Other security reports

T

Thallo Design

thallo.design

47

Thallo Design is a specialized rebranding studio offering comprehensive branding and marketing services to businesses seeking to modernize and enhance their brand identity. The company emphasizes flexibility, proven marketing strategies, and is certified as a female and minority owned business. Their service offerings include brand identity redesign, digital footprint upgrades, campaign management, and brand audits. The website reflects a professional and consistent brand image with a clear focus on client success and quality deliverables. Technically, the website is built on WordPress with common industry tools such as Slider Revolution, Google Analytics, and Hotjar for analytics and user behavior tracking. The site is mobile optimized and demonstrates good SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and security header implementation. From a security perspective, the site uses HTTPS and includes opt-out mechanisms for tracking, but lacks explicit privacy and cookie policies, which may pose compliance risks. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces transparency and trustworthiness, though the website content and certifications support legitimacy. Overall, the site presents a trustworthy and professional business presence with moderate technical maturity and some gaps in privacy compliance. Strategic improvements in security headers, privacy disclosures, and WHOIS transparency would enhance the site's trust and compliance posture.

K

klettersteige.ch

klettersteige.ch

59

The website klettersteige.ch is a small-scale, regionally focused platform promoting climbing routes and outdoor activities in Braunwald, Switzerland. It targets outdoor enthusiasts and tourists, providing information on climbing routes, guided tours, equipment rental, and membership options. The site is built on the Wix platform, leveraging Wix's Thunderbolt framework and UI components, ensuring a modern and mobile-optimized user experience. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its compliance posture. Security-wise, the site uses HTTPS and some cookie handling scripts with security considerations but lacks advanced security headers and incident response information. Overall, the site is functional and professionally designed but would benefit from enhanced privacy disclosures and security practices.

P

Proxy Protection LLC

donutjs.club

54

Donut.js was a community-driven monthly meetup based in Portland, Oregon, focused on technology, creativity, and community engagement. The organization ran from 2016 to early 2020, hosting 38 events and 125 talks, and contributed financially to local social good organizations. The website serves as an archive and farewell message, reflecting a small, local community group rather than a commercial enterprise. The domain registration aligns well with the business history and location, indicating legitimacy and stable ownership. Technically, the website is a simple static site built with standard HTML, CSS, and JavaScript, hosted on DreamHost. It is mobile-optimized with good design and navigation clarity but lacks advanced frameworks or CMS. No analytics, advertising, or tracking technologies are present, reflecting a privacy-conscious approach or minimal digital footprint. Performance is moderate with basic accessibility features. From a security perspective, the site uses a domain status that prevents unauthorized transfers but lacks DNSSEC and visible security headers. There is no published privacy, cookie, or security policy, and no contact information for incident response or data protection officers. These gaps reduce compliance and security posture scores. However, no critical vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy for its purpose as a community archive but would benefit from improved privacy and security disclosures if it were to resume active operations or collect user data.

Scena Performance is a small, specialized event organization company focused on trail running, triathlon, and endurance sports events primarily in Northern California and globally. The company operates a WordPress-based website that provides event information, registration links, and blog updates to its target audience of endurance athletes and sports enthusiasts. The business model centers on organizing and promoting endurance sports events ranging from 5K to 50K races and related festivals. The website demonstrates consistent branding and a good level of content quality, supporting its niche market position. Technically, the website uses a modern WordPress CMS with Bootstrap for responsive design, jQuery, and several marketing and analytics tools including Google Analytics and Facebook Pixel. The site is hosted likely via GoDaddy, with a valid SSL certificate ensuring HTTPS security. Performance is moderate with good mobile optimization and basic accessibility features. SEO is enhanced by Yoast SEO plugin and structured data (JSON-LD) implementation. From a security perspective, the site enforces HTTPS but lacks DNSSEC and explicit security headers, which are recommended for improved security posture. There is no visible security policy or incident response information, and cookie consent mechanisms are absent, indicating partial privacy compliance. Tracking scripts are present but without clear user consent mechanisms, which may pose compliance risks under GDPR. The domain WHOIS data is consistent with the business claims, showing a long-standing registration without privacy protection, supporting legitimacy. Overall, the website is functional, professional, and trustworthy for its business purpose but would benefit from enhanced security practices and privacy compliance improvements to reduce risk and increase user trust.

T

TrailCon

trailconference.com

58

TrailCon is a specialized event organizer focusing on the trail running industry, hosting an annual conference that brings together brands, athletes, and fans to discuss and shape the future of trail running. The website presents a professional and well-structured platform showcasing event schedules, panelists, sponsors, and related activities. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is hosted with WordPress.com nameservers and secured with HTTPS, though it lacks DNSSEC and some security headers. Privacy compliance is minimal, with no visible privacy or cookie policies, which is a notable gap. Overall, the site demonstrates good business credibility and user experience but could improve in security and privacy transparency.

