Security Directory

D

DigitalPA

garaspot.it

41

DigitalPA operates the Gara SPOT platform, a certified eProcurement solution designed to manage single telematic procurement procedures and design competitions online. The company targets public administrations and enterprises requiring efficient, compliant digital procurement tools. With a solid market presence in Italy, evidenced by over 10,000 clients and numerous high-profile public sector customers, DigitalPA offers both software platforms and comprehensive consultancy services. The website reflects a professional, well-structured digital presence with clear service offerings and client testimonials. Technically, the website employs modern front-end technologies including Bootstrap, Font Awesome, and jQuery, complemented by Matomo analytics and LiveChat for user engagement. The site is mobile-optimized and SEO-friendly, though some accessibility features could be enhanced. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and cookie consent mechanisms indicates room for improvement. Overall, the security and privacy compliance is moderate, with GDPR adherence suggested by the presence of a privacy policy but lacking explicit cookie consent. The WHOIS data aligns well with the business identity, reinforcing legitimacy. No blocking or WAF challenges were detected, allowing full content analysis. Strategically, DigitalPA should focus on enhancing security headers, implementing cookie consent, and publishing incident response and vulnerability disclosure policies to strengthen trust and compliance.

Z

Z-Group bus a.s.

karierazavolantem.cz

42

Z-Group bus a.s. is a well-established transportation company in the Czech Republic, operating since 1992. It provides a wide range of bus transportation services including regional, urban, and international routes, serving millions of passengers annually. The company also focuses on recruitment and career opportunities for bus drivers across multiple regions. The website reflects a professional and consistent brand image with clear business information and partner affiliations. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie management and Google Analytics integration. Security posture is strong with HTTPS and reCAPTCHA, though some security headers could be improved. The absence of WHOIS data limits domain trust verification but does not detract from the overall legitimacy of the business. Strategic recommendations include enhancing security headers, adding a terms of service page, and publishing a security.txt file for vulnerability disclosures.

P

Pankas A/S

pankas.dk

58

Pankas A/S is a well-established Danish asphalt company with over 75 years of experience, providing comprehensive asphalt services including production, repair, and paving across Denmark. The company targets both business and private customers, positioning itself as a national leader in the asphalt industry. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site employs modern web technologies such as Google Tag Manager, CookieYes for consent management, and uses ASP.NET MVC backend as indicated by anti-forgery tokens. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS enforced and anti-forgery protections, but could benefit from enhanced security headers and DNSSEC implementation. Privacy compliance is strong with a comprehensive cookie policy and GDPR consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting the company's credibility and market position.

R

Reed Exhibitions Limited

rxglobal.com

72

RX Global, operated by Reed Exhibitions Limited, is a leading global events organizer with over 350 events across 25 countries and 43 industry sectors. The company focuses on creating impactful business experiences and has a strong market position as a large enterprise in the event management industry. Their services include event organization, sales support, event technology, and sustainability initiatives. The website reflects a mature digital presence with a modern Drupal CMS infrastructure, responsive design, and integration of marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent management. Security posture is strong with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user consent mechanisms. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the website demonstrates professionalism, trustworthiness, and compliance with relevant regulations.

H

Hospic sv. Štěpána, z.s.

hospiclitomerice.cz

45

Hospic sv. Štěpána Litoměřice is a well-established non-profit healthcare organization providing comprehensive hospice and palliative care services in the Czech Republic since 2004. The website serves as an informative platform for patients, families, healthcare professionals, and donors, detailing services such as inpatient care, home hospice, counseling, and educational programs. The organization maintains a strong community presence and partnerships with governmental and charitable entities. Technically, the website is built on ASP.NET WebForms with modern JavaScript libraries and integrates Google Analytics and Facebook Pixel for user tracking. The site is mobile-optimized and professionally designed, offering a good user experience. Security posture is adequate with HTTPS enforced and secure form handling, though it lacks some advanced security headers and a published vulnerability disclosure policy. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages. Overall, the site is trustworthy and credible, reflecting the organization's mission and operational maturity.

S

SD Software-Design GmbH

easyverein.com

67

easyVerein is a cloud-based software solution developed by SD Software-Design GmbH, founded in 2016, targeting clubs, associations, and organizations primarily in Germany. The platform offers comprehensive modules including member management, accounting, event scheduling, inventory, and integrated communication tools such as chat and mobile apps. The company positions itself as a market leader with high user satisfaction and recognized awards. Technically, the website employs modern frameworks like Bootstrap and jQuery, is mobile-optimized, and uses Matomo for analytics, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses CSRF tokens, and provides cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response contacts. Overall, the domain registration and hosting are consistent and trustworthy, supporting the legitimacy of the business.

D

Daniel Remler - Videographer | Producer | Cutter

danielremler.com

50

Daniel Remler operates a professional videography and video production service with a strong focus on generative AI content. The website showcases a portfolio of work, emphasizing over 20 years of experience and expertise in both traditional video production and AI-driven content creation. The business targets clients seeking high-quality visual storytelling and AI prompt expertise, positioning itself as a niche expert in the media sector within Germany. Technically, the website is built on WordPress with modern plugins and frameworks such as Elementor, Bootstrap, and Google services integration, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and GDPR-compliant cookie management, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, user-friendly, and compliant with privacy regulations, but the lack of WHOIS domain registration data introduces a moderate trust concern.

