Security Directory

MVM CEEnergy Zrt. is Hungary's largest natural gas trader, serving as a key partner to the national universal gas service provider to ensure reliable gas supply to residential consumers. The company operates as part of the MVM Group, a large energy conglomerate with numerous subsidiaries across production, storage, distribution, retail, and services sectors. The website reflects a professional corporate presence with comprehensive information about the company, its subsidiaries, and services. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, and is built on a Sitecore CMS platform. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response contacts are provided. Overall, the site is well-structured, compliant with GDPR, and trustworthy.

Magyar Földgáztároló Zrt. is Hungary's largest commercial underground natural gas storage company, operating four storage facilities with significant capacity. The company plays a critical role in ensuring the country's winter gas supply and aims to strengthen Hungary's position in the Central European energy market. The website reflects a professional corporate presence with clear navigation, regulatory information, and customer engagement features such as newsletter subscription. Technically, the site uses standard web technologies including Bootstrap and jQuery, with Google Analytics for visitor tracking. Security practices include HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. Overall, the site is well-maintained, trustworthy, and compliant with GDPR requirements.

S

SupportBox.cz

supportbox.cz

56

SupportBox.cz is a Czech-based SaaS company specializing in customer support software that centralizes communication channels such as email, live chat, social media messaging, and telephony into a single platform. Established in 2012, it serves over 700 customers primarily in the Czech market, offering a 14-day free trial and a suite of features including AI chatbots, automation, and detailed reporting. The website demonstrates a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, it leverages WordPress CMS with modern JavaScript libraries and integrates advanced marketing and analytics tools like Mixpanel and Facebook Pixel, while being hosted behind Cloudflare for performance and security.

M

Počasí, aktuální předpověď počasí

meteobox.cz

45

Meteobox.cz is a Czech Republic focused weather forecast and news portal providing detailed weather information for cities and regions within the country. The site offers daily and long-term weather forecasts, weather news, and meteorological insights primarily targeting the general public interested in weather updates. The business model appears to be advertising-supported, with multiple ad networks and tracking technologies integrated. Technically, the site uses common web technologies including jQuery, Google Tag Manager, and Google DoubleClick for advertising, hosted likely on meteobox.info infrastructure. The website is moderately optimized for performance and mobile devices, with good SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. No privacy or terms of service pages were found, which is a compliance gap. WHOIS data confirms the domain is legitimate and consistent with the business age and type. Overall, the site is professional and trustworthy for its niche but could improve privacy and security transparency.

K

Kurzy.cz

kurzy.cz

66

Kurzy.cz is a prominent Czech financial information portal providing real-time currency exchange rates, stock market data, commodity prices, and economic news. It serves a broad audience including investors, financial professionals, and the general public interested in economic developments. The site features regularly updated content and integrates multiple advertising and analytics services, supported by a cookie consent mechanism. Technically, the site uses modern web technologies such as jQuery, Google Fonts, and Google Tag Manager, ensuring a moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced but lacks some important security headers, which should be addressed to enhance protection against common web threats. The absence of WHOIS data limits domain trust assessment, but the site's professional content and high traffic indicate legitimacy. Overall, Kurzy.cz is a reliable source for financial data and news in the Czech market.

M

MVM Zrt.

mvm.hu

66

MVM Zrt. is a leading Hungarian energy group with a long-established presence since 1996. The company operates across multiple sectors of the energy industry including production, storage, transmission, retail, and related services. The website reflects a mature corporate digital presence with detailed information about the group and its subsidiaries, targeting a broad audience including customers, investors, and partners. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Analytics, and is well optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit incident response contact channels. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

N

Národná sieť rozvoja vidieka SR

nsrv.sk

61

Národná sieť rozvoja vidieka SR is a Slovak government-affiliated agency focused on rural development, operating since 2009. It provides information, event organization, project databases, and advisory services to rural communities and stakeholders in Slovakia. The website is well-structured, professionally designed, and regularly updated with relevant news and events. Technically, it uses modern web technologies including Bootstrap, jQuery, Leaflet, and Google Analytics, hosted behind Cloudflare with DNSSEC enabled, indicating a secure and reliable infrastructure. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, though formal security and incident response policies are not published. Overall, the site is trustworthy, compliant with GDPR, and serves as an authoritative resource for rural development in Slovakia.

C

Central European Anti-Doping Organization (CEADO)

ceado.org

48

The Central European Anti-Doping Organization (CEADO) operates as a regional non-profit entity focused on promoting clean sport and supporting anti-doping agencies across Central and Southeastern Europe. Their key services include regional cooperation facilitation, mentoring national anti-doping organizations, and conducting prevention and education programs. The organization is headquartered in Vienna, Austria, and maintains a professional web presence with regular news updates and clear contact information. Technically, the website is built on the Internetkonzepte.at CMS and utilizes modern JavaScript libraries such as jQuery, Typeahead.js, and Fancybox. The site is mobile-optimized, accessible, and performs moderately well. However, there is room for improvement in security headers and incident response visibility. The site uses HTTPS, ensuring encrypted communication. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and no visible exposure of sensitive data. However, the absence of security headers and vulnerability disclosure policies indicates areas for enhancement. The WHOIS data is unavailable due to a malformed query, limiting the ability to fully verify domain legitimacy. Despite this, the website content and contact details appear trustworthy and professional. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, with an overall AI score of 77. Strategic recommendations include implementing security headers, adding a terms of service page, publishing a vulnerability disclosure policy, and improving incident response contact visibility to strengthen trust and security posture.