B

Broken Arrow Skyrace

brokenarrowskyrace.com

55

The Broken Arrow Skyrace website represents a niche sports event focused on skyrunning in California's Squaw Valley. The site is built on the Wix platform, leveraging Wix's hosting and content management capabilities, and integrates Google Analytics and Tag Manager for visitor tracking. The website presents a professional design with good user experience and mobile optimization, targeting outdoor sports enthusiasts and athletes interested in skyrunning events. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Security posture is basic with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies, and no contact or incident response information is provided. Overall, the site is functional and visually appealing but requires improvements in security, privacy, and business transparency to enhance trust and compliance.

The domain relimedia.biz is registered to AlCoda GmbH, a Swiss company established in 2017. However, the website content is completely inaccessible, returning a 403 Forbidden error page that blocks all access. Due to this, no business description, services, or contact information is available for analysis. The technical infrastructure appears minimal with DNS hosted on domaincontrol.com and registrar Mesh Digital Limited. Security posture is weak as no security headers or SSL details are available, and the site is effectively non-functional for visitors. Overall, the risk is elevated due to lack of transparency and accessibility, limiting trust and usability.

C

CUSTOM Design Sàrl

custom-design.ch

55

CUSTOM Design Sàrl is a Swiss-based small design agency established in 2002, specializing in custom design and communication services including graphic identity, packaging, web design, and branding. The company positions itself as a creative partner delivering tailored concepts with a 360-degree approach. The website reflects a professional and consistent brand image with clear contact information and client testimonials, targeting businesses seeking bespoke design solutions. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and jQuery UI 1.8.16, integrated with Google Analytics and Slick Carousel for UI components. The site is mobile optimized and has basic SEO and accessibility features but lacks advanced security headers and modern JavaScript versions. Security posture is moderate with HTTPS enabled but no visible security headers and outdated libraries that may pose risks. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanism. Overall, the website is functional and trustworthy but requires improvements in security and privacy compliance to enhance its risk profile.

H

Husitské muzeum v Táboře

husitskemuzeum.cz

57

Husitské muzeum v Táboře is a cultural institution focused on presenting historical and educational content related to the Hussite movement and medieval history in the Czech Republic. The website serves as an information portal for museum exhibitions, educational programs, and cultural events, targeting general visitors and history enthusiasts. The site is multilingual, primarily in Czech with English support, and provides detailed event information and partner references. Technically, the website is built on WordPress with a variety of plugins for multilingual support, GDPR compliance, and user engagement. It uses standard web technologies including jQuery, Google Fonts, Google Analytics, and Facebook SDK. The site is served over HTTPS, ensuring secure communication, but uses an outdated jQuery version which may pose security risks. The site has moderate performance and basic mobile optimization. From a security perspective, the site implements GDPR-compliant cookie consent mechanisms and uses HTTPS. However, it lacks advanced security headers and uses an outdated JavaScript library version. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are found. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the website is professionally maintained with good content quality and user experience. The main risks relate to outdated libraries and lack of visible security policies. Strategic improvements in security headers, library updates, and enhanced contact transparency would strengthen the site's security posture and trustworthiness.

E

Enki o.p.s.

enki.cz

46

Enki o.p.s. is a Czech non-profit research organization specializing in applied environmental research and laboratory services, operating since 1999. Their website reflects a professional presence with a focus on environmental balance and scientific expertise. The organization offers a range of services including accredited laboratory testing, educational programs, and mobile laboratory services. The site is built on WordPress using the Divi theme, indicating a modern and maintainable technical infrastructure. Security posture is strong with HTTPS and security headers implemented, though privacy compliance could be improved by adding cookie consent mechanisms and clearer contact information. Overall, the website supports the organization's credibility and mission effectively.

M

Mikrobiologický ústav AV ČR, v.v.i.

alga.cz

51

Centrum Algatech is a reputable research center under the Microbiological Institute of the Czech Academy of Sciences, specializing in microscopic algae research and biotechnology. The center is internationally recognized and operates unique cultivation facilities. The website reflects a medium-sized scientific institution with a focus on research and public outreach. Technically, the site uses older but functional technologies like the Dojo Toolkit, with moderate performance and basic mobile optimization. Security posture is moderate with room for improvement, especially in HTTPS enforcement and security headers. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy page. WHOIS data is unavailable, which reduces domain transparency but does not negate the site's legitimacy given its institutional affiliation. Overall, the website is professional, content-rich, and safe for general audiences.