Mikroregion Chrudimsko is a regional government association website serving 29 municipalities in the Pardubice region of the Czech Republic. The site provides information about member municipalities, official notices, financial management, realized projects, and tourism opportunities. It targets local residents, government officials, and tourists interested in the region. The business model is informational and supportive of regional development, with a small organizational size and a founding date consistent with the domain registration. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for UI enhancements. The site is hosted likely by WEDOS, a Czech hosting provider, and shows moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequate with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks visible security headers and published security policies. No forms collect sensitive data, reducing risk, but the absence of privacy and cookie policies indicates compliance gaps with GDPR. No vulnerability disclosures or incident response contacts are provided. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious patterns. Overall, the website is professional, trustworthy, and well-aligned with its regional government purpose. However, it would benefit from improved privacy compliance, enhanced security headers, and formalized security policies to strengthen its security posture and regulatory adherence.

A

Amazing Media, s.r.o.

reportazezprumyslu.cz

44

Reportáže z průmyslu, operated by Amazing Media, s.r.o., is a Czech media platform specializing in industrial sector news, interviews, and magazine publications. The website targets professionals and stakeholders in manufacturing, energy, and transportation industries, providing relevant content and advertising opportunities. The platform maintains a professional digital presence with modern web technologies and social media integration. Technically, the site uses popular JavaScript libraries and frameworks such as jQuery, Bootstrap, and carousel plugins, ensuring a responsive and user-friendly experience. Privacy and cookie policies are implemented with GDPR compliance and user consent mechanisms. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response contacts could be improved. The absence of WHOIS data reduces transparency and trust slightly, but the overall business credibility and content quality remain solid. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving contact transparency to strengthen trust and compliance.

Farnost Želiv is a small non-profit Roman Catholic parish located in the historic Želiv monastery complex in the Czech Republic. The organization focuses on evangelization, spiritual programs, care for the sick, and community activities including preparation for sacraments such as baptism and marriage. The website serves as a community portal offering event information, news, video galleries, and donation options. Technically, the site is built on WordPress with common plugins and libraries, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and formal privacy policies. WHOIS data is unavailable, likely due to privacy protection, but the site content and contact details indicate a legitimate religious entity. Overall, the site is professional, trustworthy, and serves its community well, though improvements in security and privacy transparency are recommended.

M

Mennyacht Group

mennyacht.com

48

MennYacht is an established exclusive dealer specializing in luxury yachts from the Ferretti Group brands, offering a comprehensive range of services including new and used yacht sales, charter, service, and consulting. With over 30 years of experience, the company targets affluent clients seeking premium yachting experiences primarily in the Adriatic region and Europe. The website reflects a professional and consistent brand image with rich multimedia content and multilingual support, enhancing user engagement and accessibility. Technically, the site is built on WordPress with modern libraries and tracking tools, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS and secure forms, though lacking explicit security policies and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the site is trustworthy and professional but would benefit from improved domain registration clarity and enhanced security disclosures.

B

BACCHUS Vins & Champagnes a.s.

bacchus.cz

58

BACCHUS Vins & Champagnes a.s. operates a professional e-commerce platform specializing in premium wines and champagnes, serving both business clients such as hoteliers and restaurants, as well as individual wine enthusiasts across the Czech Republic. The company holds official distributor status for renowned brands including Taittinger and Gérard Bertrand, positioning itself as a key player in the premium alcoholic beverage market within the region. The website features a modern design with clear navigation, mobile optimization, and comprehensive product offerings, reflecting a mature digital presence. Technically, the site leverages a robust e-commerce platform (FastCentrik) integrated with popular analytics and marketing tools such as Google Analytics, Facebook Pixel, and reCAPTCHA for spam protection. The infrastructure supports user privacy with cookie consent mechanisms and GDPR compliance indicators. Security posture is solid with HTTPS enforcement and age verification for alcohol sales, though improvements could be made by implementing additional security headers and publishing explicit security policies. The absence of WHOIS registration data limits the ability to fully verify domain legitimacy and age, which slightly impacts trust assessments. However, the visible business information, contact details, and consistent branding contribute positively to overall credibility. The site employs multiple advertising and retargeting services with user consent, balancing marketing effectiveness with privacy considerations. Overall, BACCHUS.cz presents a trustworthy and professionally managed online retail platform for premium alcoholic beverages, with a good balance of business functionality, technical implementation, and privacy compliance.

T

The Wire Association International, Inc.

wirenet.org

58

The Wire Association International, Inc. operates wirenet.org as a professional industry association website serving the global wire and cable manufacturing community. The site offers resources such as industry news, events, educational webinars, publications, and member services. It targets professionals including engineers, executives, and purchasing agents within the manufacturing sector. The organization is well-established with a domain age dating back to 1996, reinforcing its market position as a leading industry association. Technically, the website is built on Joomla CMS with a modern tech stack including Bootstrap and jQuery, providing a responsive and user-friendly experience. Security measures include HTTPS and Google reCAPTCHA on forms, though there is room for improvement in security headers and DNSSEC implementation. Privacy and cookie policies are present but basic, with GDPR compliance not explicitly indicated. Overall, the website demonstrates good professionalism, content quality, and business credibility, with moderate technical and security posture.

