Security Directory

R

Radůzy Recepty.com

raduzyrecepty.com

37

Radůzy Recepty.com is a Czech-language culinary website offering over 3600 recipes, cooking ideas, inspirations, contests, and step-by-step cake decoration guides. It targets cooking enthusiasts primarily in the Czech Republic, providing a niche content platform with community discussion features and user-generated content sections. The business model appears to be content-driven with monetization through advertising and affiliate partnerships. Technically, the site is built on the Estranky.cz CMS platform, utilizing legacy JavaScript libraries such as jQuery 1.12.4 and Google services for analytics and advertising. While the site is accessible and content-rich, it lacks modern technical optimizations and comprehensive privacy or security policies. Security posture is moderate with outdated libraries and missing security headers, and WHOIS data is unavailable, raising some legitimacy concerns. Overall, the site provides valuable culinary content but would benefit from technical and security improvements.

SVATEBNÍ KATALOG, s.r.o. operates a Czech-language wedding directory and informational portal focused on providing comprehensive wedding planning resources, service listings, and articles for couples and related parties in the Czech Republic. The website has a niche market position with over 10 years of claimed presence, serving a small to medium audience interested in wedding services. Technically, the site uses standard web technologies including jQuery, Google Maps API, and Google Analytics, with basic mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, indicating room for compliance improvement. The absence of WHOIS data reduces domain trustworthiness, but the business information and content quality support legitimacy. Overall, the site is functional, relevant, and safe for general audiences, though it would benefit from enhanced security and privacy measures.

L

LDEkonom

beautyfootcup.cz

36

Beauty Foot Cup Czech is a niche event organizer specializing in professional pedicure competitions within the Czech Republic. The website promotes the competition, its vision, sponsors, and related information targeting professional pedicurists and interested public. The business operates on a small scale with sponsorship support and aims to elevate pedicure standards and awareness. Technically, the site uses legacy JavaScript libraries like jQuery 1.11 and jQuery UI, along with Swiper for sliders and Google Analytics for tracking. The site is moderately optimized for performance and mobile but lacks advanced accessibility and SEO features. Security posture is moderate with HTTPS usage and anonymized Google Analytics tracking, but no visible security headers or modern security practices. The absence of privacy, cookie, and terms policies is a compliance gap. WHOIS data is unavailable, raising concerns about domain registration legitimacy, although the site content and sponsors suggest a legitimate operation. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and domain legitimacy verification.

S

SK RN Hradec Králové, z. s.

pivnibehy.cz

40

Pivní běhy is a Czech event organizer specializing in a unique series of running races combined with beer tasting and brewery tours. The business targets running enthusiasts, nature lovers, and beer aficionados, offering both adult and children's events with a strong community and cultural focus. The website is professionally designed using WordPress with a modern tech stack including jQuery, Bootstrap, and various tracking tools. While the site is functional and visually appealing, it lacks critical privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS usage but missing security headers and incident response information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

G

GlaxoSmithKline (GSK)

gsk.com

74

GlaxoSmithKline (GSK) is a leading global healthcare company specializing in pharmaceuticals, vaccines, and consumer healthcare products. The company maintains a professional and comprehensive website targeting healthcare professionals, investors, and consumers worldwide. Their market position is strong, supported by a broad portfolio of products and subsidiaries such as ViiV Healthcare and Stiefel Laboratories. The website content is rich, well-structured, and professionally presented, reflecting the company's enterprise scale and global reach. Technically, the site leverages modern frameworks like Nuxt.js and Vue.js, with good performance and mobile optimization. Security posture is robust with HTTPS enforcement and strong security headers, although explicit security policy and incident response information are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity.

F

Fork CMS

fork-cms.com

50

Fork CMS is an open source content management system designed to provide a user-friendly interface, powerful apps, and customizable themes. It targets developers, marketers, and businesses seeking an open source CMS solution. The website presents a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern JavaScript libraries such as jQuery and integrates Google Analytics and Facebook SDK for tracking. The CMS itself is Fork CMS, hosted by Hostbots, and the site is mobile optimized with good accessibility and SEO practices. Security-wise, the site enforces HTTPS and shows no exposed sensitive data or vulnerable libraries, but lacks security headers and explicit privacy or cookie policies. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the active and professional website presence.

E

EVENT media s.r.o.

neonrun.cz

44

Neon Run, operated by EVENT media s.r.o., is a well-established Czech event organizer specializing in themed night running events such as the Mizuno Neon Run. The company has been active since 2014 and maintains a professional online presence with clear event information, partner listings, and registration links. Their target audience includes runners and sports enthusiasts primarily in the Czech Republic. Technically, the website uses modern web technologies including Google Tag Manager, Facebook Pixel, and a cookie consent mechanism, hosted on VAS Hosting. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced and cookie consent is implemented, but the absence of explicit security headers and incident response policies suggests room for improvement. Overall, the website is trustworthy and compliant with GDPR, though it lacks a visible terms of service and vulnerability disclosure policy.

