Security Directory

B

Brandlift, Inc.

leadberry.com

63

Leadberry is a technology company offering a web-based B2B lead generation software that converts website visitors into sales leads by leveraging Google Analytics data. The company targets sales, marketing teams, management, and agencies globally, positioning itself as a reliable SaaS provider with a strong market presence evidenced by testimonials and media features. The website demonstrates a mature digital infrastructure using modern JavaScript frameworks and integrates multiple marketing and analytics tools to optimize lead generation and user engagement. Security posture is solid with HTTPS enforcement and CAPTCHA protections, though some security headers and explicit incident response policies are absent. Privacy compliance is well addressed with clear policies and consent mechanisms. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and parent company association. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility compliance.

T

TIPOS, národná lotériová spoločnosť, a. s.

etipos.sk

53

TIPOS, národná lotériová spoločnosť, a. s., is the official national lottery operator in Slovakia, providing a wide range of regulated gambling services including lotteries, scratch cards, sports betting, virtual sports, and online casino games. The website moj.etipos.sk serves as a portal for these services, targeting the adult Slovak population with a professional and well-structured online presence. The company holds a strong market position as a government-backed entity with exclusive rights in the sector. Technically, the website employs modern web technologies such as jQuery, Google Tag Manager, Google Analytics, and Cookiebot for analytics and consent management. The site is mobile-optimized and uses secure HTTPS connections with robust security headers and two-factor authentication for user login, reflecting a mature digital infrastructure. Performance is moderate with good SEO and accessibility practices, though some accessibility enhancements could be made. From a security perspective, the site demonstrates strong adherence to best practices including HTTPS enforcement, CSP with violation reporting, and secure login mechanisms. Privacy policies and cookie consent are comprehensive and GDPR compliant. However, explicit incident response contacts and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Overall, moj.etipos.sk is a trustworthy, professional, and secure platform for regulated gambling services in Slovakia. The domain registration data aligns well with the business claims, reinforcing legitimacy. Strategic recommendations include publishing incident response contacts, adding a security.txt file, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security and compliance.

V

Vysoké učení technické v Brně

vut.cz

62

Vysoké učení technické v Brně (Brno University of Technology) is a prestigious Czech technical university with over 120 years of tradition. It offers a wide range of technical, economic, natural science, and artistic study programs across eight faculties and three university institutes. The university maintains a strong position in scientific research and international cooperation, supported by memberships in notable university networks and awards such as the HR Excellence in Research Award. The website reflects a mature digital presence with comprehensive content targeting prospective and current students, researchers, and academic partners. Technically, the website employs a mix of legacy and modern technologies including jQuery 1.12.4, Google Tag Manager, CookieHub for cookie consent, and Cloudflare for hosting and security. The site is well-optimized for mobile devices and accessibility, with good SEO practices and structured navigation. Security posture is strong with HTTPS enforcement and multiple security headers, although the use of an older jQuery version suggests some technical debt. Privacy compliance is robust, featuring detailed privacy and cookie policies with consent mechanisms aligned with GDPR requirements. However, explicit vulnerability disclosure and incident response information are not publicly available, which could be improved to enhance transparency and security readiness. Overall, the site is professional, trustworthy, and well-maintained, representing a large educational institution with a strong market position. Strategic recommendations include updating legacy libraries, publishing vulnerability disclosure policies, and enhancing incident response visibility to further strengthen security and compliance.

T

Technologické centrum Praha

tc.cz

52

Technologické centrum Praha is a Czech national technology center focused on supporting the country's participation in the European Research Area. It provides strategic studies, technology transfer, and innovation support services primarily targeting research institutions, SMEs, and public sector entities. The website is professionally designed, mobile-optimized, and uses modern web technologies including Google Analytics and reCAPTCHA for security. While the site enforces HTTPS and includes CSRF tokens in forms, it lacks some security headers and an explicit cookie consent mechanism. The absence of WHOIS data reduces trust assessment confidence but the overall presentation and content quality indicate a legitimate and established organization. Social media presence on major platforms further supports credibility.

A

AMIRES

amires.eu

51

AMIRES is a business focused on supporting strategically oriented innovation to create business impact. The website presents a professional but basic digital presence, primarily using WordPress CMS with standard web technologies such as Google Fonts and Font Awesome icons. The content is business-oriented, targeting innovation stakeholders, but lacks visible contact information and formal privacy or cookie policies. The technical infrastructure is moderate in performance and mobile optimization but lacks advanced security configurations such as security headers. The security posture is minimal with no detected vulnerabilities but also no published security or incident response policies. Overall, the website is accessible without WAF or blocking mechanisms, but the absence of WHOIS data due to privacy protection limits trust verification. Strategic recommendations include improving transparency with privacy and cookie policies, enhancing security headers, and publishing contact and incident response information.

