Other security reports

M

Meteored

tameteo.nl

64

Tameteo.nl, operated by Meteored, is a well-established weather information website focused on providing detailed 14-day weather forecasts for the Netherlands and over 200,000 cities worldwide. The site offers a variety of services including weather warnings, radar and satellite imagery, videos, and weather widgets, supported by mobile applications for multiple platforms. The business model primarily revolves around advertising and providing weather data services to a general audience. Technically, the website employs modern JavaScript libraries such as Leaflet.js for interactive maps, Google Tag Manager for analytics, and integrates advertising technologies like Google Ad Manager and Prebid.js. The site is hosted on Meteored's infrastructure and demonstrates good performance and mobile optimization. Security-wise, the website enforces HTTPS with strong SSL configuration and implements standard security headers. It also uses a consent management platform to comply with GDPR, although it lacks a dedicated security policy or incident response page. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness. The site is free from suspicious content and is suitable for general audiences.

M

Meteored

meteored.cl

67

Meteored.cl is a professional weather forecasting website focused primarily on Chile, offering 14-day weather forecasts, hourly updates, weather news, videos, maps, and satellite imagery. The site targets a general audience interested in weather information and provides additional services such as widgets and mobile applications for multiple platforms. The business model is primarily advertising-supported, with a strong digital presence and integration of GDPR-compliant consent management. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, header bidding for ads, and map visualization libraries, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and privacy policies in place, although explicit security headers are not visible in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain could not be retrieved due to an invalid query format, but the website's content and external references strongly indicate legitimacy. Overall, Meteored.cl presents a trustworthy and professionally maintained weather service with good compliance and user experience.

P

Plasseraud IP

plass.com

55

Plasseraud IP is a leading intellectual property consulting group based in France, recognized as the top firm in its sector nationally and a leader in Europe. The company offers a comprehensive range of IP services including patents, trademarks, designs, domain names, anti-counterfeiting, and IP asset valorization. Their target audience includes businesses and professionals seeking expert IP advice and legal representation. The website is built on Drupal 8, leveraging modern web technologies and includes strong privacy compliance mechanisms such as cookie consent. Security posture is robust with HTTPS and security headers implemented, though the absence of a dedicated security policy and incident response contact is noted. The WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy, but the professional presentation and trust indicators on the site mitigate this risk. Overall, the site is well-designed, content-rich, and trustworthy for its intended audience.

S

SCAN Avocats

scan-avocats.com

64

SCAN Avocats is a specialized French law firm founded in 2017, focusing on intellectual property, digital law, and personal data protection. The firm serves a diverse clientele including international corporations, SMEs, startups, and public sector entities, with offices in Paris, Lyon, and Strasbourg. It is recognized in prestigious legal rankings such as WTR 2024 and DECIDEURS 2024, reflecting its strong market position and expertise. The website is professionally designed, content-rich, and optimized for SEO and mobile devices, supporting the firm's credibility and client engagement. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by Gandi SAS. It employs HTTPS with a good SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. Contact information is clearly presented, including multiple physical addresses, phone numbers, and a company email. From a security perspective, the site demonstrates a solid baseline with HTTPS and domain transfer protection but lacks explicit security policies and incident response information. No vulnerabilities or suspicious content were found. Privacy compliance is supported by the presence of privacy and cookie policies, though no active cookie consent mechanism was detected. Overall, SCAN Avocats presents a trustworthy, professional online presence with good technical and security practices. Strategic improvements in DNS security, cookie consent, and security policy transparency would further enhance its security posture and compliance.

C

Cabinet Dreyfus

dreyfus.fr

61

Cabinet Dreyfus is a specialized consulting firm based in Paris, focusing on intellectual property, industrial property, and new technologies. The firm targets businesses and professionals seeking expert legal advice in these domains. Their website reflects a professional boutique consultancy with clear service offerings and a strong emphasis on privacy and compliance. Technically, the website is built on WordPress using Elementor, integrating modern analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and Rank Math SEO. Security posture is solid with HTTPS, security headers, and reCAPTCHA protections, though lacking a dedicated security policy or incident response information. Overall, the site is well-structured, GDPR compliant, and trustworthy, with no signs of blocking or malicious activity.

Boischaut Digital SAS operates as a specialized auction house based in Rambouillet, France, with a focus on both physical and incorporeal asset auctions including art, furniture, and digital assets such as NFTs. The company has a strong regional presence and leverages online auction platforms like Drouot and Interenchères to extend its reach. The website reflects a mature digital presence with professional design and comprehensive content tailored to collectors, professionals, and the general public interested in auctions. Technically, the site uses modern frameworks such as Bootstrap and MDBootstrap, integrates Google Analytics for tracking, and complies with GDPR through explicit cookie consent mechanisms. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the domain registration and WHOIS data align well with the business identity, supporting legitimacy and trustworthiness.

