Security Directory

C

Connekt

connekt.nl

63

Connekt is a well-established Dutch network organization focused on sustainable mobility and logistics, connecting governments, companies, and knowledge institutions. Founded in 1999, it has grown to include over 500 partners worldwide, positioning itself as a key facilitator of innovation and collaboration in the transportation sector. The website reflects a professional and active organization with regularly updated news and events. Technically, the site is built on a modern WordPress platform with popular plugins and libraries, optimized for performance and mobile use. Security posture is solid with HTTPS and DNSSEC enabled, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is trustworthy and credible, with clear contact information and consistent branding.

M

MEIN EINE WELT JAHR

mein-eine-welt-jahr.de

54

The Sternsinger-Freiwilligendienst website represents a medium-sized non-profit organization based in Germany, focused on providing international voluntary service opportunities for youth and adults aged 18-28. The organization partners with over 100 global entities to facilitate a Freiwilliges Internationales Jahr (FIJ), offering educational seminars, crisis support, and personalized placement services. The website is professionally designed using WordPress with the Avada theme, featuring comprehensive content, SEO optimization, and a clear navigation structure. Cookie consent is implemented via Borlabs Cookie, and multiple analytics and tracking tools such as Microsoft Clarity, Google Tag Manager, and Facebook Pixel are in use. However, explicit privacy and terms of service policies are not found, which is a compliance gap. The WHOIS data is minimal but consistent with the website's non-profit nature, and no blocking or WAF mechanisms are detected, allowing full content access.

R

Renewable World

renewable-world.org

62

Renewable World is a UK-based non-profit organization dedicated to transforming lives through clean energy access, primarily targeting impoverished communities. The organization focuses on sustainable and resilient livelihoods, climate change mitigation, and community-centered renewable energy projects in countries like Kenya and Nepal. Their market position is that of an established, mission-driven entity with a clear focus on renewable energy and poverty alleviation. Technically, the website is built on WordPress with modern SEO and performance optimizations, including Yoast SEO, Google Tag Manager, and ShortPixel for image optimization. The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure suitable for their audience and mission. From a security perspective, the website enforces HTTPS, employs cookie consent mechanisms, and maintains good privacy practices with comprehensive policies. However, DNSSEC is not enabled, and some security headers are missing, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website and domain registration data indicate a trustworthy and legitimate organization with a strong online presence. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing an incident response or vulnerability disclosure policy to enhance security posture and transparency.

L

Landkreis Wittenberg

landkreis-wittenberg.de

57

Landkreis Wittenberg operates a regional government website providing citizens and businesses with access to public administration information, online services, and local news. The site is well-structured, uses modern WordPress technologies including Elementor and Yoast SEO, and integrates a service portal for digital applications. The technical infrastructure is solid, hosted on Schlund Technologies with HTTPS and cookie consent mechanisms in place. Security posture is good with no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is moderate due to lack of explicit privacy and terms pages in the provided content. Overall, the website is trustworthy, professional, and serves its public sector role effectively.

Vihta Online-Buchung und Kundenflussmanagement is a Finnish-based company specializing in cloud-based online booking and customer flow management solutions, primarily targeting healthcare providers. Their platform offers features such as online appointment booking, queue number systems, and self-service kiosks to optimize patient flow and reduce no-shows. The company positions itself as a modern, scalable solution provider with a focus on improving healthcare operational efficiency. Technically, the website is built on WordPress with modern plugins like Breakdance Builder and Yoast SEO, hosted behind Cloudflare DNS and CDN services, ensuring good performance and security. However, the site lacks explicit privacy and cookie policies, which impacts GDPR compliance. Security posture is generally good with HTTPS enforced, but missing security headers and vulnerability disclosure mechanisms are areas for improvement. Overall, the website is professional, trustworthy, and well-branded, with clear contact information and social media presence, but could enhance privacy compliance and security transparency.

M

MINUTACZ s.r.o.

minutacz.cz

46

MINUTACZ s.r.o. operates as an authorized distributor and retailer of Swiss watch brands TISSOT and BALL within the Czech Republic. The company has a well-established market presence since 2010, offering official products, service locations, and brand information targeted at consumers seeking quality Swiss watches. The website is professionally designed using WordPress CMS, incorporating SEO and GDPR compliance plugins to enhance digital maturity and user experience. The site is optimized for mobile devices and provides clear navigation and contact information, reinforcing trust and credibility. From a technical perspective, the website employs modern web technologies including Google Analytics and Tag Manager for user tracking, Yoast SEO for search optimization, and Slider Revolution for visual content. The site uses HTTPS with good SSL configuration, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a retail website. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, reflecting adherence to GDPR requirements. However, the absence of explicit security policies or incident response contacts suggests room for improvement in transparency and preparedness. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness. Strategically, MINUTACZ should focus on enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure channel to strengthen its security culture and compliance posture. These steps will further solidify customer trust and reduce risk exposure in the evolving digital landscape.

