Security Directory

L

La Maison des Alpes – La Nature du Val d'Hérens

lamaisondesalpes.ch

49

La Maison des Alpes website serves as an informational and promotional platform focused on the natural and cultural heritage of the Val d'Hérens region in Switzerland. The site targets visitors and locals interested in regional nature and culture, providing content primarily in French. The business model appears to be centered on regional tourism promotion without direct e-commerce or transactional services. Technically, the site is built on WordPress using the Divi theme, leveraging standard web technologies such as JavaScript and Google Fonts. The site is mobile optimized and performs moderately well, though accessibility and SEO features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. Privacy compliance is minimal with no visible privacy or cookie policies, which is a compliance risk. Overall, the site is functional but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

H

Home Credit, a.s.

bezvasplatky.cz

57

Bezvasplatky.cz is an e-commerce platform operated under the Home Credit brand, specializing in the sale of consumer electronics and household products with installment payment options featuring zero interest. The website targets Czech consumers seeking flexible financing for technology products such as mobile phones, tablets, laptops, and accessories. The platform leverages modern web technologies including Google Tag Manager and OneTrust for cookie consent, ensuring compliance with GDPR regulations. The site is well-structured, mobile-optimized, and integrates trusted payment and financing services from Home Credit, positioning it as a credible player in the Czech retail finance market. Security posture is solid with HTTPS enforcement and standard security headers, although some advanced headers like Content-Security-Policy could be added for enhanced protection. The absence of WHOIS data due to privacy protection slightly reduces transparency but does not detract from the overall legitimacy given the strong brand association and professional presentation.

The Boeing Store website serves as the official e-commerce platform for authentic Boeing-branded aviation merchandise, collectibles, apparel, and STEM toys. It targets aviation enthusiasts, collectors, and general consumers interested in Boeing products. The site leverages the Shopify Plus platform, ensuring a robust and scalable infrastructure with modern e-commerce capabilities. The presence of a user-generated content form with corporate Boeing emails indicates active marketing and customer engagement efforts. Technically, the site employs a modular Shopify theme with multiple third-party integrations for enhanced user experience and consent management. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers could be improved. The absence of WHOIS data suggests privacy protection or recent registration, which is common for commercial retail sites. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Bonus Veren Siteler

bonus-deneme-siteler.com

56

Bonus Veren Siteler is a Turkish online platform specializing in aggregating and presenting legal and reliable bonus offers, promotional codes, and free trial opportunities primarily for e-commerce and digital services. The website targets online shoppers and users seeking to maximize savings and benefits through verified promotions. The business operates as an informational and affiliate-style service, focusing on providing up-to-date and trustworthy content to its audience. The market position is niche with a focus on the Turkish market, emphasizing legal compliance and user trust. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with external resources such as Google Fonts and Font Awesome. Hosting and DNS services are managed via Cloudflare, enhancing performance and security. The site is mobile-optimized with responsive design and basic accessibility features. SEO practices are well implemented with comprehensive meta tags and structured data (JSON-LD) for enhanced search engine visibility. From a security perspective, the site uses HTTPS and has domain transfer protections enabled. However, it lacks advanced security headers and does not publish privacy or cookie policies, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The WHOIS data presents a suspicious domain creation date in the future, which undermines trust and requires further verification. No forms or user data collection mechanisms are present on the main page, reducing immediate privacy risks. Overall, the website is professionally designed and functional with good content quality and user experience. The main risks relate to compliance gaps (missing privacy and cookie policies) and the questionable WHOIS domain registration data. Strategic improvements in these areas would enhance trustworthiness and security posture.

F

FourJaw Manufacturing Analytics Ltd

fourjaw.com

73

FourJaw Manufacturing Analytics Ltd is a UK-based company founded in 2020 specializing in manufacturing analytics software and IoT hardware solutions. Their platform provides real-time machine monitoring, productivity analytics, downtime tracking, and energy monitoring to manufacturers aiming to optimize factory floor operations. Positioned as an award-winning, plug-and-play solution, FourJaw targets SMEs to global manufacturers, emphasizing ease of installation and affordability. The website reflects a mature digital presence built on HubSpot CMS, with strong branding, comprehensive content, and clear calls to action. Technically, the site is well-implemented with modern technologies, fast performance, and good mobile optimization. Security posture is solid with HTTPS, domain locking, and cookie consent mechanisms, though lacks explicit security policies or incident response disclosures. Overall, FourJaw presents a trustworthy and professional business with a strong market position in manufacturing analytics.

H

www.hattrick.cz – Trojnásobná porce fotbalového čtení

hattrick.cz

40

www.hattrick.cz is a Czech football magazine and online media platform providing extensive football-related content including news, interviews, and analyses. The website targets football fans and readers interested in Czech and international football. It operates primarily as a media business offering both digital content and a print magazine subscription model. The site is built on WordPress CMS with common plugins for social media feeds and analytics integration. While HTTPS is enabled and Google Tag Manager is used for tracking, the site lacks visible privacy and cookie policies and security headers, which are areas for improvement. The absence of WHOIS data limits domain trust assessment, but the active social media presence and professional content suggest a legitimate operation.

