Security Directory

M

Město Trhový Štěpánov

trhovystepanov.cz

50

Město Trhový Štěpánov operates an official municipal website providing comprehensive information and services to residents and visitors of the city. The site includes sections on local government, cultural events, public notices, and community resources, positioning itself as a trusted source for local administration. The website targets local citizens and stakeholders interested in municipal affairs and community engagement. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Swiper.js, and Leaflet for mapping, indicating a moderate level of digital maturity and mobile optimization. Security posture is adequate with HTTPS assumed and cookie consent implemented, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is supported by a visible privacy policy and cookie banner, reflecting GDPR awareness. Overall, the site is professional, trustworthy, and well-maintained, though WHOIS data absence limits domain trust verification.

M

mPulse

mpulsemobile.com

72

mPulse is a well-established digital health engagement solutions provider founded in 1998, specializing in consumer-centric health experience and insights products. The company targets healthcare organizations such as health plans, providers, and related stakeholders, offering a comprehensive suite of products including predictive analytics, omnichannel engagement, health portals, and a HITRUST-certified platform. Their market position is strong as a leader in healthcare technology with a focus on improving health outcomes through innovative digital solutions. Technically, the website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as HubSpot and Google Tag Manager. The site demonstrates excellent performance, mobile optimization, and SEO practices. Security-wise, the platform benefits from HITRUST certification and enforces HTTPS, although some security headers could be enhanced. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the website and business exhibit high professionalism, trustworthiness, and maturity, supported by consistent WHOIS data and domain longevity.

M

mPulse

mpulse.com

71

mPulse is a healthcare technology company specializing in digital health engagement solutions that create consumer-centric journeys to improve health outcomes. The company offers a suite of products including predictive analytics, omnichannel engagement, health portals, content management, and a HITRUST-certified Health Experience and Insights Platform. Their target audience includes healthcare organizations, health plans, and providers. The website demonstrates a strong market position with professional branding and comprehensive product offerings. Technically, the website is built on WordPress using Elementor and integrates modern technologies such as jQuery, Swiper.js, and HubSpot analytics. Hosting appears to be on Amazon AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site uses HTTPS and domain registration protections but lacks visible security headers and published security policies or incident response contacts. The mention of HITRUST certification indicates a commitment to healthcare security standards. No vulnerabilities or suspicious patterns were detected in the analysis. Overall, the website is professional, trustworthy, and well-positioned in the healthcare technology market. However, improvements in privacy compliance documentation, security header implementation, and vulnerability disclosure would enhance the security posture and user trust.

D

DocTract

doctract.com

66

DocTract is a technology company specializing in AI-driven policy management software designed to streamline policy creation, approval, and compliance tracking for regulated industries. Founded in 2018 and based in the United States, the company targets business professionals, compliance teams, HR, and executives seeking efficient governance solutions. The website demonstrates a professional and consistent brand presence with positive customer testimonials and a strong focus on user experience. Technically, the website is built on the Webflow platform and integrates multiple modern analytics and marketing tools such as Google Analytics, Microsoft UET, CrazyEgg, and SalesLoft. It employs Cookiebot for cookie consent management and uses HTTPS with good security practices, including CAPTCHA implementations. The site is mobile-optimized and SEO-friendly, though accessibility features could be enhanced. From a security perspective, the site shows good posture with HTTPS enforcement and cookie consent mechanisms. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. The missing WHOIS registration data is a concern for domain legitimacy and should be investigated further. Overall, DocTract presents a credible and professional online presence with solid technical infrastructure but should address privacy policy visibility and domain registration transparency to strengthen trust and compliance.

M

mPulse

healthtrio.com

71

mPulse is a well-established company founded in 1998, specializing in digital health engagement solutions. Their product suite includes predictive analytics, omnichannel engagement, health portals, content management, acquisition and payments, and a HITRUST-certified Health Experience and Insights Platform (HXI). The company targets healthcare organizations such as health plans, providers, and related stakeholders, positioning itself as a leader in the healthcare technology sector. The website demonstrates professional design, clear navigation, and strong branding consistency, reflecting a mature digital presence. Technically, the website is built on WordPress using Elementor as the page builder, with integrations including jQuery, HubSpot Analytics, Google Tag Manager, and Warmly widgets. Hosting appears to be on Amazon AWS infrastructure. The site shows good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and accessibility. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no publicly available security policy, incident response contact, or vulnerability disclosure information, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were found. Overall, the website and business present a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies with consent mechanisms, adding security and incident response information, and implementing security headers to enhance protection and compliance.

