Security Directory

A

Alaio Inc.

bitrix24.net

71

Bitrix24, operated by Alaio Inc., is a comprehensive SaaS platform offering a free online workspace for businesses, integrating CRM, task management, collaboration, and sales tools. It targets businesses and teams seeking to streamline sales, communication, and project management. The platform is positioned as a mature and established player in the business software market, offering extensive features including AI-powered CoPilot tools across various modules. Technically, the website leverages the Bitrix Framework and modern web technologies, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS usage and cookie consent mechanisms, though security headers and incident response details are not evident. The site is transparent with privacy and cookie policies, showing GDPR compliance. Overall, Bitrix24 presents a professional, trustworthy, and feature-rich platform with room for security enhancements.

Wirtualna Polska is a leading Polish online media company providing a broad range of content including news, sports, finance, entertainment, and weather. The website www.wp.pl serves as a comprehensive portal for Polish users, offering various services such as email, TV online, and radio streaming. The platform is well-established with consistent branding and a large network of subsidiary and partner sites. Technically, the site uses modern web technologies including JavaScript frameworks, GraphQL APIs, and service workers, ensuring a responsive and engaging user experience. Security-wise, the site enforces HTTPS, employs cookie consent mechanisms, and integrates analytics tools like Hotjar, although some advanced security headers could be improved. Overall, the site demonstrates a mature digital presence with good privacy compliance and user trust indicators.

T

Team Vitality

vitality.gg

65

Team Vitality operates a professional esports team and an official merchandise e-commerce store targeting esports fans and gamers. The website is built on the Shopify platform, integrating modern marketing and analytics tools such as Google Tag Manager, Didomi for consent management, and Shoplift for A/B testing. The site demonstrates a good level of digital maturity with fast performance, mobile optimization, and SEO best practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers could be enhanced. Privacy compliance is partially implemented with consent mechanisms but lacks visible privacy and terms of service pages. Overall, the website is professional and trustworthy but would benefit from improved transparency and contact information.

F

Fédération Française de Football

fff.fr

65

The Fédération Française de Football (FFF) is the official governing body for football in France, providing comprehensive information on national teams, competitions, clubs, and football-related activities. The website serves a broad audience including fans, players, officials, and stakeholders, offering news, event details, and official communications. The digital infrastructure employs modern web technologies, including JavaScript frameworks, consent management platforms, and analytics tools, ensuring a professional and user-friendly experience. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is trustworthy, well-branded, and professionally maintained, supporting the FFF's role as a key sports federation in France.

S

SK Slavia Praha

veznakuhvezdaje.cz

48

SK Slavia Praha is a well-established Czech football club celebrating its 130th anniversary with a new visual identity and logo. The website serves as a dedicated platform to showcase this rebranding effort, including the club's history, logo evolution, custom font, fanshop merchandise, and related brand extensions. The site targets fans, sports enthusiasts, and customers interested in official club products. Technically, the website uses modern web standards with custom fonts, video content, and Google Analytics for visitor tracking. The site is mobile-optimized and professionally designed, providing an excellent user experience. Security-wise, the site implements a cookie consent mechanism but lacks visible security headers and explicit privacy or security policies. No contact information or incident response details are provided, which are areas for improvement. Overall, the domain registration aligns with the website's purpose, indicating legitimacy. The site is safe, free of adult or questionable content, and maintains consistent branding.

P

Petit Press, a.s.

sme.sk

60

SME.sk is a leading Slovak news portal operated by Petit Press, a.s., providing comprehensive news coverage across various sectors including politics, economy, culture, and sports. The website targets the general Slovak public and holds a strong market position as one of the most read news sources in Slovakia. The business model is primarily based on online media publishing with revenue streams from advertising and subscriptions. The site demonstrates a high level of content quality and consistent branding, reflecting its established reputation since its founding in 1993. Technically, SME.sk employs a modern web technology stack including JavaScript frameworks, Google Fonts, and multiple advertising and analytics platforms such as Google DoubleClick, PubMatic, and Gemius. The site uses a custom CMS and shows good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in speed and accessibility. From a security perspective, the website enforces HTTPS with excellent SSL configuration and includes standard security headers. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR adherence. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for enhancement. Overall, SME.sk presents a secure, professional, and trustworthy online presence with minor gaps in explicit security governance documentation. Strategic recommendations include publishing a dedicated security policy, establishing a vulnerability disclosure program, and enhancing accessibility to improve user experience and compliance.

