Security Directory

C

Candid

candid.org

60

Candid is a leading nonprofit organization formed by the merger of Foundation Center and GuideStar, providing comprehensive data, research, and resources to the social sector. Their platform connects grantmakers, nonprofits, and researchers with critical information to drive social change. The website reflects a mature digital presence with a focus on accessibility and user engagement through modern web technologies and analytics tools. Security practices are solid with HTTPS and domain protections, though there is room for enhancement with additional security headers and DNSSEC. Privacy policies are comprehensive and GDPR compliant, supporting trust and transparency. Overall, Candid demonstrates a strong market position and digital maturity aligned with its nonprofit mission.

Biobergün is a small organic farm business located in Bergün, Switzerland, offering bio farm products, holiday apartment rentals, event and catering services, and a small cheese dairy. The website reflects a local, family-run business with a strong emphasis on organic and sustainable farming practices. The business holds a notable local certification, the BioGrischunpreis 2024, enhancing its credibility in the organic sector. Technically, the website uses a mix of legacy and modern web technologies, including jQuery 1.12.4 and CreateJS, and is built on the Contao CMS platform. While the site is functional and moderately optimized for performance and mobile use, there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and incident response information. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, though it could benefit from modernizing some technical components and enhancing security practices.

P

Pohoda Production

podpovrchem.com

47

PodPovrchem.com is a Czech podcast platform operated by Pohoda Production, focusing on revealing life stories of well-known and unknown personalities through audio and video content. The website targets a general Czech audience interested in lifestyle and personal interviews, leveraging partnerships with local radio stations to enhance reach. Technically, the site is built on WordPress with a moderate tech stack including caching, SEO, and sharing plugins, delivering a good user experience with mobile optimization and structured data for SEO. Security posture is adequate with HTTPS and no visible vulnerabilities, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, with a cookie consent mechanism but lacking explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and safe for general audiences.

D

Design Trade

designtrade.cz

40

Design Trade is a Czech Republic-based retailer and exclusive importer specializing in watches and jewelry, representing multiple well-known brands such as Boccia, Certina, Seiko, and others. The website serves as a digital storefront and brand showcase targeting consumers interested in quality timepieces and accessories. The business model focuses on retail distribution within the Czech market, positioning itself as a key supplier of premium watch brands. Technically, the website is built on Topinfo CMS and utilizes legacy JavaScript libraries like jQuery 1.12.4 and Fancybox 2.1.5, with Bootstrap for responsive design elements. While the site is accessible and professionally designed, mobile optimization and accessibility features are basic and could be improved. Security posture is moderate; HTTPS is assumed but no advanced security headers or policies are detected. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

N

net-Com AG

active-city.net

56

net-Com AG operates as a specialized provider of municipal content management systems (CMS) and portal software, branded as active-City. The company targets public sector clients such as municipalities, cities, and counties, offering modular and scalable solutions to manage and present local government information online. With over 200 administrations in Germany and abroad as customers, net-Com AG holds a strong market position as a leader in the municipal CMS sector. Their offerings include a comprehensive suite of modules for citizen services, news, event management, and mobile apps, supporting modern multichannel content distribution.

N

Nineteen Events

firesafetyevent.com

72

The Fire Safety Event 2026 website represents a well-established UK-based exhibition platform focused on fire safety management. It targets fire safety professionals, exhibitors, and industry stakeholders, offering a comprehensive event experience including product showcases, CPD-accredited seminars, and networking opportunities. The site is professionally designed with consistent branding and clear navigation, reflecting a medium-sized business operating in the event management sector. Technically, the site leverages a modern tech stack including jQuery, bxSlider, and multiple analytics and marketing tools such as Google Analytics, HubSpot, Facebook Pixel, and TikTok Pixel. The platform is built on the SHOWOFF by ASP.events CMS, ensuring a structured and accessible user experience with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and uses some security best practices but lacks explicit security headers like CSP and X-Frame-Options, which are recommended for enhanced protection. The absence of WHOIS data raises concerns about domain registration legitimacy, although the professional content and certifications like Cyber Essentials support the site's credibility. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, with minor penalties due to WHOIS inconsistencies and missing explicit security headers.

E

EuroAgentur

eahotellipno.cz

52

EA Hotel Lipno near Cerna v Posumavi is a hospitality business operating a hotel near Lipno lake in the Czech Republic, offering accommodation, conference facilities, restaurant, and leisure services. The website is professionally designed with clear navigation and integrated booking functionality, targeting tourists and business travelers. The parent company is EuroAgentur, a known operator in the hospitality sector. Technically, the site uses an older jQuery version alongside Bootstrap and jQuery UI, with Google Analytics and CookieScript for tracking and consent management. Security posture is moderate with HTTPS enabled but lacking some modern security headers and using outdated libraries. Privacy compliance is good with a cookie consent banner and policy in place. WHOIS data is missing, likely due to privacy protection, which reduces transparency but is common in this sector. Overall, the site is functional, trustworthy, and business-appropriate but could improve security and transparency.

