Security Directory

L

Liechtenstein National Administration

llv.li

70

The website www.llv.li serves as the official digital portal for the Liechtenstein National Administration, providing extensive information and services to private individuals, businesses, and government entities. It is positioned as the authoritative source for national administrative matters in Liechtenstein, offering a broad range of public service content including legal, educational, tax, and mobility information. The site targets residents, businesses, and officials within Liechtenstein, facilitating access to government resources and digital identity services such as eID.li. Technically, the website employs modern web technologies including JavaScript and CSS, with Matomo analytics integrated for user tracking and privacy-conscious opt-out options. The content is well-structured and optimized for mobile devices, indicating a mature digital infrastructure likely managed via a CMS such as Pimcore. Performance is moderate with good accessibility and SEO practices. From a security perspective, the site uses HTTPS and includes some privacy-aware analytics. However, explicit privacy and cookie policies are not detected in the provided content, and security headers are not evident, suggesting room for improvement in security hardening. No vulnerability disclosure or incident response contacts are published, which could be enhanced to improve trust and compliance. Overall, the website is a trustworthy and professional government portal with excellent content quality and business credibility. Strategic improvements in privacy transparency, security headers, and incident response information would further strengthen its security posture and compliance standing.

M

MORAVSKÁ VODÁRENSKÁ, a.s.

smv.cz

50

MORAVSKÁ VODÁRENSKÁ, a.s. is a regional water utility company operating primarily in the Moravian region of the Czech Republic. The company provides essential water supply and wastewater management services, supported by a customer portal and accredited laboratory testing for water quality. It is part of the larger Veolia group, indicating a strong market position within the energy and utilities sector. The website reflects a professional and consistent brand image with relevant content targeted at residential and commercial customers. Technically, the website is built on the Vizus CMS platform and employs modern web technologies including JavaScript, CSS, and HTML5. It integrates analytics tools such as Google Analytics and Matomo for traffic and user behavior tracking. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy page was found in the provided content. From a security perspective, the site uses HTTPS and implements cookie consent controls, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, although the website content and affiliation with Veolia support its credibility. Overall, the website is functional, professional, and trustworthy for its intended audience, but improvements in transparency around privacy policies, security headers, and domain registration information are recommended to enhance trust and compliance.

F

Fiapf | International Federation of Film Producers Associations

fiapf.org

73

FIAPF is an established international federation representing film producers globally, advocating for diverse audiovisual production and supporting film festivals. The organization operates a professional website built on WordPress, leveraging modern plugins and technologies such as Yoast SEO, Matomo analytics, and GDPR-compliant cookie management. The site is hosted on Infomaniak servers and uses HTTPS with a clientTransferProhibited domain status, indicating a secure and stable online presence. Security posture is solid with room for improvement in DNSSEC and security headers. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a credible, professional organization with a clear focus on media industry advocacy.

R

Regierung des Fürstentums Liechtenstein

regierung.li

54

The website 'regierung.li' is the official online presence of the Government of the Principality of Liechtenstein. It serves as a comprehensive portal providing information about government members, ministries, media releases, services, and contact details. The site targets citizens, media, and international partners seeking authoritative information on Liechtenstein's government activities. The business model is informational and communicative, positioning itself as the primary government information source in the country. Technically, the site employs modern web technologies including Blazor for frontend interactivity, jQuery, and Swiper.js for UI components, alongside Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and disables cookies in analytics to enhance privacy. However, it lacks several security headers and does not provide explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy, though a cookie consent mechanism is absent. Overall, the site is trustworthy, professional, and well-aligned with its government function. Recommendations include implementing security headers, adding cookie consent, publishing security policies, and considering a vulnerability disclosure program to further strengthen security posture and user trust.

S

sitegeist

sitegeist.de

48

sitegeist is a well-established digital agency based in Hamburg, Germany, with over 25 years of experience in digital transformation, web development, and online marketing. The company positions itself as a full-service digital agency offering strategic consulting, innovative AI solutions, and comprehensive web and marketing services. The website demonstrates a high level of digital maturity with modern technologies such as Neos CMS, PHP frameworks, and integration of AI-powered chatbots. Security posture is strong with HTTPS enforcement and good script management, though explicit security headers and policies could be improved. Privacy compliance is currently weak due to the absence of visible privacy and cookie policies. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience.

F

Flownative GmbH

flownative.com

66

Flownative GmbH is a specialized technology company focused on providing expert support, coaching, training, and cloud hosting services around the Neos CMS and Flow PHP framework. The company positions itself as a niche expert in the Neos ecosystem, catering primarily to developers and businesses using Neos and Flow. Their offerings include professional support, upgrade assistance, and a cloud hosting platform called Flownative Beach, emphasizing scalability and GDPR compliance. The website content is professional and well-structured, reflecting a small but focused business entity based in Germany. Technically, the website is built on the Neos CMS platform and leverages the Flow PHP framework. It uses modern web technologies including PHP and JavaScript, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site follows good practices such as HTTPS enforcement and privacy-respecting analytics. However, it lacks some security headers and does not provide explicit security policies or incident response contacts. The absence of a cookie consent mechanism is a minor compliance gap. The WHOIS data is notably missing or unavailable, which raises some concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, Flownative GmbH presents a trustworthy and professional online presence with a strong focus on Neos CMS services. The main risk lies in the incomplete WHOIS data, which should be investigated further. Strategic improvements in security headers, cookie consent, and published security policies would enhance their security posture and compliance standing.

