable GDPR compliance resources with room for improvement in privacy transparency and security best practices.

S

Streetwork Liechtenstein

streetwork.li

61

Streetwork Liechtenstein operates as a non-profit social outreach organization focused on providing support and counseling services in public and semi-public spaces within Liechtenstein. The organization emphasizes confidentiality and flexible engagement schedules, targeting youth and community members. The website reflects a professional and consistent brand presence with clear contact points and organizational governance details. Technically, the site is built on Concrete5 CMS, leveraging modern frontend libraries such as jQuery and Foundation, and employs Matomo for privacy-conscious analytics. Security posture is solid with HTTPS enforced and email obfuscation implemented, though there is room for improvement in security headers and formal policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and well-positioned within its niche, with a moderate to good technical and security maturity.

D

Deutsche Stiftung Kranke Neugeborene

dskn.org

56

Deutsche Stiftung Kranke Neugeborene is a German non-profit foundation dedicated to supporting sick newborns and their families through funding, education, and specialized projects. The organization maintains a professional web presence with clear navigation, relevant content, and compliance with GDPR and cookie consent regulations. The website is built on Joomla CMS with modern frontend libraries and integrates Google Analytics for user tracking. Security posture is generally good with HTTPS enforced and cookie consent implemented, though improvements in security headers and incident response transparency are recommended. WHOIS data is incomplete, limiting domain trust verification, but the overall digital footprint and partner affiliations support legitimacy.

T

TESTIMA, spol. s r.o.

testima.cz

44

Testima, spol. s r.o. is a Czech company specializing in nondestructive testing equipment and services, including sales, training, calibration, and servicing. With over 30 years of experience and ISO 9001 certification, it holds a stable market position serving industrial clients. The website is professionally designed, mobile-optimized, and provides clear contact and GDPR compliance information. Technically, it uses modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA to secure user interactions. Security posture is good with HTTPS and CSRF protections, though some security headers and policies could be improved. Overall, the site is trustworthy, compliant, and well-maintained.

G

Growio

growio.sk

52

Growio is a professional services company specializing in leadership development, business coaching, and organizational growth programs. Founded in 2021 and headquartered in Slovakia with an Asia-Pacific office in India, Growio targets leaders and organizations seeking to navigate disruption and build resilient, high-performing teams. The company emphasizes future-ready workforce development and offers tailored executive coaching and development programs. Their market position is supported by partnerships with recognized companies and membership in the International Coaching Federation (ICF). Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Websupport infrastructure with DNSSEC enabled. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though terms of service and explicit security policies are absent. Security posture is solid with HTTPS enforced and DNSSEC enabled, but could be improved by adding security headers and publishing incident response contacts or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional digital presence aligned with the company's business goals. Strategically, Growio should enhance its security transparency and compliance documentation to strengthen trust and meet evolving regulatory requirements. Continued monitoring of third-party libraries and performance optimization will support sustained digital maturity.

The website www.barlifeevents.cz operates as an online magazine primarily targeting Slovak-speaking audiences with content focused on household topics, energy, gardening, investment, and related services. The site uses WordPress CMS with a standard set of plugins and themes, providing a moderate level of technical sophistication and a generally good user experience. SEO metadata and structured data are implemented, enhancing search engine visibility. However, the absence of contact information, privacy policies, and cookie consent mechanisms indicates gaps in compliance and user trust facilitation. The WHOIS data for the domain is unavailable, which raises concerns about the domain's registration legitimacy and reduces overall trustworthiness. Security posture is basic, with no advanced security headers detected, though HTTPS is implied by canonical URLs. Overall, the site is functional and content-rich but requires improvements in privacy compliance, security best practices, and transparency to enhance credibility and user trust.

