Security Directory

F

Framasoft

mobilizon.fr

60

Mobilizon.fr is a community-driven event and group management platform operated by Framasoft, a French non-profit organization promoting free software and digital freedom. The website serves as an instance of the Mobilizon platform, enabling users to organize, mobilize, and manage events and groups. The platform targets general audiences interested in community engagement and activism. Technically, the site uses modern JavaScript frameworks such as Vue.js and UI libraries like Oruga, with good mobile optimization and accessibility features. The domain is registered with GANDI since 2019, consistent with the platform's operational timeline. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional, trustworthy, and professionally presented but would benefit from enhanced privacy and security documentation.

F

Framasoft

framagames.org

54

Framagames is a small, community-driven platform operated by the non-profit organization Framasoft, offering free and open source games playable online or offline. The website targets a general audience interested in free software and gaming, positioning itself as a niche player within the open source gaming community. The platform provides downloadable games and online play options, supported by community engagement and guides hosted on the parent Framasoft domain. Technically, the site is built using modern web technologies including Vue.js and Font Awesome, hosted by Gandi SAS. The website is mobile optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and performance. The domain is well maintained with HTTPS and clientTransferProhibited status, but lacks DNSSEC and security headers which could enhance security posture. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks explicit security policies, incident response information, and cookie consent mechanisms. Tracking is minimal and privacy policies are hosted on the parent domain, indicating reasonable privacy compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, Framagames presents a trustworthy, well-maintained platform with a strong community focus. Strategic improvements in security headers, cookie consent, and public security policies would enhance its security posture and compliance. The site is safe for general audiences and aligns well with its non-profit, open source mission.

F

Framasoft

framagroupes.org

63

Framasoft is a French non-profit association founded in 2004, dedicated to popular education on digital challenges and the cultural commons. The Framagroupes service provides a free, ethical platform for creating and managing email discussion groups, emphasizing user privacy, data autonomy, and community moderation. The organization is funded primarily by donations and operates with transparency and a strong ethical stance against surveillance capitalism. Technically, the website uses modern web technologies including Vue.js and the Sympa mailing list software, hosted by Gandi SAS. The site is well-designed, mobile-optimized, and accessible, with clear navigation and professional content. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are missing. Privacy compliance is strong with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy, safe, and aligned with its mission of digital emancipation.

F

Framasoft

framacarte.org

53

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical, free/libre software services. Framacarte is one of its flagship projects, offering a free online map customization tool based on OpenStreetMap and the uMap software. The organization is funded primarily by donations and emphasizes privacy, minimal data collection, and transparency. The website is professionally designed, mobile-optimized, and rich in content, targeting a broad audience interested in digital emancipation and open-source tools. Technically, the site uses modern web technologies including Vue.js and Bootstrap, hosted by OVH sas. It employs HTTPS with good SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. Analytics are handled via Matomo with minimal tracking, aligning with the organization's privacy ethos. Security posture is solid for a non-profit, with domain registration protections and no evident vulnerabilities, though improvements are suggested in DNS security and explicit security policies. Privacy compliance is good, with clear terms and privacy policies, though no cookie consent mechanism was detected. Overall, Framasoft and Framacarte present a trustworthy, well-managed digital service with strong community and ethical foundations. Strategic improvements in security and privacy transparency would further enhance trust and resilience.

F

Framasoft

framadate.org

59

Framadate is a free, open-source polling and scheduling tool operated by the French non-profit association Framasoft. The website offers collaborative event scheduling and opinion polling services with a strong emphasis on user privacy, data autonomy, and digital emancipation. The platform is donation-funded and positions itself as an ethical alternative to commercial services, targeting individuals and organizations seeking privacy-respecting tools. Technically, the site uses modern web technologies such as Vue.js and Bootstrap 4, is hosted by a reputable registrar (Gandi SAS), and is well-optimized for performance and mobile devices. Security posture is solid with HTTPS enforced and minimal data collection, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is good with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and aligns well with its stated mission and business model.

F

Framasoft

framalistes.org

63

Framasoft is a French non-profit organization providing ethical digital services, including Framalistes, a free mailing list platform focused on privacy and user autonomy. The organization is well-established with a domain age consistent with its founding and operates transparently with donation-based funding. The website is professionally designed, mobile-optimized, and accessible, reflecting a mature digital presence. Technically, it uses modern frameworks like Vue.js and the Sympa mailing list software, hosted by a reputable registrar, Gandi SAS. Security posture is good with HTTPS and domain transfer protections, though DNSSEC and explicit security policies could be improved. Privacy compliance is strong with minimal tracking and clear terms of use. Overall, the site is trustworthy and serves a niche audience seeking ethical alternatives to commercial mailing list services.