POSKYTOVATEL.cz is a Czech webhosting provider offering tiered hosting packages including basic, professional, and reseller hosting plans. The website is built on the WHMCS platform, providing e-commerce and client management capabilities. The site is well-structured, mobile-optimized, and presents clear service offerings targeted at small businesses, web developers, and agencies. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trust. The website lacks explicit privacy, cookie, and terms of service policies, which impacts compliance and user trust. Technically, the site uses modern web technologies and includes security measures such as CSRF tokens, but lacks visible security headers and detailed security policies.

R

Responder Alliance

responderalliance.com

56

Responder Alliance is a specialized training organization focused on stress resilience education for first responders and outdoor professionals. Their offerings include group training, online courses, memberships, and resource tools designed to prevent burnout and traumatic stress injury. The organization positions itself as a leading resource with internationally recommended and scientifically validated methods. Technically, the website is built on Squarespace, leveraging modern web technologies and third-party services such as HubSpot and Google Tag Manager. The site is well-designed, mobile-optimized, and provides a good user experience. Security posture is generally good with HTTPS enforced, but lacks some security headers and published policies. The absence of WHOIS data for the domain is a notable concern, though the active and professional website presence mitigates some risk. Overall, the site is trustworthy and safe for general audiences, but improvements in privacy compliance and security transparency are recommended.

T

The BARK Firm

thebarkfirm.com

46

The BARK Firm is a business entity established in 2010, likely operating in the pet services or related sector, as inferred from the company name. The website employs modern front-end technologies such as Bootstrap 5, Google Fonts, and Font Awesome, alongside popular analytics and tracking tools including Microsoft Clarity, Pinterest Conversion Tracking, LinkedIn Insight Tag, Google Tag Manager, and Facebook Pixel. The technical infrastructure suggests a moderate level of digital maturity with a WordPress-based CMS inferred from the use of Gravity Forms. Security posture shows domain locking mechanisms in place, but lacks visible security headers and explicit security policies on the website. Privacy and cookie policies are not found, indicating gaps in compliance. Overall, the website is professionally designed with good user experience but requires improvements in privacy compliance and security best practices. The domain registration is consistent and legitimate, registered with GoDaddy since 2010, supporting the business's credibility.

B

Big Time Gaming Pty Ltd

bigtimegaming.com

63

Big Time Gaming Pty Ltd is an innovative leader in the slot machine development industry, delivering engaging gaming experiences and big wins to players worldwide. The company maintains a strong market position with a focus on technology-driven slot games and a complementary merchandise e-commerce platform. Their website reflects a professional and consistent brand image targeting online casino operators and gaming enthusiasts. Technically, the site is built on Squarespace CMS with integrations such as Google Analytics and Facebook Pixel, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements in security headers are recommended. Privacy compliance is strong with comprehensive policies and GDPR adherence. Overall, the business credibility is solid, supported by clear contact channels and social media presence, though the lack of WHOIS registrant data introduces some uncertainty regarding domain registration legitimacy.

크

크리마(CREMA)

cre.ma

58

크리마(CREMA) is an AI-driven review marketing platform focused on providing e-commerce businesses in South Korea with data-based solutions to enhance customer review management and marketing effectiveness. The website presents a professional and modern design, leveraging technologies such as Google Tag Manager and Channel.io for analytics and customer engagement. However, the absence of WHOIS registration data and domain details introduces uncertainty regarding the domain's legitimacy and ownership transparency. The site lacks explicit privacy and cookie policies, which impacts its compliance posture. Security headers are not detected, and SSL configuration details are unavailable, suggesting room for improvement in security hardening. Overall, the platform appears credible in its business offering but would benefit from enhanced transparency and security measures.

H

Hennik Research, part of Nineteen Group

themanufacturertop100.com

43

The Manufacturer Top 100 is a well-established UK-based awards platform celebrating leadership and innovation in the manufacturing sector. The website serves as a hub for event information, entry details, judging criteria, and networking opportunities, targeting manufacturing professionals and industry stakeholders. The business is part of Hennik Research under the Nineteen Group umbrella, with a history dating back to 2016 and a strong market position in the UK manufacturing awards space. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, HubSpot, and Google Analytics, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS enforced and Cyber Essentials certification displayed, but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

A

Alp Design – brand owned by Kong

alpdesign.it

53

Alp Design, a brand owned by Kong S.p.A., specializes in manufacturing high-quality equipment for speleology, canyoning, and rescue operations. Established in 1978, the company has a strong market position within its niche, offering a comprehensive product catalog including harnesses, bags, clothing, K9 harnesses, and rescue stretchers. The website reflects a professional and consistent brand image targeting professionals and enthusiasts in outdoor and rescue activities. Technically, the site is built on ASP.NET Web Forms with modern front-end libraries such as Bootstrap and Swiper.js, delivering a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements are recommended in security headers and explicit security policies. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the website and its operations.

Y

Yates Gear

yatesgear.com

38

Yates Gear is a specialized manufacturer focused on mountaineering, rock climbing, tactical, helo-ops, and search and rescue equipment. The company has a long-established domain since 1999, indicating a mature presence in the manufacturing sector. Their website is built on a modern e-commerce platform (likely OpenCart) with a professional design and good mobile optimization. The technical infrastructure includes popular libraries and frameworks such as Bootstrap, Font Awesome, and Swiper, supporting a responsive and user-friendly experience. However, the site lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enforced but missing DNSSEC and security headers, suggesting room for improvement in hardening the site against attacks. Tracking via Facebook Pixel indicates marketing efforts but also raises privacy considerations. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and security best practices.