U

ULC-ICAM

ulc-icam.com

38

ULC-ICAM is an educational institution specializing in engineering education, aiming to develop technically skilled and socially responsible engineers. The website presents a professional and consistent brand image with clear navigation and partner affiliations, positioning it as a regional player in engineering education. Technically, the site is built on WordPress with modern plugins and frameworks, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks advanced security headers and explicit privacy compliance documentation. The absence of WHOIS data raises some legitimacy concerns, though the website content and structure suggest a legitimate educational entity. Overall, the site is functional and professional but would benefit from enhanced security and privacy transparency.

M

mecodia GmbH

mecodia.de

56

mecodia GmbH is a German-based software and educational agency specializing in software development, consulting, and digital education services. The company targets businesses and educational institutions seeking to leverage digital transformation and media competence. Their market position is that of a niche provider with a strong focus on practical digital solutions and educational media. The website reflects a professional and consistent brand image with clear service offerings and active engagement through a blog and social media channels. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and SEO-optimized infrastructure. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, mecodia GmbH presents a trustworthy and credible online presence with room for enhancement in security transparency and accessibility.

The website 'Kinderportal Schneverdingen' serves as a municipal children’s information portal for the town of Schneverdingen, Germany. It provides comprehensive information on leisure activities, sports, playgrounds, nature, and local government services targeted primarily at children and families. The site is positioned as a local government resource, offering public service content with a focus on community engagement and education. Technically, the website is built on the contentXXL Business CMS platform using ASP.NET Web Forms technology, with client-side libraries such as jQuery 2.1.1, Telerik UI components, and Google Maps API integration. The site demonstrates moderate performance and basic mobile optimization, with a clean and consistent design that supports good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and uses standard form protections but lacks several modern security headers such as Content-Security-Policy and X-Frame-Options. The use of an outdated jQuery version introduces potential vulnerabilities. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanism, and GDPR adherence. However, no explicit security or incident response policies are published. Overall, the website is trustworthy and safe, with no adult or questionable content detected. It is suitable for its target audience and fulfills its role as a local government information portal. Strategic improvements in security headers, library updates, and enhanced mobile accessibility would further strengthen its posture.

H

Heidekreis e-mobil

heidekreis-e-mobil.de

48

Heidekreis e-mobil is a regional electric mobility service provider in Germany, jointly operated by Stadtwerke Soltau and Stadtwerke Böhmetal. The company focuses on providing electric vehicle charging infrastructure, including wallbox sales and installation, a charging card with access to a broad European network, and services related to the THG-Quote for electric vehicle owners. The website is well-structured, professionally designed, and targets electric vehicle users in the Heidekreis region and beyond. Technically, the site uses Joomla CMS with modern front-end libraries and is hosted on AWS infrastructure, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and CSRF protections but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional with room for improvement in security and privacy transparency.

Z

Zukunftsregion JadeBay

zukunftsregion-jadebay.de

48

Zukunftsregion JadeBay is a regional government-backed initiative focused on fostering sustainable development, innovation, and digital transformation within the JadeBay region in Niedersachsen, Germany. The website serves as an informational platform highlighting funding opportunities, projects, news, and partnerships with local counties. The technical infrastructure leverages modern frontend technologies such as Alpine.js, GSAP, Swiper.js, and Font Awesome, hosted via Schlund Technologies. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS and a Content-Security-Policy header, though additional security headers and policies could enhance protection. Privacy compliance is limited, with no visible privacy or cookie policies, which is a notable gap. Overall, the site is trustworthy and serves its public sector mission effectively.

F

Forest Resort

forestresort.cz

62

Forest Resort is a small luxury hospitality business located in the Czech Moravian Highlands, offering four-star accommodation, dining, conference facilities, and event hosting. The website is professionally designed with a strong focus on user experience and clear navigation, supporting the resort's market positioning as a niche luxury destination. Technically, the site uses modern JavaScript libraries and integrates a third-party booking system, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and incident response information. WHOIS data is missing, which slightly reduces trustworthiness but the overall digital presence and content quality support legitimacy. Privacy compliance is basic with GDPR and terms documents available. Recommendations include enhancing security headers, adding incident response contacts, and publishing a vulnerability disclosure policy.

S

Sdružení pro dopravní telematiku

sdt.cz

43

Sdružení pro dopravní telematiku is a Czech non-profit association established in 2002, dedicated to promoting and supporting the development of new technologies in transportation across road, rail, water, and air sectors. The organization focuses on enhancing mobility efficiency through intelligent transport systems and telematics. Their market position is that of a well-established, trusted entity within the Czech transportation technology sector, offering services such as networking, publications, and event coordination. The website reflects a professional and consistent brand image with clear business information and a LinkedIn presence. Technically, the site is built on WordPress with Elementor and related plugins, hosted likely by Active24, and demonstrates good performance and mobile optimization. Security posture is solid with HTTPS enforced, though it lacks some security headers and formal privacy and cookie policies, which are areas for improvement. Overall, the site is safe, trustworthy, and well-aligned with its business purpose.

