Security Directory

Bovys s.r.o is a Czech Republic based medium-sized wholesale distributor specializing in fresh fruit and vegetables. Established in 1994, the company supplies a wide range of clients including retail stores, restaurants, hotels, school canteens, and other gastronomy operations. It holds a leading position as a supplier for school projects such as 'Ovoce a zelenina do škol' and 'Mléko do škol'. The company emphasizes quality control through HACCP systems and sustainability initiatives including a photovoltaic power installation co-financed by the EU. Technically, the website is built on WordPress with modern plugins and includes security features like HTTPS and Google reCAPTCHA. However, the absence of WHOIS registration data raises some concerns about domain legitimacy. Overall, the website is professional, well-structured, and compliant with privacy regulations, but could improve security headers and domain transparency.

B

BOMA Milevsko

bomamilevsko.cz

55

BOMA Milevsko is a well-established Czech company specializing in heating and plumbing services, including installation of boilers, heat pumps, solar systems, and ventilation with heat recovery. Founded in 1993, the company has a strong regional presence with over 30 years of experience and a customer base exceeding 1000 clients, particularly known for assisting with Kotlíkové dotace subsidies. Their business model combines service provision with retail and wholesale sales, supported by an e-shop and a bathroom studio for customer consultations. Technically, the website is built on WordPress using the Mioweb theme, hosted by websupport.cz. It employs modern web technologies such as jQuery and Google Fonts, and is mobile-optimized with good SEO practices. The site includes a cookie consent mechanism compliant with GDPR, but lacks some advanced security headers and explicit privacy/security policy pages. From a security perspective, the site uses HTTPS and has no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and incident response contact information, which are recommended for improved security posture. No WAF or blocking mechanisms were detected, and the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could benefit from enhanced security practices and more transparent contact information to further strengthen user trust and security readiness.

Transoft Solutions is a well-established company specializing in innovative software and services for transportation professionals, including aviation, civil infrastructure, and safety operations. With over 30 years of experience and a global user base spanning 150 countries, the company targets government agencies and engineering firms. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern SEO and accessibility features, though some security headers are missing. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data and explicit security policies suggests areas for improvement. Overall, the site is trustworthy and professional but would benefit from enhanced transparency and security documentation.

B

Bentley Systems

bentley.com

71

Bentley Systems is a leading global provider of infrastructure engineering software, serving architects, engineers, constructors, and owner-operators. The company offers comprehensive solutions to advance infrastructure projects across multiple sectors including transportation, energy, and urban development. Their website reflects a mature enterprise with a strong global presence, supported by multiple localized domains and professional branding. The digital infrastructure leverages modern web technologies such as WordPress, Elementor, and advanced marketing and analytics tools like Marketo and Visual Website Optimizer, indicating a sophisticated digital marketing and customer engagement strategy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly detailed. The absence of WHOIS data suggests privacy protection or proxy registration, which is common for enterprises but should be monitored for consistency. Overall, the website is professional, secure, and compliant with privacy regulations, targeting a broad professional audience in the infrastructure engineering domain.

S

STS Education

sts-education.be

64

STS Education is an established education service provider based in Belgium, specializing in facilitating secondary education programs for international students seeking study opportunities in countries such as the United States, United Kingdom, and Ireland. The company positions itself as a trusted facilitator for students aiming to experience international schooling adventures. The website reflects a professional and consistent brand image, targeting international secondary students with clear program offerings and support services. Technically, the website is built on WordPress with modern frameworks like Bootstrap and employs SEO best practices through Yoast SEO. It integrates multiple analytics and advertising pixels, indicating a mature digital marketing approach. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms compliant with GDPR, and includes standard security headers, though it lacks a publicly visible security policy or incident response contact. The WHOIS data is restricted due to registry policy, but no suspicious indicators were found. Overall, the site demonstrates a good security posture and digital maturity appropriate for its business domain.

B

Budapesti Zsidó és Izraeli Filmfesztivál

zsifi.org

53

The Budapest Jewish and Israeli Film Festival website serves as the official digital presence for an established cultural event celebrating Jewish and Israeli cinema. The festival, with over a decade of history, targets community members and film enthusiasts, emphasizing cultural storytelling and community togetherness. The website is professionally designed using WordPress and common plugins, providing a good user experience with clear navigation and mobile optimization. Privacy and cookie consent mechanisms are implemented, reflecting compliance with GDPR standards. Security posture is adequate with HTTPS enabled, though improvements such as enabling DNSSEC and adding security headers are recommended. The domain registration data aligns well with the festival's history, supporting legitimacy and trustworthiness.