E

EuroAgentur

hotelhajenka.cz

51

EA Mountain hotel Hajenka is a small hospitality business located in the Šumava region of the Czech Republic, offering mountain hotel accommodation, wellness, dining, and event services. The website is professionally designed with multilingual support and integrates a third-party booking system. The technical infrastructure relies on established but somewhat dated technologies including jQuery 1.12.4 and Bootstrap, managed via the Topinfo CMS platform. Security posture is generally good with HTTPS enforced and a comprehensive cookie consent mechanism, though improvements are recommended in security headers and updating legacy libraries. The absence of WHOIS data limits domain trust verification but the overall digital presence and business information indicate a legitimate and trustworthy operation. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

E

EuroAgentur

apartmanynafilipce.cz

51

EA Apartments Na Filipce is a small hospitality business operating mountain apartments in the Sumava Mountains, Czech Republic. The company is part of EuroAgentur, a hospitality group, and offers accommodation, wellness, restaurant services, and special offers with an integrated online booking system. The website is professionally designed with clear navigation and multilingual support, targeting tourists seeking mountain lodging. Technically, the site uses Topinfo CMS with jQuery, Bootstrap, and Google services for analytics and advertising. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks some security headers and uses an outdated jQuery version. WHOIS data is unavailable, likely due to privacy protection, but the website content and branding indicate legitimacy. Overall, the site is functional and trustworthy with room for security and compliance improvements.

Spolek přátel Národního divadla Brno is a voluntary, non-political, and non-profit association focused on promoting theatrical arts including opera, ballet, and drama in Brno, Czech Republic. The organization collaborates closely with the National Theatre Brno and related artistic institutions to deepen public interest and knowledge in performing arts. The website serves as an informational platform showcasing news, events, and publications related to their activities. Technically, the website is built on the eStránky.cz platform using legacy JavaScript libraries such as jQuery 1.12.4 and includes Facebook SDK for social media integration. The site is accessible and provides relevant content but lacks modern technical and security enhancements.

C

Comité Olímpico de Portugal

comiteolimpicoportugal.pt

56

The Comité Olímpico de Portugal is the official Olympic Committee representing Portugal in Olympic sports. The organization focuses on athlete preparation, sports education, marketing, and promoting Olympic values nationally. The website reflects a medium-sized, government-affiliated non-profit entity with a strong national and international presence. Technically, the site is built on WordPress with Elementor and integrates modern web technologies, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and bot protection, though some improvements in security headers and library updates are recommended. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

Ö

Ökotárs Alapítvány

okotars.hu

46

Ökotárs Alapítvány is a well-established Hungarian non-profit organization founded in 1999, dedicated to supporting citizen self-organizations to foster a democratic, sustainable, and just society. The foundation focuses on environmental protection, civil society development, and sustainability programs, offering grants, training, and advocacy. Their website reflects a mature digital presence built on Drupal 7, integrating Google Analytics and Tag Manager for user insights. The content is rich, professionally presented, and targets civil society actors, students, and environmentally conscious communities. Security posture is solid with HTTPS and no exposed sensitive data, though some improvements are needed in security headers and updating legacy libraries. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness.

E

EKOTOXA s. r. o.

ekotoxa.cz

35

EKOTOXA s. r. o. is a specialized consultancy and analytical firm focused on environmental, agricultural, forestry, and spatial development services. The company provides expert support to institutions and businesses in meeting development plans and environmental regulations, leveraging GIS tools and offering services such as water regime management, air quality protection, land assessment, and climate change adaptation. The website positions EKOTOXA as an established regional player with a history dating back to 1995 and certifications in ISO 9001 and ISO 14001, indicating a commitment to quality and environmental management standards. Technically, the website is built on WordPress with several plugins including Yoast SEO for search optimization and CryptX for security enhancements. The site is moderately optimized for performance and mobile use, with good SEO practices evident. However, some technical improvements are recommended, such as updating WordPress and plugins to the latest versions and enhancing accessibility features. From a security perspective, the site uses HTTPS and does not expose sensitive data, but lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data for the domain reduces confidence in domain legitimacy, although the business content and certifications support its credibility. No incident response or vulnerability disclosure information is provided, which could be improved to enhance security posture. Overall, EKOTOXA presents as a professional and credible consultancy firm with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, verifying domain registration details, and improving mobile and accessibility features to strengthen trust and compliance.

I

IVT Tepelná čerpadla s.r.o.

cerpadla-ivt.cz

41

IVT Tepelná čerpadla s.r.o. operates a professional website focused on the sale and installation of Swedish quality heat pumps in the Czech Republic. The company positions itself as a market leader with over 20,000 installations and targets homeowners, commercial building managers, and new house builders. The website provides detailed product information, guides, and news updates, reflecting a mature business model centered on energy-efficient heating solutions. Technically, the site uses a combination of legacy and modern web technologies including jQuery, Bootstrap, and various tracking tools, managed via Topinfo CMS. The site is mobile-optimized and SEO-friendly, though some technical debt is evident with outdated libraries and missing security headers. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and explicit incident response information. The absence of WHOIS data reduces domain trustworthiness, though the website content and business information appear legitimate and professional. Overall, the site scores well on content quality and business credibility but has room for improvement in security and privacy compliance.