S

StaMat CZ, s.r.o.

stamatcz.cz

45

StaMat CZ, s.r.o. is a small Czech Republic based company specializing in earthworks, demolition, construction waste recycling, and heavy transport services primarily serving the Pardubice region and surrounding areas. The company operates a waste collection and recycling center and offers a range of construction-related services. The website is professionally designed with clear navigation and relevant content, supporting the company's local market positioning. Technically, the site uses standard web technologies including jQuery and Facebook SDK, with a cookie consent mechanism in place, indicating awareness of privacy compliance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. WHOIS data is unavailable, which slightly reduces domain trust but the website content and contact details support legitimacy. Overall, the site presents a trustworthy and functional online presence for a regional construction services provider.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is not accessible or blocked. The page contains no business-related content, contact information, or compliance policies. Instead, it hosts the Chrome Dinosaur offline game code and assets, which is a default error placeholder in Chrome browsers when a page cannot be loaded. Due to the lack of accessible content, no meaningful business or security posture can be assessed. The technical infrastructure is limited to standard HTML, CSS, and JavaScript for the offline game, with no external dependencies or analytics detected. Security posture cannot be fully evaluated due to missing headers and SSL information. Overall, the website is non-functional at this URL, and no privacy or compliance information is present.

V

Vodárny a čerpadla

vodarnycerpadla.cz

51

Vodárny a čerpadla is a Czech-language website providing practical tips for everyday life, focusing on household care, gardening, kitchen ideas, and DIY repairs. The site targets a general audience interested in improving home and garden maintenance with easy-to-follow advice. The business operates as a content publisher with a niche focus, maintaining a consistent brand and good content quality. Technically, the website uses standard modern web technologies including HTML5, CSS3, and JavaScript, with Cloudflare DNS services. The site is mobile optimized and has good SEO practices but lacks advanced frameworks or CMS identification. Security posture is moderate with HTTPS implied but no visible security headers or explicit security policies. Privacy compliance is limited, with no cookie consent mechanism and only basic privacy and terms pages. WHOIS data is inconsistent, showing a future domain creation date, which raises some trust concerns but does not detract from the site's professional presentation and content accessibility. Overall, the site is functional and trustworthy for its content niche but would benefit from enhanced security and privacy measures.

The website at ww1.lesazahrada.com appears to be a parked or placeholder domain with minimal content primarily consisting of an iframe loading an external ad and tracking service. There is no identifiable business information, contact details, or privacy policies present. The WHOIS query returned no registration data, indicating the domain is either unregistered or inactive. Technically, the site lacks HTTPS and security headers, and the content quality is poor with heavy reliance on third-party ad domains. Security posture is weak with potential privacy and tracking concerns. Overall, the site does not represent a legitimate business presence and poses risks related to trust and security.

W

WebLinks - internetové odkazy filmy, inzerce, sběratelství, hobby

weblinks.cz

57

WebLinks.cz is a Czech language online catalog specializing in internet links related to films, classifieds, collecting, hobbies, and related topics. The website targets Czech users interested in these niche areas and monetizes primarily through Google AdSense advertising. The site structure includes multiple thematic subdomains focusing on specific interests such as model railways, women's inspiration, and job listings. Technically, the site uses basic HTML, CSS, and JavaScript with Cloudflare DNS services but lacks modern CMS or frameworks. The design and user experience are basic with limited mobile optimization and accessibility features. Security posture is weak due to lack of HTTPS information, absence of security headers, and no visible privacy or cookie policies. WHOIS data is inconsistent, showing a domain creation date in the future, which undermines trust in domain legitimacy. Overall, the site is safe for general audiences but requires significant improvements in security, privacy compliance, and technical modernization.

L

Loqate

postcodeanywhere.co.uk

77

Loqate is a global provider of address verification, data validation, and geocoding services, operating under the parent company GBG. The company targets businesses across multiple sectors including retail, fintech, logistics, and utilities, offering a comprehensive suite of APIs and integrations to improve data quality and customer experience worldwide. The website demonstrates a mature digital presence with excellent content quality, professional design, and strong privacy compliance mechanisms including GDPR-aligned cookie consent. Technically, the site leverages modern analytics and monitoring tools such as Microsoft Application Insights, Google Analytics, and OneTrust, hosted likely on Microsoft Azure infrastructure, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the company's established market position and branding. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and providing direct contact information for security and support purposes.

CLEVER Soft s.r.o. is a Czech Republic-based technology company specializing in automated production line control systems, quality management software, and IT services including hardware sales and web hosting. Established in 1997, the company targets manufacturing and industrial sectors, particularly automotive assembly lines, offering modular software solutions to integrate production automation with enterprise systems. The website reflects a mature business with clear contact information and a focus on industrial automation solutions. Technically, the site uses a custom CMS with legacy JavaScript libraries and basic mobile optimization. Security posture is moderate with no HTTPS or security headers information provided, and no visible privacy or incident response policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

S

Statutární město Teplice

teplice.cz

51

The website represents the official portal of the statutory city of Teplice, Czech Republic. It serves as a comprehensive resource for residents, visitors, and local businesses by providing municipal services, news updates, event calendars, and contact information. The site is well-structured, professionally designed, and targets a broad audience including families, seniors, and tourists. The business model is government/public service with a focus on transparency and accessibility. Technically, the website employs a modern tech stack including HTML5, CSS3, JavaScript, Google Analytics, Google Tag Manager, Google reCAPTCHA, and a Voiceflow chatbot for enhanced user interaction. It uses the Vismo CMS platform and integrates Google Translate for multilingual support. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms to prevent abuse, and implements cookie consent mechanisms compliant with GDPR. However, it lacks a dedicated security policy page and incident response contact details. Security headers are not explicitly detected, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its public service role with moderate to good technical and security maturity. Strategic enhancements in security transparency and header implementation would further strengthen its posture.