E

EVENT media s.r.o.

night-run.cz

46

NN Night Run is a well-established event organization company based in the Czech Republic, specializing in organizing experiential night running events across multiple cities. The company operates a medium-sized business model focused on community engagement, charity, and sports entertainment, supported by a strong network of partners and sponsors. Their website reflects a professional and consistent brand image with comprehensive event information and user engagement features such as registration and race results.

B

Bruxelles Formation

bruxellesformation.be

63

Bruxelles Formation is the official public francophone service responsible for professional training in the Brussels region. The organization offers free training programs targeted primarily at job seekers and provides services to employers for staff development and recruitment of trained talents. The website reflects a well-established public entity with a clear mission and a strong regional presence. The digital infrastructure is based on WordPress with modern plugins for SEO, GDPR compliance, and analytics, indicating a mature technical setup. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the site is professional, trustworthy, and serves its public service mandate effectively.

A

Aviato

aviato.be

49

Aviato is a specialized employment platform focused on providing quality and sustainable job opportunities at Brussels Airport. It serves both job seekers and employers by offering job listings, internships, career advice, and organizing events such as job fairs and info sessions. The website is professionally designed using Drupal 10, with modern web technologies and good mobile optimization. It integrates analytics and marketing tools like Google Analytics and Facebook Pixel, and complies with GDPR through a comprehensive privacy and cookie policy. Security posture is adequate with HTTPS and secure form handling, though security headers could be improved. WHOIS data is restricted, but the website's content and social media presence indicate a legitimate and trusted organization within the transportation sector in Belgium.

Actiris is the official public employment service for the Brussels-Capital Region, providing a comprehensive platform for job seekers including job offers, training, coaching, and employment aid. The website is professionally designed, multilingual, and targets citizens seeking employment in Brussels. It serves as a key regional government agency with a strong market position and a broad range of services to support employment and training. The technical infrastructure leverages modern web technologies including Google Analytics, Google Tag Manager, and embedded YouTube videos, with evidence of a CMS likely Umbraco. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though it lacks explicit security policies or incident response information. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements.

D

Drips

drips.fr

42

Drips.fr is a French niche media website dedicated to graffiti culture, providing news, reports, photos, and videos. Supported by well-known graffiti brands Montana Colors, Grog, and Allcity.fr, it targets graffiti enthusiasts primarily in France. The site uses WordPress CMS with modern web technologies including Bootstrap, jQuery, and Owl Carousel, and integrates social media feeds and analytics tools. The website is well-structured with good content quality and SEO optimization, though it lacks some privacy compliance features such as cookie consent mechanisms. Security posture is moderate with HTTPS enabled but missing security headers. WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the website's sponsorships and content quality support its credibility. Overall, the site is a valuable resource for its audience but could improve in privacy and security compliance.

P

Porn Inspector Review — Guiding you to worthy porn

porninspector.com

59

PornInspector.com is an adult content review website specializing in providing detailed and impartial reviews of pornographic websites, including sample videos, galleries, and user opinions. The site targets an adult audience seeking trustworthy guidance in the chaotic online erotica market. It operates primarily as a content review and affiliate referral platform, offering discounts and curated recommendations. Technically, the site uses standard web technologies including Google Analytics, Google Tag Manager, AddThis social sharing, and Twitter widgets. The site is accessible, loads quickly, and has a basic mobile optimization level. Security posture is moderate with HTTPS enabled but lacks important security headers and explicit incident response or security policies. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism or GDPR indicators. Business credibility is limited by the absence of WHOIS registration data and lack of visible contact information, which reduces trustworthiness despite professional content presentation.

D

DOMOPLAN SICAV, a.s.

domoplanfund.eu

39

DOMOPLAN SICAV, a.s. operates the Domoplan Fund, an investment fund specializing in premium residential real estate development primarily in the Czech Republic. The fund targets qualified investors seeking stable, low-risk investment opportunities with above-standard returns. The company emphasizes portfolio diversification, guarantee mechanisms, and transparency through webcams and detailed project information. Technically, the website employs modern JavaScript libraries and frameworks, including jQuery, Barba.js, and Highcharts, with a cookie consent mechanism and Google Analytics integration. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent. Overall, the website is professional, trustworthy, and well-structured, supporting the company's market position as a reputable real estate investment fund.

