Other security reports

S

Social Maturity Score

socialmaturityscore.com

54

Social Maturity Score is a niche marketing transformation guide focused on social media maturity, providing businesses and marketing professionals with a common understanding and survey tools related to social media. The website is relatively new, founded in 2020, and uses a modern Angular-based frontend technology stack. The content is minimal but relevant to its target audience, with basic design and mobile optimization. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. No privacy or cookie policies are published, and no contact or incident response information is available, which limits compliance and trust. Overall, the site is accessible without WAF or blocking mechanisms, but improvements in privacy, security policies, and contact transparency are recommended.

S

skimondo-landing

skimondo.com

55

Skimondo.com currently serves as a minimal landing page indicating preparation for a new ski adventure offering. The site targets ski enthusiasts and adventure seekers but lacks detailed business or service information. The technical infrastructure is based on Angular 16 with modern web fonts, hosted under a domain registered since 2011 with a reputable registrar. However, the site lacks critical security and privacy features such as security headers, privacy policies, and contact information, which limits trust and compliance. No WAF or blocking mechanisms are detected, and the site is accessible without restrictions. Overall, the site is in an early or transitional phase with basic content and limited digital maturity.

T

TPA Česká republika

hr-portal.cz

54

The website hr-portal.cz represents a specialized HR portal developed by TPA Česká republika, offering secure and efficient communication tools between payroll professionals and employees. The portal provides functionalities such as payslip distribution, document sharing, employee data management, and online tax declarations, targeting HR professionals and employees primarily in the Czech Republic. The business model is a SaaS web application tailored for professional payroll and HR services, positioning itself as a niche solution within the Czech market. Technically, the site is built on Angular 10.1.6, uses Google Tag Manager for analytics, and is hosted on Czech infrastructure consistent with the domain registration data. The website is mobile optimized with good design and navigation, though accessibility features are basic. Security posture is adequate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

L

Leemon Concept, s. r. o.

leemon.cz

44

Leemon Concept, s. r. o. is a Czech-based activation and marketing agency specializing in IDEA concept marketing, proactive marketing, online strategies, design, digital and interactive projects, 3D design, and activation events. The company serves a business audience seeking creative marketing solutions and has a strong market presence supported by numerous awards and over 100 clients. Their business model focuses on providing comprehensive marketing services including analytical marketing, digital marketing, event organization, design, production, and consulting. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress and uses common JavaScript libraries such as jQuery, bxSlider, and Fancybox. It integrates Google Analytics for tracking and employs HTTPS with a valid SSL certificate, ensuring secure communication. The site is mobile-optimized and performs moderately well, though some PHP warnings visible in the HTML source indicate backend issues that should be addressed. SEO and accessibility are reasonably implemented. From a security perspective, the site lacks explicit security headers and does not provide visible privacy or security policies, which are areas for improvement. The cookie consent banner is present and functional, indicating some level of GDPR compliance. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is not uncommon for small agencies. Overall, the security posture is moderate with recommendations to fix backend warnings, implement security headers, and publish privacy policies. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include improving backend code hygiene, enhancing security headers, formalizing privacy and security policies, and maintaining transparent contact information to strengthen trust and compliance.

I

Ivánek-Zeman v.o.s.

ivanek-zeman.cz

54

Ivánek-Zeman v.o.s. is a small, well-established gardening and landscaping company based in the Czech Republic with over 25 years of experience. The company offers a comprehensive range of services including garden design, establishment, maintenance, green roofs, ponds, irrigation systems, and machine work supply. Their market position is that of a trusted local service provider with a strong tradition and industry memberships. Technically, the website is built on WordPress, uses jQuery and Google Fonts, and integrates Facebook social plugins. The site is moderately performant and mobile-optimized with good SEO practices. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response information. Privacy compliance is partial due to missing privacy policy and terms of service pages. Overall, the website reflects a credible and professional business with room for security and compliance improvements.

J

Juta Agency

jutaagency.cz

52

Juta Agency is a Czech-based company specializing in the rental of mobile sanitary equipment including toilets, urinals, VIP sanitary trailers, mobile washbasins, fencing, and other related infrastructure primarily for construction sites, cultural events, sports events, weddings, and garden parties. The company targets businesses and event organizers within the Czech Republic, focusing on regions such as Moravia and Silesia. Founded in 2011, it operates as a small-sized enterprise with a clear regional market presence. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, Google Fonts, Google Analytics, and Smartsupp Live Chat. The site is mobile optimized, uses HTTPS with good SSL configuration, and includes cookie consent mechanisms, indicating a reasonable level of digital maturity and compliance with privacy regulations. Hosting is provided by a Czech hosting provider, aligning with the company's regional focus. From a security perspective, the website enforces HTTPS and uses cookie consent banners but lacks explicit security headers such as CSP or HSTS in the provided data. No security or incident response policies are published, and no vulnerability disclosure or security.txt files are found. The site does not expose sensitive data and uses asynchronous script loading to improve performance and security. Overall, the security posture is moderate but could be improved by implementing additional security headers and formal policies. The overall risk assessment is low with no signs of malicious activity or suspicious content. The company demonstrates good business credibility with clear contact information, social media presence, and downloadable legal and product documents. Strategic recommendations include enhancing security headers, publishing security policies, and improving privacy compliance transparency to strengthen trust and security culture.