MeDitorial s.r.o. operates the website www.kardiologickarevue.cz, a specialized healthcare publication focused on cardiology and internal medicine targeted primarily at healthcare professionals in the Czech Republic. The site offers access to professional articles, archives, and current issues of the Kardiologická revue journal, supporting a niche professional audience with a business model centered on expert content delivery and user registration. The company maintains a consistent brand presence and professional content quality, reinforcing its position as a trusted source in the healthcare publishing sector. Technically, the website employs a modern JavaScript stack including jQuery, Google Tag Manager, and Google Analytics, with responsive design and SEO-friendly metadata including JSON-LD structured data. The site uses HTTPS with good SSL configuration and includes cookie consent mechanisms, reflecting a mature digital infrastructure. However, some improvements are possible in accessibility and security headers implementation. From a security perspective, the site demonstrates good practices such as CSRF protection on forms and encrypted connections. Nonetheless, the absence of visible security headers and lack of published security policies or incident response contacts represent areas for enhancement. The missing WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts overall trustworthiness. Overall, the website is professionally designed, secure, and compliant with privacy regulations, serving its specialized audience effectively. Strategic improvements in domain registration transparency, security policy publication, and enhanced security headers would further strengthen its security posture and business credibility.

A

Aktyvių piliečių fondas

apf.lt

39

Aktyvių piliečių fondas (APF) is a Lithuanian non-profit organization focused on strengthening civil society by providing funding and support to civil society organizations and projects. Supported by the EEA and Norway Grants, APF operates as a grant fund with a clear mission to empower vulnerable groups and promote active citizenship in Lithuania. The website is professionally designed using WordPress, featuring multilingual support and comprehensive content about funding opportunities, project results, and training events. The technical infrastructure includes modern web technologies and analytics tools, ensuring good performance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though improvements in security headers and incident response transparency are recommended. Overall, APF presents a trustworthy and credible online presence aligned with its non-profit mission.

M

MeDiLa spol. s r.o.

mojemedila.cz

60

MeDiLa spol. s r.o. operates a Czech network of clinical laboratories offering comprehensive laboratory diagnostic services primarily targeting individuals seeking premium health testing solutions. The company provides a variety of health screening packages, vitamin and hormone testing, and corporate health benefits, positioning itself as a reputable regional healthcare provider in the Czech Republic. The website is professionally designed with clear navigation, detailed product information, and multiple customer engagement points including social media and newsletter subscription. Technically, the site leverages modern web technologies such as Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a responsive and secure user experience. Security measures include HTTPS enforcement, anti-CSRF tokens, and CAPTCHA integration, although some security headers are not explicitly detected. Privacy and cookie policies are present and indicate GDPR compliance. However, WHOIS data is unavailable, which slightly impacts trustworthiness but does not detract from the professional presentation and business legitimacy. Overall, the website demonstrates a solid digital maturity with room for improvement in security transparency and incident response documentation.

T

Tower Center Rijeka

tower-center-rijeka.hr

10

Tower Center Rijeka is a well-established retail shopping center located in Rijeka, Croatia, founded in 2007. The website presents a comprehensive overview of the center's offerings, including over 135 stores, megastores, a multiplex cinema, restaurants, and extensive parking facilities. The business targets general consumers, families, and shoppers seeking retail and leisure experiences. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages and providing up-to-date news and promotional content. Technically, the site employs modern web technologies such as Google reCAPTCHA v3, Google Tag Manager, Facebook Pixel, and is hosted on DigitalOcean, ensuring reliable performance and security. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and GDPR-aligned consent management. Overall, the site reflects a credible and trustworthy business with a good digital presence.

M

MERKURY Akcesoria Meblowe Mariusz Adamczyk

merkuryam.pl

45

MERKURY Akcesoria Meblowe Mariusz Adamczyk is a Polish company specializing in the production and distribution of furniture accessories. Founded in 2019, it has established itself as a leader in the Polish market by offering a wide range of products including handles, hinges, guides, and other essential furniture components. The company targets both professionals and amateurs in the furniture manufacturing and interior design sectors, operating both physical and online sales channels. The website reflects a professional and consistent brand image with clear contact information and a strong partner ecosystem featuring well-known industry brands. Technically, the website is built on WordPress with WooCommerce and Elementor, indicating a modern but moderately complex infrastructure. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. Overall, the business demonstrates good credibility and market positioning with room for improvement in privacy compliance and security best practices.