V

Vysoká škola ekonomická v Praze

vse.cz

66

Vysoká škola ekonomická v Praze (VŠE) is a prominent business university in the Czech Republic, recognized as the best business university in Central and Eastern Europe. It offers a wide range of academic programs including bachelor's, master's, doctoral, and MBA/MPA studies, supported by strong international cooperation and research initiatives. The institution is well-accredited with prestigious certifications such as AACSB, EQUIS, and CEMS, underscoring its academic excellence and global standing. The website reflects a mature digital presence with comprehensive content tailored to students, academics, and partners. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Popper.js, and Google Tag Manager. It is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. The site employs HTTPS with strong SSL configuration and security headers, ensuring secure communications. Cookie consent mechanisms and privacy policies demonstrate compliance with GDPR and related privacy regulations. From a security perspective, the site follows best practices such as enforcing HTTPS and using security headers. However, it lacks a publicly available security policy and incident response contact details, which are recommended for enhanced transparency and readiness. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain trust analysis, but the website's professional presentation and accreditations support its legitimacy. Overall, VŠE's website is a well-constructed, secure, and compliant platform that effectively serves its educational mission. Strategic improvements include publishing a security policy, providing incident response contacts, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

H

HiLASE

hilase.cz

9

HiLASE is a Czech high-tech laser research center focused on delivering innovative laser technologies and solutions that bridge excellent scientific results with industrial requirements. The center offers research programs, engineering support, project management, business development, open access to research infrastructure, and training. The website reflects a medium-sized organization with a professional online presence and active engagement through social media and partner collaborations. Technically, the site is built on WordPress with common plugins and tracking tools, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit privacy policy pages and security headers. The absence of WHOIS data reduces domain trustworthiness, but the overall business credibility remains high based on content and partner affiliations. Strategic improvements include publishing privacy and security policies, enhancing security headers, and providing clearer contact information.

C

COFFEEXP

bcncoffeeguide.com

62

BCNCOFFEEGUIDE is a niche online specialty coffee guide focused primarily on Barcelona, Europe, and global specialty coffee spots. The website offers a comprehensive directory of coffee shops, event listings, B2B coffee offers, and related services such as coffee jobs and gear sales. It targets coffee enthusiasts, tourists, and local consumers interested in specialty coffee experiences. The business operates on a small scale with a focused market position in the hospitality sector. Technically, the website is built on WordPress using the Citadela theme and plugins, integrating Google Maps for location services and Google Analytics for traffic monitoring. The hosting provider is Bluehost Inc., and the site uses HTTPS with a good SSL configuration. Security posture is moderate with room for improvement in security headers and DNSSEC implementation. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional, well-branded, and trustworthy, with safe content suitable for general audiences.

C

Công ty cổ phần tập đoàn quốc tế Ecom

phanthuocvisinh.com

49

Phanthuocvisinh.com is a Vietnamese e-commerce website specializing in biological fertilizers, biopesticides, and agricultural bio-products. Operated by Công ty cổ phần tập đoàn quốc tế Ecom, the site targets farmers and agricultural businesses seeking safe and effective biological solutions for crop protection and soil improvement. The website demonstrates a solid market position as a trusted provider in Vietnam's agricultural sector. Technically, the site is built on WordPress with WooCommerce and uses modern technologies including Google Analytics and Facebook Pixel for marketing and analytics. The site is mobile-optimized and SEO-friendly, though some improvements in accessibility and security headers are recommended. Security posture is generally good with HTTPS enforced, but domain WHOIS data shows inconsistencies that slightly reduce trust. Privacy compliance is basic, lacking explicit cookie consent despite tracking scripts. Overall, the site is professional and trustworthy for its business domain but should address domain registration transparency and privacy compliance to enhance credibility.

J

JapaneseUp

japaneseup.com

48

JapaneseUp is a niche educational website dedicated to helping users learn the Japanese language through free games and resources focused on Hiragana, Katakana, and Kanji alphabets. The site targets language learners, especially beginners, offering interactive tools and phrase resources to facilitate learning without the need for in-person tutors. The business model appears to be primarily content-driven with potential paid coaching services. Technically, the website is built on WordPress with common plugins for analytics and marketing, including Google Analytics and Facebook Pixel. The site is moderately optimized for performance and mobile use, with a consistent and professional design. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not provide explicit security or incident response policies. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. Overall, the domain registration is consistent with the business age and content, indicating legitimacy. The website is safe for general audiences with no adult or questionable content detected.

T

Tierra de Drones

tierradedrones.com

58

Tierra de Drones is a Spanish-language website specializing in drone reviews, comparisons, and affiliate marketing for drone products. The site targets consumers ranging from beginners to professionals interested in drones with cameras, offering detailed analyses, video content, and curated buying guides. The business operates primarily as a content-driven affiliate marketing platform, leveraging SEO and social media to attract drone enthusiasts. Technically, the site is built on WordPress with popular SEO and marketing plugins, hosted with NameCheap as registrar and using Cloudflare DNS services. The website demonstrates good digital maturity with structured data, responsive design, and integration of analytics and marketing tools. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced headers like CSP and DNSSEC. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its niche, though it would benefit from enhanced privacy disclosures and security policies.

D

Dr. Edward G. Stephens DDS

edstephensdds.com

48

Dr. Edward G. Stephens DDS operates a local dental practice based in Mexico, Missouri, providing general dentistry and orthodontic services to children, teens, and adults. The website positions the practice as a quality service provider in the local healthcare sector, targeting the general population in the Mexico, MO area. The business appears to be small and community-focused, founded around 2018, with a professional online presence that supports patient engagement and information dissemination. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site integrates Google Analytics and Tag Manager for visitor tracking but lacks advanced privacy compliance features such as cookie consent banners or detailed privacy policies. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and security hardening to meet modern standards.