P

.BZH - L'extension internet de la Bretagne

pik.bzh

52

The website www.pik.bzh serves as a regional internet domain extension portal for Brittany, France, promoting the .bzh domain. It is built on WordPress using the Divi theme and optimized with WP Rocket. The site targets a general audience interested in Brittany and regional internet identity. Technically, the site employs modern web fonts and lazy loading scripts but lacks advanced security headers and visible privacy or cookie policies. No contact or business registration information is explicitly provided, which limits trust and compliance assessment. Security posture is basic with no evident vulnerabilities but also no advanced protections or disclosures. Overall, the site is functional and moderately optimized but requires improvements in privacy, security, and business transparency to enhance credibility and compliance.

F

iSport Fantasy

fantasyliga.cz

49

iSport Fantasy operates as a Czech fantasy sports platform allowing users to create teams and compete for prizes. The website targets sports fans interested in fantasy leagues, offering a straightforward user experience with a focus on engagement through contests. The platform is built on modern web technologies including Next.js and React, hosted on AWS infrastructure, and integrates Google Analytics for user behavior tracking. While the site is accessible and functional, it lacks published privacy and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enforced and external consent management, but could be improved by adding security headers and incident response information. Overall, the platform presents a legitimate and consistent business presence with room for enhanced compliance and security maturity.

UEFA.com is the official digital presence of the Union of European Football Associations, the governing body for football in Europe. The website serves as a comprehensive platform for football fans, media, and stakeholders, offering news, live scores, video content, and detailed information about UEFA's competitions and initiatives. UEFA holds a leading position in European and global football, organizing prestigious tournaments such as the UEFA Champions League and UEFA EURO. The site targets a broad audience including football enthusiasts, clubs, and national associations. Technically, the website employs modern web technologies including React, integrates multiple analytics and marketing tools such as Google Analytics and OneTrust for cookie consent, and uses secure HTTPS protocols with strong security headers. The site is well-optimized for mobile devices and accessibility, providing a fast and user-friendly experience. From a security perspective, UEFA.com demonstrates good practices with HTTPS enforcement, security headers, and privacy compliance mechanisms. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not publicly available, representing areas for improvement. The absence of WHOIS data for the domain is noted but does not detract from the site's legitimacy given the strong branding and official nature. Overall, UEFA.com presents a professional, secure, and trustworthy platform with excellent content quality and technical implementation. Strategic recommendations include enhancing transparency around security policies and incident response, publishing vulnerability disclosure details, and providing data protection officer contact information to further strengthen trust and compliance.

The website qualite-tourisme-occitanie.fr is currently inaccessible, returning a 403 Forbidden error page. This prevents access to any meaningful content or business information. The domain is registered with OVH, a reputable French hosting provider, and was created in 2019, which aligns with a regional tourism quality certification entity. However, the lack of accessible content, absence of privacy and cookie policies, and missing contact information significantly limit the ability to assess the business or security posture. Technically, the site loads only Google Fonts externally and does not reveal any CMS or frameworks. Security headers and SSL configuration details are not available from the content provided. Overall, the site appears to be down or access-restricted, resulting in a very low AI score and high risk for users seeking information or services.

M

My Sport Session

mysportsession.com

56

My Sport Session is an online platform based in France that enables users to discover and book a wide variety of sports and leisure activities without subscription or commitment. The service emphasizes flexibility, local availability, and ease of booking, targeting a broad audience interested in physical activities and leisure. The website is professionally designed with a consistent brand presence and includes user testimonials and social media integration to build trust. Technically, the website leverages modern web technologies including React and Google Tag Manager, with asynchronous and deferred script loading to optimize performance. The site is mobile-optimized and includes SEO best practices such as meta tags and Open Graph data. However, accessibility features are basic and could be improved. From a security perspective, the site enforces HTTPS and uses Google Tag Manager for analytics and marketing. There is a lack of visible security headers and no published privacy or cookie policies, which are important for GDPR compliance. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating recent registration or privacy protection, which impacts trustworthiness. Overall, the platform presents a good user experience and a solid technical foundation but should enhance transparency around privacy, security policies, and contact information to improve compliance and user trust. Further verification of domain registration is recommended to confirm legitimacy.