K

Kontura Design

kontura.cz

44

Kontura Design is a small Czech Republic-based design service provider specializing in graphic design, consultation, typesetting and printing, packaging design, and internet services. The company has a long-established domain since 2000, indicating stable business operations. The website presents basic information with minimal content and lacks modern digital maturity features such as structured data, privacy policies, or contact details. Technically, the site uses outdated JavaScript libraries loaded over HTTP, which poses security risks and indicates a need for modernization. Security posture is weak due to lack of HTTPS enforcement and missing security headers. No privacy or cookie policies are present, which impacts compliance with GDPR and other regulations. Overall, the website is functional but basic, with room for significant improvements in security, privacy, and user experience.

G

GALILEO Production, s.r.o.

quick-up.cz

43

Quick-up.cz is an e-commerce website operated by GALILEO Production, s.r.o., a Czech company founded in 2019. The website uses WordPress with WooCommerce and the Divi theme to provide an online retail platform, targeting primarily Czech customers. The business appears to be small-sized and focused on retail or related services, although specific product or service details are limited in the provided content. The website branding is consistent with the company name and includes a Facebook social media presence. Technically, the site employs modern web technologies including Google Fonts and standard WordPress plugins, with moderate performance and good mobile optimization. However, the site lacks visible advanced security headers and explicit privacy or cookie policies, which are important for GDPR compliance and user trust. No contact emails or phone numbers were found in the analyzed content, which may impact customer support and credibility. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistent business operation.

T

Tělovýchovná jednota Ostrava

volejbal-ostrava.cz

54

TJ Volejbal Ostrava is a regional volleyball sports club based in Ostrava, Czech Republic, offering professional training, team collaboration, and community engagement primarily focused on youth and adult volleyball teams. The club actively participates in national leagues and organizes events and tournaments, supported by a network of sponsors and partners. The website reflects a well-maintained digital presence with regular updates on matches, news, and social media integration. Technically, the site uses a custom CMS (Contimex) with modern web technologies and is mobile-optimized, though some improvements in accessibility and security headers are recommended. Security posture is moderate with HTTPS enabled but lacking advanced security headers and cookie consent mechanisms. The absence of WHOIS data reduces transparency but is common for privacy-protected domains. Overall, the site is trustworthy and professional, serving its community effectively.

J

Jitka Skuhrava Glass

jitkaskuhrava.com

42

Jitka Skuhrava Glass is a small artisan glass art business based in the Czech Republic, specializing in personalized glass and lighting products. The website serves primarily as a brand showcase with minimal content and limited direct customer interaction features. The technical infrastructure is modest, utilizing common JavaScript libraries such as jQuery and Modernizr, and is hosted on Wedos servers. Google Analytics is implemented for visitor tracking, but no cookie consent or privacy policies are present, indicating gaps in privacy compliance. Security posture is basic with HTTPS implied but lacking security headers and DNSSEC, which could be improved to enhance protection. Overall, the domain registration is consistent with the business profile, supporting legitimacy. The website is safe for general audiences with no adult or questionable content detected.

S

Semibold s.r.o.

semibold.cz

62

Semibold s.r.o. is a Czech-based creative agency specializing in branding, web design, print design, and strategic digital services. The company positions itself as a professional and reliable partner for businesses seeking to develop strong visual identities and effective web presences. Their market position is supported by a robust portfolio and a high client retention rate, indicating customer satisfaction and trust. The website reflects a modern, well-structured digital presence with multilingual support and clear calls to action. Technically, the site leverages Webflow CMS, Google Tag Manager, and privacy-compliant analytics tools, demonstrating digital maturity and attention to user privacy. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and formal policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting Semibold's credibility as a design agency.

The website tymphany.cz represents a small business entity based in the Czech Republic, with a domain registered since 2017. The site appears to be built using the WebSupport SiteBuilder platform and features basic content primarily in Czech language. The business description and detailed company information are not explicitly provided on the site, limiting insights into its market position and services. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with external font loading via WebFontLoader. Performance and mobile optimization are moderate to good, but accessibility and SEO features are basic. Security posture is weak due to lack of visible security headers, absence of HTTPS verification in the provided data, and no published privacy or security policies. Cookie consent is implemented, indicating some compliance awareness. Overall, the site is functional but lacks comprehensive business and security information, which may impact trust and user confidence.

The domain www.ceskakomorafitness.cz currently hosts only a parked domain page provided by Mailchimp, indicating no active business website or content. The page is minimal, serving as a placeholder with no contact information, privacy policies, or business details. The lack of WHOIS registration data further suggests the domain may be inactive or unregistered, reducing trust and legitimacy. Technically, the site uses Mailchimp's hosting and fonts but lacks any advanced frameworks or CMS beyond Mailchimp Sites. Security posture is weak due to absence of HTTPS confirmation and security headers. Overall, the site does not present an operational business presence and is likely unused or awaiting development.

