Security Directory

K

KAARISMA Recruitment GmbH

kaarisma.de

63

KAARISMA Recruitment GmbH is a specialized recruitment agency based in Berlin, focusing on headhunting and recruiting sales professionals for permanent positions. The company emphasizes harmony between candidates and their work environment, targeting both Fach- und Führungskräfte and companies seeking sales talent. Their market position is that of a niche, specialized recruitment service with a modern and professional online presence. Technically, the website is built on Kirby CMS, hosted on Hetzner infrastructure, and uses Matomo for analytics, indicating a moderate to advanced digital maturity. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit incident response policies are not evident. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear privacy and cookie policies. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and expanding contact information visibility.

M

Manuel Deutsch

manuel-deutsch.de

53

Manuel Deutsch operates as a freelance web developer and web designer based in Stuttgart, Germany, offering professional web development, SEO, UX, and frontend services primarily to agencies and businesses in the Stuttgart and Ludwigsburg regions. The website showcases a strong portfolio of client projects and testimonials, positioning Manuel as a trusted partner for digital agencies and companies seeking high-quality, customized web solutions. Technically, the site leverages modern frameworks such as Vue.js and React, uses Kirby CMS for content management, and is hosted on netcup servers, indicating a mature and modern digital infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the site lacks explicit security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the website is professional, well-designed, and trustworthy, but could enhance compliance and security transparency to further strengthen its risk profile.

C

Creatives for Climate

creativesforclimate.co

64

Creatives for Climate is a non-profit global creative ecosystem dedicated to climate justice by uniting over 7,000 professionals across 90+ countries. The organization focuses on reshaping narratives, preserving truth, and driving systemic change through education, business transformation, and creative partnerships. Their market position is that of a leading global network in the climate creative space, leveraging community and campaigns to accelerate a just transition. Technically, the website is built on Squarespace CMS, utilizing modern web technologies including Google Analytics, Tag Manager, reCAPTCHA, and Typekit fonts. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Hosting is managed by Squarespace, ensuring reliable uptime and SSL encryption. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms with opt-in/out capabilities. However, it lacks some advanced security headers and does not publicly disclose security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a privacy policy and cookie banner. Overall, the website presents a moderate risk profile with good business credibility and technical implementation but could improve security posture and privacy transparency. Strategic recommendations include enhancing security headers, publishing incident response policies, and providing clearer contact information.

C

Circular City – Zirkuläre Stadt e.V.

circular.berlin

57

Circular Berlin is a small non-profit organization dedicated to accelerating Berlin's transition towards a circular city. Their core activities include knowledge building, community development, education, and practical programs focused on the circular economy. The organization positions itself as a key local actor fostering sustainable urban metabolism through research and community engagement. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting circular economy practitioners and the broader community in Berlin. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, enhanced by plugins such as Yoast SEO and Matomo for analytics. Hosting and domain registration are transparent and consistent with the organization's profile. The site is moderately performant and well-optimized for mobile devices, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited domain status to prevent unauthorized transfers. However, DNSSEC is not enabled, and some recommended security headers are missing. The cookie consent mechanism is GDPR compliant, using CookieYes for user consent management. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt file is found. Overall, the website presents a trustworthy and professional digital presence for a non-profit organization. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy, and enhancing incident response readiness to further strengthen security posture and trust.

M

Mon magasin Vert

monmagasinvert.fr

69

Mon magasin Vert is a regional retail and e-commerce company specializing in gardening, pet supplies, and outdoor equipment, primarily serving the Brittany and Pays de la Loire regions in France. The website is built on a modern Magento platform with the Hyvä frontend theme, indicating a mature digital infrastructure. The company is part of the Eureden group, a known entity in the agricultural and retail sector. The site demonstrates good privacy compliance with clear cookie consent mechanisms and privacy policies in French, aligning with GDPR requirements. Security posture is strong with HTTPS enforced and security headers present, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

L

Lerecolteur

lerecolteur.fr

57

Le Recolteur is a small regional retail business focused on promoting local agricultural products through a circuit court model in Brittany, France. The website is built on the Wix platform and leverages Wix's Thunderbolt framework and associated technologies. The site presents a professional design with good content relevance for its target audience but lacks comprehensive privacy and cookie policies as well as explicit contact information. Security posture is good with HTTPS enforced and some security best practices observed, though additional security headers and policies could enhance protection. The absence of WHOIS data reduces domain trustworthiness, but the website content and technical setup appear legitimate. Overall, the site is functional and serves its business purpose but would benefit from improved privacy compliance and transparency.

