Security Directory

K

Katholisches Bibelwerk e. V.

bibelwerk.de

48

Das Bibelwerk is a German non-profit organization focused on providing serious and lively biblical interpretation and education. It operates through two main entities: the Katholisches Bibelwerk e. V. and the Verlag Katholisches Bibelwerk GmbH, offering publishing and retail services via its online shop. The website serves as a portal linking to these entities and related services, targeting religious communities and individuals interested in biblical studies. Technically, the site is built on TYPO3 CMS with moderate performance and good mobile optimization, using Umami Analytics for minimal user tracking. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No contact information or forms are present on the analyzed page, limiting direct user engagement. WHOIS data aligns with the website's claims, showing consistent domain registration without privacy protection, supporting legitimacy. Overall, the site is professional and trustworthy but could improve privacy compliance and security practices.

Inzerce BiL.cz operates as a Czech Republic-based online classified ads platform, providing free listings across a wide range of categories including automotive, real estate, electronics, and services. Established in 2007, it has built a modest but steady user base with over 4 million visitors and more than 137,000 ads posted. The platform's business model relies primarily on advertising revenue, leveraging Google Adsense and other ad networks. The website content is primarily in Czech, targeting a general audience seeking local classifieds. Technically, the site uses standard web technologies such as HTML, CSS, and JavaScript, with hosting and domain registration managed by WEDOS, a reputable Czech provider. Performance and mobile optimization are basic but functional, with room for improvement in accessibility and modern web standards. Security posture is adequate with HTTPS enabled, but lacks several important security headers and explicit incident response or security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is functional and moderately trustworthy but would benefit from enhanced security and privacy features.

O

Obec Hovězí

obec-hovezi.cz

48

Obec Hovězí operates an official municipal website serving the local community of Hovězí in the Czech Republic. The site provides comprehensive information about local government, community events, public notices, and services. It targets residents and visitors seeking official information and municipal resources. The business model is a government public service portal with a focus on transparency and community engagement. The website is well-branded with consistent use of official logos and symbols, and it maintains a good level of content quality and navigation clarity. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. No major technical issues or vulnerabilities were detected in the content. From a security perspective, the website enforces HTTPS and uses Google reCAPTCHA to protect its contact form from spam and abuse. However, it lacks explicit security headers and does not provide dedicated security or incident response policies. Privacy policies and cookie policies are present but lack active consent mechanisms. There is no vulnerability disclosure or security.txt file, which could enhance transparency and security posture. Overall, the website is trustworthy and professional, reflecting its role as an official municipal portal. The domain registration is consistent with the municipality's history, and no suspicious patterns were found. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security policies, and considering a vulnerability disclosure program to strengthen security and compliance.

O

Obec Huslenky

huslenky.cz

48

Obec Huslenky operates an official municipal website serving the residents and visitors of the Huslenky municipality in the Czech Republic. The site provides local government information, public notices, event calendars, and community services, positioning itself as a trusted source for municipal communication. The business model is governmental public service with a focus on transparency and community engagement. The website is well-established, with a domain age dating back to 2000, reflecting a stable online presence. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. Hosting and domain registration are managed by WEDOS, a reputable Czech provider. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate spam on forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. No vulnerabilities or exposed sensitive data were detected in the content. Privacy policies are present and GDPR compliance is indicated, though the cookie consent mechanism is absent. Overall, the website is a reliable and legitimate municipal portal with a good trust profile. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and enhancing accessibility and SEO to improve user experience and compliance. These improvements will strengthen the site's security posture and regulatory adherence while maintaining its role as a key community resource.

S

S-EPI, s.r.o.

mzdovecentrum.sk

54

Mzdové centrum is a well-established Slovak online portal providing comprehensive and up-to-date information for payroll accountants and HR professionals. Operated by S-EPI, s.r.o., the site offers a wide range of services including legal updates, tax and payroll guidance, educational video and audio content, and practical tools such as calculators and calendars. The portal targets professionals in Slovakia's payroll and human resources sectors and maintains a consistent and professional brand presence. Technically, the website is built on ASP.NET with jQuery and includes cookie consent mechanisms compliant with GDPR. While the site performs moderately in terms of speed and accessibility, it is mobile-optimized and SEO-friendly. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy, legitimate, and serves its niche audience effectively.

S

S-EPI, s.r.o.

vssr.sk

54

The website www.vssr.sk serves as a specialized information portal dedicated to Slovak public administration, providing comprehensive guidance on legislation, accounting, reporting, and supplementary information tailored to public sector entities. Operated by S-EPI, s.r.o., the portal targets government employees, local authorities, and professionals involved in public administration. It offers a variety of services including legislative updates, calculators, calendars, and a subscriber-only written advisory service. The site maintains a professional and consistent brand presence with clear navigation and relevant content in Slovak language. Technically, the site is built on an ASP.NET Web Forms platform with jQuery and custom scripts, reflecting a mature but somewhat legacy infrastructure. The site is moderately optimized for performance and mobile devices, with basic accessibility features. Security-wise, HTTPS is enforced with no visible vulnerabilities or exposed sensitive data, though security headers are not explicitly detected. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and linked privacy and terms of service pages. Overall, the security posture is solid but could be enhanced by implementing additional security headers and explicit incident response policies. The business credibility is high, supported by consistent WHOIS data, partner affiliations, and professional content. No adult or questionable content is present, making the site safe for general audiences. Advertising is limited and transparent, primarily using a single ad network. Strategically, the site is well-positioned as a trusted resource for Slovak public administration professionals, with opportunities to modernize technical infrastructure and strengthen security policies to maintain trust and compliance.