VE-IT market, s.r.o. is a Czech Republic based small business specializing in internet marketing services, including web presentations, marketing support, video production, and PPC campaign management. The company targets local businesses and individuals seeking to enhance their online presence and marketing effectiveness. The website is built on WordPress and integrates common marketing tools such as Google Analytics and Adsense. The technical infrastructure is moderate with a dated WordPress version and basic SEO optimizations. Security posture is adequate with HTTPS enabled but lacks advanced security headers and up-to-date software versions. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website presents a professional image but requires improvements in security and compliance to enhance trust and reduce risk.

M

MyNemo Planning s.r.o.

mynemo.cz

55

MyNemo Planning s.r.o. operates a professional website focused on providing comprehensive real estate investment planning and management services primarily in the Czech Republic. The company offers a broad range of services including analysis, project realization, financing, property sales and purchases, and ongoing consultation. Their market position is that of a niche, client-focused service provider emphasizing an all-inclusive approach to simplify complex real estate processes for their customers. The website content is well-structured, professionally designed, and targets individuals seeking expert assistance in real estate investments. Technically, the website employs a modern but somewhat dated technology stack including Bootstrap 3.3.6, jQuery 1.12.4, and various UI libraries such as Owl Carousel and Font Awesome. The site is mobile optimized and provides a good user experience with clear navigation and responsive design. However, there is no evidence of a CMS or advanced hosting details. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of privacy and cookie policies is a compliance gap, especially under GDPR. The WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness, although the website content and contact information appear legitimate. Overall, the website is professional and trustworthy from a business perspective but requires improvements in privacy compliance and security best practices. The lack of WHOIS data reduces domain trust and should be investigated further to ensure legitimacy.

K

KULTURA Žďár - příspěvková organizace města Žďár nad Sázavou

dkzdar.cz

48

KULTURA Žďár is a municipal contributory organization dedicated to managing and promoting cultural activities in Žďár nad Sázavou, Czech Republic. The organization operates multiple cultural venues including a House of Culture, City Theatre, and Kino Vysočina cinema, offering a broad range of cultural programming such as theater performances, concerts, exhibitions, and festivals. The website serves as a portal for event information, ticketing, venue rentals, and organizational details, targeting the local community and visitors interested in cultural events. The domain has been registered since 2001, consistent with the organization's history, indicating a stable and established presence. Technically, the website is built on Drupal 7 with common libraries like jQuery 1.12.4, Colorbox, and Lightbox2. While the site is mobile-optimized and offers good navigation and content quality, it uses outdated JavaScript libraries that pose security risks. The site implements a cookie consent banner, but lacks a visible privacy policy and security headers, which are important for compliance and security posture. No advanced analytics or marketing tools are detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS (assumed from external scripts loaded via HTTPS), but no explicit security headers were detected in the provided data. The outdated jQuery version is a notable vulnerability. There is no public security policy or incident response contact information, which limits transparency and readiness for security incidents. Overall, the site is functional and trustworthy but would benefit from modernization and enhanced security practices. The overall risk is moderate with recommendations to update libraries, implement security headers, publish privacy and security policies, and improve compliance documentation. These steps will enhance trust, security posture, and regulatory compliance, supporting the organization's mission to provide cultural services safely and reliably.

The website www.petpieta.cz represents a small Czech non-profit organization named Občanské sdružení přátel pietního parku Draháň, dedicated to the care and maintenance of a pet cemetery in Prague Bohnice. The organization relies on membership fees and donations to sustain the upkeep of the cemetery and provides information and support to its members and the public. The website content is primarily informational, targeting pet owners and local community members interested in the memorial park. Technically, the site is built on the eStránky.cz CMS platform and uses legacy JavaScript libraries such as jQuery 1.12.4 and jQuery UI 1.12.1. The design and navigation are basic but functional, with moderate mobile optimization and accessibility features.

B

BNV Systems

bnvsystems.com

58

BNV Systems is a specialized manufacturer of advanced thermal imaging and robotic thermal systems, primarily targeting military, security, and surveillance markets. Their flagship product line, SARMA, offers high-end thermal imaging and sighting capabilities with detailed technical specifications and integrated software solutions. The company operates from Latvia and has a domain age consistent with a mature business presence. Technically, the website is built on WordPress with Elementor, featuring embedded multimedia and Google Analytics for tracking. Security posture is adequate with HTTPS enabled but lacks some important security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility.

S

SIA "ABC idea"

mittoevents.com

54

Mitto Events is a Latvian-based technology company specializing in event management software and services. Their platform supports virtual, live, and hybrid events with features such as customizable registration forms, ticketing, abstract submission and review, and onsite check-in solutions. The company targets event organizers and agencies, providing a comprehensive suite of tools to streamline event planning and execution. Their market position is supported by a portfolio of reputable clients and a focus on customizable, user-friendly solutions. Technically, the website employs a modern JavaScript stack with analytics and live chat integrations, demonstrating a moderate to good level of digital maturity. Security posture is solid with HTTPS and encrypted data transmission, though improvements in security headers and explicit privacy policies are recommended. Overall, the website is professional and trustworthy, but the lack of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy. Strategic recommendations include enhancing security headers, publishing a detailed privacy policy, and verifying domain registration details to improve trust and compliance.