The Norway Portal is the official website of the Norwegian Ministry of Foreign Affairs, providing comprehensive information about Norway's embassies, consulates, and permanent missions worldwide. It serves as a key resource for diplomats, travelers, and international relations stakeholders seeking authoritative information on Norway's diplomatic presence. The site is well-positioned as a government information portal with a clear focus on transparency and accessibility. Technically, the website employs modern JavaScript libraries such as jQuery 3.7.1 and integrates analytics tools including Matomo and Microsoft Application Insights, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, although no CMS or hosting provider details are explicitly identified. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR compliance. However, it lacks visible security headers and dedicated security or incident response pages, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website demonstrates a high level of professionalism and trustworthiness consistent with its government status. The absence of WHOIS data is typical for Norwegian domains and does not detract from legitimacy. Strategic recommendations include publishing security policies, adding vulnerability disclosure mechanisms, and enhancing security headers to further strengthen the security posture.

W

World Media Partners, s.r.o.

navstevnik.cz

58

Návštěvník.cz is a regional tourism portal focused on the Chrudimsko-Hlinecko region in the Czech Republic, operated by World Media Partners, s.r.o. The website provides comprehensive event listings, tourist programs, virtual tours, and local service information aimed at tourists and visitors interested in cultural and recreational activities in the region. The site is professionally designed with good navigation and content relevance, supporting a positive user experience. Technically, the site uses a mix of legacy and modern JavaScript libraries including jQuery, Leaflet.js for mapping, and VideoJS for media playback, alongside Matomo analytics for privacy-conscious user tracking. Security posture is adequate with HTTPS enforced, but lacks some recommended security headers and explicit privacy and cookie policies. The WHOIS data is not publicly available, indicating privacy protection, which is reasonable for this type of small regional portal. Overall, the site is legitimate, safe, and serves its target audience well, though improvements in privacy compliance and security best practices are recommended.

A

Arcibiskupství pražské

pastorace.cz

47

Pastorace.cz is a Czech non-profit website affiliated with Arcibiskupství pražské, providing pastoral care materials, spiritual life resources, liturgical calendars, and religious articles. It targets the Christian community, clergy, and spiritual practitioners primarily in the Czech Republic. The website has been operational since 2000 and maintains a consistent brand presence with good content quality and user experience. Technically, the site uses a custom CMS with jQuery, Google Analytics, Matomo, and a cookie consent mechanism, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS and cookie consent, though additional HTTP security headers could enhance protection. The site complies with GDPR and provides a clear cookie policy but lacks explicit privacy and security policy pages. WHOIS data is unavailable, likely due to privacy protection, but the website's content and affiliations suggest legitimacy. Overall, the site scores well on content, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy resource in its domain.

A

Arcibiskupství pražské

vira.cz

48

Vira.cz is a Czech non-profit religious informational website operated by Arcibiskupství pražské. It provides a broad range of Christian faith-related content including articles, Bible quotes, newsletters, and resources for children and families. The site holds a strong market position as a leading religious informational portal in the Czech Republic, targeting a general audience interested in spirituality and Christianity. Technically, the website uses standard web technologies such as jQuery, Google Analytics, and Matomo for analytics, and implements cookie consent mechanisms to comply with privacy regulations. The site is mobile-optimized and well-structured, offering a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses domain verification for Google and Facebook, but lacks advanced security headers and publicly available security policies or incident response information. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its content and domain age claims. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though improvements in security posture and transparency are recommended.

P

Pastorační středisko BČB

prolidi.online

57

Pastorační středisko BČB is a non-profit pastoral center affiliated with the Roman Catholic Diocese of České Budějovice, Czech Republic. It provides a broad range of religious, educational, and community services targeting children, youth, families, and seniors within the diocese. The website serves as a hub for catechesis, evangelization, spiritual retreats, event announcements, and multimedia content, supporting the diocese's mission and community engagement. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for UI and analytics, hosted likely on agendafarnosti.cz infrastructure. The site is mobile-optimized with moderate performance and basic accessibility features. However, it lacks some advanced SEO and accessibility optimizations. From a security perspective, the site uses HTTPS with no visible SSL issues and includes Matomo analytics for user tracking. There are no detected security headers or vulnerability disclosure mechanisms, and no privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No forms collecting sensitive personal data are evident except for a search function. Overall, the website is trustworthy and professionally maintained, serving a clear non-profit religious mission. Strategic improvements in privacy compliance, security headers, and transparency would enhance its security posture and regulatory adherence.