Infosplages.com is a small, local informational website focused on providing seasonal beach application details for La Grande Motte, France. The site content is minimal and primarily serves as a notice that the application is active from July 1st to August 31st, targeting general visitors interested in beach information. The business model is informational and seasonal with no e-commerce or complex service offerings. Technically, the site is hosted by OVH sas and uses basic HTML without detectable CMS or advanced frameworks. The site lacks privacy, cookie, and terms of service policies, and no contact or security information is provided. Security posture is minimal with no DNSSEC and no security headers detected, though the domain registration is consistent and legitimate. Overall, the site is low complexity and low risk but would benefit from improved security and compliance features.

The website 'La Grande Motte Architecture' is an informational and cultural tourism platform dedicated to the architectural heritage of La Grande Motte, France, focusing on the work of architect Jean Balladur. It serves a niche audience interested in architecture, history, and tourism, providing detailed historical context, guided tours, and event information. The site is professionally designed using WordPress with the Avada theme and Fusion Builder, and it is hosted by OVH sas. The technical infrastructure includes modern web technologies and SEO optimizations, but performance is moderate and accessibility is basic. Security posture is adequate with HTTPS enabled but lacks important security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and legitimate, with consistent WHOIS data and no blocking mechanisms detected.

M

Milan Chudoba

kennymax.sk

44

Kennymax.sk is the professional portfolio website of Milan Chudoba, a Slovak UI & UX freelance designer based in Prague, Czech Republic. The site showcases creative and unique digital design services, emphasizing originality and usability. The business operates as a small freelance entity, targeting clients seeking bespoke UI/UX design and photography services. The website is built on WordPress with modern SEO practices and integrates social media channels for broader engagement. Technically, the site uses a contemporary tech stack including WordPress 6.7.4, Yoast SEO, and Semplice theme, hosted likely by Websupport with DNSSEC and HTTPS enabled, ensuring a secure browsing experience. However, the site lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is solid with HTTPS and DNSSEC, but could be improved with additional security headers and vulnerability disclosures. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and explicit contact details.

G

Site en construction

goyer.cloud

53

The website goyer.cloud is currently a placeholder page indicating that the site is under construction. It is hosted and registered through OVHcloud, a reputable French hosting provider. The site content is minimal, consisting primarily of a 'Site en construction' message in French, with links to OVHcloud support resources. There is no business-specific content, contact information, or policies published at this time. From a technical perspective, the site uses basic HTML and CSS with no advanced frameworks or CMS detected. The hosting infrastructure is OVHcloud, but no security headers or DNSSEC are enabled, representing minor security gaps. The site is mobile responsive at a basic level but lacks SEO optimization and accessibility features. Security posture is minimal with no HTTPS enforcement details available and no privacy or cookie policies present. No forms or data collection mechanisms are implemented, reducing immediate data protection concerns but also indicating a lack of business maturity. The domain registration is consistent and legitimate, created recently in April 2023, matching the site's under construction status. Overall, the site currently poses low risk but also offers limited business credibility or user engagement. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing privacy and cookie policies, and adding contact information to improve trust and compliance.

The website culture-com.fr is currently inaccessible beyond a security check page that performs an automated redirect after a brief countdown. The visible content is minimal and primarily consists of a loading animation and a message indicating a security check by BitNinja.IO. The site appears to be built on outdated CMS platforms, Joomla 1.5 and WordPress 2.5, which are no longer supported and pose significant security risks. No business-specific content, contact information, or privacy-related policies are present on the accessible page, limiting the ability to assess the company's operations or market positioning. Technically, the site is hosted by OVH, a reputable French hosting provider, and the domain registration details are consistent with the .fr TLD and French origin. However, the lack of modern security headers, absence of HTTPS enforcement visible in the content, and outdated CMS versions indicate a weak security posture. The presence of a security check page suggests some level of protection against automated threats, but the overall security implementation is minimal and outdated. From a security perspective, the site lacks essential compliance elements such as privacy and cookie policies, GDPR indicators, and contact channels for incident response. The use of legacy CMS versions exposes the site to known vulnerabilities. The security score is low, and the site is effectively blocked from full analysis due to the WAF/security challenge. No adult or explicit content is detected, and the site appears safe for general audiences. Overall, the website requires significant improvements in content availability, security modernization, privacy compliance, and business transparency to enhance trustworthiness and operational effectiveness.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is not accessible. No real website content, metadata, or business information is present. The page appears to be a browser-generated error page rather than a live website. Consequently, no privacy, cookie, or terms of service policies are found, and no contact or security information is available. The technical infrastructure is limited to Chromium open-source code for the offline dinosaur game, which is embedded in the error page. The security posture cannot be fully assessed due to lack of real content and headers. Overall, the site is inaccessible and cannot be properly evaluated for business credibility or compliance.