E

Energía Hoy

energiahoy.com

50

Energía Hoy is a specialized media platform delivering news and analysis focused on the energy sector in Mexico and Latin America. The website covers topics such as electricity, oil & gas, and renewable energies, targeting professionals, policymakers, and industry stakeholders. The platform operates on WordPress CMS with modern SEO and page builder plugins, hosted by Bluehost Inc. It maintains a professional design with good navigation and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and explicit security policies. Privacy compliance is limited due to absence of visible privacy and cookie policies. The site uses Google Analytics and Smartmediagroup ads for analytics and monetization. Social media presence is strong across major platforms. Overall, the site is a credible and professional energy news source with room for improvement in privacy and security transparency.

E

Energy & Commerce

energyandcommerce.com.mx

49

Energy & Commerce is a bilingual digital platform specializing in news and publications related to the industrial and energy sectors in Mexico. The website serves professionals and businesses within these sectors by providing industry news, expert columns, and digital publications. It holds a moderate market position as a specialized media outlet with a consistent brand presence and active social media engagement. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and advertising, offering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks comprehensive security headers and formal privacy or cookie policies, indicating compliance gaps. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

O

Oil & Gas Magazine

energymagazine.mx

60

Oil & Gas Magazine is a well-established Mexican media company specializing in news and information related to the energy and industrial sectors. Founded in 2014, it serves as a key information source for professionals and stakeholders in Mexico and Latin America, offering news articles, interviews, videos, podcasts, and webinars. The website demonstrates a professional design and consistent branding, with a clear focus on energy industry content. Technically, the site is built on WordPress with common plugins and integrates Google Analytics for user tracking. It is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal privacy and cookie policies, indicating compliance gaps. The WHOIS data confirms legitimacy and consistency with the business claims. Overall, the site is credible and trustworthy but would benefit from enhanced privacy compliance and security best practices.

M

MexicoIndustry

mexicoindustry.com

58

MexicoIndustry is a well-established digital media platform specializing in news and analysis for the Mexican manufacturing sector. Founded in 2013, it serves a professional audience including industry stakeholders, investors, and manufacturing professionals. The website offers sector-specific news, videos, technical documents, and event promotions, positioning itself as a key information source in the industrial media space in Mexico. The business model is primarily advertising-driven with partnerships to related industry sites. Technically, the website uses modern frontend technologies such as Bootstrap 5, Swiper carousels, and integrates Google Analytics and Facebook Pixel for tracking. It is hosted on Bluehost and employs HTTPS with a valid SSL certificate. The site is mobile optimized and has good SEO practices, though it lacks some advanced security headers and DNSSEC. From a security perspective, the site enforces HTTPS and has domain locks to prevent unauthorized changes. However, it lacks DNSSEC, security headers, and published security or incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected, which may pose GDPR compliance risks. Overall, the website is professional, content-rich, and trustworthy with moderate technical and security maturity. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its posture and user trust.

M

Metalmecánica

metalmecanica.com

68

Metalmecánica is a Spanish-language online platform serving the metalworking community in Latin America, connecting suppliers and professionals with industry-specific content, product catalogs, and services. The website demonstrates a professional design and uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and analytics tools such as Google Analytics and Microsoft Clarity. The platform offers a variety of services including supplier directories, job listings, and industry news, positioning itself as a regional hub for the metalworking sector. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Additionally, the lack of explicit privacy and cookie policies and contact information indicates gaps in privacy compliance and business transparency. Security posture is moderate with HTTPS implied but missing explicit security headers and incident response details. Overall, the site is functional and well-designed but would benefit from enhanced transparency and security practices.

M

Manufactura Latam

manufactura-latam.com

64

Manufactura Latam operates as a specialized online directory and content platform serving the manufacturing industry in Latin America, primarily Mexico. It offers a comprehensive supplier directory, product catalogs, industry news, articles, events, and a digital magazine, targeting manufacturing professionals and companies seeking industry information and business connections. The platform leverages modern web technologies including Bootstrap, jQuery, and integrates multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, but lack explicit security headers and published privacy or cookie policies, indicating room for compliance improvement. The absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional appearance and functionality of the website.

C

Cuatro Cero

cuatro-cero.com.mx

55

Cuatro Cero is a Mexican digital media outlet specializing in the digital industry sector. The website serves as a niche media platform providing news and insights relevant to the digital industry, targeting a general Spanish-speaking audience primarily in Mexico. The business model centers on media publishing with advertising support, leveraging WordPress as its CMS and integrating Google Analytics for visitor tracking. The site maintains a consistent brand presence and uses modern web technologies to deliver content effectively.

G

Global Energy

globalenergy.mx

65

Global Energy is a specialized media publication focused on delivering objective and reliable business information within the energy sector in Mexico. The website serves professionals and stakeholders by providing news, analysis, and virtual editions of their magazine. Their market position is that of a reputable energy sector media outlet with a consistent brand and good content quality. Technically, the site is built on WordPress using a modern Newspaper theme and several plugins for SEO, user engagement, and analytics. The site is mobile optimized and performs moderately well. Security posture is solid with HTTPS enforced, security headers present, and no exposed sensitive data. Privacy compliance is demonstrated through a comprehensive privacy policy and cookie consent mechanism, though explicit terms of service and security policies are absent. Overall, the site is trustworthy and professional, with room for improvement in security transparency and accessibility.

