Security Directory

Owasco RV Centre is a Canadian-based retailer specializing in RV parts and accessories, targeting RV enthusiasts primarily in Canada. The business operates an e-commerce platform hosted on Shopify, offering online shopping with in-store pickup options. The website is professionally designed using modern Shopify themes and technologies, providing a good user experience with clear navigation and mobile optimization. Social media integration and active product listings support its retail operations. Technically, the site leverages Shopify's infrastructure, including analytics and payment integrations such as Apple Pay and Facebook Pixel for marketing and tracking purposes. Security posture is solid with HTTPS and domain transfer protections, though explicit security headers and policies are not fully implemented. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and functional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

A

ARKANCE USA

caddmicrosystems.com

10

ARKANCE USA is a technology solutions and consulting company specializing in the Architecture, Engineering, and Construction (AEC) industry. They provide a comprehensive suite of services including software solutions (notably Autodesk, Bluebeam, and Egnyte), training, consulting, BIM services, and support contracts. Positioned as a trusted Autodesk Platinum Partner, ARKANCE serves a broad audience including architects, engineers, contractors, government agencies, and facility managers. Their market presence is supported by detailed customer success stories, active event participation, and a strong digital footprint. Technically, the website leverages modern web technologies such as React and Next.js, integrates marketing and analytics tools like Marketo, Google Tag Manager, and LinkedIn Insight, and is hosted with a CMS backend likely powered by Strapi. The site is well-optimized for mobile and SEO, with good accessibility features and fast performance. Security posture is strong with HTTPS enforced and standard security headers present, though there is room for improvement in cookie consent mechanisms and publishing formal security policies. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this type of business. No security challenges or WAF blocks were detected, allowing full content access and analysis. Overall, the website demonstrates a professional, trustworthy, and mature digital presence aligned with its business objectives. Strategic recommendations include enhancing privacy compliance with explicit cookie consent, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

P

PLAION

primematter.gg

10

PLAION Support is a dedicated customer support portal for PLAION's gaming and digital entertainment products. The website provides assistance for games and services, targeting gamers and customers seeking help with their PLAION accounts and products. The portal is well-branded and consistent with PLAION's corporate identity, offering a search function and contact options primarily through support forms. The site leverages modern web technologies including Nuxt.js, Tailwind CSS, Google Tag Manager, and Cookiebot for cookie consent management, reflecting a mature digital infrastructure.

G

GoldKnights

goldknights.org

9

GoldKnights is a small, independent game development studio founded in 2015 and headquartered in Prague, Czechia, with operations also in the USA. The company focuses on premium game development using Unreal Engine and has released notable titles such as 'The Last Oricru'. They also operate an indie brand, Mystiqular, for smaller projects and provide outsourcing services to other game studios. The website reflects a professional presence with clear business information and consistent branding. Technically, the site is built on WordPress with a standard theme and uses jQuery, hosted by WEDOS Internet. Performance and mobile optimization are adequate but could be improved. Security posture is moderate with HTTPS enabled but lacking important security headers and DNSSEC. Privacy and compliance policies are missing, representing a compliance risk. Contact information is limited but includes verified company emails and physical addresses. No tracking or advertising scripts were detected, indicating minimal user tracking.

F

Frank Bold

budfrankbold.cz

10

Frank Bold is a purpose-driven organization based in the Czech Republic, operating for over 12 years with a focus on legal services, consulting, and public benefit projects. The company is structured into multiple divisions including legal advisory, consulting, societal projects, core organizational functions, and student internships. Their market position is solid within the Czech and broader European context, targeting professionals and students interested in impactful legal and consulting careers. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on the Webflow platform, utilizing modern analytics tools such as Google Analytics, Matomo, Microsoft Clarity, and Facebook Pixel, all integrated with user consent mechanisms. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. However, there is room for improvement in security headers and formal security policies. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security headers and published incident response or vulnerability disclosure policies. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain registration trust insights, but the professional presentation and structured data support legitimacy. Overall, Frank Bold's website demonstrates a mature digital presence with strong business credibility and privacy compliance. Strategic improvements in security policy transparency and technical security headers would enhance their security posture and trustworthiness further.

F

Frank Bold Advisory

frankboldadvisory.cz

10

Frank Bold Advisory is a professional consulting firm specializing in ESG reporting, energy management, and strategic communication with a focus on sustainability and compliance with European standards such as CSRD and EU taxonomy. The company positions itself as a leader in ESG advisory with direct involvement in European ESG standard development and a decade of experience. Their services target businesses seeking to improve sustainability reporting and energy efficiency. Technically, the website is built on modern platforms like Webflow, uses multiple analytics tools including Google Analytics and Matomo, and implements cookie consent mechanisms, reflecting a mature digital presence. Security posture is generally good with HTTPS and consent management, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, though the professional content and branding suggest a legitimate business. Overall, the website is well-designed, content-rich, and trustworthy, with recommendations to enhance security transparency and verify domain registration details.

