Security Directory

M

Městský úřad Světlá nad Sázavou

svetlans.cz

48

The website svetlans.cz serves as the official online presence of the municipal government of Světlá nad Sázavou, Czech Republic. It provides residents and visitors with comprehensive information about local administration, public services, events, and official documents. The site is well-structured with clear navigation and includes essential contact information, event calendars, and online reservation systems for municipal services. The target audience is primarily local citizens and stakeholders interested in municipal affairs. Technically, the website is built on the Vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. The site is hosted by Wedos, a reputable Czech hosting provider, and employs HTTPS for secure communications. Mobile optimization and accessibility are adequately addressed, though some improvements in SEO and security headers could enhance the overall digital maturity. From a security perspective, the site demonstrates good practices including HTTPS enforcement and use of CAPTCHA to prevent spam. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is basic, with a privacy policy and cookie information present but no active consent mechanism. The domain WHOIS data is consistent with the municipal nature of the site, showing a long registration history and no privacy protection, which aligns with transparency expectations for government entities. Overall, svetlans.cz is a trustworthy and professionally maintained municipal website with a solid foundation in content quality and business credibility. Enhancements in security policies, privacy mechanisms, and technical SEO could further strengthen its posture and user trust.

M

Město Kamenice nad Lipou

kamenicenl.cz

46

Město Kamenice nad Lipou operates an official municipal website serving residents and visitors with information about local government, culture, events, and public services. The site is well-branded with official city emblems and provides comprehensive contact details and event calendars. The target audience is primarily local citizens and tourists interested in the town's offerings. The business model is public service oriented, focusing on transparency and community engagement. Technically, the website uses a traditional HTML/CSS/JavaScript stack powered by the Vismo CMS platform. It integrates Google services such as reCAPTCHA for form security and Google Translate for language accessibility. The site is hosted under a Czech registrar and uses HTTPS, ensuring secure communications. Mobile optimization and basic accessibility features are present, though there is room for improvement in SEO and accessibility compliance. From a security perspective, the website enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, it lacks explicit security headers and a dedicated security policy or incident response page. Privacy compliance is basic, with privacy and cookie policies present but no active cookie consent mechanism. No vulnerabilities or exposed sensitive data were detected. Overall, the website is a trustworthy and professional municipal portal with a solid business credibility score. Recommendations include enhancing security headers, implementing cookie consent, and adding explicit terms of service and security policies to improve compliance and user trust.

M

Město Havlíčkův Brod

muhb.cz

52

The website www.muhb.cz serves as the official online presence for the city of Havlíčkův Brod, Czech Republic. It provides comprehensive information about city governance, public services, news updates, and tourist information. The site targets residents, local businesses, tourists, and public officials, offering a broad range of municipal services and resources. The business model is government/public service with a medium-sized municipal scope and a historical foundation dating back to the 13th century. Technically, the site employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and Google Analytics, built on the CPedit CMS platform. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though security headers are not detected, indicating room for improvement. From a security perspective, the site demonstrates good practices such as cookie consent management and secure form handling but lacks visible security headers and an incident response contact. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and official branding strongly support legitimacy. Overall, the site is a well-maintained municipal portal with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response information, and improving domain registration transparency to strengthen trust and compliance.

M

Město Žirovnice

zirovnice.cz

46

The website represents the official online presence of Město Žirovnice, a municipal government entity in the Czech Republic. It provides comprehensive information about local administration, cultural events, tourism, and public services, targeting residents and visitors alike. The site is well-structured with clear navigation and includes social media integration to enhance community engagement. The business model is focused on public service and information dissemination, positioning it as a trusted local government resource. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It incorporates Google reCAPTCHA for form security and Google Translate for multilingual support. The site is mobile-optimized and accessible, with moderate performance. However, there is room for improvement in implementing advanced security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, indicating a baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response information, and vulnerability disclosure mechanisms suggests opportunities to enhance transparency and compliance. Overall, the site maintains a good security standard suitable for its public service role. The overall risk assessment is low, with the site demonstrating legitimacy, trustworthiness, and compliance with basic privacy regulations. Strategic recommendations include implementing security headers, adding clear security and incident response policies, enabling cookie consent banners, and maintaining regular security audits to strengthen the security posture and user trust.

M

Město Habry

habry.cz

44

The website www.habry.cz serves as the official municipal portal for the town of Habry in the Czech Republic. It provides residents and visitors with essential information including municipal news, official documents, event calendars, and contact details. The site targets local citizens and stakeholders interested in town governance and community activities. The business model is that of a government service portal, focusing on transparency and public communication. Technically, the website is built on the Vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for multilingual support. The site is mobile-optimized and accessible, with a moderate performance profile. However, some modern security headers appear to be missing, and no advanced analytics or tracking services are detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, indicating a baseline security posture. There is no evidence of exposed sensitive data or vulnerabilities in the visible content. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in compliance and transparency. Overall, the website is a trustworthy and professional municipal portal with good content quality and user experience. The lack of WHOIS data reduces domain trust slightly but does not detract significantly from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing detailed security and privacy policies, and maintaining regular audits of third-party scripts to strengthen the security posture.