S

Salesiánská asociace Dona Boska

darujmevzdelani.cz

52

The website www.darujmevzdelani.cz represents a Czech non-profit project 'Darujme vzdělání' focused on supporting education in developing countries through the sale of gift vouchers. It is operated by the Salesiánská asociace Dona Boska, a recognized charitable organization. The site provides clear information about its mission, target regions (India, DR Congo, Bulgaria), and ways to support the cause. The business model is donation-driven with a strong emphasis on transparency and partnership. Technically, the site uses modern JavaScript libraries such as jQuery and Swiper, integrates Google Analytics with privacy-conscious settings, and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and well-structured for user navigation. Security posture is solid with HTTPS enforced and IP anonymization for analytics, though it lacks some advanced security headers and incident response disclosures. WHOIS data is unavailable, likely due to privacy protection, but the website's content and partner references strongly support its legitimacy. Overall, the site is professional, trustworthy, and well-suited for its charitable mission.

P

PAN Veranstaltungslogistik und Kulturgastronomie GmbH

filmnaechte.de

47

Filmnächte is Germany's largest open-air cinema and concert festival, organized by PAN Veranstaltungslogistik und Kulturgastronomie GmbH. The website promotes events across seven locations with over 200 events, targeting a broad audience interested in cultural and entertainment activities. The business model centers on event organization, ticket sales, and partnerships. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence.

Stredná odborná škola Pruské is a Slovak secondary vocational school specializing in agricultural and horticultural education, including niche fields such as kynology. The institution operates under the regional government of Trenčiansky samosprávny kraj and offers a variety of study programs, vocational training, and extracurricular activities. The website serves as an information portal for students, parents, and the community, providing news, event updates, galleries, and virtual tours. The school maintains active social media channels and uses EduPage for student management. Technically, the website is built on the BUXUS CMS platform and employs modern web technologies including Google Tag Manager, YouTube APIs, and Bootstrap Icons. The site is mobile-optimized with good SEO and accessibility features, although accessibility could be improved. Cookie consent and privacy policies are implemented in compliance with GDPR, reflecting a mature approach to privacy and user consent. From a security perspective, the site uses HTTPS with no visible critical vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be improved to enhance trust and preparedness. The WHOIS data aligns well with the website content, confirming legitimacy and consistent registration details. Overall, the website is professional, trustworthy, and well-maintained, serving its educational mission effectively. Strategic improvements in security transparency and contact information could further strengthen its posture.

S

SoftSys Hosting

softsyshosting.com

66

SoftSys Hosting is a professional cloud hosting and managed IT services provider offering a broad range of Windows and Linux hosting solutions, including VPS, dedicated servers, and managed cloud services. The company positions itself as a flexible and customer-centric partner with a global data center footprint, aiming to support business growth through tailored IT infrastructure and security services. The website is well-structured, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site leverages WordPress with Elementor, modern JavaScript libraries, and integrates Google Analytics and reCAPTCHA for user tracking and security. Security posture is strong with HTTPS, security headers, and proactive monitoring, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the overall business credibility and professionalism mitigate immediate trust issues. Strategic recommendations include publishing detailed security and incident response policies and improving WHOIS transparency.

B

BB media productions s.r.o.

tocimesvatbu.cz

59

TočímeSvatbu.cz is a professional wedding media production company based in the Czech Republic, specializing in emotive wedding videography, photography, and aerial drone footage. The company operates under BB media productions s.r.o. and maintains a sister site focused on wedding photography. Their market position is that of a small, specialized service provider targeting couples seeking high-quality wedding memories. The website is well-designed, mobile-optimized, and presents a consistent brand image with a portfolio of wedding stories and active social media channels. Technically, the site uses established JavaScript libraries such as jQuery and Swiper.js, though some libraries are outdated. The site loads moderately fast and includes modern UI elements like sliders and progress bars.

MAS Voticko z.s. is a Czech non-profit local action group dedicated to supporting regional development in the Voticko area. The organization focuses on community projects, social coordination, and facilitating access to EU and regional funding programs. Their website provides comprehensive information about their members, projects, strategies, calls for proposals, and contact details, targeting local municipalities, entrepreneurs, non-profits, and residents. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the website employs modern JavaScript libraries such as jQuery, Bootstrap, Swiper, and Leaflet for maps, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with cookie consent mechanisms and privacy policies in place, reflecting good privacy compliance. Security posture is adequate with HTTPS usage and no visible sensitive data exposure, but lacks explicit security headers and incident response information. WHOIS data is unavailable, limiting domain trust assessment, but external references and content suggest legitimacy. Overall, the website is a reliable and professional digital presence for a regional non-profit organization.