The website at https://ostrava2018.org/lander is a minimal parking or placeholder page with almost no substantive content or business information. It appears to be newly registered (October 2024) and uses privacy protection services to obscure registrant details. The site includes Google Adsense advertising scripts but lacks any privacy, cookie, or terms of service policies, as well as contact information or social media links. The technical infrastructure is basic, with no DNSSEC enabled and no security headers detected. Overall, the site does not present itself as a legitimate or operational business website at this time. From a technical perspective, the site uses JavaScript and a framework identified as "PW" (likely a parking or landing page system). Hosting is through Wild West Domains, LLC, and the domain uses standard domain control name servers. Performance and mobile optimization are basic, and SEO and accessibility features are minimal or absent. Security posture is weak due to lack of security headers, no DNSSEC, and no visible HTTPS enforcement details. The privacy compliance is non-existent, with no policies or consent mechanisms present. Business credibility is low given the absence of any verifiable company information or trust indicators. Overall risk is elevated due to the minimal content, privacy-protected WHOIS, and lack of transparency. This site should be treated as a parked domain or potential placeholder rather than an active business presence. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear business contact information to improve trust and compliance.

BigZoom a.s. is a Czech company currently preparing a new web presentation, as indicated by the placeholder website content. The site provides clear company contact information and invoicing details, suggesting a legitimate business presence in Prague. The website is minimalistic, with no advanced content or interactive features, reflecting an early or transitional stage of digital presence. Technically, the site uses Tailwind CSS for styling and loads resources from a CDN, indicating a modern but basic tech stack. Security posture is limited due to absence of security headers and lack of visible HTTPS enforcement data. No privacy or cookie policies are present, which impacts compliance with GDPR and related regulations. The WHOIS data is unavailable, likely due to privacy protection or domain registration issues, which reduces trustworthiness assessment confidence. Overall, the website is functional as a placeholder but requires significant improvements in security, compliance, and content richness to support a professional business presence.

L

Leitverband des Ostbelgischen Sports VoG

los-ostbelgien.be

65

Leitverband des Ostbelgischen Sports VoG operates as the main sports umbrella organization in East Belgium, representing approximately 250 sports clubs. The organization focuses on sports promotion, trainer education, talent development, elite sports coordination, and event organization. The website is multilingual and professionally designed, targeting sports clubs, trainers, athletes, and sports enthusiasts in the region. Technically, the site is built on WordPress with modern JavaScript libraries and uses Matomo for privacy-conscious analytics. Security posture is adequate with HTTPS enabled and cookie tracking disabled for analytics, but lacks some security headers and cookie consent mechanisms. WHOIS data is restricted, limiting domain trust verification, but the website content and contact information appear legitimate and consistent with a regional non-profit sports association.

I

Infinite Design

infinitedesign.cz

47

Infinite Design is a small design studio based in Brno, Czech Republic, specializing in visual identities, logos, web design, and print materials. The website serves as a portfolio and service showcase targeting businesses and organizations seeking branding and design solutions. The company was founded in 2020, and the domain registration aligns with this timeline, indicating consistency and legitimacy. The site content is professional and well-structured, with a focus on creative design services and a local market presence. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as GLightbox and AOS for animations. Google Analytics and Google Tag Manager are implemented for tracking and marketing purposes. The site is mobile optimized and has good SEO practices, though accessibility features are basic. No CMS or hosting provider details were identified from the content. From a security perspective, HTTPS is enabled ensuring encrypted communications. However, no security headers were detected, and there is a lack of formal privacy, cookie, or security policies, which presents compliance and trust gaps. No forms or direct contact emails/phone numbers are visible, limiting user engagement and transparency. The site does not appear to be behind a WAF or blocked by security mechanisms. Overall, the website is a professional and legitimate business presence with moderate technical maturity and security posture. Key improvements include adding privacy and cookie policies, security headers, and clear contact information to enhance compliance, trust, and user experience.

N

N/A

cenovamapa.org

67

The website cenovamapa.org provides a price mapping service focused on sales prices, primarily targeting users in the Czech Republic. The site is built on a custom ASP.NET platform, hosted on AWS infrastructure, and employs common web technologies such as jQuery, Bootstrap, and Font Awesome. It integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, respectively. The content is well-structured and professionally presented, with a clear cookie consent mechanism ensuring GDPR compliance. However, explicit contact information and detailed business credentials are not publicly available on the site, which limits business credibility assessment. Security-wise, the site uses HTTPS and domain transfer protections but lacks DNSSEC and explicit security headers, and it uses an outdated jQuery version, which could pose vulnerabilities.