F

Framasoft

framatalk.org

60

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical and privacy-respecting online services. Their Framatalk platform offers free, ad-free videoconferencing based on the open-source Jitsi Meet software, targeting individuals and groups seeking secure and easy-to-use communication tools. The organization is funded primarily by donations and emphasizes transparency and community involvement. Technically, the website leverages modern web technologies including Vue.js and Bootstrap 4, hosted by OVH sas, a reputable provider. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. The use of open-source software and self-hosted analytics reflects a strong commitment to privacy and user control. Security-wise, the site enforces HTTPS and uses domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled and no explicit security policy or vulnerability disclosure mechanism is published. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by clear terms and policies, though no cookie consent mechanism was found. Overall, Framatalk presents a trustworthy, professional, and privacy-conscious service with a strong ethical foundation. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and adding cookie consent mechanisms to enhance compliance and user trust.

F

Framasoft

framagit.org

60

Framagit.org is a self-hosted GitLab instance operated by Framasoft, a French non-profit organization dedicated to promoting free software and digital commons. The platform provides hosting and collaboration tools for open source projects, targeting developers, contributors, and ethical digital communities. The website demonstrates a solid technical infrastructure leveraging GitLab, modern JavaScript frameworks, and privacy-conscious analytics via Matomo. Security posture is strong with HTTPS enforcement, CSRF protection, and domain transfer restrictions, although DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is partial, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, the site is trustworthy, professionally maintained, and serves a niche community with a focus on ethical technology.

F

Framasoft

framasoft.org

61

Framasoft is a well-established French non-profit organization founded in 2004, dedicated to digital emancipation through free software, hosting ethical online services, and popular education. It operates a variety of community-driven projects and platforms such as PeerTube, Mobilizon, and Framablog, supported primarily by donations. The organization targets individuals and groups interested in liberating their digital practices and promoting social justice. Technically, the website uses modern frameworks like Vue.js and Bootstrap, is hosted by OVH, and demonstrates excellent mobile optimization and performance. Security posture is strong with HTTPS and domain protections, though DNSSEC is not enabled and security policies are not explicitly published. Privacy compliance is good with a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the website is professional, trustworthy, and transparent, with a high legitimacy score based on WHOIS data and content consistency.

Landefeld Druckluft und Hydraulik GmbH operates a leading German B2B e-commerce platform specializing in pneumatic, hydraulic, and industrial supply products, prominently featuring Festo components. The company targets industrial and commercial customers, offering fast, flexible shipping and technical consultation services. Their market position is strong within their niche, supported by a comprehensive product catalog and multilingual website presence. Technically, the website employs modern frameworks such as Vue.js and Bootstrap, hosted on AWS infrastructure, with integrated consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and GDPR compliance, though explicit security headers and incident response policies are not publicly documented. Overall, the website is professional, trustworthy, and well-optimized for its audience.

B

BlučinaNet s.r.o.

blucinanet.eu

41

BlučinaNet s.r.o. is a small Czech telecommunications company established in 1992, providing internet and television services primarily to residential and small business customers. The website presents a professional and consistent brand image with clear service offerings including internet connectivity, TV packages, and router hardware. The company targets customers in the Czech Republic, emphasizing affordable and reliable service. Technically, the website is built on a modern Nuxt.js and Vue.js stack, offering good mobile optimization and user experience, though SEO and accessibility could be improved. Security posture is solid with HTTPS enforced, but lacks important security headers and published privacy or cookie policies, which reduces compliance and trust. No blocking or WAF mechanisms were detected, and no suspicious content or tracking scripts are present, indicating a safe and straightforward online presence.

O

Office national des forêts

onf.fr

60

The Office national des forêts (ONF) is a major French government-related organization focused on sustainable forest management, environmental protection, and public engagement. The website reflects a well-established entity with a domain registered since 1996, consistent with its long-standing public service role. The site offers a variety of services including forest management, risk management, and services for local authorities and businesses. It targets a broad audience including public officials, enterprises, forest professionals, and the general public. Technically, the website employs modern JavaScript frameworks such as Vue.js, uses analytics tools like Matomo and Facebook Pixel, and integrates Google Tag Manager for marketing and tracking purposes. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Privacy policies and terms of service are clearly presented, supporting GDPR compliance. Overall, the website is trustworthy, professional, and aligns well with the organization's mission and public service nature.

S

SiteLock

sitelock.com

11

SiteLock is a globally recognized leader in website security, specializing in providing affordable and accessible cybersecurity solutions primarily targeting small businesses. Founded in 2008, the company protects over 12 million websites worldwide and holds a strong market position as a trusted provider of website security monitoring and malware protection services. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the site leverages modern frameworks such as Vue.js and Tailwind CSS, integrates Google reCAPTCHA Enterprise for bot mitigation, and employs Cookiebot for cookie consent management, indicating a high level of digital maturity and compliance with privacy regulations such as GDPR. Security posture is robust with HTTPS enforcement, security headers, and certifications like ISO 27001, although explicit incident response and vulnerability disclosure policies are not publicly detailed. Overall, the site demonstrates a high level of professionalism and trustworthiness, though the absence of WHOIS data introduces some uncertainty regarding domain registration transparency.