B

BOSPF

laboutiqueofficiellepompiers.fr

54

The website 'BOSPF' operates as an e-commerce retail platform specializing in firefighter-related apparel, equipment, collectibles, and accessories. It targets both individual customers and professional firefighters, positioning itself within a niche market in France. The business has been established since 2013, with a consistent domain registration and a clear focus on its target audience. The site offers a variety of product categories including clothing, equipment, and gift cards, supporting a specialized retail business model. Technically, the website is built on the PrestaShop CMS platform, utilizing common web technologies such as jQuery, Font Awesome, and Google Fonts. Hosting is provided by OVH, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The presence of cookie consent mechanisms indicates awareness of privacy regulations, although no explicit privacy policy or terms of service were detected in the provided content. From a security perspective, the site enforces HTTPS with a valid SSL certificate, but lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and form protections are advised. The absence of analytics and advertising scripts suggests minimal user tracking, aligning with basic privacy compliance. Overall, the website presents a professional and trustworthy retail presence with room for enhancement in privacy documentation and security hardening. The domain registration data supports the legitimacy of the business, and the content is safe for general audiences without any adult or questionable material.

G

Good Sailors

goodsailors.com

56

Good Sailors is a technology company specializing in leveraging neurodiverse talent to deliver software development, UX testing, and talent sourcing services. The company positions itself as an innovator in inclusive hiring and technology solutions, serving businesses seeking to harness neurodiversity as a competitive advantage. The website is professionally designed, with clear messaging and recognized client logos, indicating a credible market presence. Technically, the site is built on Webflow with modern web fonts and tracking via Microsoft Clarity, showing a moderate level of digital maturity. Security posture is adequate but could be improved by adding security headers and explicit privacy and cookie policies. The absence of WHOIS registration data is a notable concern, reducing trustworthiness despite the professional appearance. Overall, the website is functional and credible but would benefit from enhanced compliance and transparency measures.

I

International School Sport Federation

isfsports.org

57

The International School Sport Federation (ISF) operates as a global non-profit organization dedicated to promoting school sports and organizing international school sports events. The website reflects a professional and well-structured digital presence, leveraging Drupal 9 CMS and modern web technologies. The organization maintains active social media channels and provides event information and registration through partner domains. Technically, the website is well-implemented with HTTPS, standard security practices, and moderate performance. However, explicit privacy policies, terms of service, and contact information are not prominently available, which could be improved for better transparency and compliance. The WHOIS data is unavailable or protected, which is common for non-profit organizations but limits domain trust analysis. Overall, the website is trustworthy, safe, and serves its educational and sports community effectively.

Č

Česká asociace akademických technických sportů

caats.cz

40

Česká asociace akademických technických sportů (ČAATS) is a Czech non-profit association dedicated to organizing and promoting academic technical sports events and competitions. The website serves as a portal for event announcements, results, official documents, and partnership information, targeting academic institutions, students, and sports organizations within the Czech Republic. The association maintains partnerships with several national and international sports bodies, enhancing its credibility and reach. Technically, the website is built on WordPress 5.6.14, utilizing modern web technologies such as jQuery, Fancybox, and Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some SEO and accessibility improvements could be made. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks several important security headers. There is no visible privacy or cookie policy, which impacts compliance with GDPR and related regulations. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and partnerships suggest a legitimate organization. Overall, the site is functional and professional but would benefit from enhanced security practices, explicit privacy compliance documentation, and verification of domain registration details to improve trust and compliance.

L

Lifesaving Systems

lifesavingsystems.com

56

Lifesaving Systems is a well-established company specializing in the manufacture and supply of rescue, safety, and survival equipment primarily for Search & Rescue responders in the Aviation and Marine sectors. With over 43 years of industry presence, the company positions itself as a premier supplier globally. The website reflects a professional business model targeting both industry professionals and SAR responders, leveraging a B2B and B2C approach. The company maintains partnerships with several related aerospace and safety technology firms, enhancing its market reach and product offerings. Technically, the website is built on a modern WordPress platform using WooCommerce for e-commerce capabilities and Elementor for page building. The site employs standard web technologies including jQuery and Google Fonts, and integrates Google Analytics via MonsterInsights for visitor tracking. The site is hosted behind Cloudflare DNS but does not use DNSSEC, and the SSL configuration is good, ensuring secure HTTPS connections. The website demonstrates good SEO practices with comprehensive metadata and structured data, although accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and explicit security headers, which are recommended for enhanced security. No privacy or cookie policies were detected, which is a compliance gap especially for GDPR and similar regulations. No incident response or vulnerability disclosure information is publicly available, indicating room for improvement in transparency and security posture. Overall, the website is professional and trustworthy with a strong business credibility score. The main risks relate to privacy compliance and security best practices. Strategic improvements in these areas would enhance user trust and regulatory compliance.