The website at inchev.com currently presents no accessible content, with an empty HTML body and no metadata, forms, or visible information. The domain is registered since 2014 with a stable registrar and uses Cloudflare DNS, indicating a legitimate registration. However, the lack of content and absence of security or privacy policies severely limit the ability to assess the business or security posture. The technical infrastructure appears minimal, with no detected CMS or frameworks, and no security headers or SSL configuration data available. This results in a low security posture and poor privacy compliance. Overall, the site is either under development, misconfigured, or intentionally blocked by security mechanisms, leading to a critical risk of poor user trust and compliance issues.

L

La Kunsthalle, Centre d’Art Contemporain d’Intérêt National

kunsthallemulhouse.com

53

La Kunsthalle is a French contemporary art center operated by the city of Mulhouse, established since 2008. It serves as a cultural institution offering exhibitions, artist residencies, mediation programs, and publishing activities. The website targets the general public interested in contemporary art and is positioned as a nationally recognized center supported by public and regional cultural bodies. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, and uses Google Analytics for visitor tracking. The site is moderately optimized for mobile and SEO, with a good content structure and navigation. Security-wise, the site uses HTTPS and domain registration protections but lacks DNSSEC and security headers, and does not provide explicit security or incident response policies. Privacy compliance is weak, with no cookie consent mechanism despite tracking scripts. Overall, the website is professional and trustworthy but could improve in privacy and security practices.

The website orne-developpement.com currently serves a default directory index page with no substantive content, metadata, or business information. The domain is registered with TotallyDomain LLC since December 2022 and is set to expire in December 2025, indicating a relatively new domain. There is no evidence of HTTPS or security headers, and no privacy or cookie policies are present. The lack of content and contact information severely limits the ability to assess the business or its market position. Technically, the site lacks modern web technologies, SEO optimization, and accessibility features. Security posture is weak due to missing HTTPS and security headers, and no incident response or vulnerability disclosure information is available. Overall, the website appears inactive or under development, resulting in a low trust and credibility score.

The website at pepite3ef.fr is currently inaccessible due to a TYPO3 CMS configuration error related to the trusted hosts pattern, resulting in an HTTP 503 error page. This prevents access to any meaningful content or business information. The domain is registered through OVH, a reputable French registrar, with a creation date in 2014, indicating a mature domain age consistent with a small or medium-sized French entity. The hosting provider is OVH, and the CMS in use is TYPO3. No privacy, cookie, or terms of service policies are present, and no contact information or forms are accessible. The lack of accessible content and security headers limits the ability to fully assess the website's security posture or compliance status.

I

Institut Technologique FCBA

fcba.fr

9

Institut Technologique FCBA is a French industrial technical center specializing in forestry, cellulose, wood construction, and furniture sectors. It provides a range of services including innovation support, environmental performance evaluation, training, laboratory testing, certification, and diagnostics. The organization targets professionals in these industries and holds recognized certifications such as Qualiopi, COFRAC, and ASI, positioning itself as a reputable technical institute in France. The website is built on WordPress with Elementor and uses modern web technologies including jQuery, Bootstrap, and various UI libraries. It features a cookie consent mechanism and is mobile-optimized with good navigation and content quality. However, some images have lazy loading errors, and explicit privacy and terms of service pages are not clearly found, indicating room for improvement in compliance and user experience. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks explicit security headers and a vulnerability disclosure mechanism. No WHOIS data was retrievable, limiting domain legitimacy verification, but the website content and structure suggest a legitimate and professional organization. Overall, the website is functional, professional, and trustworthy with recommendations to enhance privacy compliance, security headers, and user experience for improved trust and regulatory adherence.

The website 'Produire bio en Bretagne' serves as an informational and support platform dedicated to organic farming in the Brittany region of France. Operated by FRAB, it provides educational content, technical resources, testimonials, and event information to assist farmers considering or undergoing conversion to organic agriculture. The site is positioned as a regional authoritative resource with a clear focus on organic agriculture principles and practices. Technically, the website is built on WordPress using the Total theme and Visual Composer, with integrations such as Google Analytics and Revolution Slider. Hosting is provided by OVH, a reputable provider, and the domain registration is consistent with the business's history and location. Security posture is adequate with HTTPS enforced and some privacy considerations, though there is room for improvement in implementing security headers and explicit cookie consent mechanisms. Overall, the site is professional, well-branded, and trustworthy, targeting agricultural professionals and stakeholders in organic farming.