F

Framasoft

degooglisons-internet.org

56

The website 'De-google-ify Internet' is operated by Framasoft, a French non-profit organization focused on providing free software alternatives to centralized web giants. The platform offers a wide range of ethical, privacy-respecting services such as collaborative editing, code hosting, cloud storage, videoconferencing, and more. It targets internet users who seek to regain control over their digital lives by using decentralized and open-source tools. Technically, the website is built with modern frameworks like Vue.js and Bootstrap 4, hosted by OVH, and uses HTTPS for secure communication. However, it lacks some important privacy and security disclosures such as privacy and cookie policies, security headers, and incident response information. The WHOIS data indicates a legitimate and stable domain registration with no privacy protection, consistent with the organization's profile. Overall, the website demonstrates good content quality and business credibility but could improve its privacy compliance and security posture.

F

Framasoft

framaforms.org

53

Framasoft is a French non-profit association dedicated to promoting digital autonomy and ethical online services. Their flagship service, Framaforms, offers free, open-source online form creation and distribution tools emphasizing user privacy and data control. The organization is well-established with a domain registered since 2014 and funded primarily through donations. The website reflects a strong commitment to transparency, community engagement, and educational outreach. Technically, the site uses modern web technologies including Vue.js and Bootstrap, hosted on OVH infrastructure, and is optimized for mobile devices. Security posture is good with HTTPS enforced and domain protections in place, though there is room for improvement in DNSSEC and security policy disclosures. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, although no explicit cookie consent mechanism was detected. Overall, the site is professional, trustworthy, and aligned with its mission of digital emancipation.

G

Gustav Klauke GmbH

klauke.com

68

Gustav Klauke GmbH is a well-established German manufacturer specializing in electrical connection technology and professional tools such as pressing, cutting, and hydraulic safety tools. The company operates globally and is part of the Emerson Electric Co. portfolio, which includes subsidiaries like Greenlee and RIDGID. Their product range exceeds 10,000 items, targeting industrial, commercial, and renewable energy sectors. The website is professionally designed, mobile-optimized, and rich in content, supporting a strong brand presence and customer engagement through multiple channels including social media and detailed product catalogs. Technically, the website employs modern JavaScript frameworks including AngularJS and Vue.js, uses Google Analytics and Tag Manager for tracking, and is built on Orchard CMS. Security best practices are observed with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not found. Privacy compliance is robust, with clear links to privacy and cookie policies hosted on the parent company's domain. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the WHOIS lookup failed to retrieve domain registration details, which is unusual and lowers the domain legitimacy score. Despite this, the association with Emerson and the professional website content strongly support the site's authenticity. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional online presence for Klauke.

Z

Zátiší Catering Group a.s.

vzatisi.cz

49

V Zatisi is a fine dining restaurant located in Prague, Czech Republic, specializing in modern interpretations of Slavic flavors using seasonal and traditional ingredients. It operates under the umbrella of Zátiší Catering Group a.s., a recognized hospitality group. The website presents a professional and well-structured digital presence with clear business information, reservation capabilities, and rich content showcasing menus and philosophy. Technically, the site uses modern web technologies including Vue.js, jQuery, and Google Tag Manager, with a Kentico CMS backend inferred from cookies. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are not explicitly detected. Privacy compliance is well addressed with a comprehensive privacy and cookie policy linked and a consent banner in place. The lack of WHOIS data limits domain registration trust analysis, but the business legitimacy is supported by consistent branding and external affiliations. Overall, the site is trustworthy, user-friendly, and compliant with relevant privacy regulations.

I

Nikecraft: Critical Path

isrucamp.com

53

The website 'isrucamp.com' presents a minimalistic technical front with a title 'Nikecraft: Critical Path' but lacks substantive business or contact information. The site is built using modern JavaScript frameworks including Vue.js and Ionic, and incorporates New Relic for performance monitoring. Hosting is provided by Cloudflare, but the domain WHOIS data shows inconsistencies, notably a domain creation date set in the future (2025), which raises questions about the domain's legitimacy or data accuracy. Security posture is basic with HTTPS enabled but no DNSSEC or security headers detected. Privacy and cookie policies are absent, and no contact or incident response information is provided, limiting compliance and trustworthiness. Overall, the site appears to be in early development or a placeholder with limited business presence.

K

Kirby

getkirby.com

64

Kirby is a well-established content management system founded in 2010, targeting developers, designers, creators, and clients globally. The website presents a professional and modern CMS product with a strong community presence and a comprehensive offering including plugins, themes, and a license hub. The technical infrastructure leverages PHP 8, Vue.js, and Algolia Search, hosted behind Cloudflare DNS, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is currently weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professionally maintained, but should enhance privacy and security disclosures to improve compliance and user trust.