P

PFP s.r.o.

srovnator.cz

64

Srovnátor.cz is a Czech Republic-based online insurance comparison platform operated by PFP s.r.o., a subsidiary of the major Czech brokerage company Renomia. The website offers comprehensive comparison services for mandatory vehicle insurance, comprehensive vehicle insurance, and property insurance, targeting Czech consumers seeking cost-effective insurance solutions. The platform is well-positioned in the Czech market with over 50,000 customers and strong trust signals including verified customer reviews and regulatory oversight by the Czech National Bank. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses advanced analytics tools such as PostHog and Microsoft Clarity. It demonstrates excellent SEO, mobile optimization, and user experience. Security posture is strong with HTTPS, security headers, and secure form handling, though it lacks a publicly available security policy or incident response information. Privacy compliance is robust with clear GDPR-aligned privacy and cookie policies including consent mechanisms. The absence of WHOIS data limits domain registration transparency, but the overall business credibility and content quality support legitimacy. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

G

Gemius

gemius.com

64

Gemius is a well-established international research and technology company specializing in digital and cross-media audience measurement, serving marketers and publishers with advanced marketing solutions. With over 20 years of experience, Gemius holds a leading market position in online and cross-media measurement, including Internet, TV, radio, and outdoor media. Their product portfolio includes audience data, marketing intelligence, campaign analytics, traffic measurement, real-time monitoring, ad serving, and user engagement visualization tools. The company targets media professionals and marketing agencies, operating primarily from Poland with a broad international footprint.

C

Centrum pro regionální rozvoj České republiky

crr.cz

62

Centrum pro regionální rozvoj České republiky is a well-established government agency under the Ministry of Regional Development, focused on administering European Union and national funds to improve life in Czech regions. With nearly 30 years of experience, it plays a critical role in regional development, supporting projects ranging from infrastructure to community services. The website reflects a professional and comprehensive digital presence, offering detailed information, consultation services, and event calendars tailored to its public sector audience. Technically, the site is built on WordPress with modern plugins and technologies such as Google Analytics and Tag Manager, ensuring good SEO, accessibility, and mobile responsiveness. Security practices include HTTPS enforcement and cookie consent mechanisms, though some security headers could be enhanced. The absence of WHOIS data is typical for Czech government domains and does not detract from the site's legitimacy. Overall, the security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear GDPR policies and cookie management. The site maintains high trustworthiness through official branding, verified contact information, and transparent communication channels. Strategically, the agency should continue to enhance security headers, publish incident response policies, and maintain up-to-date software to mitigate risks. The digital maturity and business credibility position the agency as a reliable and authoritative source for regional development information and services.

Národní síť Zdravých měst ČR operates as a non-profit association dedicated to improving quality of life, health, and sustainable development in Czech municipalities and regions. The organization offers membership services, educational programs, events, and a data platform to support strategic urban management and public participation. With over 147 members and more than 30 years of history, it holds a strong position in the Czech public sector and is certified by the UN-WHO Healthy Cities program. Technically, the website is built on a custom CMS (ActionApps TOOLKIT) and uses modern JavaScript libraries such as jQuery, Popper.js, and Tippy.js. The site is HTTPS secured and loads analytics scripts asynchronously, indicating a moderate level of digital maturity. Mobile optimization and SEO practices are good, though accessibility features could be improved. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide explicit privacy or cookie policies, which are compliance gaps. No WHOIS data is available, which reduces domain trustworthiness, though the website content and social media presence strongly suggest legitimacy. There are no detected vulnerabilities or exposed sensitive data. Overall, the website is professional and content-rich, serving a clear public interest mission. Strategic improvements in privacy compliance, security headers, and domain registration transparency would enhance trust and security posture.

N

Nadační fond Český výrobek

ceskyvyrobek.cz

67

Nadační fond Český výrobek is a Czech non-profit foundation dedicated to promoting Czech-made products and craftsmanship through a protective trademark. The website serves as a platform to inform businesses about the trademark, encourage registration, and showcase partners and catalog members. Technically, the site uses a modern frontend stack including jQuery, Bootstrap, and various tracking and analytics tools such as Google Analytics and Facebook Pixel. The site is served over HTTPS and includes a cookie consent mechanism, but lacks explicit privacy and terms of service pages. Security posture is moderate with no detected security headers and extensive use of third-party tracking scripts. WHOIS data is unavailable, which limits domain trust assessment. Overall, the site is professional and trustworthy in content but could improve transparency and security practices.