S

Strombuch s.r.o.

strombuch.cz

41

Strombuch s.r.o. is a Czech Republic based company specializing in comprehensive forestry services including forest renewal, wood harvesting, sales, and maintenance activities. Established in 2004, the company serves private owners, municipal properties, and state organizations primarily in the Podkrkonoší region. The website reflects a professional business with clear service offerings and contact information, positioning itself as a trusted local forestry service provider. Technically, the website employs standard web technologies such as HTML5, CSS, and JavaScript, with integration of Google Analytics and Tag Manager for visitor tracking. The site is mobile optimized and has a moderate performance profile. However, it lacks advanced security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. Security-wise, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact details suggest a legitimate business. No forms or data collection beyond analytics scripts are present, reducing attack surface but also limiting user interaction. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security headers, and transparency regarding data protection. The domain's WHOIS opacity slightly reduces trust but does not outweigh the positive business indicators.

D

DB SCHENKER

dbschenker.cz

66

DB SCHENKER operates as a leading global logistics and supply chain management provider, offering comprehensive services including land transport, air and ocean freight, contract logistics, and advanced 4PL solutions. The company is positioned as a major player in the transportation sector, supported by its parent company DSV. The website reflects a mature digital presence with multilingual support and customer portals, targeting business clients requiring sophisticated logistics solutions. Technically, the site employs modern web technologies such as web components, Adobe Launch for marketing and analytics, and enforces HTTPS with a strong Content Security Policy, indicating a robust security posture. While WHOIS data is unavailable, the website's professional presentation and linkage to known domains affirm its legitimacy. Overall, the site demonstrates high content quality, technical sophistication, and business credibility, with minor recommendations to enhance security headers and monitoring.

P

PREGIS, a.s.

pregis.cz

72

PREGIS, a.s. is a Czech-based technology company specializing in the implementation, migration, and operation of SAP information systems, particularly SAP S/4HANA. With over 20 years of experience, they provide comprehensive SAP-related services including custom software development, training, outsourcing, and customer support. Their clientele includes notable enterprises such as ŠKODA AUTO and Nikon CEE GmbH, positioning them as a trusted SAP partner in their market segment. The website reflects a professional and business-focused approach, targeting companies seeking SAP ERP solutions and digital transformation services. Technically, the website is built on WordPress CMS, utilizing modern JavaScript libraries and Google Tag Manager for analytics. It features a cookie consent mechanism compliant with GDPR, ensuring user privacy preferences are respected. The site is mobile-optimized with good SEO practices and moderate performance. However, some security best practices such as explicit security headers are not visibly implemented. From a security perspective, the site enforces HTTPS and uses cookie consent controls, but lacks published security policies or incident response information. The absence of WHOIS data for the domain reduces transparency and trustworthiness from a domain registration perspective. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is good but could be improved with additional headers and published policies. The overall risk assessment is moderate with a recommendation to enhance domain transparency, implement security headers, and provide clearer contact information. The website is safe for general audiences, with no adult or questionable content detected. Strategic improvements in security and compliance documentation would strengthen trust and professional credibility.

U

Ultra Clean Holdings, Inc.

uct.com

68

Ultra Clean Holdings, Inc. is a well-established company specializing in the development and supply of critical subsystems, components, and ultra-high purity cleaning and analytical services primarily for the semiconductor industry. The company offers integrated outsourced solutions for major subassemblies and advanced manufacturing services, positioning itself as a key player in the semiconductor supply chain. The website targets investors and industry professionals, providing comprehensive investor relations content and transparent financial information. Technically, the website is built on the Q4 Inc. investor relations platform using ASP.NET WebForms, with modern JavaScript libraries and Google analytics integrations. The site is mobile-optimized and accessible, with a clear navigation structure and good content quality. Security posture is strong with HTTPS, CSP headers, and reCAPTCHA on forms, though DNSSEC is not enabled and some security policies are not publicly disclosed. Overall, the website reflects a mature digital presence aligned with corporate standards and investor expectations.

A

AGRO CS a.s.

agrocs.cz

60

AGRO CS a.s. is a Czech Republic-based company operating in the manufacturing sector, primarily focused on agricultural machinery and services. The company targets agricultural professionals and businesses, positioning itself as a regional player in the agricultural manufacturing market. The website is professionally designed using the Wix platform, featuring structured data that enhances search engine understanding and user experience. Technical infrastructure is modern with HTTPS enforced, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data due to privacy protection limits full trust assessment, though the website content and presentation suggest a legitimate business. Security posture is moderate with room for improvement in headers and policy disclosures. Overall, the site is safe, business-focused, and suitable for its target audience.