P

PESWEB

pesweb.cz

9

PESWEB is a Czech non-profit portal dedicated to providing comprehensive information about dogs and cats, with a strong focus on shelter animals and adoption. The website offers a variety of services including adoption listings, lost and found databases, educational articles, event calendars, and fundraising campaigns. It targets animal lovers, potential adopters, and supporters of animal welfare. The portal maintains a consistent brand presence and partners with relevant organizations to enhance its outreach. Technically, the website is built on the Topinfo CMS platform and utilizes several JavaScript libraries such as jQuery, Fancybox, and Chosen. It integrates Google Analytics and Smartlook for user tracking and Google Adsense and Sklik for advertising. While the site is functional and moderately optimized, it uses somewhat outdated libraries and has basic mobile and accessibility support. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, which are important for compliance and user trust. No WHOIS data was retrievable, which raises concerns about domain registration transparency. No critical vulnerabilities or adult content were detected, but improvements in privacy compliance and security best practices are recommended. Overall, PESWEB appears to be a legitimate and valuable resource in the Czech animal welfare community, but it should address privacy and security gaps to enhance trust and compliance.

S

SkyCom online, s.r.o.

revisio.eu

55

Revisio.eu is a professional SaaS platform operated by SkyCom online, s.r.o., focused on providing digital solutions for building inspections, energy management, safety compliance, and contract documentation primarily targeting businesses in the Czech Republic. The website demonstrates a consistent brand presence with clear business contact information and app availability on major platforms, indicating a mature product offering in a niche market. Technically, the site uses a combination of jQuery, Google reCAPTCHA, and FontAwesome, with indications of the Nette PHP framework, delivering a moderate performance and good mobile optimization. Security measures include HTTPS and bot protection, but lack of security headers and use of an outdated jQuery version present moderate risks. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain WHOIS data is not publicly available due to EURid privacy policies, which slightly reduces transparency but is typical for EU domains. The site is safe with no adult or questionable content detected.

Marek Vogl operates as an online marketing consultant specializing in performance marketing for e-commerce businesses primarily in the Czech Republic. The website presents a professional image with a clear focus on services such as PPC advertising, product feed optimization for platforms like Heureka and Zboží.cz, remarketing, and advertising audits. The business targets e-commerce shops seeking to increase sales and optimize their online marketing efforts. Technically, the site is built on WordPress with several plugins and uses Google Analytics and Tag Manager for tracking. The site enforces HTTPS and uses modern web fonts and icons, but the WordPress and jQuery versions are outdated, posing potential security risks. No privacy or cookie policies are present, which is a compliance gap. Security headers are not detected, and no incident response or vulnerability disclosure information is provided. Overall, the site is functional and professional but would benefit from updates and improved compliance documentation.

A

Alida, spol. s r.o.

prima-receptar.cz

53

Príma receptář.cz is a Czech internet hobby magazine operated by Alida, spol. s r.o., established since 2010. The website offers content focused on gardening, cooking, animals, and lifestyle topics, targeting a general Czech-speaking audience interested in hobby and lifestyle subjects. It maintains a strong social media presence and monetizes primarily through advertising. The site uses WordPress CMS with several plugins for SEO, event management, and popular posts, supported by advertising and tracking technologies including Google Analytics, Gemius, and Didomi for consent management. The technical infrastructure is modern but uses some older libraries like jQuery 1.12.4, which may pose minor security risks. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers and explicit security policies. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it could improve security and compliance documentation.

Š

ŠVK TATRAN Banská Bystrica

svktatranbb.sk

53

ŠVK Tatran Banská Bystrica is a local volleyball club based in Slovakia, providing volleyball training, competitions, and community engagement primarily for youth and local volleyball enthusiasts. The website serves as a hub for news, match schedules, results, and club information, targeting players, parents, and fans within the Banská Bystrica region. The club operates as a small non-profit sports organization with a focus on fostering volleyball talent and community involvement. Technically, the website is built on WordPress 4.8.25 with jQuery 1.12.4 and uses plugins such as Contact Form 7 and Lightview Plus. While the site is functional and provides good content quality and navigation, it uses outdated software versions which may expose it to security vulnerabilities. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks important security headers and runs outdated libraries. There is no visible privacy or cookie policy, indicating compliance gaps with GDPR and related regulations. Contact information is clearly provided, but no formal security or incident response policies are published. Tracking is minimal and limited to Facebook SDK integration. Overall, the website is a legitimate and moderately professional community sports site with room for improvement in security, privacy compliance, and technical modernization. Strategic recommendations include updating software, implementing security headers, publishing privacy and cookie policies, and enhancing accessibility and SEO to improve trust and compliance.

M

Media2Art Gbr

slayerofsouls.com

50

Slayerofsouls.com is a small-scale browser game website operated by Media2Art Gbr, offering an online game called 'Days of Evil' where players assume the role of a sinister scientist aiming to conquer a foreign planet. The site provides user registration, login, and community support via a forum. The business targets gamers interested in browser-based strategy and fantasy games, operating primarily in Germany since 2016. Technically, the site uses legacy JavaScript libraries such as jQuery 1.12.4, integrates Google reCAPTCHA for bot protection, and hosts on Hetzner Online GmbH infrastructure. Advertising is managed through Google Adsense and Facebook SDK, indicating moderate monetization efforts. Security posture is basic with some best practices like reCAPTCHA and domain transfer protection, but lacks modern security headers and DNSSEC. Privacy compliance is adequate with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is functional but could benefit from modernization and enhanced security measures.