K

KODAP

kodap.cz

45

KODAP is a well-established Czech professional services firm specializing in tax consulting, legal, accounting, payroll, and audit services. With over 30 years of experience and a large team of professionals, including tax advisors, auditors, and lawyers, KODAP serves businesses and entrepreneurs primarily in the Czech Republic and the EU. The company operates multiple offices across the country and maintains a strong market presence supported by memberships in key professional chambers and partnerships such as ETL Global. Technically, the website is built on WordPress with modern technologies including jQuery, Google Tag Manager, Google Analytics, and reCAPTCHA for security. The site is mobile-optimized, SEO-friendly, and uses cookie consent mechanisms compliant with GDPR requirements. Hosting details are consistent with the domain registrar REG-ZONER, and the domain age aligns with the company's claimed history. From a security perspective, the site uses HTTPS and implements basic security best practices such as CAPTCHA and cookie consent. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure mechanisms. HTTP security headers could be enhanced for better protection. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, KODAP's website reflects a professional and trustworthy business with good technical implementation and moderate security posture. To improve, the company should publish comprehensive privacy and security policies and enhance security headers. These steps will strengthen compliance and trust with clients and partners.

I

invelt - s.r.o.

invelt.com

58

invelt - s.r.o. operates as an authorized dealer and service provider for BMW, MINI, ALPINA, and BMW Motorrad in the Czech Republic, with a market presence spanning over 30 years. The company offers a comprehensive portfolio of new and used vehicles, servicing, financing, and lifestyle accessories, targeting premium automotive customers primarily in Prague and Plzeň. The website reflects a mature digital presence with extensive product catalogs, configurators, and e-commerce integration. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and domain verification mechanisms, though security headers and incident response information could be improved. The absence of WHOIS registration data raises concerns about domain legitimacy, impacting overall trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and clarifying domain registration details to improve business credibility and compliance.

Z

Zámek Mitrowicz

zamekmitrowicz.cz

60

Zámek Mitrowicz is a historic castle venue located in the Czech Republic, offering hospitality services including weddings, accommodation, corporate events, and cultural programs. The website presents a professional and consistent brand image with clear information about the castle's unique features and services. The technical infrastructure employs common web technologies such as jQuery, Bootstrap, and Font Awesome, providing a moderate performance and good mobile optimization. Security posture is moderate with cookie consent and privacy policy in place, but lacks visible security headers and incident response information. The absence of WHOIS data reduces domain trustworthiness, though the website content and partner affiliations support legitimacy. Overall, the site is functional and suitable for its hospitality business purpose.

R

RENGL, s.r.o.

rengl.cz

43

RENGL, s.r.o. operates a large network of poster advertising sites across Czech Republic, Slovakia, and Poland, offering poster posting and printing services. The company targets businesses and organizations seeking outdoor advertising solutions, positioning itself as a leading regional provider with a network of 5,000 poster sites in 170 cities. The website is professionally designed, mobile optimized, and provides clear service descriptions and contact information. Technically, the site uses modern JavaScript libraries for UI enhancements but lacks some advanced security headers and cookie consent mechanisms. The WHOIS data is missing, which reduces domain trust, but the website content and contact details appear legitimate and consistent with the business claims. Overall, the site scores well on content quality and business credibility but could improve privacy compliance and security posture.

S

Stabsstelle Prävention - Fachstelle gegen sexualisierte Gewalt der Nordkirche

kirche-gegen-sexualisierte-gewalt.de

47

The website represents the Stabsstelle Prävention, a specialized non-profit church-affiliated organization focused on prevention, intervention, and support related to sexualized violence within the Evangelical Church in Northern Germany (Nordkirche). It provides resources, contact points, and educational materials for affected individuals and church staff. The site is positioned as a trusted regional authority with clear church ties and a focus on transparency and support. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries like jQuery and stickybits for UI enhancements. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit incident response contacts. Privacy compliance is mostly met with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its mission. The domain WHOIS data is limited but does not raise significant concerns. No blocking or WAF interference was detected, allowing full content access and analysis.

M

Městská část Brno-jih

brno-jih.cz

65

Městská část Brno-jih is the official municipal district government website serving the Brno-jih area in the Czech Republic. It provides comprehensive information about local government administration, public services, news, events, and contact details for residents and visitors. The website is well-structured, professionally designed, and offers multilingual support, targeting local citizens and stakeholders. The business model is governmental public service with a focus on transparency and community engagement. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as jQuery and GLightbox, and features a responsive design optimized for mobile devices. Analytics are handled via Matomo with privacy-conscious configurations, including Do Not Track and cookie disabling. The site demonstrates good accessibility and SEO practices, although some improvements in security headers and explicit privacy policies are recommended. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, the absence of security headers and explicit privacy and cookie policies indicates room for enhancement. The WHOIS data is unavailable, which limits domain registration trust analysis, but the official branding and contact information strongly support legitimacy. Overall, the site maintains a good security posture with moderate risk. Strategically, the website should focus on publishing clear privacy and cookie policies, implementing security headers, and improving transparency around incident response and data protection officers. These steps will enhance user trust and compliance with GDPR and other regulations. The domain registration information should be clarified to improve trustworthiness from a domain perspective.