The website tanglewoodgame.com is currently inaccessible to visitors, presenting a 403 Forbidden error page that blocks access to any substantive content. This prevents any meaningful analysis of the business, services, or user engagement features. The domain is registered since 2016 with a reputable registrar and hosted on SiteGround, but no DNSSEC is enabled. The lack of accessible content, contact information, or policies severely limits the ability to assess the company's market position or compliance posture. Technically, the site shows no signs of modern frameworks, analytics, or security headers, indicating a minimal or placeholder deployment. Security posture is weak due to lack of visible HTTPS enforcement or headers, and privacy compliance cannot be evaluated. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a very low trust and usability score.

P

Pimec

pimec.org

10

Pimec is a well-established association representing micro, small, and medium enterprises in Catalonia, Spain. Founded in 2001, it serves as a regional SME representative organization providing support and advocacy for its members. The website is professionally designed using WordPress CMS and includes multilingual support and SEO optimization. The technical infrastructure includes modern plugins and Cloudflare DNS services, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and published security policies. The domain registration is consistent and trustworthy, reflecting the organization's long-standing presence. Overall, the website is a credible and professional platform for SME representation in Catalonia.

C

Cambra de Comerç de Terrassa

cambraterrassa.org

10

Cambra de Comerç de Terrassa is a regional chamber of commerce focused on supporting economic development and business growth in the Terrassa region of Spain. The website presents a professional and consistent brand image, offering business support services and entrepreneurial development initiatives. The target audience primarily includes local businesses and entrepreneurs seeking economic development assistance. The business model revolves around providing services and support to foster regional economic growth. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by WooCommerce for e-commerce capabilities. It integrates several analytics and marketing tools including Matomo, Google Tag Manager, Hotjar, and LinkedIn Insight. The site is hosted by Entorno Digital, S.A., with a domain registered since 2005, indicating a mature and stable online presence. Performance and mobile optimization are good, with basic accessibility and SEO optimizations in place. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, alongside a GDPR-compliant cookie consent mechanism. However, explicit security headers and a published security policy or incident response contact are absent, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with no explicit privacy policy or terms of service found in the analyzed content. Overall, the website is trustworthy and professional, with a solid business credibility score. The main risks relate to the absence of explicit security policies and limited contact information. Strategic recommendations include enhancing security headers, publishing a security and privacy policy, and providing clear contact channels for security incidents to improve trust and compliance.

C

Cambra de Comerç de Barcelona

cambrabcn.org

10

Cambra de Comerç de Barcelona is a well-established chamber of commerce serving the business community in Barcelona and Catalonia. Founded in 2001, it operates as a non-profit organization providing business support, training, networking, and advocacy services. The website reflects a professional and consistent brand image targeting local businesses and entrepreneurs. The organization maintains a strong market position as a key regional business entity. Technically, the website is built on WordPress with modern plugins such as Gravity Forms, WooCommerce, and Yoast SEO, indicating a mature digital infrastructure. The site is moderately performant, mobile-optimized, and includes standard SEO and accessibility features. Hosting is provided by Nominalia Internet SL, a reputable registrar and hosting provider. From a security perspective, the site enforces HTTPS, uses security headers, and integrates Google reCAPTCHA to protect forms. However, DNSSEC is not enabled, and there is no publicly available security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy, professional, and secure with minor areas for improvement in security transparency and DNS security. The domain registration data supports the legitimacy and long-standing presence of the organization.

B

Barberco

barberco.cz

10

Barberco.cz is a Czech-based e-commerce retailer specializing in men's grooming products, barber supplies, and professional hairdressing equipment. Established in 2017, the company targets gentlemen, barbers, and hairdressers primarily in the Czech and Slovak markets. The website offers a broad product catalog with detailed categories, a loyalty program, and a wholesale partner program for professionals. The business positions itself as a trusted supplier with a focus on quality and professional collaboration.

D

Demo verze stránek

zelenlanger.cz

10

Zahradnické služby Langer is a small family-owned gardening and landscaping service provider based in the Czech Republic, operating since 1997. The company offers a broad range of services including garden creation, park revitalization, maintenance, green roofs, and natural ponds. The website is professionally designed using WordPress and Elementor, featuring clear navigation and localized content in Czech. Technical infrastructure includes modern web technologies and integration with Google Analytics and Tag Manager for visitor tracking. Privacy compliance is well addressed with GDPR-compliant cookie consent and privacy policies. Security posture is adequate with HTTPS enabled and basic security practices, though additional security headers and policies could enhance protection. No WHOIS data is publicly available, likely due to privacy protection, which is common for small businesses. Overall, the website presents a trustworthy and professional digital presence for a regional gardening service business.