A

Art Jameel LLC

artjameel.org

66

Art Jameel LLC is a well-established cultural organization founded in 2013, focused on supporting artists and creative communities in the Middle East through exhibitions, heritage preservation, educational initiatives, and sustainability programs. The website reflects a mature digital presence with consistent branding, comprehensive content, and clear navigation targeting artists, cultural institutions, and the general public interested in Middle Eastern art and culture. Technically, the site is built on WordPress with modern JavaScript libraries and integrates analytics and tracking tools such as Google Analytics and Facebook Pixel. Hosting and DNS are managed via reputable providers including GoDaddy and Cloudflare. Security posture is good with HTTPS enforced and domain locks in place, though DNSSEC is not enabled and some advanced security headers are missing. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR and related regulations. Contact is primarily via web forms and social media channels, with no direct emails or phone numbers publicly listed. Overall, the site is professional, trustworthy, and well-maintained, with minor recommendations to enhance DNS security and HTTP headers.

S

Sekce pro mládež České biskupské konference a Asociace křesťanských sdružení mládeže, z. s.

celostatnisetkanimladeze.cz

58

The website celostatnisetkanimladeze.cz represents a non-profit organization focused on organizing the Celostátní setkání mládeže (National Youth Meeting) in the Czech Republic. The event targets young people aged 14 to 30 and is organized by the Youth Section of the Czech Bishops' Conference and the Association of Christian Youth Associations. The site provides event information, news, and multimedia content related to the event and its history. The organization holds a recognized position within the Czech Catholic community and maintains active social media channels to engage its audience. Technically, the website uses a combination of jQuery, Bootstrap 4, and other JavaScript libraries, hosted with Cloudflare DNS and registered via a Czech registrar. The site is mobile-optimized and uses HTTPS with a good SSL configuration. However, it lacks some modern security headers and formal privacy and cookie policies, which are important for compliance and user trust. Analytics are handled via Matomo, indicating a moderate level of user tracking. From a security perspective, the site is well-configured with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of security headers and formal privacy documentation are areas for improvement. The WHOIS data is consistent with the website's Czech origin and organizational claims, supporting legitimacy. Overall, the site is professional, trustworthy, and serves its community well but should enhance privacy compliance and security best practices to improve user trust and regulatory adherence.

S

Scholastika

scholastika.cz

47

Scholastika is a well-established private higher vocational school and creative educational center based in Prague, Czech Republic, specializing in visual communication and design education. Founded in 2011, it offers accredited three-year post-secondary studies in graphic, motion, and game design, alongside a broad portfolio of practical courses for the general public in various art and design disciplines. The institution emphasizes practical training, industry collaboration, and personal approach, supported by professional instructors with strong ties to the creative sector. Scholastika maintains a strong digital presence with a professionally designed website, active social media channels, and a newsletter subscription service. Technically, the website employs modern web technologies including jQuery, lazy loading, and multiple tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is hosted on Czech-based servers with a domain registered since 2011, consistent with the business history. The website is mobile-optimized, SEO-friendly, and provides clear navigation and rich content about courses, pricing, and contact information. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, Scholastika presents a trustworthy, professional, and user-friendly online presence suitable for its educational mission. Strategic improvements in security headers and transparency around security policies could further enhance its security posture and user trust.

S

Sekce pro mládež ČBK a Asociace křesťanských spolků mládeže

svetovednymladeze.cz

58

The website svetovednymladeze.cz serves as an informational and community platform for World Youth Days and related Catholic youth events primarily targeting Czech youth and young adults. It is operated by the Sekce pro mládež ČBK and Asociace křesťanských spolků mládeže, providing event details, spiritual preparation materials, news, and media content. The site is relatively new, established in 2022, and maintains a consistent brand aligned with its religious and youth-focused mission. Technically, the site uses a custom PHP-based CMS with modern frontend technologies including jQuery, Bootstrap, FontAwesome, and Owl Carousel. It is hosted with WEDOS and uses Cloudflare nameservers, ensuring reliable DNS and security infrastructure. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses Matomo analytics, which respects user privacy better than many alternatives. However, it lacks explicit privacy and cookie policies, security.txt files, and advanced security headers such as CSP. These gaps represent compliance and security improvement opportunities. Overall, the site is trustworthy and professional, with clear contact information and social media presence. The domain registration data aligns well with the website's mission and geographic focus. Strategic improvements in privacy compliance and security posture would enhance trust and regulatory adherence.