B

Bayerisches Staatsministerium für Wirtschaft, Landesentwicklung und Energie

by-cz.eu

65

The website www.by-cz.eu serves as the official platform for the INTERREG Bayern - Tschechien program, a European Union funded cross-border cooperation initiative between Bavaria and the Czech Republic for the 2021-2027 funding period. It provides comprehensive information about funding opportunities, project application processes, and program updates. The site is managed under the auspices of the Bavarian State Ministry for Economic Affairs, Regional Development and Energy, reflecting a strong governmental affiliation and public sector focus. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo analytics configured to respect user privacy. The site is well-structured, mobile-optimized, and includes accessibility features such as easy language and sign language options. Security is well-handled with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. From a security and compliance perspective, the site shows good privacy compliance with GDPR-aligned cookie consent and a detailed privacy policy. However, no explicit security policy or incident response contact information is published, and WHOIS data is unavailable due to registry privacy protections. Despite this, the presence of official ministry logos and consistent branding supports the site's legitimacy. Overall, the website is a trustworthy, professional government portal with a clear mission to support cross-border regional development projects. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen security posture and user trust.

V

Vallon Metallveredlung GmbH

vallon-mv.de

47

Vallon Metallveredlung GmbH is a specialized manufacturing company based in Germany, offering a comprehensive range of galvanic and surface finishing services including galvanic zinc plating, nickel plating, copper plating, phosphating, tin plating, aluminum conversion coatings, silver plating, and hydrogen embrittlement heat treatment. As part of the Adelhelm Group, Vallon positions itself as a reliable one-stop-shop for functional surface technologies targeting industrial clients. The website is professionally designed, well-structured, and provides clear navigation and contact information, supporting a positive user experience. Technically, the site is built on the Contao CMS platform, uses modern JavaScript libraries such as jQuery and Mmenu, and employs Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is addressed with a clear privacy policy, cookie consent, and GDPR considerations. Overall, the site reflects a trustworthy and credible business presence with good digital maturity.

A

Adelhelm LubriCoat North America LLC

adelhelm-lubricoat-na.com

52

Adelhelm LubriCoat North America LLC is a US-based subsidiary specializing in high-quality bonded coatings and functional coatings such as dry lubrication, chemical protection, corrosion resistance, and non-stick coatings. Established in 2006 and located in Mukwonago, Wisconsin, the company serves the US industrial and medical technology markets with tested coating processes aligned with German and American standards. The website reflects a professional business presence with clear contact information and links to its European parent and sister companies. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and Rocksolid Slider components. It employs Matomo analytics for user tracking and is served over HTTPS, ensuring secure communications. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. From a security perspective, the site benefits from HTTPS and secure form handling but lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. The absence of WHOIS registration data for the domain raises some concerns about domain legitimacy, although the website content and business information appear consistent and trustworthy. Overall, the website presents a credible and professional business front with room for improvement in privacy compliance and security best practices to strengthen trust and regulatory adherence.

G

GEORG BÖRNER

georgboerner.de

73

GEORG BÖRNER operates a professional website focused on providing sealing systems for civil engineering projects, targeting infrastructure and transportation sectors. The company positions itself as a specialized B2B supplier with a medium-sized market presence in Germany. The website is built on the Magento e-commerce platform, leveraging modern frontend technologies such as RequireJS, jQuery, KnockoutJS, and Algolia Search for enhanced user experience and search capabilities. Analytics and monitoring are implemented via Matomo and New Relic, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and explicit security policies are recommended. Overall, the website is professional, trustworthy, and safe for general audiences.

N

New/Mode

newmode.net

66

New/Mode is a technology company specializing in providing an empowerment and community action platform designed to help non-profits, unions, and advocacy groups amplify their voices and launch campaigns efficiently. The platform offers a suite of tools including smart petitions, email outreach, click-to-call, and campaign analytics, positioning itself as a trusted partner for leading campaigners globally. The website is built on HubSpot CMS and integrates modern analytics and marketing technologies, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, New/Mode presents a professional, credible, and secure online presence suitable for its target audience.

S

SOPREMA GmbH

soprema.de

72

SOPREMA GmbH is a leading German manufacturer specializing in sealing systems, insulation materials, and sustainable building solutions such as photovoltaic and green roof systems. The company targets construction professionals, architects, and planners, offering a broad portfolio of products and technical services. Their market position is strong within the manufacturing sector, emphasizing innovation and sustainability. The website is built on TYPO3 CMS and incorporates modern web technologies including Bootstrap, jQuery, and Font Awesome, ensuring a responsive and accessible user experience. Hosting is managed via Gandi.net, a reputable provider. Security posture is solid with HTTPS enforced, cookie consent mechanisms in place, and use of analytics tools respecting user privacy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is professional, trustworthy, and well-optimized for its audience.