F

Fly United

flyunited.cz

49

Fly United is a professional travel service provider based in the Czech Republic, offering comprehensive travel management solutions for private and corporate clients. With over 30 years of experience and a strong client base exceeding 850 corporate customers, the company positions itself as a reliable partner in the transportation sector. Their services include flight bookings, accommodation, travel insurance, visas, transfers, car rentals, and airport parking, supported by online platforms such as Onesto, Symphony SME, and Fly Online. The website is bilingual (Czech and English) and targets both private travelers and businesses seeking travel management solutions. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Google Analytics integration, ensuring good SEO and user tracking capabilities. Security measures include HTTPS enforcement and Google reCAPTCHA v3 on forms, alongside visible PCI DSS certification, indicating compliance with payment security standards. However, the absence of WHOIS data and lack of explicit security policies or incident response information on the site represent areas for improvement. Overall, the website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive content. The security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing vulnerability disclosure information. Privacy compliance is good, with a clear privacy policy and terms of service, though a cookie consent mechanism is not evident. Strategic recommendations include improving security header implementation, adding incident response and vulnerability disclosure details, and enhancing accessibility features to meet broader compliance standards. These steps will strengthen trust and security culture, supporting Fly United's market position as a dependable travel service provider.

M

Ministerstvo vnitra České republiky

prevencekriminality.cz

52

The website prevencekriminality.cz is an official government portal operated by the Ministry of Interior of the Czech Republic, focused on crime prevention strategies and public safety. It serves as a comprehensive resource for citizens, public authorities, and professionals involved in crime prevention, offering news, projects, events, and educational materials. The site maintains a strong market position as the authoritative source for crime prevention information in the Czech Republic. Technically, the site is built on WordPress using modern plugins such as Oxygen Builder, Yoast SEO, and GDPR compliance tools like Complianz. It leverages Cloudflare for DNS and CDN services, ensuring good performance and security. The site is mobile-optimized and includes accessibility features, though some improvements could be made. SEO practices are well implemented with structured data and meta tags. From a security perspective, the site enforces HTTPS and uses Cloudflare services, with cookie consent management in place. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers and a dedicated security policy page are absent, which could be enhanced. Incident response and vulnerability disclosure mechanisms are not publicly documented. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively balances user experience with security and privacy considerations, making it a reliable resource for its audience.

O

otris systems GmbH

bytemine.net

10

The otris systems GmbH is a German-based certified cloud service provider specializing in tailored IT infrastructure solutions including Platform as a Service (PaaS) for SaaS, hosting, virtualization, and Proxmox-related products and services. Established in 2008, the company targets software manufacturers and businesses requiring reliable cloud and on-premises IT infrastructure. Their market position is that of a trusted regional provider with over a decade of experience and recognized ISO 27001 certification. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, indicating a mature digital presence. The site is mobile-optimized, SEO-friendly, and uses HTTPS with good security practices. Analytics are implemented via WP Statistics, though no cookie consent mechanism is present. Security posture is strong with HTTPS, no exposed sensitive data, and ISO 27001 certification displayed. However, the absence of a cookie consent banner and explicit terms of service page are areas for improvement. WHOIS data is privacy-protected, which is common and justified for this business type, but limits external verification. Overall, the website and business present a professional and trustworthy image with solid technical and security foundations. Strategic improvements in privacy compliance and transparency would further enhance trust and regulatory adherence.

SK Sporting Příbram is a well-established sports club based in the Czech Republic, focusing primarily on youth athletics and ultimate frisbee training. Founded in 2003, the club serves over 200 athletes with a dedicated team of trainers and organizes regular training sessions and events. The website reflects a community-oriented organization with clear contact information and active social media presence. Technically, the site is built on WordPress using modern themes and plugins, providing a good user experience with mobile responsiveness and SEO optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy policies, indicating room for improvement in compliance and security best practices. The absence of WHOIS data reduces domain trustworthiness, but the overall content and business information suggest a legitimate local sports entity. Strategic recommendations include enhancing security headers, implementing privacy and cookie policies, and verifying domain registration details to improve trust and compliance.

U

Utopia

utopia-lueneburg.de

41

Utopia is a social and sustainable startup incubator and co-working center based in Lüneburg, Germany. It offers a variety of services including co-working spaces, startup incubation, maker spaces, event rooms, and community events. The organization targets freelancers, entrepreneurs, and startups seeking a collaborative and inspiring environment. The website reflects a well-established local business with a strong partner and sponsor network, emphasizing community and sustainability. Technically, the site is built on WordPress with common plugins for SEO and contact forms, showing moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-positioned in its niche.