C

ChooseMyCompany - Certified reviews

choosemycompany.com

67

ChooseMyCompany is a well-established platform founded in 2014 that specializes in providing certified ESG reviews, rankings, and job postings for companies and schools. The platform targets businesses, employees, trainees, and job seekers, offering services such as review collection, benchmarking, and certified review broadcasting with a strong emphasis on GDPR compliance and data protection. The website demonstrates a high level of professionalism, content quality, and user experience, supported by multiple language options and recognized certifications like HappyIndex®. Technically, the site employs modern JavaScript libraries including jQuery, Bootstrap Vue, and cookie consent management tools, hosted on a reputable cloud provider. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and credible, though it would benefit from publishing explicit security policies and incident response contacts.

Inspiring Workplaces Group Limited operates a professional website focused on promoting PeopleFirst workplace cultures globally. The company offers awards programs, certification services, content resources, and community events to support organizations in building and celebrating positive workplace environments. The website positions itself as a global community and certification authority in this niche, targeting HR professionals and organizations committed to employee engagement and culture excellence. Technically, the website is built on WordPress with modern technologies including Laravel Livewire, Alpine.js, and integrates Google Analytics, Google Tag Manager, Stripe for payments, and Mailchimp for marketing. The site is hosted behind Cloudflare DNS and CDN services, ensuring good performance and availability. Security posture is solid with HTTPS enforced and domain protection flags set, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or explicit GDPR compliance indicators. Contact information is limited to contact forms and social media links, with no direct emails or phone numbers published. Overall, the website is professional, trustworthy, and well-maintained, serving a medium-sized business with a clear market position in workplace culture certification and community engagement.

V

Visuelle Fabrik

visuellefabrik.ch

60

Visuelle Fabrik is a small, professional branding and graphic design agency based in Basel, Switzerland. The company specializes in corporate branding, design, marketing, and consulting services aimed at businesses seeking to enhance their brand identity and market presence. Their website reflects a strong market position with a clear focus on quality and client engagement. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and SEO tools such as Rank Math and Google Tag Manager. The site is well-optimized for mobile devices and provides a good user experience. Security-wise, the website uses HTTPS and implements a comprehensive cookie consent mechanism, but lacks explicit privacy and security policy pages and security headers, which are recommended for enhanced compliance and protection. Overall, the domain registration details are consistent with the business claims, supporting the legitimacy of the site.

Q

QuickpageX

quickpagex.ch

48

QuickpageX is a Swiss-based service providing flexible website solutions tailored primarily for institutional clients such as church communities and aid organizations. The company emphasizes ease of use by allowing clients to focus on content creation while managing technical aspects including domain registration and email accounts. Their market position is niche, focusing on privacy-conscious institutions with a subscription-based business model that includes a free trial period and annual fees. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating privacy-friendly tools like Matomo analytics and OpenStreetMap instead of Google services. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and no exposed sensitive data, though it lacks some advanced security headers and a published security policy. Privacy compliance is strong with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

B

Barnaby Walters

waterpigs.co.uk

46

The website waterpigs.co.uk is a personal blog and portfolio site for Barnaby Walters, focusing on his interests in musical instrument building, music performance, programming, electronics, wildlife, and IndieWeb technologies. The site serves a niche audience interested in these topics and provides detailed notes, articles, and technical insights. The business model is personal content sharing without commercial sales or services. Technically, the site uses a modern but simple tech stack including HTML5, CSS, JavaScript, Leaflet.js, and RequireJS, hosted by Hostinger in Lithuania. The site is built on the Taproot framework and follows IndieWeb standards, indicating a mature digital presence. Security posture is moderate with HTTPS implied but lacking explicit security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is provided via email and social media links, enhancing credibility. Overall, the site is trustworthy and professionally maintained but could improve in privacy and security transparency.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the requested website content is not accessible or blocked. There is no actual website content, business information, or metadata available for analysis. The page is a technical offline or error page embedded within the browser, not a public-facing website. Consequently, no privacy, cookie, or terms of service policies are present, and no contact or security information is available. The technical infrastructure is limited to Chromium internal scripts and canvas-based game code for the offline dinosaur game. Security posture is minimal due to the nature of the page, and no external links or business credibility indicators exist. Overall, this is a non-functional placeholder page with no business or compliance relevance.

O

ON BOARD

on-board.cz

48

ON BOARD is a Czech Republic based small business founded in 2019 that specializes in helping companies present their services, products, and themselves more attractively, clearly, and profitably. Their key offerings include visual work, web development, marketing 360, sales strategies, organizational efficiency, LinkedIn consulting, and ESG services. The website is built on WordPress using the Astra theme and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The technical infrastructure is solid with HTTPS enforced and Cloudflare DNS, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks explicit privacy policy and terms of service pages. Overall, the website is professional and trustworthy with moderate security posture and good business credibility.