N

Nokia Corporation

nokia.com

82

Nokia Corporation is a globally recognized leader in telecommunications and technology infrastructure, providing mobile, fixed, and cloud network solutions. The company operates as a B2B technology provider serving enterprises, governments, and technology professionals worldwide. With a founding date of 1865 and a large enterprise size, Nokia maintains a strong market position supported by subsidiaries such as Nokia Networks and Nokia Bell Labs. The website reflects this stature with professional design, consistent branding, and comprehensive corporate information. Technically, the website is built on Drupal 10 CMS and integrates advanced marketing and analytics tools including Marketo, Google Tag Manager, Google Analytics, and New Relic. Performance is moderate with good mobile optimization and SEO practices. Accessibility is basic but functional. The site employs modern security headers and enforces HTTPS, indicating a strong security posture. However, explicit security policy pages and incident response contacts are not evident. Security-wise, the site demonstrates best practices such as content security policies and cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data is noted but attributed to registry restrictions rather than suspicious activity. Overall, the site is trustworthy and professionally maintained. Strategically, Nokia should consider publishing explicit security policies and vulnerability disclosure information to enhance transparency and trust. Improving accessibility and regularly auditing third-party scripts will further strengthen the security and user experience. These steps will support Nokia's reputation as a secure and reliable technology leader.

S

SportCom

sportcom.eu

44

SportCom is a European-based company specializing in the manufacture and sale of combat sports and martial arts equipment, including boxing rings, MMA cages, mats, and accessories. The company also offers custom gym and product conception services, targeting combat sports professionals, gyms, and fitness centers. The website demonstrates a professional digital presence with clear navigation, multilingual support, and integration of modern marketing and analytics tools. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers and a published security policy would enhance trust. Privacy compliance is basic with cookie consent and privacy/legal notices present. The WHOIS data is privacy protected by EURid, which is typical for European domains, and does not raise immediate concerns given the professional website and clear contact information. Overall, the site is trustworthy and well-positioned in its niche.

S

Sector s.r.o.

animaky.cz

42

Animaky.cz is an online media platform operated by Sector s.r.o., offering a large catalog of free animated fairy tales and cartoons primarily targeted at children and families in Czech and Slovak languages. The website features popular series such as Máša a Medvěd, Tom a Jerry, and Mr. Bean, providing categorized and searchable video content. The business model relies on advertising revenue, with Google Adsense and Google Ad Manager integrated for monetization. The platform maintains a consistent brand presence and leverages social media channels like Facebook for audience engagement. Technically, the website employs modern web technologies including jQuery, lazy loading, Google Fonts, and FontAwesome icons. It uses HTTPS with good SSL configuration and includes SEO-friendly meta tags and Open Graph data. The site is moderately optimized for performance and mobile devices, though accessibility features are basic. Analytics and tracking are implemented via Google Analytics and Google Tag Manager, indicating moderate user tracking. From a security perspective, the site enforces HTTPS and includes standard security headers, but lacks visible cookie consent mechanisms and published security policies. The absence of WHOIS data for the domain reduces trustworthiness and complicates domain legitimacy verification. No critical vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic, with a privacy policy available on the parent domain but no explicit cookie or terms of service pages. Overall, Animaky.cz presents a professional and trustworthy platform for children's animated content with room for improvement in privacy compliance and transparency. Strategic recommendations include implementing cookie consent banners, publishing terms of service and security policies, and enhancing accessibility and incident response disclosures.

R

Ringier Slovakia Communities s. r. o.

pokec.sk

60

Pokec.sk is the largest Slovak online social networking and chat community platform operated by Ringier Slovakia Communities s. r. o., a subsidiary of Ringier Axel Springer Slovakia. The platform serves over 500,000 daily users, offering chat rooms, user profiles, photo sharing, and mobile app access. It targets a broad Slovak and neighboring country audience seeking social interaction and entertainment. Technically, the site leverages modern web technologies including React and Next.js, with integrated analytics and advertising platforms managed under GDPR-compliant consent mechanisms. Security posture is strong with HTTPS and secure login forms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professionally designed, well-branded, and trustworthy, with safe content suitable for general audiences.

P

Picards

picards.cz

45

Picards is a Czech-based UX design agency specializing in user experience, SEO, content strategy, and analytics. Founded in 2015, they serve a variety of clients with a strong portfolio of case studies and testimonials, positioning themselves as a trusted partner in digital design and optimization. The website is professionally designed, mobile-optimized, and uses modern web technologies including Google Analytics, Tag Manager, and Optimize for performance and user insights. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks published security policies and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site reflects a credible and professional business with room for improvement in compliance and security transparency.

L

LAUFEN Bathrooms

laufen.com

70

LAUFEN Bathrooms is a premium Swiss bathroom manufacturer with a rich heritage dating back to 1892. The company specializes in high-quality bathroom ceramics and furniture, emphasizing sustainability, innovative design, and craftsmanship. Positioned as a leader in the bathroom manufacturing sector, LAUFEN serves architects, designers, distributors, and discerning customers worldwide. The website reflects a mature digital presence with a modern tech stack, including Liferay DXP and React, supported by robust analytics and consent management tools. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates professionalism, trustworthiness, and compliance with privacy regulations, supporting LAUFEN's market position as a premium brand.