S

Saxana Group

saxanagroup.cz

8

Saxana Group is a Czech-based company specializing in cleaning services and building management, positioning itself as one of the largest providers in its region. The website content is professionally presented in Czech, targeting both businesses and households. The company offers comprehensive cleaning and facility management services, reflecting a medium-sized enterprise with a consistent brand presence. Technically, the website is built on the ANT CMS platform and incorporates common analytics tools such as Google Analytics and Seznam.cz tracking. While the site is mobile-optimized and well-structured, it lacks visible privacy and cookie policies, which impacts its compliance posture. Security-wise, the absence of security headers and detailed WHOIS data reduces the overall security confidence, although no immediate vulnerabilities are evident from the provided data. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

P

Pneu Drnec

pneudrnec.cz

7

Pneu Drnec is a local automotive service provider specializing in tire and auto repair services in Plzeň, Czech Republic. The business focuses on servicing personal vehicle tires, motorcycle tires, off-road tires, and light truck tires, with a specialization in high-speed large-dimension tires. The website presents a professional and consistent brand image targeting vehicle owners in the local area. However, the absence of WHOIS data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Technically, the site uses modern JavaScript and CSS technologies, integrates Facebook SDK and Google Tag Manager, but lacks proper analytics setup and security headers. The security posture is moderate but could be improved with better SSL configuration and security best practices. Overall, the site is functional and informative but requires enhancements in privacy compliance and security to improve trustworthiness.

U

U Gigantu - ubytování penzion Plzeň

ugigantu.cz

8

The website www.ugigantu.cz represents a small hospitality business offering guesthouse accommodation services in Plzeň, Czech Republic. The site is built on WordPress using the Elementor page builder and incorporates Google Fonts for typography. The content is relevant and well-structured for its target audience of tourists and visitors seeking lodging. However, the absence of WHOIS data limits the ability to verify domain ownership and legitimacy fully. The website is accessible without any detected WAF or security challenges, indicating normal operation. From a technical perspective, the site uses modern web technologies but lacks visible security headers and privacy compliance documentation such as privacy and cookie policies. No contact emails, phone numbers, or social media links were found in the provided HTML content, which may impact user trust and business credibility. The site appears mobile-optimized and has good design quality, but accessibility features are basic. Security posture is moderate but could be improved by implementing standard security headers, enforcing HTTPS, and providing clear privacy and incident response information. The lack of WHOIS transparency and privacy policies reduces the overall trust score. There are no indications of vulnerabilities or malicious content in the analyzed data. Overall, the website serves its business purpose adequately but should enhance transparency, security, and privacy compliance to improve trustworthiness and user confidence.

S

Spoutible

spoutible.com

7

Spoutible.com appears to be a relatively new online platform, likely a social media or communication service given the site title and some UI hints. The domain was registered in late 2022 and is hosted behind Cloudflare DNS services. The website uses common Google services such as Google Tag Manager, Google Adsense, and Google reCAPTCHA, indicating some level of digital maturity. However, the site lacks critical compliance documents such as privacy policies, cookie policies, and terms of service, which are essential for user trust and regulatory compliance. The absence of contact information and security headers further reduces the security posture and business credibility. Overall, the site presents a basic web presence with moderate technical implementation but requires significant improvements in privacy, security, and business transparency to enhance trustworthiness and compliance.

softinary is a small personal or freelance website design portfolio showcasing multiple responsive website demos and portfolio work. The site targets individuals or small businesses seeking website design services, presenting a clean and professional user interface with clear navigation. The technical infrastructure is based on standard web technologies including HTML5, CSS3, JavaScript, and jQuery, with hosting likely on Netlify as inferred from demo URLs. The site is mobile optimized with moderate performance but lacks advanced SEO and accessibility features. Security posture is basic with no visible HTTPS or security headers information and no cookie or privacy consent mechanisms. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and domain registration transparency to enhance trust and credibility.

The website hostgator.com.br is currently inaccessible due to Cloudflare's Web Application Firewall (WAF) blocking access with error 1005, indicating the visitor's ASN is banned. This prevents retrieval of any meaningful business, security, or compliance information from the site. The site appears to be protected by Cloudflare services, but no content beyond the access denied message is available for analysis. Consequently, no privacy policies, contact information, or business details are extractable. The technical infrastructure is limited to Cloudflare's protection and analytics scripts. Security posture cannot be assessed beyond the presence of Cloudflare WAF. Overall, the site is currently non-functional for external visitors from the blocked ASN, resulting in a low AI score and incomplete analysis.