Y

Home | YOTTABE

yottabe.com

57

The website www.yottabe.com is hosted on the Wix platform and appears to be a small or new business site with minimal content and no clear business description or contact information. The lack of WHOIS registration data raises concerns about the domain's legitimacy and ownership. Technically, the site uses standard Wix scripts and polyfills but lacks advanced security configurations and privacy compliance features. The absence of privacy policies, cookie consent mechanisms, and contact details further diminishes trustworthiness. Overall, the site demonstrates a low level of digital maturity and security posture, with significant gaps in compliance and transparency.

C

CULLINAN.CZ s.r.o.

cullinan.cz

58

Cullinan.cz is a Czech company specializing in the manufacturing of commemorative medals and vending machines with a 15-year tradition. Their products are distributed primarily through unmanned vending machines located in zoological gardens and Dino parks across the Czech Republic, Slovakia, Poland, and Russia. The company emphasizes artistic quality, collaborating with notable sculptors and using certified materials such as Nordic Gold. The website is professionally designed, mobile-optimized, and provides detailed business and product information, although it lacks privacy and cookie policies. Technically, the site uses modern JavaScript modules and image galleries but does not show advanced security headers or analytics integrations. The security posture is moderate with no critical vulnerabilities detected, but improvements in privacy compliance and security headers are recommended. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the company.

The website www.zoobistro-rheine.de is currently under construction and contains only minimal placeholder content indicating that it will be online soon. The business details, contact information, and service descriptions are not yet provided, limiting the ability to assess the company's market position or business model. The site is hosted on the Jimdo platform, as evidenced by the use of Jimdo name servers and assets. Technical infrastructure is basic with no visible security headers or HTTPS status available from the provided data. No forms, analytics, or advertising scripts are present, indicating a very early stage of website development. Security posture is weak due to lack of HTTPS and absence of privacy or cookie policies. Overall, the site currently offers minimal business or security information, resulting in a low trust and credibility score.

The website at waza.org is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is long-established, created in 2000, and registered with a reputable registrar, Network Solutions, LLC. Hosting appears to be provided by SiteGround based on the nameservers. No business information, contact details, or policies are available on the accessible page, limiting the ability to assess the organization's operations or services. The lack of content and metadata prevents evaluation of the website's technical maturity or SEO optimization. Security posture cannot be fully assessed due to the blocked content, but the absence of DNSSEC and security headers is noted as areas for improvement. Overall, the site appears legitimate based on domain registration data but is currently inaccessible, resulting in a very low AI score and limited insights.

N

National Theatre

narodni-divadlo.cz

51

The National Theatre in Prague is a prestigious cultural institution representing the Czech Republic's national identity and European cultural heritage. The website provides comprehensive information about upcoming theatre performances across various genres including drama, ballet, opera, and multimedia shows. It offers ticket sales, subscriptions, and an e-shop for related merchandise. The institution maintains partnerships with prominent companies and media outlets, reinforcing its market position as a leading national theatre. Technically, the website is built using modern web technologies such as React and Next.js, with integration of Google Analytics, Google Tag Manager, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. However, some areas such as explicit privacy policy and security headers could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, but the presence of official partners and professional content supports trustworthiness. Overall, the website is a well-maintained digital presence for a major cultural institution, with moderate to good security posture and privacy compliance. Strategic improvements in transparency, security headers, and contact information would enhance trust and compliance.

The website kulturnipecka.cz is currently a parked domain landing page primarily used for domain resale or parking purposes. It lacks any substantive business content, contact information, or privacy and security policies. The domain's WHOIS data is suspicious, showing a future creation date and registrar details consistent with domain parking services. Technically, the site relies on iframe embedding and external ad/tracking scripts from questionable domains, with no HTTPS enforcement or security headers, resulting in a poor security posture. Overall, the site does not represent an active or legitimate business presence and poses risks related to trust and security.

The website bleigny-le-carreau.fr currently returns a 404 Not Found error page, indicating that the site content is inaccessible. There is no metadata, structured data, or business information available on the site. The domain is registered since 2015 with WORLDLINE FRANCE, a reputable registrar, and is active with no privacy protection, suggesting legitimacy. However, the lack of accessible content severely limits the ability to assess the business, technical infrastructure, or security posture. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available. The site does not exhibit any security headers or HTTPS status from the provided data. Overall, the website quality and professionalism are poor due to the absence of content.

The website at otipass.net is currently inaccessible, returning a 403 Forbidden error page which prevents access to any meaningful content or business information. The domain is registered with OVH sas since 2010 and hosted on OVH servers, indicating a stable registration history. However, the lack of accessible content, metadata, or contact information severely limits the ability to assess the business or technical maturity of the site. No privacy, cookie, or security policies are present, and no security headers or HTTPS information is available from the provided data. This results in a very low security posture and poor privacy compliance. Overall, the site appears to be either restricted or under maintenance, and cannot be properly evaluated for business credibility or technical quality at this time.

