Security Directory

Chuchle Arena Praha, s.r.o. operates a historic and prominent horse racing and equestrian sports venue located in Prague, Czech Republic. The company offers a multifaceted business model including horse racing events, show jumping competitions, event space rental, accommodation services, and a riding academy. The website reflects a well-established business with a strong market position in the Czech equestrian and sports hospitality sector. The target audience includes horse sports enthusiasts, families, tourists, and event organizers. Technically, the website uses a combination of legacy and modern web technologies including jQuery, Google Tag Manager, Google Analytics, Matomo, and Google reCAPTCHA. The site is built on the IPO CMS platform and demonstrates good mobile optimization and SEO practices. However, some technical debt is noted with the use of older JavaScript libraries and missing security headers. From a security perspective, the site enforces HTTPS and implements user consent mechanisms for cookies and tracking, aligning with GDPR requirements. The absence of WHOIS data reduces domain trustworthiness, and the lack of security headers and outdated libraries present moderate security risks. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, content-rich, and compliant with privacy regulations, but improvements in security headers, updated libraries, and domain registration transparency are recommended to enhance trust and security posture.

G

GSG Berlin GmbH

gsg.de

46

GSG Berlin GmbH is a well-established real estate company specializing in leasing office, commercial, and warehouse spaces primarily in Berlin. With over 60 years of experience and a portfolio exceeding 1 million square meters, it serves a diverse clientele including startups, craftsmen, and SMEs. The company emphasizes flexibility in space usage and offers value-added services such as highspeed fiber internet and electric vehicle charging stations. The website reflects a strong market position with multiple locations and a broad tenant network. Technically, the website is built on WordPress using modern plugins and frameworks, optimized for performance and mobile responsiveness. It integrates analytics and marketing tools like Google Tag Manager and HubSpot, and employs a cookie consent mechanism compliant with GDPR. Security best practices are observed with HTTPS, security headers, and no visible vulnerabilities, though a dedicated security policy and incident response information are absent. Overall, the site demonstrates a mature digital presence with good privacy compliance and professional content. The domain registration data is minimal but consistent with the business claims. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Strategic recommendations include publishing a formal security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance. Regular security audits of third-party scripts and further accessibility improvements would strengthen the security posture and user experience.

CPI Hungary Kft. is a prominent real estate investor, developer, and operator in Hungary, managing a substantial portfolio exceeding 600,000 square meters with a valuation over €1.3 billion. The company operates primarily in office, hotel, and retail sectors and is a member of the CPI Property Group. The website reflects a mature digital presence with comprehensive investor materials, clear contact information, and active social media engagement. Technically, the site employs modern web technologies, including Google Tag Manager and responsive design, ensuring good performance and user experience. Security posture is solid with HTTPS and no exposed sensitive data, though explicit security headers and cookie consent mechanisms could be improved. Overall, the domain registration and WHOIS data align well with the company's profile, indicating legitimacy and trustworthiness.

K

Kestria ry

kestria.com

68

Kestria ry operates as the world’s largest executive search alliance, connecting boutique executive search firms globally to provide leadership recruitment services across multiple industries and functions. Founded in 2020, the organization has established a strong market position with offices spanning 6 continents, 40+ countries, and 90+ cities, targeting companies seeking executive talent and search firms wishing to join the alliance. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Bootstrap, jQuery, and Google Maps API, likely running on a Django backend. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Privacy and cookie policies are well implemented with explicit consent mechanisms, indicating good compliance with GDPR. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and visible security headers. There is no public security policy or incident response information, nor a vulnerability disclosure policy, which are areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, Kestria’s website presents a trustworthy and professional digital presence with strong business credibility and privacy compliance. Strategic enhancements in security policies and technical security controls would further strengthen its posture.

M

Přírodní vonné svíčky od Ewy Farne | Mmntshop.cz

mmntshop.cz

40

The website mmntshop.cz is a small e-commerce platform specializing in natural scented candles, notably associated with the celebrity Ewa Farna. It targets general consumers interested in natural home fragrance products within the Czech Republic. The site is built on WordPress using WooCommerce and Elementor, indicating a standard modern e-commerce infrastructure. Hosting appears to be provided by exon.io based on DNS information. The website demonstrates good design quality, mobile optimization, and SEO practices but lacks explicit privacy and terms of service documentation. Security posture is moderate with no advanced security headers detected and no visible vulnerability disclosure or incident response policies. Cookie consent is implemented, indicating some level of privacy compliance. Overall, the domain registration data is consistent and appropriate for the business age and type, supporting legitimacy.