S

Ströer SSP GmbH

adscale.de

10

Ströer SSP GmbH operates a sophisticated supply-side platform (SSP) that enables publishers to optimize their digital advertising inventory across display, video, and mobile channels. The platform supports private deals, private auctions, and real-time advertising, providing advertisers access to premium inventory with strong brand safety and anti-fraud measures. The company is positioned as a leading player in the German digital advertising market, supported by its parent company Ströer Digital Group. The website reflects a professional and business-focused approach, targeting publishers and advertisers seeking programmatic advertising solutions. Technically, the website is built on TYPO3 CMS and integrates privacy-conscious tools such as Cookiebot for consent management and Matomo for analytics with DoNotTrack enabled. Hosting and DNS services are provided via Cloudflare, enhancing performance and security. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. Security headers are partially implemented, and HTTPS is enforced, indicating a solid security posture. From a security perspective, the site employs best practices including cookie consent with blocking mode, privacy-focused analytics, and brand safety commitments. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers like Content-Security-Policy and X-Frame-Options could be added to strengthen defenses. Incident response and security policy information are not publicly disclosed on the analyzed page. Overall, the website presents a trustworthy and professional digital advertising platform with good privacy compliance and security awareness. Strategic recommendations include enhancing security headers, improving accessibility, and publishing incident response contacts to further build trust and compliance.

OpenPandora GmbH operates a niche technology business focused on the development and support of the Pandora handheld device, a Linux-based portable gaming and productivity computer. The company maintains a dedicated community and software ecosystem, positioning itself as a leader in open handheld gaming devices. The website provides detailed product information, community links, and contact details, reflecting a small but focused business with a loyal user base. Technically, the website uses legacy JavaScript libraries and lacks modern security headers and privacy policies, indicating areas for improvement in digital maturity. Security posture is moderate with domain registration legitimacy but missing DNSSEC and security best practices. Overall, the website is professional and content-rich but requires enhancements in privacy compliance and security to meet modern standards.

The website at little.in presents extremely minimal content, consisting solely of the text 'Tiger-Power....' with no additional metadata, forms, or contact information. This lack of content and transparency severely limits the ability to assess the business operations, market position, or services offered. The domain WHOIS data is privacy protected, further reducing trust and legitimacy indicators. Technically, the site lacks HTTPS, security headers, and any modern web technologies, indicating a low level of digital maturity. Security posture is weak due to missing SSL and absence of security best practices. Overall, the site appears to be either under development or abandoned, with no meaningful business or security information available.

S

Skybound Game Studios, Inc.

invinciblevs.com

10

Invincible VS is a newly launched video game project by Skybound Game Studios, Inc., focusing on a brutal 3v3 tag fighting game set in the Invincible universe. The website serves as a promotional and community engagement platform, offering detailed character profiles, game highlights, and closed alpha registration. The business targets gamers and fans of the Invincible franchise, positioning itself within the niche superhero fighting game market. Technically, the site is built on WordPress with modern plugins and integrates Cloudflare DNS and Google Tag Manager for performance and analytics. Security posture is solid with HTTPS, CAPTCHA on forms, and an age gate for mature content, although some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and mature-content appropriate, with a domain registration consistent with the business timeline.

S

SCHULPRAKTIKUMSFINDER

schulpraktikumsfinder.de

10

SCHULPRAKTIKUMSFINDER is a regional German educational platform designed to help students find school internships in areas such as Celle, Harburg, Heidekreis, Lüchow-Dannenberg, Lüneburg, and Uelzen. The platform is affiliated with the IHK Lüneburg-Wolfsburg and offers services including internship search, company profiles, and application management. The website is built on WordPress using modern plugins and frameworks, providing a good user experience with mobile optimization and structured data for SEO. Security posture is adequate with HTTPS and cookie consent, though improvements in security headers and explicit privacy policies are recommended. Overall, the platform appears legitimate, professional, and trustworthy, serving a niche educational market effectively.

B

berry2b

berry2b.com

10

berry2b is an educational technology platform focused on providing students with digital tools to manage their school life, including schedules, homework, and grades, while also preparing them for career entry. The platform also offers recruiting tools for companies to find apprentices and trainees, positioning itself as a bridge between education and employment in Germany. The website is professionally designed, mobile-optimized, and integrates multiple marketing and analytics technologies, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and cookie consent implemented, though improvements are needed in security headers and visible privacy policies. The absence of WHOIS data for the subdomain is typical and does not detract from the legitimacy of the main domain. Overall, berry2b presents a credible and functional online presence with room for enhanced transparency and security practices.

B

Bundesagentur für Arbeit

berufe.tv

64

The website 'BERUFE.TV' is an official career and education video portal operated by the Bundesagentur für Arbeit, the German Federal Employment Agency. It serves as a government platform providing multimedia content to assist individuals interested in professions, training, and studies. The site offers categorized video content, links to related career services, and personal counseling options, positioning itself as a trusted resource in the German employment and education sector. The target audience includes students, job seekers, and those exploring career options in Germany. Technically, the website is built using modern web technologies including Angular framework, custom web components, and Piwik analytics for user tracking. The site is mobile-optimized, accessible, and employs HTTPS for secure communications. While performance is moderate, the site demonstrates good SEO and accessibility practices. However, explicit privacy and terms of service policies are not directly linked on the main page, which could be improved. From a security perspective, the site uses HTTPS and OAuth components for authentication, and includes a cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. Security headers are not explicitly visible in the provided data, and no vulnerability disclosure or security policy pages were found. The WHOIS data aligns with the official government entity, indicating high legitimacy and trustworthiness. Overall, the website is a professionally maintained government resource with good content quality and technical implementation. Strategic improvements include publishing clear privacy and security policies, enhancing security headers, and providing vulnerability disclosure information to strengthen compliance and user trust.