The website otipass.cloud presents an extremely minimal online presence with only a brief textual phrase and no additional content or metadata. The domain is newly registered in January 2024 through OVH sas, indicating a very recent business or project launch. There is no visible business description, contact information, or policies, which limits the ability to assess the company's market position or services. Technically, the site lacks modern web features, SEO optimization, and accessibility enhancements, reflecting a low digital maturity level. Security posture is basic with no DNSSEC, no security headers, and minimal SSL configuration. No privacy or cookie policies are published, and no incident response or vulnerability disclosure information is available. Overall, the site appears to be in an early development or placeholder state, with significant improvements needed to establish trust, compliance, and professionalism.

I

Ing. Hana Cindrová

hanacindrova.cz

41

Ing. Hana Cindrová operates a small external accounting office primarily serving clients in the Olomoucký region and across the Czech Republic. The business offers comprehensive accounting, tax processing, and financial reporting services with over 17 years of industry experience. The website is professionally designed using WordPress and the Divi theme, providing clear service descriptions and contact information. Technically, the site is well-structured and mobile-optimized but lacks advanced security headers and privacy compliance features. The absence of WHOIS data limits domain trust assessment, though the site content and contact details appear legitimate. Overall, the site demonstrates a solid business presence with room for improvement in security and compliance.

P

ProFitArt

profitart.cz

56

ProFitArt is a cultural organization dedicated to supporting independent artists specializing in dance, physical, and nonverbal theatre. The organization provides production facilities, workshops, and event hosting to foster artistic development and collaboration. Their market position is niche, focusing on the independent performing arts community primarily in the Czech Republic. The website reflects a small-sized entity with a professional and consistent brand presence, supported by partnerships with cultural institutions and funding bodies. Technically, the website is built on WordPress with modern plugins such as Autoptimize and Yoast SEO, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Performance is moderate, with lazy loading images and optimized CSS. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, indicating GDPR compliance. However, the absence of security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the presence of clear contact information and partner logos. Overall, ProFitArt's website is a trustworthy and professional platform for its target audience, with good privacy compliance and a secure environment. Strategic enhancements in security policies and domain transparency would further strengthen its risk profile.

The website www.canalplus.com is currently inaccessible due to a security mechanism or Web Application Firewall (WAF) that blocks content delivery, presenting an 'Access Denied' message with minimal page content. This prevents a full analysis of the website's business, technical, and security posture. The WHOIS lookup for the domain failed to return any registration data, which is unusual for a well-known brand, raising concerns about domain registration legitimacy or privacy protection usage. No privacy, cookie, or terms of service policies were detected on the page, and no contact or business information is available. The technical footprint is minimal, with only inline JavaScript and CSS present, and no external analytics or advertising scripts detected.

T

telecentro.com

telecentro.com

51

The website telecentro.com currently serves as a parked domain with no active business content or services. It displays a sales banner indicating the domain may be for sale and contains advertising blocks powered by Google Adsense and Bodis. The site lacks any meaningful business description, contact information, or user engagement features. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. The hosting is managed by Bodis, a domain parking service provider. Security posture is minimal with no DNSSEC enabled and no security headers detected. Privacy compliance is weak, with a privacy policy page present but no cookie consent mechanism or GDPR indicators. Overall, the site is low trust and low content quality, suitable only as a placeholder or domain sale page.

M

MARKETING MALÝCH FIREM | Ing. Andrea Frodlová

andreafrodlova.cz

42

MARKETING MALÝCH FIREM | Ing. Andrea Frodlová is a small Czech Republic based business specializing in creating simple WordPress websites and providing marketing consulting services tailored for small businesses and local entrepreneurs. The website presents a professional image with clear contact details and a focus on helping clients improve their online presence and marketing communications. The business appears to be active since at least 2019 and emphasizes personalized service and affordability. Technically, the website is built on WordPress with standard marketing and analytics tools such as Google Analytics and Facebook Pixel, and it includes a GDPR-compliant cookie consent mechanism. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response information. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business registration details support legitimacy. Overall, the site is well-structured, mobile-optimized, and provides a good user experience with clear business focus.