T

Tower 115

tower115.sk

58

Tower 115 is a commercial real estate business operating a premium office and retail building in Bratislava, Slovakia. The company offers flexible office spaces, retail areas, and building management services, targeting businesses seeking high-standard premises in a prime location near the Eurovea zone. The website reflects a mature digital presence with professional content and consistent branding. Technically, the site is built on WordPress with common libraries and plugins, including Google Maps integration and a cookie consent mechanism. Security posture is good with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit incident response information. Privacy compliance is basic with privacy and cookie policies present but no detailed GDPR statements. Overall, the site is trustworthy and well-maintained, supporting the company's market position as a leading real estate provider in Bratislava.

O

Oleje a maziva Total - Autorizovaný distributor | Oleje-Total.cz

oleje-total.cz

49

The website oleje-total.cz operates as an authorized distributor of Total brand lubricants and oils, targeting automotive and industrial customers primarily in the Czech Republic. It offers a broad range of products including motor oils, industrial oils, and lubricants for various vehicle types and machinery. The business model is e-commerce focused, providing direct sales through an online platform with clear categorization and product offerings. The site positions itself as a trusted distributor with consistent branding and a professional online presence. Technically, the website utilizes a BohemiaSoft CMS platform with a technology stack including jQuery, Google Tag Manager, Google Analytics, and other common JavaScript libraries. The site is mobile optimized with good SEO practices and a moderate performance profile. Accessibility features are basic but present. Security measures include HTTPS, cookie consent with granular preferences, and CSRF protection, though some security headers are missing and the jQuery version is outdated, which could pose risks. From a security standpoint, the site demonstrates a reasonable posture with encrypted connections and user consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. No direct contact emails or phone numbers were found, limiting direct communication channels. There is no evidence of formal security policies or incident response contacts, which could be improved to enhance trust and compliance. Overall, the website is functional, professional, and compliant with privacy regulations, but the lack of domain registration transparency and some technical security gaps suggest moderate risk. Strategic improvements in domain registration visibility, security header implementation, and updated libraries are recommended to strengthen the security posture and business credibility.

Vinařství Vajbar is a Czech winery specializing in premium wines from the South Moravia region. The company operates an e-commerce platform offering a variety of wines, related products, and wine tasting experiences. Their website demonstrates a professional digital presence with clear branding, product showcases, and event calendars. Technically, the site uses established JavaScript libraries and Google Tag Manager for analytics, with a cookie consent mechanism and age verification overlay to comply with legal requirements for alcohol sales. However, the absence of WHOIS data and explicit contact information on the main pages slightly reduces trustworthiness. Security practices include cookie consent and age verification, but lack visible security headers or incident response contacts. Overall, the website is functional, user-friendly, and compliant with privacy regulations, but could improve transparency and security posture.

Y

young academy rostock

young-academy-rostock.de

55

The young academy rostock is a specialized educational institution focused on the early musical development of gifted children and youth. Affiliated with the Hochschule für Musik und Theater Rostock, it offers workshops, early university studies, and organizes events and competitions to foster musical talent. The website reflects a well-structured, professionally designed platform that effectively communicates its mission and services to its target audience of musically gifted youth, their families, and educators. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and cookie consent mechanisms indicates room for improvement. The WHOIS data aligns with the institution's affiliation, supporting legitimacy. Overall, the site is trustworthy and serves its educational purpose well.

G

Girona Softwareentwicklung GmbH

konsentas.de

49

Konsentas.de is a professional website operated by Girona Softwareentwicklung GmbH offering a modular online appointment scheduling system tailored for German government authorities. The platform supports various public sector applications including resident registration, health offices, vehicle registration, and COVID-19 related tools. The website demonstrates a solid market position with multiple municipal clients and a clear focus on e-government digital transformation. Technically, the site uses modern front-end technologies such as Bootstrap, jQuery, and Google Fonts, and integrates Google Analytics and LinkedIn tracking for marketing insights. The site is mobile-optimized and well-structured, providing a good user experience. Security posture is moderate with cookie consent implemented but lacking explicit security headers and published security policies. WHOIS data aligns with the business identity, indicating legitimacy. Overall, the website is trustworthy and professionally maintained, suitable for its target audience.