A

Adelhelm Unternehmensgruppe

adelhelm.de

50

Adelhelm Unternehmensgruppe is a medium-sized German company specializing in functional surface coatings for a wide range of industries worldwide. The company operates multiple subsidiaries and offers a broad portfolio of coating technologies including non-stick, chemical protection, and custom tailored solutions. Their market position is that of an established global supplier with a strong industrial B2B focus. The website is built on the Contao CMS platform and uses modern web technologies such as jQuery and Matomo analytics, hosted on Schlundtech infrastructure. Security posture is solid with HTTPS enforced and anti-spam measures in place, though visible cookie consent and explicit security policies are lacking. Overall, the site is professional, well-structured, and trustworthy, supporting the company’s business credibility effectively.

Havlíček Brain Team is a Czech-based specialized publishing and conference organization focused on legal topics, providing high-quality publications, conferences, educational events, and consulting services. The company targets legal professionals and related audiences, maintaining a professional and consistent brand presence with active social media engagement. Technically, the website uses a mature technology stack including jQuery, Google reCAPTCHA, and Matomo analytics, hosted on a CMS platform called IPO. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is moderate with some best practices like CAPTCHA and cookie consent but lacks visible security headers and published privacy policies. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the site is trustworthy and professional but would benefit from improved security and compliance documentation.

T

Telefonická Komunikace - Tvoříme příležitosti k růstu l Telemarketing efektivně

telefonickakomunikace.cz

57

Telefonická Komunikace is a Czech Republic based telemarketing company specializing in appointment setting, client retention, and sales team training. The company positions itself as a provider of tailored telemarketing solutions with a focus on measurable results and professional sales support. Their website reflects a mature digital presence built on WordPress with WooCommerce and Elementor, integrating multiple analytics and marketing tools such as Google Tag Manager, Matomo, and Smartsupp Live Chat. Security posture is solid with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not published. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and regulatory adherence. Overall, the website is professional, well-structured, and targets B2B clients seeking telemarketing services.

Městys Chudenice is the official municipal government website serving the small community of Chudenice and its local parts in the Czech Republic. The site provides residents and tourists with essential information including municipal office contacts, local news, events, public notices, and links to local organizations. The website is designed to serve as a central hub for community engagement and information dissemination. Technically, the website employs a custom CMS (IPO Redakční systém) and uses a technology stack including jQuery, jQuery UI, Owl Carousel, Matomo analytics, and Google reCAPTCHA for bot protection. The site is mobile responsive and includes cookie consent mechanisms, indicating a moderate level of digital maturity. However, some libraries are outdated and security headers are not detected, suggesting room for technical improvements. From a security perspective, the site uses HTTPS and implements basic security measures such as CAPTCHA and cookie consent. The absence of a published privacy policy, security policy, and incident response information are notable gaps. The malformed WHOIS data reduces trust in domain registration transparency but does not necessarily indicate malicious intent given the official nature of the site. Overall, the website is functional, trustworthy, and serves its community well but would benefit from enhanced security practices, updated technical components, and improved privacy compliance documentation to strengthen its posture and user trust.

The ABC Global Book Service website is a non-profit international platform hosted by the World Intellectual Property Organization (WIPO) and managed by the International Computing Centre. It provides an expanding catalogue of accessible format books contributed by partner libraries worldwide under the Marrakesh Treaty framework. The site targets not-for-profit organizations serving persons who are blind, visually impaired, or otherwise print disabled. The business model is consortium-based, focusing on accessibility and international cooperation. The website content is multilingual and professionally presented, reflecting a consistent brand aligned with its parent organization.

M

Mergado

mergado.hu

75

Mergado is a specialized e-commerce data management platform focused on enhancing online store efficiency across price comparison sites, marketplaces, and PPC systems. The company offers a suite of tools including feed editing, auditing, and marketplace integration, targeting e-commerce businesses primarily in Central and Eastern Europe. The website demonstrates a mature digital presence with multilingual support and professional design, indicating a medium-sized enterprise with a solid market position in Hungary and neighboring countries. Technically, the site leverages Drupal CMS, modern JavaScript frameworks, and integrates multiple analytics and cookie consent tools, reflecting a good level of digital maturity. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though improvements are recommended in security headers and explicit security policies. Overall, the site is trustworthy and professional, though it lacks visible privacy and terms of service pages, which are important for compliance and user trust.

M

Mergado

mergado.sk

65

Mergado is a specialized SaaS provider focused on e-commerce data management, offering tools such as XML feed editing, product data auditing, and e-shop integration modules. The company targets e-commerce businesses primarily in Slovakia and neighboring markets, with multilingual support indicating a broader regional presence. The website demonstrates a mature digital infrastructure leveraging Drupal CMS, modern frontend technologies like Alpine.js and Tailwind CSS, and integrates multiple analytics and marketing tools including Google Tag Manager and Matomo. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit privacy policies. Overall, the site is professional, well-branded, and trustworthy, serving a clear business purpose in the e-commerce technology sector.