D

DMO Lužické a Žitavské hory, z.s.

pivnistezka.cz

63

The website pivnistezka.cz represents the Lusatian Mountains Beer Trail, a regional tourism initiative promoting breweries and beer trails in northern Bohemia, Czech Republic. The organization behind the site is DMO Lužické a Žitavské hory, z.s., focusing on connecting visitors with local breweries, accommodations, and events. The site targets beer enthusiasts and tourists interested in cultural and culinary experiences related to craft beer. The business model revolves around tourism promotion and regional collaboration among breweries and hospitality providers. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS with SEO optimization. It integrates multiple third-party scripts including Google Analytics, Facebook Pixel, and Seznam Retargeting for marketing and analytics purposes. The site is mobile optimized and provides a good user experience with clear navigation and rich content including videos and image carousels. From a security perspective, the site uses HTTPS with a good SSL configuration and includes some security best practices. However, explicit security headers are not detected, and no formal security or incident response policies are published. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service on the analyzed page. No WHOIS data is publicly available, likely due to privacy protection, but the site shows legitimate trust signals such as consistent branding and social media presence. Overall, the website is a credible regional tourism platform with good content and technical implementation but could improve privacy transparency and security header implementation to enhance trust and compliance.

P

PAPÍRNY BRNO a.s.

papirnybrno.cz

42

PAPÍRNY BRNO a.s. is a leading Czech manufacturer and retailer specializing in school and office paper products, including notebooks, diaries, paper bags, and gastro packaging. The company operates an e-commerce platform offering a wide range of paper goods targeting schools, offices, and gastronomy sectors. Their market position is strong within the Czech Republic, supported by a clear brand presence and active social media engagement. The website is professionally designed with good navigation and mobile optimization, reflecting a medium-sized enterprise with a solid digital infrastructure. Technically, the site uses modern web technologies and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and Hotjar, managed via Google Tag Manager. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although additional security headers and a published security policy would enhance their security maturity. WHOIS data is unavailable, limiting domain trust assessment, but the business information on the site is transparent and credible. Overall, the website is safe, GDPR compliant, and well-positioned for its target audience.

A

Asociace školních sportovních klubů

assk.cz

49

Asociace školních sportovních klubů (AŠSK ČR) is a Czech non-profit organization dedicated to promoting and organizing school sports clubs and competitions across the Czech Republic. The website serves as a central hub for information on sports events, projects, educational seminars, and partnerships with various sports organizations and governmental bodies. The association targets schools, students, and educators, providing resources and support to foster youth sports engagement. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FullCalendar, and other JavaScript libraries to deliver a responsive and interactive user experience. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. However, some security best practices such as HTTP security headers are not evident, and WHOIS data for the domain is unavailable, which may affect trust perceptions. From a security perspective, the site uses HTTPS and implements cookie consent with granular controls, but lacks visible security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data is a notable gap, though the website content and partner affiliations suggest legitimacy. Overall, the website is professionally designed, content-rich, and serves its educational and organizational purpose well. Strategic improvements in security headers, domain registration transparency, and accessibility could enhance trust and compliance.

D

DrWitt

drwitt.cz

47

DrWitt.cz is a Czech website representing a small retail business specializing in functional mineral water beverages enriched with vitamins and minerals. The company appears to be established since 2018 and targets general consumers interested in health and wellness products. The website is professionally designed with consistent branding and clear messaging about their product offerings. Technically, the site uses modern web technologies including Bootstrap, Font Awesome, Google Fonts, and integrates Google Analytics and advertising tools such as Google Ads and Seznam Sklik. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good GDPR compliance. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA, though explicit security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy and professional digital presence for a small Czech beverage company.

C

Centum

centum-rt.com

49

Centum is a Spanish technology company specializing in the design, development, and commercialization of aeronautical mission systems for emergency, security, defense, and aerospace sectors. With over 15 years of experience, Centum offers advanced mobile communications technology that supports critical operations such as search and rescue, maritime surveillance, and emergency communications. The company positions itself as a trusted provider of mission-critical connectivity solutions, serving government and defense markets with a medium-sized, professional team. The website infrastructure is built on WordPress with modern plugins and technologies, including WPBakery Page Builder and WPML for multilingual support. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements could be made by enabling DNSSEC and adding security headers. No security blocking or WAF challenges were detected, allowing full content access and analysis. The site includes clear contact information, privacy and cookie policies, and legal notices, reflecting compliance with GDPR and related regulations. Social media presence on major platforms enhances trust and outreach. Overall, Centum's digital presence reflects a mature, credible business with a strong focus on technology and mission-critical solutions. Security and privacy practices are good but could be enhanced to further strengthen trust and resilience against threats.

H

HAMSIK®

hamsikwinery.com

59

HAMSIK winery operates as a family-owned premium winery business specializing in Prosecco, champagne, and other alcoholic beverages. The website targets adult consumers with a focus on quality and tradition, leveraging e-commerce and retail channels. The brand maintains a professional online presence with a modern WordPress-based infrastructure using WooCommerce and Divi theme. The site includes an age verification gate to comply with legal requirements for alcohol sales. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. The website lacks explicit privacy and security policies, which are important for compliance and trust. Technically, the site is well-structured but could improve security headers and accessibility features. Overall, the business appears credible but would benefit from enhanced transparency and security documentation.