S

Swiss Leaders

swissleaders.ch

54

Swiss Leaders is a well-established Swiss non-profit organization founded in 1893, dedicated to representing and supporting the economic, political, and social interests of executives in Switzerland. With a membership base of approximately 10,000, it offers a broad range of services including legal advice, career development, training, certifications, health management, financial services, and networking opportunities. The website is professionally designed, multilingual, and targets leaders and executives seeking career and leadership support within Switzerland. Technically, the site uses a custom CMS with modern frameworks like Bootstrap 5 and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Twitter tracking. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the domain registration aligns well with the organization's history and location, supporting its legitimacy. The site does not contain any adult or questionable content and maintains a high level of professionalism and trustworthiness.

S

Sector s.r.o.

webhry.cz

36

Webhry.cz is an online gaming portal operated by Sector s.r.o., targeting Czech and Slovak audiences with a wide variety of free online games including flash, HTML5, and Unity-based titles. The site offers categorized game listings, user account features, and integrates advertising as its primary revenue model. The technical infrastructure leverages common web technologies such as jQuery, Google Analytics, and Google Adsense, with a consent management platform for cookie compliance. While the site is accessible over HTTPS and includes basic security practices, it uses outdated JavaScript libraries and lacks visible privacy and terms of service pages, which are areas for improvement. The absence of WHOIS data limits domain trust verification, but the presence of company contact information and consistent branding supports legitimacy. Overall, the site provides a good user experience with family-friendly content and moderate technical maturity.

Svazek obcí Větrník is a local government association representing seven municipalities in South Moravia, Czech Republic. The website serves as an official portal providing information about the member municipalities, local cultural heritage, natural reserves, cycling and hippostezky routes, and community services. It targets residents and visitors interested in regional tourism and local governance. The business model is focused on community coordination and information dissemination, positioning itself as a trusted local government entity. Technically, the website employs a traditional tech stack including jQuery 1.7.1, Google Analytics, and Google Tag Manager for tracking. While the site is functional with good navigation and content quality, it shows signs of aging technology and lacks modern security headers and comprehensive privacy compliance features. Mobile optimization and accessibility are basic but present. From a security perspective, the site uses HTTPS and standard tracking scripts but lacks explicit security headers and privacy/cookie policies, which are critical for GDPR compliance. The WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and contact details suggest legitimacy. No critical vulnerabilities or adult content were detected. Overall, the site scores moderately well but would benefit from modernization of its technical stack, enhanced security practices, and improved privacy compliance to better serve its users and meet regulatory requirements.

D

Destinační agentura České středohoří, o.p.s.

stredohori.cz

48

The website stredohori.cz serves as a comprehensive regional tourism portal for the České středohoří area in the Czech Republic. It provides detailed information about local attractions, events, accommodations, and services, targeting tourists and visitors interested in cultural, outdoor, and recreational activities. The site is operated by Destinační agentura České středohoří, o.p.s., a small regional destination management organization established in 2011. The business model focuses on promoting regional tourism and supporting local service providers through information dissemination and event promotion. From a technical perspective, the website employs modern web technologies including Google Fonts, Google Analytics, and Google Tag Manager, with a responsive design optimized for mobile devices. The site is hosted likely by Wedos, consistent with the domain registrar information. Performance is moderate with good SEO and basic accessibility features. The site uses HTTPS with a valid SSL certificate, ensuring secure communications. Security posture is solid with HTTPS enforced and a cookie consent mechanism that complies with GDPR requirements. However, the site lacks explicit privacy policy and terms of service pages, as well as published security policies or incident response contacts. No security headers were detected in the HTML content, which could be improved to enhance security. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website is trustworthy and professional, with a clear focus on regional tourism promotion. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and providing explicit incident response contacts to improve compliance and security maturity.

E

EGOMOTION s.r.o.

cyklotoulky.cz

43

Cyklotoulky.cz is a specialized media platform operated by EGOMOTION s.r.o., focusing on cycling tourism in the Czech Republic and Slovakia. The website offers detailed cycling route guides, accommodation options, and media content including articles and videos, targeting cycling enthusiasts and tourists. The site is well-branded and maintains partnerships with recognized companies and media outlets, enhancing its market position in the regional cycling tourism sector. Technically, the website is built on Drupal 7 with modern front-end frameworks like Bootstrap and uses Google Analytics with privacy-conscious settings. While the site is mobile-optimized and offers a good user experience, it lacks visible privacy and cookie policies, which impacts compliance. Security-wise, HTTPS is enforced, but security headers are missing, and no WHOIS data is available, which reduces domain transparency and trust. Overall, the site is professional and trustworthy but would benefit from improved privacy disclosures and enhanced security headers.

O

Outward Bound Czech Republic, pobočka PŠL

outwardbound.cz

46

Outward Bound Czech Republic, pobočka PŠL, is a well-established non-profit educational organization founded in 1999, offering outdoor adventure expeditions and school programs aimed at youth and young adults. The organization is part of the international Outward Bound network, focusing on personal development through authentic nature experiences. Their website reflects a professional and consistent brand image, with comprehensive content targeting schools, parents, and young participants. Technically, the site is built on WordPress with modern libraries and tools, including Google Analytics and Facebook Pixel for tracking, and Mailchimp for newsletter management. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms. Contact information is transparent and complete, enhancing business credibility. Overall, the site is trustworthy, safe, and professionally maintained.