G

Grafik- und Internetagentur macmv.de

macmv.de

51

Grafik- und Internetagentur macmv.de is a German-based small agency specializing in SEO, content creation, recruitment, and personal marketing services. Established since 2009, the company positions itself as an expert in increasing revenues, achieving top rankings, and enhancing brand value for its clients. The website is professionally designed using WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is mobile optimized and includes a comprehensive cookie consent mechanism via Cookiebot, reflecting awareness of privacy compliance requirements. However, explicit privacy policies and terms of service are not clearly presented, which could be improved to enhance compliance and user trust. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities detected, but additional security headers and incident response information would strengthen the security framework. Overall, the website is functional, professional, and trustworthy with room for improvement in privacy transparency and contact accessibility.

B

Zadání nového požadavku - Service Desk Test - Jira Service Management

burdadigital.cz

73

The analyzed website is a Jira Service Management customer portal page hosted on Atlassian's cloud infrastructure under the subdomain burdadigital.atlassian.net. It serves as a service desk ticket submission interface, primarily targeting internal or customer support users. The site is part of Atlassian's managed cloud environment, which explains the absence of independent WHOIS data and domain registration details. The page content is minimal and functional, focusing on service request creation rather than marketing or business presentation. Technically, the site uses Atlassian's proprietary technologies and the Statsig SDK for feature management and analytics. Security posture is good with enforced HTTPS and some security headers, but lacks comprehensive headers like CSP or HSTS. Privacy and cookie policies are not present on this page, which is typical for internal service portals but reduces privacy compliance scores. Overall, the site is legitimate as part of Atlassian's cloud services but provides limited business or contact information.

O

Only Studio I Brand Strategy & Design

onlystudio.cz

56

The website is a Wix-hosted subdomain site titled 'Only Studio - Anatta'. It appears to be a small-scale or personal portfolio or studio site with minimal content and no explicit business description or contact information. The technical infrastructure relies on Wix's platform and standard polyfills, with no additional third-party analytics or advertising tools detected. Security posture is moderate due to the use of HTTPS implied by the URL and some security hardening scripts, but lacks explicit security headers and policies. Privacy compliance is poor with no visible privacy or cookie policies. Overall, the site presents a low business credibility profile due to lack of contact and business information. The domain WHOIS data is unavailable as it is a Wix subdomain, which is typical but reduces trust. Recommendations include adding privacy and cookie policies, contact information, and improving SEO and security headers to enhance trust and compliance.

P

Poski.com s.r.o.

pomahamevrustu.cz

44

Poski.com s.r.o. operates the website pomahamevrustu.cz, providing comprehensive online marketing services including PPC advertising, SEO, social media management, email marketing, and UX design. The company targets businesses seeking to grow their online presence, positioning itself as a professional and client-focused digital marketing agency in the Czech Republic. The website features professional design, client testimonials, and clear contact information, supporting a positive market presence. Technically, the website employs modern marketing and analytics technologies such as Google Tag Manager, Google Analytics, and Facebook Pixel, along with JavaScript libraries like TweenMax and Swiper for enhanced user experience. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Performance is moderate, with room for optimization. Security posture is moderate; HTTPS is implied, but explicit security headers and policies are absent. No vulnerabilities or exposed sensitive data were detected, but the lack of privacy and cookie policies and missing WHOIS data reduce overall trust. The absence of incident response and security policy information suggests areas for improvement in compliance and transparency. Overall, the website is professional and trustworthy from a business perspective but would benefit from enhanced privacy compliance, security best practices, and domain legitimacy verification to improve risk posture and user trust.

FBC Sokol Adamov is a local Czech floorball sports club providing news, match reports, training schedules, and team information primarily for its members and fans. The website serves as an information hub for the club's activities, including youth and men's teams, with detailed match summaries and event announcements. The club appears to be active in regional leagues and community sports events. Technically, the website uses a custom CMS with legacy JavaScript libraries such as jQuery 1.10.1 and fancyBox 2.1.5, along with video.js and TinyBox for media handling. Analytics are handled via Piwik (Matomo), indicating some privacy-conscious tracking. The site is moderately optimized for performance and mobile use but lacks modern security headers and uses outdated libraries, which may pose security risks. Security posture is moderate with HTTPS implied but no explicit security headers detected. Cookie consent is implemented, but no privacy policy or terms of service pages are present, indicating partial privacy compliance. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content aligns with a legitimate local sports club. Overall, the site is functional and informative but would benefit from modernizing its technical stack, improving security headers, and adding comprehensive privacy and legal policies to enhance trust and compliance.

R

Rozkrock

rozkrock.cz

43

Rozkrock.cz is the official website of the Czech music band Rozkrock, providing fans with information about the band, upcoming concerts, music releases, and media galleries. The site serves a niche audience of local rock music enthusiasts and promotes the band's activities including anniversary events and new album launches. The website is modest in design and content, focusing on fan engagement rather than commercial transactions or extensive business services. Technically, the site uses standard web technologies such as jQuery and Fancybox, hosted likely by Wedos, a Czech hosting provider. The site is accessible without any blocking or WAF interference, but lacks advanced technical and security features such as security headers and comprehensive privacy policies. Security posture is basic with no visible vulnerabilities but also no strong security practices documented. Privacy compliance is minimal, with only a basic cookie consent mechanism present and no privacy or terms of service pages. Overall, the site is functional and serves its purpose as a band promotional platform but would benefit from improved security, privacy, and contact transparency.