F

FIREMNIWEB.CZ – internetový marketing s okamžitými výsledky

firemniweb.cz

44

The website www.firemniweb.cz presents itself as a provider of internet marketing services targeting businesses seeking immediate marketing results. The site is built on WordPress using the Divi theme and incorporates marketing technologies such as Facebook Pixel for tracking and retargeting. However, the absence of WHOIS data limits the ability to verify domain ownership and legitimacy. The website lacks visible privacy and terms of service policies, and no explicit contact information is provided, which may impact user trust and compliance with data protection regulations. Technically, the site shows moderate performance and basic mobile optimization but lacks advanced security headers and comprehensive privacy compliance indicators. Overall, the security posture is basic with room for improvement in policy transparency and technical safeguards.

J

JPJ Forest, s.r.o.

jpjforest.cz

48

JPJ Forest, s.r.o. is a Czech company specializing in the import, manufacture, and sale of professional forestry, agricultural, and municipal machinery since 2009. The company offers a wide range of high-quality products including forestry trailers, hydraulic cranes, wood splitting machines, and hydraulic components. It serves a diverse clientele including private forest owners, agricultural businesses, and municipal service providers primarily in the Czech Republic and Slovakia. The website reflects a mature digital presence with comprehensive product information, customer references, and support services including financing and subsidies. Technically, the site is built on WordPress with modern web technologies and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Google Tag Manager. Security posture is solid with HTTPS enforced and GDPR-compliant privacy and cookie policies, although some security headers and explicit incident response information are missing. The absence of WHOIS data limits domain trust verification, but the overall business credibility and professional web presence suggest legitimacy. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving accessibility compliance.

L

LaserMaxx74

lasermaxx74.fr

57

LaserMaxx74 is a small local entertainment business based in Annecy, France, specializing in laser game and quiz boxing activities. The company targets a broad audience including families and children aged 8 and above, offering event hosting for birthdays, corporate events, and bachelor/bachelorette parties. The website is professionally designed using modern web technologies and integrates booking services through a partner platform. The digital infrastructure includes analytics and marketing tools with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical and justified for this business type. Overall, the website presents a trustworthy and professional image suitable for its market niche.

R

Ráj veteránů

rajveteranu.cz

55

Ráj veteránů is a specialized online classifieds platform focused on vintage and classic vehicles primarily serving the Czech Republic market. The website offers a comprehensive vehicle listing service with detailed search filters, partner promotions, and community engagement through a Facebook group. The business operates as a niche marketplace catering to classic car enthusiasts and sellers, with a business model centered on advertising and listing fees. Technically, the site employs modern web technologies including Google Fonts, Google Analytics, and Adform for advertising and tracking, with HTTPS and security headers implemented to ensure secure user interactions. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact information is limited to a contact form. The absence of WHOIS data limits domain trust assessment, but the website's professional presentation and active content suggest legitimacy. Overall, the site demonstrates a good balance of content quality, technical implementation, and security posture, making it a reliable resource for its target audience.

S

Sportovní vozy

sportovnivozy.cz

55

Sportovní vozy is a Czech online platform specializing in the listing and sale of sports cars. It offers classified ads, dealer catalogs, automotive news, and advertising opportunities primarily targeting car enthusiasts and buyers in the Czech Republic and Slovakia. The website has been active since at least 2007, indicating a stable presence in its niche market. The business model revolves around providing a marketplace for sports car sales and monetizing through advertising and partnerships. Technically, the website employs common web technologies including Google Analytics, Google Tag Manager, Google Adsense, and Adform for advertising and tracking. The site uses HTTPS and Google Fonts, but lacks advanced security headers and explicit privacy or terms of service pages. Mobile optimization and accessibility are basic, with room for improvement. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, the absence of WHOIS registrant data and missing security headers reduce trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. The site uses extensive user tracking through third-party analytics and advertising services. Overall, the website is functional and professionally designed for its target audience but would benefit from enhanced security practices, clearer privacy disclosures, and improved contact transparency. The domain's WHOIS data is unavailable, which slightly impacts the trust score but does not negate the site's legitimacy based on content and longevity.

P

Platon Technologies, s.r.o.

platon.net

62

Platon Technologies, s.r.o. is a Slovak-based technology company specializing in domain registration, web hosting, server infrastructure, SSL certificates, mass mailing, and CDN services. The company emphasizes fully managed services, owning its own data center and infrastructure, and guarantees high uptime. Their website reflects a professional and customer-focused approach with clear service offerings and contact channels. Technically, the site uses modern web technologies including jQuery, Bootstrap, FontAwesome, and Google reCAPTCHA v3 to secure forms. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and reCAPTCHA integration, but lacks some HTTP security headers and published security policies. WHOIS data for the domain is missing, which raises some concerns about domain registration transparency, though the business information and contact details appear legitimate. Overall, the website is trustworthy and professionally maintained but could improve transparency and security documentation.

A

Autoškolský ombudsman

autoskolsky-ombudsman.cz

50

The website 'Autoškolský ombudsman' serves as an independent advisory and mediation portal focused on driving schools and related stakeholders in the Czech Republic. It is a joint project of two professional associations representing driving schools, providing free expert advice, mediation services, and legislative input collection. The site targets driving school students, instructors, examiners, and operators, positioning itself as a niche expert resource within the transportation and education sectors. The business model is non-profit, funded initially by sponsorships and planned contributions from driving schools. Technically, the site employs a modern but basic technology stack including Bootstrap, jQuery, and Google Analytics. The design is professional and mobile-optimized with clear navigation and consistent branding. However, the site lacks advanced accessibility features and comprehensive SEO optimization. No CMS or hosting provider details were detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies. No incident response or security contact information is provided. The absence of WHOIS data for the domain reduces trustworthiness, although the site content and partner affiliations support legitimacy. Tracking via Google Analytics is present, but privacy compliance is minimal. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and domain registration transparency to improve trust and compliance posture.