David Marby's website is a personal portfolio and blog showcasing his expertise as a full-stack engineer. The site targets developers and tech enthusiasts, providing project links and social media connections to establish professional credibility. The business model is centered on personal branding and sharing technical knowledge through blog posts. The website is hosted on DigitalOcean and built using modern technologies such as Vue.js and the Saber static site generator, ensuring good performance and mobile optimization. However, the site lacks privacy and cookie policies, security headers, and DNSSEC, which are important for enhancing security and compliance. The security posture is basic with HTTPS enabled but missing additional protective headers. Overall, the site is trustworthy and professional but could improve in privacy compliance and security best practices. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and providing more comprehensive contact information to enhance trust and compliance.

W

Walnut Creek Creative LLC

beinclusive.app

65

Be Inclusive is a specialized SaaS provider offering manual accessibility audit software designed to simplify and streamline the process of defining, tracking, and sharing digital accessibility audits. Positioned as a niche solution between cumbersome spreadsheets and expensive enterprise tools, it targets accessibility professionals, agencies, and freelancers. The company behind the product is Walnut Creek Creative LLC, a small US-based business with a clear focus on accessibility compliance and usability. Technically, the website employs modern web technologies including Vue.js and custom JavaScript, with a strong emphasis on accessibility and responsive design. The site loads quickly and includes SEO best practices and meta tags. Security is well implemented with HTTPS, CSRF tokens, and standard security headers, though no explicit security or incident response policies are published. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is good with a comprehensive privacy policy and terms of service, but the absence of a visible cookie consent mechanism may pose GDPR compliance risks. The site maintains a professional and trustworthy appearance with customer testimonials and active social media channels. Overall, the website represents a credible, well-executed business with a solid technical foundation and good security hygiene. Strategic improvements around cookie consent and security transparency would further enhance compliance and trust.

D

Deutsche Messe AG

ligna.de

66

LIGNA is a globally recognized trade fair organized by Deutsche Messe AG, focusing on tools, machines, and plants for woodworking and wood processing industries. The website serves as a comprehensive platform for exhibitors, visitors, and press, providing event information, exhibitor details, news, and multimedia content. The site is well-branded, professionally designed, and targets industry professionals and stakeholders primarily in Germany but with international reach. Technically, the website employs modern JavaScript frameworks like Vue.js, integrates a consent management platform (Usercentrics), and uses Google Tag Manager for analytics and tracking. Hosting is managed via managed IP name servers, ensuring reliable delivery. Security posture is strong with HTTPS enforced and CSRF tokens present, though some security headers are missing and no explicit security policy or incident response contacts are published. Privacy compliance is robust with clear privacy and cookie policies and active consent mechanisms. Overall, the website is trustworthy, professional, and secure, with no signs of adult or questionable content.

N

Nenávist na sítích

nenavistnasitich.cz

57

The website 'Nenávist na sítích' is a Czech research project focused on analyzing hate speech, particularly gender-based hate directed at women politicians on social media platforms like Facebook. It is affiliated with reputable organizations such as Multikulturní centrum Praha, Fórum 50 %, Transparency International, ČVUT, and EEA Grants, indicating a credible non-profit research initiative. The site provides detailed visual data and analysis on the prevalence and impact of hateful comments, aiming to raise awareness and inform policy or social interventions. Technically, the website is built using modern web technologies including Nuxt.js and Tailwind CSS, ensuring a responsive and visually appealing user experience. The site loads moderately fast and is mobile-optimized, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS but lacks several security headers that could enhance protection against common web threats. No forms or data collection mechanisms were detected, reducing exposure to input-based vulnerabilities. However, the absence of privacy and cookie policies is a compliance gap, especially under GDPR regulations. Overall, the domain WHOIS data is unavailable, which limits trust assessment from a registration standpoint. Despite this, the website content and affiliations suggest legitimacy. The site does not contain adult or NSFW content and targets a general audience interested in social research and human rights. Strategic recommendations include adding comprehensive privacy and cookie policies, improving security headers, and providing clear contact and incident response information to enhance transparency and compliance.