J

JAKO

jakojedenteam.cz

58

JAKOjedenteam.cz is the official Czech Republic importer and retailer of the JAKO sportswear brand, offering a comprehensive range of sports clothing and equipment tailored for various sports disciplines. The website serves sports clubs, teams, and individual athletes, providing both retail and team outfitting services with customization options. The site demonstrates a professional e-commerce platform with clear navigation, product categorization by sport and team lines, and integration of marketing and analytics tools such as Google Analytics and Facebook SDK. The technical infrastructure is modern, leveraging popular JavaScript libraries and ensuring mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and explicit security policies are recommended. The absence of WHOIS data for the domain is a notable concern, impacting trust and transparency. Overall, the website presents a legitimate and professional business presence with moderate risk, primarily due to domain registration opacity.

B

Beetween

beetween.com

9

Beetween is a mature, medium-sized technology company founded in 2007, specializing in customizable online recruitment software solutions. Their platform offers a comprehensive suite of services including applicant tracking, talent sourcing, collaborative recruitment, and AI-driven recruitment optimization. The website is professionally designed, targeting recruiters and HR professionals seeking efficient recruitment management tools. Technically, the site is built on WordPress and integrates multiple marketing and analytics tools such as HubSpot, Microsoft Clarity, and Google Tag Manager, hosted by OVH sas. Security posture is generally good with HTTPS enforced and domain protections in place, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the website presents a credible business with room for improvement in privacy and security transparency.

W

web design software

mobiri.se

43

Mobirise is a well-established technology company founded in 2017 that offers a free, AI-powered no-code web design software targeting individuals and businesses seeking easy website creation solutions. The platform supports multiple operating systems including Windows, MacOS, Linux, and Android, and emphasizes features such as drag-and-drop editing, customizable templates, offline mode, and e-commerce integration. The company holds a strong market position with over 2.5 million users and positive expert and user reviews, reflecting a mature and trusted product offering. Technically, the website is built on modern web standards including Bootstrap 5 and uses Cloudflare for DNS management. The site is mobile-optimized, fast-loading, and SEO-friendly, with a clean and professional design. However, some compliance gaps exist due to the absence of visible privacy and cookie policies, and no explicit security headers are detected, which could be improved to enhance security posture and regulatory adherence. From a security perspective, the site uses HTTPS with good SSL configuration and does not expose sensitive data or vulnerable libraries. The domain registration is consistent and long-term, supporting the legitimacy of the business. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Overall, the security posture is good but could benefit from additional security headers and formalized privacy and incident response policies. The overall risk is low with strong business credibility and technical maturity. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and publishing vulnerability disclosure and incident response information to further enhance trust and compliance.

Register.com operates as a domain registration and web services provider integrated under the Network Solutions and Newfold Digital umbrella. The company offers a comprehensive suite of services including domain registration, web hosting, website building, professional email, SSL certificates, and online marketing solutions targeted primarily at small businesses and entrepreneurs. The website reflects a mature digital presence with consistent branding and a professional user experience. Technically, the site leverages Adobe Experience Manager as its CMS, uses modern web technologies, and includes accessibility and privacy compliance tools such as AudioEye and OneTrust. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy are absent. WHOIS data for the domain is unavailable or protected, which slightly reduces transparency but does not detract significantly from the site's legitimacy given its association with Network Solutions. Overall, the site is well-structured, secure, and compliant with privacy regulations, making it a trustworthy platform for domain and web services.

P

PowerPlay Studio

powerplay.studio

10

PowerPlay Studio is a Slovakia-based game development company specializing in sports games with a global player base. Founded in 2007, it has developed multiple popular titles and maintains a professional web presence with detailed information about its games, leadership, and history. The company participates in notable programs such as the Google for Startups Accelerator, enhancing its market credibility. Technically, the website is modern, mobile-optimized, and uses Google Tag Manager for analytics, though it lacks some advanced security headers and cookie consent mechanisms. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but improvements in security headers and privacy compliance are recommended. WHOIS data is unavailable due to privacy protection, which is typical for such businesses and does not raise immediate concerns. Overall, the website is professional, trustworthy, and well-positioned in the sports gaming industry.

I

International Judo Federation

ijf.org

11

The International Judo Federation (IJF) operates a comprehensive and professionally designed website serving as the official hub for the global judo community. The site offers extensive content including news, event calendars, world rankings, video libraries, and educational resources, positioning IJF as a leading authority in the sport of judo worldwide. The federation's presence in over 200 countries and its Olympic status since 1964 underscore its global influence and reach. Technically, the website employs modern web technologies such as JavaScript, CSS3, and HTML5, with integrations like Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is hosted behind Cloudflare CDN, ensuring performance and security benefits. Mobile optimization and accessibility are well addressed, providing a good user experience across devices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting a mature approach to user privacy and data protection. However, explicit security headers and a public security policy or vulnerability disclosure page are absent, representing areas for improvement. The WHOIS data is unavailable or privacy-protected, which is common for organizations of this nature and does not detract from the site's legitimacy. Overall, IJF.org demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards. The site is safe for general audiences, free from adult or questionable content, and well-positioned to serve its community effectively.