G

Gymnázium Dr. Antona Randy

randovka.cz

46

Gymnázium Dr. Antona Randy is a well-established educational institution located in Jablonec nad Nisou, Czech Republic, founded in 2010. The school offers modern gymnasium education with a focus on both general and sports-oriented programs, aiming to support student success and comprehensive development. The website reflects a professional and consistent brand image targeting prospective students, parents, and educational stakeholders. The institution maintains an active presence on major social media platforms such as YouTube, Facebook, and Instagram, enhancing its outreach and engagement. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, incorporating modern web technologies like jQuery and Slider Revolution for dynamic content. The site is mobile-optimized and performs moderately well, with good SEO practices evident. Hosting and domain registration are consistent with the Czech Republic location, and the domain age supports the institution's established presence. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and published security policies. No forms or data collection mechanisms were detected on the main page, reducing immediate data protection concerns. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to align with modern standards and regulatory requirements.

M

Município de Cabeceiras de Basto

cabeceirasdebasto.pt

52

The website cabeceirasdebasto.pt serves as the official online presence of the Município de Cabeceiras de Basto, a local government entity in Portugal. It provides residents, tourists, and local businesses with comprehensive information about municipal services, cultural events, tourism, and administrative contacts. The site features a structured navigation system, regular news updates, and integration with social media platforms to engage its audience effectively. The business model is centered on public service and community engagement, positioning the municipality as a trusted source of local information and services. Technically, the website employs a mix of traditional web technologies including jQuery, LayerSlider for interactive content, Google Fonts for typography, and Piwik/Matomo for analytics. The CMS appears to be a proprietary or specialized platform (Omnisinal) tailored for municipal websites. The site is moderately optimized for performance and mobile responsiveness, with basic accessibility features implemented. SEO practices are present but could be enhanced with richer metadata and structured data. From a security perspective, the site uses HTTPS and includes a cookie consent banner, indicating awareness of privacy regulations. However, there is no visible security policy or incident response contact information, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data aligns well with the municipal identity, reinforcing legitimacy and trustworthiness. Overall, the website is a well-maintained government portal with good content quality and user experience. Security posture is adequate but could benefit from additional policies and technical hardening. Privacy compliance is basic but present. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing security policies, improving accessibility, and enriching SEO metadata to further strengthen the site’s digital maturity and trust.

A

Associação Empresarial de Fafe, Cabeceiras de Basto e Celorico de Basto

aefafe.pt

48

Associação Empresarial de Fafe, Cabeceiras de Basto e Celorico de Basto is a regional non-profit business association in Portugal focused on supporting local businesses through professional education, training, and internationalization services. The website serves as an informative and promotional platform for the association's activities, projects, and events, targeting local entrepreneurs and companies in the Fafe, Cabeceiras de Basto, and Celorico de Basto regions. The association operates professional schools and offers various business support programs, positioning itself as a key regional player in business development and education. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Revolution Slider, ensuring good SEO and user experience. The site is mobile-optimized and uses HTTPS with reCAPTCHA v3 for form protection, reflecting a moderate to good digital maturity. However, some accessibility and security headers could be improved. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks explicit security policies and some recommended HTTP security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy, which is a compliance gap. Overall, the website is professional, trustworthy, and serves its business purpose well, but it would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

A

Associação Empresarial de Felgueiras

aef.pt

44

Associação Empresarial de Felgueiras (AEF) is a regional non-profit business association based in Portugal, focused on supporting local businesses through a variety of services including administrative, fiscal, legal, training, and internationalization support. The organization actively manages multiple projects and provides a platform for business networking and development. The website reflects a mature digital presence built on WordPress with modern plugins and design elements, targeting local entrepreneurs and companies. The site is well-structured, mobile-optimized, and provides clear contact information and policy disclosures, although some compliance mechanisms like cookie consent are not fully implemented. Security posture is adequate with HTTPS and modern libraries, but lacks explicit security headers and incident response policies. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate and established business association.

E

eMarket Design

emarketdesign.com

69

eMarket Design is a small technology company specializing in enterprise software solutions for WordPress. Established in 2006, it offers scalable, secure, and customizable WordPress plugins and software tailored to business needs. The company positions itself as a provider of high-quality, user-friendly enterprise WordPress solutions with a growing customer base. Technically, the website is built using the Hugo static site generator, leveraging modern web technologies such as FontAwesome and Google Fonts, and is hosted with domain registration via Amazon Registrar and DNS through Cloudflare. The site is fast, mobile-optimized, and well-structured with good SEO practices. Security posture is solid with HTTPS enforced and domain status locks, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is basic, with a privacy policy and terms hosted on a related domain but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and safe for general audiences.