T

THINline s.r.o.

registrace-domeny-eu.cz

59

THINline s.r.o. operates the website registrace-domeny-eu.cz, providing domain registration services specifically for .eu domains along with web hosting packages. The company positions itself as an accredited .eu domain registrar with a regional presence in the Czech Republic, managing over 59,000 domains including thousands of .eu domains. The website targets individuals and businesses seeking affordable and reliable domain registration and hosting services. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. Hosting is likely provided by Český hosting, a partner mentioned on the site. Security posture is moderate but lacks modern security headers and explicit HTTPS confirmation in the provided data. Privacy compliance is minimal, with no cookie consent mechanism and only basic privacy and terms pages. WHOIS data is unavailable, which reduces transparency and trustworthiness. Overall, the site is functional and professional but could improve in security and privacy compliance to enhance user trust.

T

THINline interactive s.r.o.

domena-webhosting.cz

42

The website www.domena-webhosting.cz is an informational portal focused on webhosting and domain registration advice primarily for the Czech Republic market. Operated by THINline interactive s.r.o., it provides guidance on selecting webhosting services, domain names, free hosting options, and catalogs of providers. The site leverages affiliate partnerships with Czech hosting companies such as Český hosting and promotes related services like virtual and dedicated servers. The content is well-structured, relevant, and targeted at individuals and small businesses seeking hosting knowledge. Technically, the site uses standard HTML, CSS, and JavaScript with Google Analytics and Tag Manager for visitor tracking. However, it lacks modern security headers and privacy/cookie policies, which impacts compliance and trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and footer information suggest a legitimate small business presence. Overall, the site is functional and informative but would benefit from enhanced security and privacy measures.

X

Xiaomi Global

mi.com

65

Xiaomi Global operates as the official international website for Xiaomi Corporation, a leading technology company specializing in smartphones, wearables, smart home devices, and lifestyle products. The site serves a global audience, offering comprehensive product catalogs across multiple sub-brands such as Redmi and POCO. The business model focuses on e-commerce and direct consumer engagement, positioning Xiaomi as a major player in the global consumer electronics market. Technically, the website leverages modern web technologies including React, Google Tag Manager, and TrustArc for consent management, hosted likely on Akamai infrastructure. The site demonstrates strong digital maturity with excellent mobile optimization, accessibility, and SEO practices, ensuring a high-quality user experience. From a security perspective, the site enforces HTTPS, includes multiple security headers, and employs consent mechanisms for privacy compliance. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The absence of WHOIS data limits domain registration transparency but does not detract from the site's legitimacy given Xiaomi's global brand presence. Overall, Xiaomi Global presents a professional, secure, and user-friendly platform with minor gaps in explicit security disclosures. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and enhancing contact transparency to further strengthen trust and compliance.

E

ENGINEERS EUROPE Central Secretariat AISBL

feani.org

66

ENGINEERS EUROPE is a well-established federation representing professional engineers across 33 European countries. The organization focuses on uniting national engineering associations, facilitating professional mobility through certifications like the EUR ING certificate, and providing educational resources such as the European Engineering Education Database and continuing professional development materials. The website reflects a professional, non-profit entity with a clear mission to strengthen the engineering profession in Europe. Technically, the site is built on Drupal 10, uses modern web fonts, and integrates Google Tag Manager for analytics. It is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and a published security policy. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and serves its target audience effectively.

D

Deutscher Bundestag

deutscher-bundestag.de

63

The Deutscher Bundestag website serves as the official online presence of the German Parliament, providing comprehensive information about parliamentary activities, members, agendas, and live streams. It targets the general public and stakeholders interested in governmental affairs. The site is positioned as a key governmental information portal in Germany, offering essential services related to legislative transparency and public engagement. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with custom styling and scripts. It uses HTTPS for secure communication and integrates Matomo analytics for user tracking. The site appears to be well-structured with good mobile optimization and SEO practices, although no common CMS or hosting provider details are evident from the data. From a security perspective, the site benefits from HTTPS and Google site verification, indicating legitimacy and basic security hygiene. However, the absence of explicit security headers, privacy and cookie policies, and incident response contacts suggests room for improvement in security posture and compliance. No WAF or blocking mechanisms were detected, and the content is fully accessible. Overall, the website is a credible and authoritative source of governmental information with good content quality and business credibility. Strategic enhancements in privacy compliance, security headers, and incident response transparency would further strengthen its security and trustworthiness.