S

Steve Zeidler

froodmat.com

42

The website froodmat.com serves as the professional portfolio for photographer Steve Zeidler, showcasing his photography work primarily in Germany and Switzerland. The site targets photography enthusiasts and potential clients seeking commercial and personal photography services. The business model is focused on portfolio presentation and commissions, positioning itself as a niche professional photographer with a small business footprint. The website is built on the Koken CMS platform and employs modern web technologies including jQuery, Google Analytics, and Matomo for visitor tracking. The design is professional and mobile optimized, providing a good user experience with clear navigation and relevant content. However, the site lacks critical privacy and cookie policies, as well as contact information, which impacts its compliance and trustworthiness.

BÜCHERBAUKASTEN K. Motzet Verlagsgesellschaft mbH operates a specialized book catalog publishing service targeting independent bookstores in Germany. With a 50-year history, the company offers customized book catalogs and curated book recommendations, positioning itself as a niche player in the retail and media sectors. The website is built on WordPress and uses legacy JavaScript libraries, indicating moderate digital maturity. While the site provides clear contact information and cookie consent mechanisms, it lacks modern security headers and uses outdated software versions, which pose potential security risks. Overall, the business demonstrates credibility and a consistent brand presence but should modernize its technical infrastructure to enhance security and performance.

K

Kulturbüro der Stadt Krefeld

kubik-krefeld.de

41

KUBIK Krefeld is a cultural education portal operated by the Kulturbüro der Stadt Krefeld, providing a curated online catalog of educational offers from municipal and independent cultural providers. The website targets residents and visitors interested in cultural learning opportunities, including families, children, and educators. It serves as a local government-supported platform to promote cultural engagement in Krefeld. Technically, the site is built on WordPress with a custom theme and uses jQuery and Modernizr for frontend functionality. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and nonce usage for AJAX forms, but lacks security headers and a cookie consent mechanism. No direct contact information or social media links are provided, which slightly impacts business credibility. Overall, the site is trustworthy and professionally maintained, though improvements in privacy compliance and security headers are recommended.

Ferienwohnungen Neumann is a small hospitality business offering centrally located holiday apartments in Bamberg, Germany. The website targets tourists and business travelers, including travel and construction groups, providing easy access to local attractions and amenities. The business model focuses on short-term apartment rentals with booking facilitated through an external platform. The website is built on WordPress with common plugins and themes, showing moderate technical maturity but using outdated software versions. Security posture is basic with HTTPS enabled and a cookie consent banner present, but lacking security headers and updated software. Privacy compliance is limited due to absence of a privacy policy and terms of service. Overall, the website is functional and professional but could improve in security and compliance aspects.

L

Landhaus Sponsel-Regus

sponsel-regus.de

68

Landhaus Sponsel-Regus is a family-run 4-star wellness hotel located in the Franconia region of Germany, targeting families and wellness tourists. The website presents a professional and consistent brand image with a focus on hospitality and wellness services. The technical infrastructure leverages a custom CMS platform with common web technologies such as jQuery, Matomo analytics, and Google Tag Manager, with cookie consent mechanisms in place. Security posture is generally good with HTTPS enforced and consent-based analytics, but lacks explicit security headers and updated libraries. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the website is trustworthy and professionally maintained but could improve in transparency and security best practices.

The website represents the Aktionsgemeinschaft Stadtmarketing Alsdorf e.V., a local non-profit association focused on city marketing and supporting the interests of the Alsdorf community and local businesses. The site provides information about the association's mission, encourages community involvement, and highlights partner organizations. The business model is non-profit and community-oriented, targeting local citizens and businesses. Technically, the website is built on WordPress 5.4.2 using a custom theme (Delicate) and includes legacy technologies such as jQuery 1.12.4 and Cufon font replacement. The site is moderately optimized for performance and mobile devices but lacks modern accessibility and SEO best practices. No advanced analytics or tracking tools are detected. From a security perspective, the site uses HTTPS but lacks important security headers and uses outdated JavaScript libraries with known vulnerabilities. There are no visible privacy, cookie, or terms of service policies, which is a compliance gap under GDPR. No contact emails or phone numbers are explicitly provided, limiting user trust and support options. Overall, the website is functional and provides relevant content for its target audience but requires improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and resilience.

N

KOMIKSY | NOPROBLEMOS

noproblemos.sk

51

NOPROBLEMOS.sk is an educational website primarily focused on raising awareness about intellectual property rights, digital responsibility, and related topics through comics. It operates as part of a network of Slovak non-profit projects aimed at promoting responsible internet use and combating piracy, fake products, and cyberbullying. The website targets a general audience interested in educational content and awareness campaigns. Technically, the site is built on WordPress with several plugins for social sharing, popups, and user interaction, hosted on Websupport with DNSSEC and HTTPS enforced, indicating a reasonable level of security and transparency. However, some outdated libraries and lack of explicit privacy and cookie policies indicate areas for improvement. Security posture is moderate with good SSL and DNSSEC but missing advanced headers and vulnerability disclosure mechanisms. Overall, the site is safe, professional, and trustworthy for its niche educational purpose.