B

BFMTV

bfmtv.com

10

BFMTV is a leading French news media company providing continuous live news coverage, video content, and radio streaming services. The website serves a broad general audience interested in political, social, economic, sports, and international news. It operates a professional and well-branded digital platform with extensive multimedia content and strong social media presence. Technically, the site uses modern JavaScript libraries, consent management tools, and analytics services to deliver a responsive and engaging user experience. Security posture is generally good with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are not clearly published. The absence of WHOIS data is unusual but does not detract significantly from the site's legitimacy given its market position and content quality. Overall, BFMTV demonstrates a mature digital presence with room for improvement in transparency and security best practices.

F

France Kyudo

kyudo.fr

50

France Kyudo is a national federation dedicated to the traditional Japanese martial art of Kyudo, or Japanese archery, operating primarily in France. The website serves as an informational and community hub for practitioners and enthusiasts, promoting the art and philosophy of Kyudo. The site is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as JavaScript, CSS, and HTML5. While the site is visually consistent and provides relevant content, it lacks critical privacy and contact information, which impacts its overall trustworthiness. Security posture is basic with HTTPS enabled but missing advanced security headers and policies. The absence of WHOIS data raises concerns about domain registration legitimacy, although the site content appears genuine and focused on its niche audience.

F

Fondation France Judo

fondationfrancejudo.fr

55

Fondation France Judo is a French non-profit organization dedicated to supporting social and inclusive projects through sports sponsorship, specifically judo. The website is built on the Wix platform and presents a professional and consistent brand image aligned with its parent organization, Fondation du Sport Français. The site targets donors and supporters interested in contributing to sports-related social initiatives. Technically, the website uses Wix's Thunderbolt framework and standard web technologies, offering moderate performance and good mobile optimization. However, it lacks advanced SEO and accessibility features. Security posture is basic with HTTPS implied but no visible security headers or policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the website is functional and trustworthy in content but requires improvements in security and privacy disclosures.

D

Dojo de Paris | Evénements, location, spectacles, salons

dojodeparis.com

46

The website www.dojodeparis.com appears to represent a small-scale martial arts dojo or school, likely based in France given the language and domain name. The site is built on the Wix platform, utilizing standard Wix scripts and assets, indicating a basic level of digital maturity. However, the website content is minimal, with no clear business descriptions, contact information, or privacy policies, which limits its professional presentation and user trust. Technically, the site uses HTTPS but lacks advanced security headers and privacy compliance features. The absence of WHOIS registration data raises concerns about the domain's legitimacy and trustworthiness. Overall, the site is accessible without WAF or security challenges but scores low on business credibility and privacy compliance. Strategic improvements are needed to enhance security posture, legal compliance, and business transparency.

F

France Judo

itinerairedeschampions.fr

55

The website 'Itinéraire des Champions - France Judo' serves as a promotional platform for a judo event across France featuring champions from France Judo. The site is built on the Wix platform, leveraging standard Wix scripts and polyfills to ensure compatibility and moderate performance. The content is well-structured and targeted towards judo enthusiasts and the general public interested in sports events. However, the site lacks critical privacy and cookie policies, as well as explicit contact information, which impacts its privacy compliance and business credibility scores. Security posture is moderate with no advanced security headers detected, though the use of Sentry for error monitoring is a positive indicator. Overall, the domain registration is privacy protected, which is typical for small event sites, and no suspicious patterns were found. The website is accessible without any WAF or blocking mechanisms.

The website whale.camera presents a minimalistic single-page canvas animation with no textual content, metadata, or business information. The absence of privacy policies, contact details, or any structured data indicates it is likely a placeholder or experimental site rather than an operational business platform. The WHOIS data is unavailable or unsupported for this domain's TLD, providing no registrar, registrant, or domain age information, which further limits trust and legitimacy assessment. Technically, the site uses basic HTML5 and JavaScript with the Canvas API to render a dynamic animation. There is no evidence of modern frameworks, CMS, or third-party integrations. Performance is likely moderate due to the animation, but accessibility and SEO are poor given the lack of content and metadata. From a security perspective, no HTTPS or security headers information is available, and no privacy or cookie policies are present. The site does not collect user data or have forms, reducing immediate risk but also indicating a lack of compliance with common privacy standards. The domain's registration opacity and minimal content reduce overall trustworthiness. Overall, the site scores low on content quality, business credibility, and privacy compliance, with moderate technical implementation. Strategic recommendations include implementing HTTPS, adding business and contact information, publishing privacy and cookie policies, and improving accessibility and SEO to enhance trust and compliance.