I

iBohoslužby.cz

ibohosluzby.cz

42

iBohoslužby.cz is a Czech web application focused on providing information about church services, including regular and holiday schedules, primarily in the Brno diocese. The site targets Czech-speaking churchgoers and community members seeking convenient access to service locations and times. The business model is informational, offering map-based and list-based views of church services without commercial or advertising elements. Technically, the site uses a modern but basic tech stack including Bootstrap, jQuery, Leaflet for maps, and DataTables for tabular data. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Security posture is basic with no visible security headers or published policies, and privacy compliance is minimal due to absence of privacy and cookie policies. The domain is well-established since 2013 with consistent registration data matching the website's purpose and location. Overall, the site is functional and safe but would benefit from enhanced privacy, security, and compliance measures.

M

Musica sacra

musicasacra.cz

55

Musica sacra is a Czech non-profit organization dedicated to the promotion and enhancement of church liturgical music. Founded in 2006, it offers educational courses for organists, organizes events, publishes newsletters and music, and supports the community of church musicians. The website serves as a hub for information, resources, and event announcements targeting church musicians, choir members, and liturgical music enthusiasts primarily in the Czech Republic. Technically, the website uses a modern tech stack including jQuery, Bootstrap 4.6, FontAwesome, and Owl Carousel, with Cloudflare DNS and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS but does not implement key security headers such as Content-Security-Policy or HSTS. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is consistent with the website's Czech origin and long-standing presence, supporting legitimacy. Overall, the site is trustworthy and professional but would benefit from improved privacy compliance and enhanced security headers to strengthen its security posture and regulatory adherence.

M

Mensch Digital

mensch.rs

43

Mensch Digital is a Serbian-based digital agency specializing in web development, graphic design, 3D design, live streaming, multimedia production, and digital security services. Established in 2016, the company has built a solid market presence with clients across multiple continents and countries, emphasizing innovation, creativity, and quality in digital solutions. Their website reflects a professional and modern digital infrastructure built on WordPress with a strong focus on user experience and mobile optimization. Security posture is good with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, Mensch Digital demonstrates a credible and trustworthy business with a well-maintained online presence.

E

European Chess Union

ecutv.eu

49

ECU TV is a specialized digital platform operated under the European Chess Union umbrella, providing live streaming and in-depth analysis of chess tournaments primarily targeting chess enthusiasts and players across Europe. The platform leverages WordPress CMS with modern themes and plugins to deliver a visually appealing and content-rich experience. It integrates social media channels and uses Vimeo for video streaming, ensuring a professional and interactive user experience. The website demonstrates a solid technical foundation with HTTPS enforcement and basic privacy compliance, including cookie consent mechanisms. However, it lacks explicit security policies, terms of service, and direct contact information, which could be improved to enhance trust and compliance. Overall, ECU TV holds a strong niche position in the chess community with potential for growth through enhanced security and business transparency.

B

BELLhop

bellhop.cz

44

BELLhop is a Czech company specializing in electronic chip systems designed for primary schools and school daycare centers (ZŠ and ŠD). Their system enhances safety, attendance tracking, and access control, targeting schools, parents, and kindergartens. The company operates under NeurIT s.r.o. and has established a niche presence with over 550 schools and 60,000+ students using their solutions. Their offerings include chip-based pickup systems, access control, integration with popular school information systems, and optional TV display systems for schools. Technically, the website is built on WordPress with modern plugins such as Slider Revolution and Complianz GDPR for cookie management. It uses Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected in the HTML. The website demonstrates strong privacy compliance with a comprehensive cookie policy and GDPR adherence. Contact information is clearly presented, including phone, email, and physical address. Social media presence on Facebook and Instagram supports community engagement. However, WHOIS data for the domain is missing, which reduces trustworthiness from a domain registration perspective. Overall, BELLhop presents a professional, secure, and privacy-conscious digital presence aligned with its educational technology business. The main risk lies in the lack of WHOIS transparency, which should be addressed to improve domain legitimacy and trust.

I

ICA Events

worldfood-istanbul.com

58

WorldFood Istanbul is a well-established international food exhibition organized by ICA Events, targeting food industry professionals globally. The website presents comprehensive information about the event, including exhibitor and visitor resources, agenda, news, and support partners. The technical infrastructure leverages modern web technologies and CMS, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and published policies. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. Overall, the site is professional and trustworthy with room for security and privacy improvements.

N

National Safety Council

nsc.org

66

The National Safety Council (NSC) is a leading nonprofit organization dedicated to safety advocacy and injury prevention across workplaces and communities in the United States. The website clearly communicates NSC's mission to eliminate preventable injuries and deaths through training, advocacy, and resources. The organization holds a strong market position as a trusted safety advocate with a large audience including employers, employees, and safety professionals. Technically, the website is built on a modern ASP.NET framework, utilizing popular libraries such as FontAwesome and Owl Carousel, and integrates analytics and user feedback tools like Google Tag Manager, Hotjar, and Survicate. The site is well optimized for mobile and accessibility, with good SEO practices and comprehensive privacy and cookie policies that comply with GDPR standards. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and consistent branding support its legitimacy. Overall, NSC's digital presence reflects a mature, secure, and user-focused platform aligned with its nonprofit mission.

