Security Directory

C

Continental

continental-partner.com

60

Continental Aftermarket is a division of Continental AG, a global leader in automotive parts and services. The website offers a comprehensive catalog of automotive spare parts, tires, workshop equipment, and related services, targeting both B2B and B2C customers worldwide. The site features a partner finder tool to locate authorized distributors and partners. Technically, the website employs modern tracking and analytics tools including Google Tag Manager, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, alongside a consent management platform to comply with cookie regulations. Security is robust with HTTPS enforced and a Content Security Policy in place, though additional security headers could enhance protection. The absence of WHOIS data is unusual and warrants further investigation, but the website's branding and content strongly indicate a legitimate enterprise presence. Privacy policy and terms of service pages are not explicitly found on this URL, which may impact compliance perception. Overall, the site is professionally designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

C

Communauté de Communes Pyrénées Cerdagne

pyrenees-cerdagne.fr

58

The website www.pyrenees-cerdagne.fr represents the Communauté de Communes Pyrénées Cerdagne, a local government entity serving the Pyrénées Cerdagne region in France. It provides public services including urban planning, waste management, cultural activities, and cross-border cooperation. The site targets residents and visitors of the region, offering information and access to community resources. The business model is typical of a public sector organization funded by government budgets. Technically, the site is built on Drupal 7 with Angular integration, leveraging modern mapping libraries such as Leaflet and Google Maps API. It uses Matomo for analytics and Sirdata's consent framework for cookie management, indicating a moderate level of digital maturity and privacy awareness. The site is mobile-optimized and has a clear navigation structure. From a security perspective, HTTPS is enforced, and cookie consent mechanisms are in place. However, no explicit security headers were detected in the HTML content, and no public security or incident response policies are published. The absence of WHOIS data is unusual for a .fr domain but does not appear to impact the legitimacy of the site based on content and branding. Overall, the website is professional, trustworthy, and serves its public sector purpose well. Strategic recommendations include enhancing security headers, publishing privacy and security policies explicitly, and improving WHOIS transparency if possible.

C

Cannes Lérins TV et Radio

lerinstvradio.fr

49

Cannes Lérins TV et Radio operates as a local media outlet serving the Bassin Cannois region in France, providing live television and radio streaming, podcasts, and local news content. The website targets residents and visitors interested in regional media and cultural events. The business model focuses on content delivery through multiple channels including online streaming and social media engagement. The company appears to be a small-sized media entity, recently founded in 2024, with a consistent brand presence and active content updates.

1

1618 Investimentos

1618investimentos.com

55

1618 Investimentos is a Brazilian asset management company regulated by CVM and adherent to ANBIMA self-regulation codes, offering investment management, multi-family office services, and ESG commitments. The company operates under the Grupo CBH umbrella, targeting private and institutional clients with a holistic and entrepreneurial approach to wealth management. The website is built on WordPress with a modern tech stack including Yoast SEO and WPML for multilingual support. It features good design quality, mobile optimization, and clear navigation. Security posture is adequate with HTTPS enabled but lacks explicit security headers and published security policies. Privacy compliance is partial with a cookie consent mechanism but no explicit privacy policy page found. Contact information is clearly presented with phone and physical address details. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

V

Vercom S.A.

vercom.pl

45

Vercom S.A. is a Polish technology company specializing in cloud-based communication platforms (CPaaS) that enable businesses to engage with their audiences via multiple channels including email, SMS, push notifications, and OTT messaging. Established in 2005, Vercom has positioned itself as a significant player in the Central and Eastern European market, offering scalable and reliable communication solutions supported by flexible APIs and strong customer support. The website reflects a mature digital presence with multilingual support, active content updates, and integration with reputable marketing and analytics tools. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the company demonstrates high business credibility and technical competence, making it a trustworthy provider in the CPaaS sector.

O

Obec Zastávka

zastavka.cz

54

Obec Zastávka operates as a local government entity serving approximately 2,500 residents in the Brno-venkov district of the Czech Republic. The website provides comprehensive municipal information including news, public notices, official documents, and community services. The site is well-structured, accessible, and includes features such as weather updates and map integration to enhance user experience. The business model focuses on public service and information dissemination to local citizens and visitors. Technically, the website is built on WordPress CMS using the LSVR TownPress theme, with integrations of Google Maps and OpenWeatherMap APIs. It employs modern web technologies including jQuery and responsive design, ensuring good performance and mobile optimization. Accessibility is addressed through a dedicated toolbar offering contrast and font adjustments. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. While explicit security headers and incident response policies are not published, no critical vulnerabilities or exposures were detected. The domain registration is consistent and longstanding, supporting the site's legitimacy. Overall, the website demonstrates a solid digital presence for a municipal government, balancing usability, compliance, and security. Strategic improvements could include publishing explicit security policies and enhancing security headers to further strengthen the security posture.