M

Město Brno

brno2050.cz

66

The website 2050.brno.cz serves as the official strategic planning portal for the city of Brno, Czech Republic. It provides comprehensive information about the city's long-term development strategy across multiple thematic areas such as environment, prosperity, services, resources, and governance. The site targets residents, stakeholders, and interested parties in urban development and municipal governance. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries including jQuery, React, and ClayUI, and employs Matomo analytics configured to respect user privacy by disabling cookies and honoring Do Not Track settings. Security posture is generally good with HTTPS enforced, but lacks explicit security headers and visible privacy or cookie policies. The absence of WHOIS data from the CZ NIC registry reduces domain trustworthiness, though the official branding and content quality support legitimacy. Overall, the site is professional, accessible, and well-structured, but could improve transparency around privacy and security policies.

S

Statutární město Brno

damenavas.cz

67

Dáme na vás is an official civic engagement platform operated by the Statutární město Brno (City of Brno), enabling residents to participate in city development through participatory budgeting, civic proposals, and surveys. The platform targets local citizens, students, and businesses, providing tools to influence municipal decision-making. The website is well-branded, consistent with official city identity, and offers multiple engagement channels including social media and newsletter subscription with GDPR-compliant consent. Technically, the site is built on the Liferay CMS platform, leveraging modern JavaScript libraries such as React and jQuery, and integrates Matomo analytics configured for privacy. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though explicit security headers and incident response policies are not visibly published. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or suspicious content. The domain registration aligns with the municipal nature and age of the platform, supporting legitimacy. Recommendations include publishing security and incident response policies, enhancing security headers, and adding a vulnerability disclosure mechanism.

J

Jiřetín pod Bukovou

jiretinpb.cz

47

Jiřetín pod Bukovou operates an official municipal website serving residents and visitors with local government information, news, documents, and event calendars. The site positions itself as the authoritative source for municipal services and community engagement in the Czech Republic. The business model is governmental, focusing on public service and transparency. Technically, the website is built on WordPress with a modern theme and plugins, including Google Analytics for tracking and OneSignal for push notifications, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is minimal, with no visible privacy or cookie policies, which is a notable gap. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

S

Statutární město Brno

brno.cz

66

The website www.brno.cz serves as the official digital presence of the statutory city of Brno, Czech Republic. It provides comprehensive municipal services, administrative information, news, and resources for residents and visitors. The site is well-branded, consistent, and targets a broad audience including citizens, businesses, and tourists. It leverages modern web technologies and a robust CMS platform (Liferay) to deliver a professional and accessible user experience. The site integrates privacy-respecting analytics (Matomo) and maintains a strong social media presence across major platforms. However, the absence of visible cookie consent mechanisms and security policy disclosures suggests areas for compliance improvement. Technically, the site uses a modern tech stack including React, jQuery, and Clay UI components within the Liferay framework. Performance and mobile optimization are good, with accessibility features implemented. Security posture is strong with HTTPS enforced and privacy-conscious analytics configuration, though additional HTTP security headers and published security policies would enhance trust. The WHOIS data is unavailable due to registry privacy, which is common for government domains, but the site content and branding strongly support legitimacy. Overall, the site is a reliable and professional government portal with minor gaps in privacy compliance and security transparency. Strategic recommendations include implementing a cookie consent banner, publishing security and incident response policies, and adding vulnerability disclosure information to strengthen user trust and regulatory adherence.

T

Toplage Immobilien GmbH

toplage-immobilien.de

45

Toplage Immobilien GmbH is a regional real estate brokerage firm based in Kiel, Germany, specializing in property sales, rentals, and related consulting services. The company is part of the larger wankendorfer Unternehmensgruppe, which enhances its market position and resource access. The website is professionally designed using TYPO3 CMS and targets property buyers, sellers, and renters in Schleswig-Holstein with clear service offerings and contact options. Technical infrastructure includes modern JavaScript libraries and privacy-conscious analytics via Matomo with cookies disabled. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. Overall, the website reflects a trustworthy and professional real estate business with strong compliance to GDPR and user privacy.

R

Rada vysokých škol

radavs.cz

59

Rada vysokých škol is a Czech non-profit council representing the interests of higher education institutions. The website serves as an official communication platform providing updates on meetings, resolutions, and organizational information. It targets academic institutions, government bodies, and students within the Czech Republic. The organization is well-established with a domain age since 2001 and affiliation with Charles University, enhancing its credibility. Technically, the website uses modern JavaScript libraries such as jQuery and bxSlider, and integrates Matomo for analytics, reflecting a moderate level of digital maturity. Hosting appears to be managed by Charles University infrastructure, ensuring reliability. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, it lacks visible advanced security headers and does not provide explicit security policies or incident response contacts. No vulnerability disclosure or security.txt files are present, which could be improved to enhance transparency and security posture. Overall, the website is trustworthy and professional, with good content quality and business credibility. Strategic recommendations include enhancing security headers, publishing security and privacy policies, and adding vulnerability disclosure mechanisms to strengthen compliance and user trust.