Prázdninová škola Lipnice is a Czech non-profit organization specializing in experiential pedagogy with a history dating back to 1977. The organization offers a variety of courses for the public, closed groups, and professionals, focusing on personal development, courage, resilience, and responsibility. The website is professionally designed using WordPress and integrates modern SEO and analytics tools, reflecting a mature digital presence. However, explicit privacy and cookie policies are not found, which is a compliance gap. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks some security headers and incident response contacts. Overall, the site is trustworthy and well-positioned in its niche but could improve compliance and security transparency.

O

OBR služby, s.r.o.

obr-odpady.cz

41

OBR služby, s.r.o. is a small Czech company specializing in container transport, waste collection, recycling, and sale of construction materials. Operating since 1993, it serves the Kamenice region and surrounding areas with a focus on ecological waste disposal and material transport. The website presents clear business information, including phone contacts and physical address, and offers multiple service categories such as container rental, raw material purchase, and waste storage. The company maintains a local market position with a practical business model centered on transportation and waste management services. Technically, the website uses common JavaScript libraries like jQuery and Fancybox, along with Google Analytics and Google Tag Manager for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features and cookie consent mechanisms. No CMS or hosting provider details are evident. The website is well-structured with clear navigation and professional design, though SEO and accessibility could be improved. From a security perspective, the site uses HTTPS (assumed from external scripts loaded via HTTPS), but no explicit security headers were detected in the provided data. There is no evidence of vulnerable libraries or exposed sensitive data. Privacy policy and terms of service pages exist, indicating some compliance with GDPR, but cookie consent is missing. WHOIS data is unavailable or privacy protected, which reduces transparency but is common for small businesses. No signs of WAF or blocking mechanisms were found, and the site content is safe and business-focused. Overall, the website is functional, professional, and trustworthy for its business scope, but improvements in security headers, privacy compliance (cookie consent), and technical modernization would enhance its posture and user trust.

M

Monivet s.r.o.

monivet.cz

39

Monivet s.r.o. is a Czech company specializing in the construction of wooden houses, specifically sruby (log houses) and roubenky (timber-framed houses) built on a turnkey basis. The company offers a range of complementary wooden structures such as garden altars, saunas, and dog houses. Their market position is that of a specialized small business with a focus on quality craftsmanship and traditional techniques. The website is professionally designed with good content relevance and clear navigation, targeting customers interested in wooden residential and garden buildings. Technically, the site uses legacy JavaScript libraries like jQuery 1.8.3, Google Analytics, and Google Tag Manager for tracking, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and updated libraries. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

B

BurnIT, s.r.o.

dtonline.cz

40

DTonline.cz is a Czech fan portal dedicated to the collectible card game Doom Trooper from the Mutant Chronicles universe. Operated by BurnIT, s.r.o., the site provides a card catalog, tournament announcements and reports, a fan magazine, and a simple game. It targets Czech-speaking fans and players, serving as a community hub rather than a commercial enterprise. The website is modest in scale and content quality is good for its niche audience. Technically, the site uses standard web technologies including jQuery and Google Analytics, but lacks modern CMS or advanced frameworks. Security posture is basic with HTTPS enabled but missing important security headers and privacy compliance elements such as cookie and privacy policies. No social media presence or direct contact emails are provided, limiting user engagement channels. Overall, the site is legitimate and consistent with its stated purpose but would benefit from improved security and privacy practices.

S

Synetix s.r.o.

synetix.cz

42

Synetix s.r.o. is a Czech Republic-based small technology company specializing in web design, internet shops, custom internet applications, and hosting services. Their website showcases a portfolio of client references across various industries, indicating a service-oriented business model focused on local and regional clients including municipalities and businesses. The company offers a proprietary CMS system and related modules, emphasizing tailored internet solutions and project maintenance. The website content is professional and well-structured, targeting business clients seeking comprehensive internet presence services. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and plugins like jCarousel and Lightbox, which may pose security risks due to outdated versions. The site is served over HTTPS and includes Google Analytics for visitor tracking, but lacks modern security headers and privacy compliance disclosures. Mobile optimization and accessibility are basic, with room for improvement in SEO and performance. From a security perspective, the site enforces HTTPS but lacks critical security headers and uses outdated libraries with known vulnerabilities. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy and transparency, impacting overall trustworthiness. Overall, the website is functional and professional but requires updates to its technical stack, security posture, and privacy compliance to meet modern standards and enhance trust. Strategic improvements in these areas will reduce risk and improve user confidence.

M

Město Slavkov u Brna

slavkovak.cz

46

Slavkovak.cz is a local leisure and tourism portal operated by the city of Slavkov u Brna, Czech Republic. It provides residents and visitors with news, event listings, information on local associations, gastronomy, accommodation, and tourist destinations. The site serves as an official community resource with a focus on promoting local culture and tourism. The business model is informational and community-driven, supported by the city administration. The website is well-branded and consistent, targeting a general audience interested in local events and tourism. Technically, the site uses a modern tech stack including UIkit for UI components, jQuery, Google Tag Manager, Google Analytics, Facebook SDK, and mapping APIs from Mapy.cz and Leaflet. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. The presence of cookie consent and GDPR documentation indicates awareness of privacy compliance, though privacy policy details are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit vulnerability disclosure or incident response policies. No WHOIS data was found, which raises concerns about domain registration legitimacy, though the site content and footer indicate official city operation. Overall, the site is trustworthy but would benefit from improved transparency and security hardening. The risk assessment is moderate with recommendations to improve security headers, add terms of service and security policies, and verify domain registration status to enhance trust and compliance.