F

FIPOX a.s.

fipox.com

60

FIPOX a.s. is an established investment group primarily focused on real estate and financial consulting sectors, operating mainly in the Czech Republic with a portfolio of brands such as MyResorts, QPD, Stoix, Domoplan, and THIERRA. The company targets investors and partners interested in sustainable and innovative real estate projects and comprehensive financial services. Their business model combines investment with operational management of their brands, emphasizing long-term value creation. The website reflects a professional corporate presence with clear branding, contact information, and investor-focused content. Technically, the website employs a modern JavaScript stack including jQuery, GSAP, ScrollMagic, Owl Carousel, and analytics tools like Google Analytics, Microsoft Clarity, and Smartlook. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. However, no CMS or hosting provider details are evident, and some security headers appear missing. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, FIPOX presents a credible and professional business front with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

S

Sunzil

sunzil.com

49

Sunzil is a well-established company specializing in photovoltaic solar energy solutions, with a 40-year presence in French overseas territories. The company develops, constructs, and operates solar power plants for both residential and professional clients, offering turnkey solutions and consulting services. The website reflects a mature digital presence with comprehensive content, customer testimonials, and recognized certifications such as ISO 9001 and ISO 14001, reinforcing its market credibility. Technically, the website is built on WordPress with WooCommerce and Gravity Forms, leveraging modern JavaScript libraries and analytics tools including Google Analytics and Facebook Pixel. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms, indicating a good level of digital maturity and privacy awareness. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security policies and incident response information. Some JavaScript errors related to WooCommerce payment gateway dependencies were noted, which could affect user experience. The absence of WHOIS domain registration data raises concerns about domain legitimacy, although the website content and certifications suggest a legitimate business. Overall, Sunzil presents a professional and trustworthy online presence with room for improvement in security transparency and domain registration clarity.

H

Helexia Agri

helexia-agri.com

45

Helexia Agri is a French company specializing in the development, construction, and operation of photovoltaic agricultural hangars and roof renovations. Established since 2006, it serves farmers across France by offering new hangars or roof renovations in exchange for the exploitation of their roofs for solar energy production. The company is positioned as a specialist in agricultural photovoltaic infrastructure with a medium-sized footprint and affiliation to the Helexia Group. The website is professionally designed using WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and WHOIS transparency are lacking. Overall, the site is trustworthy and business credible but would benefit from improved transparency in domain registration and privacy policies.

SYSTEKO is a regional leader in solar energy solutions operating primarily in the French overseas territories of Guadeloupe, Martinique, and Guyane. The company focuses on leasing rooftop space for solar energy production and serves both professional and individual clients. Their market position is strong, supported by local presence, partnerships with financial institutions, and a workforce of over 60 employees. The website reflects a professional and consistent brand image with clear business messaging and service offerings. Technically, the website is built on WordPress with Elementor and uses modern web technologies including jQuery, Google Analytics, and HubSpot forms. The site is mobile-optimized and SEO-friendly, with structured data enhancing search engine visibility. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, indicating awareness of privacy regulations. However, security headers are not evident, and no explicit security or incident response policies are published. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy of the business. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security headers, privacy policy publication, and WHOIS transparency would enhance trust and compliance.

I

IRISOLARIS : Promoteur de la transition énergétique

irisolaris.com

63

IRISOLARIS is a French company specializing in photovoltaic and renewable energy solutions, positioning itself as a major player in France's energy transition sector. The website reflects a mature business with a domain registered since 2008, consistent with its market presence. The company focuses on promoting renewable energy projects, particularly solar energy, targeting a general audience interested in sustainable energy solutions. Technically, the website is built on WordPress with modern plugins and integrates multiple analytics and marketing tools such as Google Analytics, Google Ads, Facebook Pixel, and HubSpot, indicating a digitally mature infrastructure. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features.

N

NOVAFRANCE Energy

novafranceenergy.fr

56

NOVAFRANCE Energy is a French company specializing in the development of renewable energy projects, particularly photovoltaic solutions tailored for agricultural and parking infrastructures. The company positions itself as an innovator in the renewable energy sector, offering services such as photovoltaic animal shelters, agricultural hangars, agrivoltaic parks, and parking canopies. Their business model focuses on collaborating with clients to develop sustainable energy solutions financed through green electricity. The website reflects a professional and consistent brand image, targeting businesses and agricultural stakeholders interested in renewable energy adoption. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by SEO and analytics plugins such as Yoast SEO and MonsterInsights. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. The presence of cookie consent mechanisms indicates attention to privacy compliance, although explicit privacy and terms of service pages were not detected. From a security perspective, the website enforces HTTPS and includes Google reCAPTCHA scripts to protect forms. However, explicit security headers are not clearly detected, and no published security policies or incident response contacts are available. The absence of WHOIS data due to privacy protection is typical for small businesses and does not raise immediate concerns. Overall, the security posture is adequate but could be improved by implementing additional headers and publishing security-related information. The overall risk assessment suggests a legitimate and professionally managed website with moderate security and privacy compliance. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and improving contact transparency to strengthen trust and compliance.