P

Peatix Inc.

peatix.com

71

Peatix Inc. operates a well-established online platform specializing in event ticketing and community management, targeting event organizers and attendees globally. Founded in 2010, the company offers tools to promote, manage, and sell tickets for events, emphasizing simplicity, transparency, and customer support. The website reflects a professional and consistent brand image with a clear focus on its core business services. Technically, the website leverages modern JavaScript frameworks such as Vue.js, integrates Google Tag Manager and Facebook SDK for analytics and marketing, and is hosted on Amazon AWS infrastructure. The site is mobile-optimized and employs cookie consent mechanisms compliant with GDPR, enhancing user privacy and regulatory adherence. From a security perspective, Peatix enforces HTTPS, includes anti-clickjacking measures, and provides granular cookie consent options. However, there is room for improvement by enabling DNSSEC, adding explicit security headers, and publishing a formal security policy and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, Peatix presents a secure, compliant, and professionally maintained online presence with moderate to high trustworthiness. Strategic enhancements in security transparency and contact information disclosure would further strengthen its posture and user confidence.

K

Klinika Cellthera

celltheraclinic.cz

48

Klinika Cellthera is a specialized healthcare provider focused on regenerative medicine, offering advanced diagnostic and therapeutic services such as stem cell therapies, immunology support, oncology adjunct treatments, and lifestyle counseling. The clinic positions itself as a leading provider in the Moravia region with over 25 years of experience, targeting patients seeking innovative and holistic medical solutions. The website is professionally designed, content-rich, and compliant with GDPR and cookie regulations, providing clear contact information and patient testimonials that enhance trust. Technically, the site runs on WordPress with modern plugins and integrates Google Analytics and retargeting services, reflecting a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and incident response information are missing. Overall, the site is trustworthy, well-maintained, and aligned with its business goals.

B

bso Berufsverband für Coaching, Supervision und Organisationsberatung

bso.ch

67

The bso (Berufsverband für Coaching, Supervision und Organisationsberatung) is a Swiss professional association dedicated to setting and maintaining quality standards in coaching, supervision, and organizational consulting. With over 1400 members, it serves as a key industry body providing membership services, education partnerships, publications, and events to support professionals and clients in these fields. The website is well-structured, professionally designed, and targets coaching professionals and their clients within Switzerland. Technically, the site is built on TYPO3 CMS and leverages modern web technologies including Google Fonts, Google Maps API, and various JavaScript libraries. It implements HTTPS with good SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is solid but could be improved by adding security headers and publishing a formal security policy. Overall, the site is trustworthy, compliant, and provides a positive user experience.

Z

Zátiší Catering Group a.s.

freshandtasty.cz

46

Fresh and Tasty is a catering service company operating primarily in Prague, offering corporate canteens, school cafeterias, and office catering. It is part of the larger Zátiší Group, a recognized hospitality entity. The website is professionally designed with clear navigation, multimedia content, and detailed service descriptions targeting corporate and educational clients. Technically, the site uses ASP.NET WebForms and Kentico CMS, integrates Google Maps and analytics, and provides cookie consent mechanisms compliant with GDPR. Security posture is moderate with CSRF protections and cookie consent but lacks explicit security headers and incident response information. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not significantly impact legitimacy. Overall, the site is trustworthy and well-positioned in its market segment.

S

SELM MORAVA, S.R.O.

selm-morava.cz

56

SELM MORAVA, S.R.O. is a Czech-based company specializing in wholesale and retail sales of sanitary equipment and related installation materials, with a business tradition dating back to 1996. The company targets both B2B and B2C customers within the Czech Republic, positioning itself as an established regional player in the retail sector. The website reflects this business focus with clear descriptions of services and product offerings, including a dedicated e-shop link for online sales. Technically, the website is built on a custom CMS platform using modern JavaScript libraries such as jQuery and Swiper.js, and integrates Google Maps API for location services. The site demonstrates moderate performance and good mobile optimization, though SEO and accessibility features are basic. The presence of cookie consent mechanisms and privacy policy pages indicates some level of privacy compliance, albeit at a basic level. From a security perspective, the website employs HTTPS and has implemented cookie consent, but lacks explicit security headers and published security or incident response policies. No vulnerability disclosure or security.txt files are present, and contact information is limited to a web form without direct email or phone contacts. These gaps suggest room for improvement in security posture and transparency. Overall, the website is professional and trustworthy with a moderate security and privacy compliance level. Strategic enhancements in security policies, contact transparency, and technical security controls would strengthen the company's digital maturity and risk management posture.

W

WQXR

wqxr.org

66

WQXR is a prominent classical music radio station based in New York, operated under the umbrella of New York Public Radio. It offers a rich array of classical music programming, live streaming, podcasts, and cultural content targeting classical music enthusiasts and the New York metropolitan audience. The station is well integrated within a network of related media entities, enhancing its market presence and content diversity. Technically, the website leverages modern web technologies including Ember.js, Google Analytics, and various marketing and tracking tools, providing a responsive and user-friendly experience. Security-wise, the site employs HTTPS and Content Security Policy, indicating a good security posture, though explicit privacy and cookie policies are not evident in the provided content. The absence of WHOIS data limits domain trust verification but the overall branding and content quality suggest legitimacy. Strategic recommendations include enhancing privacy compliance transparency, publishing security policies, and improving contact information visibility to strengthen trust and compliance.