O

Obec Želiv

obeczeliv.cz

44

Obec Želiv operates an official municipal website serving the residents and visitors of the Želiv municipality in the Czech Republic. The website provides comprehensive local government information, including news, official documents, event calendars, and contact details. It targets local citizens and stakeholders seeking municipal services and updates. The business model is public service oriented, focusing on transparency and community engagement. The website is well-positioned as the authoritative source for municipal information in the region.

T

Techfood s.r.o.

automatizacevpotravinarstvi.cz

52

The website automatizacevpotravinarstvi.cz serves as the official platform for the 'Automatizace v potravinářství' conference, a specialized event focusing on automation in the food and beverage manufacturing sector in the Czech Republic. The organizing entity, Techfood s.r.o., is a small-sized company with a stable presence since 2013. The site provides detailed conference information, including program schedules, partner listings, registration forms, and contact details, targeting industry professionals interested in technological advancements in food production automation. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Slider Revolution, and Contact Form 7, with integration of Google reCAPTCHA for form security. The hosting and domain registration are managed by REG-WEDOS, a Czech provider, ensuring regional consistency. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. From a security perspective, the site employs HTTPS and basic spam protection but lacks advanced security headers and published security policies or incident response contacts. Privacy compliance is minimal, with no dedicated privacy policy or terms of service pages, though a cookie consent banner is present. No vulnerabilities or malicious content were detected. Overall, the website is professional and trustworthy for its niche audience but would benefit from enhanced privacy documentation, security policies, and accessibility improvements to strengthen compliance and user trust.

O

OK a.m.b.a

ok.dk

67

OK a.m.b.a is a well-established Danish energy company providing a broad range of energy products including fuel, heating oil, electricity, natural gas, and heat pumps. The company operates over 670 local fuel stations across Denmark, targeting private consumers, businesses, and public sector clients. The website reflects a professional and consistent brand presence with clear business offerings and a focus on local energy supply services. Technically, the website employs modern web technologies including JavaScript modules, Google Tag Manager, Adobe Experience Cloud, and Cloudflare for hosting and security. The site is mobile-optimized and includes a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and bot protection via Google reCAPTCHA, although explicit security headers and incident response contacts are not clearly visible. The absence of WHOIS data is a notable gap in domain legitimacy verification, which slightly impacts the overall trust score. Overall, the website is professional, secure, and compliant with privacy standards, serving its target market effectively.

N

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o.

nanlitomerice.cz

44

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o. is a Czech Republic-based medium-sized company specializing in construction and infrastructure projects, particularly railway construction, bridge and wall structures, and civil engineering works. Established in 2001, the company has a solid market presence and offers comprehensive project documentation and construction services. The website reflects a professional and consistent brand image, targeting construction industry clients and infrastructure developers. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder, Slider Revolution, and Complianz GDPR for compliance. It integrates Google Tag Manager and Google reCAPTCHA for analytics and security. The hosting is provided by cesky-hosting.eu, and the site shows moderate performance with good mobile optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but it lacks explicit security headers and uses an outdated jQuery version, which could pose risks. No exposed sensitive data or vulnerabilities were detected in the HTML content. Privacy compliance is strong with a comprehensive GDPR policy and cookie management. Overall, the website is trustworthy and professionally maintained, with recommendations to update JavaScript libraries and enhance security headers to improve the security posture further.

E

Event Engine CMS Ltd

eventengine.tv

66

Event Engine CMS Ltd is a specialized web development company focused on delivering custom web applications and software solutions for the events industry. Founded in 2016 and based in Great Britain, the company offers a range of products including a CMS platform (Rondayvoo CMS), live streaming and networking solutions (Rondayvoo Live), and AI-powered content assistants (Rondayvoo AI). Their market position is that of a niche provider trusted by notable event brands and professional conference organizers. The website reflects a professional and consistent brand image with excellent content quality and clear service offerings. Technically, the website is built on WordPress using modern frameworks such as the Bricks theme builder and The SEO Framework plugin. It employs standard web technologies including JavaScript, jQuery, and integrates Google Analytics and Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, though performance is moderate. Hosting appears to be via NameCheap, consistent with the registrar information. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, the contact form's Google reCAPTCHA implementation is broken due to an invalid site key, which poses a risk of spam. Additionally, security headers are not detected, and there is no visible incident response or vulnerability disclosure information. Privacy and cookie policies are present and appear GDPR compliant. Overall, the website demonstrates a solid business credibility and technical maturity with minor security and compliance gaps. Strategic improvements in security controls and transparency would enhance trust and reduce risk.

B

BlockMark Technologies Ltd

blockmarktech.com

48

BlockMark Technologies Ltd operates a specialized certificate management platform called BlockMark Registry, targeting organizations and individuals involved in certification processes. The company leverages cloud and blockchain technologies to provide secure, efficient, and user-friendly digital certificate issuance, management, and verification services. With a growing user base and extensive certificate records, BlockMark positions itself as a trusted player in the digital credential space. Technically, the website is built on WordPress with modern SEO and security plugins, including Yoast SEO and Google reCAPTCHA. The site is well-structured, mobile-optimized, and integrates analytics for performance monitoring. However, some security headers are missing, and cookie consent mechanisms are not explicitly implemented, which could be improved for better compliance. Security posture is solid with HTTPS enforced and anti-bot protections in place, but the absence of published security policies and incident response information limits transparency. The WHOIS data is unavailable, which slightly reduces trust but is mitigated by clear company registration details and active social media presence. Overall, the website and business demonstrate a professional and credible presence with room for enhancement in privacy compliance and security transparency.