T

The Wire Association International, Inc.

interwire25.com

61

The Wire Association International, Inc. operates the Interwire Trade Exposition, the largest wire and cable marketplace in the Americas, hosting a biennial international trade event. The website provides comprehensive information about the 2025 event, including schedules, exhibitors, sponsors, and conference programs, targeting industry professionals in wire and cable manufacturing and supply. The business model centers on event organization and industry networking, positioning Interwire as a benchmark event in its sector. Technically, the website is built on Joomla! CMS with the Helix3 framework, leveraging modern web technologies such as Bootstrap, jQuery, and Font Awesome. The site is mobile-optimized with good SEO practices and moderate performance. Hosting is managed via NameCheap with DNS services through Sucuri, though DNSSEC is not enabled. Analytics are implemented using Google Analytics and Google Tag Manager, with a cookie consent mechanism in place. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced security headers and DNSSEC. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with cookie consent and terms of service present, but no explicit privacy policy found on the homepage. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Recommendations include enhancing security headers, enabling DNSSEC, and publishing a clear privacy policy to improve compliance and trust. The site is safe for general audiences with no adult or questionable content detected.

D

Deutsche Bischofskonferenz

dbk.de

53

The Deutsche Bischofskonferenz (DBK) website serves as the official online presence of the German Bishops' Conference, providing authoritative information, news, and resources related to the Catholic Church in Germany. It targets German-speaking Catholics, church officials, and the general public interested in religious affairs. The site offers thematic content, service tools such as parish searches and address directories, and maintains a strong social media presence. The business model is non-profit and government-related, focusing on information dissemination and coordination among Catholic dioceses. Technically, the website is built on TYPO3 CMS and leverages modern web technologies including jQuery, Bootstrap, and Owl Carousel. It is hosted on domaincontrol.com nameservers, indicating professional hosting arrangements. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Privacy compliance is robust, featuring a Usercentrics consent management platform and a comprehensive privacy policy in German. From a security perspective, the site enforces HTTPS and uses modern libraries, but lacks explicit security headers such as CSP and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted. Overall, the security posture is good but could be improved with additional headers and formal vulnerability disclosure mechanisms. The website is safe for general audiences, containing no adult or explicit content. The domain registration data aligns well with the organization's identity, showing no suspicious patterns. The site is trustworthy, professionally maintained, and compliant with relevant regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date software components.

W

Weborama

weborama.com

72

Weborama is a European leader in AdTech specializing in Semantic Artificial Intelligence solutions for agencies, publishers, and advertisers. The company focuses on addressing technological challenges in digital advertising while maintaining respectful user relationships. The website reflects a mature business with a domain registered since 2000 and a professional online presence. Technically, the site is built on WordPress using the Divi theme and common JavaScript libraries such as jQuery and Owl Carousel, hosted on AWS infrastructure. SEO optimization is good, with proper meta tags and structured data. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could improve transparency and security practices.

B

Bayards Helipads

bayardshelidecks.com

49

Bayards Helipads is a specialized company designing, engineering, manufacturing, and installing advanced aluminium helicopter landing platforms for offshore and onshore applications, including hospitals and critical infrastructure. With over 40 years of experience and a global footprint spanning more than 70 countries, Bayards offers turnkey helideck solutions compliant with international aviation and safety standards. The website reflects a professional and well-structured digital presence with rich multimedia content and clear navigation. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Google Tag Manager, ensuring a responsive and engaging user experience. Security posture is generally good with HTTPS enforced and cookie consent implemented; however, the absence of security headers and a security.txt file suggests room for improvement. The lack of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall trust. Contact information and social media presence are clearly provided, supporting business credibility.

L

LIPONOVA, a.s.

liponova.cz

46

LIPONOVA, a.s. is a Czech ecological agricultural company specializing in sustainable plant production and land leasing in the Lipoltice region. Established in 1998, the company emphasizes chemical-free farming practices and water retention in the landscape. Their website reflects a professional and consistent brand image targeting local landowners interested in ecological farming partnerships. Technically, the website uses modern frameworks such as Bootstrap and integrates Google Analytics and reCAPTCHA for analytics and security. The site is hosted by Wedos, a Czech hosting provider, and enforces HTTPS with a Content Security Policy to upgrade insecure requests. Security posture is solid with no visible vulnerabilities, but privacy compliance is lacking due to missing privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the website is well-designed, user-friendly, and trustworthy for its audience.

P

Prague Playoffs

pragueplayoffs.com

40

Prague Playoffs is a professionally presented event website dedicated to the 2025 edition of the Prague Playoffs, a major equestrian show jumping event held at the O2 Arena in Prague. The site serves as a comprehensive information hub for attendees, participants, and fans, offering detailed program schedules, ticketing options, VIP services, news updates, and media accreditation. It is closely associated with the Global Champions Tour and Global Champions League, indicating a strong position within the international equestrian sports community. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various JavaScript libraries for UI components and analytics. It integrates multiple tracking and marketing tools such as Google Analytics, Facebook Pixel, and Google Ads conversion tracking, reflecting a mature digital marketing approach. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML content. However, no security headers were detected in the provided data, and there is a lack of visible privacy and cookie policies, which are important for GDPR compliance and user trust. The WHOIS data is missing or unavailable, which raises questions about domain registration legitimacy, though the website content itself appears professional and trustworthy. Overall, Prague Playoffs presents a credible and well-maintained digital presence for a significant sporting event, but it would benefit from enhanced transparency in privacy practices, improved security headers, and clearer contact information to strengthen its security posture and compliance.