A

Allrisk

allrisk.cz

48

Allrisk is a Czech Republic based company specializing in insurance, real estate, and financial services targeting families and individuals. Their website demonstrates a professional digital presence with a comprehensive portfolio of services including travel insurance, property insurance, leasing, investments, and client support. The company leverages modern web technologies such as WordPress with Elementor and Yoast SEO, and integrates Google services for maps and analytics. Security posture is generally good with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit privacy/cookie policies. WHOIS data is unavailable, which limits domain trust assessment. Overall, the website is well-structured and user-friendly, serving its target audience effectively.

Grupo La Moderna is a large Mexican food manufacturing company specializing in pastas, cookies, and flours with a strong market presence in Mexico. Their website provides comprehensive product information, recipes, nutritional guidance, and corporate social responsibility content, targeting general consumers and business partners. The company emphasizes sustainable development and social value in its operations. Technically, the website is built on Joomla CMS with modern JavaScript libraries and is mobile optimized with moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and dedicated security policies. Privacy compliance is basic with a privacy policy available but not fully GDPR compliant. Incident response contact is provided via a whistleblower email and phone number. Overall, the website is professional, trustworthy, and well-branded, supporting the company's credibility and market position.

P

ProTexas Industry

protexasindustry.com

53

ProTexas Industry operates as a specialized information platform targeting investors interested in industrial real estate and manufacturing opportunities in Texas. The platform offers detailed data on industrial parks, properties, and investment news, positioning itself as a key resource for foreign direct investment in Texas. The website is professionally designed with modern technologies such as Bootstrap, jQuery, and Google Maps API, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and CSRF protections, but lacks comprehensive security headers and explicit privacy and cookie policies. The absence of WHOIS data reduces transparency but does not negate the site's legitimacy given its professional presentation and active content. Overall, the site is a credible resource for its niche audience but would benefit from enhanced privacy compliance and security disclosures.

C

CCI FRANCE INTERNATIONAL

ccifi.net

62

CCI France International operates as a network of French chambers of commerce abroad, with this website focusing on the Japan chapter. The organization supports French businesses in expanding and establishing themselves in the Japanese market through services such as market analysis, recruitment, and event organization. The site is professionally designed, multilingual, and integrates modern web technologies including TYPO3 CMS and Google analytics tools. Privacy and cookie compliance mechanisms are implemented, reflecting GDPR adherence. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy or indicates this may be a demo or staging environment. No direct company contact emails or phone numbers are visible, which may impact user trust and business credibility.

B

Bike Fun International

superiorbikes.com

61

Superior Bikes, operated by Bike Fun International, is a well-established premium bicycle brand specializing in high-performance mountain, gravel, and electric bikes. With over 30 years of history rooted in Czech design and development, the company targets cycling enthusiasts and professional athletes seeking quality and innovation. The website serves as a product showcase and information portal, supporting a dealer-based sales model. Technically, the site leverages modern frameworks like Next.js and integrates advanced features such as 360-degree product views and Google Maps, delivering a fast, mobile-optimized user experience. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers and explicit policies could be enhanced. Privacy compliance is addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site reflects a professional, trustworthy brand with strong market positioning in the transportation sector.

M

MEZINÁRODNÍ CENTRUM KLINICKÉHO VÝZKUMU FNUSA A LF MU (ICRC)

fnusa-icrc.org

65

The International Clinical Research Center (ICRC) is a joint clinical research and education institution affiliated with the Faculty Hospital St. Anne's in Brno and the Medical Faculty of Masaryk University. It focuses on advancing medical research, education, and industrial cooperation, positioning itself as a key regional player in healthcare innovation. The website reflects a professional and well-structured digital presence, targeting medical researchers, healthcare professionals, students, and the general public interested in medical advancements. Technically, the website is built on WordPress using the Enfold theme, enhanced with Yoast SEO and Matomo analytics for privacy-conscious visitor tracking. It integrates Google Maps and cookie consent mechanisms, demonstrating a moderate to good level of digital maturity. Performance and mobile optimization are adequate, though accessibility could be improved. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks some recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration details slightly impacts trustworthiness, but the site's affiliations and certifications, such as the HR Award, support its legitimacy. Overall, the ICRC website is a secure, privacy-compliant, and professionally maintained platform that effectively serves its audience. Strategic improvements in security headers, accessibility, and transparency of domain registration would further enhance its trust and resilience.