L

LDStudio

belol.cz

49

Belol.cz is a Czech Republic-based small business specializing in intelligent photo booth rental services for events. The website presents a professional and engaging platform targeting event organizers and attendees seeking quality entertainment and memorable photo experiences. The business positions itself as a niche provider with a focus on fun and quality service. Technically, the site employs a moderate technology stack including jQuery, Swiper.js, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and some security headers implied, though improvements are recommended in header implementation and library updates. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy but would benefit from enhanced privacy transparency and updated security practices.

L

Linka bezpečí, z.s.

rodicovskalinka.cz

62

Rodičovská linka is a Czech non-profit organization providing free crisis help and social counseling to parents, family members, and adults acting in the interest of children. With over 23 years of operation, it holds a strong market position in child welfare and mental health support. The website offers multiple contact channels including phone, chat, and email, and provides educational resources and multimedia content to its audience. The organization emphasizes anonymity, professionalism, and respect in its services. Technically, the website is built on the Liferay CMS platform, using modern JavaScript libraries and integrates common analytics and marketing tools such as Google Tag Manager and Facebook Pixel. The site is mobile optimized and accessible, with good SEO practices.

C

CAMPUSERVICE GmbH

campuservice.de

63

CAMPUSERVICE GmbH is a professional service subsidiary of Goethe-Universität Frankfurt am Main, providing a broad range of services including event management, advertising, career services, academy training, campus shop operations, and administrative support. The website reflects a well-structured and professionally designed portal targeting students, university staff, companies, and regional partners. The business model focuses on supporting university-related activities and fostering collaboration with external stakeholders. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Colibri Page Builder, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS enabled and cookie consent implemented, though explicit security policies and incident response contacts are not published. Overall, the domain registration and WHOIS data align well with the university affiliation, indicating legitimacy and trustworthiness.

C

Centrale Méditerranée Alumni

centraliens-marseille.fr

51

Centrale Méditerranée Alumni operates as a professional alumni network for graduates and students of Centrale Méditerranée, a French engineering school. The platform offers a comprehensive suite of services including member directories, event calendars, job boards, and news updates, fostering community engagement and career development. The website is well-branded and targets alumni, students, and recruiters within the educational sector in France. Technically, the site leverages modern web technologies such as Vue.js, Google Analytics, and Google Maps API, ensuring a responsive and interactive user experience. The presence of OAuth-based single sign-on options enhances user convenience and security. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. From a security perspective, the website enforces HTTPS and uses secure login forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no vulnerability disclosure or security.txt files are published. Privacy compliance is strong with visible privacy and cookie policies aligned with GDPR requirements. Overall, the website presents a trustworthy and professional online presence for the alumni community, with moderate technical sophistication and a solid security posture. Recommendations include enhancing security headers, publishing vulnerability disclosure information, and continuing to monitor third-party scripts for vulnerabilities.

W

Wirtschaftsförderungs-GmbH für Stadt und Landkreis Lüneburg

wirtschaft-lueneburg.de

51

Wirtschaftsförderungs-GmbH für Stadt und Landkreis Lüneburg is a regional economic development agency focused on supporting business establishment, innovation, growth, and sustainable transformation in the Lüneburg region of Germany. The organization offers comprehensive services including startup support, innovation funding, location consulting, and talent development, positioning itself as a key facilitator for regional economic success. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and a CMS platform (Neos) to deliver content effectively. It integrates cookie consent mechanisms and GDPR-compliant privacy policies, demonstrating attention to privacy and regulatory compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although formal security policies and incident response contacts are not published. Overall, the site is trustworthy, well-branded, and aligned with its governmental and regional development mission.

L

Landkreis Lüneburg

landkreis-lueneburg.de

57

Landkreis Lüneburg operates as a regional government authority in Germany, providing a wide range of public services and information to its citizens. The website serves as a central hub for accessing administrative services, cultural information, environmental initiatives, and mobility options. It also offers online appointment booking, job application portals, and a GeoPortal for geographic information. The target audience primarily consists of residents and citizens of the Landkreis Lüneburg region. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries like Swiper.js and Odometer.js, and integrates Matomo analytics and SendinBlue marketing tools. The site is hosted via INWX, a reputable German registrar, and demonstrates good mobile optimization and accessibility features. The CMS is likely TYPO3, common for German public sector websites. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs best practices such as asynchronous script loading and accessibility tools. However, it lacks explicit security headers, a published security policy, and vulnerability disclosure mechanisms. Privacy and cookie policies are not clearly found, which may impact GDPR compliance. Overall, the website is professional, trustworthy, and well-structured, but could improve in privacy compliance and security transparency to enhance user trust and regulatory adherence.