S

SIHOT Hotel Management Software

sihot.com

66

SIHOT Hotel Management Software is an established provider of hotel management software solutions, founded in 2002 and targeting the hospitality industry. The company offers tailored software to cover all hotel processes, positioning itself as a specialized and experienced player in the hotel management software market. The website reflects a professional and consistent brand image with a focus on business clients in the hospitality sector. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a modern CMS infrastructure with good SEO practices. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the domain registration data supports legitimacy and trustworthiness, with a domain age consistent with the business history. Strategic improvements in privacy compliance and security best practices would enhance the company's digital trust and regulatory adherence.

H

Hvozdnice

hvozdnice.eu

42

Hvozdnice.eu is the official municipal website for the village of Hvozdnice in the Czech Republic. It serves as a community portal providing news updates, official documents, contact information, and public service announcements relevant to residents and visitors. The website is positioned as a local government informational resource with a focus on transparency and community engagement. The content is primarily in Czech and includes sections on urban planning, local governance, cultural events, and infrastructure projects. Technically, the site is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, indicating a moderate level of digital maturity. The site is mobile responsive and optimized for search engines, though accessibility features are basic. Security posture is good with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response information. Overall, the website is trustworthy and professionally maintained, suitable for its purpose as a municipal information portal.

P

PayZen

payzen.eu

61

PayZen is a French payment platform offering a comprehensive suite of payment solutions tailored for e-commerce and remote payment acceptance. Backed by the Lyra Network group, it holds a strong market position in France and internationally, providing services compliant with PCI DSS and 3DS2 protocols. The platform supports multiple payment methods and channels, including online, mobile, payment links, instant transfers, and virtual terminals, targeting merchants and public sector entities. Technically, the website is built on WordPress with modern JavaScript frameworks and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS, PCI DSS certification, and fraud prevention tools, though some security headers could be improved. Privacy compliance is well addressed with a clear GDPR policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

S

StreetArtMap.eu

streetartmap.eu

54

StreetArtMap.eu is a niche community-driven platform dedicated to mapping and showcasing street art and graffiti in Strasbourg, France. It offers an interactive map, user submissions, categorized artworks, and a blog to engage local and visiting street art enthusiasts. The website leverages WordPress CMS with modern web technologies including Google Maps API and SEO optimizations. Social media integration and active content updates enhance its community presence. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and formal incident response policies. Privacy compliance is basic but present, with GDPR considerations evident in cookie management. Overall, the site is trustworthy and professionally maintained, serving a small but engaged audience.

Z

Zoo Halle

magische-lichterwelten.de

52

Magische Lichterwelten is an event-focused website promoting a fantasy light exhibition titled 'Fantasy Island' hosted at Bergzoo Halle in Germany. The site targets families and visitors interested in immersive fantasy-themed light shows, offering ticket sales for both date/time-bound and flexible entry options. The business operates in the hospitality and event sector, leveraging partnerships with local media and sponsors to enhance its market presence. Technically, the website is built on WordPress using the OceanWP theme and integrates modern event calendar and UI libraries such as FullCalendar and SweetAlert2. SEO is enhanced via the Yoast SEO plugin, and the site demonstrates good mobile optimization and moderate performance. Hosting is provided by RZone, with secure HTTPS enforced. From a security perspective, the site employs HTTPS and cookie consent mechanisms, but lacks explicit advanced security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies in place, indicating GDPR adherence. Overall, the website presents a professional and trustworthy digital presence for the event, with good content quality and business credibility. Recommendations include enhancing security headers, adding a security.txt file, and improving accessibility features to further strengthen the security posture and compliance.

E

Eurométropole de Strasbourg

destination-meinau.eu

47

Destination Meinau is a public infrastructure project website managed by the Eurométropole de Strasbourg, focused on the renovation and expansion of the Meinau stadium. The site serves as an information hub for residents, visitors, and stakeholders, providing updates on construction progress and project details. The project is positioned as an ecological and community-oriented initiative with strong regional support. Technically, the website is built on WordPress, leveraging modern SEO and privacy tools such as Yoast SEO and Matomo analytics, hosted by OVH SAS. The site demonstrates good digital maturity with mobile optimization and GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. Overall, the website is trustworthy, professional, and well-aligned with its public sector mission.

F

FARMFRONT SPA

farmfront.com

52

Farmfront SPA is a medium-sized Italian company specializing in irrigation technology and services, aggregating several leading irrigation providers to deliver integrated solutions globally. The company positions itself as a market leader in irrigation, focusing on sustainable and efficient farming solutions. Their website reflects a professional digital presence built on WordPress, utilizing modern JavaScript libraries and SEO plugins. The technical infrastructure is solid but could benefit from enhanced security measures such as DNSSEC and security headers. The security posture is adequate with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the website is trustworthy and well-aligned with the company's business claims, but improvements in privacy policy transparency and security hardening are recommended.