C

COFFEEXP

bcncoffeeguide.com

62

BCNCOFFEEGUIDE is a niche online specialty coffee guide focused primarily on Barcelona, Europe, and global specialty coffee spots. The website offers a comprehensive directory of coffee shops, event listings, B2B coffee offers, and related services such as coffee jobs and gear sales. It targets coffee enthusiasts, tourists, and local consumers interested in specialty coffee experiences. The business operates on a small scale with a focused market position in the hospitality sector. Technically, the website is built on WordPress using the Citadela theme and plugins, integrating Google Maps for location services and Google Analytics for traffic monitoring. The hosting provider is Bluehost Inc., and the site uses HTTPS with a good SSL configuration. Security posture is moderate with room for improvement in security headers and DNSSEC implementation. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional, well-branded, and trustworthy, with safe content suitable for general audiences.

The Konrad-Adenauer-Stiftung e.V. is a well-established German political foundation focused on promoting political education, democracy, and social market economy principles both nationally and internationally. The website reflects a professional and consistent brand presence with comprehensive content aimed at a general audience interested in political and social topics. The foundation maintains an active presence on multiple social media platforms, enhancing its outreach and engagement. Technically, the website is built on the Liferay CMS platform, utilizing modern web technologies including jQuery, React, and Alloy UI. The site demonstrates good mobile optimization, accessibility, and SEO practices, with moderate performance characteristics. Analytics are handled via Matomo with a consent mechanism in place, indicating a respect for user privacy. From a security perspective, the site enforces HTTPS, employs Content Security Policy with nonce, and uses secure form submissions. However, explicit privacy policies, terms of service, and vulnerability disclosure mechanisms are not detected in the provided content, representing areas for improvement. WHOIS data is minimal but does not raise immediate concerns, though more transparency would enhance trust. Overall, the website presents a low-risk profile with strong business credibility and a good security posture, but could benefit from enhanced privacy compliance documentation and clearer contact information for security and general inquiries.

C

CORA computer s.r.o.

cesketabory.cz

59

Cesketabory.cz is a well-established Czech online platform specializing in the cataloging and promotion of children's summer camps and related recreational activities across the Czech Republic. Operated by CORA computer s.r.o., the website serves primarily parents and families seeking detailed information and booking options for various camps. The platform offers a comprehensive catalog, interactive maps, and additional resources such as advice for parents and listings for camp organizers and equipment. The business has a strong market presence since 2008 and collaborates with recognized partners in the youth and education sectors. Technically, the website employs a modern technology stack including Google Maps API, Google Analytics, Facebook SDK, and various JavaScript libraries to provide interactive features and user engagement. The site is mobile-optimized with good SEO practices and a custom CMS backend. Performance is moderate with room for improvement in accessibility features. Security is robust with HTTPS enforcement, reCAPTCHA integration, and cookie consent mechanisms, although some advanced security headers and incident response disclosures are absent. From a security and compliance perspective, the site demonstrates GDPR awareness with a comprehensive privacy policy and cookie consent banner. Contact information is clearly provided, enhancing trust and transparency. No critical vulnerabilities or suspicious patterns were detected. The domain registration details align well with the business claims, indicating legitimacy and consistency. Overall, cesketabory.cz presents a professional, trustworthy, and user-friendly platform for children's camp information in the Czech Republic. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its digital maturity and compliance posture.

M

Městský úřad Vyškov

novyvyskov.cz

59

The website www.novyvyskov.cz serves as an official municipal information portal for the city of Vyškov, Czech Republic, focusing on urban development projects linked to the modernization of the railway infrastructure and related city improvements. It provides residents and stakeholders with detailed information about ongoing and planned construction projects, investment plans, and urban revitalization efforts. The site is positioned as a trusted source of local government communication and community engagement. Technically, the site is built on the Webflow platform, utilizing modern web technologies such as Google Fonts, Leaflet.js for mapping, and Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good design and navigation clarity. However, a visible license error in the dynamic map component slightly detracts from the user experience. The site employs cookie consent mechanisms and maintains a comprehensive privacy policy, indicating a good level of privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks visible advanced security headers and explicit security or incident response policies. The absence of WHOIS data for the domain is a notable concern, reducing the overall trust score. Despite this, the official municipal branding and partner logos lend credibility to the site. No malicious or adult content is present, and the site appears safe for general audiences. Overall, the site is a well-constructed municipal information resource with moderate technical maturity and a generally good security posture. Addressing the WHOIS data gap, fixing the map license issue, and enhancing security headers would improve trust and security standing significantly.

T

Two Circles Ltd.

twocircles.com

60

Two Circles Ltd. is a well-established UK-based sports marketing agency specializing in data-driven audience and revenue growth for leading sports properties worldwide. Their services include broadcast, social media, web and app development, fan data analytics, media rights, sponsorship, ticketing, and retail licensing. The company has a strong market position with over 900 clients and extensive data analytics capabilities, serving major sports organizations such as the Premier League, NFL, UEFA, and others. The website reflects a professional and modern digital presence built on WordPress with advanced JavaScript libraries, optimized for mobile and SEO. Security posture is good with HTTPS and some best practices, though improvements in security headers and vulnerability disclosure are recommended. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting the company's credibility in the sports marketing sector.