U

United Front

united-front.info

44

United Front is an international antiimperialist coalition focused on combating fascism, war, and environmental destruction. The organization hosts congresses, webinars, and publishes resolutions to coordinate efforts among over 120 member organizations and individuals worldwide. The website serves as an informational and organizational platform for these activities, targeting activists and political groups globally. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, intl-tel-input, and Summernote for rich text editing. Google Analytics is integrated for visitor tracking. The site is mobile-optimized with a moderate performance profile. However, there is no evidence of a CMS or advanced hosting details. The website lacks explicit privacy and cookie policies, which is a gap in compliance. From a security perspective, the site uses HTTPS and external secure resources but lacks visible security headers and formal security policies. No contact information or incident response channels are provided, limiting transparency. The WHOIS data is unavailable due to registry limitations or privacy protection, which is understandable given the political nature of the organization but reduces trust slightly. Overall, the website is functional and informative but would benefit from improved privacy compliance, enhanced security headers, and clearer contact information to strengthen trust and security posture.

W

Westfunk GmbH & Co. KG

westfunk.de

52

Westfunk GmbH & Co. KG is a regional media service company based in Essen, Germany, specializing in local radio broadcasting and advertising services. As part of the FUNKE MEDIENGRUPPE, it serves as the backbone for twelve independent local radio stations across the Ruhrgebiet, Niederrhein, and Sauerland regions. The company offers technical, marketing, and digital product services to local radio stations and provides advertising sales support through FUNKE MediaSales. The website reflects a strong market position as a regional market leader in several broadcast areas, supported by professional content and clear business messaging. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, ensuring good SEO and user experience. It employs Google Tag Manager for analytics and uses a consent management platform for GDPR-compliant cookie handling. The site is mobile-optimized and uses HTTPS with a valid SSL certificate, indicating a secure and modern infrastructure. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive privacy and cookie policies and user consent mechanisms. No critical vulnerabilities or suspicious content were detected. Overall, Westfunk's website demonstrates a mature digital presence with strong business credibility, good technical implementation, and compliance with privacy regulations. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving accessibility features to further strengthen the site’s security and user experience.

The website info.mojedatovaschranka.cz serves as an official government portal providing comprehensive information and services related to 'Datové schránky' (Data Mailboxes), a digital communication system between citizens, businesses, and government institutions in the Czech Republic. Operated by Česká pošta, s.p., the portal offers detailed guidance, multiple secure login methods, technical requirements, and up-to-date news, positioning itself as a trusted and authoritative source for electronic communication with the state. From a technical perspective, the site employs modern web technologies including jQuery, Slick Carousel, and a government design system ensuring good mobile optimization, accessibility, and user experience. The integration of a chatbot enhances user support. While performance is moderate, the site is well-structured and SEO optimized, reflecting a mature digital infrastructure. Security-wise, the portal enforces HTTPS and offers multiple secure authentication methods such as mobile keys and citizen identity logins. However, explicit security headers are not detected, and no vulnerability disclosure or incident response contacts are published, indicating areas for improvement. Privacy compliance is strong with a clear privacy policy and GDPR adherence, though cookie consent mechanisms are absent. Overall, the website demonstrates a high level of professionalism, trustworthiness, and business credibility as a government service portal. The lack of WHOIS data for the subdomain is noted but does not detract from legitimacy given the official branding and content. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing vulnerability disclosure information to further strengthen security posture and user trust.

S

Skala

skaladesign.ch

47

Skala is a Zurich-based graphic design and branding studio founded in 2022, specializing in creative services for institutions, brands, and individuals within culture, education, and business sectors. The website showcases a portfolio of diverse projects emphasizing visual identity, branding, and design innovation. The company positions itself as a niche creative agency with a consistent and professional brand image. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery and Ajaxify, with Google Analytics integrated for user tracking. The site is mobile-optimized and demonstrates good performance and SEO practices. Security-wise, the site uses HTTPS with an excellent SSL configuration but lacks security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. Overall, the website is professional and trustworthy with moderate risk due to missing privacy and security policy disclosures.

L

Lemon Squeezy, LLC

lemonsqueezy.com

70

Lemon Squeezy, LLC operates a comprehensive SaaS platform focused on payments, subscriptions, and tax compliance for software companies and digital creators. Positioned as an all-in-one solution, it offers merchant of record services, fraud prevention, multi-currency support, and marketing tools, serving thousands of customers globally. The platform emphasizes ease of use with no-code checkout forms and developer-friendly APIs. Technically, the website is built on Webflow CMS, uses modern JavaScript libraries like jQuery, and integrates Stripe for payment processing, ensuring PCI compliance. Analytics are handled via privacy-focused services like Fathom and Cloudflare Insights. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though cookie consent mechanisms and explicit security policies could be improved. WHOIS data is unavailable, which slightly impacts trust but is mitigated by strong branding, testimonials, and external trust signals. Overall, Lemon Squeezy presents a professional, secure, and user-friendly platform with a solid market position in the SaaS payments space.