B

BURG Services GmbH & Co. KG

burg-services.de

51

BURG Services GmbH & Co. KG is a German-based medium-sized company specializing in promotional products and advertising gifts. The company positions itself as a reliable and innovative partner for businesses seeking customized promotional solutions. Their website reflects a professional B2B business model with a strong network of 65 partner brands and certifications such as the EU Organic Bio certification. The site is built on Drupal 9, leveraging modern web technologies and includes integrations with Google Analytics and Tag Manager for marketing insights. The website is well-structured, mobile-optimized, and provides comprehensive information including privacy and cookie policies, terms of service, and contact details. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response details are absent. WHOIS data is minimal but consistent with the business claims, using GoDaddy DNS services. Overall, the site demonstrates a mature digital presence suitable for its market segment.

A

AWV Jade e.V.

awv-jade.de

48

AWV Jade e.V. is a well-established regional business association founded in 1919, representing over 420 member companies in the Jade economic region of Germany. The organization focuses on advocating for economic interests, providing legal advice, networking opportunities, and continuing education. Their website reflects a mature digital presence with modern WordPress infrastructure, active event management, and comprehensive content tailored to their target audience of regional businesses. Technically, the site uses standard and reputable plugins and libraries, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with clear policies and GDPR-aligned cookie management. Overall, the site projects professionalism and trustworthiness, supporting the organization's market position as a key regional economic voice.

S

Stadtwerke Soltau GmbH & Co. KG

sw-soltau.de

58

Stadtwerke Soltau GmbH & Co. KG is a regional energy utility provider based in Soltau, Germany, offering a broad range of services including electricity, gas, heating, water, wastewater, solar energy, electromobility, internet, and house connection services. The company positions itself as a forward-thinking and innovative leader in the regional energy market, emphasizing sustainability and the energy transition. Their website reflects a professional and comprehensive digital presence with clear navigation, modern design, and extensive customer support options. Technically, the site is built on Joomla CMS with modern JavaScript libraries and hosted on AWS infrastructure, indicating a mature digital infrastructure. Security posture is solid with HTTPS, cookie consent mechanisms, and obfuscated emails, though some security headers and explicit security policies are missing. Overall, the site is trustworthy, GDPR compliant, and provides multiple contact channels. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and continuing to maintain transparency and compliance.

S

Stadt Soltau

soltau.de

58

Stadt Soltau operates an official municipal government website providing comprehensive citizen services, tourism information, event calendars, and online services tailored to residents and visitors of Soltau, Germany. The website is well-branded, consistent, and targets a general audience seeking local government and community information. The business model is focused on public service delivery with a medium-sized municipal scope. Technically, the site uses a mature ASP.NET Web Forms platform with contentXXL CMS, integrating modern JavaScript libraries and accessibility tools, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response contacts are missing. Privacy policies are comprehensive and GDPR compliant. Overall, the site is trustworthy and professionally maintained, with strong legitimacy supported by consistent WHOIS data and official contact information.

E

ESSEC Alumni

essecalumni.com

57

ESSEC Alumni operates as the official alumni network for ESSEC Business School, providing a comprehensive platform for graduates, students, faculty, and recruiters to connect, engage, and access career and lifelong learning services. The website is well-branded, professionally designed, and offers a variety of services including event management, job boards, mentoring, and community clubs. Technically, the site leverages modern web technologies such as Vue.js, Google Tag Manager, and Matomo analytics, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and secure login mechanisms, although some security headers could be improved. Privacy compliance is evident with clear privacy and cookie policies and GDPR considerations. However, the absence of WHOIS data for the domain introduces a trust concern that should be addressed. Overall, the site is a credible and valuable resource for the ESSEC community.

E

ESCP Alumni

escpalumni.org

51

ESCP Alumni is a well-established international alumni association for ESCP Business School graduates, offering a broad range of services including networking, career development, events, and community engagement. The website reflects a professional and consistent brand image, targeting alumni, students, and professionals connected to the school. The association maintains multiple international offices, indicating a large and global presence. Technically, the website employs modern web technologies such as jQuery, Bootstrap 5, and various JavaScript libraries for UI and user interaction. It uses HTTPS with hCaptcha for bot protection and cookie consent management, demonstrating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS, uses CSRF tokens, and integrates anti-bot measures. However, HTTP security headers are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is trustworthy, secure, and professionally managed. The lack of WHOIS data is due to privacy protection, which is reasonable for this type of organization. Strategic recommendations include enhancing HTTP security headers, publishing a security policy, and adding a vulnerability disclosure channel to further strengthen security posture.