B

BUWOG Immobilien Treuhand GmbH

buwog-immobilientreuhand.de

44

BUWOG Immobilien Treuhand GmbH operates in the real estate sector, providing property management and related services to tenants, property owners, and investors. The company positions itself as an important player within the German real estate market, with a professional online presence that targets a broad audience including tenants and investors. The website content is well-structured and professionally designed, reflecting a medium-sized enterprise with consistent branding and clear business focus. Technically, the website is hosted on Microsoft Azure infrastructure, utilizing Azure DNS and Cookiebot for cookie consent management. The site employs modern web technologies including JavaScript and CSS, and demonstrates good mobile optimization and SEO practices. However, some advanced security headers and explicit privacy policy documentation are missing, which could be improved to enhance compliance and security posture. From a security perspective, the website benefits from HTTPS encryption and a robust cookie consent mechanism, indicating awareness of GDPR and privacy requirements. No critical vulnerabilities or suspicious patterns were detected in the WHOIS data or website content. Nonetheless, the absence of explicit privacy policies, terms of service, and incident response contacts suggests room for improvement in transparency and user trust. Overall, the website presents a trustworthy and professional image with moderate technical maturity and compliance. Strategic enhancements in privacy documentation, security headers, and contact transparency would further strengthen its security posture and regulatory compliance.

ETARGET SE is a Slovakia-based advertising technology company founded in 2003, specializing in ad delivery services and operating an ad network platform primarily serving advertisers and publishers in Central Europe. The company is a Google Ads Certified External Vendor and a registered participant in the IAB Europe Transparency & Consent Framework, reflecting its commitment to industry standards and privacy compliance. The website content is focused on privacy and cookie policies, demonstrating transparency and adherence to GDPR requirements. Technically, the website uses basic HTML and CSS with custom fonts loaded from a subdomain. The site is moderately optimized for performance and mobile use but lacks advanced frameworks or CMS indications. Security practices include data retention limits, storage within the EU, and no collection of personally identifiable information, though DNSSEC is not enabled and security headers are not explicitly present. The security posture is solid with no critical vulnerabilities detected, but improvements could be made by enabling DNSSEC, publishing a vulnerability disclosure policy, and enhancing incident response contact visibility. Privacy compliance is strong, with clear policies and opt-in/out mechanisms. Overall, the site is professional and trustworthy, with a good balance of business credibility and privacy focus. Strategically, ETARGET should focus on enhancing technical security measures and expanding transparency around incident response to further strengthen trust and compliance.

Kormidlo.cz is a Czech non-profit online catalog managed by the organization Econnect, providing a curated directory of links related to civil society topics such as human rights, social development, environment, culture, and the non-profit sector. Established in 2000, it serves as a resource hub for NGOs, activists, researchers, and the general public interested in civic issues. The website offers categorized content and allows users to submit or suggest edits to links, supported by EU funding disclaimers and managed with a custom CMS called Toolkit. Technically, the website employs standard web technologies including HTML, CSS, and JavaScript, with integrations of Google Analytics, Google Tag Manager, and Google Adsense for tracking and monetization. The site is hosted by Econnect's own hosting services and uses HTTPS for secure communication. However, the design is basic and somewhat dated, with limited mobile optimization and accessibility features. SEO practices are basic but functional. From a security perspective, the site benefits from HTTPS and a cookie consent mechanism compliant with EU regulations. However, it lacks advanced security headers and does not provide explicit privacy policies, terms of service, or vulnerability disclosure information. Contact information is limited to a single email address, with no phone or physical address details. No WAF or blocking mechanisms are detected, and the site content is safe with no adult or questionable material. Overall, Kormidlo.cz is a legitimate, stable, and moderately secure non-profit resource website with room for improvement in privacy compliance, security hardening, and user experience enhancements.

P

Procter & Gamble

mujsvet-pg.cz

71

The website 'Můj svět P&G' serves as a localized consumer engagement platform for Procter & Gamble in the Czech and Slovak markets. It provides product information, promotional campaigns, contests, cashback offers, and community features tailored to regional consumers. The site reflects a strong market position of P&G as a leading multinational consumer goods company, focusing on brand marketing and customer interaction. Technically, the site is built on a modern stack including React and Sitecore CMS, hosted on Microsoft Azure, ensuring good performance, mobile optimization, and accessibility. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed through links to official P&G privacy and terms pages and a cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

T

TVO spółka z ograniczoną odpowiedzialnością

klubtvokazje.pl

50

Klub TVOkazje is a loyalty program operated by TVO sp. z o.o., targeting retail customers in Poland who shop via TV Okazje. The program offers benefits such as gifts, discounts, points accumulation, free shipping, and birthday promotions. The website is built using modern frontend technologies like Vue.js and provides a good user experience with clear navigation and consistent branding. The technical infrastructure is moderate in performance and mobile optimized, hosted likely by OVH SAS. Security posture is adequate but could be improved by adding security headers and explicit incident response policies. Privacy compliance is strong with a comprehensive privacy policy and minimal tracking. Overall, the website is trustworthy and professionally maintained, supporting a small-sized retail loyalty business.

The website bilingualgeek.com currently serves a 404 Not Found error page with no accessible business content. The domain is registered since 2016 with NameCheap, Inc. and is hosted on Google Cloud Platform. The page content indicates the domain is used by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. However, no direct business information, contact details, or user-facing content is available on the site. Technically, the site uses standard web technologies (JavaScript, HTML, CSS) and enforces HTTPS with frequent certificate rotation, but lacks security headers and cookie consent mechanisms. The absence of contact information and the 404 status significantly reduce the website's usability and trustworthiness. Security posture is moderate with no evident vulnerabilities, but improvements are needed in DNS security and transparency. Overall, the site is not currently functional for end users and provides minimal information about the business or services.