L

Lemon Squeezy, LLC

lmsqueezy.com

70

Lemon Squeezy, LLC operates a professional SaaS platform focused on providing payments, subscription management, global tax compliance, and marketing tools tailored for software companies and digital product creators. The company positions itself as a trusted all-in-one solution, serving thousands of customers globally with a strong emphasis on ease of use and developer friendliness. Their platform integrates with major payment processors like Stripe and supports a wide range of payment methods and currencies. Technically, the website is built using modern web technologies including Webflow CMS, jQuery, and REST APIs with webhook support. Hosting and CDN services appear to be provided via Cloudflare, ensuring fast performance and good mobile optimization. The site demonstrates good SEO and accessibility practices, with comprehensive documentation and developer resources. From a security perspective, the site enforces HTTPS and uses Stripe for secure payment processing. AI-driven fraud prevention is highlighted as a key feature. However, explicit security headers and a published security policy or incident response contacts are not evident. Privacy compliance is partially addressed with a privacy policy and terms of service, but no visible cookie consent mechanism was detected. Overall, the website presents a high level of professionalism and trustworthiness, though the absence of WHOIS data and cookie consent slightly reduce transparency. The platform is well-suited for SaaS businesses seeking a comprehensive payment and subscription solution with integrated marketing and reporting tools.

K

KV GmbH

shopping.eu

47

Shopping.eu operates as a European e-commerce search aggregator, providing users with the ability to search thousands of online stores across multiple European countries. The platform targets a broad audience of European and international online shoppers, offering product suggestions and country-specific portals to enhance the shopping experience. The website is branded consistently and linked to KV GmbH, indicating a medium-sized business with a focus on e-commerce aggregation. Technically, the website employs modern JavaScript libraries such as jQuery, Google Tag Manager, and Matomo analytics, ensuring a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS, contributing to a secure and user-friendly experience. However, some accessibility features are basic, and there is room for improvement in SEO and performance optimization. From a security perspective, the site benefits from HTTPS and secure form submissions but lacks visible security headers and explicit privacy or cookie policies. No contact information for security incidents or vulnerability disclosures are present, which could be improved to enhance trust and compliance. The WHOIS data is not publicly available due to EURid privacy policies, which is typical for .eu domains and does not raise immediate concerns. Overall, Shopping.eu presents a legitimate and functional e-commerce aggregator platform with moderate security and privacy compliance. Strategic improvements in privacy policy transparency, security headers, and incident response contact information are recommended to strengthen its security posture and user trust.

M

Matador Network

matadornetwork.com

66

Matador Network is a well-established global media brand focused on modern adventure and travel content. Founded in 2006, it offers a rich portfolio of travel guides, original video series, and lifestyle content targeting modern adventurers and travelers. The website demonstrates a mature digital presence with professional design, clear navigation, and mobile optimization. The business model centers on content publishing and advertising revenue, positioning Matador as a niche leader in travel media. Technically, the site is built on WordPress, uses modern JavaScript libraries like jQuery, and integrates analytics and advertising technologies such as Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting and DNS services involve GoDaddy and Cloudflare, respectively, ensuring reliable infrastructure. Security posture is solid with HTTPS enforced and domain status protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms, but lacks explicit security policies or incident response contacts. Overall, the site is trustworthy, professional, and safe for general audiences.

Snipcabin is a small technology company offering a SaaS platform focused on organizing notes and links online. The service emphasizes ease of use with features such as tagging, nested collections, and one-click copying of notes. The website presents a professional and consistent brand image with clear navigation and mobile optimization. The business targets general users seeking productivity tools for note management and link organization. The company offers a 14-day free trial to attract new users without upfront payment requirements. Technically, the website uses modern front-end technologies including Bootstrap 4.6.2, jQuery 3.6.0, and Font Awesome 6.7.2, with Google Fonts for typography. The site is responsive and performs moderately well, though no CMS or hosting provider details are evident. SEO and accessibility features are basic but functional. No analytics or tracking scripts were detected, indicating a privacy-conscious approach or minimal data collection. From a security perspective, the site lacks explicit security headers and does not provide a security policy or incident response information. HTTPS status is unknown from the provided data but is recommended. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is limited; while a privacy policy and terms of service exist, there is no cookie consent mechanism or GDPR compliance indicators. Contact information is limited to a company email address, with no phone or physical address provided. Overall, Snipcabin presents as a legitimate small tech business with a focused product offering. The website is well designed and user-friendly but could improve in security posture and privacy compliance. Strategic recommendations include implementing security headers, adding cookie consent, and publishing incident response details to enhance trust and compliance.

U

Unyer

unyer.com

50

Unyer is a global organization founded in 2021 that brings together leading independent professional services firms under a Swiss Verein structure. The company focuses on providing seamless international legal and business consulting services by combining global expertise with local insights. Its member firms include well-known entities such as Fidal, KWR, Luther, and Pirola Pennuto Zei & Associati. The website presents a professional image with a modern design and clear navigation, targeting international businesses seeking expert advisory services. Technically, the site is built on WordPress 6.8, utilizing modern libraries like jQuery and Slick Carousel, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though security headers could be improved. Privacy compliance is limited due to the absence of explicit privacy and terms of service pages, though a cookie consent mechanism is present. The lack of WHOIS registration data is a notable concern, suggesting either privacy protection or an unregistered domain, which impacts trustworthiness. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

N

Nasscom Foundation

nasscomfoundation.org

63

Nasscom Foundation is a well-established non-profit organization focused on leveraging technology to drive social impact in India. Their programs span digital literacy, women entrepreneurship, skilling, social innovation, and inclusion, targeting marginalized communities and NGOs. The website reflects a mature digital presence with professional design, clear navigation, and active content updates. Technically, the site uses modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and some security best practices, though additional security headers could be implemented. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site projects high trustworthiness and business credibility despite the absence of WHOIS data due to privacy protection. Strategic recommendations include enhancing security headers, maintaining privacy compliance, and continuing to build trust through transparency and certifications.