H

HEC Alumni

hecalumni.fr

53

HEC Alumni operates as the official alumni network for HEC Paris, serving over 80,000 graduates worldwide. The website provides a comprehensive platform for networking, career development, events, and lifelong learning, targeting alumni, students, and recruiters. The digital infrastructure leverages modern web technologies including Vue.js, Google Analytics, and various social media integrations, reflecting a mature digital presence. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are absent. The lack of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the website's professional content and affiliation with HEC Paris support its credibility. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a trusted resource for its community.

C

Centrale Méditerranée

centrale-marseille.fr

66

Centrale Méditerranée is a reputable French engineering school providing high-level scientific education from Bachelor to Doctorate levels, emphasizing responsible engineering, digital transformation, and international exposure. The institution maintains strong partnerships with academic and industry players and offers a broad range of programs including Grande École engineering, Bachelor, Masters, Doctorate, and continuing education. The website is professionally designed, well-structured, and accessible, reflecting the institution's commitment to quality education and research. Technically, the website is built on Drupal 10 CMS, utilizing modern JavaScript libraries such as Swiper.js for UI components and Matomo for privacy-respecting analytics. The site implements cookie consent management via tarteaucitron.js, indicating compliance with privacy regulations. Security headers and HTTPS are properly configured, enhancing the site's security posture. While the WHOIS data is not publicly available due to privacy protection, the website content and affiliations strongly indicate legitimacy. No critical security vulnerabilities or compliance gaps were detected. However, the site lacks explicit security policy and incident response information, which could be improved to enhance transparency and trust. Overall, Centrale Méditerranée's digital presence is robust, secure, and compliant, supporting its mission as a leading educational institution. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to further strengthen trust and security culture.

C

Centrale Méditerranée

centrale-mediterranee.fr

66

Centrale Méditerranée is a reputable French engineering school offering a range of educational programs from Bachelor to Doctorate levels, emphasizing high scientific standards, innovation, and international exposure. The institution maintains a strong market position with numerous international partnerships and a clear focus on research and professional training. Technically, the website is built on Drupal 10, employs modern JavaScript libraries such as Swiper.js, and uses Matomo for privacy-conscious analytics. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the website reflects a trustworthy and professional educational institution with good privacy compliance and user experience.

C

CAMPUSERVICE GmbH

campuslocation-frankfurt.de

59

CAMPUSERVICE GmbH operates a professional event location service website leveraging the Goethe University Frankfurt campus as a unique venue. The site targets event organizers and private clients seeking diverse event spaces in Frankfurt. The business model focuses on venue rental and associated event services such as catering and technical support. The website is built on WordPress with modern plugins and SEO optimizations, featuring multimedia content including videos and images to enhance user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy and terms policies are missing. Contact is primarily via a web form, with no direct emails or phone numbers published. WHOIS data is minimal but not suspicious, aligning moderately with the business claims. Overall, the site is professional and trustworthy but could improve privacy transparency and security headers.

V

Ville et Eurométropole de Strasbourg

strasapp.eu

67

StrasApp is an official mobile application developed for the residents and visitors of the City and Eurométropole of Strasbourg, France. It provides real-time access to municipal services, notifications, event agendas, and personalized dashboards to enhance daily life in the metropolitan area. The website serves as a promotional and informational portal linking to the app stores and official city resources. The business model is a public service offering free access to digital municipal services, positioning StrasApp as a key digital tool for local governance and citizen engagement. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Matomo analytics with a strong emphasis on privacy and consent management via Tarteaucitron.js. The site is mobile-optimized and accessible, with features such as contrast toggling to support users with disabilities. Hosting and analytics are managed through trusted providers, and the site maintains good SEO and performance standards. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms that comply with GDPR. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the official nature of the site, registered through a reputable registrar, and the site links to official social media and city domains, reinforcing trustworthiness. Overall, StrasApp's website demonstrates a high level of professionalism, privacy compliance, and user-centric design. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contact information to further strengthen trust and security posture.

V

Ville et Eurométropole de Strasbourg

strasbourgaimesesetudiants.eu

63

The website 'Strasbourg aime ses étudiants' is a public service platform managed by the Ville et Eurométropole de Strasbourg, aimed at supporting and informing students studying in Strasbourg and its surrounding communes. It provides comprehensive information on housing, transport, cultural events, student aid, and integration activities. The platform is well-positioned as a local government initiative with strong partnerships and a clear target audience of students. Technically, the site is built on the Liferay CMS platform, utilizing modern web technologies such as React, Swiper.js, and Bootstrap, delivering a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS enforcement and standard security headers, though it lacks explicit published security policies or incident response contacts. Privacy compliance is addressed with visible cookie consent mechanisms and links to privacy policies, reflecting good GDPR adherence. Overall, the site is trustworthy, professional, and serves its public service mission effectively.