C

Crédit Agricole

credit-agricole.fr

74

Crédit Agricole is a major French banking and insurance group offering a wide range of retail financial services including bank accounts, insurance, savings, investments, and credit products. The website targets individual customers ('particulier') and provides comprehensive information and digital services including secure login, contact options, and assistance chatbots. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, jQuery, Bootstrap, and third-party chat and privacy management tools. Security posture is strong with HTTPS, session management, CAPTCHA on forms, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable from AFNIC, but the website's branding, content quality, and official social media presence strongly indicate legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, suitable for its enterprise-scale banking business.

C

CBH Compagnie Bancaire Helvétique

cbhbank.com

54

CBH Compagnie Bancaire Helvétique is a Swiss family-owned private bank specializing in wealth management, investment management, family office solutions, and banking services. The bank targets private and institutional clients, emphasizing creativity and excellence in its offerings. The website reflects a mature digital presence built on WordPress with modern plugins and SEO tools, providing a professional and content-rich user experience. Security posture is adequate with HTTPS and domain protections, though improvements are needed in security headers and published policies. Overall, the bank demonstrates strong business credibility and market positioning in the Swiss private banking sector.

Inbank.cz is a Czech Republic-based banking institution providing retail banking services such as loans and deposits. The website presents a professional design with moderate technical sophistication, leveraging modern JavaScript frameworks like Nuxt.js and integrating third-party services such as Dokobit for authentication and Google Maps API for location services. The domain registration data aligns well with the business founding date and location, supporting the legitimacy of the entity. However, the website lacks explicit privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS implied but missing explicit security headers and vulnerability disclosures. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security transparency.

S

Slovenský plynárenský priemysel, a.s.

spp.sk

64

Slovenský plynárenský priemysel, a.s. (SPP) is the largest energy supplier in Slovakia with a history spanning over 165 years. The company provides natural gas and electricity to households and businesses, emphasizing reliability, fairness, and ecological solutions such as photovoltaics and virtual batteries. The website targets Slovak domestic and corporate customers, offering comprehensive product and service information, calculators, and customer support portals. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response details are not published. WHOIS data confirms the legitimacy and consistency of the domain registration with the company's identity. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting SPP's market leadership in the Slovak energy sector.

C

Církev adventistů sedmého dne

casd.cz

51

The website www.casd.cz represents the Czech-Slovak Union of the Seventh-day Adventist Church, a well-established non-profit religious organization affiliated with a global church community. The site provides rich content including news, educational resources, humanitarian aid information, and media offerings, targeting members and interested individuals in Czechia and Slovakia. Technically, the site is built on WordPress with modern web technologies, including Google Analytics and Google Maps integration, and is mobile optimized with good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data reduces domain trustworthiness, but the website content and structured data strongly indicate legitimacy. Overall, the site is professional, content-rich, and safe for general audiences.

A

Arriva

arriva.cz

57

Arriva is a major European transportation company with a significant presence in the Czech Republic, operating a large fleet of buses, trolleybuses, and trains. The website reflects a professional and well-structured digital presence, targeting general public users seeking transportation services. The technical infrastructure includes modern tracking and analytics tools such as Google Tag Manager and integrates ticketing widgets, indicating a mature digital ecosystem. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is trustworthy and aligns with the business's market position, though WHOIS data is unavailable, likely due to privacy protection.

T

TRINITY BANK a.s.

trinitybank.cz

64

Trinity Bank a.s. is a Czech banking institution with a 29-year history, offering a range of retail banking products including savings accounts, deposit accounts, current accounts, and loans. The bank positions itself as a trusted, customer-focused institution with over 210,000 satisfied clients and a strong presence in the Czech market. The website reflects a professional and consistent brand image, targeting retail customers primarily within the Czech Republic. Technically, the site employs modern web technologies such as Google Tag Manager, Google Analytics, Hotjar, and Google Maps API, ensuring a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The absence of WHOIS data is a notable anomaly, potentially indicating privacy protection or registration issues, but the website content and business information suggest legitimacy. Overall, the site demonstrates a mature digital presence with good compliance and security practices.

A

Alcohol and Drug Foundation

druginfo.com.au

64

The Alcohol and Drug Foundation (ADF) is a well-established Australian non-profit organization dedicated to preventing and minimizing harm caused by alcohol and other drugs. Funded by the Australian government and supported by donations, ADF provides evidence-based programs, educational resources, advocacy, and community support services nationwide. The website reflects a strong market position as a leading authority in alcohol and drug harm prevention in Australia, targeting the general public and affected communities. Technically, the website employs modern web technologies including Vue.js, Google Tag Manager, Facebook Pixel, and Google Analytics, hosted on AWS infrastructure. It demonstrates excellent design quality, mobile optimization, accessibility features, and SEO practices. However, there is room for improvement in privacy compliance, particularly regarding cookie consent mechanisms and GDPR-related disclosures. From a security perspective, the site uses HTTPS with a good SSL configuration and secure cookie settings. While no critical vulnerabilities or exposed sensitive data were detected, the absence of security headers and a published security or incident response policy suggests opportunities to enhance the security posture. The domain registration is consistent with the organization's profile, registered through a reputable registrar with appropriate domain status protections. Overall, the website is professional, trustworthy, and content-rich, serving its mission effectively. Strategic improvements in privacy compliance and security policy transparency would further strengthen its credibility and user trust.