U

Unfold Event 2026

unfold-event.ch

57

The website unfold-event.ch serves as the official landing page for the Unfold event series, focusing on the upcoming 2026 edition. It provides information about past events, expresses gratitude to attendees, and encourages visitors to subscribe for updates. The site targets event attendees and interested parties primarily in Switzerland. The business model revolves around event organization and promotion with a small-scale, niche market presence. Technically, the website is built using the Astro framework (version 4.5.10) with custom JavaScript for interactive elements like countdown timers and form validation. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. No major CMS or hosting details are evident from the content. From a security perspective, the site uses HTTPS but lacks visible security headers such as Content-Security-Policy or HSTS. There is no cookie consent mechanism or comprehensive privacy policy hosted on the site itself, though a privacy policy link to an external provider is present. No incident response or vulnerability disclosure information is available, indicating a basic security posture suitable for a small event site but with room for improvement. Overall, the website is professional and trustworthy for its purpose but would benefit from enhanced security practices, privacy compliance improvements, and richer business information to increase credibility and user trust.

B

Büro Milk

buromilk.com

61

Büro Milk is a small creative collective founded in 2024, specializing in partnering with business leaders and social change-makers to popularize impactful initiatives. The company operates primarily out of Slovakia with additional presence in Copenhagen, Prague, and Vienna, positioning itself as a niche player in the creative consulting and communication space. The website reflects a professional and consistent brand image, targeting change-makers and institutions seeking creative partnership services. Technically, the site is built on the Readymag platform, leveraging custom fonts and modern tracking tools such as Google Analytics and TikTok Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though improvements are recommended in DNS security and HTTP security headers. Privacy compliance is basic, with terms and conditions linked externally but lacking an onsite cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with transparent domain registration consistent with the business founding date.

I

Insight Partners

go-scale.com

63

The website go-scale.com serves as a community engagement platform branded as GO, associated with Insight Partners, a global private equity and venture capital firm. It provides a networking platform for members related to Insight Partners' ecosystem. The site is professionally designed, with clear branding and social media integration linking to official Insight Partners profiles. The business model centers on investment management combined with community networking services, targeting investors and portfolio companies. The domain is appropriately aged and registered without privacy protection, indicating transparency and legitimacy. Technically, the site leverages modern web technologies including React, Mapbox for mapping, and Hivebrite as the community platform. It integrates multiple analytics and monitoring tools such as Google Analytics, Amplitude, Datadog, and Sentry, indicating a mature digital infrastructure. Hosting is via AWS Cloudfront CDN, supporting performance and scalability. Mobile optimization is good, though accessibility and SEO optimizations are basic. From a security perspective, the site enforces HTTPS with a valid SSL certificate and domain registration protections. However, DNSSEC is not enabled, and no explicit security headers are detected in the HTML content. There is no visible privacy policy, cookie consent mechanism, or terms of service on the main page, which are critical for GDPR compliance and user trust. Incident response and vulnerability disclosure information are also absent. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices. Strategic improvements in publishing privacy and cookie policies, enabling DNSSEC, and adding security headers would strengthen the security posture and regulatory compliance, thereby improving user trust and reducing risk.

F

Founders4Founders is under construction

founders4founders.cz

48

Founders4Founders.cz is a website currently under construction, targeting investors and startups in the Czech Republic. The site appears to be a small-scale project or startup founded in 2021, with minimal public-facing content and no active business services visible. The website uses WordPress with an under construction plugin and basic frontend technologies such as Bootstrap and Font Awesome. Hosting is likely provided by Forpsi, a Czech hosting provider, as inferred from the nameservers. The technical infrastructure is basic, with no advanced frameworks or analytics detected. Security posture is weak, with no visible HTTPS confirmation, security headers, or privacy policies. There is no contact information or forms, limiting user engagement and trust. Overall, the site is not yet operational and lacks critical compliance and security features.

The website vkx.cz is currently inaccessible, returning a 403 Forbidden error page which blocks access to any meaningful content or metadata. The domain is registered since June 2022 with a Czech registrar and uses Czech name servers, indicating a legitimate registration but a very recent domain age. Due to the lack of accessible content, no business description, contact information, or security policies are available for analysis. The technical infrastructure appears minimal with no detectable scripts, frameworks, or CMS. Security posture cannot be assessed properly due to missing data and lack of HTTPS information. Overall, the site appears either under development, restricted, or misconfigured, resulting in a low trust and credibility score.