G

GIRASOLE ENERGIES - Producteur indépendant d'électricité photovoltaïque

girasole-energies.com

64

GIRASOLE ENERGIES is an independent photovoltaic electricity producer operating primarily in France, offering a range of solar energy solutions including rooftop installations, parking canopies, agricultural hangars, and ground-mounted solar power plants. The company targets diverse audiences such as farmers, local communities, industrial and tertiary sectors, and real estate developers. Founded in 2022, GIRASOLE ENERGIES positions itself as a key player in the renewable energy transition with a growing portfolio of projects and developments. Technically, the website is built on WordPress using Elementor and Divi popup plugins, integrating multiple marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted under the registrar IONOS SE with standard domain protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Security posture is moderate with HTTPS enabled but missing some best practices. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is professional and informative but would benefit from improved privacy and security practices to enhance trust and compliance.

G

Gérontopôle Autonomie Longévité des Pays de la Loire

gerontopole-paysdelaloire.fr

57

The Gérontopôle Autonomie Longévité des Pays de la Loire is a regional non-profit organization dedicated to improving the quality of life for elderly people in the Pays de la Loire region of France. It acts as a network of stakeholders focused on aging well, offering services such as training, research, economic development in the silver economy, and support for territorial policies. The website is professionally designed using Drupal CMS and integrates modern technologies including Google Analytics, Google Tag Manager, and reCAPTCHA for security. Privacy and cookie consent mechanisms are well implemented, reflecting GDPR compliance. However, the absence of WHOIS data raises concerns about domain registration status, which should be verified to ensure legitimacy. Security posture is generally good with HTTPS and secure forms, but could be improved by adding security headers and publishing incident response policies. Overall, the site presents a trustworthy and professional digital presence for a specialized healthcare non-profit.

L

Le Comptoir des Solutions

comptoirdessolutions.org

47

Le Comptoir des Solutions is a French non-profit association dedicated to cataloging and promoting innovations that assist people with disabilities. The organization operates a free and accessible web platform that regularly updates with new innovations, news, and interviews related to disability support technologies and solutions. Their target audience includes individuals with disabilities, caregivers, professionals, and partner organizations. The platform is supported by notable partners such as Crédit Agricole, Microsoft, and IFP Energies nouvelles, enhancing its credibility within the niche market of disability innovation. Technically, the website is built on WordPress and leverages modern web technologies including Bootstrap for responsive design, Swiper.js for interactive sliders, and multiple analytics tools such as Google Analytics, Google Tag Manager, and Plausible Analytics. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience and effective content delivery. From a security perspective, the site enforces HTTPS and uses secure forms for data collection. However, it lacks several recommended security headers and does not provide a cookie consent mechanism, which may impact GDPR compliance. The absence of WHOIS data limits domain trust analysis, but the presence of partner endorsements and consistent branding supports legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for its mission, with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing security headers, adding cookie consent, publishing a security policy, and establishing a vulnerability disclosure process to enhance trust and compliance.

C

CS GROUP

csgroup.eu

58

CS GROUP is a medium-sized European technology company specializing in the design, integration, and operation of intelligent, secure, and interconnected information and communication systems. The company serves critical sectors including defense, space, aeronautics, transport, energy, and finance. Their business model focuses on delivering operationally oriented ICT solutions with a strong emphasis on cybersecurity, data intelligence, and industrial digitalization. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Revolution Slider, ensuring good SEO and user experience. The site is mobile-optimized and uses HTTPS with cookie consent mechanisms, indicating a mature digital infrastructure. Analytics tools like Google Analytics and Golden Bees are used for user tracking and marketing. From a security perspective, the site enforces HTTPS and has implemented cookie consent, but lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS registration data is a concern and reduces overall trustworthiness. Overall, CS GROUP's website is professional, secure, and compliant with privacy regulations, serving a specialized and critical market segment. Strategic improvements in security transparency and domain registration verification are recommended to enhance trust and compliance.

D

Dorint.cz

dorint.cz

44

Dorint.cz is a well-established Czech company specializing in luxury interior design and wellness solutions, including premium kitchens, interiors, and private wellness and SPA installations. With over 30 years of experience, the company positions itself as a premium service provider targeting individuals and families seeking high-end, bespoke home environments. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern analytics and marketing tools such as Google Tag Manager, Google Analytics, and Smartlook. Security practices are robust, featuring HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates professionalism, compliance with GDPR, and a strong market position in the luxury real estate and hospitality sector.

N

National Scleroderma Foundation

scleroderma.org

59

The National Scleroderma Foundation is a well-established non-profit organization dedicated to advancing research, raising awareness, and providing support for individuals affected by scleroderma. The website reflects a mature digital presence with comprehensive educational resources, support group information, and event management capabilities. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and no obvious vulnerabilities, though improvements such as enabling DNSSEC and publishing security policies would enhance trust. Privacy compliance is limited by the absence of explicit privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the site is professional, trustworthy, and serves its target audience effectively.