A

AGA Service Company

sellallianzpartners.com

72

The website sellallianzpartners.com serves as a digital brochure portal for Allianz Partners insurance agents, enabling them to customize and distribute travel protection plan brochures efficiently. The platform targets insurance agents and agencies, providing a B2B service model that supports Allianz's market presence in the insurance sector. The site is branded consistently with Allianz Partners and operated by AGA Service Company, a known entity within the Allianz group. The domain is relatively new, created in 2022, aligning with the launch of this digital service. Technically, the website employs a WordPress CMS with standard web technologies including jQuery and OneTrust for cookie consent management. Hosting appears to be provided by GoDaddy, with Google Tag Manager integrated for analytics. The site is mobile-optimized and offers a good user experience, though SEO optimization is minimal. Accessibility features are basic but present. From a security perspective, the site uses HTTPS and enforces domain transfer protection. However, it lacks DNSSEC and explicit security headers, which are recommended for enhanced security. The cookie consent mechanism is robust and GDPR compliant, reflecting good privacy practices. No incident response or security policy pages were found, indicating room for improvement in transparency and security governance. Overall, the website is trustworthy and professionally maintained, with moderate technical maturity and a solid privacy compliance posture. Strategic improvements in security headers, DNSSEC, and SEO could elevate the site's security and visibility further.

R

RegFox

regfox.com

69

RegFox is a US-based technology company founded in 2013 that provides a powerful and affordable SaaS event registration platform. It targets event organizers across various sectors including conferences, workshops, camps, and corporate events. The platform offers extensive features such as a drag-and-drop event page builder, branding control, conditional logic, CRM, check-in apps, and integrations with third-party tools. RegFox positions itself as a market leader in affordable event registration software with transparent pricing and strong customer support. Technically, the website is built on Webflow CMS and employs a modern tech stack including jQuery, Google Tag Manager, and multiple analytics and marketing tools. The site is well-optimized for mobile and SEO, with excellent design and user experience. Security posture is good with HTTPS and modern captcha, though explicit security headers and policies could be improved. The WHOIS data is not publicly available, which slightly reduces trust but the business presence and customer reviews support legitimacy. Overall, RegFox demonstrates a mature digital infrastructure and a strong market position in the event registration space.

F

FanaticZine

fanaticzine.com

45

FanaticZine is a Sri Lanka-based digital agency specializing in web design, web development, mobile app development, and social media marketing. Established in 2008, the company emphasizes commitment and long-term client relationships, offering a range of services including software architecture, UI design, and full stack development. Their website reflects a professional and consistent brand image targeting businesses seeking digital transformation solutions. Technically, the site is built on WordPress with modern plugins and libraries, providing a moderate performance and good mobile optimization. Security measures include HTTPS and Google reCAPTCHA, but lack advanced DNS security and security headers. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the website is trustworthy and professional but could improve in security and privacy transparency.

S

SAARC Energy Centre (SEC)

saarcenergy.org

37

SAARC Energy Centre (SEC) is a regional organization established in 2005 under the SAARC framework to promote energy cooperation among South Asian countries. The website serves as an information and collaboration platform offering research publications, webinars, and resources focused on renewable energy, energy trade, and efficiency improvements. Technically, the site is built on WordPress with common plugins and moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and explicit privacy or security policies. WHOIS data is unavailable due to privacy or registry restrictions, slightly impacting trust. Overall, the site is professional and trustworthy with room for security and privacy improvements.

C

CSC

cscdbs.com

84

CSC Digital Brand Services is a leading enterprise-focused provider specializing in securing corporate digital assets, including domain management, brand protection, and fraud prevention. The company targets large organizations and Fortune 500 clients, offering comprehensive cybersecurity and domain security solutions. Their market position is strong, supported by professional branding, extensive service offerings, and a global presence. Technically, the website is built on Joomla CMS with modern libraries such as jQuery and Materialize CSS, hosted partly on Microsoft Azure Blob Storage. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. WHOIS data is missing, which raises transparency concerns but does not detract from the overall legitimacy indicated by the website content and external references. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, CSC presents a professional and trustworthy digital presence with room for minor security and transparency enhancements.

F

FazWaz Property Group

fazwazgroup.com

60

FazWaz Property Group operates a technology-driven real estate platform focused on Southeast Asia and global markets, providing property search, brokerage, and investment services. Founded in 2015, the company leverages integrated market data and digital tools to simplify property transactions for buyers, renters, and investors. Their market position is strengthened by multiple localized brands and a professional team with clear leadership. Technically, the website uses modern web technologies including jQuery, Google Analytics, and reCAPTCHA, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS implied and reCAPTCHA implemented, but lacks explicit security headers and incident response information. Privacy and cookie policies are comprehensive and GDPR compliant, hosted on a partner domain. The domain WHOIS data is missing, which raises concerns about registration transparency but does not detract significantly from the professional presentation and trust signals on the site. Overall, the website is well-designed, content-rich, and trustworthy for general audiences.