B

Brněnská personalistika, spol. s r. o.

bp.cz

57

Brněnská personalistika, spol. s r. o. is a well-established Czech company specializing in human resources services including recruitment, consulting, audits, and education. Operating since 1996, it holds a stable market position with a focus on the Czech labor market and multicultural corporate environments. The website reflects a professional business model targeting companies seeking HR advisory and training services. Technically, the site uses a legacy ASP.NET WebForms platform with several JavaScript libraries including jQuery 1.7.2 and Google Analytics for tracking. While the site is accessible and functional, it shows signs of aging technology and basic mobile optimization. Security posture is moderate with HTTPS enabled but lacking advanced security headers and updated libraries. Privacy compliance is partial, with a cookie consent banner present but no clear privacy policy page. Contact information and certifications are clearly presented, enhancing business credibility. Overall, the site is professional but would benefit from modernization and enhanced security and privacy practices.

J

Jihočeský vědeckotechnický park, a.s.

jihoczech.cz

44

Jihočzech is a regional entrepreneurial competition organized by Jihočeský vědeckotechnický park, a.s., aimed at supporting innovative business ideas and startups in the South Bohemian region of the Czech Republic. The website provides detailed information about the competition phases, prizes, and useful resources for new entrepreneurs. It targets aspiring entrepreneurs seeking professional coaching, networking, and potential investment opportunities. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing, with a responsive design optimized for mobile devices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms implemented, though explicit security headers are not detected and no formal security policy or incident response information is published. The absence of WHOIS data for the domain reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is professional, content-rich, and user-friendly, serving its business purpose effectively.

The website at axonix.com is currently inaccessible, returning an AWS S3 NoSuchKey error indicating that the main content (index.html) is missing or blocked. Due to this, no meaningful business, technical, or security content could be extracted or analyzed. The lack of accessible content prevents assessment of the company's market position, services, or digital maturity. Security posture is minimal with no visible HTTPS enforcement or security headers, and no privacy or compliance policies are present. Overall, the site appears non-functional or improperly configured, posing a high risk for trust and usability.

P

PLAYGROUNDS

playgrounds.ch

60

PLAYGROUNDS is a Swiss-based platform dedicated to providing information about playgrounds, targeting families and children. The website is professionally designed with consistent branding and good content quality, serving a niche local market. Technically, it employs modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for consent management, running on the Umbraco CMS. The site is well-optimized for mobile and SEO, with moderate performance. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy and cookie policy with GDPR adherence. However, the site lacks explicit terms of service, incident response, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. Overall, the website is trustworthy, secure, and suitable for its target audience.

O

OPTEN AG

pgfwirkt.ch

69

PGF wirkt! is a Swiss-based website realized by OPTEN AG, likely serving a community or social impact purpose targeted at German-speaking Swiss users. The website employs modern web technologies including Umbraco CMS, Google reCAPTCHA, Google Tag Manager, and Cookiebot for cookie consent management, reflecting a moderate level of digital maturity. The site is well-structured with good design and navigation, optimized for mobile devices, and uses multiple third-party analytics and marketing tools to track user interactions extensively. Security posture is solid with HTTPS enforced and bot protection in place, but lacks published security policies or incident response information. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy or terms of service pages found. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

A

Active City

activecity.ch

66

Active City is a Swiss-based community initiative offering free sports and movement courses for all age groups, promoting outdoor and collective physical activities without registration requirements. The website is professionally designed using Umbraco CMS and integrates modern technologies such as Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance and user experience enhancement. The technical infrastructure supports good performance and mobile optimization, with a moderate level of accessibility and SEO optimization. Security posture is solid with HTTPS enforcement and cookie consent management, though some security headers could be improved and explicit security policies are absent. Overall, the website is trustworthy, transparent, and well-aligned with its community service mission.

The website europ.pl is currently inaccessible, returning a 403 Forbidden error page with no accessible content. This prevents any meaningful analysis of the business, services, or technical infrastructure. The domain is registered since 2002 with AZ.pl Sp. z o.o., a reputable Polish registrar, indicating a legitimate and long-standing domain ownership. However, the lack of accessible content and absence of security or privacy policies significantly limit the ability to assess the website's digital maturity or security posture. The site does not present any metadata, scripts, or business information, and no contact details or compliance documentation are available. Overall, the website appears to be either restricted or misconfigured, resulting in a poor user experience and low trustworthiness.

HANDBALL CLUB MILEVSKO is a local sports organization based in Milevsko, Czech Republic, focused on promoting handball among youth and adult players. The website serves as a community hub for news, events, tournaments, and team information. The club appears to be a small-scale, community-driven entity without commercial business operations. Technically, the website uses legacy JavaScript libraries such as jQuery 1.12.4 and jQuery UI 1.12.1, hosted on the eStránky CMS platform. The site includes Facebook integration and Google Fonts for styling. However, there is no evidence of modern security practices such as HTTPS enforcement or security headers. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The WHOIS data is unavailable, which reduces domain trustworthiness but may be due to registry policies rather than malicious intent. Overall, the website is functional and informative for its target audience but requires improvements in security, privacy, and contact transparency.