J

JVB Engineering s.r.o.

plymovent.cz

46

Plymovent.cz, operated by JVB Engineering s.r.o., is a medium-sized Czech company specializing in industrial air filtration and extraction solutions, particularly for welding fumes, oil mist, and vehicle exhaust gases. The company holds a strong market position as a leading global supplier in this niche, serving industrial clients including automotive manufacturers, fire brigades, and workshops. Their website reflects a professional and consistent brand image with comprehensive product and segment information, supported by references from reputable clients. Technically, the site is built on WordPress using modern technologies such as Bootstrap, jQuery, and Elementor, with good SEO and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA implemented, though lacking advanced security headers and explicit incident response policies. Privacy and cookie policies are present and GDPR compliant. Overall, the website is trustworthy, content-rich, and well-maintained, supporting the company's business credibility and digital maturity.

F

Front AI

rechanneld.com

60

Rechanneld is a product offered by Front AI, specializing in AI-assisted customer service channel management. The company operates primarily in the Nordic region, providing automated 24/7 customer service solutions with a strong focus on conversational AI. Their market position is solidified by multiple successful projects and a high customer satisfaction score (NPS97). The website presents a professional and consistent brand image, targeting businesses seeking to optimize their customer service channels through AI-driven strategies and tools. The business model is subscription-based SaaS with tiered offerings suitable for small to enterprise-level clients. Technically, the website is built on WordPress with modern SEO and analytics integrations including Yoast SEO, Google Tag Manager, and ActiveCampaign. Hosting appears to be on AWS infrastructure. The site is mobile-optimized and performs moderately well, though some accessibility features are basic. Security posture is good with HTTPS enforced and domain transfer protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partially addressed with a privacy policy linked on the parent company domain, but no cookie consent mechanism is present. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, improvements are recommended in DNS security, security headers, and incident response transparency. No contact emails or phone numbers are explicitly provided on the site, which may affect user trust and support accessibility. Overall, the site is professional and trustworthy with room for enhancement in privacy and security practices. The risk level is moderate-low with no signs of malicious activity or content safety concerns. Strategic recommendations include implementing cookie consent, enhancing DNS security, publishing security policies, and improving contact information availability to strengthen trust and compliance.

E

Elektronická učebnica

agromechatronik.eu

42

The website www.agromechatronik.eu serves as an electronic textbook platform dedicated to the agromechatronics sector, primarily targeting students and educators in Slovakia and the Czech Republic. It is part of an Erasmus+ KA2 project involving multiple educational partners, providing structured educational content including chapters, tests, and methodical materials. The site is built on WordPress with SEO and analytics plugins, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and visible privacy or cookie policies, which are areas for improvement. Overall, the site is trustworthy and professionally presented, though it would benefit from enhanced privacy compliance and security best practices.

W

Württembergische Landesbibliothek

wlb-stuttgart.blog

57

The Württembergische Landesbibliothek operates a blog website focused on sharing knowledge, cultural events, and academic lectures related to the library and its services. The site targets a general audience interested in cultural and educational content, primarily in the German language. The institution holds a regional government position in Stuttgart, Germany, providing public access to information and cultural resources. The website content dates back to 2020, indicating an established digital presence. Technically, the website is built on WordPress CMS, utilizing the Yoast SEO plugin for search engine optimization and jQuery for client-side scripting. The site demonstrates good mobile optimization and a moderate performance profile. SEO practices are well implemented with proper meta tags and structured data using JSON-LD schema.org vocabulary. However, accessibility features are basic, and no advanced performance or hosting details are evident. From a security perspective, the site uses HTTPS as implied by canonical URLs, but no explicit security headers were detected in the provided data. There is no visible cookie consent mechanism, which is a GDPR compliance gap. No forms or user data collection points were found on the homepage, reducing attack surface. The absence of WHOIS data reduces domain trustworthiness, but the presence of official contact information and consistent branding supports legitimacy. Overall, the website presents a low-risk profile with good content quality and business credibility. Strategic improvements include implementing security headers, adding cookie consent for privacy compliance, and publishing security policies to enhance trust and compliance posture.

L

Learning Technologies Group

ltgplc.com

65

Learning Technologies Group (LTG) is a well-established leader in the digital learning and talent management sector, serving large organizations globally. The company offers a broad portfolio of learning technologies and talent solutions, supported by a strong brand presence and multiple industry awards. The website reflects a mature business with clear market positioning and a focus on innovation in workplace learning. Technically, the site is built on WordPress, hosted on AWS, and employs modern web technologies including Google Tag Manager and CookieYes for analytics and privacy compliance. Security posture is solid with HTTPS enforced and bot management via Cloudflare, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and a consent mechanism. Overall, LTG's website demonstrates professionalism, trustworthiness, and a good balance of business and technical maturity.