R

Ringier Slovakia Media s.r.o.

aktuality.sk

67

Aktuality.sk is the leading independent news portal in Slovakia, operated by Ringier Slovakia Media s.r.o. The website offers comprehensive news coverage including domestic and international news, economy, culture, weather forecasts, horoscopes, TV programs, and multimedia content such as podcasts and videos. It targets the general Slovak public and operates a business model based on advertising and premium subscription content. The site maintains a strong market position supported by multiple journalism awards and memberships in journalistic ethics organizations. Technically, Aktuality.sk employs a modern web technology stack including Vue.js and Nuxt.js frameworks, integrated with advanced analytics and advertising platforms such as Gemius, Google Tag Manager, and Piano.io for subscription management. The site is mobile-optimized, SEO-friendly, and uses HTTPS with robust security headers, ensuring a secure and performant user experience. From a security perspective, the website demonstrates good practices including GDPR-compliant consent management, use of reCAPTCHA, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and readiness. Overall, Aktuality.sk presents a trustworthy, professional, and well-maintained digital presence with high content quality and strong business credibility. Strategic recommendations include enhancing security transparency, publishing vulnerability disclosure policies, and continuous monitoring of third-party integrations to maintain security posture.

F

Fun Rádio

funradio.sk

58

Fun rádio is a prominent Slovak media company operating a popular radio station and digital platform offering music hits, podcasts, news, and contests. The website demonstrates a mature digital infrastructure using modern technologies such as Vue.js, Cookiebot for cookie consent, and Google Tag Manager for analytics and marketing. The security posture is strong with HTTPS enforced and standard security headers present, although explicit privacy and terms of service documents are missing, representing a compliance gap. The site is well-optimized for mobile and desktop users, providing a good user experience with clear navigation and relevant content. Overall, the domain registration and WHOIS data align with the business claims, supporting legitimacy and trustworthiness.

H

HUBER+SUHNER

hubersuhner.com

63

HUBER+SUHNER is a global manufacturer and supplier of electrical and optical connectivity products serving the industrial, communication, and transportation sectors. The company offers a broad portfolio of products and services designed to ensure reliable data and power transmission worldwide. Their website reflects a mature digital presence with a professional design, comprehensive content, and a strong global footprint supported by numerous subsidiaries and locations. Technically, the site uses modern web technologies including Kentico CMS, Vue.js, and Google Tag Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration legitimacy despite the professional business presence. Overall, the website is trustworthy and well-maintained, but the WHOIS inconsistency and lack of explicit security disclosures suggest areas for improvement.

O

Opklopper B.V.

judgeme.io

51

Opklopper B.V. is a specialized Shopify bureau based in Amsterdam, Netherlands, providing comprehensive e-commerce solutions including webshop design, migration, and marketing services primarily targeting entrepreneurs and businesses in the Netherlands and Belgium. The company positions itself as a trusted Shopify partner with a strong portfolio and expertise in email marketing strategies to boost online sales. Technically, the website leverages modern frameworks such as Nuxt.js and Vue.js, integrates Google Tag Manager and Analytics for tracking, and demonstrates good performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies, which are recommended for improvement. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, potentially impacting GDPR adherence. Overall, the website is professional, trustworthy, and well-structured, supporting a positive business credibility profile.

S

Session Rewind

sessionrewind.com

61

Session Rewind is a technology SaaS company founded in 2020 that provides affordable session recording, heatmaps, error tracking, and dashboard analytics to optimize website user experience. Positioned as a cost-effective alternative to established players like FullStory and Hotjar, it targets solopreneurs, startups, and enterprises seeking actionable insights into user behavior. The website demonstrates a professional design with clear navigation and consistent branding, supporting a positive user experience and trustworthiness. Technically, the site leverages modern JavaScript frameworks (Vue.js), integrates analytics tools like Heap and Google Tag Manager, and uses Cloudflare for DNS, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and standard security headers present, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is basic with a comprehensive privacy policy and cookie policy present but lacking a consent mechanism. Overall, the site is safe, business-focused, and credible with no signs of malicious activity or suspicious content.

T

TRIBEE

tribee.cz

10

TRIBEE is a Czech-based employer branding and recruitment platform that helps companies build authentic employer brands and assists job seekers in finding workplaces where their values align. The platform offers multimedia company profiles showcasing real corporate culture, values, and people, alongside job listings from various companies. TRIBEE positions itself as a niche player in the employer branding space within the Czech Republic, targeting both companies and job seekers. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted likely on DigitalOcean infrastructure, and employs Google Tag Manager for analytics. The site is well-optimized for mobile and SEO, with a professional design and good user experience. Security-wise, the site uses HTTPS and includes standard security headers, but lacks explicit published security policies or incident response contacts. WHOIS data is missing, which reduces trustworthiness from a domain registration perspective, but the professional content and social media presence mitigate some concerns. Overall, the site is functional, professional, and secure, but could improve transparency around privacy, cookie policies, and security disclosures.

Innovation Week 2025 is a major European event focused on innovation and artificial intelligence, held in Prague. The website serves as the primary platform for event information, ticket sales, and partnership opportunities. It targets a broad audience including leaders, tech enthusiasts, startups, investors, and companies seeking visibility and networking. The event boasts a decade-long history, multiple stages, seminars, and a large roster of global speakers, positioning it as a leading innovation conference in Europe. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with extensive use of tracking and marketing tools including Google Tag Manager, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight. The site is mobile optimized and offers a professional user experience with clear navigation and rich content. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks some security headers and explicit privacy and terms of service documentation. WHOIS data is privacy protected, which is typical for event domains, and no suspicious patterns were detected. Overall, the website is credible and professionally maintained, though improvements in privacy transparency and security headers are recommended.