B

Brumlovka

brumlovka.cz

48

Brumlovka.cz is a professionally managed real estate website focused on leasing premium office and retail spaces in Prague 4. The site represents a well-established business under the Passerinvest Group, with a domain age of over 20 years, indicating a mature market presence. The website offers comprehensive information about available properties, community amenities, events, and services, targeting businesses and individuals seeking commercial real estate. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and structured data integration. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or privacy compliance issues were detected. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

K

Kreatura - kreativní agentura

kreatura.cz

46

Kreatura is a small creative agency based in Brno, Czech Republic, specializing in meaningful visual communication projects and offering proprietary CMS and mass mailing solutions. The website reflects a professional and client-focused business with clear contact information and a consistent brand presence. Technically, the site uses a mix of jQuery, Google Analytics, Google Tag Manager, and Google Maps API, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and incident response information. Overall, the site is trustworthy and compliant with GDPR, though WHOIS data is unavailable, likely due to privacy protection. Strategic improvements in security headers and transparency could enhance trust further.

D

Dřevoprogram Břeclav s.r.o.

drevoprogram.cz

39

Dřevoprogram Břeclav s.r.o. is a small, family-owned carpentry business based in the Czech Republic, specializing in custom manufacturing of doors, windows, stairs, gates, furniture, and other wood products. The company emphasizes quality materials and craftsmanship, serving a local customer base with a 25-year history. The website reflects a professional but modest digital presence, with clear contact information and social media integration. Technically, the site uses a combination of jQuery, Bootstrap, and other JavaScript libraries, hosted likely by WEDOS, with a custom CMS backend. While the site loads well and is mobile-optimized, there are some technical issues such as a broken Google Maps integration and use of an outdated jQuery version. Security posture is moderate, with no visible security headers and missing privacy and cookie policies, indicating compliance gaps. Overall, the site is trustworthy but would benefit from improved security and privacy practices.

U

Ubytování U Nás

ubytovani-unas.cz

66

Ubytování U Nás is a small hospitality business offering affordable and comfortable accommodation in the Pálava region of the Czech Republic. The website provides detailed information about their apartments and facilities, including a reservation system with calendar availability. The business targets tourists seeking a quiet and nature-rich environment near Mikulov. Technically, the website uses a modern tech stack with jQuery, Bootstrap, and various UI libraries, hosted by a reputable Czech registrar. Security measures include HTTPS and Google ReCAPTCHA, but lack advanced security headers and published security policies. Privacy compliance is basic with a cookie consent banner but no explicit privacy policy or terms of service pages. Overall, the site is professional and trustworthy with clear contact details and positive user testimonials.

T

Travelminit.ro - Îți rezervăm cazarea

travelminit.ro

56

Travelminit.ro is an established Romanian online travel agency specializing in accommodation bookings including hotels, guest houses, apartments, and wellness packages primarily targeting Romanian-speaking travelers. The website offers a VIP membership program with discounts and features extensive user reviews and promotional campaigns, positioning itself as a trusted regional player in the hospitality and e-commerce sectors. The domain is well aged since 2010, indicating a mature business presence. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics (both GA3 and GA4), Cloudflare DNS, and various marketing and personalization tools such as Criteo, Facebook Pixel, and Emarsys. The site uses Bootstrap 3 for responsive design and is optimized for desktop and mobile users with moderate performance. Hosting and DNS are managed via Cloudflare, enhancing availability and security. Security posture is good with HTTPS enforced, use of reCAPTCHA, and error tracking via Sentry. However, some security headers are not explicitly detected, and DNSSEC is not enabled, which could be improved. Privacy compliance is basic; no explicit privacy or terms of service pages were found in the provided content, and no direct contact information or security policies are visible, which may impact user trust and regulatory compliance. Overall, the website is professional, content-rich, and trustworthy, but it would benefit from publishing clear privacy and security policies and enhancing security headers and DNS configurations. The extensive use of third-party marketing and tracking scripts indicates a high level of user tracking, which should be transparently disclosed to comply with GDPR and similar regulations.

C

Communauté de communes Pyrénées-Cerdagne

pyrenees-cerdagne.com

59

Pyrénées Cerdagne Tourisme is the official regional tourism website for the Pyrénées Cerdagne area in France, operated by the Communauté de communes Pyrénées-Cerdagne. The site provides comprehensive information on local attractions, accommodations, activities, events, and practical visitor information, targeting tourists and visitors interested in exploring the region. The business model is government-funded tourism promotion, positioning itself as a key regional authority and information portal. Technically, the website is built on Drupal 7 with AngularJS enhancements, uses Matomo for privacy-conscious analytics, and integrates mapping technologies such as Leaflet and Google Maps API. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent frameworks but lacks visible security headers and formal privacy or terms of service pages, which are recommended for compliance and trust. WHOIS data is missing or unavailable, which slightly impacts trust but is mitigated by the official branding and social media presence. Overall, the site is professional, trustworthy, and serves its tourism promotion purpose effectively.