H

Haute école des arts du Rhin

hear.fr

45

Haute école des arts du Rhin (HEAR) is a French higher education institution specializing in artistic disciplines including Art, Design, Communication, and Music, with campuses in Mulhouse and Strasbourg. The website serves as an informational and promotional platform targeting prospective and current students, educators, and researchers. It provides detailed program information, admissions guidance, and showcases events and exhibitions, positioning HEAR as a regional leader in arts education. The institution appears to be established since 2016, with a medium-sized operational scale and a focus on quality artistic education and research.

A

ARTUS Théâtre Universitaire de Strasbourg

artusasso.fr

47

ARTUS Théâtre Universitaire de Strasbourg is a small, non-profit university theatre association based in Strasbourg, France. It offers theatrical productions, workshops, auditions, and cultural events primarily targeting university students and theatre enthusiasts. The website is multilingual and professionally translated, reflecting a commitment to accessibility for international audiences. The business model focuses on community engagement and cultural enrichment rather than commercial profit. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, hosted by OVH. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site uses HTTPS and a cookie consent mechanism but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no detailed GDPR compliance or incident response information. Overall, the website is trustworthy and professional, with a solid business presence and technical foundation. Strategic improvements in security policies and privacy transparency would enhance its posture and compliance.

A

Alsace Tech

alsacetech.org

53

Alsace Tech is a regional network of higher education institutions in Alsace, France, specializing in engineering, architecture, management, and design education. The website serves as a portal for students, companies, and partners to access information about the member schools, programs, events, and collaborative opportunities. The network positions itself as a key regional player in education with a focus on multidisciplinary and international programs. Technically, the website is built on WordPress with a mature set of plugins including Yoast SEO, Revolution Slider, and Max Mega Menu. It uses modern web technologies such as Bootstrap and jQuery and integrates Google Analytics and Tag Manager for user tracking. The site is mobile-optimized and has good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is unavailable, which slightly impacts trust but the professional presentation and partner affiliations support legitimacy. Overall, Alsace Tech's website is a well-structured, professional educational network portal with moderate technical sophistication and a good security baseline. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and compliance.

V

Vcestovani.cz

bezpecnystredoceskykraj.cz

45

Vcestovani.cz is a Czech travel portal providing comprehensive travel guides, destination recommendations, and travel insurance offers primarily targeting Czech-speaking travelers. The website is built on WordPress with SEO optimization via Yoast and integrates Google Analytics and Adsense for tracking and monetization. The technical infrastructure is modern and mobile-optimized, though minor backend PHP warnings indicate some code maintenance is needed. Security posture is adequate with HTTPS enabled but lacks advanced security headers. Privacy and cookie policies are present, supporting GDPR compliance. However, the absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is professional and functional, serving its niche effectively.

A

Aira Communication

aira.media

60

Aira Communication is a Czech media and communication company with over 25 years of experience, operating multiple niche magazines targeting both male and female audiences. They provide a range of services including copywriting, advertising on their media platforms, communication and PR, and SEO services. The company positions itself as a comprehensive communication partner for businesses seeking tailored campaigns and content solutions. Technically, the website is built on WordPress with modern plugins and frameworks such as Yoast SEO and UIkit, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement by adding security headers and formal security policies. WHOIS data is privacy protected, which is typical and justified for this business type. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

L

Lukáš Pavelec

lukaspavelec.cz

52

Lukáš Pavelec is a seasoned web designer and UX specialist based in the Czech Republic, offering professional web design and user experience services with over 14 years of experience and a portfolio exceeding 250 projects. The website showcases a well-structured, visually appealing, and mobile-optimized WordPress-based platform, leveraging popular plugins such as Yoast SEO, Contact Form 7, and Google Analytics for enhanced functionality and tracking. Security measures include HTTPS enforcement and Google reCAPTCHA integration on the contact form, although explicit security headers and privacy policies are absent, indicating areas for improvement. Overall, the site presents a credible and professional business presence with clear contact information and a strong portfolio, but lacks formal privacy and cookie compliance documentation.

A

Arcibiskupství olomoucké

ado.cz

56

Arcibiskupství olomoucké is the official website of the Olomouc archdiocese, a religious non-profit organization serving the Catholic community in the Czech Republic. The site provides comprehensive information about the archdiocese's structure, events, pastoral activities, and spiritual resources. It targets parishioners, clergy, and the general public interested in the church's activities in the region. The website is well-branded, consistent, and offers clear navigation and relevant content.

A

Arcidiecézní centrum pro rodinný život

rodinnyzivot.cz

52

Arcidiecézní centrum pro rodinný život is a Czech non-profit organization affiliated with the Olomouc Archdiocese, focused on supporting family life through education, spiritual renewal, counseling, and community events. Established in 2002, it serves a broad audience including families, couples, singles, and seniors. The website reflects a mature digital presence with regular content updates, event calendars, and educational resources. Technically, the site is built on WordPress with common plugins for SEO, forms, and event management, hosted by a Czech hosting provider. The site is mobile optimized and uses structured data for SEO enhancement. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response policies are missing. Privacy compliance is partially met with a GDPR policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, serving its community effectively.