S

Stopline.sk

stopline.sk

46

Stopline.sk is a Slovak national project operating a reporting center for illegal internet content, focusing on child protection, hate speech, and other criminal activities online. It collaborates with governmental bodies and is part of the international INHOPE network, positioning itself as a trusted authority in internet safety within Slovakia. The website provides reporting forms and educational resources, targeting the general public and stakeholders concerned with online safety. Technically, the site is built on WordPress with standard plugins and uses Bootstrap and jQuery for frontend functionality. While the site is functional and moderately optimized, it uses outdated software versions which pose potential security risks. The site is HTTPS secured but lacks advanced security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. Security-wise, the site shows basic good practices such as HTTPS and no exposed sensitive data, but outdated components and missing security headers reduce its security score. No incident response or vulnerability disclosure information is publicly available, which could be enhanced to improve trust and readiness. Overall, the site is legitimate, safe, and professionally presented but would benefit from technical updates, enhanced privacy compliance, and stronger security measures to maintain trust and protect users effectively.

The website www.svoge.bg serves as the official online presence of the Municipality of Svoge in Bulgaria. It provides residents and visitors with access to administrative information, news updates, public procurement profiles, e-services, and contact details. The site is primarily targeted at local citizens and government stakeholders, fulfilling a public service role. Technically, the site is built on WordPress 5.4.16, utilizing common plugins such as Smart Slider 3 and WP Accessibility, and integrates Google Analytics for visitor tracking. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but uses an outdated jQuery version which may pose vulnerabilities. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, consistent with its government function.

E

Europäischer Parkverbund Lausitz

parkverbund.eu

46

The Europäischer Parkverbund Lausitz is a cultural and tourism network connecting nine significant parks and castles in the Lausitz region of Germany. The website serves as an informational and promotional platform targeting tourists and culture enthusiasts interested in historical gardens and heritage sites. It offers event calendars, guided tours, audiotours, and digital maps to enhance visitor experience. Technically, the site employs a custom CMS with a modern JavaScript stack including jQuery, Swiper, and Matomo analytics, hosted by Vautron Rechenzentrum AG. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and cookie consent mechanisms, but lacks some advanced security headers and explicit incident response information. Overall, the site is trustworthy, compliant with GDPR, and free of suspicious content.

N

NADÁCIA X-BIONIC® SPHERE

nadaciaxbs.sk

57

Nadácia x-bionic sphere is a Slovak non-profit foundation dedicated to promoting sports among all generations and supporting young sports talents through initiatives such as the XBS swimming academy and gymnastics programs. The foundation encourages public support via the allocation of 2% of income tax, providing pre-filled forms to facilitate donations. The website serves as an informational and promotional platform for these activities, targeting Slovak residents interested in supporting sports development. Technically, the website is built on WordPress using WPBakery Page Builder and includes legacy technologies such as jQuery 1.12.4 and Font Awesome 4.7.0. The site demonstrates moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No analytics or tracking services are detected, indicating a minimal data collection approach. From a security perspective, the site uses HTTPS but lacks visible security headers and a cookie consent mechanism. There are no exposed sensitive data or obvious vulnerabilities, but the use of outdated libraries and missing security policies suggest room for improvement. Privacy compliance is partial, with a privacy policy present but no cookie or terms of service documents. Overall, the website is functional and professional for a small non-profit but would benefit from enhanced security practices, privacy compliance, and clearer contact information to improve trust and user confidence.

R

Robertson Marketing Group, Inc.

robertsonmarketing.com

59

Robertson Marketing Group, Inc. is a well-established B2B company specializing in global ecommerce platforms, fulfillment, rewards, and incentive programs. With a domain age dating back to 1998 and notable clients such as Google and UPS, the company holds a solid market position in the ecommerce and brand merchandising sectors. Their website reflects a professional and consistent brand image, targeting businesses seeking comprehensive ecommerce and loyalty solutions. Technically, the site employs modern JavaScript libraries and tracking tools, hosted on Microsoft Azure DNS infrastructure, with moderate performance and good mobile optimization. However, the absence of privacy and cookie policies and lack of security headers indicate compliance and security gaps. The WHOIS data supports legitimacy with consistent registration details and domain age. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening.