Mobile Industrial Robots (MiR) is a Denmark-based company specializing in autonomous mobile robots designed to automate internal transportation for businesses. Founded in 2012 and now part of Teradyne Robotics, MiR offers versatile robotic solutions complemented by service portals, training academies, and community engagement platforms. The company targets industrial and manufacturing sectors seeking automation to improve operational efficiency. The website reflects a mature digital presence with professional design and clear navigation, supporting a global B2B audience. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, leveraging Storyblok CMS for content management. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and domain transfer protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is adequate with privacy and cookie policies present, though no active consent mechanism is detected. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

J

Jean Lain Mobilités

jeanlain.com

70

Jean Lain Mobilités is a French automotive dealership and mobility services provider offering a wide range of vehicle brands including Volkswagen, Audi, Toyota, and others. The company provides new and used vehicle sales, leasing, after-sales services, electric mobility solutions, and professional fleet services. The website is well-structured and professionally designed, targeting both consumers and business clients seeking automotive and mobility solutions. Technically, the site is built on WordPress with modern frameworks and includes analytics tools such as Matomo and Facebook Pixel. Security posture is good with HTTPS and no visible vulnerabilities, though explicit privacy and cookie policies are not found on the homepage. The domain is a subdomain of jeanlain.com, a known automotive group, with no separate WHOIS registration, which is expected and legitimate. Overall, the site demonstrates a mature digital presence with room for improvement in privacy compliance and security transparency.

Wecoma Lite is a technology company offering a flexible, customizable cookie banner solution designed to help website owners comply with privacy regulations such as GDPR. The company positions itself as a provider of fast, lightweight, and fully controllable consent management tools suitable for small to enterprise-level websites. Their business model is subscription-based with transparent pricing tiers targeting different scales of website operations. The website demonstrates a modern technical infrastructure using Vue.js and Vuetify frameworks, with integration of Google Tag Manager for analytics and marketing purposes. Hosting appears to be on Azure, as inferred from CDN billing notes. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is limited by the absence of visible privacy and cookie policies. Contact information is provided via email and a contact form, but no phone numbers or physical addresses are listed. Overall, the website is professional, well-designed, and trustworthy, though it could improve transparency and compliance documentation.

C

Carlton Football Club

carltonians.com.au

54

Carlton Football Club operates a professional and well-branded corporate hospitality website focused on the Carltonians Coterie match-day experience. The site targets business professionals and club supporters offering premium hospitality packages at major stadiums. The digital infrastructure uses modern JavaScript libraries and tracking tools, with a responsive design and good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and cookie consent mechanisms are missing. WHOIS data is unavailable due to privacy policies, but the site’s branding and external links support legitimacy. Overall, the site presents a trustworthy and professional digital presence for the club's hospitality services.

L

Lifestyle Communities

lifestylecommunities.com.au

61

Lifestyle Communities is a medium-sized Australian real estate company specializing in retirement living communities for people over 50 in Victoria. The company offers a variety of homes for sale across multiple locations with a focus on downsizing and lifestyle amenities. Their market position is strong within the retirement community sector in Victoria, supported by a professional and content-rich website that targets their audience effectively. Technically, the website uses modern frameworks such as Vue.js and integrates multiple analytics and marketing tools, indicating a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and secure forms, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, well-branded, and compliant with privacy regulations, making it a reliable platform for its target demographic.

N

Najlekáreň s.r.o.

najlekaren.eu

60

Najlekáreň s.r.o. operates the website Najlekáreň.eu, a verified online pharmacy serving primarily the Slovak and Czech markets. The company offers a broad range of healthcare products including medicines, nutritional supplements, cosmetics, and medical aids, supported by expert advice and fast delivery services. The website targets general consumers seeking convenient and reliable pharmaceutical products online. Technically, the site employs modern JavaScript frameworks such as Vue.js, integrates multiple marketing and analytics tools including Google Analytics and Bing Ads, and maintains good SEO and mobile optimization standards. Security-wise, the site enforces HTTPS, implements standard security headers, and uses cookie consent mechanisms aligned with GDPR requirements. However, explicit incident response and vulnerability disclosure information are not publicly available, representing an area for improvement. Overall, the website presents a professional and trustworthy e-commerce platform with moderate to good technical maturity and security posture.