J

JitroDesign

jitrodesign.com

50

JitroDesign is a small, specialized graphic design studio showcasing a portfolio of projects focused on cultural heritage, music albums, and art publications. The website is hosted on the Cargo Collective platform and uses modern web technologies including jQuery and Handlebars.js. The site is accessible without any WAF or security challenges and uses HTTPS, ensuring basic transport security. However, it lacks privacy and cookie policies, security headers, and explicit contact information, which are areas for improvement. The domain is well-established since 2011, registered through a reputable registrar, and aligns with the business's maturity. Overall, the site presents professional content with good design quality and moderate SEO and accessibility features.

V

Voala

voala.cz

41

Voala is a Czech graphic design studio specializing in custom graphic projects, visual identities, and printing services tailored for architects, designers, and corporate clients. The company operates a professional website with an integrated e-commerce platform, showcasing a portfolio and offering bespoke paper products and printing solutions. The business positions itself as a reliable partner with a focus on quality and tradition, targeting a niche market in the Czech Republic. Technically, the website is built on WordPress with WooCommerce, using modern libraries such as Bootstrap and jQuery, and integrates multiple analytics tools including Google Analytics, Smartlook, and Behavee Analytics. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but no visible cookie consent mechanism. WHOIS data is unavailable, which impacts domain trust assessment. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

K

Kanguroo-event

kanguroo-event.fr

46

Kanguroo-event.fr is a French event management platform specializing in complex event scenarios such as protocol invitations, conferences, and sports federations. The company offers a customizable SaaS solution with features including invitation management, access control via QR codes, seating arrangements, payment processing, and multi-language support. The website is professionally designed using WordPress and modern web technologies, providing a good user experience and clear navigation. However, the absence of WHOIS data limits domain trust verification. Security posture is solid with HTTPS and some security headers, but could be improved with explicit policies and disclosures. Privacy compliance is basic with a cookie consent mechanism but no clear privacy policy page. Overall, the platform appears legitimate and professional, targeting organizers of specialized events.

L

Location iPad Toulosue

location-ipad-toulouse.com

46

The website www.location-ipad-toulouse.com operates as a local rental service agency in Toulouse, France, specializing in short and long-term rentals of electronic devices such as iPads, iPhones, Samsung devices, screens, and stands. The business targets both individuals and companies in need of such equipment, positioning itself as a responsive and proximity-based service provider. The website content is primarily in French and is optimized for search engines using Yoast SEO, with structured data implemented for enhanced visibility. Technically, the site is built on WordPress with modern plugins including Ninja Forms for contact forms and WP Rocket for performance optimization. The design is professional and mobile-friendly, providing a good user experience.

P

Pan Europe

low-impact-farming.info

47

The website www.low-impact-farming.info is an advocacy and informational platform operated by Pan Europe, a non-profit organization focused on promoting sustainable agriculture practices, specifically low impact farming and Integrated Pest Management (IPM) across Europe. The site provides educational resources, policy position papers, and multimedia content to support pesticide reduction and environmentally friendly farming methods. It targets farmers, policymakers, environmental advocates, and the general public interested in sustainable agriculture. The business model is centered on advocacy and education rather than commercial sales, positioning itself as a niche player in the European sustainable agriculture sector. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies including Google Analytics and Google Tag Manager for user tracking and AddToAny for social sharing. The site is mobile optimized with good accessibility and SEO practices, though performance is moderate. The technical infrastructure appears maintained and up to date, but lacks some advanced security headers and formal privacy/cookie policies. From a security perspective, the site uses HTTPS and anonymizes IPs in analytics, but does not implement key security headers or publish security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies represents a compliance gap, especially under GDPR. WHOIS data is unavailable due to privacy protection, which is reasonable for this non-profit entity. Overall, the security posture is moderate but could be improved with better policy transparency and technical controls. The overall risk assessment is low to moderate. The site is legitimate and trustworthy for its advocacy purpose but should enhance privacy compliance and security best practices to strengthen user trust and regulatory adherence. Strategic recommendations include publishing privacy and cookie policies with consent mechanisms, implementing security headers, adding a security.txt file, and improving incident response visibility.

L

Le Tambour

assoletambour.com

52

Le Tambour is a French non-profit cultural association founded in 2001, dedicated to literary diffusion by connecting literature with other art forms. The organization offers writing workshops, public readings, theatrical performances, and text montages aimed at diverse audiences including schools and urban communities. The website reflects a professional and consistent brand presence with clear contact information and regional partnerships. Technically, the site is built on WordPress with common plugins and hosted by OVH sas, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences.

The website e-habitants.com currently presents no accessible content, with an empty HTML body and no metadata, scripts, or visible information. This suggests the site is either under construction, blocked by a web application firewall, or otherwise inaccessible. The domain is registered since 2014 with Amazon Registrar, Inc., but no business or contact information is available on the site to verify legitimacy or operational status. The lack of privacy policies, cookie consent mechanisms, or terms of service further indicates the site is not currently functional or compliant with common web standards. Technically, the site lacks any detectable technology stack or CMS, and no security headers or SSL configuration details are available, which raises concerns about security posture. Overall, the site scores very low on content quality, technical implementation, security, privacy compliance, and business credibility.