V

Výstražné informace hydrometeorologických jevů

vystrahygalileo.com

46

The website vystrahygalileo.com is a newly launched Czech language informational platform providing hydrometeorological warnings and alerts. It appears to serve as a public service or governmental resource focused on weather-related hazard information for Czech regions. The site features an interactive map and search functionality for area-specific warnings. Technically, the site uses modern JavaScript and CSS with Google Tag Manager and Google Analytics for tracking. However, it lacks comprehensive privacy, cookie, and terms of service policies, and does not provide explicit contact information or security policies. The domain is very new, registered in December 2024, consistent with a new service launch. Security posture is basic with no advanced headers or protections detected. Overall, the site is safe for general audiences but would benefit from improved privacy compliance and security best practices.

The domain juicingoasis.com currently serves a 404 Not Found error page with no accessible business content. The page content indicates that the domain is hosted by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. No direct business information, contact details, or policies are available on the site. Technically, the site uses basic HTML, CSS, and JavaScript, hosted on Google Cloud Platform with DNS managed by AWS Route 53. Security practices described pertain to Admiral's hosting environment, including HTTPS enforcement and certificate rotation, but no advanced security headers or policies are present. The domain registration is legitimate, registered since 2017 with NameCheap, Inc., and is not privacy protected. Overall, the site is non-functional as a business website and lacks critical privacy, security, and contact information, resulting in a low trust and quality score.

EkoLink.cz is a Czech environmental link catalog managed by the civic association BEZK, established since 2000. It serves as a resource hub for environmental, ecological, energy, transport, and societal topics, targeting the general public interested in nature and sustainability. The website aggregates over 1900 categorized links and provides community engagement through link submissions and feedback. Technically, the site uses a custom CMS called Toolkit, hosted on ecn.cz infrastructure, and integrates Google Analytics and Adsense for tracking and monetization. The design and user experience are basic but functional, with moderate SEO and accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal policies. Overall, the domain registration is consistent and legitimate, reflecting a stable and trustworthy non-profit entity.

C

Centrum Paraple, o.p.s.

aukceproparaple.cz

46

Centrum Paraple, o.p.s. operates a charitable auction platform through Galerie KODL, organizing annual art auctions to raise funds for people with paraplegia and wheelchair users. The website reflects a well-established non-profit entity with a clear mission and target audience of art collectors and philanthropic supporters. The digital infrastructure is built on Bootstrap 3.4.1 and a proprietary CMS (Vizus CMS), with moderate performance and good mobile optimization. Security posture is moderate, with cookie consent implemented but lacking visible security headers and explicit privacy policies. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact information indicate legitimacy and trustworthiness. Strategic improvements in security headers, privacy policy publication, and SSL configuration are recommended to enhance compliance and security.

C

Centrum Paraple, o.p.s.

stardanceproparaple.cz

54

Centrum Paraple is a Czech non-profit organization focused on supporting people with spinal cord injuries through social rehabilitation services. The website promotes the StarDance charity event, which is supported by Czech Television and the public, to raise funds and awareness. The organization has a clear market position as a reputable charity with established partnerships and a strong social media presence. Technically, the website uses Bootstrap 3.4.1 and is built on the Vizus CMS platform, offering a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks some security headers and formal privacy and terms policies. WHOIS data is missing, which slightly impacts trust but the site content and contact information support legitimacy. Overall, the site is professional and trustworthy, serving a general audience with safe content.

The website alsikskrpa.cz is a cultural and historical project dedicated to the Hussite military leader Alšík Škrpa. It provides detailed historical narratives, media content including audio, and promotes a museum located at the Pátek castle in the Czech Republic. The target audience includes history enthusiasts and local visitors interested in Hussite history. The business model focuses on cultural heritage promotion and museum visitor engagement, positioning itself as a niche local cultural site. Technically, the website uses a traditional HTML/CSS/JavaScript stack with jQuery and Google Fonts, hosted on a Czech hosting provider inferred from the nameservers. The site is moderately performant, mobile-optimized, and has basic accessibility and SEO features. No CMS or advanced frameworks are detected. The site lacks advanced security headers and HTTPS enforcement is not confirmed from the provided data. From a security perspective, the site shows minimal security posture with no privacy or cookie policies, no security headers, and no vulnerability disclosure mechanisms. Contact information is clearly provided, but no incident response or security contacts are present. There is no evidence of user tracking or analytics, which reduces privacy risks but also limits marketing insights. Overall, the site is safe, with no adult or explicit content, and provides a good user experience with clear navigation and relevant content. However, it lacks important compliance elements such as privacy and cookie policies and could improve its security posture by implementing HTTPS and security headers.

G

Geodetický a kartografický ústav Bratislava

gku.sk

59

Geodetický a kartografický ústav Bratislava is a Slovak government institution specializing in geodetic and cartographic services. It provides key national services including cadastral data management, electronic portals for real estate information, and spatial observation services. The website serves government agencies, municipalities, and geospatial professionals with authoritative data and services. The institution holds a strong market position as the official geodetic authority in Slovakia. Technically, the website is built on a custom CMS (WebJET) and uses common JavaScript libraries such as jQuery and Bootstrap. It is mobile-optimized and accessible, with moderate performance. SEO is basic but functional. Cookie consent and GDPR compliance mechanisms are implemented effectively, reflecting good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the absence of security headers and vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the legitimacy of the domain as a government entity with consistent registration details. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and trustworthiness further.