W

WDF

wdf.cz

68

WDF is a small technology-focused digital agency specializing in the development of cutting-edge digital products including mobile and web applications. The company positions itself as a provider of innovative software solutions aimed at businesses and users seeking modern digital experiences. The website reflects a professional and modern design, leveraging contemporary JavaScript frameworks such as Vue.js and Nuxt.js, and integrates analytics and marketing tools like Google Tag Manager and LinkedIn Insight. Security measures include HTTPS enforcement and the use of Google reCAPTCHA to protect forms. However, the absence of explicit privacy policies, terms of service, and contact information limits transparency and user trust. The domain WHOIS data is not publicly available, indicating privacy protection, which is typical for small agencies. Overall, the website demonstrates a good technical foundation and business presentation but would benefit from enhanced privacy and security disclosures.

J

Já hf.

ja.is

69

Já hf. operates the website ja.is, a leading Icelandic local search and e-commerce platform established in 2002. The site facilitates connections between people and businesses in Iceland, offering product listings, advertising services, and mobile applications for iOS and Android. The company maintains a strong market position as a trusted local directory and marketplace. Technically, the website employs modern frameworks such as Vue.js, integrates advanced analytics and monitoring tools including Google Analytics, Segment, and New Relic, and uses Amazon AWS Cloudfront for hosting and CDN services. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and integrates security monitoring, though it could improve by enabling DNSSEC and adding explicit security headers. Privacy compliance is robust with clear policies and consent banners. Overall, the website demonstrates a mature digital presence with high trustworthiness and professional business credibility.

The website hockeynet.fr serves as the official login portal for the Fédération Française de Hockey sur Glace (French Ice Hockey Federation), targeting federation officials and administrators. It provides secure access to management tools and resources related to French ice hockey governance. The domain is registered with GANDI since 2020, consistent with the federation's digital presence. The site uses modern frontend technologies such as Vue.js and jQuery, with a responsive design and basic accessibility features. Security measures include HTTPS enforcement and CSRF token protection on the login form, though additional HTTP security headers are not detected. Privacy compliance is partially addressed with a linked GDPR charter, but lacks an explicit cookie consent mechanism. No contact or incident response information is provided on the login page, limiting transparency in security and support channels.

Magasins Généraux is a cultural venue and creative center located in Pantin, France, founded in 2017 by BETC. It operates as a hub for artistic exhibitions, events, and public engagement, contributing to the cultural landscape of the Grand Paris area. The website reflects a professional and consistent brand image targeting a broad audience including groups, families, educators, and artists. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js with Prismic CMS, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained.

JustDev is a small technology-focused business founded in 2016, providing software development and technology consulting services. The website targets developers and technology professionals, positioning itself as a niche service provider. The digital infrastructure is built on modern JavaScript frameworks Nuxt.js and Vue.js, hosted via websupport.sk nameservers. The website demonstrates basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and secure session cookies, but lacks DNSSEC and security headers, indicating room for improvement. Privacy compliance is good with a clear cookie consent mechanism and privacy policy, though terms of service and incident response policies are absent. Overall, the website is functional and trustworthy but could benefit from enhanced security and compliance documentation.

V

VEKA Holding

veka.cz

59

VEKA Holding operates as a leading global manufacturer specializing in high-quality plastic profile systems for windows and doors. The company targets a professional audience including window manufacturers, architects, builders, and sellers, positioning itself as a market leader in its sector. The website reflects a professional business presence with clear branding and targeted navigation. Technically, the site employs modern frontend technologies such as Nuxt.js and Vue.js, along with consent management tools like Usercentrics and Google Tag Manager for analytics and tracking. However, the absence of visible privacy and cookie policies, as well as lack of WHOIS registrant data, limits transparency and compliance visibility. Security posture is moderate with no detected security headers and unknown SSL configuration, indicating room for improvement in security best practices. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security measures.

G

Gransy, s.r.o.

pavlovec.net

9

Pavlovec.net is a small Czech-based web development service specializing in WordPress websites, boasting 15 years of coding experience. The website targets Czech-speaking clients seeking professional WordPress and WooCommerce development services. The business operates under the legal entity Gransy, s.r.o., with domain registration consistent with the claimed business history and location. Technically, the website employs a modern but straightforward tech stack including HTML5, CSS3, JavaScript, jQuery, Vue.js, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized with good design and navigation, though accessibility and SEO optimizations are basic. Hosting appears to be managed via the registrar's DNS and hosting services. From a security perspective, the website lacks visible security headers and does not implement DNSSEC, which could be improved. No privacy or cookie policies are present, indicating compliance gaps with GDPR. The site does not provide incident response or security contact information, limiting transparency. However, no critical vulnerabilities or suspicious content were detected. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures to improve trust and regulatory adherence.