R

Raynauds Association

raynauds.org

57

The Raynauds Association is a non-profit organization dedicated to providing support and education to individuals suffering from Raynaud's Phenomenon. The website serves as an informational and community resource, targeting affected individuals and caregivers. The organization appears to have a niche market position focused on healthcare support and education. Technically, the website is built on WordPress using the Avada theme and WooCommerce plugin, indicating a modern CMS platform with e-commerce capabilities, although no direct sales were evident in the analyzed content. The site employs Google Analytics and Google Tag Manager for visitor tracking and SEO optimization via Yoast SEO plugin. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is weak due to missing explicit privacy and cookie policies. WHOIS data is incomplete and malformed, limiting domain trust verification, but the website content and social media presence support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

L

Lymphatic Education & Research Network

lymphaticnetwork.org

50

The Lymphatic Education & Research Network (LE&RN) is a well-established nonprofit organization dedicated to fighting lymphedema and lymphatic diseases through education, research funding, advocacy, and community support. The website serves as a comprehensive resource hub for patients, researchers, and healthcare professionals, offering access to educational materials, research grants, clinical trial information, and community engagement opportunities. LE&RN holds a strong market position as a trusted leader in lymphatic disease awareness and research advocacy within the healthcare nonprofit sector. Technically, the website employs a mature technology stack including jQuery, Modernizr, Font Awesome, Google Analytics, and Google Tag Manager, hosted via GoDaddy with domain control nameservers. The site is mobile optimized with good SEO practices and moderate performance. However, it lacks some modern security headers and a cookie consent mechanism, which are recommended for enhanced privacy compliance and security. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. It integrates third-party analytics and fundraising tools responsibly but could improve by implementing additional security headers and publishing formal security policies. The WHOIS data confirms domain legitimacy and consistency with the organization's history, supporting a high trustworthiness rating. Overall, LE&RN's website is professional, content-rich, and trustworthy, serving its audience effectively. Strategic improvements in privacy compliance and security posture would further strengthen its digital maturity and user trust.

G

GBS/CIDP Foundation International

gbs-cidp.org

60

GBS/CIDP Foundation International is a well-established non-profit organization dedicated to supporting individuals and families affected by Guillain-Barré syndrome, chronic inflammatory demyelinating polyneuropathy, and related neurological conditions. The foundation provides educational resources, funds research grants, advocates for patient needs, and fosters community engagement through events and volunteer programs. It holds a strong market position as a leading global non-profit in its healthcare niche, supported by trust indicators such as a Charity Navigator Four Star rating and membership in the National Health Council. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates multiple third-party analytics and marketing tools including Google Analytics, Facebook Pixel, and ShareThis. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks a visible cookie consent mechanism and dedicated security or incident response policies, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic enhancements in privacy compliance and security transparency would further strengthen its posture and user trust.

F

Fabry Support & Information Group (FSIG)

fabry.org

59

Fabry Support & Information Group (FSIG) is a well-established non-profit organization focused on supporting patients and families affected by Fabry disease. The organization provides educational resources, advocacy, financial assistance information, and community engagement through events and patient stories. Their website reflects a professional and consistent brand presence with clear contact channels and active social media integration. Technically, the site is built on WordPress with a modern theme and plugins, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is a notable gap, with no visible privacy or cookie policies, which should be addressed to meet regulatory standards. Overall, FSIG demonstrates strong business credibility and trustworthiness within its healthcare non-profit sector.

The US Hereditary Angioedema Association (HAEA) is a specialized non-profit organization dedicated to supporting individuals affected by Hereditary Angioedema (HAE), a rare genetic condition. The organization provides education, advocacy, research support, and access to treatment resources, positioning itself as a leading voice in the HAE community within the United States. Their website reflects a strong commitment to patient and caregiver engagement through comprehensive resources, community stories, and advocacy opportunities. Technically, the website employs a modern and stable technology stack including Bootstrap, jQuery, Handlebars.js, and Google Analytics for tracking. Hosting utilizes Amazon S3 for media assets, indicating a reliable infrastructure. The site is mobile-optimized with good navigation and SEO practices, though accessibility features could be enhanced. Security is solid with HTTPS enforced, but the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and protection. From a security perspective, the site shows no signs of vulnerabilities or malicious content. However, the lack of visible security policies, incident response contacts, and vulnerability disclosure mechanisms indicates a moderate maturity level in security governance. The WHOIS data is unavailable due to query failure or privacy protection, but the website content and domain usage strongly support legitimacy and trustworthiness. Overall, the HAEA website is a professional, trustworthy, and well-maintained platform serving a niche healthcare advocacy role. Strategic improvements in privacy compliance, security headers, and transparency around security policies would further enhance its risk posture and user trust.