D

Daniel Remler - Videographer | Producer | Cutter

danielremler.com

50

Daniel Remler operates a professional videography and video production service with a strong focus on generative AI content. The website showcases a portfolio of work, emphasizing over 20 years of experience and expertise in both traditional video production and AI-driven content creation. The business targets clients seeking high-quality visual storytelling and AI prompt expertise, positioning itself as a niche expert in the media sector within Germany. Technically, the website is built on WordPress with modern plugins and frameworks such as Elementor, Bootstrap, and Google services integration, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and GDPR-compliant cookie management, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, user-friendly, and compliant with privacy regulations, but the lack of WHOIS domain registration data introduces a moderate trust concern.

M

Medicross s.r.o.

medicross.cz

65

Medicross s.r.o. operates a professional e-commerce platform specializing in medical supplies and healthcare products primarily serving the Czech market. Established since 2004, the company offers a broad product range including syringes, surgical sutures, disinfectants, gloves, and other medical consumables. Their business model targets both healthcare professionals and individual customers, providing fast delivery and personalized customer service. The website reflects a mature digital presence with a consistent brand identity and clear navigation. Technically, the website leverages modern web technologies including Google reCAPTCHA for bot protection, Google Tag Manager for analytics, and Facebook Pixel for marketing. The platform is built on a proprietary CMS by Binargon, with good mobile optimization and moderate performance. SEO and accessibility are adequately addressed, though some improvements could be made in accessibility features. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs consent mechanisms for GDPR compliance. While no explicit security policy or incident response information is published, the site follows best practices such as secure forms and no exposed sensitive data. The absence of WHOIS data limits domain registration insights, but the overall trust signals and business information support legitimacy. Overall, Medicross.cz presents a trustworthy and professional online presence with solid technical and security foundations. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen trust and compliance.

N

NaboGO

nabogo.com

57

NaboGO operates the Nabogo platform, facilitating local carpooling primarily in Denmark and three other countries. The company partners with provinces and public transport authorities to promote sustainable shared transportation solutions. Their business model centers on enabling daily shared rides for commuting, schooling, and leisure, leveraging a mobile app and local partnerships. The website reflects a medium-sized, professional organization with a clear focus on transportation and mobility services. Technically, the site is built on WordPress with Elementor and Yoast SEO, supported by Cloudflare for CDN and security. The site is mobile-optimized and includes modern tracking and marketing tools with GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS and Cloudflare protections, though DNSSEC is not enabled and no explicit security policy or vulnerability disclosure is present. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve transparency around security policies and incident response.

W

WATERBORNE Technology Platform V.Z.W.

waterborne.eu

10

WATERBORNE Technology Platform is a European maritime research and innovation coordination entity that facilitates dialogue among key stakeholders including shipbuilders, shipowners, research organizations, and EU institutions. The platform focuses on advancing sustainable, competitive, and safe waterborne transport through strategic research agendas and project coordination. The website reflects a professional and well-structured digital presence, leveraging Joomla CMS and integrating Google Analytics, reCAPTCHA, and Google Maps for enhanced user experience and security. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the platform demonstrates high legitimacy and trustworthiness, serving a niche but essential role in European maritime innovation.

A

American Tort Reform Association

atra.org

57

The American Tort Reform Association (ATRA) is a well-established non-profit organization dedicated to advocating for fairness and balance in the civil justice system through legal reform and public education. Founded in 1986, ATRA operates as a nationwide network of state-based liability reform coalitions with a strong track record of legislative success. Their key services include advocacy, public education, legislative support, and publication of reports and amicus briefs aimed at reducing lawsuit abuse. The organization targets legislators, legal professionals, manufacturers, and policy makers in the United States.

T

Transport-logistika.cz

transport-logistika.cz

53

Transport-logistika.cz is a Czech online magazine and news portal specializing in transport, logistics, and automotive sectors. Established in 2011, it offers regularly updated news articles, vehicle and equipment tests, and magazine issues targeting professionals and enthusiasts in the transportation industry. The website uses WordPress CMS with a modern tech stack including Yoast SEO, Google Analytics, and Google reCAPTCHA, hosted on Websupport servers. Security posture is good with HTTPS and CAPTCHA protections, though explicit privacy and cookie policies are not found on the homepage. The site maintains a consistent brand presence with active social media channels on Instagram, YouTube, and Facebook. Advertising is managed via the AdRotate plugin, and the site integrates Google Analytics for traffic monitoring.