N

Net Magnet s.r.o.

netmagnet.cz

44

Net Magnet s.r.o. is a Czech digital agency specializing in custom web development, web applications, e-shops, and online marketing services such as PPC, SEO, and CRO. With over 15 years of experience and more than 150 satisfied clients, the company positions itself as a trusted partner for businesses seeking to enhance their online presence and customer acquisition. Their service offerings include website audits and free consultations, emphasizing strategic and tailored solutions. The website is professionally designed, mobile-optimized, and rich in client testimonials and certifications, reflecting a mature digital presence. Technically, the website is built on WordPress and leverages modern JavaScript libraries and tracking tools including jQuery, Modernizr, ScrollMagic, Google Tag Manager, Facebook SDK, and Leady tracking. The site employs HTTPS with a Content Security Policy header, though additional security headers could improve its security posture. Performance is moderate with good mobile optimization and SEO practices. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Security-wise, the site demonstrates good practices such as secure form handling and HTTPS enforcement but could benefit from enhanced security headers and explicit incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trust slightly, but the overall business credibility and transparency mitigate this concern. Overall, Net Magnet presents a professional, trustworthy, and technically competent digital agency website with minor areas for security and privacy improvement. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and regular third-party script audits to maintain compliance and trust.

R

RRAS o.p.s.

bilastopa.cz

32

Bílá stopa is a Czech regional website dedicated to providing comprehensive information about cross-country skiing trails in the Šumava region. It offers current trail conditions, maps, webcams, and financing details, targeting skiing enthusiasts and tourists interested in outdoor winter activities. The website is supported by regional partners including local government and tourism organizations, enhancing its credibility and community focus. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and several plugins for content management and GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and implements a cookie consent mechanism, but lacks visible HTTP security headers and formal security policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable security posture. Overall, the site is trustworthy and serves its niche audience effectively, though improvements in privacy policy transparency and security headers are recommended.

E

Eventgroove

eventgroove.com

62

Eventgroove operates an all-in-one platform specializing in event ticketing, fundraising, and ecommerce solutions tailored for nonprofits, event organizers, and distributed organizations. The website presents a professional and modern interface, leveraging WordPress with Divi theme and NitroPack for performance optimization. The platform integrates various marketing and analytics tools such as Google Tag Manager and HubSpot, indicating a mature digital marketing strategy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are lacking. The absence of WHOIS data for the domain raises concerns about registration transparency, which slightly diminishes overall trust. Strategic recommendations include publishing comprehensive privacy and cookie policies, enhancing security headers, and providing clear contact and incident response information.

L

Lesy České republiky

kladska.com

64

Lovecký zámeček Kladská is a small hospitality business operating a hotel and offering recreational services such as hunting and fishing in Mariánské Lázně, Czech Republic. The website is professionally designed with clear navigation and multilingual support, targeting tourists and nature enthusiasts. The business is owned by Lesy České republiky, a reputable organization, which adds credibility and trust. The website uses WordPress CMS with SEO and multilingual plugins, hosted on Azure DNS infrastructure. Cookie consent is implemented with detailed user controls, and privacy policies are linked to the parent company site, indicating good GDPR compliance. Security posture is generally good with HTTPS and no exposed sensitive data, but could be improved by enabling DNSSEC and adding security headers. No incident response or vulnerability disclosure information is published, which is a gap. Overall, the site is trustworthy, compliant, and professionally maintained, suitable for its business purpose.

L

Lesy České republiky, s.p. Semenářský závod

semenarskyzavod.cz

65

Semenářský závod Lesů České republiky is a medium-sized, state-owned enterprise specializing in forestry seed production and related laboratory services. Established in 1971, it serves forest owners and nurseries with a range of products including forestry and ornamental seeds, wood products, and accredited laboratory testing. The website reflects a professional and consistent brand presence, targeting primarily forestry professionals and registered customers. The business holds ISO/IEC 17025:2018 accreditation, underscoring its commitment to quality and standards. Technically, the website is built on WordPress with modern SEO and multilingual support via WPML. It uses Google Analytics and Facebook Pixel for analytics and marketing, integrated with a GDPR-compliant cookie consent mechanism. Hosting is supported by Microsoft Azure DNS infrastructure. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and incident response transparency could be made. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or vulnerability disclosure mechanism is noted. Privacy compliance is strong, with clear privacy and cookie policies and user consent management. Business credibility is high, supported by clear contact details, certifications, and professional content. Overall, the website is trustworthy, well-maintained, and compliant with relevant regulations, making it a reliable digital presence for the organization.

S

Sejkora a přátelé s.r.o.

sejkorarestaurant.cz

60

Sejkora a přátelé s.r.o. operates a modern Krkonošská restaurant located in Janské Lázně, Czech Republic, focusing on traditional regional cuisine with a modern gastronomic approach. The business targets tourists and locals seeking authentic culinary experiences rooted in local ingredients and culture. The website is professionally designed, featuring clear navigation, reservation capabilities via a third-party widget, and active social media presence. Technically, the site runs on WordPress with common web technologies and integrates external services for reservations. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. The absence of WHOIS data limits domain trust assessment, but the business information and website content appear legitimate and consistent with a small hospitality enterprise.

M

Mekr´s

mekrs.cz

46

Mekr´s is a Czech-based wholesale supplier specializing in fastening and anchoring materials, offering over 60,000 items and serving more than 20 countries. Established in 1994, the company targets B2B customers in engineering, electronics, metallurgy, and automotive sectors. Their business model focuses on providing a comprehensive product range with custom solutions and a regional dealer network, supported by an e-commerce platform. Technically, the website is built on WordPress with Elementor, integrating modern SEO and analytics tools such as Yoast SEO, Google Tag Manager, and Microsoft Clarity. The site is well-structured, mobile-optimized, and includes multi-language support. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected and no formal security policy or incident response contacts are published. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business presence appear professional and legitimate. Overall, the site demonstrates a mature digital presence with room for improvement in security transparency and domain registration clarity.