P

Philippe Wagner

philippe-wagner.fr

47

Philippe Wagner is a French artisanal charcuterie producer specializing in 100% natural ingredients and traditional recipes. The company is part of a group including André Bazin and Wagner-Bazin WB, emphasizing quality French meat certified VPF – VBF. The website presents a professional image with good content quality, focusing on product offerings, recipes, and company news. Technically, the site is built on WordPress with Elementor and Yoast SEO, hosted by OVH, and uses modern plugins and Google Tag Manager for analytics. Security posture is adequate with HTTPS and domain protections but lacks explicit privacy and cookie policies and some security headers. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements include publishing privacy and cookie policies, enhancing security headers, and adding incident response information.

A

Aubret

aubret.com

56

Aubret is a well-established French manufacturer specializing in charcuterie products, notably lardons, with a strong market position as the leading European producer. The company operates multiple production units and serves a broad client base including culinary brands and consumers, with a significant presence in mainland France and the Antilles. The website reflects a professional digital presence built on WordPress, incorporating modern tracking and consent management tools. Security posture is good with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and enhanced security headers are recommended. Overall, the site is accessible, compliant with GDPR, and presents trustworthy business information.

G

Globus

globus.hu

55

Globus is a Hungarian company specializing in the manufacturing and retail of canned vegetable products, including peas, corn, beans, lentils, and vegetable mixes. The website serves as a product showcase and customer engagement platform, offering recipes, blog content, and career information. The company appears to hold a solid position in the Hungarian canned vegetable market with a medium-sized business model focused on retail and manufacturing. Technically, the website is built on Webflow CMS, leveraging modern web technologies such as Google Tag Manager and Swiper.js for analytics and user interface enhancements. The site is moderately optimized for performance and mobile devices, with a good user experience and clear navigation. Security posture is moderate, with HTTPS usage implied but lacking explicit security headers and incident response information. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance measures.

J

Jean Nicolas

jeannicolas1930.fr

54

Jean Nicolas is a cooperative brand specializing in the production and sale of preserved Breton vegetables, with a heritage dating back to 1930. The website targets consumers interested in quality regional food products and recipes, emphasizing local agricultural know-how and community engagement. The brand maintains a consistent and professional online presence with rich content including product showcases, recipes, and community news. Technically, the site is built on WordPress using WPBakery Page Builder and integrates multiple analytics and tracking tools such as Google Analytics, Matomo, and Microsoft Clarity, alongside cookie consent mechanisms to comply with privacy regulations. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical for commercial sites, but domain age cannot be verified. Overall, the site is well-structured, user-friendly, and trustworthy, with no signs of malicious activity or content blocking.

P

Paysan Breton

paysanbretonsurgeles.com

59

Paysan Breton Les Surgelés is a cooperative brand specializing in frozen vegetables and prepared vegetable mixes cultivated by a network of Breton farmer-cooperators. The brand emphasizes quality, freshness, and sustainable agricultural practices, targeting general consumers primarily in France. The website is built on Drupal 10 and uses modern web technologies with good mobile optimization and user experience. Privacy and cookie compliance are well implemented with a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced, though some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data for the domain is unusual and may indicate a registration or data retrieval issue, warranting further verification. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, serving as a credible digital presence for the cooperative brand.

The analyzed domain auth.ddfbackend.com is inaccessible, returning a 403 Forbidden error page with minimal HTML content. No metadata, scripts, forms, or business information are available, indicating the site is either restricted or not publicly accessible. The WHOIS lookup failed to find any registration data for the domain, suggesting it may be an internal subdomain or unregistered, which raises legitimacy concerns. Due to the lack of accessible content and registration data, a comprehensive business or security analysis is not feasible. From a technical perspective, the site lacks any detectable technologies, frameworks, or hosting information. The absence of security headers and SSL configuration details further limits the security posture assessment. No privacy, cookie, or terms of service policies are present, indicating non-compliance with common privacy regulations. The site does not provide any contact or incident response information. Overall, the security posture is poor due to the lack of accessible content and security best practices. The domain's legitimacy is questionable given the missing WHOIS data and blocked access. Strategic recommendations include enabling proper public access, implementing HTTPS with security headers, publishing privacy and cookie policies, and ensuring WHOIS registration data is accurate and publicly available to improve trust and compliance.

3

321 MED GmbH

321med.com

50

321 MED GmbH operates a specialized healthcare software platform focused on digitizing and automating patient reception and administrative workflows for medical practices, clinics, and healthcare centers primarily in Germany. The company offers a comprehensive SaaS solution that includes appointment management, digital check-in, AI-powered telephone assistance, and workflow automation, targeting a broad range of medical specialties. The website demonstrates a mature market position with over 3,500 healthcare providers and 5 million patients served, supported by strong media presence and user testimonials. Technically, the website employs a modern technology stack including jQuery, Usercentrics for consent management, Google Tag Manager, and Facebook Pixel for analytics and marketing. Hosting and DNS services involve Cloudflare and Cronon GmbH, with HTTPS enforced and cookie consent mechanisms in place. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in security headers and DNSSEC are recommended. From a security perspective, the site shows good practices such as GDPR compliance and encrypted connections but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, showing legitimacy and stability. Overall, 321 MED presents a professional, trustworthy, and well-structured digital presence aligned with its healthcare software business. Strategic enhancements in security transparency and DNS security would further strengthen its posture.