F

FC ZVVZ Milevsko

fcmilevsko.cz

47

FC ZVVZ Milevsko is a local Czech football club with an active online presence focused on providing information about its teams, matches, news, and partners. The website is built on WordPress using the Elementor page builder, hosted by Wedos, and employs HTTPS for secure communication. The site targets football fans and the local community, offering media content and partner information to engage its audience. Technically, the site uses modern web technologies and plugins but lacks some advanced security headers and explicit privacy policies. Security posture is moderate with room for improvement in transparency and incident response readiness. Overall, the site is functional, well-branded, and trustworthy for its intended audience.

H

HC Milevsko 1934

hcmilevsko1934.cz

45

HC Milevsko 1934 is a Czech ice hockey club with a digital presence focused on providing club information, team rosters, match schedules, news, and partner promotion. The website targets local and regional ice hockey fans and community members. The domain was registered in 2021, supporting a relatively recent online presence for a club with historical roots dating back to 1934. The site is well-branded and consistent, with active social media integration and regular content updates. Technically, the site uses common JavaScript libraries such as jQuery, Slick Carousel, and LightGallery, and appears to be hosted by REG-ZONER, a Czech hosting provider. The site is mobile-optimized and has good navigation and content relevance. Security-wise, the site implements a cookie consent mechanism but lacks visible security headers and explicit privacy or security policies. No contact emails or phone numbers are directly visible, which may impact user trust and compliance. Overall, the site is functional and professional but could improve in security and privacy transparency.

F

FBC Došwich Milevsko z.s.

doswich.cz

56

FBC Došwich Milevsko is a Czech floorball sports club established in 2012, serving over 200 active members across various age groups. The club is well-positioned regionally within South Bohemia and actively participates in national and regional floorball leagues. Their website provides comprehensive information about teams, training, events, and club history, targeting local sports enthusiasts and community members. Technically, the site is built on WordPress using popular plugins for sports and event management, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and Google Analytics tracking implemented with opt-out options; however, the absence of security headers and privacy/cookie policies indicates room for improvement. The missing WHOIS data for the domain raises concerns about domain registration transparency but does not detract from the apparent legitimacy of the club's online presence. Overall, the website is professional, content-rich, and trustworthy for its intended audience.

R

Grossiste produit biologique | Relais Vert | Carpentras

relais-vert.com

58

The website www.relais-vert.com appears to be a small business site built on the Wix platform, primarily targeting a French-speaking audience. The content and metadata are minimal, with no clear business description or contact information provided. The site uses standard Wix technologies and scripts, indicating a basic digital infrastructure without advanced customizations. Security posture is weak due to lack of visible security headers, absence of privacy and cookie policies, and no incident response or security contact information. The domain WHOIS data is unavailable, which raises concerns about the legitimacy and trustworthiness of the site. Overall, the site presents a low maturity level in terms of business credibility, security, and privacy compliance.

M

MONTO, s.r.o.

monto.cz

52

MONTO, s.r.o. is a Czech company with an online presence via www.monto.cz. The website is primarily in Czech and appears to target local customers or business partners. The company is described as a successful purely Czech entity, but detailed business descriptions and services are not explicitly provided in the accessible content. Technically, the website is built on WordPress using the Divi theme and employs lazy loading scripts for performance optimization. However, the technical implementation is basic with moderate performance and limited mobile optimization. Security posture is weak due to lack of HTTPS verification in the provided data, absence of security headers, and no visible advanced security practices. Privacy compliance is minimal with no visible privacy or cookie policies, and no GDPR compliance indicators. Business credibility is moderate but hampered by missing contact information and lack of registrant transparency. Overall, the website is accessible and safe but requires improvements in security, privacy, and business transparency to enhance trust and compliance.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) that serves as an offline error page with embedded JavaScript for the Chrome dinosaur game. There is no actual website content, business information, or external links present. The page is not a public-facing website but a browser-generated error page. The technical infrastructure is limited to Chromium internal scripts and canvas-based game rendering. Security posture is minimal due to the nature of the page, with no HTTPS or security headers applicable. Privacy and compliance policies are absent as this is not a commercial or informational website. Overall, this content does not represent a business or service and thus cannot be evaluated for typical website security, compliance, or business credibility metrics.