K

KiKA

kikaninchen.de

48

KiKANiNCHEN is a well-established multimedia preschool platform operated under the KiKA brand, a joint venture of German public broadcasters ARD and ZDF. The website offers a rich variety of children's TV series videos, online games, craft ideas, and songs tailored for toddlers and preschool children, positioning itself as a trusted educational and entertainment resource in the German media landscape. The platform targets young children and their parents, providing a safe and ad-free environment for early online experiences. Technically, the site employs modern web standards including HTML5, CSS, JavaScript, and structured data (JSON-LD) to enhance SEO and accessibility, though mobile optimization and accessibility features are basic and could be improved. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal security policies, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which is a critical area for improvement given GDPR requirements. Overall, the website demonstrates high business credibility and content quality but should strengthen its privacy and security posture to align with best practices.

X

Xiaomi Global

xiaomi.com

63

Xiaomi Global operates as the official international website for Xiaomi Corporation, a leading global technology company specializing in consumer electronics such as smartphones, wearables, smart home devices, and lifestyle products. The website serves as a comprehensive e-commerce and marketing platform targeting a global audience interested in innovative technology products. The site demonstrates a high level of digital maturity, utilizing modern web technologies including React, advanced image formats, and performance monitoring tools to ensure a fast and responsive user experience across devices. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident through the presence of privacy and cookie policies with consent mechanisms, aligning with GDPR standards. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence consistent with a large enterprise brand.

The domain severskevyhlidky.cz currently hosts no active website and instead displays a Webnode error placeholder page indicating the domain is available for registration. There is no business information, contact details, or content describing any services or products. The domain was registered in 2019 and uses Webnode's platform and Amazon Cloudfront CDN for hosting the placeholder page. The technical infrastructure is minimal and lacks modern security headers or privacy compliance features. No analytics or marketing tools are present. The security posture is weak due to absence of HTTPS details and security policies. Overall, the site is not operational and provides no business or security assurances.

The Advertiser is a prominent regional news media outlet serving Adelaide and South Australia, providing comprehensive coverage of local news, sports, weather, business, and entertainment. The website is professionally designed with consistent branding and targets a general audience interested in regional news. It operates under the parent company News Corp Australia, indicating a strong market position in the media sector. Technically, the site leverages a modern technology stack including WordPress CMS, various advertising and analytics platforms, and is optimized for desktop and mobile users. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and explicit privacy compliance disclosures. Overall, the site is trustworthy and well-maintained, though it lacks visible contact information and formal privacy and cookie policies in the analyzed content.

I

INTERIA.PL

terazgotuje.pl

53

TerazGotuje.pl is a Polish culinary and lifestyle media website operated under the INTERIA.PL brand, offering a wide range of content including recipes, diet advice, and celebrity kitchen features. The site targets a general audience interested in cooking and healthy eating, positioning itself as a trusted culinary guide in the Polish market. The domain is well-established since 2013 and hosted by a reputable Polish provider, home.pl S.A., reflecting a mature digital presence. Technically, the website employs modern web technologies such as responsive design, WebP images, and SVG graphics, ensuring good user experience across devices. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing advanced security headers and DNSSEC. The site uses multiple third-party tracking and advertising services, indicating extensive user data collection but limited transparency. Overall, the website is professionally designed and functional but would benefit from enhanced privacy compliance and security hardening.

C

Consulting Service Sp. z o.o.

top.pl

59

Top.pl is a well-established Polish lifestyle and advice website operated by Consulting Service Sp. z o.o., affiliated with INTERIA.PL. The site offers a broad range of content including lifestyle guides, recipes, home and garden tips, financial advice, and curiosities, targeting a general Polish-speaking audience. The business model is primarily content publishing supported by advertising. The domain is long-standing, created in 1997, indicating a mature presence in the market. Technically, the site uses modern web technologies, including HTTPS, WebP images, and JavaScript-based tracking and advertising frameworks. The site is mobile-optimized with good SEO practices and a consistent brand presentation. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers could be improved. Privacy compliance is evident with comprehensive privacy and cookie policies and consent mechanisms. However, explicit contact information and security policies are not prominently available. Overall, the site is professional, trustworthy, and safe for general audiences.

K

KiKA

kika.de

58

KiKA is a well-established German public children’s television channel jointly operated by ARD and ZDF, providing a broad range of children’s series, films, games, and creative content. The website reflects a mature digital presence with excellent content quality and a clear focus on its target audience of children and families. The technical infrastructure leverages modern web technologies such as Next.js and React, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is robust with comprehensive privacy and cookie policies and GDPR adherence. Overall, KiKA presents a trustworthy and professional online presence consistent with its public broadcaster status.