N

Noor Jobs AB

ledigajobb.se

64

Ledigajobb.se is a Swedish job search platform operated by Noor Jobs AB, founded in 2018. The website offers a large inventory of job listings across Sweden and some international locations, targeting job seekers and employers. The platform provides career advice, guides, and recruitment advertising services, positioning itself as a significant player in the Swedish employment market. Technically, the site uses modern web technologies including Bootstrap, Google Fonts, and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight. It is hosted behind Cloudflare DNS and likely uses CDN services for performance. The site is mobile-optimized and implements a Progressive Web App (PWA) approach for enhanced user experience. Security-wise, the site enforces HTTPS and uses modern JavaScript libraries without visible vulnerabilities. However, it lacks DNSSEC and explicit security headers, and does not publicly disclose security or incident response policies. Privacy compliance is basic, with no visible privacy or cookie policies or consent mechanisms on the homepage. The domain registration is transparent, consistent with the business location and history, and shows no suspicious patterns. Overall, the website is professional and functional but could improve in privacy and security transparency.

P

Pinterest

pinterest.pt

72

Pinterest is a globally recognized visual discovery and social media platform that enables users to find and share ideas such as recipes, home decor, and style inspiration. The pt.pinterest.com site is a localized Portuguese version of the platform, maintaining the brand's global presence and user engagement. The business operates primarily through advertising and e-commerce integrations, positioning itself as a leader in the technology and social media sectors. The website demonstrates a mature digital infrastructure with modern technologies such as React, AWS hosting, and comprehensive security measures including HTTPS and Content Security Policy enforcement. Security posture is strong with no evident vulnerabilities or exposed sensitive data, and privacy compliance is well addressed through detailed policies and consent mechanisms. Overall, the site reflects a professional, trustworthy, and enterprise-grade online presence.

T

The Brussels Times

brusselstimes.com

63

The Brussels Times is a media organization providing news and analysis focused on politics, Brussels, EU affairs, business, and national and world news. It serves a general audience interested in regional and European Union topics, positioning itself as a niche news provider with a professional online presence. The website employs modern web technologies including Angular framework, Google Fonts, and integrates multiple analytics and advertising services such as Google Analytics, Chartbeat, and OneSignal for push notifications. The technical infrastructure supports mobile optimization and good SEO practices, although some accessibility features appear basic. Security posture is moderate with HTTPS enabled and use of reputable third-party services, but lacks visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no GDPR compliance indicators are found. The domain WHOIS data is missing, which raises concerns about registration transparency and reduces trustworthiness despite the professional content and design. Overall, the website is functional and credible as a news source but would benefit from improved privacy disclosures and security practices.

C

CIRCUIT project

circuitproject.eu

53

The CIRCUIT project website represents an EU-funded initiative focused on fostering circular, smart, resilient, and sustainable transport infrastructures across Europe. The project supports the deployment of Green and Innovation Public Procurement and innovative engineering practices, with pilot projects located in multiple EU countries. The website positions itself as a niche player in the transportation and energy sectors, targeting stakeholders involved in transport infrastructure and public procurement. Technically, the site is built on WordPress with Elementor and uses modern web technologies including Google Maps API for geographic visualization of pilots. The site is well-structured, mobile-optimized, and employs SEO best practices via Yoast SEO. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. WHOIS data is privacy protected, typical for EU domains, and no suspicious patterns were detected. Overall, the site is professional and trustworthy but could enhance privacy compliance and security posture.

C

Chatwee

chatwee.com

59

Chatwee is a well-established technology company founded in 2012, specializing in live chat and instant messaging applications tailored for online communities, virtual events, and team collaboration. The company offers a SaaS model with flexible subscription and pay-per-use plans, serving a broad target audience including mental health support providers, educational webinars, and online gaming communities. Their market position is strong with over 80,000 registered websites and 50 million chat users, supported by multi-language offerings and extensive customization options. Technically, Chatwee employs a modern web technology stack including JavaScript, PHP SDK, and integrates with popular CMS platforms. Hosting is provided via Amazon AWS infrastructure, ensuring reliable performance and scalability. The website is well-optimized for mobile devices, SEO, and accessibility, with fast loading times and a professional design. From a security perspective, the site uses HTTPS and displays a SecurityMetrics certification badge, indicating a commitment to secure operations. However, there is room for improvement by enabling DNSSEC, adding security headers, publishing a security policy, and implementing a cookie consent mechanism to enhance GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, Chatwee presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic enhancements in security transparency and privacy compliance would further strengthen their risk posture and customer trust.

M

Memento Historia - Magazín o dávné a ještě dávnější historii

memento-historia.cz

41

Memento Historia is a Czech-language online magazine dedicated to ancient and medieval history, providing educational articles and multimedia content such as podcasts on YouTube. The website targets history enthusiasts and the general public interested in historical topics, operating primarily as a content publisher monetized through advertising networks like Seznam SSP and Google Ads. The site demonstrates a consistent and professional brand presentation with a good quality of content and user experience. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, Google Fonts, and integrates analytics and advertising scripts from Google and Seznam. The site is mobile optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks important security headers, and no explicit privacy or cookie policies are found, though a cookie consent mechanism is present. The WHOIS data for the domain is unavailable, which limits the ability to verify domain registration legitimacy and age. Despite this, the website appears professionally maintained with active content updates and social media presence. No critical security vulnerabilities or adult content were detected, and the site is safe for general audiences. Overall, Memento Historia is a niche media site with solid content and technical foundation but would benefit from improved transparency in privacy policies, enhanced security headers, and WHOIS data availability to strengthen trust and compliance.