D

diaplan GmbH

diaplan.de

43

diaplan GmbH is a specialized service provider in the healthcare sector focusing on medical continuing education and event organization. The company offers a neutral platform facilitating exchange among clinics, medical practices, associations, and institutions. Their services include precise event planning, modern didactics, certification support, and networking opportunities, targeting medical professionals primarily in Germany. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the website is built on WordPress with a modern tech stack including jQuery, MasterSlider, and Ninja Forms. Hosting appears to be managed via 1&1 IONOS, indicated by the nameservers. The site demonstrates good mobile optimization and moderate performance, with proper SEO and accessibility features. Cookie consent mechanisms are implemented, supporting GDPR compliance. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs best practices such as nonce usage in AJAX calls and cookie consent banners. However, it lacks explicit security headers and incident response contact information, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected. Overall, diaplan.de presents a trustworthy and professional online presence with a solid security baseline and compliance with privacy regulations. Strategic improvements in security headers and incident response transparency could further strengthen its security and trustworthiness.

D

Deutsche Gesellschaft für Kardiologie e.V.

dekk.koeln

41

The website kardiale-bildgebung.de serves as the official platform for the DGK Kardiale Bildgebung congress organized by the Deutsche Gesellschaft für Kardiologie e.V. It targets cardiology professionals and researchers, providing detailed information about the upcoming congress, including program schedules, speakers, and organizational details. The site is professionally designed with consistent branding and clear navigation, supporting its role as a trusted event information source in the healthcare sector. Technically, the site is built on WordPress using WPBakery Page Builder and standard web technologies, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though security headers and explicit policies are absent. Overall, the site is safe, compliant with GDPR, and trustworthy, though it lacks some advanced security and compliance disclosures.

TEC Systems Systemhaus GmbH is a German IT service provider specializing in comprehensive IT infrastructure solutions, cloud concepts, software development, and consulting services primarily targeting small and medium-sized enterprises. The company maintains partnerships with major technology vendors such as IBM, Cisco, VMware, and TrendMicro, positioning itself as a trusted regional system house. The website reflects a professional and consistent brand image with clear contact information and service offerings. Technically, the site uses a custom PHP-based CMS with Bootstrap and jQuery frameworks, delivering moderate performance and good mobile responsiveness. However, there is room for improvement in accessibility and SEO optimization. Security posture is moderate; while no critical vulnerabilities are evident, the absence of security headers, visible incident response policies, and cookie consent mechanisms indicate gaps in security best practices and GDPR compliance. The domain WHOIS data is minimal but consistent with the company's German location and business history dating back to at least 2014. Overall, the website is trustworthy and professional but would benefit from enhanced security and privacy features to align with modern compliance standards.

The Major Cities Public Finance Project website serves as an academic and governmental platform focused on the comparative study of financing major cities internationally. It is affiliated with reputable institutions such as Fundació Carles Pi i Sunyer, the Barcelona City Council, and Universitat Pompeu Fabra, indicating a non-profit research orientation. The site provides informational content and an interactive map (using deprecated Flash technology) to support its mission of fostering information exchange among participating cities. Technically, the website is basic and outdated, relying on legacy Flash content and lacking modern web development practices such as mobile responsiveness and accessibility features. There is no evidence of HTTPS enforcement or security headers, and no privacy or cookie policies are present, indicating low digital maturity and compliance with current web standards. From a security perspective, the site shows weaknesses including the use of deprecated technologies and absence of visible security best practices. The malformed WHOIS data limits the ability to verify domain legitimacy fully, although the external links to credible institutions lend some trust. No contact information or incident response channels are provided, which reduces transparency and user trust. Overall, the website is functional for informational purposes but requires significant modernization and security improvements to meet current standards and enhance trustworthiness.

S

Saint-Gobain España

saint-gobain.es

55

Saint-Gobain España operates as the Spanish branch of the global Saint-Gobain group, specializing in manufacturing and distributing construction materials and sustainable building solutions. The website reflects a mature enterprise with a strong focus on sustainability, innovation, and market leadership in Spain. The digital presence is professional, well-structured, and optimized for multiple devices, targeting construction professionals and stakeholders interested in sustainable construction. Technically, the website is built on Drupal 10, leveraging modern analytics and tracking tools such as Google Tag Manager and Microsoft Clarity. The site employs HTTPS and cookie consent mechanisms, indicating compliance with privacy regulations like GDPR. However, explicit security headers and a published security policy are absent, representing an area for improvement. Security posture is solid with no evident vulnerabilities or exposed sensitive data, but the lack of incident response contact information and vulnerability disclosure mechanisms suggests room for enhancement in security transparency and readiness. Overall, the website is trustworthy, with strong brand consistency and multiple trust signals including official social media accounts and comprehensive privacy policies. Recommendations include adding security headers, publishing a security policy and incident response contacts, and implementing a vulnerability disclosure program to further strengthen security posture and stakeholder trust.