K

Kulturní středisko Omega, příspěvková organizace

ksomega.cz

47

Kulturní středisko Omega is a municipal cultural center serving the Brno-sever district in the Czech Republic. It organizes a wide range of cultural, educational, and social events, including concerts, theater performances, exhibitions, and courses. The organization manages multiple venues across Brno and aims to provide quality cultural experiences to a broad audience. Technically, the website uses modern frontend technologies such as Bootstrap and Swiper.js, and integrates Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and includes CSRF tokens in forms, but lacks some security headers and explicit privacy and terms of service pages. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy indicated by the website content. Overall, the site is safe, professional, and focused on community cultural engagement.

V

Van Tienhoven Foundation

vantienhovenfoundation.com

55

The Van Tienhoven Foundation is a small non-profit organization based in the Netherlands dedicated to providing small grants for the protection of threatened species and key ecosystems worldwide. Their focus is on practical, community-led conservation efforts that generate sustainable environmental impact. The website is professionally designed using WordPress with modern technologies such as jQuery and Slick Carousel, optimized for mobile and SEO. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and cookie consent mechanisms could be improved. The absence of WHOIS data limits domain trust verification but the presence of official documents, contact information, and testimonials supports legitimacy. Overall, the site effectively communicates its mission and services to conservation stakeholders globally.

Z

ZOO JH s.r.o.

zoonahradecku.cz

46

ZOO Na Hrádečku is a private zoological garden located in the Czech Republic, operating since 2014 with a focus on conservation, education, and public engagement. The zoo hosts over 200 animal species, including endangered ones, and offers various visitor experiences such as guided tours, animal adoptions, and educational programs. It operates without subsidies, relying on ticket sales, merchandise, and donations. The website reflects a well-established regional institution with strong community and conservation partnerships. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery libraries, hosted by a reputable Czech registrar and hosting provider. The site is mobile-optimized with good SEO practices and clear navigation, though some advanced security headers and explicit security policies are not evident. Cookie consent and privacy policies are implemented, indicating awareness of GDPR compliance. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks visible advanced security headers or incident response information. No vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site presents a trustworthy, professional online presence for a medium-sized private zoo with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security controls are recommended to enhance the security posture and trust further.

R

Ready for Boarding - travel not only by plane

readyforboardingblog.com

47

Ready for Boarding is a multilingual travel blog primarily targeting travel enthusiasts interested in experiences beyond air travel. Established around 2013, it offers travel stories, tips, and guides with a focus on Poland and Central Europe. The website is built on WordPress and integrates multiple third-party services including WooCommerce for e-commerce, Google Analytics for traffic analysis, and Facebook Pixel for advertising effectiveness. It employs a comprehensive cookie consent mechanism and privacy policy compliant with GDPR, reflecting a mature approach to privacy and user consent. Security posture is adequate with HTTPS enforced and use of Google reCAPTCHA, but lacks visible security headers and formal security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and consistent with a small professional travel blog. Overall, the site demonstrates good technical and content quality with room for improvement in security transparency and domain registration clarity.

S

Stella Tech BV

mars-amp31.com

55

Marsbahis is an online gambling platform licensed in Curacao, offering a wide range of betting and casino games primarily targeting Turkish-speaking users. The website leverages AMP technology to provide a fast and mobile-optimized experience, integrating Google Analytics for user tracking. The business model centers on user registration, deposits, withdrawals, and promotional bonuses to attract and retain customers. The platform positions itself as a licensed and trustworthy operator within the online gambling industry, emphasizing its Curacao license and various gambling services. Technically, the site is well-optimized for performance and mobile use but lacks some advanced security headers and cookie consent mechanisms. The WHOIS data presents a significant anomaly with a domain creation date set in the future, which raises concerns about data accuracy and trustworthiness. Overall, the site demonstrates moderate technical maturity and business credibility but requires improvements in privacy compliance and security transparency.

The website www.abmanufaktura.cz is currently inaccessible, returning a 403 Forbidden error which blocks access to any content. Due to this restriction, no metadata, business information, or technical details could be extracted. The lack of WHOIS data further complicates verification of domain legitimacy and ownership. The absence of contact information, privacy policies, or security headers indicates a very low digital maturity and security posture. Overall, the site appears non-functional or restricted, preventing meaningful business or security analysis.