M

Mergado

mergado.com

72

Mergado.com is a professional SaaS platform specializing in managing and optimizing product feeds for e-commerce marketing channels. It supports over 650 advertising platforms and marketplaces, helping online stores increase sales through feed audits and integrations. The website is well-structured, multilingual, and targets e-commerce businesses and marketers. Technically, it leverages Drupal CMS, modern JavaScript frameworks like Alpine.js, and integrates multiple analytics and marketing tools such as Google Tag Manager, Matomo, and CookieHub. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy policies are missing. The WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact information.

A

Accessible Books Consortium (ABC)

accessiblebooksconsortium.org

60

The Accessible Books Consortium (ABC) is a globally recognized public-private partnership led by the World Intellectual Property Organization (WIPO) focused on increasing the availability of accessible books for people with print disabilities. The organization collaborates with key stakeholders including the World Blind Union, libraries, publishers, and standards bodies to provide services such as an online accessible book catalog, training, and advocacy for accessible publishing. The website reflects a strong market position as a leader in accessible publishing and literacy support worldwide. Technically, the website is built on the Liferay CMS platform, utilizing modern web technologies including React and Alloy UI, and is hosted on WIPO's CDN infrastructure. The site demonstrates good performance, mobile optimization, and accessibility features, aligning with its mission to serve print-disabled users. Analytics and marketing tools are used responsibly with privacy considerations. From a security perspective, the site enforces HTTPS, uses security headers and nonce-based script loading, and avoids exposing sensitive data. While WHOIS data is unavailable due to privacy protection, the website's association with WIPO and consistent professional branding strongly indicate legitimacy and trustworthiness. Overall, the Accessible Books Consortium website presents a secure, well-maintained, and mission-driven platform with high trust indicators. Strategic recommendations include enhancing explicit security header disclosures, establishing a public vulnerability disclosure policy, and continuing to monitor third-party scripts for security risks.

The International Union for the Protection of New Varieties of Plants (UPOV) is a well-established intergovernmental organization headquartered in Geneva, Switzerland, focused on providing a legal framework and support system for plant variety protection globally. The organization offers key services including databases, training, and informational resources targeted at breeders, farmers, policymakers, and the general public. The website reflects UPOV's authoritative market position with professional content and clear navigation. Technically, the website is built on the OpenCms platform and utilizes modern web technologies such as jQuery, Google Tag Manager, and Matomo Analytics. While performance and SEO are adequate, mobile optimization and accessibility could be improved. The site uses HTTPS with good SSL configuration but lacks explicit security headers and a cookie consent mechanism, which are areas for enhancement. From a security perspective, the site demonstrates a solid baseline with no visible vulnerabilities or exposed sensitive data. However, the absence of a vulnerability disclosure policy and incident response contact information limits transparency and readiness. Privacy compliance is partially addressed with a privacy policy present, but cookie consent and GDPR-specific mechanisms are missing. Overall, the website is trustworthy and professional, supporting UPOV's mission effectively. Strategic improvements in security headers, privacy compliance, and mobile accessibility would strengthen the site's security posture and user trust.

C

Cosmetics Europe

cosmeticseurope.eu

57

Cosmetics Europe is a prominent European industry association focused on promoting safe, sustainable, and innovative cosmetics and personal care products. The website serves as a platform to communicate industry initiatives such as the COSMILE Europe app, available in multiple European languages. The organization targets stakeholders within the European cosmetics sector, advocating for a flourishing industry environment. Technically, the website is built on WordPress, leveraging Bootstrap for responsive design, FontAwesome for icons, and Matomo for analytics, indicating a modern and maintainable infrastructure. Security posture is moderate with HTTPS usage implied, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

M

Ministerstvo financí ČR

norskefondy.cz

73

The website www.eeagrants.cz is an official portal managed by the Ministry of Finance of the Czech Republic, dedicated to the administration and dissemination of information regarding the EEA and Norway Grants. It serves as a governmental platform providing structured information about funding programs, calls for proposals, and bilateral cooperation. The site targets stakeholders within the Czech Republic involved in grant applications and management, reflecting a strong governmental presence and trustworthiness. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations for Google Analytics and Matomo for visitor tracking and analytics. Cookiebot is used for comprehensive cookie consent management, ensuring compliance with privacy regulations. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some modern security headers are not detected. From a security perspective, the site enforces HTTPS and uses a robust cookie consent mechanism, but lacks visible security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data is noted but likely due to registry policies rather than malicious intent. Overall, the website presents a professional, secure, and privacy-conscious platform appropriate for its governmental function. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve transparency and user trust.

Mateřská škola Hejtmánkovice is a small local kindergarten located in the Czech Republic, providing preschool education with a capacity of 23 children. The website serves as an informational portal for parents and guardians, offering details about the school, educational processes, staff, projects, and enrollment. The site includes a school canteen service and is positioned as a community educational institution. Technically, the website is built on the IPO CMS platform, utilizing jQuery and Google reCAPTCHA for form security, and Matomo for privacy-conscious analytics. The site is mobile responsive and includes basic accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. WHOIS data is unavailable, which impacts domain trustworthiness, but the website content and contact information appear legitimate and consistent with a small educational entity. Overall, the site is professional and trustworthy for its intended audience.