The website www.british-gypsum.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires browser verification before granting access. This challenge page blocks direct content retrieval, resulting in no visible business information, metadata, or contact details. The WHOIS lookup for the domain returned no registration data, indicating either the domain is unregistered, privacy protected, or there is an issue with the WHOIS server response. The site uses Google Tag Manager and OneTrust cookie consent scripts, suggesting some level of digital maturity in tracking and privacy management, but no further technical or business details are accessible. The security posture cannot be fully assessed due to the lack of accessible content and headers. Overall, the site presents a low trust profile due to the absence of public WHOIS data and blocked content.

The website www.fr.weber is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page, which blocks direct access to the site's content. This prevents extraction of meaningful business, contact, or policy information. The site uses Google Tag Manager for analytics and a cookie consent mechanism via OneTrust, indicating some level of privacy compliance. WHOIS data is unavailable due to a malformed request or privacy protection, limiting domain trust assessment. The presence of multiple related domains linked to the Saint-Gobain group suggests the site is part of a larger corporate ecosystem. However, without access to the actual site content, a full evaluation of business operations, security posture, and compliance cannot be performed.

Saint-Gobain is a global leader in manufacturing building materials and construction solutions, with a local presence in Finland represented by the www.saint-gobain.fi domain. The website is currently inaccessible due to a Cloudflare security challenge, preventing direct content analysis. The site employs modern analytics tools such as Google Tag Manager and GA4, and uses OneTrust for cookie consent management, indicating a baseline level of privacy compliance. However, no privacy policy, terms of service, or contact information is accessible, limiting the ability to assess compliance and user engagement fully. The domain is protected by privacy services but aligns with the Saint-Gobain brand, suggesting legitimacy.

The website www.saint-gobain.my represents Saint-Gobain Malaysia Sdn. Bhd., a subsidiary of the global Saint-Gobain group specializing in building materials and construction solutions. The domain registration data confirms the legitimacy and consistency of the business presence in Malaysia since 2018. However, the website content is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge, which blocks direct content access and prevents detailed content and policy analysis. The site employs advanced analytics tools including multiple Google Tag Manager containers and Google Analytics 4, indicating a mature digital marketing infrastructure. Due to the WAF blocking, no privacy, cookie, or terms of service policies are visible, nor is any contact information or business description accessible. The security posture is difficult to assess fully, but the presence of Cloudflare WAF suggests a proactive security approach. Overall, the site appears to be a legitimate corporate presence but requires content accessibility for full evaluation.

The website www.quartzolit.weber currently presents a Cloudflare security challenge page, blocking direct access to its content. This domain appears to be part of a larger corporate ecosystem related to Saint-Gobain and its Weber brand, as indicated by multiple related domains in the analytics mapping. Due to the WAF challenge, no direct business content, contact information, or policies are accessible, limiting the ability to assess the company's market position or services in detail. Technically, the site uses Cloudflare for protection and Google Tag Manager for analytics, indicating a modern approach to traffic management and data collection. However, the lack of visible content and policies reduces transparency and trustworthiness. Security-wise, the presence of Cloudflare's Turnstile captcha is a positive mitigation against automated threats, but the absence of visible security headers or SSL details in the provided data prevents a full security posture evaluation. Overall, the site is protected but inaccessible for detailed analysis, resulting in a low AI score and recommendations to improve transparency and policy disclosures once access is granted.

Saint-Gobain Glass is a major player in the manufacturing sector specializing in glass products, operating as part of the global Saint-Gobain group. The company targets industrial clients and construction sectors with a B2B business model. The website is currently inaccessible due to a Cloudflare security challenge, limiting direct content analysis. The domain registration data supports the legitimacy and long-standing presence of the company in the market. The technical infrastructure includes modern analytics tools like Google Tag Manager and Google Analytics 4, hosted behind Cloudflare for security and performance. However, the lack of visible privacy policies, contact information, and security headers on the landing page indicates areas for improvement in transparency and compliance. Overall, the website's security posture is difficult to assess fully due to access restrictions, but domain data and hosting choices suggest a mature enterprise environment.