Hope Charities operates as a non-profit organization dedicated to supporting individuals and families affected by hemophilia and related chronic illnesses. The organization provides financial assistance, educational resources, emotional support, and advocacy services to its target audience. The website reflects a focused mission with clear calls to action, event promotion, and community engagement through social media and podcasts. The organization maintains partnerships with healthcare-related sponsors, enhancing its credibility and outreach. Technically, the website is built on the Weebly platform, utilizing common web technologies such as jQuery, Google Analytics, and Facebook Pixel for tracking and analytics. The site is mobile-optimized and includes multimedia content such as videos and podcasts, contributing to a positive user experience. However, the use of an outdated jQuery version and minimal security headers indicate areas for technical improvement. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, which are positive indicators. Nonetheless, the absence of comprehensive security headers and the outdated JavaScript library present potential vulnerabilities. Privacy compliance is basic, with a privacy policy page present but no visible cookie consent mechanism. Contact information is clearly provided, supporting business credibility. Overall, the website presents a trustworthy and professional front for a small healthcare non-profit organization. Strategic improvements in security practices and privacy compliance would enhance the site's resilience and user trust.

A

American Lung Association

lung.org

69

The American Lung Association is a leading non-profit organization dedicated to improving lung health and preventing lung disease through education, advocacy, research funding, and community support. The website reflects a mature and professional digital presence with comprehensive content targeting patients, caregivers, healthcare professionals, and advocates. It offers multiple engagement channels including donations, events, and support services. Technically, the site employs modern web technologies and analytics tools, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement and use of CAPTCHA for form protection, though explicit security headers and a published security policy are absent. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is trustworthy and authoritative in its domain, though WHOIS data is unavailable due to query issues, which slightly impacts domain legitimacy assessment.

The Restless Legs Syndrome Foundation is a specialized non-profit organization dedicated to supporting individuals affected by Restless Legs Syndrome through education, research funding, and community support. The website serves as a comprehensive resource hub offering information on diagnosis, treatment, support groups, and opportunities for involvement such as donations and memberships. The foundation positions itself as a leading authority in the RLS community with a clear mission and strong trust signals including certifications and testimonials. Technically, the website is built on the Blackbaud NetCommunity platform using ASP.NET WebForms and modern JavaScript libraries like jQuery. It integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized, accessible, and well-structured, providing a positive user experience. Hosting appears to be managed by Blackbaud, a reputable provider for non-profits. From a security perspective, the site enforces HTTPS and uses secure form handling mechanisms. However, it lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced security and privacy compliance. WHOIS data is unavailable due to privacy protection, which is common and justified for non-profits. No signs of blocking or WAF challenges were detected, indicating full accessibility. Overall, the website demonstrates a strong security posture and professional digital presence suitable for its non-profit healthcare mission. Strategic improvements in privacy compliance and security headers would further enhance trust and regulatory adherence.

C

Chronically Capable

wearecapable.org

51

Chronically Capable is a specialized online platform dedicated to connecting over 133 million Americans with chronic illnesses to employers offering flexible, remote work opportunities. The platform emphasizes inclusivity, community support, and employer partnerships to facilitate meaningful employment for individuals with disabilities. Its market position is niche but impactful, supported by testimonials and press coverage from reputable sources such as Forbes and Fast Company. Technically, the website leverages modern web technologies including Webflow CMS, Google Analytics, Facebook Pixel, and other marketing and analytics tools, ensuring a robust digital presence. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website demonstrates a professional, trustworthy, and user-friendly environment tailored to its target audience.

A

AiVision, s.r.o.

ai-shop.cz

46

AiVision, s.r.o. operates the website www.ai-shop.cz offering advanced e-shop solutions with ERP system integrations such as Pohoda, Helios, Money, Cezar, Premier, and SAP. The company targets small to medium-sized businesses seeking customizable e-commerce platforms with B2B and B2C capabilities. With over 20 years of experience and more than 1100 satisfied clients, AiVision positions itself as a reliable technology provider in the Czech Republic's e-commerce sector. The website showcases a modern, responsive design with comprehensive content, client references, and integration options, reflecting a mature digital presence. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and reCAPTCHA, ensuring good performance and security basics. However, explicit security headers and incident response policies are not published, indicating areas for improvement. The site is GDPR compliant with a clear privacy and cookie policy, and contact information is readily available. WHOIS data is missing or privacy protected, which slightly reduces trustworthiness but does not negate the evident business legitimacy. Overall, the website demonstrates a strong business and technical foundation with moderate security posture and good privacy compliance.