N

Nadace Tomáše Bati

nadacetomasebati.cz

68

Nadace Tomáše Bati is a Czech non-profit foundation focused on preserving the legacy of the Baťa family and supporting social, cultural, and educational initiatives primarily in the Zlín region. The foundation operates from the historically significant Baťa villa and offers a variety of community events, educational programs, and an e-commerce platform for branded merchandise. The website is professionally designed with consistent branding and clear navigation, targeting a general audience interested in culture and community development. Technically, the website employs a modern JavaScript stack including jQuery, Vue.js, and various UI libraries, ensuring good mobile optimization and user experience. The site uses HTTPS with valid SSL certificates and incorporates Google reCAPTCHA and cookie consent mechanisms, reflecting a reasonable security posture. However, the absence of explicit security headers and incident response information suggests room for improvement. From a security perspective, the site shows good practices such as encrypted connections and form protections but lacks detailed security policies and vulnerability disclosure mechanisms. The missing WHOIS data for the domain is a concern for trust and legitimacy, although the website content and external partnerships support its authenticity. Overall, the website presents a trustworthy and professional front for the foundation but should address WHOIS transparency and enhance security disclosures to improve credibility and compliance.

A

Agionet s.r.o.

agionet.cz

50

Agionet s.r.o. is a well-established Czech company specializing in web design, development, SEO, and multimedia services since 1999. The company targets businesses and professionals primarily in Plzeň, Praha, and across the Czech Republic, offering a comprehensive range of services including custom web applications, e-shops, hosting, and online marketing. Their market position is supported by a strong portfolio of client references and regional awards. Technically, the website is built on Joomla CMS with modern frontend frameworks like Vue.js and React, and integrates Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers and incident response disclosures could be improved. The absence of WHOIS data limits domain trust analysis but the professional presentation and detailed business information support legitimacy. Overall, the website reflects a mature digital presence with room for enhanced security and compliance transparency.

S

Skillsoft

skillsoft.com

79

Skillsoft operates as a leading enterprise learning platform specializing in AI-driven skills intelligence to empower employees and organizations. The company targets corporate clients seeking to build workforce capabilities and close skill gaps through an immersive, multi-device learning experience. The website reflects a mature digital presence with a professional design, clear branding, and comprehensive privacy and cookie policies, indicating a strong commitment to user data protection and compliance. Technically, the site leverages modern JavaScript frameworks such as Vue.js, integrates multiple analytics and marketing tools, and employs consent management mechanisms to align with GDPR requirements. However, the absence of WHOIS data and domain registration details introduces some uncertainty regarding domain legitimacy, although the overall site professionalism mitigates this concern. Security posture is adequate but could be improved by implementing explicit security headers and publishing a vulnerability disclosure policy. Overall, Skillsoft presents a credible and trustworthy enterprise platform with room for enhanced transparency in domain registration and security disclosures.

I

IDX™

investisdigital.com

76

IDX™ is a well-established digital communications and marketing company founded in 2000, serving over 4000 clients globally with a team of 400+ experts. Their business model focuses on providing integrated communication solutions, including corporate communications, performance marketing, e-commerce, creative branding, and enterprise-grade CMS platforms. The company positions itself as a trusted partner for large enterprises, emphasizing precision and impact in messaging. Technically, IDX employs a modern tech stack including Vue.js, GSAP, and various analytics and marketing tools, hosted on a reliable platform with excellent performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though dedicated security policy and incident response pages are absent. Overall, IDX demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, making it a credible and mature digital service provider.

Miele Romania operates as a premium brand retailer and service provider for household and commercial appliances, including kitchen, laundry, and cleaning products. The website demonstrates a strong market position with a focus on quality and customer experience, targeting Romanian consumers and commercial clients. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, integrated with SAP Commerce Cloud and Contentstack CMS, indicating a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, although public security policies and incident response contacts are not explicitly found. Overall, the website is professional, trustworthy, and well-optimized for performance and accessibility, supporting a high level of business credibility.

Miele is a premium global brand specializing in the manufacturing and retail of high-quality household and professional appliances, including kitchen equipment, laundry treatment machines, vacuum cleaners, and cleaning products. The website targets consumers and professionals seeking premium appliances, positioning itself strongly in the retail and manufacturing sectors in Portugal. The digital infrastructure leverages modern technologies such as Nuxt.js and Vue.js, integrated with Commerce Cloud and Contentstack CMS, providing a responsive and well-structured user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are lacking. Analytics are implemented via Google Tag Manager, indicating moderate user tracking. Overall, the website is professional, trustworthy, and well-branded but would benefit from enhanced privacy compliance and security transparency.

Miele is a premium brand specializing in household and professional appliances, offering products such as kitchen appliances, laundry care machines, vacuum cleaners, and cleaning products. The website targets consumers and professionals seeking high-quality, innovative appliances. The digital infrastructure is built on modern JavaScript frameworks including Nuxt.js and Vue.js, supported by a custom CMS, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit privacy and security policies suggests room for improvement in compliance and transparency. Overall, the website reflects a mature, professional online presence consistent with a large, reputable enterprise.