A

Association 42

42lehavre.fr

55

42 Le Havre is a tuition-free computer programming school located in Normandy, France, operating as part of the global 42 network. The institution offers an innovative, project-based pedagogy emphasizing peer-to-peer learning and gamification, targeting a broad audience without requiring prior diplomas or coding experience. The website reflects a medium-sized educational entity founded in 2021, with a consistent brand and clear communication of its values and offerings. Technically, the site is built on WordPress with Elementor and uses modern web technologies, hosted likely behind Cloudflare DNS. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security headers and incident response information. The domain registration is consistent and legitimate, supporting the trustworthiness of the entity. Overall, the website is professional, secure, and compliant with GDPR, serving its educational mission effectively.

4

42 Perpignan

42perpignan.fr

55

42 Perpignan is an educational institution offering free, project-based computer science training as part of the global 42 network. The website positions itself as an innovative and accessible coding school targeting young adults and prospective students. It emphasizes peer-to-peer learning and a unique pedagogical approach without traditional classes or professors. The institution is well integrated into a global network with multiple campuses worldwide, enhancing its market position and credibility. Technically, the website is built on WordPress with modern web technologies, including jQuery, Contact Form 7, and Cloudflare DNS services. The site is mobile-optimized and includes SEO best practices, although accessibility features are basic. Security posture is good with HTTPS and domain protection, but lacks explicit security headers and formal security policies. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and safe for general audiences.

4

42 Berlin

42berlin.de

62

42 Berlin is a tuition-free, non-profit software engineering school located in Berlin, Germany. It offers an innovative peer-to-peer learning environment focused on hands-on projects and real-world challenges, targeting aspiring software developers and students interested in coding education. The website is built on WordPress using Elementor, with modern SEO and structured data implementations, and is hosted behind Cloudflare. The site integrates multiple third-party analytics and tracking pixels including Google Analytics, TikTok, Facebook, and Reddit, with GDPR consent mechanisms in place via the Complianz plugin. Security posture is generally good with HTTPS enforced and Cloudflare protection, but lacks explicit security headers and published security policies. Contact information and privacy policies are not explicitly found in the analyzed content, which represents an area for improvement. Overall, the website is professional, trustworthy, and well-positioned in the education sector, but could enhance privacy compliance and security transparency.

4

42 Mulhouse Grand Est

42mulhouse.fr

56

42 Mulhouse Grand Est is a non-profit educational institution specializing in innovative IT training through a project-based, peer-to-peer learning model. It is part of the global 42 network with 52 campuses worldwide, offering free education without diploma prerequisites. The school is housed in KMØ, a digital innovation hub in Mulhouse, France, and targets individuals over 18 seeking to enter the IT field. The website reflects a professional and modern digital presence with clear navigation and strong branding. Technically, the website is built on WordPress with modern web technologies including jQuery and Bootstrap. It employs SEO best practices with structured data and meta tags, and includes a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible, providing a good user experience. However, no direct company contact emails or phone numbers are visible on the homepage, and WHOIS data is unavailable, which slightly impacts trust. Security-wise, the site uses HTTPS with good SSL configuration and cookie consent but lacks explicit security headers and published security policies or incident response information. There are no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data and registrant information is a minor concern but is mitigated by the site's professional content and certifications. Overall, the website is trustworthy, well-designed, and compliant with privacy regulations, suitable for its educational mission. Strategic improvements include publishing security policies, incident response contacts, and enhancing security headers to strengthen security posture and trust.

4

42 Lausanne

42lausanne.ch

54

42 Lausanne is a free computer science school based in Lausanne, Switzerland, offering tuition-free education open to all without diploma requirements. The website serves as an informational platform for prospective students and the community, highlighting its innovative educational approach. The technical infrastructure is built on WordPress, leveraging popular plugins such as Yoast SEO for search optimization and CookieYes for cookie consent management. The site uses modern web technologies including jQuery and Font Awesome for enhanced user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, there is room for improvement by adding security headers and formal security policies. No privacy policy or terms of service were detected, which could be a compliance gap. Overall, the website is professional, well-branded, and trustworthy, with a moderate AI score reflecting good content quality and business credibility but some privacy compliance shortcomings.

4

42 Wolfsburg

42wolfsburg.de

45

42 Wolfsburg is a specialized software development school that is part of the global 42 network, offering bachelor and master level education in software development. The website presents a professional and modern digital presence built on WordPress with Elementor, targeting prospective students and the tech education market. The technical infrastructure is solid, leveraging modern web technologies and performance optimizations, with good mobile responsiveness and SEO practices. Security posture is generally good with HTTPS enforced and privacy consent mechanisms implemented, though explicit privacy and security policies are not published. No critical vulnerabilities or suspicious content were detected, indicating a trustworthy and safe platform. Overall, the site reflects a credible educational institution with room for improvement in transparency and security documentation.