E

EastBiz.com, Inc.

incparadise.com

59

EastBiz.com, Inc., operating the IncParadise website, is a specialized service provider focusing on business incorporation and registered agent services primarily in Nevada and Wyoming. The company offers a comprehensive suite of services including corporation and LLC formation, registered agent services, mail forwarding, and compliance support. Their market position is that of an established niche player with over a decade of experience, targeting entrepreneurs and small to medium-sized businesses seeking incorporation in the United States. Technically, the website is built on WordPress and leverages a modern technology stack including jQuery, Google Tag Manager, and various marketing and analytics tools such as Facebook Pixel and Hotjar. The site is hosted with reputable providers and uses Cloudflare DNS, ensuring good performance and availability. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with a strong SSL configuration and employs reCAPTCHA for form protection. However, it lacks some security headers and DNSSEC is not enabled, which are areas for improvement. The presence of multiple tracking scripts without a visible cookie consent mechanism indicates partial privacy compliance. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website presents a professional and trustworthy front for its business services, with good technical and security foundations but room for enhancement in privacy compliance and security hardening.

L

Les Amis du Palais de Tokyo

lesamisdupalaisdetokyo.com

60

Les Amis du Palais de Tokyo is a cultural association founded in 2019 that supports the Palais de Tokyo contemporary art center in Paris through membership and patronage. The website serves as a platform to inform members and potential donors about exclusive events, artist meetings, and benefits. The site is well-branded, consistent, and targets art enthusiasts and patrons. Technically, the site uses modern web technologies including Laravel backend, Google Analytics, Facebook SDK, and Google reCAPTCHA, hosted by OVH sas. The site is mobile optimized with good SEO and accessibility basics. Security posture is solid with HTTPS, CSRF tokens, and cookie consent, but lacks advanced security headers and formal security policies. No blocking or WAF challenges were detected, allowing full content access. Overall, the site is trustworthy and professionally maintained, with room for improvement in security policy transparency and incident response readiness.

SLUTO s.r.o. operates an online platform (sluto.online) providing electronic tax forms and declarations primarily targeting Czech-speaking users. The website offers a streamlined service for submitting tax-related documents such as annual tax reconciliations. The business appears to be a small-sized entity founded in 2021, with a niche focus in the tax services sector. The site is professionally designed with consistent branding and clear navigation, supporting both Czech and English languages. Technical infrastructure is based on WordPress CMS hosted likely by Websupport, utilizing common plugins and Google Analytics for visitor insights. The site implements a cookie consent mechanism aligned with GDPR requirements, although a dedicated privacy policy page on the domain is absent, with references to an external domain for cookie usage information. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities detected, but lacks advanced security headers and explicit security policies. Overall, the website is functional, trustworthy, and compliant with basic privacy standards, serving its target audience effectively.

T

Ticket for Change

ticketforchange.org

50

Ticket for Change is a French non-profit organization focused on fostering social entrepreneurship and leadership development. Established in 2013, it offers educational programs, community support, and resources to entrepreneurs, young adults, and corporate leaders aiming to create positive social and environmental impact. The organization positions itself as a pioneering school for changemakers, leveraging innovative pedagogies and a strong community network. Technically, the website is built on WordPress with modern SEO and analytics tools, hosted behind Cloudflare for performance and security. The site features comprehensive cookie consent mechanisms and privacy policies aligned with GDPR requirements. Security posture is solid with HTTPS and domain protections, though improvements in security headers and incident response transparency are recommended. Overall, the website reflects a professional, trustworthy, and well-established entity with a clear mission and audience.

M

Krby a kamna

mojekrby.cz

60

The website www.mojekrby.cz is a Czech e-commerce platform specializing in the sale of fireplaces, stoves, and related accessories. It targets residential customers and craftsmen seeking heating solutions. The business operates a niche retail model with a clear product catalog and online shopping capabilities, including user registration and newsletter subscription. The site is professionally designed with good navigation and mobile optimization, leveraging modern web technologies such as jQuery, Swiper.js, and Google Analytics for tracking and marketing. Technically, the site uses the K2 e-shop system and integrates several third-party services including Google Tag Manager and Packeta for logistics. Performance is moderate with good SEO practices and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though no advanced security headers or explicit security policies are published. The absence of WHOIS registration data is a concern for domain legitimacy and trust. Overall, the site presents a professional and trustworthy front for its business, but the lack of publicly available domain registration details and direct contact information slightly reduces its credibility. There are no indications of malicious content or security vulnerabilities in the visible content. Strategic improvements in security transparency and contact information disclosure would enhance trust and compliance.

Tyvado is a Czech company specializing in modern shading technology products including awnings, blinds, pergolas, and insect screens. The company targets homeowners and investors seeking comfort, ecological solutions, and energy savings. With over 12 years of experience and more than 200 completed projects, Tyvado positions itself as a trusted provider in the local market. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options including a detailed contact form and physical address. Technically, the site uses common web technologies such as jQuery and Google Analytics, with HTTPS enforced and cookie consent implemented. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. Security headers are not detected, suggesting room for improvement in security posture. Overall, the website is safe, professional, and compliant with GDPR requirements, but would benefit from enhanced security policies and domain legitimacy verification.