A

AFM-Téléthon

telethon.fr

66

AFM-Téléthon is a prominent French non-profit organization dedicated to funding research and supporting patients affected by neuromuscular and rare diseases. The website serves as a secure platform for online donations, offering multiple payment options and clear information about the impact of donations. The organization maintains a strong market position in the charitable sector with transparent financial reporting and recognized certifications such as Bureau Veritas. Technically, the website is built on a modern stack with Drupal CMS, integrates advanced analytics and consent management tools, and is optimized for mobile and accessibility. Security practices include TLS 1.2 encryption and consent frameworks, though explicit security headers should be verified. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

FerreroSuppliers.com is a professional B2B portal designed to facilitate supplier engagement for Ferrero, a major confectionery manufacturer. The website provides access to various supplier-related applications including responsible sourcing, purchase order and invoice management, catalogues, quality specifications, and delivery tracking. It also offers a supplier application form to onboard new suppliers. The site is well-branded, consistent with Ferrero's corporate identity, and targets suppliers globally. Technically, the site is built on Drupal 10, uses modern JavaScript libraries like Glide.js, and integrates Google Analytics and OneTrust for tracking and cookie consent. Hosting includes Amazon S3 for static assets, indicating a hybrid hosting approach. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. The absence of WHOIS registration data is a notable anomaly, reducing trust slightly despite the professional presentation. Overall, the site is functional, secure, and compliant with basic privacy standards, serving its business purpose effectively.

B

Bureau des Congrès de l'Eurométropole de Metz

congres-metz.com

58

The website congres-metz.com serves as the official online presence for the Bureau des Congrès de l'Eurométropole de Metz, promoting Metz as a prime destination for business events, conferences, and seminars. It targets business professionals and event planners, offering comprehensive information on venues, accommodations, catering, and sustainable event practices. The site is well-positioned regionally, emphasizing accessibility and eco-responsibility. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and cookie consent, ensuring a robust digital infrastructure. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and includes integrity checks on scripts, reflecting a good security posture. However, the absence of WHOIS registration data and explicit contact information slightly detracts from its trustworthiness. Overall, the site is professional, user-friendly, and compliant with privacy regulations, making it a reliable resource for its audience.

V

Vumedi

vumedi.com

61

Vumedi is a specialized video education platform designed for doctors and clinicians, offering over 50,000 peer-to-peer videos across 25 medical specialties. The platform is trusted by over 500,000 clinicians, including partnerships with 16 of the top 20 US hospitals, positioning it as a leading resource in medical education. The business model focuses on providing accessible, expert-driven medical content to improve patient care and support professional growth. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager for analytics, and uses Sentry for error monitoring. The site is mobile-optimized, fast-loading, and well-structured for SEO and accessibility. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response information are absent. Privacy and terms of service policies are comprehensive and publicly accessible, indicating a commitment to compliance. However, the lack of WHOIS data reduces transparency regarding domain ownership, which slightly impacts trust. Overall, Vumedi presents a professional, trustworthy, and technically mature platform with room for improvement in security disclosures and contact transparency.

S

Stanford Health Care

stanfordhealthcarenow.org

66

Stanford Health Care is a leading academic medical center and healthcare provider delivering advanced medical services including cancer treatment, heart disease care, brain disorder treatment, and primary care. The organization leverages cutting-edge technology and research to provide compassionate, patient-centered care. Their digital presence is supported by a robust technical infrastructure including Adobe Experience Manager CMS, AWS hosting, and modern analytics tools such as Google Analytics and Adobe Launch. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to patients, healthcare professionals, and visitors. Security posture is strong with HTTPS enforcement and domain security best practices, though DNSSEC is not enabled. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR and related regulations. Overall, the website reflects a mature, trustworthy healthcare institution with a high level of digital maturity and security awareness.

S

Stanford Medicine

stanfordmedicine.org

58

Stanford Medicine is a large, integrated academic health system focused on research, education, and clinical care. The website reflects a professional and consistent brand presence with rich content about medical research breakthroughs, clinical trials, and patient care. Technically, the site uses Adobe Experience Manager CMS, integrates video content via Kaltura, and employs Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and domain protections, but lacks DNSSEC and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and authoritative in the healthcare sector.

T

The Conference Forum

drug-delivery.org

58

Drug-delivery.org is a specialized content and event platform serving the drug delivery and formulation ecosystem. It operates under The Conference Forum brand, providing industry professionals with conferences, editorial articles, podcasts, webinars, and marketing services. The website targets pharmaceutical and biotech stakeholders interested in drug delivery innovations and partnerships. The business model focuses on content dissemination and event organization within a niche healthcare sector. The domain is newly registered in 2023, consistent with the business timeline, and hosted on Amazon AWS infrastructure with CloudFront CDN for performance.

T

The Conference Forum

theconferenceforum.org

60

The Conference Forum is a specialized event organizer and content provider serving the pharmaceutical, biotechnology, and drug delivery sectors. Founded in 2010, it offers a portfolio of conferences, webinars, podcasts, and editorial content aimed at professionals and executives in these industries. The business model centers on delivering industry-specific knowledge and networking opportunities, supported by marketing services tailored to the medicine development ecosystem. The website reflects a mature and consistent brand presence with a clear focus on its niche audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Slick Carousel, Select2, and integrates advanced analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. Hosting is provided by Bluehost Inc., and the site uses HTTPS with a valid SSL certificate. Mobile optimization and user experience are good, though accessibility and SEO could be improved. The site lacks a CMS signature, suggesting a custom or proprietary platform. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v3 to protect forms from abuse. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is limited to a web form, with no direct emails or phone numbers published. The domain registration is consistent and legitimate, with a long history and no privacy protection, reinforcing trustworthiness. Overall, the website is professionally maintained and serves its business purpose well. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust. The site is safe for general audiences and does not contain any adult or questionable content.