Saint-Gobain Glass is a major industrial manufacturer specializing in glass products, operating under the global Saint-Gobain group. The website is currently inaccessible due to a Cloudflare security challenge page, which prevents direct content access and limits visibility into detailed business and security information. The technical infrastructure includes modern analytics and cookie consent tools, but lacks visible security headers and explicit privacy or contact information on the landing page. The absence of WHOIS data reduces transparency, although the domain is associated with a reputable multinational company. Overall, the site’s security posture is difficult to assess fully due to access restrictions, but improvements in transparency and direct content availability are recommended.

The website www.plaka.com.mx is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires browser verification before granting access. This security measure blocks automated access and obscures the actual website content, preventing a full analysis of the business, services, and compliance posture. The domain WHOIS data is unavailable or invalid, which raises concerns about the transparency and legitimacy of the domain registration. The site uses Google Tag Manager for analytics and Cloudflare Turnstile captcha for bot mitigation, indicating some level of security awareness. However, the lack of visible privacy policies, contact information, and business details on the landing page limits trust and credibility assessment. Overall, the site appears to be protected by strong security controls but lacks accessible content for evaluation.

R

Rigips GmbH

rigips.de

62

Rigips GmbH is a leading German manufacturer specializing in sustainable drywall and building materials for walls, ceilings, floors, and facades. As part of the Saint-Gobain group, it holds a strong market position with a comprehensive product portfolio and a focus on environmentally friendly construction solutions. The website targets construction professionals, architects, and distributors, providing product information, technical downloads, and a dealer locator. Technically, the site is built on Drupal 10, employs modern tracking and consent tools, and is hosted on reliable infrastructure. Security posture is strong with HTTPS, security headers, and no exposed vulnerabilities detected. Privacy compliance is well addressed with detailed policies and consent mechanisms. Overall, the site demonstrates good digital maturity, professional design, and trustworthy business representation.

Weber Vietnam is a subsidiary of the global Saint-Gobain group, specializing in manufacturing and distributing tile adhesives, grouts, waterproofing products, and silicone sealants. The company holds a leading market position in Vietnam and globally, serving construction professionals and consumers with a comprehensive product range and technical support. The website is professionally designed, content-rich, and well-branded, reflecting the company's strong market presence and parent company association. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, TikTok Pixel, and Microsoft Clarity. The site is mobile-optimized and accessible, with good SEO practices. However, some security headers are missing, and there is no explicit cookie consent mechanism despite cookie policy presence. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The WHOIS data is unavailable, likely due to privacy protection, but the website's legitimacy is supported by consistent branding and structured data linking to Saint-Gobain. No signs of phishing or malware were detected. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Strategic improvements could focus on enhancing security headers, implementing explicit cookie consent, and publishing a dedicated security policy or incident response page.

The website www.isover-technical-insulation.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page that requires browser verification via Turnstile captcha. This prevents direct access to any substantive website content, including business information, contact details, or policies. The WHOIS lookup for the domain returned no registration data, indicating the domain may be unregistered, expired, or protected by privacy services, which raises concerns about the legitimacy and operational status of the website. The presence of modern analytics and cookie consent scripts suggests some level of digital maturity, but without accessible content, a full assessment is not possible. Security posture benefits from Cloudflare protection but lacks visible security headers or policies. Overall, the site scores low on content quality, business credibility, and privacy compliance due to lack of accessible information.

The website www.it.weber is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires browser verification via Turnstile CAPTCHA. This prevents access to any substantive content, including business descriptions, contact information, or policy documents. The site employs Google Tag Manager and Google Analytics 4 for tracking, alongside OneTrust for cookie consent management, indicating some level of privacy compliance infrastructure. However, the lack of accessible content and WHOIS data severely limits the ability to assess the company's market position, services, or legitimacy. The domain's WHOIS information is unavailable or malformed, which raises concerns about transparency and trustworthiness. Overall, the site appears to be part of a larger network of related domains using shared analytics configurations, but no direct business or contact details are visible.

The website www.carriere-de-gypse-sogyma.fr is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires browser verification via Turnstile captcha. This prevents direct access to the site's content, limiting the ability to analyze business details or user-facing information. The domain's WHOIS data is unavailable, indicating privacy protection or lack of public registration data, which further reduces transparency and trust. The site uses Google Tag Manager and Google Analytics 4 for tracking, and OneTrust for cookie consent management, showing some level of compliance with privacy regulations. However, no privacy policy, terms of service, or contact information is visible on the challenge page. The hosting appears to be behind Cloudflare, providing security and performance benefits but also obscuring direct server details. Overall, the website's digital maturity is low due to content inaccessibility and lack of visible business information.