E

European Chess Union

eccc2025.com

43

The European Chess Club Cup 2025 website serves as the official information portal for the 40th European Chess Club Cup and the 29th European Women’s Chess Club Cup, scheduled in Rhodes, Greece. It targets European chess federations, clubs, players, and enthusiasts by providing event details, prize fund information, live results, news, and media content. The site is affiliated with the European Chess Union and uses official branding and external links to ECU resources, reinforcing its legitimacy and market position within the chess sports event domain. Technically, the site is built on WordPress with common plugins and libraries, including WPBakery Page Builder and Google Analytics, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. The domain WHOIS data shows an unusual future creation date, which slightly undermines trust but does not negate the site's apparent legitimacy. Overall, the website is professional, functional, and trustworthy for its purpose but would benefit from enhanced privacy and security disclosures.

G

Glow Space z. s.

glowspace.cz

52

Glow Space z. s. is a Czech non-profit digital community focused on developing and supporting Christian open-source applications and projects. The organization positions itself as an alliance of Christian digital projects, targeting developers, users, and supporters within the Christian digital ecosystem. Their business model revolves around community collaboration, open-source software development, and fundraising through donation platforms. The website reflects a niche market position with a clear focus on Christian digital initiatives and community engagement. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Fontello icons, Owl Carousel, and Matomo analytics. It is hosted with a reputable registrar (REG-WEDOS) and uses Cloudflare DNS services. The site is mobile-optimized and uses HTTPS with a good SSL configuration. However, accessibility and SEO optimizations are basic, and no major CMS is detected beyond the IS OMNIA system for parish management. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS, which are positive indicators. However, it lacks security headers such as Content-Security-Policy and X-Frame-Options. There is no visible privacy or cookie policy, nor is there a published security policy or incident response contact information. The use of Matomo analytics indicates moderate user tracking without explicit consent mechanisms, which may pose compliance risks under GDPR. Overall, the website is professionally designed and trustworthy, with good content quality and clear business information. The main risks relate to privacy compliance gaps and missing security headers. Strategic improvements in these areas would enhance the site's security posture and regulatory compliance.

J

Jubileum 2025

jubileum2025.cz

58

The Jubileum 2025 website serves as an informational and community platform dedicated to the religious event of the Jubilee year 2025 and its preparatory year 2024. It provides visitors with detailed information about the jubilee, including official documents, prayers, hymns, news updates, and event galleries. The site targets religious communities, pilgrims, and the general public interested in the jubilee celebrations, positioning itself as a niche, non-profit event website with official church backing. Technically, the website employs a modern but straightforward technology stack including jQuery, Bootstrap 4.6.1, Fontello icons, Owl Carousel, and Matomo analytics for user tracking. It is hosted behind Cloudflare DNS and likely uses Cloudflare CDN services. The site is mobile-optimized with good navigation and design quality, though accessibility features are basic. The CMS powering the site is IS OMNIA, a system for parish management. From a security perspective, the site uses HTTPS with a good SSL configuration and no visible exposed sensitive data. However, it lacks explicit security headers such as Content-Security-Policy and HSTS, which could improve its security posture. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanism, which is a notable gap given GDPR requirements. Contact information is limited to a contact form without explicit emails or phone numbers. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally presented with a clear purpose and consistent branding. The domain registration is recent but appropriate for the event timeline, and no suspicious patterns are detected. Strategic improvements in privacy compliance and security headers would enhance the site's security and trustworthiness.

K

Křižovnický domácí hospic

krizovnickapomoc.cz

37

Křižovnický domácí hospic sv. Anežky České is a Czech non-profit organization providing home hospice and palliative care services. The website presents a professional and consistent brand image, targeting patients and families in need of end-of-life care. The organization is relatively new, founded in 2021, and maintains partnerships with several healthcare and social service entities. Technically, the site is built on WordPress with common plugins and libraries, including Contact Form 7 and Google reCAPTCHA for spam protection. While HTTPS is properly configured, the site lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security headers are not visibly implemented, representing an area for improvement. Overall, the site is trustworthy and functional but could enhance privacy compliance and security posture.

E

einhard verlag gmbh

einhardverlag.de

46

Einhard Verlag GmbH is a small regional publishing company based in Aachen, Germany, specializing in religious and cultural publications including a church newspaper (KirchenZeitung), book publishing, and retail through a partner DomShop. The website is built on Drupal 10 and uses modern web technologies, providing a good user experience with clear navigation and mobile optimization. Security posture is adequate with HTTPS enabled but lacks some security headers and cookie consent mechanisms. The WHOIS data is limited but does not raise significant concerns. Overall, the site is professional and trustworthy within its niche.