B

Bit Flip LLC

darkvisitors.com

62

Dark Visitors is a technology startup focused on providing real-time analytics and management tools for AI agents, crawlers, scrapers, and large language model (LLM) referrals on websites. Their platform offers features such as agent analytics, LLM referral tracking, automatic robots.txt generation, and Agent Communication Protocol (ACP) shop optimization to help businesses understand and leverage AI and bot traffic. The company positions itself as a niche provider in the emerging market of AI-driven web traffic analysis, targeting businesses and website owners who want to optimize their digital presence in the AI era. Technically, the website is built using modern JavaScript libraries including jQuery, Chart.js, Firebase, and Highlight.js, hosted on Squarespace infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices. However, some accessibility features appear basic, and there is room for improvement in security headers and privacy compliance mechanisms. From a security perspective, the site enforces HTTPS and employs agent authentication to detect spoofed visits, alongside automated robots.txt updates to block malicious bots. Despite these strengths, the absence of explicit security headers, cookie consent mechanisms, and published security or incident response policies indicates moderate maturity in security posture. No critical vulnerabilities or suspicious WHOIS patterns were detected. Overall, Dark Visitors presents a professional and trustworthy online presence with a solid technical foundation and a clear business focus. Strategic enhancements in privacy compliance and security transparency would further strengthen their market credibility and user trust.

Physics World Jobs is a specialized online job board platform focused on physics and engineering careers, operated under the reputable IOP Publishing Ltd umbrella. The platform offers a comprehensive range of services including job listings, job alerts, employer job posting, and career advice, targeting a global audience of physics professionals, researchers, and students. The website leverages the strong Physics World brand to position itself as a trusted resource within the scientific community. Technically, the site employs modern JavaScript libraries, integrates Google services such as reCAPTCHA and Tag Manager, and uses Madgex job board software, indicating a mature and well-supported infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, the site enforces HTTPS, uses bot protection, and implements cookie consent mechanisms, though explicit security headers could be more visible. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its professional presentation and association with IOP Publishing. Overall, the site is a credible, well-maintained platform serving a niche professional market.

The website sconto.cz is currently inaccessible beyond an AWS WAF CAPTCHA human verification challenge page, which blocks access to the actual site content. This prevents extraction of business, contact, or policy information. The domain is registered since 2000 via REG-ACTIVE24 with AWS name servers, indicating a legitimate and established presence. The technical infrastructure employs AWS WAF and CAPTCHA for bot mitigation, reflecting a focus on security at the perimeter level. However, the lack of visible content, privacy policies, or contact details limits the ability to assess compliance and business credibility. Overall, the site is protected but not accessible for detailed analysis.

R

Right Solar

rightsolar.sk

58

Right Solar is a Slovak-based company specializing in the sale and installation of photovoltaic solar panels for electricity production, targeting both residential and commercial customers. The company positions itself as a provider of professional, affordable, and turnkey solar energy solutions, emphasizing environmental benefits and cost savings. Their website reflects a regional presence with partner links to related companies in the Czech Republic and Poland. Technically, the website is built on WordPress with modern frameworks like Bootstrap and Materialize, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms and terms of service. Overall, the website is professional, content-rich, and trustworthy, supporting the company's business credibility.

T

Timely

gettimely.com

65

Timely is a professional SaaS provider offering salon booking and payment software designed to enhance client experience and streamline salon operations. The website positions Timely as a trusted solution for salons worldwide, emphasizing ease of use, comprehensive features, and client retention. The technical infrastructure leverages modern web technologies including React, Google Tag Manager, Microsoft Application Insights, and Osano for consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforced and privacy mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. Overall, the site demonstrates a high level of professionalism and compliance, suitable for its target market.

H

HONOR

honor.com

65

HONOR is a leading global manufacturer of smart devices, including smartphones, tablets, laptops, and wearables, targeting the Finnish market with localized content. The website is professionally designed, mobile-optimized, and provides a good user experience with clear navigation and product categorization. The technical infrastructure leverages modern web technologies such as Google Tag Manager, Google Analytics, and TrustArc for consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforced and privacy compliance mechanisms in place, including cookie consent and GDPR-aligned privacy policies. However, the absence of publicly available WHOIS data and lack of explicit contact or security policy information slightly reduce business credibility. Overall, the site is trustworthy and well-maintained, suitable for consumer electronics retail and brand engagement.

Brioni S.p.A. is a prestigious Italian luxury menswear brand specializing in tailored clothing, bespoke services, and made-to-measure offerings. Established in 1945 and now part of the Kering group, Brioni maintains a strong market position in the high-end fashion retail sector, targeting discerning consumers seeking exclusive and high-quality apparel. The website serves as an official e-commerce platform showcasing collections, bespoke services, and brand heritage. Technically, the site is built on modern web technologies including Next.js and React, hosted on a robust CDN infrastructure (Akamai), and optimized for performance and mobile responsiveness. Security posture is strong with HTTPS enforcement, security headers, and a vulnerability disclosure policy, though some formal security policies and incident response details could be more explicit. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the site reflects a mature digital presence aligned with luxury brand standards, with no signs of blocking or WAF interference, and a high trustworthiness rating.

FENDI is a renowned luxury fashion brand established in 1925, operating under the LVMH group. The website serves as the official online boutique offering a wide range of products including fashion collections for women, men, kids, and home. It targets a global audience with a focus on high-end luxury consumers. The business model centers on e-commerce retail complemented by personalized shopping services and boutique appointments. The site demonstrates strong branding consistency and high-quality content aligned with its market position. Technically, the website leverages a modern e-commerce platform (Demandware/Salesforce Commerce Cloud) with integrations for advanced search (Algolia), personalization (Dynamic Yield), and analytics (Google Tag Manager, Matomo, AWS RUM). The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforced, multiple security headers, and encrypted payment processing. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site is trustworthy and professionally managed, though WHOIS data is unavailable likely due to privacy protections. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and enhancing transparency on data retention to further strengthen trust and compliance.