G

GoFox - Tecnologias de Informação

ffletter.com

46

FFLetter is an online email marketing platform operated by GoFox - Tecnologias de Informação, targeting businesses and marketers primarily in Portuguese-speaking markets. The platform offers tools for newsletter creation, subscription form integration, campaign analytics, and anti-spam enforcement. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses established libraries such as jQuery and Swiper.js, integrates Google reCAPTCHA for bot protection, and employs Google Analytics for user tracking. Security posture is solid with HTTPS enforced and anti-spam policies actively monitored using AI, though some improvements in security headers and library updates are recommended. The absence of WHOIS data for the domain is a notable concern, impacting trust and business credibility. Overall, the site is functional, compliant with privacy regulations, and positioned as a niche SaaS provider in the email marketing industry.

T

The Pub – Trocadero

the-pub.ro

56

The Pub – Trocadero is a hospitality business based in Bucharest, Romania, specializing in live music events, self-service beer, and comfort food. The venue hosts a variety of cultural and musical events including jazz, pop, rock, and theater performances, targeting a mature audience interested in nightlife and entertainment. The business model revolves around food and beverage sales, event ticketing, and table reservations, positioning itself as a local entertainment hub with an innovative self-service beer concept. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern JavaScript libraries such as jQuery and Swiper.js. It integrates Facebook Pixel for marketing and tracking purposes. The site is mobile optimized with a good user experience and clear navigation, although accessibility features are basic. Performance is moderate with room for improvement in SEO and accessibility compliance. From a security perspective, the website enforces HTTPS and does not expose sensitive data in the HTML. However, it lacks important security headers and visible privacy or cookie policies, which are critical for GDPR compliance and user trust. The WHOIS data is privacy protected, which is common for hospitality businesses, and no suspicious registration patterns were detected. No incident response or vulnerability disclosure information is provided. Overall, the website presents a professional and trustworthy front for a small hospitality business but would benefit from enhanced privacy compliance, security best practices, and transparency to improve user trust and regulatory adherence.

I

INFINITY ACADEMY

infinityacademy.cz

53

INFINITY ACADEMY is a specialized educational organization focused on waste management, particularly in the recycling of construction and demolition waste. With 25 years of industry experience, it offers training programs, workshops, conferences, and consulting services targeted at recycling companies, construction engineers, architects, and related professionals in the Czech Republic. The website is built on a modern WordPress platform using Elementor and Astra theme, providing a professional and responsive user experience. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and privacy compliance documentation. The absence of WHOIS data limits full trust verification, though the website content and contact information support legitimacy. Strategic improvements in privacy compliance and security hardening are recommended.

W

we make it

we-make.it

48

We make it is a Berlin-based small studio specializing in risography printing, book works, and graphics services, catering primarily to independent publishers and DIY enthusiasts. The company emphasizes collaborative processes and democratization of art and information through self-publishing. The website is built on WordPress with a moderate technical infrastructure including jQuery and Swiper.js, and uses Yoast SEO for optimization. Marketing scripts from sender.net are present for email campaigns. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and formal privacy or cookie policies. Contact information is available via email and physical address, with active social media presence. The domain is well-established since 2012, consistent with the business history. Overall, the website is professional and trustworthy but could improve privacy compliance and security practices.

H

Haut-Bailly

haut-bailly.com

56

Château Haut-Bailly is a renowned French winery specializing in Grand Cru Classé wines from the Pessac-Léognan appellation. The website showcases a premium brand with a focus on terroir, precision winemaking, and luxury hospitality services including vineyard tours, tastings, guest accommodations, private dining, and event hosting. The digital presence is well-developed with modern technologies such as WordPress CMS, Yoast SEO, and Google Tag Manager, ensuring good performance, SEO, and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies are lacking. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract from the professional presentation and trust signals on the site. Privacy compliance is partial, with cookie consent mechanisms but no clear privacy or cookie policy pages. Overall, the site is a high-quality digital asset for a luxury hospitality and wine business, with room for improvement in transparency and security documentation.

S

Spirit Radar - The next generation platform for rum and whisky collectors

spiritradar.com

66

Spirit Radar is a specialized online platform catering to rum and whisky collectors, providing comprehensive tools for tracking bottle prices, availability, auction data, and collection valuation. The platform targets collectors, investors, e-shops, bottlers, insurers, and brand representatives, positioning itself as a niche market leader with a substantial database and active user testimonials. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. The site demonstrates good mobile optimization and SEO practices but lacks some advanced accessibility features. Security-wise, the site enforces HTTPS and uses anti-spam measures and cookie consent mechanisms; however, it lacks explicit security headers and a vulnerability disclosure policy. The absence of WHOIS domain registration data raises concerns about domain legitimacy, although the website content and professional presentation suggest a legitimate business. Overall, the site scores well on content quality and business credibility but should improve transparency and security practices.