3

321 MED GmbH

321med4.com

50

321 MED GmbH operates a specialized healthcare software platform focused on digitizing and automating patient reception and administrative workflows for medical practices, clinics, and related healthcare facilities. The company has established a strong market presence in Germany with over 3,500 healthcare providers and 5 million patients served. Their flagship product, the Online-Rezeption, offers a comprehensive suite of features including appointment management, digital check-in, AI-powered telephone assistance, and workflow automation, tailored specifically for healthcare environments. The website is professionally designed, content-rich, and well-branded, reflecting a mature and credible business.

The website www.toughcoded.com is currently inactive and displays a Squarespace expired account placeholder page. There is no accessible business content, contact information, or policies available. The domain WHOIS query returned no registration data, indicating the domain is either unregistered or expired. Technically, the site uses Squarespace platform scripts but lacks any active content or security configurations. The security posture is minimal with no HTTPS or security headers detected. Overall, the site presents no trust or business credibility signals and is effectively non-operational.

L

Lemon Chili Games

superfarmingboy.com

56

Super Farming Boy is an indie game developed by Lemon Chili Games, offering a unique blend of action, puzzle, and farming simulation gameplay. The business targets casual and indie gamers across multiple platforms including Steam, Epic Games Store, Xbox, Android, and Nintendo Switch. The website serves as the official promotional and informational hub, providing demos, purchase links, and company contact information. Technically, the website is built on the Readymag platform, leveraging modern web technologies and standard marketing analytics tools. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the business's indie game market presence.

P

PCforAlla

pcforalla.se

63

PCforAlla is a well-established Swedish media website focused on computers, IT security, and technology news, offering guides, product tests, and subscription services. It operates under the parent company Foundry and targets consumers interested in technology with clear, pedagogical content in Swedish. The website demonstrates a mature digital infrastructure using WordPress CMS, enhanced SEO tools, and multiple advertising and analytics integrations. Security posture is solid with HTTPS enforcement and GDPR-compliant consent mechanisms, though explicit security headers and incident response information are not publicly detailed. The absence of WHOIS data for the queried subdomain reduces domain trust signals but does not detract from the site's professional presentation and content quality. Overall, PCforAlla presents a trustworthy and professional media platform with good technical and privacy compliance standards.

C

Computer Sweden Recruitment

csrecruitment.se

10

Computer Sweden Recruitment is a specialized recruitment firm focusing on IT and technology sectors, operating under the umbrella of Foundry, a leading tech media and marketing company. The website presents a professional and modern digital presence, leveraging the Teamtailor platform for recruitment and candidate management. The site is well-structured, mobile-optimized, and includes essential features such as cookie consent and privacy policy, reflecting a good level of digital maturity. However, the absence of WHOIS data for the domain raises questions about domain registration status, which should be monitored for legitimacy. Security posture is generally strong with HTTPS and cookie management, but lacks explicit security policies and incident response contacts. Overall, the site is trustworthy and professional, serving its target audience effectively.

H

Hireology

hireology.com

11

Hireology is a well-established technology company specializing in applicant tracking system (ATS) software solutions tailored for businesses to streamline their hiring processes. Founded in 2008, the company has positioned itself as a significant player in the recruitment technology sector, offering a B2B SaaS model targeting businesses seeking efficient recruitment management tools. The website reflects a professional and consistent brand image with clear navigation and relevant content aimed at its target audience. Technically, the website is built on WordPress with Elementor, hosted on Amazon AWS infrastructure, and employs modern web technologies including Google Fonts and Font Awesome. Performance is moderate with good mobile optimization and basic accessibility features. The site uses HTTPS with a good SSL configuration and implements several security headers, indicating a solid security posture. However, DNSSEC is not enabled, and there is no publicly available security policy or incident response information. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and security headers but lacks explicit vulnerability disclosure mechanisms and incident response contacts. Privacy compliance is strong with comprehensive privacy and cookie policies and GDPR compliance indicators. Business credibility is high, supported by clear contact information, professional content, and trust signals like SSL and legal documentation. Overall, Hireology's website is trustworthy, secure, and professionally maintained, with minor recommendations to enhance DNS security and publish security policies. The risk level is low, making it a reliable platform for its users and clients.