P

Panství Bechyně s.r.o.

panstvi-bechyne.cz

56

Panství Bechyně s.r.o. is a well-established hospitality and cultural tourism company based in the Czech Republic, offering accommodation, cultural experiences, golf, and art exhibitions primarily in the South Bohemian region. The company operates multiple related domains representing different facets of its business, including forest management, castle tourism, resort services, golf, and art. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. It targets tourists and visitors interested in cultural heritage and leisure activities in the region. Technically, the website employs modern frontend technologies such as StimulusJS and Tailwind CSS, with Google Tag Manager for analytics and tracking. The site is mobile-optimized and performs moderately well. Hosting is provided by Webglobe, consistent with the domain's nameservers. Privacy compliance is well addressed with accessible privacy and cookie policies and a consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and public security policies or incident response contacts. The WHOIS data confirms the domain's legitimacy and long-standing registration since 1999, matching the business's claimed history. Overall, the website presents a trustworthy, professional, and user-friendly digital presence for Panství Bechyně s.r.o., with minor recommendations to enhance security transparency and incident response readiness.

P

Pražská paroplavební společnost a.s.

paroplavba.cz

63

Pražská paroplavební společnost a.s. is a historic Czech company established in 1865, specializing in passenger water transport and leisure cruises on the Vltava river in Prague and surrounding areas. The company operates two culturally significant paddle steamers and offers a range of services including sightseeing cruises, gastronomic events, and boat rentals for private and corporate occasions. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with HTTPS enforced and cookie consent mechanisms in place. Security posture is good but could be improved by adding explicit security headers and publishing a security policy. The absence of WHOIS data limits domain trust assessment, but the business information and content quality strongly indicate legitimacy. Overall, the site is well-positioned for its target audience of tourists and event clients, with a strong brand and consistent messaging.

D

DVORCE TŘEBOŇ s.r.o.

dvorce.cz

58

Penzion Dvorce is a small hospitality business located in the South Bohemian region of the Czech Republic, offering accommodation and dining services with a focus on biofarm products and family-friendly experiences. The website presents a professional and consistent brand image, targeting families, couples, and tourists interested in nature and regional cuisine. The business model integrates accommodation, restaurant services, and gift voucher sales, positioning itself as a regional eco-friendly hospitality provider. Technically, the website uses a modern tech stack including jQuery, Google Tag Manager, and Facebook SDK, with good mobile optimization and SEO practices. The site is served over HTTPS with valid SSL, but lacks some security headers and formal privacy and terms of service pages, which are areas for improvement. Cookie consent is implemented, indicating some level of privacy compliance. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of WHOIS data limits domain trust assessment. The site uses tracking pixels from Facebook and Google Analytics, with moderate user tracking levels. Overall, the website is safe, family-friendly, and professionally maintained, but could enhance compliance and security transparency. Recommendations include publishing privacy and terms policies, adding security headers, implementing a security.txt file, and verifying domain registration details to improve trust and compliance.

P

PRAGUE BOATS s.r.o.

prague-boats.cz

61

Prague Boats s.r.o. is a well-established company specializing in river cruises and boat rental services on the Vltava River in Prague. With over 30 years of experience, the company emphasizes sustainable and eco-friendly boating, operating a modern fleet including fully electric boats. Their market position is strong locally, targeting tourists and event organizers seeking sightseeing, dining, and private event cruises. The website is professionally designed, mobile-optimized, and offers multilingual support with online booking capabilities. Technically, the website employs modern JavaScript libraries such as Swiper.js and Glide.js for interactive content, integrates multiple marketing and analytics tools including Facebook Pixel and Bing UET, and uses Google Tag Manager for tag management. The site is served over HTTPS with good performance and accessibility features, though some security headers are missing. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosure, and incident response contacts. WHOIS data is unavailable, which reduces trustworthiness slightly but is mitigated by clear business registration info and professional web presence. Overall, the website and business demonstrate a mature digital presence with room for improvement in transparency of privacy and security policies. Strategic recommendations include publishing privacy and terms of service pages, enhancing security headers, and providing vulnerability disclosure information to strengthen trust and compliance.

E

Europe Jacques Delors - Thinking Europe

europejacquesdelors.eu

52

The website 'Europe Jacques Delors - Thinking Europe' appears to be a European political or cultural platform, likely focused on European integration or related topics. The site uses modern web technologies such as Nuxt.js and integrates Google Tag Manager for analytics. However, the site lacks visible contact information, privacy policies, and security headers, which limits its trustworthiness and compliance posture. The absence of WHOIS data due to EURid privacy restrictions prevents a full domain legitimacy assessment, but the domain's .eu TLD aligns with the European focus. Overall, the website is accessible and functional but requires improvements in security and privacy compliance to enhance trust and user confidence.