S

Stamul, LLC

userecho.com

74

UserEcho is a SaaS provider specializing in customer support solutions including feedback forums, helpdesk ticketing, knowledge bases, and live chat. The company positions itself as a leader in small-business help desk solutions, supported by over 27,000 customers and positive testimonials. The website is professionally designed, mobile-optimized, and uses modern web technologies and analytics tools such as Bootstrap, jQuery, PostHog, and Microsoft Clarity. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy and cookie policies are present and GDPR compliance is indicated. No direct contact emails or phone numbers are publicly listed, and no explicit security or incident response policies are found. Overall, the website is trustworthy, business-focused, and safe for general audiences.

J

JERA GmbH

jera-software.de

63

JERA GmbH is a specialized software company based in Germany focusing on developing interfaces for financial accounting systems tailored for e-commerce and multichannel businesses. They also provide ERP software licensing and support, particularly for mesonic WinLine. The company has a strong market position in the German-speaking region and was recently acquired by JTL-Software GmbH, enhancing its portfolio and market reach. Their website reflects a professional and active business with up-to-date news and partnerships. Technically, the site is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the website is trustworthy, GDPR compliant, and provides clear contact information and business details.

A

AFC Capital Partners

afccapital.org

64

AFC Capital Partners is a specialized investment firm focusing on sustainable and climate-resilient infrastructure projects across Africa. Leveraging the expertise and network of its parent company, Africa Finance Corporation (AFC), it mobilizes institutional capital through ESG-centric strategies to address Africa's infrastructure needs. The website reflects a mature digital presence with professional design, multi-language support, and comprehensive policy disclosures. Technically, the site uses modern libraries and frameworks, is hosted on AWS infrastructure, and implements key security headers and HTTPS. Security posture is strong with room for improvement in additional headers and incident response transparency. Overall, the site is trustworthy and aligns well with the business's professional image.

I

International Railway Industry Standard (IRIS)

iris-rail.org

63

The IRIS Portal website represents the International Railway Industry Standard, a globally recognized certification system for rail sector companies. The organization provides certification, audit, and training services aligned with ISO/TS 22163 standards. The website targets rail industry companies and certification bodies, offering resources such as certificate searches, news updates, and membership applications. The business is well-established, with a domain age dating back to 2005, indicating a mature presence in the railway certification market. Technically, the website employs a custom CMS with a technology stack including HTML5, CSS3, JavaScript, jQuery, and Google Maps API. The site is hosted via Hostbasket and uses HTTPS with a good SSL configuration. Performance and mobile optimization are moderate, with room for improvement in accessibility and modern framework adoption. The site includes interactive elements such as charts and maps, enhancing user engagement. From a security perspective, the website demonstrates basic best practices including HTTPS enforcement and CAPTCHA on login forms. However, DNSSEC is not enabled, and no explicit security headers were detected, representing areas for enhancement. No incident response or security policy pages are present, which could improve transparency and trust. No vulnerabilities or exposed sensitive data were found in the content. Overall, the website is professional, trustworthy, and focused on its niche market. It scores well on content quality and business credibility but could improve technical implementation and security posture. Strategic recommendations include enabling DNSSEC, adding security headers, updating libraries regularly, and publishing security and incident response policies to strengthen compliance and user trust.

R

Roima Intelligence

roimaint.com

65

Roima Intelligence is a professional B2B software company specializing in supply chain, manufacturing, and logistics digitalization solutions. The company offers a broad portfolio of products and expert services aimed at optimizing operations and sustainability. Their market position is strong with a global reach and recognized certifications such as ISO 9001:2015. Technically, the website employs modern JavaScript libraries, analytics tools, and a custom CMS platform, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the lack of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. Overall, the website is professional, trustworthy, and well-maintained, but domain registration inconsistencies should be investigated further.

R

Roima Intelligence

parttrap.com

65

Roima Intelligence is a professional B2B software and consulting company specializing in supply chain, manufacturing, and logistics digitalization solutions. The company offers a broad portfolio of products and expert services aimed at optimizing supply chain planning, automation, and smart factory systems with a strong emphasis on sustainability. Their market position is that of a leading provider with global reach and best-of-breed technology. The website is well-structured, multilingual, and designed to serve business clients in manufacturing and logistics sectors. Technically, the site uses modern JavaScript libraries, analytics tools, and a custom CMS, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a minor concern but does not detract significantly from the overall trustworthiness given the professional presentation and certifications. Overall, the website reflects a mature digital presence suitable for a medium-sized enterprise in the manufacturing technology sector.

E

Elvaco AB

elvaco.com

80

Elvaco AB is a Swedish company specializing in smart metering solutions for utilities and real estate sectors, offering a comprehensive portfolio of hardware and software products including remote meter reading, submetering, and indoor climate control. The company has a strong market presence with over 30 years of experience and more than ten million metering devices integrated globally. Their website demonstrates a mature digital infrastructure with modern JavaScript libraries, multi-language support, and embedded multimedia content. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but does not detract from the professional presentation and business credibility. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, making it a trustworthy digital presence for the company.