S

Śląskie dla rodziny |

slaskiedlarodziny.pl

39

The website 'Śląskie dla rodziny' appears to be a regional or community-oriented site focused on family-related content in the Silesian region of Poland. The domain has been registered since 2014 and is hosted by Digital Media Technology Sp. z o.o., indicating a stable and legitimate presence. The site uses WordPress with the Divi theme, a common CMS and theme combination for small to medium websites. However, the site lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR compliance in the EU. Technically, the site uses standard web technologies including JavaScript and jQuery, and loads fonts from Google Fonts. The security posture is basic with HTTPS enabled but no advanced security headers or DNSSEC. There is minimal tracking via an external script from zenbox.pl. Overall, the site is accessible and safe for general audiences but requires improvements in privacy compliance and security best practices.

The domain www.mkapps.com is currently inaccessible, serving a CloudFront 502 error indicating that the origin domain name could not be resolved. This suggests a configuration error or that the domain is not actively hosted. The WHOIS query returned no registration data, implying the domain may be unregistered or expired. Due to the lack of accessible website content, no business information, metadata, or contact details are available for analysis. The technical infrastructure appears to rely on Amazon CloudFront as a CDN, but the origin server is unreachable, resulting in a complete service outage. From a security perspective, the absence of HTTPS and security headers, combined with the domain's unregistered status, presents critical risks and a lack of trustworthiness. No privacy, cookie, or terms of service policies are published, and no contact or incident response information is available. The website does not expose any content, so no vulnerabilities or tracking technologies could be assessed. Overall, the security posture is poor due to unavailability and lack of standard protections. Given the domain's current state, the overall risk is high. The domain is not trustworthy or credible, and the lack of registration data raises legitimacy concerns. Strategic recommendations include resolving DNS and hosting configuration issues, registering the domain properly, implementing HTTPS and security headers, and publishing compliance and contact information to establish trust and meet regulatory requirements.

The website marykaypromotion.de is a small German-language blog focused on philosophy topics. It is built on WordPress and hosted on German nameservers provided by netclusive.de. The site contains minimal content, primarily a single blog post and a contact button without a linked form or email address. There are no privacy, cookie, or terms of service policies present, and no explicit business or company information is provided. Technically, the site uses standard WordPress technologies and modern web fonts, with basic mobile optimization and accessibility features. Security posture is weak due to the absence of security headers, incident response contacts, and published security policies. No analytics or advertising tools are detected, indicating minimal user tracking. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for a general audience.

L

Home | Linsi Foundation

linsi.foundation

56

The website www.linsi.foundation appears to be a small-scale foundation or non-profit entity hosted on the Wix platform. The site content is minimal and lacks detailed business descriptions, contact information, or policy disclosures. The technical infrastructure is based on Wix's standard technology stack, including core-js and polyfills, indicating a modern but basic setup. Security posture is weak due to the absence of security headers and lack of visible privacy or cookie policies. The WHOIS data is unavailable due to a malformed response, which limits the ability to verify domain legitimacy and registrant details. Overall, the site presents a low trust profile with limited business credibility and compliance indicators.

The website p-h-s-druck.eu is currently a parked domain hosted by IONOS SE and managed via SedoParking services. There is no active business content, company information, or contact details available on the site. The site primarily displays a cookie consent modal referencing external privacy and cookie policies hosted on SedoParking and IONOS domains. Technically, the site uses basic HTML and JavaScript with scripts loaded from SedoParking for parking functionality. There is no evidence of HTTPS or security headers, and no forms or data collection mechanisms are present. The security posture is minimal, with no incident response or security policies disclosed. Overall, the domain appears inactive as a business website and serves as a placeholder or for future use.

AQUA MARIA Marienbad is a small luxury mineral water company based in the Czech Republic, specializing in low mineralization mineral water suitable for everyday drinking and spa carbonic baths. The website is built on WordPress using the Divi theme and incorporates Yoast SEO and Google Analytics, indicating a moderate level of digital maturity. The site design is professional and mobile-optimized, providing a good user experience with clear navigation and relevant content. However, the absence of explicit privacy, cookie, and terms of service policies, as well as lack of visible contact information, limits its privacy compliance and business credibility. Security posture is basic with HTTPS enabled but missing security headers and incident response information. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security practices.

E

Excelsior

excelsiorwater.cz

44

Excelsior is a small Czech-based business specializing in the production and sale of classic mineral water with a balanced ratio of magnesium and calcium. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with good SEO practices and multilingual support. The technical infrastructure includes modern JavaScript libraries and third-party services such as Google Analytics and Tawk.to for analytics and customer engagement. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Z

Zaječická hořká

zajecicka.cz

41

Zaječická hořká is a small business focused on offering a traditional natural laxative and detoxification product based on magnesium sulfate (Epsom salt), with a history dating back to 1717. The website is built on WordPress using the Divi theme and incorporates modern web technologies including jQuery, Google Analytics, and live chat via Tawk.to. The site is multilingual and optimized for SEO with structured data and meta tags. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal privacy or cookie policies. Contact information and incident response details are not explicitly provided, which may impact user trust and compliance. Overall, the website is professional and trustworthy for its niche but would benefit from enhanced privacy compliance and security best practices.