A

ASEKOL SK s.r.o.

cervenobielekontajnery.sk

45

The website cervenobielekontajnery.sk is operated by ASEKOL SK s.r.o., a Slovak company specializing in environmental services focused on the collection and sorting of small electronic waste via red and white stationary containers. The site targets municipalities and the general public to facilitate proper disposal of electronic waste, supporting local governments in waste management efforts. The business operates in a niche environmental sector with a clear and consistent brand presence and a small company size founded in 2020. Technically, the website is built on WordPress, hosted likely by Websupport, and uses standard web technologies such as JavaScript, CSS, and HTML5. The site is mobile optimized with good navigation and basic accessibility features. Performance is moderate, and SEO is basic but functional. No advanced frameworks or analytics tools are detected, indicating a simple but effective technical infrastructure. From a security perspective, the site uses HTTPS with DNSSEC enabled, which is positive. However, no security headers were detected, and there is no cookie consent mechanism, which are areas for improvement. The WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. No vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is partial, with a privacy policy present but lacking cookie consent and terms of service. Overall, the website presents a trustworthy and professional front for a small environmental service provider. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence, supporting long-term trust and operational resilience.

B

BSH Hausgeräte GmbH

bsh-group.de

66

BSH Hausgeräte GmbH is a leading global manufacturer of household appliances, operating as a subsidiary of the Bosch Group. The company offers a comprehensive portfolio of products and brands, emphasizing innovation, sustainability, and customer service. The website reflects a mature digital presence with extensive content tailored for consumers, partners, and job seekers. Technically, the site leverages modern frameworks such as React and Next.js, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and external vulnerability reporting mechanisms in place. Privacy compliance is well addressed with clear policies and consent management. The main risk factor is the absence of WHOIS data, which slightly impacts domain trust but is mitigated by strong corporate branding and external trust signals.

Zámek Pátek is a small cultural heritage site located in the Czech Republic, focused on preserving and promoting the historic Renaissance and Baroque chateau on the Ohře river. The website serves as an informational portal for visitors, offering details about tours, events, accommodation, and leisure activities. The business operates primarily as a non-profit or community-supported entity with volunteer involvement and modest entrance fees. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Analytics and Tag Manager for visitor tracking. Hosting is provided by VAS Hosting, as inferred from the nameservers. The site is mobile optimized and well structured, though it lacks advanced CMS or frameworks. Security posture is moderate with HTTPS enabled but missing security headers and no visible privacy or cookie policies, which are compliance gaps. Contact information is clearly presented, enhancing business credibility. Overall, the website is safe, family-friendly, and trustworthy, but could improve privacy compliance and security hardening.

Pension Rosalka is a small hospitality business offering accommodation services in apartments and a mini-camp located in Stará Oleška, Czech Republic. The website targets tourists interested in nature, hiking, and cycling in the Bohemian Switzerland region. The business is established since 2013 and positions itself as a local accommodation provider with a focus on family and recreational visitors. Technically, the website is basic, built with simple HTML and CSS, lacking modern CMS or frameworks, and shows limited mobile optimization and accessibility features. Security posture is weak with no visible HTTPS enforcement, absence of security headers, and publicly accessible admin pages without protection. Privacy and cookie policies are missing, indicating non-compliance with GDPR requirements. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

The website turfest.cz serves as the official online presence for TURFEST.CZ, a tourist festival held annually in Česká Kamenice, Czech Republic. The site provides detailed information about the event scheduled for May 25, 2024, including hiking trips, cultural programs, and local economic promotion. The festival is organized by the Klub českých turistů and the town of Česká Kamenice, targeting tourists, families, and hiking enthusiasts in the region. The website positions itself as a regional event promoter with a focus on local tourism and cultural heritage. From a technical perspective, the website is built using standard HTML and CSS with responsive design for desktop and mobile devices. There is no evidence of advanced frameworks, CMS, or analytics tools in the provided HTML content. The site appears moderately optimized for mobile and SEO, with proper meta tags and structured navigation. However, there is no visible use of security headers or HTTPS confirmation in the data provided, which could impact security posture. Security-wise, the website lacks explicit privacy, cookie, or terms of service policies, which are important for GDPR compliance given the European location. No contact information such as emails or phone numbers are clearly provided for user support or incident response. No security.txt or vulnerability disclosure information is present. The absence of HTTPS confirmation and security headers suggests room for improvement in securing user data and communications. Overall, the website is functional and informative for its purpose but would benefit from enhanced security measures, privacy compliance documentation, and clearer contact channels to improve trust and regulatory adherence.

Turistický bazar is a small, Czech-language online marketplace specializing in second-hand hiking and outdoor equipment, supported by the Turistický magazín brand. The site offers a variety of used gear, maps, and publications for tourists and outdoor enthusiasts, aiming to foster community and sustainable reuse of equipment. Technically, the site is built with basic HTML and CSS, featuring responsive design for mobile users but lacking advanced frameworks or CMS. Security posture is moderate with no visible HTTPS confirmation or security headers in the provided data, and no privacy or cookie policies are present, indicating compliance gaps. The domain is newly registered but consistent with the business purpose and linked to a known partner site. Overall, the site is functional and relevant for its niche but would benefit from improved security and privacy compliance.