S

SSI GROUP

ssi.cz

60

SSI GROUP is a large, established integrated facility management company based in the Czech Republic, offering comprehensive services including security, cleaning, facility management, technology, and energy solutions. The company operates through multiple subsidiaries specialized in these sectors, serving a broad business clientele. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on WordPress and leverages modern analytics and tracking tools such as Google Tag Manager, Microsoft Clarity, and LinkedIn Insight. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though the absence of a published security policy and incident response contacts suggests room for improvement. Privacy compliance is strong, with a clear GDPR policy and cookie consent mechanism in place. WHOIS data is unavailable, which slightly impacts domain trustworthiness, but overall the site and business appear legitimate and professional.

G

GLOBALCELL FZ

globalcell.mobi

48

GLOBALCELL FZ is a telecommunications company specializing in providing global eSIM and mobile data services across more than 180 countries. The company targets international travelers and mobile data users seeking convenient and cost-effective connectivity solutions. The website presents a professional and modern design with clear branding and a focus on ease of activation and global coverage. Technical infrastructure leverages modern web technologies including React, Google reCAPTCHA for bot protection, and Cloudflare for DNS and hosting, indicating a moderate level of digital maturity. The presence of Intercom chat suggests an emphasis on customer engagement and support. Security posture is adequate with HTTPS enforced and basic security practices observed; however, the domain's expired status and lack of DNSSEC reduce trustworthiness. Privacy compliance is basic with cookie consent and privacy policy present but lacks comprehensive security and incident response disclosures. Overall, the website is functional and professional but requires domain renewal and enhanced security transparency to improve trust and compliance.

ALIPH Foundation is a reputable non-profit organization focused on protecting cultural heritage in conflict-affected regions globally. Their website demonstrates a professional and consistent brand presence, offering detailed information about their mission, projects, and partnerships. The technical infrastructure leverages modern web technologies including Bootstrap, Mapbox, and Google Analytics, providing a responsive and user-friendly experience. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a trustworthy and credible organization with minor areas for enhancement in security transparency and WHOIS data availability.

The ALIPH Foundation is a non-profit organization focused on protecting cultural heritage in conflict zones to foster peace. The website presents a professional and well-structured digital presence with clear information about their mission, projects, and partners. Their global footprint includes numerous projects and partnerships, positioning them as a recognized actor in heritage preservation. Technically, the site uses modern frameworks such as Bootstrap and Mapbox GL JS, with integration of Google Analytics and reCAPTCHA for security and analytics. The site is mobile-optimized and provides a good user experience with multimedia content and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are absent. WHOIS data is unavailable, which slightly impacts trust but the overall professionalism and transparency mitigate concerns. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. Overall, the site is trustworthy and serves its audience effectively.

C

Covelya Group Limited

covelya.com

50

Covelya Group Limited is a UK-based technology group specializing in engineering excellence and innovation across sectors including energy, defence, environment, and science. The company operates through multiple subsidiaries such as Sonardyne, Wavefront, and Chelsea Technologies, delivering advanced instruments, systems, and solutions globally. The website reflects a professional corporate presence with clear branding and structured information about its vision, ethos, and subsidiaries. Technically, the site is built on WordPress with the Divi theme, leveraging Cloudflare for DNS and CDN services, and integrates Google Analytics for visitor tracking. Security posture is adequate with HTTPS enabled and reCAPTCHA used on forms, but lacks advanced security headers and explicit security policies. Privacy compliance is limited due to absence of visible privacy and cookie policies. Overall, the domain registration is consistent and transparent, supporting the legitimacy of the business. Strategic improvements in privacy disclosures and security hardening would enhance trust and compliance.

W

We Are Johan

wearejohan.nl

52

We Are Johan is a small independent advertising agency based in the Netherlands, serving clients in the Netherlands, Belgium, and internationally. The company focuses on providing simple, creative, and effective advertising solutions including concept development, art direction, online marketing, and advertising campaigns. Their market position is that of a boutique agency with a strong creative approach. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as Google Analytics, Google Tag Manager, Google reCAPTCHA, and Typekit fonts. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Hosting is provided by Webflow, ensuring reliable infrastructure. From a security perspective, the website uses HTTPS with excellent SSL configuration and includes reCAPTCHA for form protection. However, it lacks important security headers and does not implement privacy best practices such as IP anonymization in analytics or explicit privacy and cookie policies. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance trust and compliance. Overall, the website is safe and professional, with no adult or questionable content detected. The domain registration data is consistent with the business claims, indicating legitimacy. Strategic improvements in privacy compliance, security headers, and transparency would strengthen the security posture and user trust.

U

UNLIMITED.RS

unlimited.rs

55

UNLIMITED.RS is a Serbian-based web hosting and domain registration provider established in 2015, operating under the parent company United Internet d.o.o. The company offers a range of services including shared web hosting, VPS hosting, dedicated servers, domain registration, SSL certificates, and additional IT services such as colocation and audio streaming. Their market focus is primarily on Serbian and EU customers, emphasizing local hosting infrastructure and performance. The website is professionally designed, mobile-optimized, and integrates modern technologies such as WordPress, Bootstrap, LiteSpeed Web Server, and KVM virtualization. Marketing and customer engagement tools include Google Analytics, Facebook Pixel, MailerLite, and Tawk.to live chat. Security posture is solid with HTTPS enforced and some security best practices in place, but could be improved by enabling DNSSEC, adding security headers, and publishing formal security policies. Privacy compliance is basic, with a privacy policy and terms of service present but lacking explicit cookie consent mechanisms. Overall, the domain registration data is consistent and supports the legitimacy of the business, with no blocking or WAF challenges detected.