C

Conselho Empresarial Para O Desenvolvimento Sustentavel

bcsdportugal.org

57

BCSD Portugal is a well-established business council focused on sustainability, representing over 190 Portuguese companies committed to sustainable transition. The organization operates as a non-profit entity, providing advocacy, networking, and support services to its members. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders interested in sustainability. Technically, the site is built on WordPress using the Divi theme, with integrations such as Google Analytics and Tag Manager for tracking. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring a secure connection. Security posture is generally good, though improvements can be made by enabling DNSSEC and implementing comprehensive security headers. Privacy compliance is lacking, with no visible privacy or cookie policies, which is a notable gap given the GDPR context. Overall, the domain registration data aligns well with the website's business claims, supporting its legitimacy.

Á

Área Metropolitana de Lisboa

aml.pt

47

Área Metropolitana de Lisboa (AML) is a regional government organization coordinating development policies across 18 municipalities in the Lisbon metropolitan area. The website serves as an official portal providing information on regional initiatives, cultural events, social development, and transport authority functions. AML holds a key position as a metropolitan authority facilitating economic, social, and environmental strategies in coordination with local governments. The site targets residents, local authorities, and stakeholders interested in regional development and public services. Technically, the website is built on WordPress with Bootstrap and jQuery, optimized for performance using WP Rocket, and supports multilingual content via Weglot. It employs modern web standards, including HTTPS, CSP, and cookie consent mechanisms, ensuring a secure and privacy-compliant user experience. Security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence for a government entity.

I

International Motorcycling Federation (FIM)

fim-heritage.com

61

The FIM Heritage Programme website serves as a digital platform for the International Motorcycling Federation's initiative to conserve and promote motorcycle competition heritage worldwide. It offers certification services for historic competition motorcycles and organizes historic events to engage enthusiasts and collectors. The site is professionally designed with clear navigation and rich content targeted at motorcycle fans and stakeholders in the heritage community. Technically, the website employs modern frameworks such as Bootstrap and jQuery, with responsive design and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks explicit security headers and incident response information. The absence of WHOIS registration data raises some legitimacy concerns, but the strong branding and external links to official FIM domains support authenticity. Overall, the site is a credible resource for motorcycle heritage with room for security and transparency improvements.

F

FIM (Fédération Internationale de Motocyclisme)

fim-moto.tv

66

FIM-MOTO.TV is the official video streaming platform of the Fédération Internationale de Motocyclisme (FIM), providing live broadcasts, race highlights, and exclusive motorcycle sport content globally. The platform targets motorcycle sport enthusiasts and serves as a central hub for FIM's world and national championships. Technically, the website leverages modern web technologies including Next.js, React, and integrates analytics tools such as Matomo and Facebook Pixel, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to the absence of explicit privacy and cookie policies in the analyzed content. Overall, the platform presents a professional and trustworthy front with room for enhanced transparency and security practices.

REGBU.COM is a Czech-based online media website launched in 2021, offering articles across various lifestyle and technology categories. The site uses WordPress CMS with multilingual support via TranslatePress and monetizes through Google AdSense advertising. The technical infrastructure includes Cloudflare DNS and standard web technologies such as jQuery and Google Fonts. While the site is accessible and uses HTTPS, it lacks critical compliance documents such as privacy policy and terms of service, and does not provide explicit contact information. Security posture is moderate with no advanced security headers or DNSSEC enabled. Overall, the site appears to be a small-scale media outlet with basic digital maturity and moderate security controls.

K

Kárpátok Alapítvány - Magyarország

karpatokalapitvany.hu

53

Kárpátok Alapítvány - Magyarország is a small-sized non-profit foundation focused on community development, social inclusion, and education in the Carpathian region spanning five countries. The organization operates primarily through donations, grants, and partnerships, targeting disadvantaged communities and civil organizations. The website is professionally designed using Drupal 8 CMS, with good mobile optimization and clear navigation. It provides comprehensive information about its programs, strategic goals, and partners, enhancing its credibility and trustworthiness. However, the site lacks published privacy and cookie policies, which impacts GDPR compliance and privacy posture. Security-wise, HTTPS is enabled, but no explicit security headers were detected, and no incident response or vulnerability disclosure information is available. The domain registration data aligns well with the organization's claims, indicating legitimacy. Overall, the website is a reliable and professional platform for the foundation's mission but should improve privacy and security disclosures to enhance compliance and user trust.

C

Centrum dopravního výzkumu, v. v. i.

cdvgis.cz

58

Centrum dopravního výzkumu, v. v. i. is a Czech public research institution specializing in transport research and infrastructure diagnostics under the Ministry of Transport. The organization offers a broad range of services including laboratory testing, transport safety analysis, smart city solutions, and professional training. The website reflects a well-structured and professional digital presence with clear navigation, comprehensive content, and active social media engagement. Technically, the site uses modern frameworks such as Bootstrap and jQuery, integrates Google Analytics and Facebook Pixel for tracking, and is hosted with CDN support for performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response disclosures are absent. The WHOIS data is unavailable, which slightly impacts domain trustworthiness, but the official nature of the institution and consistent branding mitigate concerns. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.