C

Crown Estate Scotland

crownestatescotland.com

71

Crown Estate Scotland is a public body managing property, natural resources, and community assets in Scotland to generate lasting economic and social value. The website clearly communicates its roles, projects, and services, targeting Scottish public authorities, community organizations, tenants, and stakeholders. The organization positions itself as a key player in sustainable development, offshore wind projects, and community empowerment. Technically, the website is built on Drupal 10 with modern libraries and frameworks, offering good mobile optimization, accessibility, and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and aligned with its public sector mission.

PILA MARTINICE s.r.o., operating under the brand MARTINICE GROUP, is a Czech company specializing in turnkey wooden buildings including family houses, halls, roofs, and photovoltaic installations. With over 20 years of experience since 1997, the company positions itself as a reliable regional manufacturer and construction service provider offering high precision and a 25-year warranty on their wooden construction systems. Their target audience includes individuals and businesses seeking quality wooden buildings with modern technology and flexible project options. Technically, the website is built on a custom CMS (IPO CMS) and uses modern JavaScript libraries such as jQuery, Google Tag Manager, Facebook Pixel, and Matomo for analytics. The site is mobile-optimized and employs HTTPS with reCAPTCHA for form security. However, it lacks some security headers and a published privacy policy, which are areas for improvement. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, impacting the overall trustworthiness assessment. Overall, the website is professional, content-rich, and trustworthy from a business perspective but would benefit from enhanced transparency in privacy and security policies and improved domain registration visibility.

T

Teo via nadační fond

teovia.cz

58

Teo via nadační fond is a Czech non-profit foundation established in 2021, dedicated to supporting church congregations, parishes, and Christian organizations through sustainable financing and community support. The foundation aims to empower clergy by providing financial and organizational assistance, promoting active lay participation in church life. The website reflects a focused mission with clear content and a professional design tailored to its target audience of church communities and supporters. Technically, the site uses modern frontend technologies including jQuery, Bootstrap, and Matomo analytics, hosted under a Czech registrar consistent with its origin. Security posture is adequate with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal privacy and cookie policies, which are compliance gaps. Overall, the domain registration and website content are consistent and trustworthy, supporting the foundation's legitimacy.

C

ComArr, spol. s r. o.

taskpool.cz

60

ComArr, spol. s r. o. operates the TaskPool helpdesk system, a mature and established web-based software solution designed to streamline communication and task management between customers and service providers. With over 17 years in the market and more than 300 implementations, the company targets businesses and institutions of various sizes seeking efficient customer support and internal task management solutions. Their offerings include customer helpdesk, internal helpdesk, IT outsourcing, and support for ISO certification and ITIL standards. The website reflects a professional and consistent brand presence, with clear service descriptions and client references.

D

Dobrovolnické centrum Koalice nevládek Pardubicka

dobrokonep.cz

46

Dobrovolnické centrum Koalice nevládek Pardubicka operates as a regional non-profit organization focused on recruiting and coordinating volunteers for non-profit and contributory organizations within the Pardubický region of the Czech Republic. The website serves as a platform to connect volunteers with various social and community projects, providing detailed volunteer opportunities and supporting materials. The organization is supported by notable partners including the Ministry of Interior of the Czech Republic and Foxconn Česká republika, enhancing its credibility and regional influence. Technically, the website is built on WordPress CMS, utilizing modern web technologies such as Bootstrap, jQuery, and popular plugins like Revolution Slider and Owl Carousel. The site is mobile-optimized with good SEO practices and includes a cookie consent mechanism compliant with GDPR. Google Analytics is implemented with anonymized IP tracking and user consent. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, but lacks some advanced security headers such as Content-Security-Policy and X-Frame-Options. No vulnerability disclosure or security policy pages are present, indicating room for improvement in security transparency and incident response readiness. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the site's security posture and compliance.

N

Network of National ITS Associations

itsnetwork.org

55

The Network of National ITS Associations operates as a collaborative platform for national Intelligent Transport Systems organizations across the European Union. It focuses on promoting ITS knowledge dissemination, supporting cooperation among member states, and organizing events such as webinars and awards to recognize contributions in the ITS sector. The organization positions itself as a respected voice within the EU ITS community, targeting ITS professionals, associations, and stakeholders. Technically, the website is built on a modern WordPress platform with common plugins for event management and GDPR compliance, demonstrating a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, well-maintained, and trustworthy, but the lack of WHOIS data limits full domain trust assessment.

Y

YMCA

ymca.cz

58

YMCA Czech Republic is a well-established non-profit organization focused on providing diverse youth and family activities, including clubs, camps, social services, and creative programs. The website reflects a mature digital presence with comprehensive content tailored to its target audience of young people, families, and volunteers. Technically, the site is built on WordPress with a modern theme and uses common libraries and Google Tag Manager for analytics. Security posture is good with HTTPS and security headers, though explicit security policies and incident response contacts are absent. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-optimized for users.

S

Společná voda d.s.o.

spolecnavodadso.cz

52

Společná voda d.s.o. is a voluntary association of municipalities in the Czech Republic focused on managing water supply, wastewater treatment, and related infrastructure. Founded in 2022, it serves 22 member municipalities primarily in Central Bohemia and holds a significant stake in Vodohospodářská společnost Benešov a.s., a regional water company. The website provides public information, documentation, and contact details relevant to its members and stakeholders. Technically, the site is built on Joomla CMS with modern libraries and frameworks, offering a good user experience and mobile optimization. However, it lacks explicit privacy and cookie policies, as well as security headers and incident response information, which are areas for improvement. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Overall, the website is professional and functional but could enhance its security posture and compliance to better serve its audience and meet regulatory requirements.