Obec Jetřichov operates as a local government website serving the municipality of Jetřichov in the Czech Republic. The site provides official information, news, contact details, and public service announcements targeted primarily at residents and visitors of the municipality. It positions itself as an essential public sector portal with a focus on community engagement and transparency. Technically, the website employs a traditional web stack including jQuery, jQuery UI, and the IPO CMS platform. It integrates Matomo analytics with privacy-conscious settings and uses Google reCAPTCHA to secure forms. The site is mobile responsive and includes cookie consent mechanisms compliant with EU regulations. However, some technologies are somewhat dated, and security headers are not evident, indicating room for technical modernization. From a security perspective, the site benefits from HTTPS encryption and basic security best practices such as cookie consent and CAPTCHA. There is no evidence of exposed sensitive data or vulnerabilities in the visible content. The absence of WHOIS data limits domain trust analysis, but the presence of official contact information and government partner logos supports legitimacy. The site lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which are recommended for improved security posture. Overall, Obec Jetřichov presents a trustworthy and functional municipal website with good content quality and privacy compliance. Strategic improvements in security headers, domain registration transparency, and formal security documentation would enhance its security and compliance maturity.

Obec Heřmánkovice is a municipal government website serving the local community in the Náchod district of the Královéhradecký region in the Czech Republic. The site provides official information about the municipality, including administrative office details, public notices, cultural and sports activities, and local news. The website targets residents and visitors seeking municipal services and information. The business model is that of a local government authority, focusing on transparency and public service. The site is well-branded and consistent with government identity, featuring official logos and links to regional and national government portals. Technically, the website uses a combination of jQuery libraries, Google reCAPTCHA for form security, and Matomo analytics for visitor tracking. It is built on the IPO CMS platform and includes responsive design elements for mobile optimization. The site performs moderately well with good SEO and basic accessibility features. However, some modern security headers are missing, and the privacy policy page is absent, though a cookie consent banner is implemented. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, which is positive. The absence of WHOIS data for the domain is a concern, reducing trustworthiness and raising questions about domain registration legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a moderate security posture but would benefit from enhanced transparency and security best practices. The overall risk assessment is moderate with recommendations to publish a privacy policy, implement security headers, and verify domain registration details. These steps will improve trust, compliance, and security posture, supporting the municipality's mission to provide reliable and secure online services to its community.

N

Nipos

pro-kulturu.cz

50

Pro kulturu is a well-established Czech cultural news portal published by Národní informační a poradenské středisko pro kulturu – NIPOS, a government-affiliated organization. The website offers a broad range of cultural content including news articles, podcasts, editorial cycles, and event information targeting the Czech cultural community and general public interested in culture. The portal maintains a consistent brand presence and provides professional, relevant content with good user experience and navigation. Technically, the site is built on WordPress 6.7.2, leveraging modern frameworks such as Bootstrap and jQuery, and integrates Matomo analytics with GDPR-compliant consent mechanisms. The site is mobile-optimized and uses HTTPS with a good SSL configuration, although it lacks some security headers which could enhance its security posture. From a security perspective, the site demonstrates good privacy compliance with a comprehensive GDPR policy and cookie consent banner. However, it lacks explicit security policies and incident response contacts. No vulnerabilities or suspicious content were detected. The absence of WHOIS data limits domain trust analysis, but the overall site professionalism and compliance suggest legitimacy. Overall, Pro kulturu presents a low-risk profile with strong cultural media positioning. Strategic improvements in security headers and incident response transparency would further strengthen its security and trustworthiness.

Obec Hejtmánkovice is a small municipal government entity serving the local community in the Náchod district of the Czech Republic. The website provides comprehensive information about local administration, community news, events, and historical background. It targets residents and visitors seeking official information and services related to the municipality. The business model is typical of a local government, focusing on public service and community engagement. Technically, the website uses a combination of jQuery, jQuery UI, Matomo analytics, and Google reCAPTCHA integrated within the IPO CMS platform. The site is mobile responsive with good navigation and content structure. Performance is moderate, and SEO practices are adequately implemented. Privacy compliance is supported by a cookie consent banner and use of privacy-respecting analytics. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks advanced security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust analysis, but the presence of official contact information and consistent branding supports legitimacy. Overall, the website is a well-maintained municipal portal with good content quality and moderate technical sophistication. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

D

Daikin

daikin-iraq.com

64

Daikin Iraq website represents a regional branch of Daikin, a global leader in HVAC and refrigerant solutions headquartered in Japan. The site offers comprehensive information about Daikin's products, services, and sustainability initiatives targeting residential and commercial customers in the Middle East and Africa region. The website is built on Adobe Experience Manager CMS, leveraging modern analytics and marketing tools such as Matomo and Google Tag Manager, and includes a cookie consent mechanism aligned with GDPR requirements. Security posture is generally good with HTTPS enforced, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, but the professional content and branding suggest a legitimate business presence. Overall, the site provides a high-quality user experience with clear navigation and relevant business content.