4

42 Nice

42nice.fr

69

42 Nice is a tuition-free IT education institution based in France, offering innovative and inclusive training programs from bac +3 to bac +5 levels. The school emphasizes potential and merit over formal diplomas, using a project-based and peer-to-peer learning methodology. Supported by local government and business entities, 42 Nice positions itself as a modern academy addressing digital talent needs with accessible facilities and free IT equipment. Technically, the website is built on WordPress, integrates Google Analytics and CookieYes for privacy compliance, and is hosted behind Cloudflare DNS. The site is well-structured, mobile-optimized, and provides clear navigation and legal documentation. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the website reflects a professional, trustworthy, and privacy-conscious organization.

4

42 | Lisboa

42lisboa.com

65

42 | Lisboa is an educational website offering free coding education based on a peer-to-peer learning methodology. It is part of the global 42 network, targeting individuals seeking to develop coding skills for modern job markets. The website is built on WordPress using Astra theme and Elementor, with integrations for donations and email marketing. The technical infrastructure is modern and supports mobile optimization and SEO best practices. Security posture is good with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent banner, but no clear privacy policy or terms of service pages are found. WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite professional website content.

4

42 Roma Luiss

42roma.it

64

42 Roma Luiss is an innovative, free programming school based in Rome, Italy, focused on peer-to-peer learning and gamified education. The institution targets individuals aged 18 and above, including those without prior technical background, offering a project-based curriculum that leads to high employment rates. The website reflects a medium-sized educational entity with consistent branding and clear calls to action for enrollment. Technically, the site is built on WordPress with modern analytics and marketing integrations, including Google Tag Manager, Facebook Pixel, TikTok Pixel, and Matomo Analytics. The cookie consent mechanism is robust and GDPR compliant, implemented via Iubenda. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. No incident response or vulnerability disclosure policies are published, representing an area for enhancement. Overall, the website is professional, trustworthy, and well-optimized for mobile users, with extensive tracking and marketing tools in use.

4

42 Bangkok

42bangkok.com

61

42 Bangkok is a tuition-free, innovative coding school located in Thailand, offering a peer-learning and project-based curriculum designed to develop the next generation of software engineers. The school operates without traditional teachers or classes, emphasizing autonomy and gamified learning. The website is professionally designed, well-structured, and optimized for SEO, targeting aspiring programmers aged 18 and above. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics with user opt-out capabilities. Security posture is good with HTTPS enforced, but lacks some security headers and explicit privacy policies. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and serves an educational mission with a strong social media presence and clear contact information.

4

42 Angoulême

42angouleme.fr

64

42 Angoulême is a free IT training school based in Charente, France, offering coding education accessible to all without diploma requirements. The website positions itself as a local educational institution with a clear mission to democratize coding skills. The business model is non-commercial, focusing on free education, targeting a broad audience interested in learning programming. The site is professionally designed with consistent branding and good content quality, reflecting the institution's educational purpose. Technically, the website is built on WordPress, leveraging common web technologies such as jQuery, Google Analytics, and Cookiebot for privacy compliance. Hosting and domain registration are managed by reputable providers (GANDI and Cloudflare DNS). The site demonstrates moderate performance and good mobile optimization, with SEO and accessibility features at a basic to good level. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no security policy or incident response contacts are published. No vulnerabilities or suspicious content were detected, indicating a generally secure posture suitable for its educational purpose. Overall, 42 Angoulême presents a trustworthy and professional online presence for a small educational institution. Strategic improvements in security headers, publishing security policies, and providing clear contact information would enhance trust and compliance further.

4

42 The Network

42quebec.com

51

42 The Network operates a global, free IT education network with campuses including 42 Québec, the first Canadian campus located in Québec City. The organization focuses on addressing IT labor shortages by providing accessible, high-level training connecting students directly with industry needs. The website reflects a professional and well-established educational entity with clear contact information, social media presence, and comprehensive privacy and cookie policies. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and Google Maps integration for location services. Security posture is solid with HTTPS and privacy mechanisms, though some security headers could be improved. WHOIS data is unavailable due to privacy protection, which is justified for this non-profit educational network. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

C

Codam

codam.nl

56

Codam is a tuition-free coding college based in the Netherlands, offering peer-to-peer programming education accessible to anyone aged 18 and above without requiring prior diplomas or math skills. The institution positions itself as an innovative and inclusive educational platform, supported by a strong network of partners ranging from startups to Fortune 500 companies. The website demonstrates a mature technical infrastructure built on WordPress with modern plugins and integrations such as Elementor, Slider Revolution, and MailerLite, ensuring a good user experience and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy and cookie policies are present and indicate GDPR compliance. Overall, Codam presents a trustworthy and professional online presence aligned with its educational mission.

4

42 Lyon Auvergne-Rhône-Alpes

42lyon.fr

50

42 Lyon Auvergne-Rhône-Alpes is a non-profit educational institution specializing in free, project-based programming training. It is part of the global 42 network, known for its innovative peer-to-peer learning model without traditional classes or professors. The website reflects a strong market position in the education sector, targeting individuals seeking accessible coding education without prerequisites. Technically, the site is built on WordPress with modern frameworks like Bootstrap and jQuery, hosted with reputable providers and secured with HTTPS. The security posture is solid with cookie consent mechanisms and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for prospective students and partners.