R

Renxo Europe Limited

lemonchiligames.com

58

LemonChili Games is a small indie video game development studio operating under Renxo Europe Limited, based in Ireland. The company focuses on character-driven games, including award-winning mobile shooters and a farming adventure game for multiple platforms. Their market position is niche, targeting indie game enthusiasts and mobile gamers. The website is built using Readymag, leveraging modern web fonts and analytics tools, but with basic design and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a privacy policy and terms of use present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

R

Registry Services, LLC

uipm.tv

42

UIPM TV is a specialized media streaming platform dedicated to broadcasting live and recorded events related to Modern Pentathlon and associated sports disciplines such as Biathle, Triathle, Laser Run, and Obstacle events. The platform targets sports enthusiasts and fans of these niche sports, providing official content likely authorized by the governing body UIPM. The website is built on WordPress using the Divi theme, integrating Dailymotion's API for video streaming and Matomo for analytics, reflecting a moderate level of digital maturity and technical infrastructure. Security measures include HTTPS, reCAPTCHA for form protection, and GDPR cookie consent mechanisms, although some security best practices like DNSSEC and security headers are missing. The domain registration is consistent and legitimate, registered with OVH sas and publicly associated with Registry Services, LLC. However, the site lacks explicit privacy policies, terms of service, and direct contact information, which impacts privacy compliance and business credibility scores. Overall, the site is functional, professionally designed, and serves its niche audience effectively but would benefit from enhanced security and compliance documentation.

The analyzed domain currently serves a Chrome internal error page indicating that the website content is inaccessible or blocked. No meaningful business or contact information is available on the page. The site lacks privacy, cookie, and terms of service policies, and no external links or social media profiles are present. Technically, the page is a browser error page with embedded Chromium scripts and styles, not a functional website. Security posture is minimal with no visible HTTPS or security headers. WHOIS data is privacy protected or unavailable, limiting trust assessment. Overall, the domain appears non-functional or blocked, resulting in a very low trust and quality score.

P

Provident Photography

providentphotos.com

45

Provident Photography is a small, locally focused photography business based in Hastings, Nebraska, specializing in business headshots, senior portraits, family and children photography, sports, and school photos. The website presents a professional image with clear service offerings and customer testimonials, positioning the company as a trusted local provider. The technical infrastructure is built on WordPress with modern plugins and libraries such as jQuery, Font Awesome, and Owl Carousel, supporting a good user experience and SEO optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information support legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

P

PREVIMED

kinderarzt-gilching.de

51

PREVIMED is a specialized pediatric and adolescent medical practice based in Gilching, Germany, focusing on comprehensive healthcare services for children from infancy through teenage years. The website serves as a health forum offering detailed information on pediatric care, prevention, diagnostics, and specialized treatments such as allergy and diabetes management. The practice positions itself as a modern, prevention-focused healthcare provider with a strong emphasis on supporting parents and children through various developmental stages. Technically, the website is built on WordPress using the Avada theme and integrates SEO and cookie consent tools, reflecting a moderate to advanced digital maturity. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, although some enhancements like a security.txt and incident response contacts could improve readiness. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its target audience. Strategic recommendations include enhancing security policies, improving accessibility, and adding explicit incident response information to further strengthen trust and compliance.

H

Hausarztzentrum Aubing

haz-aubing.de

53

Hausarztzentrum Aubing is a small local healthcare provider based in Munich, Germany, offering comprehensive general medical and internal medicine services. The website presents a professional image with clear descriptions of services, a team of doctors, and accessible contact information. The business targets families and individuals seeking primary care and preventive health services. Technically, the site is built on WordPress with common plugins and uses HTTPS, ensuring secure communication. However, there is room for improvement in security headers and privacy compliance mechanisms. The presence of third-party scripts for online reception introduces some risk that should be managed carefully. Overall, the site is functional, trustworthy, and serves its intended audience well.

E

Eureden

eureden.com

55

Eureden is a large agro-food cooperative group based in Brittany, France, serving thousands of farmer-cooperators and employees. The group operates multiple branches including agriculture, eggs, meat, frozen foods, long life products, and retail distribution, emphasizing sustainable and innovative practices. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, it uses WordPress with modern plugins and analytics tools, ensuring good performance and SEO. Security posture is solid with HTTPS and secure forms, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trustworthiness, but the overall business credibility is supported by consistent branding, social media presence, and detailed corporate information. Recommendations include enhancing security headers, publishing incident response info, and verifying domain registration details.

F

Fonds Le Saint

fondslesaint.org

42

Fonds Le Saint is a small non-profit organization based in Bourg-Blanc near Brest, France, focused on promoting nutrition education and making sports accessible to children with disabilities. Established in 2015, the foundation supports local community initiatives and collaborates with sports clubs and educational programs. The website reflects a clear mission and target audience, emphasizing social impact and community engagement. Technically, the website is built on Joomla CMS with UIkit framework and uses common web technologies such as jQuery and Google Analytics for tracking. The site is mobile-optimized and presents a professional design with good navigation and content relevance. However, there is room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks important security headers, which could be enhanced to improve protection against common web threats. Privacy and cookie policies are not present, indicating compliance gaps with GDPR and related regulations. WHOIS data is unavailable due to query restrictions, limiting domain trust verification. Overall, the website is functional and trustworthy for its intended audience but would benefit from improved security practices and privacy compliance to strengthen its digital maturity and user trust.