I

infopanely.cz

infopanely.cz

53

The website infopanely.cz represents a small Czech business specializing in the creation and production of educational nature trails, tourist information panels, outdoor classrooms, and interactive elements for children. Established since 2012, the company offers end-to-end services including project preparation, production, printing, and installation, targeting municipalities, schools, and organizations interested in enhancing outdoor educational experiences. The site is professionally designed with good content quality and clear navigation, optimized for mobile devices and hosted on a reliable CDN infrastructure.

ecomonitor.cz is a Czech environmental news and monitoring portal operated by the civic association BEZK since 1999. It aggregates and publishes news, articles, and press releases related to ecology, environmental protection, and sustainability, targeting Czech-speaking audiences interested in these topics. The website offers search functionality for its content and links to various reputable Czech media sources. Technically, the site uses basic HTML, CSS, and JavaScript with a custom CMS called Toolkit. The design and user experience are functional but basic, with limited mobile optimization and accessibility features. Security posture is weak due to lack of visible HTTPS enforcement, security headers, and privacy policies. The site uses third-party ad networks and tracking pixels without explicit consent mechanisms, indicating GDPR compliance gaps. Overall, the website is legitimate and consistent with its stated mission but requires improvements in security and privacy compliance to enhance trust and user protection.

H

home.pl S.A.

deccoria.pl

66

Deccoria.pl is a well-established Polish media website specializing in home and garden advice, offering articles, videos, and inspirational content. The site targets Polish-speaking homeowners and gardening enthusiasts, leveraging a partnership with Leroy Merlin to enhance its market position. The domain is registered with home.pl S.A., a reputable Polish hosting and domain provider, and has been active since 2007, indicating a mature presence in its niche. Technically, the site employs modern web technologies including JavaScript frameworks, Google Tag Manager, and multiple analytics and advertising platforms, ensuring a robust digital infrastructure. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though DNSSEC is not enabled, which is a recommended improvement. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, Deccoria.pl presents as a professional, trustworthy, and content-rich platform with good user experience and advertising transparency.

H

home.pl S.A.

smaker.pl

63

Smaker.pl is a well-established Polish culinary website offering a wide range of recipes, cooking articles, and diet-related content. It targets cooking enthusiasts and people interested in culinary arts, providing user-generated recipes and editorial content. The site is professionally designed with consistent branding and good navigation, supporting a large user base and content volume. Technically, the site uses modern JavaScript libraries, integrates with major analytics and advertising platforms such as Google Analytics 4, Gemius, and Facebook Pixel, and is hosted by home.pl S.A., a reputable Polish hosting provider. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, including GDPR-compliant cookie consent and privacy policies. However, some security headers could be improved, and no explicit security or incident response policies are published. Overall, the site is safe for general audiences, with no adult or questionable content detected. The domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

I

INTERIA.PL

pomponik.pl

59

Pomponik.pl is a Polish entertainment and celebrity gossip website operated by INTERIA.PL, a recognized media company. The site offers news, gossip, photos, and videos about Polish and international celebrities, targeting a general audience interested in show business. The website is professionally designed with good content quality and mobile optimization. Technically, it uses modern web technologies including JavaScript, CSS, and tracking scripts from Gemius and Google Tag Manager. Security posture is adequate with HTTPS enforced, but lacks some security headers and formal privacy and cookie policies. No WHOIS data is publicly available due to registry restrictions, but the association with INTERIA.PL supports legitimacy. Overall, the site is a well-established media platform with moderate security and privacy compliance.

I

Interia

interia.pl

59

Interia is a leading Polish internet portal offering a wide range of news, sports, entertainment, and thematic content, along with free email services. The website targets Polish-speaking users interested in current events, sports, and lifestyle content. It holds a strong market position as a major media outlet in Poland. Technically, the site employs modern web technologies including JavaScript, CSS, and integrates multiple analytics and advertising platforms such as Google Analytics 4 and Gemius. The site is well-optimized for mobile devices and provides a professional user experience with clear navigation and rich content. Security-wise, the site uses HTTPS and implements privacy and cookie policies compliant with GDPR, though explicit security contact information and vulnerability disclosure policies are not found. Overall, the domain appears legitimate and trustworthy despite the absence of WHOIS data, likely due to privacy protection. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility compliance.

Insight base s.r.o. is a small Czech technology company specializing in the development of web and mobile applications along with UX/UI design services. Founded in 2021, the company presents itself professionally with clear contact and registration information, targeting businesses seeking custom software solutions. The website is well-structured with a modern design and good mobile optimization, though it lacks privacy and cookie policies which are important for compliance. Technically, the site uses modern JavaScript and SVG graphics with deferred script loading, indicating a moderate level of digital maturity. Security posture is average, with no visible security headers or vulnerability disclosures, and no evidence of analytics or tracking services, which limits privacy concerns but also reduces marketing insights. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

BMK servis s.r.o.

bmkservis.cz

56

BMK servis s.r.o. is a small Czech company specializing in the sale and repair of household appliances since 1994. Their website presents a clear business focus on servicing and selling appliances such as washers, dryers, refrigerators, and vacuum cleaners, targeting residential customers primarily in Prague. The company operates an e-shop for spare parts and provides online order tracking, indicating a moderate digital presence. Technically, the website uses legacy JavaScript libraries like jQuery 1.7.2 and custom scripts for UI elements such as carousels and sliders. Mobile optimization is basic but functional, and SEO elements like meta tags and structured navigation are present. Security posture is moderate; while HTTPS is presumably enabled (not verifiable from provided data), no advanced security headers or explicit security policies are published. The cookie consent mechanism is implemented with user choice options, supporting GDPR compliance. However, the absence of WHOIS data and outdated libraries present risks. Overall, the site is functional and professional but would benefit from modernization and enhanced security practices.