4

42

42.fr

65

42 is a well-established, tuition-free computer science educational institution founded in 2004 in France. It offers a unique project-based, peer-to-peer learning model aimed at training the next generation of software engineers. The institution has a strong international presence with over 50 campuses worldwide and emphasizes inclusivity and accessibility, requiring no prior coding experience or diplomas. The website reflects a professional and consistent brand image with comprehensive program information and active social media engagement. Technically, the site is built on WordPress, uses modern JavaScript libraries, and is hosted behind Cloudflare DNS, ensuring good performance and security. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though dedicated security and incident response policies are not published. Overall, the site is trustworthy, user-friendly, and well-optimized for SEO and accessibility.

4

42 The Network

42network.org

51

42 The Network operates as the largest global tuition-free IT school network, founded in 2013 in Paris, France. It offers innovative, peer-to-peer, project-based learning across 50+ campuses in over 30 countries, targeting students and educational partners worldwide. The business model is non-profit, focusing on accessible education without traditional classes or teachers. The website reflects a strong market position with consistent branding and a professional digital presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern web technologies and Google Analytics for performance and user insights. The site is mobile-optimized and accessible, with good SEO practices. However, some security headers are missing, and explicit privacy and cookie policies are not detected, indicating room for compliance improvement. Security posture is solid with HTTPS enabled and no exposed sensitive data, but the absence of security headers and vulnerability disclosure mechanisms suggests moderate maturity. WHOIS data is unavailable, likely due to privacy protection, which is justified for a non-profit educational entity but limits domain trust verification. Overall, the website is professional, trustworthy, and content-rich, serving its educational mission effectively. Strategic improvements in privacy compliance, security headers, and transparency would enhance trust and regulatory adherence.

B

Bábolna város hivatalos honlapja

babolna.hu

31

Bábolna.hu is the official municipal website of Bábolna city in Hungary, providing comprehensive information about the city's history, government, tourism, cultural life, and current events. The site targets residents, visitors, and stakeholders interested in local governance and community activities. It serves as a digital portal for municipal announcements, event information, and public resources, positioning itself as a trusted source of official city information. Technically, the website is built on the WordPress CMS platform, utilizing the Yoast SEO plugin for search engine optimization and Google Fonts for typography. The site demonstrates moderate performance with good mobile optimization and basic accessibility features. The use of HTTPS ensures secure communication, and structured data via JSON-LD enhances search engine understanding. However, no advanced frameworks or hosting details are evident from the HTML content. From a security perspective, the site benefits from HTTPS encryption and lacks visible vulnerabilities or exposed sensitive data. However, it lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present, and contact details for security matters are absent. These gaps represent areas for improvement to enhance trust and compliance. Overall, the website is professional, trustworthy, and well-branded, but it would benefit from improved privacy compliance, explicit security policies, and enhanced transparency regarding data protection and incident handling to strengthen its security posture and regulatory adherence.

A

Association of Commercial Television and Video on Demand Services in Europe

acte.be

55

The Association of Commercial Television and Video on Demand Services in Europe (ACT) is a professional industry association representing leading commercial broadcasters across Europe. The organization advocates for the interests of its members, emphasizing the importance of a diverse and creative media ecosystem that supports cultural diversity, media pluralism, and economic growth in the audiovisual sector. ACT members finance, produce, and distribute content across multiple platforms, serving millions of Europeans daily. The website reflects a mature digital presence built on WordPress, leveraging modern web technologies and analytics tools to engage its audience and disseminate industry news, policy positions, and event information. Technically, the website employs a solid technology stack including WordPress CMS, jQuery, FontAwesome, and analytics platforms such as Matomo and Google Analytics. The site is mobile-optimized with good navigation and content structure, though some accessibility features could be enhanced. Security posture is adequate with HTTPS enforced and some security scripts in place, but lacks explicit security headers and formal privacy or cookie policies, which are important for compliance and trust. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS transparency due to DNS Belgium's privacy restrictions limits the ability to fully verify domain legitimacy. The site does not display contact emails or phone numbers explicitly, which may impact user trust and compliance with transparency requirements. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices. Strategically, ACT should focus on enhancing its privacy and cookie policies, publishing security incident response and vulnerability disclosure information, and implementing comprehensive security headers. These improvements will strengthen compliance with GDPR and other regulations, improve user trust, and reduce potential security risks.

egta is an international trade association representing over 180 multiplatform TV and audio businesses across more than 40 markets. The organization focuses on fostering commercial sustainability in the media industry by connecting brands with audiences, facilitating collaboration among members, and engaging with policymakers. Their services include hosting industry events, providing benchmarking and research, and offering a knowledge hub and tech hub for ad tech solutions. The website is professionally designed using WordPress with the Divi theme and integrates modern plugins for SEO and membership management. The content is rich, relevant, and well-structured, targeting media and advertising professionals. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies are lacking. WHOIS data is unavailable, which slightly reduces trust but the overall digital presence and business credibility remain strong.