W

W'site - site de démo

charnel-fruits.fr

50

Charnel is a French retail brand specializing in offering a curated selection of tasty and enjoyable fruits, aiming to combine pleasure and daily well-being for a broad audience. The brand operates under the parent company Réseau Le Saint and maintains an active digital presence with social media channels and a content-rich website featuring recipes and product information. The website is built on a modern WordPress infrastructure utilizing Elementor and Yoast SEO, indicating a mature digital setup. Security measures include HTTPS enforcement and anti-spam protections, though some advanced security headers and explicit incident response policies are absent. Privacy compliance is well addressed with visible cookie consent and a privacy policy page. Overall, the site presents a professional and trustworthy front with room for improvement in security and contact transparency.

C

Colloredo-Mannsfeld spol. s r. o.

zamekdobris.cz

49

The website www.zamekdobris.cz represents the official online presence of the Colloredo-Mannsfeld Castle in Dobříš, Czech Republic. It serves as a cultural and tourism portal providing information about the castle, its events, and visitor services. The business operates in the hospitality sector, targeting tourists and cultural enthusiasts. The site is built on a modern WordPress platform using the Divi theme and integrates SEO best practices through the Yoast plugin. Google Analytics is employed for visitor tracking, indicating a moderate level of digital maturity. Security-wise, the site enforces HTTPS and uses updated libraries, but lacks explicit security headers and formal security policies. The absence of WHOIS data limits domain trust verification, though the website content and social media presence support its legitimacy. Privacy and cookie policies are not clearly found, suggesting room for compliance improvement. Overall, the site is professional and functional but would benefit from enhanced security and privacy transparency.

P

Posilujeme Česko

posilujemecesko.cz

52

Posilujeme Česko is a Czech nationwide non-profit initiative dedicated to supporting NGOs and their supporters by providing objective information, amplifying their voice, and fostering community engagement. The website serves as a platform for sharing stories, news, and resources aligned with sustainable development goals and is affiliated with the European Civic Forum and the United Nations. Technically, the site is built on WordPress with Elementor and uses common plugins for content management and user interaction. It is hosted likely by WEDOS, a Czech provider, and uses HTTPS with moderate performance and mobile optimization. Security posture is adequate but lacks some advanced headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is available via email and contact forms, with active social media presence. Overall, the site is trustworthy, professionally designed, and serves its non-profit mission effectively.

P

Praha Bike

prahabike.cz

56

Praha Bike is a small, established tourism business based in Prague, specializing in guided bike tours and bike rentals including city, mountain, and electric bikes. The company has been operating since 2002 and targets tourists and visitors seeking active sightseeing and outdoor experiences in Prague. The website is built on the Tilda CMS platform, leveraging modern web technologies such as jQuery and Google Fonts, and integrates Google Analytics for visitor tracking. The site is well-structured with clear navigation and multiple language options, supporting a good user experience and mobile responsiveness. Security-wise, the website enforces HTTPS and implements standard security headers, though it lacks a visible cookie consent mechanism and dedicated security or incident response policies. WHOIS data is unavailable or privacy protected, which limits domain registration trust analysis but is likely justified for this business type. Overall, the website presents a professional and trustworthy online presence suitable for its market niche.

Bajkazyl.cz is a small-scale community-focused website promoting city cycling culture and public space activities primarily in Czech cities such as Prague, Brno, Olomouc, and Hradec Králové. The site acts as a hub linking to related local cycling initiatives and Facebook pages, targeting urban cycling enthusiasts and local community members. The business model centers on cultural promotion and community engagement rather than commercial transactions. Technically, the website is simple, built with basic HTML5, CSS, and Alpine.js for minimal interactivity, hosted by Gransy. The site lacks modern CMS or advanced frameworks and shows basic mobile and accessibility features. Security posture is weak due to absence of HTTPS, security headers, and privacy policies, exposing the site to potential risks and compliance issues. No contact or business registration information is provided, limiting trust and credibility. Overall, the site is safe for general audiences but requires significant improvements in security, privacy compliance, and business transparency to enhance trust and professionalism.

C

Citybikes

citybikes.cz

58

Citybikes.cz is a Czech Republic-based e-commerce retailer specializing in urban bicycles, electric bikes, and related accessories. Established since 2006, the company targets urban cyclists, families, and seniors seeking sustainable and healthy transportation options. The website offers a broad catalog of products including folding bikes, children's bikes, and bike accessories, supported by repair and conversion services. Technically, the site is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook Pixel for marketing and analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy trust scores. Overall, the website is professional and trustworthy from a user perspective but would benefit from enhanced transparency on domain registration and security policies.