Kajomigenerator.de is a technology-focused website providing a client login portal for a service named Kajomi Generator. The site appears to serve clients who require generation or management of specific data or content, though no detailed business description or public-facing content is provided. The website's market position and business scale appear small and focused on a niche client base. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and an older version of CKEditor (4.5.10). The site shows basic mobile optimization and accessibility but lacks modern SEO and comprehensive technical enhancements. The presence of an API hostname using HTTPS suggests secure backend communication, but no explicit security headers or advanced frameworks are detected. From a security perspective, the site has some basic protections such as password input masking and HTTPS usage implied by API calls. However, the use of an outdated CKEditor version and absence of security headers or CSRF protections indicate potential vulnerabilities. No privacy, cookie, or terms of service policies are present, limiting compliance with GDPR and other regulations. No contact or incident response information is publicly available. Overall, the site is functional but basic, with moderate trustworthiness based on WHOIS data consistency. Strategic improvements in security hardening, privacy compliance, and business transparency are recommended to enhance credibility and reduce risk.

A

Autoritatea Naţională de Supraveghere a Prelucrării Datelor cu Caracter Personal

dataprotection.ro

55

The website dataprotection.ro represents the official Romanian National Authority for the Supervision of Personal Data Processing (ANSPDCP). It serves as the national regulator ensuring compliance with data protection laws, including GDPR, and provides resources, guidance, and complaint handling for data subjects and operators in Romania. The site targets a broad audience including the general public, data controllers, and public institutions. Technically, the website uses legacy technologies such as the YUI JavaScript library and custom CMS, with moderate performance and basic mobile optimization. Security posture is moderate with no DNSSEC and lack of security headers, but the domain is secured with HTTPS (assumed) and no critical vulnerabilities detected. Privacy compliance is good with clear privacy and cookie policies, though lacking explicit cookie consent mechanisms. Business credibility is high given the official government status and consistent WHOIS data. Overall, the site is functional and trustworthy but could benefit from modernization and enhanced security practices.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

bzga-essstoerungen.de

63

The website www.bzga-essstoerungen.de is operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG), a governmental public health institute in Germany focused on providing comprehensive information and support related to eating disorders. The site offers detailed educational content, counseling options, therapy guidance, and a database for finding local support centers. It targets a broad audience including affected individuals, families, and healthcare professionals. The business model centers on public health awareness and support services without commercial intent, positioning it as a trusted governmental resource in the healthcare sector. Technically, the website is built on TYPO3 CMS with a modern and accessible design, incorporating Bootstrap for responsive layouts and AblePlayer for media accessibility. It uses Matomo analytics configured for privacy compliance, including IP anonymization and consent-based data collection. The site demonstrates good mobile optimization, SEO practices, and accessibility features, reflecting a mature digital infrastructure suitable for public sector needs. From a security perspective, the site enforces HTTPS and employs a cookie consent mechanism aligned with GDPR requirements. However, it lacks publicly available security policies, incident response contacts, and security headers that could enhance its security posture. No vulnerabilities or suspicious activities were detected, and the WHOIS data aligns reasonably with the organizational identity, supporting legitimacy. Overall, the website scores well on content quality, privacy compliance, and business credibility, with moderate technical and security scores. Strategic improvements in security transparency and policy publication would further strengthen trust and resilience. The site is safe for general audiences, with no adult or inappropriate content detected.

V

VIA Schankhalle Pfefferberg gGmbH

pfefferberg-theater.de

52

Pfefferberg Theater is a small, non-profit cultural institution based in Berlin, Germany, offering a diverse range of theatrical performances including contemporary circus, dance, family shows, and live literature readings. The organization emphasizes artistic quality and inclusivity, partnering with local gastronomy and cultural entities to enhance visitor experience. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its target audience of arts and culture enthusiasts. Technically, the website employs modern web technologies including JavaScript libraries, CSS frameworks, and accessibility tools such as ReadSpeaker. It integrates third-party services like Vimeo for video content and Google Analytics for visitor tracking, while maintaining GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers are not explicitly detected. From a security perspective, the site uses HTTPS and enforces cookie consent with granular user control, but lacks visible security policies or incident response information. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data is partially consistent with the website's German location and business nature, with no suspicious patterns detected. Overall, the site presents a low-risk profile with good privacy compliance and a solid security posture. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

A

Aleš Linhart

aleslinhart.cz

42

Aleš Linhart operates a small-scale web development service primarily targeting clients who want to create new websites or update existing ones. The website presents a professional image with client references and a clear service offering focused on web design and development. The technical infrastructure is basic but functional, using standard web technologies such as HTML, CSS, JavaScript, and jQuery, with Google Fonts integration. Mobile responsiveness and SEO basics are addressed, though accessibility could be improved. Security posture is moderate; HTTPS is assumed but no advanced security headers or policies are present. The absence of privacy and cookie policies, as well as contact details, limits compliance and trust. WHOIS data is unavailable, which raises concerns about domain legitimacy and transparency. Overall, the website is functional and professional but would benefit from enhanced security, compliance, and transparency measures.