A

Ajurjóga – Jóga (nejen) pro spokojený život

ajurjoga.cz

55

The website www.ajurjoga.cz represents a small-scale business focused on Ayurvedic yoga practices, offering courses, instructor training, and online lessons primarily targeting a Czech-speaking audience. The site is built on WordPress using popular plugins such as Elementor, Slider Revolution, and Contact Form 7, indicating a moderate level of technical maturity. The content is well-structured and relevant to the wellness and yoga niche, with clear navigation and a professional design. However, the absence of privacy and cookie policies suggests compliance gaps with GDPR and related regulations. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. The lack of WHOIS registration data is a notable concern, reducing domain trustworthiness and raising questions about domain legitimacy. Overall, the site is functional and trustworthy from a user perspective but would benefit from improved compliance and security practices.

A

ajur.cz

ajur.cz

46

ajur.cz is a Czech Republic-based website focused on Ayurvedic health consultations, education, and e-commerce. The business combines traditional Ayurveda with modern medical knowledge, offering consultations by qualified practitioners and selling Ayurvedic herbs, spices, and literature through an online shop. The site also promotes the Ayurvedic University in Prague and related activities, targeting individuals interested in holistic health and Ayurveda. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Elementor, hosted on cesky-hosting.eu. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, representing compliance gaps. No WAF or blocking mechanisms are detected, and no suspicious content or vulnerabilities are apparent. Overall, the site is trustworthy and professional but could improve privacy compliance and security hardening.

C

Captcha4WP

captcha4wp.com

59

Captcha4WP is a specialized WordPress plugin provider focused on delivering anti-spam CAPTCHA solutions for WordPress websites and e-commerce stores. The company offers integration with multiple CAPTCHA providers including Google reCAPTCHA, hCaptcha, and Cloudflare Turnstile, targeting WordPress site owners and administrators seeking to reduce spam and fake registrations. The business has a solid market presence with over 100,000 active installs and has been acquired by WPKube, indicating growth and strategic backing. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience.

C

cistirna-matraci.cz

cistirna-matraci.cz

45

The website cistirna-matraci.cz represents a small local business specializing in mattress cleaning and disinfection services in Prague and across the Czech Republic. The company offers a variety of cleaning methods including UV-C, ozone, and soda cleaning, targeting consumers seeking hygienic mattress maintenance. The website is built on WordPress using the Divi theme, incorporating modern SEO practices and cookie consent mechanisms, indicating a moderate level of digital maturity. However, the absence of a privacy policy and terms of service documents highlights compliance gaps that should be addressed. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and incident response contacts. Overall, the site is professional and trustworthy for its business scope but would benefit from enhanced compliance and security documentation.

C

COFFEEBREAK s.r.o.

coffee-break.cz

45

COFFEEBREAK s.r.o. is a well-established Czech company specializing in the authorized distribution of premium coffee brands such as Lavazza, alongside professional coffee machines, syrups, teas, and other gastronomy-related products. With approximately 20 years of market presence, the company targets professional gastronomy businesses including cafes, hotels, and offices, offering a comprehensive portfolio of products and tailored services. The website reflects a professional and consistent brand image, supporting its market position as a trusted distributor in the hospitality sector. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses popular JavaScript libraries such as jQuery. It integrates Matomo and Google Tag Manager for analytics and employs the Complianz GDPR plugin for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, it lacks visible security headers such as Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. The absence of WHOIS registrant data due to privacy protection slightly reduces trust but is common for commercial entities. No critical vulnerabilities or exposed sensitive data were detected. Overall, COFFEEBREAK's website demonstrates a solid business and technical foundation with good privacy compliance and a safe content profile. Strategic improvements in security headers and transparency around domain registration could further enhance trust and security posture.

S

Children of Saul

saulgyermekei.hu

40

The website 'Children of Saul' appears to be a small-scale, likely non-profit or community-oriented site based in Hungary. The site is built on WordPress and supports multilingual content in English and Hungarian. The content is minimal with no visible business descriptions, contact information, or privacy-related policies, which limits the ability to fully assess the business model or market position. Technically, the site uses standard WordPress plugins and libraries such as jQuery, Fancybox, and WPML for multilingual support. Google Analytics and Google Tag Manager are used for visitor tracking, indicating some level of digital maturity. Security posture is basic with HTTPS enabled but lacking security headers and visible security policies. No forms or user data collection mechanisms were detected on the analyzed page. Overall, the site is safe with no adult or explicit content detected, but it lacks comprehensive privacy and security disclosures.

F

FlexOffers.com

flexoffers.com

67

FlexOffers.com operates as a large-scale affiliate marketing network specializing in performance-based marketing. The company connects over 12,000 advertisers with more than 75,000 publisher programs across 65 networks, providing a comprehensive platform for digital marketing partnerships. Their business model focuses on enabling advertisers and publishers to collaborate efficiently under one roof, offering tools such as APIs, real-time reporting, and fast payouts. The website content and branding reflect a professional and established market position within the affiliate marketing industry. Technically, the website is built on WordPress using the Kadence theme and Elementor page builder, integrating modern web technologies including Bootstrap 5, jQuery, and Google Tag Manager. The site demonstrates good mobile optimization, SEO practices, and uses Cookiebot for cookie consent management, indicating a moderate level of digital maturity and compliance awareness. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks visible security headers and explicit privacy or terms of service pages. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable or protected, which reduces transparency but is not uncommon for commercial websites. Overall, the security posture is good but could be improved by adding security headers and clearer compliance documentation. The overall risk assessment is moderate with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing transparency with privacy and terms pages, improving security headers, and providing clear contact information for incident response. These steps will strengthen trust and compliance, supporting the company's reputable market presence.