H

HELLENiQ ENERGY

helleniqenergy.gr

71

HELLENiQ ENERGY is a leading energy group operating in Southeastern Europe with activities spanning six countries. The company focuses on refining, supply, and sales of petroleum products and petrochemicals, positioning itself as a key player in the energy sector. Their website reflects a professional corporate presence with clear branding and comprehensive business information. The target audience includes industry stakeholders, partners, and customers interested in energy solutions with a focus on low carbon emissions. Technically, the website is built on Drupal 9, leveraging modern web technologies such as jQuery UI and Slick Carousel for UI components. It integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS and implements multiple security headers, contributing to a strong security posture. Cookie consent mechanisms comply with GDPR requirements, offering users granular control over cookie categories. However, explicit security policies, incident response contacts, and vulnerability disclosure information are absent, representing areas for improvement. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic enhancements in transparency around security policies and incident handling would further strengthen its security and compliance posture.

B

Bluepowerpartners

bluepowerpartners.com

59

Bluepowerpartners is a Denmark-based international consultancy specializing in renewable energy infrastructure, offering a broad range of services from origination to construction management. The company positions itself as a leading advisor and delivery partner in the green transition, targeting renewable energy project stakeholders. The website is built on WordPress with Elementor and optimized for SEO using Yoast. It employs modern web technologies and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is solid with HTTPS enforced and Cloudflare protection, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with a comprehensive cookie consent mechanism and a detailed privacy policy hosted by a third party. However, no direct contact information or security policies are published on the site. Overall, the website is professional, trustworthy, and well-structured, supporting the company's business credibility and market positioning.

O

Offshore Energy

offshore-energy.biz

66

Offshore-Energy.biz is a specialized media platform dedicated to the offshore energy sector, focusing on the energy transition and sustainable maritime solutions. The website provides news, industry insights, and event information targeting professionals and stakeholders in the offshore and maritime energy industries. Established around 2020, it serves as a niche information hub with a consistent brand presence and a professional content offering. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and CookieYes for consent management. It employs Google Tag Manager and integrates multiple analytics and advertising services, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. From a security perspective, the site uses HTTPS and implements a comprehensive cookie consent mechanism, but lacks visible security headers and explicit privacy and terms of service pages in the provided content. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for commercial media sites. Overall, Offshore-Energy.biz presents a professional and trustworthy platform with good privacy compliance and extensive tracking transparency. Strategic improvements in security headers, privacy policy publication, and incident response contact details would enhance its security posture and compliance standing.

Ε

ΕΛΕΤΑΕΝ

eletaen.gr

61

ΕΛΕΤΑΕΝ is a Greek scientific association dedicated to wind energy, providing information, advocacy, and educational resources to the public and stakeholders. The website serves as a comprehensive portal featuring news, statistics, events, and campaigns related to renewable energy in Greece. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though explicit contact details and security policies could be enhanced for better transparency and incident readiness.

D

DeTect, Inc.

detect-inc.com

55

DeTect, Inc. is a specialized technology company focused on advanced radar and remote sensing systems primarily serving the wind energy, aviation safety, and security sectors. Established in 2003, the company offers a range of products including bird and drone detection radars, security surveillance radars, and mitigation systems designed to enhance environmental protection and flight safety. Their market position is that of a niche leader with a strong focus on B2B clients requiring sophisticated detection technologies. The website infrastructure is built on WordPress with Elementor, leveraging modern web technologies such as Google Tag Manager, Google Analytics, and CookieYes for consent management. The site demonstrates good digital maturity with responsive design, SEO optimization via Yoast SEO Premium, and basic accessibility features. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and Google reCAPTCHA implemented to prevent spam and bot attacks. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. Privacy compliance is well addressed with a comprehensive privacy policy and a granular cookie consent mechanism aligned with GDPR requirements. Overall, the website presents a professional and trustworthy front for DeTect, Inc., with strong business credibility and technical implementation. Strategic improvements in security transparency and performance optimization could further enhance their digital presence and risk posture.

C

Churchill

churchill.fr

44

Churchill is a premium French web agency specializing in custom website creation, redesign, SEO, and digital marketing services primarily targeting market leaders in Paris and Lyon. The company emphasizes bespoke solutions using WordPress and WooCommerce, integrating advanced tools and third-party services to maximize client ROI. Their market position is supported by over 10 years of experience and more than 120 completed projects, with a strong focus on SEO and user experience. Technically, the website is built on a modern WordPress platform with performance optimizations via WP Rocket, analytics through Matomo and Google Tag Manager, and cookie consent managed by Axeptio. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. However, explicit security headers are not visibly configured, and no public security policy or incident response information is provided. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data limits domain trust verification. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site demonstrates professionalism and trustworthiness, though domain registration transparency is lacking. Recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving WHOIS transparency to bolster trust and compliance.

A

Agence tactee

seoh.fr

49

Tactee is a French digital agency founded in 2014, specializing in SEO, SEA, inbound marketing, and website creation and redesign. The agency targets SMEs, startups, and large groups seeking to enhance their digital presence and conversion rates. With multiple agency locations across France and a portfolio of notable clients, Tactee positions itself as a trusted partner in digital marketing. Technically, the website is built on WordPress with modern tools such as Yoast SEO, Google Tag Manager, and marketing automation via Plezi, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the overall legitimacy given the professional content and branding. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing vulnerability disclosure information.