N

Nutrimed Promedica

nutrimed.pl

72

Nutrimed Promedica operates as a specialized healthcare provider focusing on home-based nutritional care for patients unable to feed orally, primarily due to neurological, oncological, or other medical conditions. Established in 2007, the company serves a broad patient base across Poland, leveraging NFZ funding to deliver free enteral nutrition services. The website reflects a mature digital presence with clear service descriptions, patient support resources, and accessible contact options. Technically, the site is built on WordPress with modern plugins and accessibility features, ensuring good performance and SEO compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and enhanced security headers are recommended. Overall, the domain registration and hosting align with the business profile, supporting legitimacy and trustworthiness.

B

Bohemia

bohemiahokej.cz

42

The website www.bohemiahokej.cz is a Czech-language promotional platform centered around interactive hockey-themed games and contests sponsored by Bohemia Chips. It targets Czech consumers interested in hockey and promotional sweepstakes, offering prizes such as cars and branded merchandise. The site features multiple interactive games, user registration with consent for data processing, and social media integration. Technically, it employs modern JavaScript libraries and tracking tools like Google Tag Manager and Facebook Pixel, with a responsive design optimized for mobile devices. Security posture is generally good with HTTPS enforced and consent mechanisms in place, though minor backend PHP notices indicate some error handling issues. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding appear professional and consistent with a legitimate marketing campaign.

S

ShooTrek

shootrek.cz

9

ShooTrek is a creative agency based in the Czech Republic offering a broad range of services including professional photography, video production, graphic design, and marketing strategies. The company targets both businesses and individuals seeking high-quality creative content to enhance their brand presence. Their website presents a professional image with clear service descriptions and multiple contact options, including email, phone, and social media channels. The business appears to be small-sized and newly established, with a focus on delivering tailored creative solutions. Technically, the website employs modern web technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. The site is well-structured with appropriate meta tags and SEO considerations, although accessibility features could be improved. Hosting appears to be provided by WEDOS, a known Czech hosting provider. No content blocking or WAF mechanisms were detected, allowing full content access. From a security perspective, the website uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The WHOIS data raises concerns due to a domain creation date set in the future, which is inconsistent with the website's operational status and reduces trustworthiness. No analytics or tracking scripts were found, indicating minimal user tracking. Overall, ShooTrek's website is professionally designed and functional but requires improvements in privacy compliance, security headers, and WHOIS transparency to enhance trust and security posture. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, clarifying domain registration details, and establishing incident response contacts.

A

Allstar Group s.r.o.

centrumtance.cz

58

Centrum Tance, operated by Allstar Group s.r.o., is a well-established dance and exercise center based in the Czech Republic, offering a wide range of courses, workshops, and events primarily in Prague and Brno. The website presents a professional and content-rich platform targeting a broad audience interested in dance, fitness, and wellness activities. The business model focuses on service provision through in-person classes, permanent passes, and gift vouchers, supported by a network of partner organizations and local government entities. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and cookie consent mechanisms, ensuring a good level of digital maturity and user experience. Security posture is strong with HTTPS enforced and privacy-conscious tracking, although some HTTP security headers and explicit incident response contacts are absent. The lack of publicly available WHOIS data reduces domain trust verification, but the overall site professionalism and transparency mitigate concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and improving contact information for incident response. Overall, Centrum Tance demonstrates a solid online presence with good privacy compliance and user engagement, suitable for its market niche.

L

Liechtensteinisches Handelsgewerbe

einkaufland.li

52

Einkaufland Liechtenstein is a retail association representing local shops in Liechtenstein, aiming to promote a pleasant shopping atmosphere with personal service and a diverse product range. The website serves as a platform for member directories, gift voucher sales, and local business promotion, targeting residents and visitors of Liechtenstein. The business model focuses on supporting regional retail through collective marketing and services. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins like Slider Revolution and Cloudflare Turnstile for security. The site is well-structured, mobile-optimized, and uses HTTPS, reflecting a mature digital presence. Security posture is solid with HTTPS and captcha protections, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR, with clear contact information and social media presence. Strategic recommendations include enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.