H

Hotel u Kabinky | Ubytování ve 4** hotelu v lázeňském středisku v Krkonoších

hoteljanskelazne.cz

43

Hotel U Kabinky is a small hospitality business located in the heart of the Krkonoše mountains in Janské Lázně, Czech Republic. It offers 4-star accommodation directly adjacent to a cable car station and spa colonnade, targeting tourists, families, and sports enthusiasts. The hotel provides rooms, apartments, and depandances, complemented by an on-site restaurant and a sports shop. Additionally, it operates a ski school and related sports services, enhancing its value proposition in the winter sports market. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Security posture is strong with HTTPS and security headers implemented, though no explicit security or incident response policies are published. The absence of WHOIS registration data is a notable gap that impacts trust but does not detract from the overall professional presentation. Privacy and cookie policies are present and GDPR compliant. Overall, the site demonstrates a solid business and technical foundation with room for improvement in transparency and security documentation.

L

Lesy České republiky, s. p.

lesycr.cz

66

Lesy České republiky, s. p. is a large state-owned forestry enterprise in the Czech Republic managing over 1.2 million hectares of state forest land and extensive watercourses. The organization provides forest management, wood sales, hunting lease management, and public education services. It operates under the Ministry of Agriculture and maintains a strong market position as a key government entity in forestry. The website reflects a mature digital presence with multilingual support, comprehensive content, and active social media engagement. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted on Microsoft Azure DNS infrastructure. Security posture is solid with HTTPS, cookie consent compliance, and monitoring tools, though some security headers could be improved. Privacy compliance is robust, with clear GDPR policies and cookie management. Overall, the site demonstrates high professionalism, trustworthiness, and transparency.

W

William H. Coleman, Inc.

travelmartlatinamerica.com

45

TravelMart LatinAmerica is a well-established event organizer specializing in the Latin America tourism industry, facilitating business development through pre-scheduled appointments between global tour operators and suppliers from Central and South America. The company has a strong market position as a premier event since 1978, targeting professional buyers and suppliers in the hospitality and transportation sectors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site is built on WordPress with Elementor and uses modern SEO and security tools such as Yoast SEO and Google reCAPTCHA, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and domain locking but lacks advanced security headers and DNSSEC, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and functional but would benefit from enhanced security and compliance measures.

S

Státní léčebné lázně Janské Lázně

restauraceterra.cz

62

Státní léčebné lázně Janské Lázně operates Restaurace Terra, a restaurant offering a high-quality culinary experience emphasizing local and seasonal ingredients in the Czech spa town of Janské Lázně. The website presents a professional and consistent brand image, targeting visitors seeking traditional and regional gastronomy within a relaxing mountain environment. Technically, the site is built on WordPress with Elementor, integrating modern web technologies and analytics tools such as Google Analytics and Facebook Pixel. Security posture is good with HTTPS and security headers, though no explicit security or incident response policies are published. Privacy compliance is well addressed with cookie consent and privacy policies in Czech language. However, the WHOIS data for the domain www.janskelazne.com is missing, which raises concerns about domain registration legitimacy. Overall, the site is trustworthy and professionally maintained but would benefit from clarifying domain registration and publishing security policies.

E

Elk River Systems

eventgroovefundraising.com

61

Eventgroove is a medium-sized technology company specializing in providing an all-in-one online fundraising platform tailored for nonprofits. Their platform supports various fundraising methods including peer-to-peer campaigns, auctions, raffles, and crowdfunding, with a strong emphasis on ease of use and customer support. The company positions itself as a cost-effective solution with no hidden fees, appealing to small and large nonprofits alike. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the website is built on WordPress using the Divi theme and enhanced with NitroPack for performance optimization. It integrates modern web technologies and third-party services such as Vimeo for video content and HubSpot for marketing and analytics. The site demonstrates good SEO and accessibility practices, with fast loading times and responsive design. From a security perspective, the site enforces HTTPS and employs standard security headers, contributing to a strong security posture. However, it lacks a publicly available security policy and incident response information, which are recommended for enhanced transparency and trust. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a trustworthy and professional image with comprehensive privacy and cookie policies. The absence of WHOIS registration data is a notable concern, suggesting the need for further verification of domain legitimacy. Strategic recommendations include publishing security policies, adding vulnerability disclosure mechanisms, and improving incident response visibility to strengthen security and compliance posture.