S

Sustainable Skies World Summit

sustainableskies.world

58

Sustainable Skies World Summit is a UK-based event organizer focused on addressing sustainability challenges in the aviation industry. The website promotes the 2026 summit scheduled for March 17-18, positioning itself as a leading UK event in sustainable aviation. The business model revolves around event hosting and industry networking, targeting aviation professionals and sustainability stakeholders. The site content is professionally presented with good SEO and structured data, reflecting a well-maintained digital presence for a newly founded organization in 2024. Technically, the website is built on WordPress with common technologies such as jQuery, Bootstrap, and WP Rocket for performance optimization. It integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, LinkedIn Insight Tag, and Cookiebot for cookie consent management. The site is mobile-optimized and uses HTTPS with a good SSL configuration, although no explicit security headers were detected in the provided data. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent with blocking mode, and bot protection via Google reCAPTCHA. However, it lacks published security policies, incident response contacts, and explicit privacy and terms of service pages, which are recommended for compliance and trust. No vulnerabilities or suspicious patterns were detected, and WHOIS data aligns with the business timeline, indicating legitimacy. Overall, the website presents a moderate to good security posture and digital maturity for a new event business. Strategic improvements in privacy documentation, security headers, and contact transparency would enhance trust and compliance. The risk level is moderate with no critical issues identified.

S

Salone Nautico

salonenautico.com

62

Salone Nautico is an important event organizer in the nautical transportation sector, hosting the Salone Nautico Genova exhibition scheduled for September 2025. The website targets the international nautical market and sea enthusiasts, providing event information and industry networking opportunities. The site is built on WordPress using Elementor and integrates modern marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and Cookiebot for consent management. The technical infrastructure is moderately performant with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks some security headers and explicit privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and branding appear professional and consistent. Overall, the site presents a moderate risk profile with room for improvement in compliance and security transparency.

E

Energia

energia.ie

66

Energia is a leading energy supplier in Ireland, providing electricity, gas, and dual fuel plans with a strong emphasis on green energy solutions. The company serves a large customer base exceeding 350,000 residential and commercial clients, positioning itself as a major player in the Irish energy market. Their website reflects a professional and modern digital presence, leveraging Kentico CMS and integrating advanced marketing and analytics tools such as Google Tag Manager, Adobe DTM, and Webtrends Optimize. Privacy compliance is robust, with clear privacy and cookie policies supported by OneTrust consent management. Security posture is strong, with HTTPS enforcement, security headers, and reCAPTCHA integration, although explicit security policies and incident response information are not publicly detailed. Overall, Energia demonstrates a mature digital infrastructure and trustworthy business presence, though WHOIS data limitations prevent full domain registration verification.

E

evian

evian.com

66

Evian is a premium natural mineral water brand with a rich heritage of over 230 years, sourcing water from the French Alps. The website targets German consumers with detailed product information, sustainability initiatives, and brand storytelling. Technically, the site is built on TYPO3 CMS with modern web technologies and includes standard security features such as HTTPS and reCAPTCHA. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. However, the absence of WHOIS data for the domain is unusual and warrants further investigation. Overall, the site demonstrates a strong brand presence and good digital maturity with room for improvement in security transparency and incident response disclosures.

S

SecurityMetrics

securitymetrics.com

73

SecurityMetrics is a well-established enterprise focused on providing compliance and cybersecurity solutions, specializing in PCI DSS, HIPAA, and HITRUST assessments. The company serves a broad market including small businesses to large enterprises across multiple sectors such as finance, healthcare, retail, and government. Their website reflects a mature digital presence with comprehensive service offerings, educational resources, and strong trust indicators including a large client base and certifications. Technically, the site leverages modern web technologies, analytics, and consent management tools, ensuring good performance and privacy compliance. Security posture is strong with HTTPS, reCAPTCHA, and incident response contact information, though explicit security policies and vulnerability disclosures are not publicly detailed. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, which is common for security-focused companies. The site is professional, trustworthy, and well-positioned in its market.

S

Seazip Offshore Service BV

seazip.com

55

SeaZip Offshore Service BV operates as a maritime partner specializing in offshore service vessels, particularly Crew Transfer Vessels (CTVs), targeting the offshore energy and maritime sectors. The company positions itself as a provider of high-performance and safe offshore operations, with a business foundation dating back to 2016. The website reflects a professional maritime service provider with a clear focus on offshore operations expertise. Technically, the website is built on WordPress CMS and leverages modern web technologies including jQuery, Gravity Forms, Google Tag Manager, Google reCAPTCHA, and Foundation CSS framework. The site is mobile optimized and includes SEO best practices such as meta tags and structured data. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, explicit privacy and terms of service pages are absent, and no security headers were detected in the provided data. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the website presents a moderate risk profile with strengths in technical implementation and business professionalism but weaknesses in transparency of domain registration and privacy policy disclosures. Strategic recommendations include adding explicit privacy and security policies, implementing security headers, and clarifying domain registration details to enhance trust and compliance.