C

Christina Meißner

christina-meissner.de

47

Christina Meißner's website serves as a professional portfolio for a cellist specializing in solo and ensemble performances of classical and contemporary music. The site provides extensive event listings spanning over a decade, audio samples, CD releases, and social media links, targeting music enthusiasts and cultural event organizers primarily in Germany and Europe. Technically, the website is built with standard HTML5, CSS3, and JavaScript, hosted on a German hosting provider, and is mobile-optimized with moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is good with a comprehensive privacy policy in German, though cookie consent is missing. Business credibility is high due to detailed content and trust signals such as reviews and professional presentation. Overall, the site is trustworthy and professionally maintained but could improve in security and privacy compliance areas.

B

Deutschlands Bierliste Nr.1 mit 8138 Bieren aus Deutschland

biermap24.de

39

Biermap24.de is a German-focused online platform dedicated to listing and rating beers, boasting a comprehensive database of over 8,000 beers from Germany. The site targets beer enthusiasts and consumers interested in exploring and reviewing various beer brands and breweries. It offers editorial tips, top 10 lists, and a magazine section to engage its audience. Technically, the website employs standard web technologies including jQuery and SVG fonts, and is hosted on servers associated with kasserver.com. The site is mobile-optimized and includes a cookie consent mechanism via CookieFirst, indicating some level of privacy awareness. Security-wise, the site uses HTTPS and integrates Matomo analytics for user tracking, but lacks advanced security headers and explicit security or privacy policies. WHOIS data is minimal but consistent with the hosting provider, with no signs of privacy protection or suspicious registration patterns. Overall, the site presents a good user experience with moderate technical maturity but would benefit from enhanced security and compliance documentation.

K

KalorickéTabulky.cz - kalorické hodnoty potravin, kj, kalorie

kaloricketabulky.cz

57

The website www.kaloricketabulky.cz currently lacks accessible WHOIS registration data, indicating potential domain inactivity or privacy protection without public registrant information. The site content is minimal and does not provide metadata, structured data, or business-related information such as privacy policies, contact details, or terms of service. Technically, the website shows no evidence of HTTPS usage or security headers, which are critical for secure communications and user trust. The overall design and content quality are poor, with no detected analytics or advertising technologies, suggesting a low level of digital maturity. Security posture is weak due to the absence of standard security practices and policies. Given these factors, the website presents a low trustworthiness profile and a high risk from a security and compliance perspective.

J

Jochmann GmbH • Bäder- und Heizungsinstallation in Parchim

jochmann.de

42

The website at jochmann.de appears to be a small-scale or personal site with minimal content and no clear business information. The lack of privacy policies, cookie consent mechanisms, and contact details indicates a low level of digital maturity and compliance. Technically, the site uses basic HTML and CSS with Bootstrap 4.1.0 but lacks modern security practices such as HTTPS and security headers. No analytics or tracking technologies were detected, suggesting minimal user data collection. The WHOIS data is generic and lacks detailed registrant information, which reduces trustworthiness. Overall, the site presents a low security posture with critical gaps in privacy and compliance, making it unsuitable for professional or commercial use without significant improvements.

D

Designstudio Kock

designstudio-kock.com

58

Designstudio Kock is a small German design studio specializing in graphic design and print media services, including brand identity and logo design. The company targets businesses and individuals seeking professional design and print solutions. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework, and is hosted by Wix. The site demonstrates good design quality, mobile optimization, and basic SEO and accessibility features. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and structured data align with the business identity. Overall, the site is professional but would benefit from enhanced security and compliance documentation.

D

Deutsches Bernsteinmuseum im Kloster Ribnitz

deutsches-bernsteinmuseum.de

50

The Deutsches Bernsteinmuseum im Kloster Ribnitz is a small regional museum in Germany specializing in the natural and cultural history of Baltic amber. It offers permanent and special exhibitions, educational programs for children and groups, and hosts cultural events such as concerts and readings. The museum is owned by the city of Ribnitz-Damgarten and supported by various cultural foundations and government bodies, positioning it as a trusted cultural institution in the region. Technically, the website is built on the Contao Open Source CMS and uses a range of JavaScript libraries including jQuery 1.11.3 and carouFredSel for carousels. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting is provided by a German hosting provider (rzone.de). The website is fully accessible with no blocking or WAF challenges. From a security perspective, the site uses HTTPS but lacks important security headers and a cookie consent mechanism, which are recommended for GDPR compliance. The use of an outdated jQuery version may pose minor security risks. No incident response or security policies are published, and no analytics or tracking scripts are detected, indicating a privacy-conscious approach. Overall, the website is professional, trustworthy, and serves its audience well, but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