F

Florea Holand s.r.o.

florea.cz

55

Florea Holand s.r.o. operates Florea.cz, the largest online florist in the Czech Republic, specializing in fresh flower sales and nationwide delivery. The company targets consumers seeking quality bouquets and floral accessories, offering a broad product range and strong customer support. The website demonstrates a mature e-commerce platform with professional design, clear navigation, and mobile optimization. Technically, it employs modern JavaScript libraries, tracking tools, and analytics services, with a focus on user consent and privacy compliance. Security posture is solid with HTTPS and secure forms, though some security headers and policies could be improved. The absence of WHOIS data slightly impacts trust but is mitigated by visible certifications and contact transparency. Overall, Florea.cz presents a trustworthy, professional retail platform with room for enhanced security documentation.

P

PASSERINVEST GROUP, a.s.

pobavmeseotom.cz

48

The website 'Pobavme se o tom' is a professionally designed platform operated by PASSERINVEST GROUP, a.s., focusing on real estate development and community engagement in the Brumlovka area of Prague 4. It provides detailed information about investments, urban planning, environmental initiatives, and local community activities, targeting residents, workers, and visitors of the area. The site demonstrates a strong market position as a significant real estate developer with a clear business model centered on urban development and community relations. Technically, the website is built on the ProcessWire CMS platform, utilizing modern web technologies including HTML5, CSS3, JavaScript, jQuery, and libraries like Fancybox and ScrollTrigger. The site is mobile-optimized with good SEO practices and moderate performance. Hosting is provided by Active24, consistent with the domain registrar data. No major technical issues or vulnerabilities were detected, though security headers are absent and could be improved. From a security perspective, the site enforces HTTPS and does not expose sensitive data or use vulnerable libraries. However, it lacks visible privacy and cookie policies, security policies, and incident response information, which are important for compliance and user trust. No tracking or analytics scripts were detected, indicating minimal user tracking. The WHOIS data confirms the domain's legitimacy and consistency with the business. Overall, the website is trustworthy, professional, and safe for general audiences. Strategic improvements include adding privacy and cookie policies, implementing security headers, and publishing security and incident response information to enhance compliance and user confidence.

K

Křesťanská střední škola, základní škola a mateřská škola Elijáš

elijas.cz

48

The website www.elijas.cz represents a Christian educational institution located in Prague, offering kindergarten, primary, and secondary education along with associated services such as a school canteen and after-school programs. The institution is operated by the České sdružení CASD, a recognized Christian association. The website is well-structured, professionally designed, and targets parents and students seeking faith-based education in the Czech Republic. Technically, the site uses modern web standards with HTML5, CSS3, and JavaScript, and integrates Matomo analytics for user tracking with a cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is good with HTTPS enforced and no visible vulnerabilities, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website content and contact information support legitimacy. Overall, the site is a credible digital presence for the educational institution with room for security and compliance improvements.

B

Balance Club Brumlovka

balanceclub.cz

50

Balance Club Brumlovka is a premium fitness and wellness club based in the Czech Republic, offering a wide range of services including fitness, physiotherapy, spa, and psychological support. The club positions itself as a top-tier facility comparable to international standards, targeting health-conscious adults seeking comprehensive wellness solutions. The website reflects a professional and consistent brand image with clear navigation and relevant content for its audience. Technically, the site uses modern web technologies such as Google Tag Manager and Leaflet.js for maps, and it is well-optimized for mobile devices with good SEO practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements, though it lacks advanced security headers and explicit incident response policies. The absence of WHOIS data reduces domain trust but does not detract significantly from the website's professional presentation and business legitimacy. Overall, the site demonstrates a solid digital presence with room for improvement in security transparency and domain registration clarity.

Krčák žije is an online magazine dedicated to the Krčský les area in Prague, providing local news, event calendars, interactive maps, and community information. It is initiated and supported by Passerinvest Group, a real estate developer active in the region. The website serves local residents and visitors interested in nature, sports, and cultural activities. Technically, the site uses modern web technologies including Bootstrap, jQuery, Font Awesome, and integrates Google Analytics and Facebook Pixel for tracking, with a cookie consent mechanism in place. The site is hosted on Czech infrastructure with consistent WHOIS data indicating legitimacy. Security posture is good with HTTPS and form validation, but lacks some advanced security headers and published security policies. Privacy compliance is basic, with no explicit privacy policy or terms of service found. Overall, the website is professional, trustworthy, and safe for general audiences.