D

Daikin

daikinafrica.com

70

Daikin Africa is a prominent HVAC and air conditioning brand serving the Middle East and Africa region, offering a wide range of products including VRV systems, air purifiers, chillers, and wall-mounted units. The company emphasizes energy efficiency, sustainability, and customer comfort, supported by after-sale services and a dealer locator tool. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages Adobe Experience Manager CMS, modern analytics tools like Matomo and Google Tag Manager, and includes cookie consent mechanisms, indicating good privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and vulnerability disclosure mechanisms are absent. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract from the overall trustworthiness of the brand presence online. Strategic recommendations include enhancing security headers, publishing a security policy, and improving domain registration transparency.

D

Daikin

daikinegypt.com

70

Daikin Egypt operates as a regional branch of the global HVAC leader Daikin, providing air conditioning, heating, ventilation, and air purification solutions primarily targeting residential and commercial customers in the Middle East and Africa region. The website reflects a mature digital presence with comprehensive product information, customer support, and corporate branding consistent with Daikin's global standards. Technically, the site leverages Adobe Experience Manager CMS and integrates modern analytics and marketing tools such as Matomo and Google Tag Manager, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating privacy protection or a recent registration, which slightly impacts trustworthiness. Overall, the site is professional, content-rich, and trustworthy from a business and user perspective.

D

Daikin

daikinlebanon.com

65

Daikin Lebanon's website represents a regional branch of Daikin, a global leader in HVAC and refrigerant solutions headquartered in Japan. The site offers comprehensive information about their products, services, and sustainability initiatives targeting residential and commercial customers in the Middle East and Africa. The website is professionally designed, mobile-optimized, and integrates modern analytics and marketing technologies such as Matomo and Google Tag Manager. Privacy and cookie policies are well implemented, reflecting good compliance with GDPR standards. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency. Security posture is generally good with HTTPS enforced, but lacks explicit security headers and published security policies. Overall, the site is trustworthy and business credible but would benefit from enhanced security disclosures and direct contact information.

D

Daikin

daikinkuwait.com

64

Daikin Kuwait website represents a regional branch of Daikin, a global leader in HVAC and refrigerant solutions. The site offers comprehensive information about their products, services, and corporate mission, targeting residential and commercial customers in the Middle East and Africa region. The website is professionally designed, mobile-optimized, and integrates modern analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The WHOIS data is unavailable, which slightly reduces trust but the overall brand presence and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and clarifying domain registration details.

D

Daikin

daikinqatar.com

69

Daikin Qatar's website presents a comprehensive and professional digital presence for Daikin's HVAC solutions in the Middle East and Africa region. The company is a global leader in air conditioning, heating, ventilation, and refrigerant solutions, with a strong focus on energy efficiency and sustainability. The website offers detailed case studies, product information, after-sale services, and virtual showroom experiences, targeting residential and commercial customers. Technically, the site is built on Adobe Experience Manager, uses modern analytics and marketing tools, and is well-optimized for SEO and mobile devices. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. The WHOIS data is unavailable, which raises some concerns about domain registration legitimacy, but the website content aligns with Daikin's global brand. Overall, the site is trustworthy, user-friendly, and informative, supporting Daikin's market position in the region.

D

Daikin Middle East and Africa FZE

daikinbahrain.com

65

Daikin Middle East and Africa FZE operates a professional and comprehensive website focused on air conditioning and climate control solutions tailored for the Middle East and Africa region, particularly Bahrain. The company is a global leader in HVAC manufacturing with a strong regional presence, offering a wide range of products and after-sale services. The website demonstrates a mature digital infrastructure using Adobe Experience Manager CMS, modern analytics tools like Matomo, and marketing integrations such as Trustpilot. Privacy and cookie policies are well implemented with user consent mechanisms, reflecting good compliance with GDPR and related regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data reduces domain trust slightly, but the overall branding, content quality, and external references strongly support legitimacy. Contact is primarily via forms, with no direct emails or phone numbers explicitly listed on this page. The site is well optimized for mobile and accessibility, providing an excellent user experience.

D

Daikin

daikinoman.com

68

Daikin Oman is a regional branch of the global Daikin group, specializing in air conditioning and HVAC solutions with a strong focus on energy efficiency and sustainability. The website presents a professional and comprehensive overview of their products, services, and corporate mission, targeting residential and commercial customers in Oman and the Middle East. Technically, the site uses modern web technologies including Adobe Experience Manager, Matomo analytics, and Google Tag Manager, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the overall branding and external references support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details.