M

Modulaire Group

modulairegroup.com

67

Modulaire Group is a leading multinational company specializing in modular services and infrastructure across Europe and Asia Pacific. The company serves over 52,000 customers globally, focusing on sectors such as public administration, construction, energy, natural resources, industry, business services, and infrastructure. Their business model revolves around providing smart modular spaces, equipment, connectivity, and furniture solutions with a strong presence in 23 countries through multiple subsidiaries. Technically, the website is built on Drupal 10, utilizing modern web technologies including jQuery, Flexslider, and Google Analytics for tracking. The site demonstrates good mobile optimization, clear navigation, and consistent branding, reflecting a mature digital presence. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the content. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the website presents a professional and trustworthy front for a large enterprise, with recommendations to enhance security policies, publish incident response details, and verify domain registration to strengthen trust and compliance.

The website at doubledclick.net/lander is a newly registered domain with minimal content, primarily serving as a placeholder or parking page. It includes a Google AdSense script indicating an intent to monetize traffic but lacks any substantive business information, branding, or user engagement features. The domain was registered recently in June 2024 via GoDaddy.com, LLC, with no privacy protection, which aligns with the minimal online presence. The technical infrastructure is basic, relying on JavaScript and static assets served from wsimg.com, with no CMS or advanced frameworks detected. Performance and mobile optimization are basic, and SEO is poor due to lack of content and metadata. Security posture is weak, with no security headers, no DNSSEC, and only basic SSL configuration. There are no privacy, cookie, or terms of service policies, nor any contact or incident response information, which raises compliance and trust concerns. Overall, the site appears to be in an early stage or possibly a low-effort domain parking setup, with low trustworthiness and business credibility.

The website markiza.sk is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha verification. This prevents access to any substantive content, business information, or contact details. The domain appears to be protected by privacy services, limiting visibility into registrant data. The site is hosted behind Cloudflare, indicating a focus on security and performance, but the challenge page restricts any meaningful analysis of the site's content, policies, or business operations. Consequently, the technical maturity and security posture cannot be fully assessed beyond the presence of Cloudflare's protection mechanisms.

A

Algeco UK

elliottuk.com

72

Algeco UK is a well-established provider of modular buildings, site accommodation, and shipping containers, serving a broad range of sectors including construction, education, healthcare, and commercial industries. The company positions itself as a market leader in the UK with extensive nationwide coverage and a large fleet. The website is professionally designed, mobile-optimized, and provides comprehensive information about products and services, supporting a B2B business model focused on rental and turnkey solutions. Technically, the website is built on Drupal 10 and integrates modern web technologies such as Google Tag Manager, HubSpot Analytics, and CookieYes for cookie consent management. The site demonstrates good SEO and accessibility practices, though performance is moderate. Security posture is adequate with HTTPS usage and cookie consent, but lacks visible security headers and explicit security policies. The WHOIS data for the exact domain queried is unavailable due to domain naming rules, indicating the domain is a subdomain rather than a registered domain itself. This is consistent with UK domain structures but reduces the ability to verify domain registration details. No privacy policy or terms of service pages were detected in the provided content, which is a gap in privacy compliance. Overall, the website presents a professional and trustworthy business front with room for improvement in security transparency and privacy documentation.

L

Lukmann Consulting GmbH

alfright.eu

59

ALFRIGHT is a German-based company operated by Lukmann Consulting GmbH offering a digital GDPR compliance software solution called the DSGVO Website Butler. The platform automates website analysis for GDPR, BDSG, EU Cookie Directive, and TDDDG compliance, targeting companies across all industries and external data protection officers. The website positions ALFRIGHT as a trusted partner with multiple awards and certifications, emphasizing ease of use and rapid compliance. Technically, the site is built on WordPress with Elementor and Yoast SEO, incorporating modern web technologies and accessibility tools. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. WHOIS data is privacy protected, which is typical for EU domains, and does not raise immediate concerns. Overall, ALFRIGHT presents a professional, trustworthy, and well-structured digital presence aligned with its business objectives.

S

Stepstone

stepstone.de

66

Stepstone is a leading online job portal primarily serving the German market, offering a platform for job seekers and employers to connect. The website provides access to over 150,000 current job listings and emphasizes helping users find the right job with top employers. The business model centers on recruitment services and job advertising. Technically, the site employs modern web technologies including React, Redux, and integrates advanced analytics and optimization tools such as Optimizely and Datadog RUM. The infrastructure is supported by Akamai CDN, ensuring fast and reliable content delivery. Security posture is strong with HTTPS enforcement and multiple security headers, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly accessible privacy policy and terms of service. Overall, the website is professional, well-branded, and trustworthy, with room for improvement in transparency and contact information.