V

Vodárny a kanalizace Karlovy Vary, a.s.

vodakva.cz

45

Vodárny a kanalizace Karlovy Vary, a.s. is a regional water and wastewater services company operating primarily in the West Bohemia region of the Czech Republic. Established in 1994 through privatization with historical roots dating back to 1882, it serves approximately 100 municipalities and 190,000 inhabitants. The company offers comprehensive services including operation, maintenance, renewal, and development of water and wastewater infrastructure, as well as design, laboratory analysis, and pipeline inspection. It is jointly managed by the Water Management Association of the West Bohemia Region and the international group SUEZ, positioning it as a key regional utility provider.

Z

Zimbra

zimbra.com

74

Zimbra operates as a provider of cloud-hosted collaboration software and email platforms, emphasizing open standards, low-risk alternatives, and data sovereignty. The company targets enterprises and businesses seeking integrated collaboration solutions with productivity add-ons. The website reflects a medium-sized technology business with a professional online presence, offering downloadable products, documentation, and trial options. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools such as HubSpot, Google Tag Manager, and New Relic for performance monitoring. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is unavailable, which raises some trust concerns despite the professional appearance. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security documentation.

E

EuroFire, spol. s r.o.

eurofire.cz

44

EuroFire, spol. s r.o. is a Czech-based authorized distributor specializing in personal protective equipment and firefighting gear, including products from MSA Safety and Schuberth GmbH. Founded in 2001, the company offers a comprehensive portfolio of safety products such as helmets, breathing apparatus, protective clothing, and firefighting accessories, targeting firefighters, emergency responders, police, and military sectors. The website reflects a professional e-commerce platform built on PrestaShop, featuring detailed product information and recognized brand partnerships. Technical infrastructure includes modern JavaScript libraries and Google Analytics for enhanced e-commerce tracking. Security posture is adequate with HTTPS and token usage but lacks explicit security policies and incident response information. Privacy compliance is supported by comprehensive privacy and cookie policies, though a consent mechanism is absent. Overall, the website is trustworthy, well-branded, and serves its niche market effectively.

D

Dobráci s.r.o.

dobraci.sk

60

Dobráci s.r.o. is a specialized Slovak company focused on distributing firefighting vehicles and equipment primarily for volunteer firefighters in Slovakia and Czechia. The company offers comprehensive services including vehicle sales, customization, equipment installation, training, and after-sales support. Their market position is niche but well-established with over 16 years of experience. The website serves both informational and e-commerce purposes, targeting firefighting units and related organizations. Technically, the site is built on WordPress with a modern tech stack including WPBakery, Slider Revolution, and various UI libraries. Performance and mobile optimization are adequate, though accessibility is basic. Security posture is moderate with HTTPS enabled but lacking some important security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with phone numbers and active social media channels, enhancing business credibility. Overall, the site is professional and trustworthy but could improve in privacy and security compliance.

3

3MON Rescue

3monrescue.cz

52

3MON Rescue is a specialized company focused on fire protection, fire detection, and electromobility safety solutions primarily serving businesses and rescue organizations. Their innovative FireTec Concept positions them as a niche provider in the energy and transportation safety sectors within the Czech Republic. The website reflects a professional and consistent brand presence with clear targeting of firms and emergency responders. Technically, the site is built on WordPress with modern plugins and tracking tools like Google Tag Manager, offering moderate performance and good mobile optimization. However, the absence of WHOIS data limits domain legitimacy verification, and no explicit privacy or cookie policies were found, which impacts compliance posture. Security headers are not detected, suggesting room for improvement in security hardening. Overall, the site is accessible and safe, with no adult or questionable content detected.

Krajské sdružení NS MAS Středočeského kraje z.s. is a non-profit regional association that unites 29 local action groups within the Central Bohemia region of the Czech Republic. It serves as the largest regional network of such groups in the country, facilitating cooperation, organizing meetings, and sharing experiences among its members. The website provides information about the association's activities, events calendar, photo galleries, and contact details, targeting local groups and stakeholders in the region. Technically, the website is built on the IPO CMS platform, utilizing jQuery, jQuery UI, Owl Carousel, Google reCAPTCHA, and Matomo analytics for tracking. The site is mobile responsive and implements cookie consent mechanisms, indicating a moderate level of digital maturity. However, some JavaScript libraries are outdated, and security headers are not explicitly detected, suggesting room for technical improvements. From a security perspective, the site uses HTTPS and includes reCAPTCHA for form protection, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS data limits domain trust assessment, although the website content and contact information appear professional and legitimate. No vulnerabilities or malicious content were detected. Overall, the website presents a trustworthy and professional front for a regional non-profit association but would benefit from enhanced security practices, updated technical components, and improved transparency in domain registration and policies.