T

TVVU s.r.o.

povodnovyportal.cz

46

TVVU s.r.o. operates the Povodňový portál, a specialized website dedicated to flood management solutions in the Czech Republic. The company provides digital flood plans, flood warning systems, monitoring services, and mobile flood barriers, targeting government agencies and emergency services. The website reflects a niche market position with strong partnerships with Czech hydrometeorological and water management institutions. Technically, the site uses a basic but modern tech stack including Google Analytics and Bootstrap-like CSS classes, hosted via WEDOS. While the site is accessible and professionally presented, it lacks critical privacy and cookie policies, which impacts compliance. Security posture is moderate with no visible security headers and no incident response information. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

U

Unabridged Software

unabridgedsoftware.com

55

Unabridged Software is a US-based software consultancy specializing in custom software development primarily using Ruby on Rails and JavaScript. The company positions itself as a small but experienced consultancy with nearly a decade of client relationships and expertise across diverse industries. Their key services include blueprint sessions, full stack web development, technical consulting, and engineering management consulting. The website is professionally designed, mobile optimized, and provides clear navigation and contact information, reflecting a mature digital presence. Technically, the website leverages modern technologies including Google Fonts, Google Analytics, and Netlify Identity for authentication, hosted likely on Netlify. The site performs moderately well with good SEO and accessibility basics but lacks advanced security headers and explicit privacy or cookie policies, which are compliance gaps. The use of Google Analytics indicates moderate user tracking without clear privacy disclosures. From a security perspective, the website uses HTTPS and does not expose sensitive data or vulnerable libraries. However, the absence of security headers and lack of incident response or vulnerability disclosure information reduce its security posture. The WHOIS data is missing or unavailable, which is inconsistent with the active website and reduces trustworthiness. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security transparency. Strategically, the company should prioritize implementing privacy and cookie policies with consent mechanisms, add security headers, publish incident response contacts, and clarify domain registration details to enhance trust and compliance.

Getty.edu is the official website for the Getty museums and library located in Los Angeles, providing rich resources for visual art and cultural heritage. The site targets a broad audience including art enthusiasts, researchers, and the general public interested in cultural education. It offers access to museum exhibitions, library resources, and free research tools, positioning itself as a leading non-profit educational institution in the arts sector. The website branding and content quality are excellent, reflecting a mature and professional digital presence. Technically, the site utilizes modern JavaScript frameworks such as Vue.js and Nuxt.js, along with multiple third-party analytics and marketing tools including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Twitter Universal Website Tag. The site is mobile optimized and performs moderately well, though accessibility features could be enhanced. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. No vulnerability disclosure or incident response information is published, and no contact information is readily available in the scanned content. The absence of WHOIS data is unusual for an established .edu domain, raising some transparency concerns, though the overall trustworthiness remains high due to the site's content and institutional nature. Overall, Getty.edu is a high-quality, trustworthy educational resource with strong content and branding but would benefit from improved privacy compliance, security headers, and transparency in domain registration details.

C

CloudCannon

cloudcannon.com

71

CloudCannon is a New Zealand-based technology company founded in 2009, offering a Git-powered Jamstack CMS platform designed for marketers and developers. The platform enables teams to manage static websites with visual editing capabilities, integrating tightly with Git workflows and supporting multiple static site generators. Positioned as a niche leader in the Jamstack CMS market, CloudCannon targets digital agencies, enterprises, and development teams seeking scalable, secure, and performant website management solutions. The website demonstrates excellent content quality, professional design, and clear navigation, reflecting a mature and trustworthy business. Technically, the site leverages modern JavaScript libraries, Google Analytics, and Cloudflare DNS, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, CloudCannon presents a credible and professional online presence with room to enhance privacy and security transparency.

G

Google

flutter.dev

70

Flutter.dev is the official website for Flutter, an open source multi-platform app development framework maintained by Google LLC. The site targets developers and software engineers, offering comprehensive resources to build, test, and deploy applications across mobile, web, desktop, and embedded platforms from a single codebase. The website reflects Google's strong market position in developer tools and frameworks, supported by a large global community and integration with Google's ecosystem services such as Firebase and Google Ads. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Alpine.js, and integrates Google services like Google Analytics and Tag Manager for analytics and tracking. The site is hosted on Google Cloud infrastructure, ensuring fast performance and excellent mobile optimization. Security best practices are observed with HTTPS enforcement and use of Google reCAPTCHA on forms, although explicit security headers are not visible in the HTML content. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, linking to Google's comprehensive privacy and cookie policies, and providing a cookie consent mechanism. However, the site lacks explicit incident response contact details and a public vulnerability disclosure page. Overall, the website is highly trustworthy, professional, and secure, reflecting Google's standards. Strategically, Flutter.dev serves as a critical platform for Google to engage the developer community, promote its cross-platform framework, and integrate with its broader cloud and advertising ecosystem. The site’s design, content quality, and technical implementation support a high level of user trust and engagement.