M

Museum Dargun

museum-dargun.de

40

Museum Dargun is a regional cultural institution in Germany focusing on everyday history and local heritage with a large exhibition space and multiple thematic areas. The website serves as an informational portal for visitors, showcasing exhibits, events, and news. The technical infrastructure is basic, relying on static HTML and JavaScript with no modern CMS or frameworks detected. The site lacks mobile optimization and accessibility features, indicating limited digital maturity. Security posture is weak, with no HTTPS enforcement or security headers visible, and no privacy or cookie consent mechanisms implemented. Overall, the site is functional but outdated and requires modernization to improve security, privacy compliance, and user experience.

S

Schliemann-Museum

schliemann-museum.de

46

The Schliemann Museum Ankershagen is a cultural institution dedicated to preserving and presenting the life and work of Heinrich Schliemann, a notable archaeologist and businessman. The museum offers exhibitions, educational programs, and events targeting families, school groups, and cultural enthusiasts. It holds a respected position regionally with national cultural significance, operating under the MuSeEn gGmbH umbrella. The website reflects this mission with clear, well-structured content and a focus on accessibility and visitor information. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Hosting is stable with German providers, and performance is moderate with good SEO and accessibility practices. The site employs a cookie consent mechanism compliant with GDPR, and integrates Google Tag Manager for analytics. From a security perspective, the site enforces HTTPS and uses cookie consent controls but lacks explicit published security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the website content and hosting, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving its cultural and educational purpose effectively. Strategic improvements could include publishing formal security and incident response policies and enhancing security headers to further strengthen the security posture.

M

Museumsverein Malchin e.V.

museum-malchin.de

53

The Museum Malchin website represents a small, regional non-profit museum focused on the cultural and historical heritage of Malchin and the Mecklenburgische Schweiz region in Germany. The museum offers exhibitions and guided tours, targeting tourists and local visitors interested in regional history. The website is built on the IONOS MyWebsite platform, using standard web technologies such as HTML5, CSS3, and JavaScript with jQuery. It is hosted by IONOS and uses HTTPS, ensuring secure connections. However, the site lacks advanced security headers and privacy compliance mechanisms such as a privacy policy or cookie consent banner. Contact information is clearly provided, enhancing business credibility. No forms or tracking scripts are present, indicating minimal data collection.

K

Kunstsammlung Neubrandenburg

kunstsammlung-neubrandenburg.de

57

Kunstsammlung Neubrandenburg is a regional cultural institution and art collection based in Neubrandenburg, Germany. The website serves as an information portal for exhibitions, events, and cultural programs, targeting art enthusiasts and the general public. The business model focuses on providing access to art and cultural heritage through exhibitions and educational activities. The website is professionally designed with consistent branding and clear navigation, reflecting a small but established institution.

M

Mecklenburgische Kleinseenplatte

klein-seenplatte.de

52

The website www.klein-seenplatte.de serves as a regional tourism portal for the Mecklenburgische Kleinseenplatte area in Germany. It provides visitors with information about the natural landscape, outdoor activities such as cycling, hiking, and water sports, as well as accommodation and event details. The site targets tourists and outdoor enthusiasts seeking to explore this scenic region. Technically, the website is built on Joomla CMS, utilizing common web technologies including jQuery, Google Analytics, and Facebook SDK for social media integration. The site is moderately optimized for mobile devices and SEO, with clear navigation and consistent branding. Security-wise, the site uses HTTPS with anonymized IP tracking in Google Analytics and includes CSRF tokens in Joomla scripts, but lacks advanced security headers and a vulnerability disclosure policy. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is functional, professional, and trustworthy for its purpose, though improvements in security and privacy compliance are recommended.

E

European Club Association

ecaeurope.com

66

The European Club Association (ECA) operates as a membership organization representing European football clubs. It provides a range of services including legal support, brand protection, fixture management, sustainability strategies, and research publications. The website positions ECA as a key stakeholder in European football governance, targeting football clubs and professionals. The digital infrastructure is built on modern web technologies such as jQuery, Vue.js, and Google Analytics, with a CMS likely based on Umbraco. The site is well-designed, mobile-optimized, and accessible, offering a professional user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response policies suggests room for improvement. Privacy compliance is strong, with clear cookie and privacy policies aligned with GDPR. However, the lack of WHOIS registration data raises questions about domain legitimacy, warranting further monitoring. Overall, the site is trustworthy and professional but could enhance transparency and security practices.

Š

ŠK Slovan Bratislava futbal, a.s.

skslovan.com

60

ŠK Slovan Bratislava is a historically successful Slovak football club with a strong online presence through its official website. The site serves as a hub for club news, match schedules, ticket sales, merchandise, and multimedia content, targeting football fans and the Slovak sports community. The website is professionally designed, mobile-optimized, and integrates modern web technologies and third-party services for analytics and advertising. However, the absence of publicly available WHOIS data for the domain raises concerns about domain registration transparency. The site employs HTTPS and cookie consent mechanisms, but lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Overall, the digital infrastructure is solid, but improvements in compliance documentation and domain registration transparency are recommended.