P

Pennsylvania CareerLink® Delaware County

pacareerlinkdelco.org

59

Pennsylvania CareerLink® Delaware County operates as a government employment office serving Delaware County, Pennsylvania. The organization connects job seekers with employers and provides free career resources including job matching, resume development, training opportunities, and specialized programs for veterans, young adults, and older job seekers. The website reflects a local government service with a clear focus on workforce development and community support. The business model is government-funded and targets residents and employers within the county. The site is well-branded and consistent with official government employment services. Technically, the website is built on WordPress using the Elementor page builder and Astra theme, supported by Cloudflare DNS and Tucows as the registrar. It integrates common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, some technical security enhancements like DNSSEC and security headers are missing. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not provide a privacy or cookie policy, which are important for compliance and user trust. No vulnerability disclosure or incident response information is available. The domain registration data is consistent and legitimate, supporting the site's credibility. Overall, the website is a trustworthy and professional government resource but would benefit from improved privacy compliance and enhanced security configurations to strengthen user trust and regulatory adherence.

PA Sports is a collaborative sports tourism organization representing 13 member destinations across Pennsylvania, aiming to attract and service quality sports events. The website is professionally designed, mobile-optimized, and uses modern web technologies including RequireJS, jQuery, and Google Tag Manager. The site employs HTTPS and a consent management platform to manage user privacy preferences. However, no explicit privacy policy or terms of service were found on the analyzed page, and no contact information is readily available. The WHOIS data for the domain is missing, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the professional nature of the site. Overall, the website presents a good security posture with room for improvement in privacy compliance and domain registration transparency.

V

Visit Philadelphia

visitphilly.com

59

Visit Philadelphia operates as the official tourism and visitor information website for the city of Philadelphia, providing comprehensive resources including hotels, events, dining, and local attractions. The site targets tourists, families, and culture enthusiasts, positioning itself as the authoritative source for planning visits to Philadelphia. The business model centers on destination marketing and travel facilitation, leveraging partnerships with local hotels and event organizers. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Klaviyo, and various advertising and tracking integrations, ensuring good SEO, mobile optimization, and user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though it lacks a public security policy or incident response information. The absence of WHOIS registration data is unusual but does not detract significantly from the site's legitimacy given its professional presentation and official branding. Overall, the website is a well-maintained, trustworthy resource for Philadelphia tourism.

O

Orion - tvoríme vašu domácnosť

oriondomacepotreby.sk

66

Orion - tvoríme vašu domácnosť is a well-established retail business operating both an e-commerce platform and a network of 41 physical stores primarily in Slovakia. The company specializes in household goods, kitchenware, and related products, targeting general consumers seeking quality and affordable home products. The website demonstrates a mature digital presence with comprehensive product listings, promotional content, and customer support features. Technically, the site employs modern tracking and marketing technologies including Google Analytics, Facebook Pixel, and Bing Ads, alongside a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security policies and incident response contacts are absent. Overall, the site is professional, accessible, and trustworthy, with room for improvement in legal documentation and security transparency.

F

Fost Plus

fostplus.be

68

Fost Plus is a Belgian non-profit organization dedicated to promoting sustainable packaging management through sorting, recycling, reuse, and reduction initiatives. It serves a broad audience including households, businesses, schools, healthcare, horeca, and event sectors, positioning itself as a key player in Belgium's circular packaging economy. The website is professionally designed, multilingual, and rich in relevant content, reflecting a mature digital presence. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates advanced marketing and analytics tools such as HubSpot, Google Tag Manager, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. From a security perspective, the site enforces HTTPS and implements consent mechanisms, though it lacks explicit security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is restricted due to .be domain policies, but the overall domain legitimacy is supported by consistent business information and professional web presence. Overall, Fost Plus demonstrates a strong security posture, good privacy compliance, and high business credibility, making it a trustworthy and authoritative source in its domain.

A

Atos

atos.com

72

Atos is a specialist company in the electrohydraulic sector, offering innovative solutions for industrial, hazardous, and corrosive environments. The company targets industrial clients and engineering professionals, providing a broad range of products including proportional valves, cylinders, pumps, and complete hydraulic systems. The website reflects a professional and consistent brand image with multi-language support and a product configurator tool, indicating a mature digital presence. Technically, the site uses modern web technologies such as Google Tag Manager, reCAPTCHA, and Akamai performance monitoring, hosted likely on a CDN infrastructure. However, the absence of WHOIS registration data and lack of visible privacy and cookie policies represent gaps in transparency and compliance. Security posture is moderate with some best practices observed but missing security headers and incident response information. Overall, the site is functional and professional but would benefit from improved compliance and security transparency.