W

Wirtschaftsbetriebe Duisburg - AöR

wb-duisburg.de

62

Wirtschaftsbetriebe Duisburg - AöR is a large municipal utility and infrastructure service provider for the city of Duisburg, Germany. The organization manages a broad range of public services including waste disposal, street cleaning, wastewater management, road and bridge construction, municipal real estate, playgrounds, green spaces, and cemeteries. The website serves as a comprehensive portal for residents and businesses to access these services, including online scheduling, information, and customer portals. The site is well structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website is built on modern frameworks such as Next.js and React, with content managed via Storyblok CMS. It integrates third-party services like Usercentrics for cookie consent management and uses legacy jQuery 1.12.4, which may pose some security risks. Performance is moderate with good SEO and accessibility features. The site uses HTTPS and has basic security best practices but lacks explicit security headers and a published security policy or incident response information. From a security perspective, the site is generally secure with no visible vulnerabilities or exposed sensitive data. However, the use of an outdated jQuery version and absence of a vulnerability disclosure mechanism are areas for improvement. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism in place, aligning with GDPR requirements. Overall, the website represents a trustworthy and professional municipal service portal with a solid business credibility score. Strategic recommendations include upgrading legacy libraries, publishing security policies, and enhancing security headers to further strengthen the security posture and compliance.

P

ProVenkov, spol. s.r.o.

provenkov.cz

45

ProVenkov, spol. s.r.o. is a Czech Republic based small company specializing in consultancy and financing advisory services related to wastewater treatment and potable water supply for small municipalities. Their website presents a professional image with clear descriptions of their services, target audience, and business model focused on municipal water management. The company has been established since 2006, which aligns with the domain age and registration data. Technically, the website is built on WordPress with common plugins and frameworks such as Bootstrap and Yoast SEO, providing a moderate level of performance and mobile optimization. Security posture is adequate with HTTPS enabled and secure form handling, but the use of outdated WordPress and plugins, along with missing security headers, presents potential vulnerabilities. Privacy compliance is partial, with a cookie consent banner present but no privacy policy or terms of service pages found. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from security and compliance improvements.

A

ASIO NEW, spol. s r.o.

mzi.cz

40

The website www.mzi.cz represents ASIO NEW, spol. s r.o., focusing on modro-zelená infrastruktura (blue-green infrastructure) which integrates water and green elements harmoniously with nature to address climate challenges, water retention in cities, air quality improvement, and microclimate mitigation. The site targets professionals and stakeholders interested in sustainable architecture and environmental infrastructure solutions. The business operates in a niche environmental sector within the Czech Republic, offering informational content and consulting-like services related to building exteriors, interiors, green and blue spaces. Technically, the website is built on Topinfo CMS and uses legacy JavaScript libraries such as jQuery 1.12.4 and Fancybox 3.3.5, alongside Google Analytics for user tracking. The site is mobile-optimized with good SEO practices but lacks modern security headers and updated libraries, which could pose risks. The absence of visible privacy and cookie policies indicates a gap in GDPR compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data or show signs of vulnerabilities in the provided content. However, the lack of WHOIS data and security policies reduces trustworthiness. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, the site scores moderately on AI evaluation with strengths in content quality and business credibility but weaknesses in privacy compliance and domain registration transparency. Strategic improvements in security headers, privacy disclosures, and updated technology stacks are recommended to enhance trust and compliance.

M

Muzeum Beskyd Frýdek-Místek, příspěvková organizace

muzeumbeskyd.com

46

Muzeum Beskyd Frýdek-Místek is a regional cultural institution operating under the Moravian-Silesian Region, managing the Frýdek castle and Hukvaldy castle as its branches. The museum offers exhibitions, educational programs, guided tours, and event hosting primarily targeting local visitors, families, and tourists interested in regional history and culture. The website reflects a well-structured and content-rich platform with clear navigation and relevant information about museum services and events. Technically, the website uses a traditional tech stack including jQuery 1.12.4, Google Tag Manager, and jQuery UI, with custom CSS and JavaScript. While the site is functional and moderately optimized for performance and mobile devices, there is room for improvement in modernizing the technology stack and enhancing accessibility and SEO features. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations such as GDPR. However, the absence of explicit security headers and the use of an outdated jQuery version present potential vulnerabilities. The missing WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and external references support its authenticity. Overall, the website is professional and trustworthy for its intended audience but would benefit from technical and security enhancements to improve resilience and compliance.

S

Stadt Herne

herne.de

56

Stadt Herne operates an official municipal government website providing comprehensive information and services to its citizens and visitors. The site covers a wide range of topics including city life, culture, education, integration, environment, and digitalization initiatives. It maintains a strong presence with official branding, social media integration, and a citizen service portal. Technically, the website employs a mature technology stack including Bootstrap, jQuery, and specialized tools like eTracker for analytics and ReadSpeaker for accessibility. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and updating legacy libraries. Overall, the domain and content appear legitimate and trustworthy, consistent with a large government entity. Strategic recommendations include enhancing security headers, publishing a security policy, and modernizing JavaScript libraries to maintain security and compliance.

S

Středisko výchovné péče Orlíček Přední Chlum, o. p. s.

orlicekprednichlum.cz

38

Středisko výchovné péče Orlíček Přední Chlum, o. p. s. is a Czech non-profit organization providing ambulant and residential educational care services primarily targeting children, parents, and educators. Their offerings include counseling, social-educational activities, and support for sports, cultural, and leisure projects for youth. The organization appears to serve a local or regional community with a focus on social welfare and education. Technically, the website is built on WordPress 4.9.26 with jQuery 1.12.4 and uses Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized with a responsive design and basic accessibility features. Performance is moderate, and SEO is basic but functional. However, the WordPress and jQuery versions are outdated, which may pose security risks. From a security perspective, the site enforces HTTPS and implements a cookie consent banner with detailed user options, indicating some privacy awareness. However, no security headers are detected, and there is no privacy policy or incident response information published. The absence of WHOIS data reduces trust in domain legitimacy, although the website content and contact details appear genuine and professional. Overall, the website is safe and suitable for general audiences, with no adult or explicit content. The main risks relate to outdated software and missing security best practices. Strategic improvements in security headers, privacy documentation, and software updates would enhance the site's security posture and compliance.