F

FC Zbrojovka Brno

fczbrno.cz

47

FC Zbrojovka Brno operates an official website serving as the primary digital platform for the Czech football club. The site delivers comprehensive content including news, team rosters, match schedules, ticket sales, and fan engagement features. It targets football fans and the local community, supporting the club's brand and commercial activities. The domain is well-established since 2010, reflecting a mature online presence. Technically, the website uses modern web technologies such as Bootstrap, jQuery, Flickity, and integrates analytics and advertising tools like Google Tag Manager, Google Analytics, and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit privacy policies are missing. No critical vulnerabilities were detected in the content. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

The website arvylisss.com is currently inaccessible, returning a 403 Forbidden error with minimal HTML content served by an nginx server on Ubuntu. No metadata, scripts, forms, or business-related content is available for analysis. The domain WHOIS data is suspicious, showing a creation date in the future (January 21, 2025), which undermines the legitimacy of the domain and suggests erroneous or potentially fraudulent registration information. The domain uses Cloudflare nameservers but does not present a typical Cloudflare WAF challenge page. No privacy, cookie, or terms of service policies are present, and no contact information or business details are available on the site. Overall, the website appears non-operational or blocked, preventing meaningful content or security analysis.

B

Best Casinos PL

bestcasinos-pl.com

59

Best Casinos PL is an affiliate website specializing in providing Polish players with comprehensive reviews, rankings, and recommendations of online casinos. The platform focuses on delivering detailed information about casino bonuses, payment methods, and game offerings to help users make informed decisions. The site targets the Polish market and operates primarily as an affiliate marketing business, generating revenue through referrals to online casinos. Technically, the website is built on WordPress and integrates modern analytics and marketing tools such as Google Tag Manager and Microsoft Clarity, indicating a moderate level of digital maturity. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. The WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy and should be further investigated. Overall, the website presents a professional front but would benefit from enhanced transparency and security practices.

The website yeti.it currently serves a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is expired as of 15 days ago, which raises concerns about the continuity and legitimacy of the business. The visible metadata and HTML content reveal the use of very outdated CMS platforms, Joomla 1.5 and WordPress 2.5, which are known to have multiple security vulnerabilities and lack modern features. There is no visible business information, contact details, or privacy and cookie policies, which further diminishes trust and compliance posture. Technically, the site shows minimal SEO optimization, poor accessibility, and basic mobile responsiveness. The only external link points to BitNinja.IO, a security service provider, suggesting some level of security monitoring or protection. However, the lack of HTTPS enforcement and security headers in the visible content is a concern. The domain expiration combined with outdated technology and lack of transparency indicates a low digital maturity level. From a security perspective, the site is at risk due to expired domain status and outdated CMS versions. The presence of a security challenge page may mitigate some automated attacks but also limits content accessibility and analysis. No privacy or incident response policies are found, and no contact channels for security issues are provided. Overall, the site exhibits a low security posture with critical vulnerabilities and compliance gaps. The overall risk assessment is high due to domain expiration, outdated software, and lack of transparency. Strategic recommendations include immediate domain renewal, CMS upgrades, implementation of HTTPS and security headers, and publication of privacy and security policies to improve trust and compliance.

W

weiberwirtschaft

weiberwirtschaft.at

56

Weiberwirtschaft is a small Austrian creative agency specializing in concept and design, with a focus on text and textiles. The website serves as both a portfolio and an e-commerce platform showcasing various cultural and artistic projects. The business targets a general audience interested in creative services and products. Technically, the website is built on WordPress with WooCommerce, leveraging Bootstrap and jQuery for frontend functionality. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and incident response information. Overall, the website is trustworthy and professionally presented, with room for improvement in security transparency and technical enhancements.

T

TECHCOMP.COM IS DIFFERENT

techcomp.com

60

Techcomp.com is a non-commercial domain sales website offering the premium domain techcomp.com for sale via GoDaddy. The site is minimalistic, serving primarily as a landing page to attract potential buyers and reserve the domain for future projects. The business model focuses on domain name sales and reservation, targeting domain investors and businesses seeking a strong brand domain in the technology sector. The website uses modern front-end technologies such as Bootstrap and FontAwesome Pro but lacks advanced CMS or dynamic content. Security posture is basic with no DNSSEC enabled and no visible security headers, though domain status locks are in place to protect domain integrity. Privacy and cookie policies are absent, indicating low compliance maturity. Overall, the site is functional but minimal, with moderate trustworthiness based on domain age and registrar reputation.

B

Bestattung Graz GmbH

bestattung-graz.at

53

Bestattung Graz GmbH is a well-established funeral services provider based in Graz, Austria, with over 115 years of experience. The company offers a range of services including traditional burial, cremation, alternative funeral forms, and related support services. Their market position is strong regionally, supported by transparent pricing and a customer-centric approach. The website reflects a professional and trustworthy business with clear contact information and a consistent brand presence. Technically, the site is built on WordPress using Elementor and several modern plugins, with good SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers could be enhanced. Overall, the site is compliant with GDPR and provides a positive user experience.