C

CSC crewing

csc-crewing.com

53

CSC Crewing is a well-established certified manning agency specializing in crew management, recruitment, and payroll services for the energy, maritime, and project staffing sectors. With over 27 years of history in maritime manning and a membership in the Oceanwide group, the company holds a strong market position in the Netherlands and internationally. Their website reflects a professional and business-focused approach, targeting companies requiring qualified personnel for offshore and onshore operations. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder and Yoast SEO, ensuring good SEO and user experience. The site is mobile-optimized, fast-loading, and integrates Google Tag Manager and Google reCAPTCHA for analytics and security. However, some security best practices like DNSSEC and security headers are missing, and there is no visible cookie consent mechanism. The security posture is solid with HTTPS enforced and form protections in place, but improvements are recommended in DNS security and HTTP headers. The WHOIS data aligns well with the business claims, showing a consistent and legitimate domain registration without privacy protection, which supports transparency. Overall, CSC Crewing presents a trustworthy and professional online presence with moderate to high digital maturity. Strategic enhancements in privacy compliance and security headers would further strengthen their posture and compliance with evolving regulations.

H

Holland Shipyards Group

hollandshipyardsgroup.com

61

Holland Shipyards Group operates as a maritime shipbuilding and services company specializing in new vessel construction, repair, conversions, and rentals. Their market position is that of an established medium-sized player in the Netherlands maritime sector, offering a broad range of vessel types including tugs, ferries, dredging vessels, and accommodation units. The website reflects a professional business presence with clear service offerings and contact information. Technically, the site is built on the Webflow platform, leveraging modern web technologies and analytics tools such as Google Analytics and Tag Manager, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks advanced security headers and published security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and business information appear consistent and trustworthy. Overall, the site scores well in content quality and privacy compliance but should improve security transparency and domain registration clarity.

F

Barelová voda, výdejníky na barelovou, výdejníky na vodovodní řad

fontana.cz

58

Fontana.cz is a Czech-based e-commerce website specializing in bottled water and water dispensing solutions. The company appears to have a long-standing presence since 1999, serving customers interested in water delivery and dispenser equipment. The website uses WordPress with WooCommerce and several modern technologies including Google Tag Manager, Google Ads, and reCAPTCHA to enhance user experience and security. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. Security measures such as HTTPS and bot protection are in place, but additional security headers and incident response information are absent. Overall, the site is functional and professionally designed but would benefit from improved privacy compliance and clearer contact information.

D

DATEX II

datex2.eu

51

DATEX II is a European standard organization focused on traffic and travel information exchange. The website serves as a hub for specifications, implementations, user domains, documentation, and educational resources related to the DATEX II standard. It targets stakeholders in the transportation sector across Europe, providing authoritative content and event information. The site is built on a WordPress platform using modern themes and plugins, ensuring a good user experience and mobile optimization. Security measures include HTTPS and Google reCAPTCHA for form protection, but lack explicit security policies and vulnerability disclosures. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

K

Komunita Sant'Egidio

santegidio.cz

41

Komunita Sant'Egidio is a Czech non-profit community organization dedicated to prayer, aiding the poor, and promoting peace. The website serves as a platform to engage volunteers, provide information about charitable events such as Christmas meals for the homeless, and share news about their activities across several Czech cities. The organization targets vulnerable populations and volunteers, operating primarily through donations and community involvement. Technically, the website is built on WordPress using a modern theme and plugins, with good mobile optimization and basic SEO practices. Security measures include HTTPS and Google reCAPTCHA, but lack published privacy policies and security headers, which are areas for improvement. The absence of WHOIS data limits domain trust assessment, but the website content and structure indicate a legitimate and professional non-profit entity.

C

Clúster de Movilidad y Logística de Euskadi

mlcluster.com

52

Clúster de Movilidad y Logística de Euskadi is a well-established regional business association founded in 2010, focused on enhancing competitiveness in the Basque Country's mobility and logistics sectors. The organization promotes innovation, cooperation, and sector promotion among its members, which include companies and agents in logistics, supply chain, infrastructure, and mobility. The website reflects a professional and consistent brand presence with multilingual support and active content updates including news and events. Technically, the site is built on WordPress with modern plugins and SEO tools, delivering a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS, domain transfer protection, and use of reCAPTCHA, though some security headers could be improved. Privacy compliance is good with visible cookie consent and a comprehensive privacy policy. Overall, the site is trustworthy and credible, supporting the cluster's business objectives effectively.