T

TILL CONSULT a.s.

duna.cz

50

TILL CONSULT a.s. operates the website duna.cz, offering a suite of economic and accounting software products under the DUNA brand, targeting small to medium businesses, accounting firms, and specialized sectors such as medical offices and energy distributors. The company has a strong market presence with 28 years of experience and a comprehensive product portfolio including DUNA BUSINESS, TOP, SMART, TRADING, and related web extensions. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content including testimonials and industry news. Technically, the site uses modern JavaScript libraries, Bootstrap framework, and integrates Google Tag Manager and Seznam retargeting for marketing purposes. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and certifications are not published. Contact information is clearly provided with phone, email, and physical address. Overall, the site reflects a mature business with a solid digital presence but could improve transparency on privacy and security policies.

E

EPLAN

eplan.cz

57

EPLAN is a leading global provider of software and services focused on electrical engineering, automation, and mechatronics. The company operates a professional, multilingual website powered by TYPO3 CMS, reflecting a mature digital infrastructure with integrated marketing and analytics tools such as Google Tag Manager and HubSpot. The website demonstrates good design quality, mobile optimization, and clear navigation, targeting industrial and engineering professionals. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and vulnerability disclosures are not publicly available. Privacy compliance is supported by a cookie consent mechanism, but a formal privacy policy page was not detected in the provided content. Overall, the domain appears legitimate and professionally managed, though WHOIS data is privacy protected or unavailable, which is common for enterprises. Strategic recommendations include publishing detailed privacy and security policies, adding vulnerability disclosure mechanisms, and enhancing accessibility features to further strengthen trust and compliance.

R

Rittal Czech, s.r.o.

rittal.cz

66

Rittal Czech, s.r.o. operates a professional corporate website focused on modular system solutions for industrial and IT applications, including enclosures, power distribution, climate control, IT infrastructure, software, and automation. The company is positioned as a global leader with a strong modular system offering and is part of the Friedhelm Loh Group. The website is well-structured, content-rich, and targets industrial and IT professionals seeking advanced system solutions. Technically, the site uses modern web technologies such as Vue.js and JavaScript, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit incident response or security policy pages were found. WHOIS data is unavailable, which is unusual but likely due to privacy protection, and does not detract from the site's legitimacy given the strong corporate branding and parent company association. Overall, the site presents a trustworthy and professional digital presence.

O

OSRAM Ceska republika s.r.o.

osram.cz

72

OSRAM Ceska republika s.r.o. operates a professional corporate website focused on innovative and sustainable lighting solutions, targeting B2B customers in automotive, industrial, and entertainment sectors. The company is positioned as a global leader in optical and lighting technologies, supported by its parent company ams OSRAM. The website provides comprehensive product information, contact details, and links to global and regional OSRAM sites, reflecting a mature digital presence. Technically, the website employs modern JavaScript libraries, Algolia search, and a consent management platform (Usercentrics), alongside Google Tag Manager for analytics and tracking. The site is mobile-optimized with good SEO practices and accessible navigation, although accessibility features are basic. Security posture is solid with HTTPS enforced and consent mechanisms in place, but lacks explicit security headers and dedicated security policy pages. The absence of WHOIS data limits domain registration trust analysis, but the website's professional branding, structured data, and consistent content strongly indicate legitimacy. No adult or questionable content is present, and privacy compliance is well addressed with clear policies and consent banners. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, with room for improvement in security transparency and domain registration visibility.

B

BONEGA, spol. s r.o.

bonega.cz

51

BONEGA, spol. s r.o. is a Czech company specializing in the development, manufacturing, and distribution of high-quality electrical installation materials and water meters. The company emphasizes innovation with patented products and serves a B2B audience primarily in the Czech Republic and Central Europe. The website reflects a medium-sized enterprise with a history dating back to 2000, consistent with the domain registration data. The business model focuses on technical product development and distribution with additional services such as public customs warehousing. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking, hosted behind Cloudflare DNS. However, the site lacks modern CMS, mobile optimization, and accessibility features, indicating room for digital maturity improvement. Security posture is moderate; while Cloudflare DNS is used, no HTTPS enforcement or security headers are visible, and no privacy or cookie policies are present, which impacts compliance and trust. Overall, the site is functional but would benefit from enhanced security, privacy compliance, and technical modernization to improve user experience and regulatory adherence.

A

AXIMA, spol. s r. o.

axima-obchod.cz

63

AXIMA, spol. s r. o. is a Czech-based medium-sized company specializing in wholesale distribution of electrotechnical materials and industrial automation components. With over 24 years of market presence, it serves primarily B2B customers in the Czech Republic and Slovakia, offering a wide range of products including power supplies, connectors, sensors, and safety equipment. The website reflects a professional and well-structured digital presence with clear product categorization and manufacturer partnerships. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Analytics and Google Tag Manager, and is mobile optimized with good SEO practices. Security posture is adequate with HTTPS enforced but lacks some recommended security headers like Content-Security-Policy and X-Frame-Options. Privacy and cookie policies are not explicitly found, indicating room for compliance improvement. WHOIS data is unavailable, limiting domain trust verification, but the website content and contact information suggest a legitimate business. Overall, the site scores well in content quality and business credibility but should enhance privacy compliance and security headers to improve trust and compliance.