A

Auto*Mat

auto-mat.cz

46

Auto*Mat is a small, community-focused organization based in the Czech Republic dedicated to urban mobility and sustainable transportation solutions. The website serves as an informational and engagement platform for the local community and stakeholders interested in city transportation projects. The business operates primarily as a non-profit or advocacy group with a niche market position in transportation within the Czech Republic. Technically, the website is built on WordPress, hosted by GreenGeeks, and employs modern web technologies including Google Tag Manager, Facebook Pixel, and Google reCAPTCHA to enhance user experience and security. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics in place. Security posture is adequate with HTTPS enforced and some security best practices observed, though there is room for improvement in implementing advanced security headers and publishing a security policy. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the domain is legitimate, well-aged, and consistent with the business claims, indicating a trustworthy online presence.

G

GEMINI APPS sp. z o. o.

gemini.pl

60

Gemini.pl is a well-established Polish e-commerce platform specializing in health and beauty products, offering nearly 27,000 items across multiple categories such as health, pregnancy, child care, cosmetics, hygiene, and medical equipment. The company, GEMINI APPS sp. z o. o., founded in 1990, operates with a strong market presence in Poland, targeting general consumers seeking health and beauty products online. The website demonstrates a professional design with consistent branding and clear navigation, supporting a positive user experience and trustworthiness. Technically, the site leverages modern frameworks like Vue.js and Nuxt.js, combined with Tailwind CSS for styling and Swiper.js for interactive elements, hosted by home.pl S.A., a reputable Polish hosting provider. Mobile optimization and SEO practices are well implemented, although accessibility features are basic. Security posture is good with HTTPS enabled and no obvious vulnerabilities, but the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is weak due to missing explicit privacy and cookie policies, and no incident response or vulnerability disclosure information is published. Overall, Gemini.pl is a credible and professional online retailer with a solid technical foundation but should enhance privacy and security transparency to improve compliance and user trust.

KARLINSKI is a small, self-employed graphic design business based in Mecklenburg, Germany, offering a range of creative services including logo design, corporate identity, print and web design, and production support. The website serves as a professional portfolio and contact point, targeting local businesses, cultural institutions, and agencies. The technical infrastructure is based on WordPress with common plugins for SEO and contact forms, hosted on kasserver.com. While the site is functional and well-structured with good content quality and GDPR-compliant privacy and cookie policies, it uses outdated WordPress and plugin versions, which pose potential security risks. No advanced security policies or incident response mechanisms are evident. Overall, the site is trustworthy and professional but would benefit from technical updates and enhanced security measures.

P

Peene Kies GmbH

peenekies.de

45

Peene Kies GmbH is a medium-sized German company specializing in the extraction, processing, and supply of surface mineral raw materials, primarily serving the construction and energy sectors in Northeast Germany. The company positions itself as a market leader with a long history dating back to 1923. Their website reflects a professional business model focused on sustainable production of building materials and renewable energy solutions. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, indicating a mature digital presence with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and headers could be improved. No vulnerabilities or suspicious elements were detected. Overall, the website is trustworthy and compliant with GDPR, though direct contact details like emails and phone numbers are not explicitly listed, relying instead on contact forms. Strategic recommendations include enhancing security headers, publishing incident response information, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

M

mStart plus d.o.o.

mstart.hr

58

mStart plus d.o.o. is a well-established Croatian IT services company specializing in digital transformation, ERP implementations, IT infrastructure, security services, and payment solutions. With over 10 years of market presence, the company serves a diverse client base across retail, finance, hospitality, and technology sectors. Their strong partnerships with global technology leaders such as SAP, Microsoft, IBM, and Oracle, along with multiple certifications including ISO/IEC 27001 and PCI DSS, position them as a trusted regional technology provider. Technically, the website employs modern web technologies including jQuery, Alpine.js, and Google Tag Manager, with a custom CMS or framework. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Cookie consent and privacy compliance are robustly implemented, reflecting a mature digital infrastructure. From a security perspective, the company maintains a strong posture with HTTPS enforcement, ISO 27001 certification, and no visible vulnerabilities or exposed sensitive data. However, there is room for improvement in implementing additional security headers and publishing incident response contacts. The absence of a terms of service page is a minor compliance gap. Overall, the website and business present a high level of professionalism, trustworthiness, and compliance, with no indications of malicious or suspicious activity. Strategic recommendations include enhancing security headers, formalizing incident response disclosures, and improving accessibility features to maintain and elevate their security and compliance standards.

N

Nutricia

pelnaporcjaopieki.pl

66

Pełna Porcja Opieki is a specialized healthcare website dedicated to supporting the nutritional needs of sick children, particularly focusing on enteral and oral nutrition. The site is affiliated with Nutricia, a recognized brand in medical nutrition, and provides educational content, product information, and expert advice targeted primarily at parents and caregivers. The website maintains a professional presence with consistent branding and clear navigation, supporting its niche market position in Poland.