B

Bulgarian Intelligent Transport Systems Association

bitsa.bg

43

The Bulgarian Intelligent Transport Systems Association (BITSA) is a specialized expert association focused on the development and promotion of intelligent transport systems in Bulgaria. It operates as part of the ITS Europe partner network, aiming to enhance sustainable, safe, and efficient transportation through policy advocacy, projects, and stakeholder engagement. The website reflects a professional and consistent brand presence with clear mission and vision statements targeting transport sector professionals and partners. Technically, the website is built on WordPress using Elementor and integrates modern web technologies including Bootstrap and Google reCAPTCHA for form security. Hosting is provided by a reputable Bulgarian hosting provider, inferred from the nameservers. The site is mobile-optimized and SEO-friendly with structured data and meta tags properly implemented. From a security perspective, the site uses HTTPS and includes reCAPTCHA to protect forms, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The WHOIS data is privacy protected in compliance with GDPR, which is justified for this type of organization. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, BITSA's website demonstrates a solid digital presence with good business credibility and technical implementation. Enhancing privacy compliance and security headers would further strengthen its security posture and trustworthiness.

K

Křižovnický domácí hospic

krizovnickapomoc.cz

37

Křižovnický domácí hospic sv. Anežky České is a Czech non-profit organization providing home hospice and palliative care services. The website presents a professional and consistent brand image, targeting patients and families in need of end-of-life care. The organization is relatively new, founded in 2021, and maintains partnerships with several healthcare and social service entities. Technically, the site is built on WordPress with common plugins and libraries, including Contact Form 7 and Google reCAPTCHA for spam protection. While HTTPS is properly configured, the site lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security headers are not visibly implemented, representing an area for improvement. Overall, the site is trustworthy and functional but could enhance privacy compliance and security posture.

Ing. Jiří Škoda operates a professional software development and web design service based in the Czech Republic. The website showcases a portfolio of projects and emphasizes custom software solutions, modern websites, and web applications tailored to client needs. The business targets clients seeking bespoke digital solutions with a focus on quality, clean code, and customer support. Technically, the website employs a modern tech stack including PHP, Symfony, Java, Spring, Vaadin, and front-end technologies like HTML5, CSS3, Bootstrap, and JavaScript frameworks. The site is hosted by REG-WEDOS, a Czech registrar, and uses HTTPS with Google reCAPTCHA for form security. Security posture is good but could be improved with additional HTTP security headers and explicit incident response information. Privacy compliance is addressed with GDPR consent and a cookie policy. Overall, the site is professional, well-structured, and trustworthy with minimal tracking and no advertising.

D

Danone Finland Oy

danone.fi

60

Danone Finland Oy operates as a subsidiary of the global Danone group, focusing on nutrition and health-related food products within Finland. The website is localized for Finnish users and presents a corporate presence consistent with the company's business sector. The domain has been registered since 2003, indicating a stable and established market presence. The website uses WordPress CMS and integrates modern tools such as Google Tag Manager and reCAPTCHA to support analytics and security. Cookie consent is managed through OneTrust, reflecting attention to privacy compliance. Security posture is generally good with HTTPS enabled and some security best practices observed, though additional security headers could enhance protection. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data aligns well with the website's business claims, supporting legitimacy and trustworthiness.

D

Danone

danone.dk

57

Danone.dk is the Danish localized website of Danone, a large multinational food-products corporation specializing in dairy, plant-based products, bottled water, and specialized nutrition. The website serves as a corporate and consumer information portal for the Danish market. The technical infrastructure is based on WordPress CMS version 6.8.1, with integration of Google Tag Manager and Google reCAPTCHA for analytics and security respectively. The site implements a cookie consent mechanism via OneTrust, indicating awareness of privacy compliance requirements. However, the website lacks visible privacy policy, terms of service, and contact information, which are critical for full compliance and user trust. Security posture is moderate with HTTPS enabled and some bot protection, but lacks DNSSEC and security headers that could enhance protection against common web threats. Overall, the site is functional but could benefit from improved content richness, privacy disclosures, and enhanced security configurations.

A

Arrowhead Winch

paccarwinch.com

60

Arrowhead Winch is a professional industrial manufacturing company specializing in hydraulic winches, hoists, and drive systems under the well-known brands BRADEN, CARCO, and Gearmatic. The company targets industrial and commercial sectors requiring heavy-duty engineered solutions. Their website demonstrates a strong market position with a comprehensive product portfolio and a global distributor network. Technically, the website is built on WordPress with WooCommerce and integrates modern marketing and analytics tools such as HubSpot, Google Tag Manager, and LinkedIn Insight Tag, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement, reCAPTCHA on forms, and cookie consent management, though explicit security policies and incident response contacts are not published. The WHOIS data is missing, which raises concerns about domain registration transparency, but the website's professional presentation and consistent branding mitigate some trust issues. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a credible online presence for the business.