N

NIBE

nibe.cz

76

NIBE is a well-established European company specializing in sustainable heating and cooling solutions, primarily through advanced heat pump technology. The website targets the Czech market with localized content and offers a comprehensive product range including heat pumps, water heaters, ventilation units, and related accessories. The company positions itself as a leader in energy-efficient home comfort solutions. Technically, the website is built on the SiteVision CMS platform, utilizing modern web technologies such as jQuery, Uikit, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, reCAPTCHA integration, and a robust cookie consent mechanism via OneTrust, reflecting good privacy compliance and user data protection. The absence of exposed sensitive data and the use of security best practices contribute to a strong security posture. Overall, the website demonstrates professionalism, compliance with GDPR, and a trustworthy digital presence, although WHOIS data is privacy protected and unavailable. Strategic recommendations include publishing explicit security policies and incident response information to further enhance trust and transparency.

S

SSL For Free

sslforfree.com

63

SSL For Free is a technology-focused website offering free SSL certificates issued quickly for one or multiple domains, including support for wildcards and ACME protocol. The service targets website owners and administrators seeking to secure their sites with HTTPS at no cost. The website is positioned as a niche provider leveraging the ZeroSSL infrastructure, evident from related domains and cookie consent data. The business model centers on providing free SSL certificates with tutorials and user support, catering to a broad audience of webmasters and developers. Technically, the website employs modern analytics tools such as Google Analytics, Google Tag Manager, Ahrefs Analytics, and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO practices and uses HTTPS exclusively, ensuring secure communications. However, no explicit CMS or hosting provider is identified, and some security headers are missing, suggesting room for technical improvements. From a security perspective, the site demonstrates good practices with HTTPS enforcement and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a security.txt file and public incident response policies indicates an opportunity to enhance transparency and security posture. The WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective but does not necessarily indicate malicious intent given the legitimate content and related domains. Overall, SSL For Free presents a trustworthy and professional service with a strong focus on free SSL certificate issuance. Strategic recommendations include improving WHOIS transparency, adding security headers, publishing security policies, and enhancing contact information visibility to bolster business credibility and security compliance.

E

EQUINET s.r.o.

equitv.cz

47

EquiTV.cz is a specialized internet television platform focused on equestrian sports and related content, operated by EQUINET s.r.o. The website offers live streaming, video and audio content, podcasts, and news targeting horse enthusiasts primarily in the Czech Republic. The business operates as a niche media provider with advertising and fan club engagement as key revenue streams. Technically, the site uses modern web technologies including jQuery, Bootstrap, and media players, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy policies. WHOIS data is unavailable, which reduces transparency but the site content and business information appear legitimate. Overall, the site is professional and trustworthy within its niche.

E

EQUINET s.r.o.

jezdci.cz

46

Jezdci.cz is a Czech media platform specializing in equestrian sports, providing news, event schedules, live streaming information, and community engagement through fan clubs and applications. Operated by EQUINET s.r.o., the website serves a niche audience of equestrian enthusiasts primarily in the Czech Republic. The site demonstrates a solid market position within this specialized media sector, offering advertising opportunities and partnerships with related equestrian media entities. Technically, the website employs modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for UI and media presentation, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and consent management implemented, though there is room for improvement in security headers and explicit policy disclosures. The absence of WHOIS data is a notable concern for domain legitimacy, but the website content and business information appear professional and trustworthy. Overall, the site is a well-maintained media resource with moderate technical maturity and a good user experience.

B

bezDodavatele, a.s.

bezdodavatele.cz

42

bezDodavatele, a.s. operates as an alternative energy supplier in the Czech Republic, specializing in green electricity and gas with transparent, floating tariffs that avoid long-term commitments. The company positions itself as a customer-friendly, eco-conscious provider leveraging market opportunities to offer competitive pricing. Their services include electricity and gas supply, smart electricity tariffs, photovoltaic surplus buyback, and online calculators for savings estimation. The website is professionally designed, mobile-optimized, and provides clear navigation and multiple contact channels including forms, email, and phone support. Social media presence is active across major platforms, enhancing customer engagement. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Highcharts for interactive content. It integrates Google Tag Manager and CookieYes for analytics and cookie consent management, respectively. The site uses HTTPS with good SSL configuration, though additional security headers could improve its security posture. Forms are implemented securely using Gravity Forms, with consent mechanisms in place for data privacy compliance. Security-wise, the site demonstrates good practices including HTTPS enforcement and cookie consent, but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is privacy protected, which is justified for this business type, though it limits domain age and registrant transparency. Overall, the site is trustworthy, professional, and compliant with GDPR requirements. Recommendations include enhancing security headers, publishing a security policy and incident response contacts, adding a vulnerability disclosure mechanism, and improving accessibility compliance. These steps will strengthen trust and security culture, supporting long-term business growth and customer confidence.

S

Smarty.cz

tigo.cz

61

Smarty.cz operates a specialized e-commerce platform focused on gaming computers under the TIGO brand. The website showcases multiple product lines tailored to different gamer profiles, emphasizing quality components, in-house assembly, and extended warranties. The company targets Czech gamers and technology enthusiasts with a medium-sized market presence. Technically, the website employs modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and formal privacy policies. WHOIS data is unavailable, indicating privacy protection, which slightly reduces transparency but is common for commercial sites. Overall, the site is professional and trustworthy with room for improvement in compliance and security transparency.