C

Apteka Internetowa Cefarm24: leki, kosmetyki, suplementy diety

cefarm24.pl

55

Cefarm24.pl is a Polish online pharmacy specializing in the sale of over-the-counter medicines, branded cosmetics, dietary supplements, and products for mothers and children. The website positions itself as a legal and trustworthy pharmacy, supported by a registration badge linking to the official Polish medical registry. The business model is e-commerce retail focused on healthcare products with competitive pricing and professional pharmaceutical care. The site targets a broad general audience in Poland seeking convenient online access to health-related products. Technically, the website is built on the AptusShop.pl CMS platform and integrates modern technologies such as Google Tag Manager for analytics and Ceneo for product reviews and tracking. The site is HTTPS secured and includes a cookie consent mechanism, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, with good navigation and content relevance. From a security perspective, the site uses HTTPS but lacks visible security headers, which could be improved to enhance protection against common web attacks. No sensitive data exposure or vulnerable libraries were detected. Privacy compliance is partial, with cookie consent present but no explicit privacy policy or terms of service pages found in the provided content. Contact information is limited to a contact form, with no direct emails or phone numbers visible. Overall, the website presents a legitimate and professional online pharmacy with a good trust level but could benefit from enhanced security headers, explicit privacy and terms documentation, and clearer contact details. These improvements would strengthen compliance and user trust while reducing potential security risks.

N

NUTRICIA Polska Sp. z o.o.

zywieniemedyczne.pl

63

Zywieniemedyczne.pl is a well-established Polish medical nutrition campaign website operated by NUTRICIA Polska Sp. z o.o. The site focuses on educating patients and caregivers about medical nutrition and provides resources, guides, and awareness campaigns. It enjoys a strong market position supported by reputable partners and a consistent brand presence. Technically, the website is built on WordPress with modern web technologies and integrates Google Analytics and Tag Manager with proper consent mechanisms. Security posture is good with HTTPS enforced, though some security headers could be improved. Privacy compliance is strong with accessible policies and cookie consent. Overall, the site is professional, trustworthy, and serves its target audience effectively.

N

NUTRICIA Polska Sp. z o.o.

posilkiwchorobie.pl

64

Posilkiwchorobie.pl is a professionally developed healthcare nutrition website operated by NUTRICIA Polska Sp. z o.o., focusing on medical nutrition for oncological and neurological diseases. The site provides trusted advice, recipes, and product information, targeting patients and caregivers in Poland. It maintains a consistent brand presence and offers e-commerce links for specialized nutrition products. Technically, the site is built on WordPress with modern frontend technologies and integrates Google Tag Manager and New Relic for analytics and monitoring. The website demonstrates good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response policies are not published. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained, supporting its role as a healthcare information and product platform.

A

Medicare.pl - Kliknij po zdrowie (dawniej allecco.pl)

allecco.pl

62

Medicare.pl is a large Polish online pharmacy platform offering a wide range of approximately 18,000 products including medicines, cosmetics, supplements, and medical devices. The business model combines e-commerce with physical pickup points in over 800 pharmacies across 364 cities, targeting general consumers seeking convenient access to health-related products. The website is built on the AptusShop CMS platform and leverages modern technologies such as Google Tag Manager, Cookiebot for consent management, and various marketing tools like Prefixbox and Edrone. Hosting and content delivery are supported by Amazon Cloudfront CDN, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and multiple security headers present, although explicit privacy policies and terms of service are not found in the provided content. WHOIS data is unavailable from the Polish NASK registry, which slightly reduces trust but is common for privacy-protected domains in this sector. Overall, the website demonstrates a professional and trustworthy e-commerce presence in the healthcare industry.

I

iPresso S.A.

ipresso.pl

63

iPresso S.A. operates a sophisticated Marketing Automation platform designed for professional marketers and enterprises across multiple industries including e-commerce, finance, education, media, and travel. The platform offers a wide range of features such as personalized marketing scenarios, multi-channel communication (email, WhatsApp, push notifications), and extensive integrations with popular services like Google Ads, AWS, and Zapier. The company positions itself as a reliable and certified provider with ISO 9001 and ISO 27001 certifications, emphasizing data security and GDPR compliance. The website reflects a mature digital presence with excellent content quality, user experience, and mobile optimization. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and advanced analytics tools like Piwik PRO and Microsoft Clarity. Security posture is strong with HTTPS enforcement and adherence to recognized standards, although explicit security headers could be further confirmed. Overall, the business demonstrates a high level of professionalism and trustworthiness, supported by client testimonials and visible certifications.

E

Ekonomski institut, Zagreb

eizg.hr

57

Ekonomski institut, Zagreb is a well-established scientific institute specializing in applied economic research with a history spanning over 85 years. The organization provides valuable economic analyses, indices, publications, and educational events targeting researchers, policymakers, and economic professionals primarily in Croatia. The website reflects a professional and consistent brand image with a focus on delivering research outputs and facilitating knowledge dissemination through seminars and workshops. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Google Analytics for user tracking. It is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and secure form submissions but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. Overall, the domain registration and WHOIS data align well with the institute's profile, indicating a legitimate and trustworthy entity.