B

BHMW a.s.

bilinska.cz

38

Bílinská kyselka is a company specializing in the bottling and distribution of natural spa spring water, with a historical legacy dating back to 1664. The website presents the brand as a producer of high-quality naturally sparkling spa water, targeting a general audience interested in health and wellness products. The company appears to be a small-sized entity based in the Czech Republic, with a consistent and professional brand presence online. Technically, the website is built on WordPress using the Divi theme and several plugins including Google Analytics for tracking and Soundy Background Music for audio features. The site is mobile optimized and has good SEO practices, although some accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and formal privacy or cookie policies. No WHOIS data is available, which limits domain trust assessment. No vulnerability disclosure or incident response contacts are present, indicating room for improvement in security transparency and compliance. Overall, the website is professional and trustworthy in its content and presentation but would benefit from enhanced privacy compliance, security best practices, and domain registration transparency to improve its risk profile and user trust.

S

Sotovox

sotovox.cz

43

Sotovox is a small a cappella vocal group based in the Czech Republic, specializing in live vocal performances without instrumental accompaniment. Their website showcases upcoming and past concerts primarily in Prague, offers a Christmas CD, and links to their presence on Spotify and YouTube. The group engages with their audience via social media platforms including Facebook, Instagram, and YouTube. Technically, the website is built with standard HTML5, CSS, and JavaScript, using Google Fonts and embedded YouTube videos. The site is mobile optimized and provides a good user experience with clear navigation and multimedia content. However, it lacks privacy and cookie policies, security headers, and WHOIS domain registration data, which impacts trust and compliance assessments. No forms or analytics scripts are present, indicating minimal data collection and tracking.

N

NTG AGRI s.r.o.

ntgagri.cz

51

NTG AGRI s.r.o. is a Czech-based company specializing in animal nutrition and consulting services for farm animals. Established in 2012, the company offers a range of products including premixes, mineral-vitamin supplements, milk replacers, and silage inoculants, alongside comprehensive advisory services aimed at optimizing farm production. The website reflects a professional and consistent brand presence, targeting agricultural businesses and farmers in the Czech Republic. Technically, the site is built on WordPress with Elementor and uses modern web technologies, hosted likely by WEDOS. Security posture is good with HTTPS enforced, though lacking some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and well-positioned in its niche.

The website valterscapital.com is currently inaccessible due to an invalid SSL certificate on the origin server, as indicated by the Cloudflare error 526 page. This prevents any meaningful content or business information from being accessed or analyzed. The domain is very new, registered in March 2024, and uses Cloudflare for DNS and CDN services. However, the lack of a valid SSL certificate and absence of any privacy, cookie, or contact information significantly undermine the site's credibility and security posture. No business description or services are presented, and no forms or tracking technologies are detected, indicating a minimal digital footprint at this time. From a technical perspective, the site relies on Cloudflare but suffers from critical SSL misconfiguration that blocks user access. There is no evidence of modern CMS, frameworks, or analytics tools. The site lacks SEO optimization and accessibility features, and no security headers are detected. The WHOIS data is consistent with a legitimate registrar but shows a very recent domain age, which may not align with any claims of an established business. Security-wise, the primary concern is the invalid SSL certificate causing the site to be blocked by Cloudflare, which is a critical issue. No other security policies, incident response contacts, or certifications are found. The absence of privacy and cookie policies also indicates non-compliance with GDPR and other privacy regulations. Overall, the security posture is poor, and the site is not currently trustworthy for visitors or customers. Given these findings, the overall risk assessment is high. The site should urgently address the SSL certificate issue to restore accessibility, implement standard security headers, and publish privacy and cookie policies. Adding clear business and contact information will improve trust and compliance. Until these issues are resolved, the site remains inaccessible and lacks credibility.

B

BOHEMIA HEALING MARIENBAD WATERS a.s.

bhmw.cz

40

BOHEMIA HEALING MARIENBAD WATERS a.s. is a historic company specializing in bottling and distributing spa mineral waters, with a legacy dating back to 1664. The company operates multiple well-known spa water brands, targeting a global audience interested in natural healing waters. Their website serves as a multilingual landing page to promote their brands and provide corporate information. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins for interactive content and multilingual support. It employs modern web technologies and integrates Google Analytics for visitor tracking. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. The absence of WHOIS data reduces domain trustworthiness, though the website content and branding suggest a legitimate and established business. Overall, the site is professional, content-rich, and safe for general audiences, but could benefit from enhanced security and privacy features.