E

EVmate s.r.o.

evmate.cz

43

EVmate s.r.o. is a Czech-based company specializing in configurable home electric vehicle chargers, offering customers tailored wallbox solutions through an online configurator and e-commerce platform. The company targets electric vehicle owners seeking convenient and certified home charging options, positioning itself as a niche player in the Central European EV charging market. The website is professionally designed with good content quality, clear navigation, and multi-language support, reflecting a mature digital presence. Technically, the site leverages modern technologies including nopCommerce, jQuery, Bootstrap, and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security policy or incident response information is provided. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high business credibility with transparent contact information, customer testimonials, and CE certification. The domain WHOIS data aligns well with the business claims, enhancing trustworthiness.

C

CMO Paris

cmoparis.com

56

CMO Paris is a niche luxury brand specializing in artisanal natural fiber textiles and wall coverings. Established in 2005, the company emphasizes craftsmanship and unique materials sourced globally. Their website showcases collections of textiles, wallcoverings, plaids, and rugs, targeting interior designers, architects, and luxury retailers. The business model revolves around curated collections and sample requests, supported by a reseller network. Technically, the website is built on modern frameworks such as Nuxt.js with server-side rendering and integrates WordPress components for form handling. The site employs GDPR-compliant cookie consent mechanisms and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. Overall, the site is professional, well-branded, and trustworthy, with good privacy compliance but lacks explicit security policies or incident response contacts.

The website 'Use Social Proof' appears to be a minimal WordPress-based site with very limited content, primarily a default 'Hello world!' post. There is no clear business description, contact information, or privacy and security policies present. The technical infrastructure leverages common WordPress plugins and themes, including Astra theme, Yoast SEO, Google Analytics, and Google Tag Manager, indicating a basic digital maturity level. Security posture is moderate due to HTTPS usage and spam protection, but lacks advanced security headers and policies. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional but lacks professionalism, business credibility, and compliance features.

L

La Boge

laboge.fr

58

La Boge is a French government-supported digital platform dedicated to providing young people aged 13 to 29 in Saint-Étienne with access to discounts, event information, and social support resources. The website offers a comprehensive guide to aids, events, and youth services, positioning itself as a trusted local resource. Technically, the site is built on Drupal 9, leveraging modern web technologies and analytics tools such as Matomo and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements in security headers are recommended. The absence of WHOIS data slightly impacts trust but is likely due to registry restrictions common in French domains. Overall, the site is professional, content-rich, and serves its target audience effectively.

P

Prodej ledu Vysočina

prodej-ledu.cz

42

Prodej ledu Vysočina is a small Czech company specializing in the production and distribution of packaged ice, including cube and crushed ice, primarily serving the Vysočina region with additional branches in Prague, Brno, and Havlíčkův Brod. Their business model focuses on both B2B and B2C markets, providing ice products and rental of cooling and freezing equipment for gastronomy, private events, and large cultural occasions. The company emphasizes quality and customer service, with a production capacity of approximately 5,000 kg of ice daily and a portfolio that includes ice art and custom ice products. Technically, the website is built with standard web technologies including HTML5, CSS, and JavaScript, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site is mobile-optimized and SEO-friendly with structured data markup enhancing search engine visibility. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and includes spam protection on contact forms, but lacks visible security headers such as Content Security Policy or HSTS. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with cookie consent and a privacy policy present, but no explicit incident response or security policy pages. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and contact information support legitimacy. Overall, the website presents a professional and trustworthy business front with good content quality and technical implementation. Strategic improvements in security headers, privacy transparency, and WHOIS data availability would enhance trust and compliance.

N

National Breast Cancer Foundation, Inc.

nbcf.org

77

National Breast Cancer Foundation, Inc. is a well-established non-profit organization dedicated to providing help and hope to those affected by breast cancer through early detection, education, and support services. The organization has a strong market position supported by recognized certifications such as Four Star Charity and Platinum Transparency awards. Their website reflects a professional and trustworthy presence with comprehensive content targeting individuals affected by breast cancer and supporters. Technically, the website is built on WordPress with modern technologies and optimized for performance, mobile, and SEO. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although formal security policies and incident response information are not publicly available. Overall, the website demonstrates high credibility and trustworthiness, with a moderate risk due to lack of WHOIS transparency but justified by privacy protection for a non-profit entity.

W

WAREMA Renkhoff SE

warema-group.com

61

WAREMA Renkhoff SE operates as a leading manufacturer specializing in innovative sun protection and plastic engineering solutions. The company holds a strong market position in its sectors, offering a broad portfolio that includes sun and weather protection products as well as precision plastic components for automotive, medical, and sun protection industries. Their business model emphasizes innovation, partnership, and quality, targeting both B2B and end consumers. The website reflects a professional corporate presence with consistent branding and comprehensive content in German, supported by multiple subsidiary brands and active social media channels. Technically, the website employs modern web technologies including Google Tag Manager and a Usercentrics consent management platform, ensuring GDPR compliance and user privacy controls. The site is mobile-optimized with good SEO practices and moderate performance. However, some security best practices such as explicit security headers are not evident from the provided data. The absence of WHOIS registration details raises concerns about domain legitimacy, though the professional presentation and contact information mitigate some risk. From a security perspective, HTTPS is enforced and privacy policies are comprehensive, but the lack of visible security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a solid security posture but would benefit from enhanced transparency and security policy disclosures. Strategically, it is recommended to verify domain registration status, implement additional security headers, publish clear incident response contacts, and maintain rigorous privacy compliance to strengthen trust and resilience. The company’s digital maturity is good, supporting its market leadership and customer engagement effectively.