S

Salesiánská asociace Dona Boska

adopcenablizko.cz

42

The website adopcenablizko.cz represents a Czech non-profit organization focused on preparing and sending volunteers to assist vulnerable communities worldwide. The organization operates under the Salesiánská asociace Dona Boska umbrella, providing humanitarian aid through volunteer engagement. The site features volunteer letters, photo galleries, and donation options, targeting potential volunteers and donors. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, ensuring a professional and responsive user experience. Security posture is adequate with HTTPS and cookie consent implemented, though explicit privacy and security policies are missing. The absence of WHOIS data slightly reduces domain trust but does not detract significantly from the site's legitimacy. Overall, the site is well-positioned within its niche, offering clear calls to action and engaging content.

C

CAMPUSERVICE GmbH

campuservice.de

63

CAMPUSERVICE GmbH is a professional service subsidiary of Goethe-Universität Frankfurt am Main, providing a broad range of services including event management, advertising, career services, academy training, campus shop operations, and administrative support. The website reflects a well-structured and professionally designed portal targeting students, university staff, companies, and regional partners. The business model focuses on supporting university-related activities and fostering collaboration with external stakeholders. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Colibri Page Builder, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS enabled and cookie consent implemented, though explicit security policies and incident response contacts are not published. Overall, the domain registration and WHOIS data align well with the university affiliation, indicating legitimacy and trustworthiness.

S

Striven

striven.com

55

Striven is a small business-focused technology company offering an all-in-one business management software suite that integrates accounting, CRM, project management, and other essential business functions. The company positions itself as an affordable and comprehensive SaaS solution for small to midsize businesses, emphasizing ease of use and total transparency. The website is professionally designed with strong branding consistency and includes customer testimonials and success stories that reinforce trust and market credibility. The parent company is identified as Miles IT Company, which also provides website design services. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Tag Manager, Facebook Pixel, and various analytics and marketing tools. The site is mobile optimized and SEO friendly, with structured data and Open Graph metadata implemented for enhanced search and social media presence. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. The absence of WHOIS data for the domain is a notable concern, as it raises questions about domain registration legitimacy. However, the professional nature of the website and business information partially mitigate this risk. No explicit contact emails or phone numbers were found, which could be improved to enhance transparency. Overall, Striven presents a credible and professional business software offering with a solid technical foundation but should address privacy compliance and domain registration transparency to strengthen trust and security posture.

K

Karl-May-Spiele Bad Segeberg

karl-may-spiele.de

52

Karl-May-Spiele Bad Segeberg is a well-established cultural event organizer specializing in live outdoor theater performances based on Karl May's works. The website serves as a comprehensive platform for ticket sales, fan merchandise, and visitor information, targeting families and fans of western-themed entertainment. The business has a strong market position in Germany with a history dating back to 1952. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by Yoast SEO and Borlabs Cookie for privacy compliance. The site demonstrates good digital maturity with modern technologies, responsive design, and SEO optimization, although some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not present, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR, providing a safe and user-friendly experience. Strategic recommendations include adding security headers, publishing a security policy, and enhancing accessibility features to further strengthen the security posture and user trust.

S

SUNRISE Alliance

sunrise-alliance.eu

63

SUNRISE Alliance is a network representing smaller-sized universities located in non-metropolitan areas across Europe, aiming to provide a collective voice aligned with European values. The website serves as an informational and collaborative platform for these institutions, highlighting their strategic importance and fostering regional innovation and sustainability. The alliance targets academic institutions and stakeholders interested in regional educational development. Technically, the website is built on a modern WordPress platform with a well-integrated tech stack including Yoast SEO for search optimization, Google Tag Manager for analytics, CookieYes for cookie consent management, and OneSignal for push notifications. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policies, incident response information, and advanced security headers. No vulnerabilities or suspicious activities were detected in the analysis. Privacy compliance is partial due to the absence of a dedicated privacy policy and terms of service pages. Overall, the website is professional and trustworthy with a clear educational focus. To enhance trust and compliance, it is recommended to publish comprehensive privacy and security policies, improve security headers, and provide incident response contacts. These steps will strengthen the alliance's digital maturity and user confidence.

M

Marktplatz GmbH

k-werft.de

52

k•werft, operated by Marktplatz GmbH, is a specialized service provider focused on delivering modern, accessible, and citizen-friendly municipal web portals primarily for German municipalities, cities, and districts. With over two decades of experience since its founding in 1999, the company has established a strong market position with a high customer retention rate and a portfolio of successful projects. Their key offerings include integration of eGovernment services, content management via NEOS CMS, and tailored municipal digital products. The website reflects a professional and consistent brand image targeting public sector clients.