F

Fundación Parque Científico de Madrid

fpcm.es

46

Fundación Parque Científico de Madrid (FPCM) is a non-profit foundation established in 2001 by two major Spanish universities to foster scientific and technological entrepreneurship and innovation. The organization provides office and laboratory spaces, R&D services, business acceleration, and international programs to support deep tech entrepreneurs and innovators. The website reflects a mature digital presence with professional design, clear navigation, and compliance with privacy regulations. Technically, the site is built on WordPress with Elementor and integrates SEO and analytics tools, demonstrating a modern and maintainable infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional HTTP security headers and published security policies could enhance trust. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

F

Fundación Conama

fundacionconama.org

51

Fundación Conama is a Spanish non-profit foundation dedicated to promoting sustainable development through knowledge exchange, events, reports, and collaborative projects. It holds a leading position in Spain and Iberoamerica as an organizer of major environmental congresses and networking platforms. The website is professionally designed using WordPress and Elementor, with strong SEO and accessibility features. It integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, while providing clear privacy and cookie policies with consent management. Security posture is good with HTTPS and no evident vulnerabilities, though some security headers could be improved. WHOIS data is privacy protected, which is justified for this type of organization. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

A

Asociación Empresarial Hotelera de Madrid

aehm.es

55

The Asociación Empresarial Hotelera de Madrid (AEHM) is a prominent industry association representing over 300 hospitality establishments in the Madrid region, encompassing hotels, hostels, and apartments with more than 75,000 accommodation places. The organization serves as a key advocate and promoter of the hotel sector, providing services such as employment facilitation, event management, and sector representation. Their website is professionally designed using WordPress and Elementor, featuring comprehensive content and clear navigation tailored to industry stakeholders and professionals. Technically, the site employs modern web technologies and plugins, including Yoast SEO for search optimization and Complianz for GDPR cookie compliance. The presence of Google Analytics and Metricool tracking indicates moderate user behavior tracking, balanced with visible cookie consent mechanisms ensuring privacy compliance. Mobile optimization and accessibility are adequately addressed, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes cookie consent banners, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to registry restrictions limits domain trust verification, though the website's professional presentation and consistent branding support its legitimacy. Overall, AEHM's digital presence reflects a mature and credible organization within the hospitality sector, with room for improvement in security transparency and WHOIS data availability to enhance trust and compliance posture.

D

Digital Depo | Strategický online marketing a weby do celého světa

digitaldepo.cz

43

Digital Depo is a Czech-based digital agency specializing in strategic online marketing and website development services aimed at businesses seeking to expand their online presence globally. The website is built on WordPress using the Elementor framework, incorporating modern web technologies and multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. The absence of public WHOIS data due to privacy protection limits full trust assessment, and no explicit privacy or cookie policies were found, indicating room for compliance improvement.

éthi'Kdo is a French e-commerce platform specializing in eco-responsible gift cards that promote ethical gifting for individuals, businesses, and employee committees. The website presents a well-structured and professionally designed interface with a focus on sustainability and social responsibility. The technical infrastructure leverages modern JavaScript, CSS, and HTML5 technologies, integrating third-party services such as Sentry for error monitoring, Google Analytics for user behavior tracking with IP anonymization, and Crisp Chat for customer support. Security posture is strong with HTTPS enforced and appropriate security headers in place, though explicit privacy and cookie policies are absent, indicating room for compliance improvement. Overall, the website demonstrates a high level of business credibility and technical maturity, with no detected vulnerabilities or suspicious activity.

R

Réseau Citiz

citiz.coop

56

Réseau Citiz operates as a cooperative carsharing network in France, providing flexible vehicle rental services across more than 80 cities. The website presents a professional and consistent brand image, targeting both individual and professional users seeking shared mobility solutions. Technically, the site employs modern tracking and consent management tools, including Google Analytics, Facebook Pixel, and tarteaucitron.js for cookie consent, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies are absent. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the site is trustworthy and well-positioned in its market niche.

D

DOMIREST, s. r. o.

hoteltrebic.cz

57

Hotel Alfa, operated by DOMIREST, s. r. o., is a small hospitality business located in Třebíč, Czech Republic, offering accommodation and restaurant services. The hotel is positioned as a convenient and comfortable lodging option near the city center and UNESCO heritage sites, targeting tourists and business travelers. The website is professionally designed, bilingual (Czech and English), and integrates modern booking and analytics technologies. The technical infrastructure is based on WordPress with common libraries and external services such as Google Analytics and Previo booking. Security posture is adequate with HTTPS and secure forms, though security headers and explicit policies could be improved. The domain registration data aligns well with the business information, supporting legitimacy. Overall, the website provides a trustworthy and user-friendly experience with clear contact and business details.