Price-check.cz is a professional online price monitoring and comparison tool operated by E-solutions, s.r.o., targeting e-commerce businesses including B2C and B2B sellers and suppliers. The platform offers real-time data monitoring with frequent updates, alerting, reporting, and comprehensive analytics to support pricing strategies. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Technically, it leverages modern web technologies including Google Tag Manager, Google Analytics, and Vue.js components, ensuring a moderate to good performance level. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks explicit security headers and published privacy or security policies. The absence of WHOIS data limits domain trust verification, but the presence of multiple reputable brand references and professional presentation supports legitimacy. Overall, the site is a credible resource for price monitoring in the Czech and European markets.

A

Autopůjčovna NONSTOP

attackerci6.cz

38

Autopůjčovna NONSTOP is a Czech car rental service specializing in providing a wide range of vehicles including SUVs, luxury cars, and electric vehicles with nonstop availability in Prague, including airport and city center locations. The business operates primarily through an online reservation system, targeting both tourists and local customers seeking flexible and reliable car rental options. The website is built on WordPress CMS, utilizing common plugins such as Yoast SEO for search optimization and Smartsupp for live chat support, indicating a moderate level of digital maturity. The technical infrastructure is supported by the Czech registrar REG-WEDOS, with SSL encryption ensuring secure communications. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and published security policies, which could be improved to enhance trust and compliance. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, potentially exposing the business to GDPR compliance risks. Overall, the website presents a professional and trustworthy image with clear contact information and detailed vehicle listings, but could benefit from enhanced security and privacy practices to strengthen its risk profile.

M

MEDIA MARKETING SERVICES a.s.

rockovyradio.cz

56

Rockovyradio.cz is a Czech online rock radio station operated by MEDIA MARKETING SERVICES a.s., established in 2008. The website offers multiple specialized rock music streams, podcasts, and programs targeting Czech-speaking rock music enthusiasts. It maintains a professional digital presence with a consistent brand and active social media channels. The business model revolves around media broadcasting, online streaming, and merchandise sales via an e-shop. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Foundation, and Slick Carousel, hosted by Active24, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS, includes CSRF tokens, and implements cookie consent mechanisms, but lacks explicit security headers and public security policies. Overall, the site is compliant with GDPR and provides clear contact information, enhancing trust and credibility.

N

Nej.cz

pb.cz

74

Nej.cz is a Czech telecommunications provider offering internet, digital television, and telephone services primarily targeting personal and business customers within the Czech Republic. The company operates as part of the O2 group, leveraging its infrastructure and service platforms. The website presents a professional and consistent brand image with clear service offerings and customer support channels. Technically, Nej.cz employs modern web technologies including Google Tag Manager, Google Analytics, Cookiebot for consent management, Hotjar for user behavior analytics, and reCAPTCHA for form security. The site is well-optimized for mobile devices and includes comprehensive cookie consent mechanisms aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not published. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the business context and content quality. Overall, Nej.cz demonstrates a mature digital presence with good security and privacy compliance, suitable for its telecommunications market segment.

K

KOVOHUTY SK, s.r.o.

kovohutysk.sk

37

KOVOHUTY SK, s.r.o. is a Slovak subsidiary company specializing in the purchase, processing, and recycling of waste containing precious metals. The company leverages its strategic location and logistics to connect with its parent company Kovohutě Příbram nástupnická, a. s., providing services including waste collection, refining, and sale of related products such as ammunition and metal sheets. The website presents a professional business image with clear contact information and a focus on environmental and manufacturing sectors. Technically, the website uses a combination of established technologies such as jQuery, Bootstrap 3.2, and Google Analytics, managed via a custom CMS developed by JAVI solutions s. r. o. The site is moderately optimized for mobile and SEO, with good content quality and navigation. However, some technical modernization and enhanced accessibility could improve user experience. From a security perspective, the site benefits from HTTPS and lacks visible vulnerabilities or exposed sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present, indicating room for improvement in security transparency. Overall, the website is functional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and technical updates to strengthen its security posture and user trust.

V

Velkotržnice Lipence

vt.cz

47

Velkotržnice Lipence operates as a retail and wholesale market located in Prague, Czechia, offering a diverse range of products including food, flowers, decorations, and fresh produce. Established in 1999, the company has a longstanding presence in the regional retail sector. The website reflects a professional and consistent brand image, targeting general consumers and businesses seeking quality market offerings. Technically, the site is built on WordPress with modern tools such as Google Tag Manager and Facebook Pixel, hosted by WEDOS, ensuring a stable and moderately performant digital infrastructure. Security measures are well implemented with HTTPS and security headers, although explicit privacy and terms of service policies are absent, representing a compliance gap. Overall, the site is trustworthy and safe, with no adult or questionable content detected.