Česká Asociace Univerzitního Sportu (ČAUS) is a Czech non-profit organization dedicated to promoting university sports and organizing academic sports competitions within the Czech Republic. The website serves as the official platform for disseminating information about competitions, events, and representation of Czech students in sports at various levels. The organization has a well-established presence since 2006 and maintains partnerships with national and international sports bodies. The site targets students, university sports participants, and organizers within the academic sports community.

L

Linka bezpečí, z.s.

linkabezpeci.cz

62

Linka bezpečí is a well-established Czech non-profit organization providing free and anonymous counseling services primarily for children and students up to 26 years old. The website serves as a comprehensive platform offering telephone helpline, online chat, email support, educational resources, and multimedia content focused on mental health and social issues. The organization has a strong market position as a trusted helpline with a long history since 1994 and a domain registered since 1998. Technically, the website is built on the Liferay CMS platform, utilizing modern web technologies and third-party analytics and marketing tools, ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and active social media presence.

L

LDStudio

ringoffury.cz

52

Ring of Fury is a Czech-based combat sports event organizer specializing in celebrity fights across boxing, K1, Muay Thai, and MMA with small gloves. The organization targets combat sports fans and entertainment seekers, offering live events, PPV streaming, and merchandise. The website is professionally designed with good content quality and clear navigation, supported by active social media channels. Technically, it uses modern JavaScript libraries and Google Tag Manager for analytics, but lacks some security headers and formal privacy documentation. The absence of WHOIS data raises some trust concerns, though the visible business presence and partner sponsorships support legitimacy. Overall, the site is functional and engaging but would benefit from enhanced security and compliance documentation.

B

BB media productions s.r.o.

bbproductions.cz

63

BB media productions s.r.o. is a Czech audiovisual production company specializing in comprehensive marketing services including video production, photography, social media, web, and graphic design. The company targets businesses and individuals seeking professional marketing content, offering both large-scale and low-budget production services with licensed drone footage capabilities. Their market position is supported by a portfolio of diverse projects and client logos, indicating a stable presence in the local media production sector. Technically, the website employs a mix of legacy and modern web technologies such as jQuery, Swiper.js, and Typekit fonts, delivering a moderate performance and good mobile optimization. Security posture is moderate with HTTPS usage but lacks visible security headers and updated libraries, and privacy compliance is weak due to missing policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy measures.

C

Centrale Nantes Alumni

centraliens-nantes.org

55

Centrale Nantes Alumni operates a comprehensive digital platform serving the alumni, students, faculty, and recruiters associated with Centrale Nantes engineering school. The website offers a rich set of services including an alumni directory, event calendars, job board, mentoring, and community engagement tools. It is well-positioned as a key network facilitator for its target audience in France and internationally. The platform leverages modern web technologies such as Vue.js, Google Analytics, and Google Maps API to deliver a responsive and interactive user experience. Security posture is solid with HTTPS enforced and secure login options, though some security headers could be improved. Privacy policies and cookie consent mechanisms are present and GDPR compliant, reflecting good privacy practices. The domain WHOIS data is unavailable likely due to privacy protection, which is common for such organizations. Overall, the website is professional, trustworthy, and well-maintained, supporting its role as a vital alumni network hub.

C

Centrale Lille Alumni

centraliens-lille.org

55

Centrale Lille Alumni is a professional alumni association website dedicated to graduates and students of Ecole Centrale de Lille. It provides resources, networking opportunities, career development services, event information, and a job board tailored to its community. The site is well-branded and targets primarily French-speaking alumni and recruiters, with English language support available. The business model centers on membership and community engagement, positioning itself as a key player in alumni relations for the institution.

C

Centrale Méditerranée Alumni

centraliens-mediterranee.fr

51

Centrale Méditerranée Alumni operates as a regional alumni network for graduates and students of Centrale Méditerranée, providing a platform for networking, career development, and community engagement. The website serves as a hub for members to access news, events, job opportunities, and group activities, positioning itself as a key resource for its alumni community in France. Technically, the site employs modern web technologies including Vue.js, Google Analytics, and Google Maps API, ensuring a responsive and interactive user experience. Security measures include HTTPS enforcement and OAuth-based authentication with major providers, enhancing user trust and data protection. However, the absence of WHOIS data limits domain registration transparency, though the site’s professional presentation and official branding support its legitimacy. Overall, the site demonstrates a mature digital presence with good content quality and security posture, suitable for its educational and non-profit sector audience.