Neon One is a technology company specializing in providing integrated software solutions for nonprofit organizations. Their platform combines donor management, fundraising, memberships, events, and ticketing into a unified system, positioning them as a key player in the nonprofit software market. Founded in 2016, the company targets nonprofit organizations seeking streamlined management tools to enhance donor engagement and event coordination. The website reflects a professional and consistent brand image, supported by structured data and social media presence on Facebook and LinkedIn. Technically, the website is built on WordPress CMS and leverages a modern technology stack including jQuery, Google Tag Manager, Google Analytics, Pardot marketing automation, AdRoll retargeting, and Visual Website Optimizer for A/B testing. Hosting and DNS services are provided by GoDaddy and Cloudflare respectively. The site demonstrates good SEO optimization and mobile responsiveness, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and security header implementation. From a security perspective, the site uses HTTPS with a valid SSL configuration and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. There is no published privacy policy or terms of service found in the analyzed content, though a cookie consent mechanism is implemented via CookieYes, indicating some level of privacy compliance. No incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and compliance. Overall, Neon One's website presents a trustworthy and professional front for their nonprofit software services, with a solid technical foundation and marketing integration. To further strengthen their security posture and compliance, it is recommended to publish comprehensive privacy and security policies, enable DNSSEC, and implement security headers. Enhancing accessibility and providing clear contact information would also improve user trust and engagement.

P

Presseli Ltd

maxmegamenu.com

54

Max Mega Menu is a WordPress plugin provider specializing in mega menu solutions for websites. The company, Presseli Ltd, based in the UK, offers both free and premium versions of their plugin, targeting WordPress site owners and developers seeking enhanced navigation features. The website is well-structured, professionally designed, and provides extensive documentation and support resources, positioning itself as a reputable player in the WordPress plugin market with over 400,000 active installs and strong user reviews. Technically, the site is built on WordPress with common plugins such as Easy Digital Downloads and Contact Form 7, integrating Paddle for payment processing and Google Analytics for visitor tracking. The site is mobile-optimized, accessible, and uses HTTPS with anonymized IP tracking, reflecting a mature digital infrastructure. However, some security best practices like explicit security headers and incident response disclosures are absent. From a security perspective, the site demonstrates good baseline protections including HTTPS and no visible sensitive data exposure. The lack of WHOIS data reduces transparency and slightly impacts trust, but the professional content and business information mitigate concerns. Privacy compliance is well addressed with a comprehensive privacy policy and cookie disclosures, though cookie consent mechanisms could be enhanced. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would further strengthen trust and compliance.

P

Pardubice Airport

airport-pardubice.cz

56

Pardubice Airport operates as a regional transportation hub in the Czech Republic, providing passenger flight services and collaborating with multiple travel agencies and airlines to offer holiday destinations. The website reflects a professional and user-friendly digital presence built on WordPress with Elementor, featuring flight schedules, partner offers, and airport services. The technical infrastructure includes modern web technologies and analytics tools such as Google Tag Manager, supporting moderate user tracking and marketing efforts. Security posture is generally good with HTTPS and cookie consent mechanisms in place, though the absence of WHOIS data and some security headers suggests room for improvement. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR consent. Overall, the airport's digital presence supports its business model effectively but would benefit from enhanced transparency in domain registration and additional security policies.

N

Non Gamstop Casinos - OXON AA

ember.london

53

The website oxonaa.org.uk operates as an affiliate and informational platform focusing on non Gamstop casinos for UK players. It provides casino reviews, guides, and affiliate links to various offshore casinos, targeting adult UK gamblers seeking alternatives to Gamstop self-exclusion. The site is built on WordPress with modern SEO and performance optimizations, including Yoast SEO and WP Rocket, and uses Google Analytics for visitor tracking. The domain is very new, registered in 2025, which aligns with the site's recent content but may raise trust concerns for some users. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks published privacy, cookie, or security policies, which are important for compliance and user trust. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for adult audiences interested in gambling. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and clearer business contact information.

N

Non Gamstop Casinos - OXON AA

psi.org.uk

53

The website 'Non Gamstop Casinos - OXON AA' operates as an affiliate and informational platform targeting UK players interested in casinos outside the Gamstop self-exclusion scheme. It provides curated reviews, guides, and affiliate links to licensed non Gamstop casinos, positioning itself in a niche gambling market segment. Technically, the site is built on WordPress with modern SEO and performance optimizations, including the use of Yoast SEO, WP Rocket, and Google Analytics. The site is mobile-optimized and performs well with fast loading times. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities, but lacks visible security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. The WHOIS data presents inconsistencies, notably a future domain creation date, which raises questions about domain legitimacy. Overall, the site is functional and professional but requires improvements in compliance and transparency to enhance trust and security.

N

No Limit Casinos

nolimit-casinos.de

57

No Limit Casinos operates a German-language affiliate marketing website focused on providing detailed and current information about legal online casinos in Germany, specifically those without OASIS player blocking. The site offers casino reviews, bonus information, and comparisons to assist German players in finding legal gambling options. The business model relies on affiliate partnerships with casino operators, promoting their services through referral links. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WP Rocket, and uses Cloudflare for DNS and security. Google Analytics is integrated for user tracking via the MonsterInsights plugin. Security posture is adequate with HTTPS and Cloudflare DNS, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the site is professional and well-structured but could improve transparency and compliance.