H

Highlands and Islands Enterprise

hie.co.uk

66

Highlands and Islands Enterprise (HIE) is a well-established economic and community development agency serving the Highlands and Islands region of Scotland. The organization supports businesses, social enterprises, and communities through funding, property assistance, training, and advisory services. With over 60 years of operation, HIE positions itself as a key regional development entity focused on sustainable growth and prosperity. The website reflects a professional and comprehensive digital presence, targeting a broad audience including local businesses, investors, and community groups. Technically, the website employs modern web technologies including Google Tag Manager, Facebook Pixel, Hotjar, and Google reCAPTCHA, indicating a mature digital infrastructure with attention to user experience and security. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and well-structured content. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, some advanced security headers are missing, and there is no publicly available security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. The main limitation is the lack of WHOIS data for the queried domain 'www.hie.co.uk', which appears to be an invalid domain format. The actual domain is likely 'hie.co.uk', which aligns with the organization's identity. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

D

Dogger Bank Wind Farm

doggerbank.com

63

Dogger Bank Wind Farm is a large-scale offshore renewable energy project aiming to become the world's largest offshore wind farm with a combined capacity of 3.6GW. The project is a joint venture between SSE, Equinor, and Vårgrønn, targeting the UK market and focusing on sustainable energy generation and community benefits. The website reflects a mature digital presence with comprehensive project information, community engagement, and supplier recruitment. Technically, the site is built on WordPress with modern plugins and analytics, showing good SEO and accessibility practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some improvements like DNSSEC and security.txt could enhance trust. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting the business's credibility and market position.

Š

Škoda Group

skodagroup.com

63

Škoda Group's website is accessible and built using modern web technologies such as Nuxt.js and integrates Google reCAPTCHA for bot protection. The site implements a cookie consent mechanism via CookieYes, indicating some attention to privacy compliance. However, the website lacks critical business and contact information such as privacy policy, terms of service, contact emails, phone numbers, and physical addresses, which limits its transparency and trustworthiness. The WHOIS data for the domain is unavailable, showing no registration details, which raises concerns about the domain's legitimacy and age. The technical infrastructure appears moderately optimized with good mobile responsiveness but lacks visible security headers and comprehensive privacy compliance indicators.

S

Sedláček s.r.o.

sedlacek-karcher.cz

50

Sedláček s.r.o. operates the website www.sedlacek-karcher.cz as an authorized reseller and service provider of cleaning and hygiene systems, prominently featuring brands such as Kärcher, TORK, and Kimberly-Clark. The company has a long-standing presence since 1994, targeting both business and consumer markets with sales, service, and rental offerings. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, the site employs modern tracking and analytics tools including Google Tag Manager, Hotjar, and Facebook Pixel, alongside security measures like HTTPS and Google reCAPTCHA for form protection. However, the absence of explicit privacy and cookie policy pages and lack of WHOIS domain registration data introduce some trust and compliance concerns. Overall, the site demonstrates a moderate security posture with room for improvement in transparency and security headers.

T

Triklub Příbram

triklubpribram.cz

40

Triklub Příbram is a local sports club based in the Czech Republic, focused on organizing triathlon, running, and duathlon events. Established in 2008, the club serves sports enthusiasts and the local community by providing event organization, timing services, and media coverage. The website reflects a community-oriented non-profit model with partnerships across local sports and municipal organizations. Technically, the site is built on WordPress with Bootstrap and jQuery, incorporating SEO best practices via Yoast and security measures such as Google reCAPTCHA. The site is mobile-optimized and moderately performant, with clear navigation and good content relevance. Security posture is adequate with HTTPS and CAPTCHA, but lacks advanced security headers and explicit policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional, though improvements in security and privacy transparency are recommended.

S

Sedláček s.r.o.

author-sedlacek.cz

49

Sedláček s.r.o. operates the website www.author-sedlacek.cz as a retail and service center specializing in bicycles, particularly the Author brand, along with related accessories and rental services. The company has an established presence since 1994 and targets cycling enthusiasts in the Czech Republic. The website is professionally designed with clear navigation and good mobile optimization, supporting a positive user experience. Technically, the site employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager, alongside security measures like HTTPS and reCAPTCHA for form protection. However, the absence of privacy and terms of service pages indicates a compliance gap. The WHOIS data is unavailable, limiting domain legitimacy verification, but the website content and contact information suggest a legitimate small retail business. Overall, the site demonstrates a solid security posture with room for improvement in privacy compliance and security header implementation.

I

investujdopole.cz s.r.o.

investujdopole.cz

10

Investujdopole.cz s.r.o. is a Czech Republic-based company specializing in land investment brokerage and advisory services. With over 20 years of experience and a portfolio of more than 5,000 land parcels sold, the company positions itself as a trusted leader in the Czech land investment market. Their services include legal support, property valuation, and educational webinars aimed at helping investors protect their savings against inflation through land investments. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Next.js and React, ensuring a smooth user experience. Security measures include HTTPS, Google reCAPTCHA, and secure forms, although explicit security policies and incident response information are not publicly detailed. The absence of WHOIS data is a notable gap in transparency but does not detract significantly from the overall trustworthiness given the comprehensive business information and contact details provided. Privacy and cookie policies are present and GDPR compliant, supporting responsible data handling practices.

Equitana Hotel Resort is a Czech Republic based wellness hotel and equestrian resort offering accommodation, spa, restaurant, and corporate event services. The website is professionally designed, mobile responsive, and provides clear navigation and contact information. The technical infrastructure relies on jQuery, Google Analytics, Facebook Pixel, and a proprietary CMS (IPO). Security posture is good with HTTPS and CAPTCHA usage, but lacks some security headers and explicit privacy policy documentation. The WHOIS data is unavailable publicly, indicating privacy protection, which is common and justified for this business type. Overall, the website presents a trustworthy and professional hospitality business with moderate digital maturity.