Z

Zwan

myzwan.com

53

The website represents Zwan, a company specializing in the manufacturing and distribution of ambient meat products including luncheon meat, cocktails, hotdogs, and vegetarian options. The site is professionally designed using WordPress and the Divi theme, featuring structured data and a cookie consent mechanism. The business targets consumers and business customers interested in premium quality meat products and recipes. Technically, the site uses modern web technologies including Google Analytics, Facebook Pixel, and Google reCAPTCHA for form security. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled and form protections, but lacks security headers and explicit privacy policies. Overall, the site is functional and business-focused but would benefit from improved transparency and security practices.

De Nigris 1889 operates a multilingual brand website with a language selection gateway directing users to Italian, USA, and global versions of their site. The company appears to be established since 2014 and targets a general audience with a professional and consistent brand presentation. The technical infrastructure includes WordPress CMS hosted on GoDaddy with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. The website is mobile optimized and presents a good user experience with clear navigation. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies and no explicit GDPR compliance indicators. No contact or incident response information is provided, limiting trust and transparency. Overall, the site is safe and suitable for general audiences with no adult or explicit content detected.

Městský společenský dům v Kolíně operates as a local cultural center in Kolín, Czech Republic, offering concerts, balls, exhibitions, and venue rental services. The website targets local community members and visitors interested in cultural events, positioning itself as a key venue for social and cultural gatherings. The business model centers on event hosting and space rental, serving a small-sized organization with a focus on hospitality and cultural activities. Technically, the website employs standard web technologies including HTML, CSS, JavaScript with MooTools and jQuery libraries, and integrates Google Analytics for visitor tracking. The site is moderately optimized for mobile devices and provides a cookie consent mechanism, indicating some level of privacy awareness. However, no CMS or advanced frameworks are detected, and performance is moderate. From a security perspective, the site lacks visible security headers and a published privacy policy, which are areas for improvement. The WHOIS data is missing, reducing transparency and trustworthiness. No blocking or WAF mechanisms are detected, and no critical vulnerabilities are apparent from the provided data. The cookie consent banner and clear contact information are positive security and compliance indicators. Overall, the website is functional and serves its business purpose well but would benefit from enhanced security practices, privacy policy publication, and improved WHOIS transparency to increase trust and compliance.

Z

Zahradnictví Hruška, Velim u Kolína

hruska-skolky.cz

56

Zahradnictví Hruška Velim u Kolína is a small retail business specializing in the sale of fruit trees, ornamental plants, and garden accessories, with additional services in garden design and realization. The company has a long-standing presence since 1991, serving local gardening enthusiasts and customers. The website reflects a professional and consistent brand image with a focus on product catalog and gardening advice. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and integrates Google Tag Manager and Analytics for tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and incident response information. The absence of WHOIS data reduces domain trustworthiness, but the website content and social media presence support legitimacy. Overall, the site is safe, well-maintained, and compliant with basic privacy regulations.

Brána do Čech is a regional tourism portal focused on promoting the Ústecký region of Czechia. It provides visitors with comprehensive information about local attractions, events, accommodations, and leisure activities. The website targets tourists and regional visitors seeking travel guidance and cultural experiences. The business model is informational and promotional, aiming to enhance regional tourism visibility. Technically, the website employs a range of JavaScript libraries including jQuery, bxSlider, and Magnific Popup, alongside Google Analytics and Facebook SDK for tracking. The site shows moderate performance and basic mobile optimization. However, the use of an outdated jQuery version and lack of modern security headers indicate areas for improvement in technical maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. No forms or direct data collection mechanisms were detected, reducing immediate data exposure risks. The absence of WHOIS data limits domain trust verification, though the content and external links suggest legitimacy. Overall, the site is functional and content-rich but would benefit from enhanced security practices, privacy compliance, and domain transparency to improve trustworthiness and user confidence.

D

Dokobit

dokobit.com

76

Dokobit is a technology company specializing in electronic document signing services within the European Union, leveraging compliance with eIDAS and GDPR regulations. The company offers a SaaS platform with API solutions for signing, identification, and sealing, targeting businesses and individuals requiring legally binding electronic signatures. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive compliance documentation. Technically, Dokobit utilizes modern analytics and marketing tools integrated with a robust consent management framework, hosted on AWS infrastructure. Security posture is strong with HTTPS enforcement, domain locking, and certifications such as ISO 27001 and QTSP status, although DNSSEC is not enabled and no public security.txt was found. Overall, Dokobit presents a trustworthy and professional service with a solid market position in the EU e-signature space.

C

Cofidis Magyarország

cofidis.hu

58

Cofidis Magyarország operates as a prominent financial services provider specializing in personal loans, debt consolidation, retail financing, and vehicle leasing within Hungary. The website offers a comprehensive suite of loan products with detailed terms, representative examples, and an online application process, targeting Hungarian consumers seeking flexible and accessible financial solutions. The company maintains a strong market position with consistent branding and a professional online presence. Technically, the website leverages modern frameworks such as Bootstrap and integrates analytics tools like Google Analytics and Hotjar, ensuring a responsive and user-friendly experience across devices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates good compliance with privacy regulations and provides clear contact channels, primarily via a prominently displayed phone number. The domain registration data aligns well with the business claims, supporting the legitimacy of the entity.