A

ASIO TECH, spol. s r.o.

asio.cz

55

ASIO TECH, spol. s r.o. is a Czech-based manufacturer and service provider specializing in water and air treatment technologies, including wastewater treatment plants for municipalities and family homes, water purification, and air cleaning solutions. Established in 1993, the company has a strong international presence in 32 countries and offers a comprehensive portfolio of products and services focused on sustainability and environmental responsibility. The website is professionally designed, multilingual, and provides detailed information about the company's offerings, references, and educational activities. Technically, the website uses a modern technology stack including jQuery, Fancybox, Rellax, Tiny-slider, and FsLightbox, managed via the Topinfo CMS platform. It integrates Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is mobile-optimized and SEO-friendly but lacks explicit security headers and detailed privacy policies. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, the absence of WHOIS data and security headers reduces the overall security posture. No critical vulnerabilities or adult content were detected. Contact information is clearly presented, enhancing business credibility. Overall, the website is trustworthy and professional but would benefit from improved transparency in privacy policies, enhanced security headers, and WHOIS data availability to strengthen domain legitimacy and compliance.

I

Internet Society

isoc.org

72

Internet Society is a globally recognized non-profit organization dedicated to advocating for an open, secure, and trustworthy Internet accessible to everyone. The website reflects its mission through comprehensive content focused on closing the digital divide and promoting internet security and openness. The organization maintains a strong market position as a leading advocate in internet governance and digital rights, targeting a broad audience including policymakers, technology communities, and global internet users. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, ensuring good SEO and analytics integration. The site is mobile optimized and employs cookie consent mechanisms compliant with GDPR, reflecting a mature digital infrastructure. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent tools to manage privacy. However, explicit security headers are not clearly present, and some libraries like jQuery are outdated, suggesting areas for enhancement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is justified for this type of organization, and no suspicious patterns were found. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with recommendations to strengthen security headers, update libraries, and publish a formal security policy to further enhance trust and resilience.

Laterna Research is a cultural and archival project focused on the multimedia theater project Laterna Magika. The website serves as a repository of research, stories, photos, videos, and media related to this cultural heritage. It targets researchers, historians, and cultural enthusiasts primarily in the Czech Republic. The site is built on WordPress using the Twenty Seventeen theme and incorporates standard web technologies such as jQuery and Google Analytics for tracking. The technical infrastructure is moderate with basic mobile optimization and SEO. Security posture is adequate with HTTPS enabled but lacks advanced security headers and updated libraries. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. Business credibility is moderate with social media presence but lacks direct contact details or formal certifications.

GW Train Regio a.s. operates regional train services across multiple regions in the Czech Republic, providing transportation solutions with a focus on passenger convenience through online ticket sales and timely operational updates. The company maintains a professional web presence with clear branding, comprehensive contact information, and certifications that enhance trust. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Google services for analytics and security, and implements a robust cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though some HTTP security headers could be improved. Overall, the website is accessible, well-structured, and serves its target audience effectively.

C

CARLETTA N.V.

pinupcasino-br.com.br

52

Pin Up Casino Brasil is an established online gambling platform founded in 2016 by CARLETTA N.V., licensed in Curaçao, and targeting Brazilian adult users. The website offers a comprehensive range of casino games, including slots, live dealer games, lotteries, and sports betting with over 5,000 games from more than 80 providers. The platform supports multiple payment methods in Brazilian Real and provides generous welcome bonuses and promotions. Technically, the site is built on WordPress with common libraries like jQuery and Owl Carousel, and uses Google Tag Manager for analytics and marketing. The site is mobile optimized and well-structured for user navigation. Security posture is good with HTTPS and no visible sensitive data exposure, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data aligns with the business claims, enhancing trust. Overall, the platform is professional and credible but could improve privacy compliance and security headers.

R

RSI Testsysteme GmbH & Co. KG

rsi-testsysteme.de

60

RSI Testsysteme GmbH & Co. KG is a specialized German manufacturer focused on corrosion testing systems and durability test equipment. Their product portfolio includes salt spray cabinets, condensation devices, climate change test chambers, and walk-in test rooms, serving industries such as automotive, electromobility, agriculture, offshore, sanitary, wind energy, and solar technology. The company positions itself as a niche provider with strong technical expertise and longstanding industry experience. The website is professionally designed using WordPress with modern plugins and SEO tools, providing clear navigation and multilingual support (German and English). Privacy and cookie policies are implemented with GDPR compliance, and contact information is prominently displayed. The technical infrastructure is moderate in performance with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. No vulnerabilities or suspicious content were detected. Overall, the website reflects a credible small manufacturing business with a good digital presence and compliance maturity.