H

Hrvatska gospodarska komora

hgk.hr

57

Hrvatska gospodarska komora (HGK) is a Croatian national chamber of commerce that serves as a professional and business organization representing the interests of its members before governmental and other bodies domestically and internationally. The website provides a range of services including information databases, entrepreneurial education, legal advice, business partner matchmaking, co-financing for trade fairs, and guidance on EU funding applications. HGK holds a strong market position as an authoritative institution within Croatia's business ecosystem. Technically, the website employs modern JavaScript libraries such as jQuery, Vue.js, and Summernote, along with CSS frameworks like Tailwind, indicating a moderate to good level of digital maturity. The site is mobile-optimized and includes accessibility features, though some improvements could be made in SEO and performance optimization. Security posture is generally good with HTTPS enforced and Google reCAPTCHA integration; however, the absence of security headers and explicit security policies suggests room for enhancement. Privacy compliance is limited due to missing explicit privacy and cookie policies, which could be a compliance risk. Overall, the website is professional and trustworthy, but strategic improvements in privacy disclosures and security practices are recommended.

H

Hrvatski zavod za zapošljavanje

hzz.hr

50

Hrvatski zavod za zapošljavanje (HZZ) is the Croatian national public employment service, providing a wide range of services including job seeker registration, employer job postings, career development tools, labor market statistics, and specialized programs for retirees and persons with disabilities. The website serves as a comprehensive portal for employment-related information and services targeted at Croatian citizens and employers. It maintains a strong market position as the official government agency responsible for labor market facilitation in Croatia. Technically, the website is built on WordPress with multilingual support via WPML, and uses modern web technologies such as Swiper.js for sliders, Complianz for GDPR cookie consent, and PushAlert for notifications. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Analytics and marketing tools are implemented with privacy compliance in mind. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent mechanisms. However, security headers are not explicitly detected in the HTML content, and no dedicated security or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The domain registration is consistent with the Croatian government entity, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving its public service mission effectively. Strategic improvements could include publishing explicit security policies, enhancing security headers, and adding vulnerability disclosure information to further strengthen trust and security posture.

Z

Zagrebački inovacijski centar

zicer.hr

58

ZICER (Zagrebački inovacijski centar) is a Croatian innovation center focused on supporting startups and entrepreneurs by providing incubation and business development services. The website positions itself as a regional innovation hub with a medium-sized organizational footprint, founded around 2021. The target audience includes innovators and startup founders seeking support and resources. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as jQuery and Google Fonts. It employs Facebook Pixel for marketing and tracking purposes, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS with a good SSL configuration but lacks some recommended security headers, which could be improved to enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the website is professional, trustworthy, and safe for general audiences, with a legitimacy score reflecting consistent domain registration and business information.

H

HAMAG BICRO

hamagbicro.hr

47

HAMAG BICRO is a Croatian government agency dedicated to supporting small businesses and investments. The agency provides comprehensive assistance to entrepreneurs throughout all stages of business development, from idea research and development to commercialization and market placement. The website reflects a national-level institution with a focus on fostering economic growth and innovation in Croatia. Technically, the website is built on WordPress with SEO optimization plugins, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and presents content in Croatian, targeting local entrepreneurs. Security posture shows room for improvement, with no detected security headers and missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the domain registration and WHOIS data align well with the agency's profile, confirming legitimacy. Strategic recommendations include enhancing security headers, adding privacy and cookie policies with consent mechanisms, and publishing clear contact and incident response information to improve trust and compliance.

H

Hrvatski zavod za norme

hzn.hr

60

Hrvatski zavod za norme (HZN) is an independent, non-profit public institution serving as the national standards body of the Republic of Croatia. The organization focuses on the development and promotion of standards, facilitating voluntary application of norms within Croatia, and ensuring access to international and European standards through its memberships. The website reflects a well-established institution with a clear mission to support normization activities and provide related services such as sales of Croatian standards and membership management. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Swiper.js, with good mobile optimization and accessibility features. It integrates Google Analytics for user tracking and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. The site is served over HTTPS with no visible security misconfigurations, although some security headers could be improved. From a security perspective, the site demonstrates a mature posture with encrypted communications, privacy compliance, and no evident vulnerabilities or exposed sensitive data. However, it lacks explicit incident response or vulnerability disclosure information, which could enhance trust and preparedness. The WHOIS data is privacy protected due to GDPR, which is justified for this type of governmental-related entity, though it limits transparency. Overall, the website is professional, trustworthy, and well-maintained, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining compliance with evolving privacy regulations to further strengthen security and trust.