A

AutoCruitment

autocruitment.com

39

AutoCruitment is a specialized healthcare technology company focused on patient recruitment for clinical trials. Their platform leverages direct-to-patient recruitment technology, sophisticated online screening, and AI-powered EMR data insights to accelerate clinical trial enrollment. The company positions itself as an industry leader with global capabilities, serving sponsors, CROs, research sites, and medical device companies. The website is professionally designed, mobile-optimized, and integrates multiple marketing and analytics tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS and secure forms, though improvements in security headers and privacy compliance are recommended. The absence of WHOIS data suggests privacy protection, which is common in this sector but limits transparency. Overall, the site is trustworthy, professional, and well-aligned with its business objectives.

W

WCG Clinical Services

wcgclinical.com

74

WCG Clinical Services operates as a professional clinical trial quality and efficiency improvement service provider, targeting biopharmaceutical companies, CROs, and research institutions. The website presents a strong market position with clear business focus and well-structured content, supported by modern SEO practices and social media presence. Technically, the site is built on WordPress with common plugins such as Yoast SEO and ElasticPress, and uses Google Tag Manager for analytics. The site is mobile optimized and performs moderately well, with good accessibility and SEO optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and published security policies. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. Overall, the site is professional and trustworthy in content but would benefit from improved transparency and security disclosures.

F

Fédération des Aveugles et Amblyopes de France

aveuglesdefrance.org

62

The Fédération des Aveugles et Amblyopes de France is a French non-profit organization advocating for the full citizenship and rights of blind and visually impaired individuals. The website serves as an informational and advocacy platform, targeting persons with blindness and low vision in France. It provides key services related to support and rights advocacy. The organization has an established presence since 2014, with a medium-sized operational scale. Technically, the website is built on WordPress, utilizing the Yoast SEO plugin for search optimization and integrates analytics tools such as Piwik PRO and Google Tag Manager. The hosting is provided by Gandi SAS, a reputable registrar and hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC, security headers, and explicit security or incident response policies on the website. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. No vulnerability disclosure or data protection officer information is provided. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security hardening, and transparency regarding data protection and incident response to improve its security posture and user trust.

N

numerik-ea

numerik-ea.fr

55

numerik-ea is a French digital agency specializing in accessible web solutions, certified as an entreprise adaptée, emphasizing inclusion of people with disabilities in digital professions. Founded in 2016 and part of the ctrla group, it offers services including digital accessibility audits, website creation and redesign, content management, and marketing campaigns such as newsletters and SMS. The agency targets organizations seeking inclusive digital services and positions itself as a pioneer in accessible digital agency services in France. The website is professionally designed, mobile-optimized, and SEO-friendly, built on WordPress with modern plugins and themes. Security posture is good with HTTPS enforced, but lacks some security headers and explicit incident response policies. Privacy compliance is partially met with a clear privacy policy but no cookie consent mechanism. WHOIS data is unavailable, slightly reducing domain trustworthiness, but the professional presentation and client references support legitimacy. Overall, the site demonstrates a mature digital presence with room for security and privacy improvements.

C

CAMPUSERVICE GmbH

campuslocation-frankfurt.de

59

CAMPUSERVICE GmbH operates a professional event location service website leveraging the Goethe University Frankfurt campus as a unique venue. The site targets event organizers and private clients seeking diverse event spaces in Frankfurt. The business model focuses on venue rental and associated event services such as catering and technical support. The website is built on WordPress with modern plugins and SEO optimizations, featuring multimedia content including videos and images to enhance user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy and terms policies are missing. Contact is primarily via a web form, with no direct emails or phone numbers published. WHOIS data is minimal but not suspicious, aligning moderately with the business claims. Overall, the site is professional and trustworthy but could improve privacy transparency and security headers.

T

Turku PET Centre

turkupetcentre.fi

54

Turku PET Centre is a Finnish National Research Institute specializing in the use of short-lived positron emitting isotopes for medical research. It is jointly hosted by the University of Turku, Åbo Akademi University, and Turku University Hospital, with a history dating back to the 1970s and national status since 1996. The center offers a range of services including core facilities, diagnostic services, and educational programs, targeting scientists, healthcare professionals, academia, and industry partners. The website reflects a reputable academic institution with a strong market position in medical imaging research. Technically, the website is built on WordPress with modern frameworks such as Gantry5 and Bootstrap, and uses plugins for events and online applications. It is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enforced, but lacks comprehensive security headers and explicit privacy and cookie policies. Google Analytics is used for user tracking, indicating moderate data collection practices. Overall, the security posture is solid but could be improved by implementing additional security headers and privacy compliance features. The domain registration details are consistent with the institution's identity, enhancing trustworthiness. No blocking or WAF challenges were detected, allowing full content access and analysis.