M

MakeProSimp

makeprosimp.com

57

MakeProSimp is a technology company specializing in website design, development, and eCommerce solutions with a focus on Shopify and Wix platforms. Established in 2009 and operating with a domain registered since 2015, the company offers a range of services including UX/UI design, strategy, consulting, and app development. Their market position is strengthened by official partnerships with Shopify and Wix, and they maintain a medium-sized business presence primarily serving eCommerce clients. Technically, the website is built on WordPress with modern integrations such as Crisp Chat and AdRoll for marketing and customer engagement. The site is mobile optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enabled and McAfee SECURE certification, though improvements are recommended in DNSSEC and HTTP security headers. Privacy compliance is addressed with clear policies and cookie consent mechanisms. Overall, the website projects professionalism and trustworthiness with comprehensive contact information and positive customer testimonials.

M

Můj Caravan

mujcaravan.cz

53

Můj Caravan is a Czech Republic-based e-commerce retailer specializing in accessories and equipment for caravans, motorhomes, camping, and outdoor activities. The website offers a wide range of products including awnings, furniture, grills, kitchenware, toilets, and outdoor gear, targeting caravan and camping enthusiasts primarily in the Czech market. The business positions itself as a niche market leader with a comprehensive product catalog and customer trust signals such as the Heuréka certification and active social media presence. Technically, the website is built on a proprietary e-commerce platform (Golemos) and leverages modern web technologies including JavaScript frameworks, Google Tag Manager, Facebook SDK, and Matomo analytics. The site is mobile-optimized with good SEO and accessibility basics, providing a professional user experience. The presence of multiple tracking and marketing tools is managed with user consent, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses secure login forms. While some security headers are not explicitly detected, the overall posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website demonstrates a high level of professionalism and trustworthiness, with no signs of content blocking or WAF interference. The lack of public WHOIS data due to privacy protection is common for retail businesses and does not detract from the legitimacy of the site. Strategic recommendations include enhancing security headers and continuing regular audits of third-party scripts to maintain security and compliance.

R

RE/MAX Česká republika

remax-franchising.cz

58

RE/MAX Česká republika operates a franchising business model focused on real estate opportunities within the Czech Republic. The company offers professional support and a proven business model to individuals and businesses interested in entering the real estate market through franchising. The website positions RE/MAX as an established player in the Czech real estate franchising sector, targeting prospective franchisees seeking growth and stability. Technically, the website is built on the Wix platform, leveraging modern JavaScript polyfills and performance optimizations. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, it lacks explicit privacy and cookie policies and does not expose WHOIS registration data, which impacts trust and compliance perception. From a security standpoint, the site enforces HTTPS and includes scripts to harden fetch and XHR requests, but lacks visible security headers and incident response contacts. No vulnerabilities or malicious indicators were detected. Overall, the site is professional and secure but would benefit from enhanced privacy compliance and transparency. The overall risk is moderate due to missing WHOIS data and privacy documentation. Strategic improvements in compliance and security transparency are recommended to strengthen trust and regulatory adherence.

K

Kreuziger&Sobotik, s.r.o.

remax-karieramaklere.cz

44

RE/MAX Kariera Maklere is a Czech Republic focused website promoting careers as professional real estate agents under the RE/MAX brand. The site is operated by Kreuziger&Sobotik, s.r.o., a registered Czech company. It offers information about the benefits of joining RE/MAX, including brand trust, training, technology, and support. The website is built on WordPress with Elementor and includes GDPR-compliant privacy and cookie policies. The technical infrastructure is modern and includes analytics tools such as Google Analytics and Microsoft Clarity. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing. WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the website content and business information appear professional and consistent with a legitimate real estate network.

DALTEN media s.r.o. is a Czech Republic based company specializing in comprehensive software solutions for real estate agencies. Their key offerings include the RealityMIX.cz server and iRest.cz real estate software, alongside services for real estate agency websites, agent personal websites, property websites, and MLS systems. The company has an established market presence since 2003, targeting real estate professionals and developers. The website reflects a professional and consistent brand image with clear business and contact information. Technically, the site uses modern frontend technologies such as Tailwind CSS, Alpine.js, and jQuery, providing a good user experience with moderate performance and mobile optimization. However, no CMS or hosting provider details are evident. Security posture is moderate with no explicit security headers or incident response policies found, and no cookie consent mechanism implemented despite having cookie and privacy policies. The domain registration data is consistent and trustworthy, supporting the company's legitimacy. Overall, the website is professional and trustworthy but could improve in security and privacy compliance aspects.

F

Frank Bold Advokáti

fbadvokati.cz

55

Frank Bold Advokáti is a professional law firm specializing in a broad range of legal services excluding criminal law, with a strong presence in the Czech Republic and offices in multiple cities including Brno, Prague, Ostrava, Krakow, and Brussels. The firm offers comprehensive legal support in areas such as commercial and labor law, energy law, public administration law, real estate transactions, and environmental law. Their website demonstrates a mature digital presence with well-structured content, case studies, an online legal academy, and client engagement through newsletters and social media. Technically, the site uses modern tools including Pimcore CMS, Google Tag Manager, and Matomo analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical and justified for legal firms. Overall, the website is professional, trustworthy, and well-positioned in its market niche.