D

Daikin

daikin-ksa.com

66

Daikin KSA website represents a leading HVAC and air purification brand targeting the Middle East and Africa region, specifically Saudi Arabia. The site offers comprehensive product information, virtual showroom experiences, and emphasizes energy efficiency and comfort. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, Matomo analytics, and Google Tag Manager, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS and no exposed sensitive data, though security headers and incident response information are not explicitly published. Privacy and cookie policies are present with consent mechanisms, indicating good compliance practices. However, WHOIS data is unavailable, which is unusual but the website content and branding strongly support legitimacy. Overall, the site is professional, trustworthy, and well-optimized for its audience.

S

Sdružení pro iLiteraturu, z. s.

ilipodcast.cz

46

The website www.ilipodcast.cz represents a cultural and educational podcast project operated by Sdružení pro iLiteraturu, z. s., a Czech non-profit organization. The platform focuses on literary discussions, exploring how literature reflects contemporary societal issues. It targets literature enthusiasts, academics, and students, providing podcast episodes funded by cultural grants and European funds. The site is well-branded, professionally designed, and offers rich, relevant content with a clear navigation structure. Technically, the site employs modern JavaScript libraries such as jQuery and Owl Carousel, integrates analytics tools like Matomo and Google Tag Manager, and implements a cookie consent mechanism. The site is mobile-optimized and performs moderately well, though accessibility features could be enhanced. The absence of a CMS or hosting provider details limits deeper infrastructure insights. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks visible security headers and formal privacy or security policies. No WHOIS data is available, which reduces domain trustworthiness, though the website content and organizational details suggest legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site presents a low-risk profile with good content quality and moderate technical maturity. Strategic improvements include publishing privacy and terms of service policies, enhancing security headers, and improving accessibility compliance to strengthen trust and compliance posture.

I

iLiteratura

iliteratura.cz

50

iLiteratura is a well-established Czech online literary magazine offering extensive critical reviews, interviews, and cultural content focused on literature from around the world. The website targets Czech-speaking readers interested in literary criticism and cultural discourse. Technically, the site uses modern JavaScript libraries, Matomo analytics, Google Tag Manager, and the Nette PHP framework, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response policies are absent. The lack of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its professional presentation and content quality. Overall, the site is trustworthy, GDPR compliant, and provides valuable literary content to its audience.

D

Daikin

daikinmea.com

62

Daikin Middle East and Africa website serves as a regional portal for Daikin's air conditioning products and solutions, targeting multiple countries in the Middle East and Africa region. The site provides a country selector directing users to localized sites in various languages, primarily Arabic and English. The business is positioned as a leading provider in the HVAC energy sector, with a strong brand presence and consistent corporate identity. Technically, the site is built on Adobe Experience Manager, leveraging modern analytics tools such as Matomo and Google Tag Manager, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact information to improve user trust and regulatory adherence.

A

AHVV Verlags GmbH

newsflix.at

66

Newsflix.at is a professional Austrian digital news portal operated by AHVV Verlags GmbH, offering news, expert analysis, podcasts, and newsletters targeting a general audience interested in current affairs. The website features a modern technical infrastructure using Bootstrap, ES6 JavaScript bundles, and Matomo analytics, ensuring responsive design and moderate performance. Security posture is adequate with HTTPS enabled, though security headers are not explicitly detected in the HTML source. Privacy compliance is partial, with cookie consent mechanisms present but no explicit privacy or terms of service pages found in the provided content. The absence of WHOIS data from the NIC.AT registry limits domain trust assessment, but the website's content quality and branding consistency support its legitimacy. Overall, Newsflix.at presents as a credible media outlet with room for improvement in security headers and privacy disclosures.

M

Ministerstvo dopravy

portaldopravy.cz

69

Portál dopravy is a Czech government-operated digital platform providing citizens and businesses with electronic access to transportation-related administrative services. It enables users to submit applications for driver's licenses, check traffic records, change vehicle ownership, and more, streamlining interactions with government authorities. The portal is well-positioned as a key e-government service in the transportation sector, supported by the Ministry of Transport and related agencies. Technically, the website employs modern web technologies, including JavaScript and Matomo analytics, and is hosted on Azure DNS infrastructure. It follows the gov.cz design system ensuring accessibility and mobile responsiveness. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Privacy compliance is robust, featuring a cookie consent mechanism and a comprehensive privacy policy. Overall, the portal demonstrates high professionalism, trustworthiness, and user-centric design, making it a reliable government service platform.

D

Daikin Airconditioning LLC

daikinuae.com

69

Daikin Airconditioning LLC operates a professional and comprehensive website focused on air conditioning and HVAC solutions primarily targeting the UAE and Middle East & Africa markets. The company is positioned as a leading brand with a century-long history and offers a wide range of products including VRV systems, air purifiers, chillers, and wall-mounted units. The website demonstrates strong branding consistency, excellent content quality, and clear navigation, supporting a positive user experience. Technically, the site leverages Adobe Experience Manager CMS, integrates modern analytics and marketing tools, and shows good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. However, the WHOIS data is unavailable, which slightly impacts trustworthiness and suggests a need for further verification of domain registration details. Overall, the site reflects a mature digital presence aligned with a reputable global HVAC brand.