A

ADREX BASE CAMP

adrex.cz

44

Adrex Base Camp is a small outdoor sports business located in Vír, Czech Republic, specializing in year-round sports equipment rental, test centre services, and organizing company and group events focused on adventure and outdoor activities. The website presents a professional and consistent brand image with clear contact information and active social media presence. The business targets outdoor enthusiasts and corporate groups seeking organized sports and adventure experiences in the Svratka Valley region. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and MonsterInsights for analytics and SEO optimization. It employs HTTPS with a valid SSL certificate and integrates Google Maps API for location services. The site is moderately optimized for performance and mobile devices, with basic accessibility features. However, some security best practices like security headers are missing. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, but lacks a published privacy policy, terms of service, and security policy pages. WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is functional, professional, and safe for general audiences but would benefit from enhanced privacy compliance documentation and improved security headers. The absence of WHOIS data is a notable gap in trust assessment and should be addressed to improve domain transparency and credibility.

P

Positive Activities z.s.

trailyvir.cz

41

Trails in Vír is a small regional business operating a biking resort in the Vysočina region of the Czech Republic. The company, Positive Activities z.s., offers groomed and wilderness biking trails, bike rental, servicing, and shuttle services through partnerships. The website is professionally designed with good content quality and clear navigation, targeting biking enthusiasts and tourists interested in outdoor activities. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Analytics integration, providing a solid digital infrastructure. However, the absence of WHOIS data limits domain trust assessment. Security posture is adequate with HTTPS enabled but lacks some security headers and privacy compliance mechanisms such as cookie consent. Overall, the site is functional and trustworthy for its niche audience but could improve privacy and security transparency.

G

Genethon

genethon.com

56

Genethon is a medium-sized non-profit organization specializing in the research and development of gene therapy treatments for rare diseases, including neuromuscular, liver, immune system, and eye disorders. The organization is positioned as a leading European entity in this specialized healthcare sector, supported by partnerships with recognized institutes such as AFM-Telethon and the Biotherapies Institute for Rare Diseases. Their website reflects a professional and content-rich platform aimed at patients, researchers, and healthcare professionals. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Matomo analytics, ensuring good SEO and privacy-respecting user tracking. The site is mobile-optimized and provides a clear navigation structure. Cookie consent mechanisms are implemented in compliance with GDPR, enhancing user privacy and transparency. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be investigated further. Overall, the website demonstrates a solid digital presence with good privacy and security practices but would benefit from enhanced transparency in security policies and verification of domain registration details.

W

we make it

we-make.it

48

We make it is a Berlin-based small studio specializing in risography printing, book works, and graphics services, catering primarily to independent publishers and DIY enthusiasts. The company emphasizes collaborative processes and democratization of art and information through self-publishing. The website is built on WordPress with a moderate technical infrastructure including jQuery and Swiper.js, and uses Yoast SEO for optimization. Marketing scripts from sender.net are present for email campaigns. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and formal privacy or cookie policies. Contact information is available via email and physical address, with active social media presence. The domain is well-established since 2012, consistent with the business history. Overall, the website is professional and trustworthy but could improve privacy compliance and security practices.

T

TTS energo s.r.o.

ttsenergo.cz

36

TTS energo s.r.o. is a regional energy company based in Třebíč, Czech Republic, specializing in the production and distribution of heat energy primarily from biomass. The company positions itself as a pioneer in biomass heat production within the Czech Republic and emphasizes environmental responsibility and local community support. Their services include heat production, customer benefits, emergency dispatch services, and technology projects. The website reflects a medium-sized enterprise with a professional online presence and clear business focus. Technically, the website is built on WordPress using common libraries such as jQuery, Modernizr, and Google Maps API. SEO is enhanced by the Yoast SEO plugin, and performance optimizations are implemented via WP Rocket. The site is mobile-optimized and uses HTTPS with strong SSL configuration. However, some security best practices like security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site demonstrates a moderate security posture with HTTPS enforced and anonymized IP tracking in analytics. The presence of a whistleblowing directive and GDPR privacy policy indicates some compliance awareness. The absence of WHOIS data is a concern for domain legitimacy and trust, though the website content and business information appear professional and consistent. Overall, the site is trustworthy and functional with room for improvement in security headers, privacy compliance (cookie consent), and domain registration transparency. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response contacts, and verifying domain WHOIS information to strengthen trust and compliance.

R

Rodinný svaz ČR, z.s.

tydenprorodinu.cz

52

Týden pro rodinu is a well-established non-profit initiative organized by Rodinný svaz ČR, z.s., focused on promoting family values and community engagement through annual events across the Czech Republic. The website reflects a mature digital presence with a clear focus on family-oriented content and partnerships with regional governments and organizations. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and social media SDKs to enhance user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements in security headers and privacy policy transparency are recommended. The absence of WHOIS data limits domain trust verification, but the overall content and partner ecosystem support legitimacy. Strategic recommendations include enhancing security headers, publishing a privacy policy, and establishing a vulnerability disclosure channel to strengthen compliance and trust.