B

Beaune et le Pays Beaunois Tourisme - Bourgogne

beaune-tourisme.fr

62

Beaune et le Pays Beaunois Tourisme is a regional tourism office website dedicated to promoting Beaune and the Burgundy wine region. The site offers comprehensive information on accommodations, wine tourism experiences, cultural visits, and local events, targeting tourists and visitors interested in the region. The business model focuses on destination marketing and facilitating tourism services. Technically, the website is built on WordPress with a modern tech stack including JavaScript libraries such as jQuery, Leaflet, and Google Maps API, providing a good user experience with multi-language support and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit privacy policy or security contact information is found. The absence of WHOIS registration data is a concern for domain legitimacy, but the website content and structure indicate a legitimate tourism office. Overall, the site is professional and trustworthy but would benefit from improved transparency regarding privacy and security policies.

D

Destination Pays Bigouden

destination-paysbigouden.com

62

Destination Pays Bigouden is a regional tourism website promoting the Pays Bigouden area in France. It offers comprehensive information on local experiences, accommodations, restaurants, events, and practical visitor information. The site targets tourists and families interested in exploring the region's culture and natural attractions. Technically, the website uses Drupal CMS with AngularJS and integrates multiple third-party services including Google Maps, YouTube, and marketing automation tools. The site is well-structured, mobile-optimized, and provides a good user experience with multilingual support. Security posture is adequate with HTTPS and reCAPTCHA Enterprise, but could be improved by adding more security headers and publishing explicit security policies. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy policy page. WHOIS data is unavailable, which raises some legitimacy concerns despite the professional appearance and content quality of the site. Overall, the website is a credible and useful tourism resource but should address WHOIS transparency and privacy policy gaps to enhance trust.

O

Office de Tourisme de Rochefort Océan

rochefort-ocean.com

68

Office de Tourisme de Rochefort Océan operates as a regional tourism office providing comprehensive information and services related to tourism in the Rochefort Océan area of France. The website offers details on accommodations, events, local attractions, and thermal cures, targeting tourists and visitors interested in this coastal region. The business model focuses on tourism promotion and facilitating bookings and event ticketing, positioning itself as a key regional tourism resource. Technically, the website is built on Drupal CMS with AngularJS and Bootstrap frameworks, integrating modern web technologies such as Google Maps API, Matomo analytics, and Crisp chat for user engagement. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Performance is moderate, with a professional design and consistent branding. From a security perspective, the site enforces HTTPS and includes several security headers, along with a cookie consent mechanism indicating some privacy compliance. However, the absence of a dedicated privacy policy page and incident response information represents gaps in compliance and security transparency. No vulnerabilities or malicious content were detected, and the site maintains a good security posture overall. The WHOIS data is missing, with the domain appearing unregistered or expired in the registry, which raises concerns about domain legitimacy. Despite this, the website content and presentation suggest a legitimate tourism office. Monitoring domain registration status is recommended to ensure continued trustworthiness. Overall, the site is a well-constructed regional tourism platform with room for improvement in privacy compliance and domain registration transparency.

ATE, a brand under Continental Aftermarket & Services GmbH, operates a comprehensive website focused on automotive brake technology products and services. The site targets both B2B and B2C customers, offering a wide range of brake components, hydraulic parts, tools, and support services. The brand is well-established with a strong market position in the transportation sector, particularly in Germany and globally through Continental. Technically, the website employs modern web technologies including Google Tag Manager, reCAPTCHA Enterprise, and a consent management platform, ensuring a secure and privacy-compliant user experience. The site is well-structured, mobile-optimized, and professionally designed, reflecting high digital maturity. Security posture is strong with HTTPS enforcement and form protections, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR requirements.

S

Sdružení obcí Mikroregionu Vsetínsko

visit-valassko.cz

43

The website www.visit-valassko.cz serves as the official regional tourism portal for the Valašsko region in the Czech Republic, operated by the Sdružení obcí Mikroregionu Vsetínsko. It promotes local nature, traditions, cuisine, and recreational activities, targeting tourists and visitors interested in cultural and natural experiences. The site offers comprehensive information on places to visit, eat, stay, and events, supported by local government and tourism partners. Technically, the site uses a modern tech stack including jQuery, Google Analytics, Google Tag Manager, and Google Maps API, with a cookie consent mechanism implemented for GDPR compliance. The website is mobile optimized with good navigation and content relevance. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal privacy and terms of service pages. WHOIS data is unavailable, which reduces domain trustworthiness, but the site’s content and partner affiliations indicate legitimacy. Overall, the site is a well-maintained regional tourism platform with room for improvement in privacy and security documentation.

R

Red Paint Multimedia Ltd.

red-paint.com

55

Red Paint Multimedia Ltd. is a Glasgow-based web design and development agency with over 15 years of experience. They offer a range of services including web design, app and website development, graphic design, and white label digital agency services. The company targets businesses and agencies seeking quality digital solutions and has established a reputable market position supported by a portfolio of notable clients. The website reflects a professional and consistent brand image, emphasizing client collaboration and bespoke project delivery. Technically, the site is built on WordPress with modern tools such as Visual Composer, Slider Revolution, and Gravity Forms, indicating a mature digital infrastructure. Security measures include HTTPS and Google reCAPTCHA on forms, though DNSSEC is not enabled and security headers are absent, representing areas for improvement. The domain registration is consistent with the company's history, enhancing trustworthiness. Overall, the website is well-designed, user-friendly, and trustworthy, though privacy compliance could be enhanced with explicit cookie consent mechanisms.

comm4u s.r.o. is a Czech-based marketing and localization agency specializing in social media management, marketing communication, video production, online and print advertising, graphic design, translation, and public relations. The company serves brands and products primarily in the Czech and Slovak markets, with notable long-term clients such as Microsoft Xbox and EA Sports. Their website reflects a professional service provider with clear contact information and a focus on comprehensive marketing solutions. Technically, the website employs common web technologies including jQuery, Google reCAPTCHA, Google Analytics, and Google Maps API. The site is mobile-optimized with good design quality and navigation clarity. However, some technical improvements are recommended, such as adding security headers and resolving Google Maps API loading errors. From a security perspective, the site uses HTTPS and implements reCAPTCHA on its contact form, which are positive indicators. However, the absence of security headers and lack of published privacy or cookie policies indicate room for improvement in compliance and security posture. No critical vulnerabilities or adult content were detected. Overall, the website presents a moderate risk profile with good business credibility but requires enhancements in privacy compliance and security best practices to improve trust and regulatory adherence.

SIGNEX, spol. s r.o. is a Czech Republic based small business specializing in comprehensive traffic signage services including project design, approval, installation, rental, and maintenance primarily serving Brno and the South Moravian Region. The company has a long-established presence since 1999, reflected in its domain age and consistent WHOIS data. The website presents a professional and well-structured digital presence with clear contact information and service descriptions tailored to businesses and entities requiring traffic safety solutions. Technically, the site uses legacy JavaScript libraries and common web technologies such as jQuery, Bootstrap, and Google Maps API, with moderate performance and good mobile optimization. Security posture is moderate with room for improvement, notably updating outdated libraries and implementing security headers. Privacy compliance is basic, with a cookie consent banner but no privacy or terms of service pages. Overall, the website is trustworthy and safe for general audiences, with no adult or questionable content detected.

D

Domanský s.r.o.

domansky.cz

46

Domanský s.r.o. operates as an authorized automotive dealer specializing in Peugeot, Citroën, Hyundai, Toyota, and DS vehicles. The company offers a comprehensive range of services including new and used car sales, vehicle servicing, financing options such as leasing and loans, and sales of spare parts and accessories. The website reflects a well-established regional dealership with a professional online presence targeting customers primarily in the Czech Republic. The business model focuses on direct sales and after-sales services, supported by multiple brand partnerships and dedicated subdomains for each brand. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for SEO, user interaction, and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with enforced HTTPS and cookie consent mechanisms, though it lacks some advanced security headers. The absence of publicly available WHOIS data limits domain transparency but does not detract from the apparent legitimacy of the business. Overall, the site demonstrates a solid digital maturity appropriate for its industry and market position.

A

Alcohol and Drug Foundation

adf.org.au

64

The Alcohol and Drug Foundation (ADF) is a well-established Australian non-profit organization dedicated to preventing and minimizing harm caused by alcohol and other drugs. Funded by the Australian government, ADF provides evidence-based programs, advocacy, education, and community support services nationwide. The website reflects a strong market position as a leading authority in alcohol and drug harm prevention in Australia, targeting the general public and affected communities with accessible, comprehensive resources and support tools. Technically, the website employs modern web technologies including Vue.js, Google Tag Manager, and multiple analytics and marketing integrations such as Facebook Pixel and Microsoft Clarity. Hosting is inferred to be on Amazon AWS infrastructure, and the site demonstrates good mobile optimization and accessibility features, including the ReciteMe accessibility toolbar. SEO practices are solid with proper metadata and structured data. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections that prevent unauthorized transfers or renewals. However, there is a lack of visible security headers and no published security or incident response policies. The absence of a cookie consent mechanism despite extensive tracking scripts is a privacy compliance gap. Overall, the security posture is good but could be improved with additional headers and transparency. The overall risk assessment is moderate-low risk with strong business credibility and technical maturity. Strategic recommendations include implementing cookie consent, publishing security policies, enabling DNSSEC, and adding security headers to enhance protection and compliance. These improvements will strengthen trust and reduce potential privacy and security risks.

R

Regionální rozvojová agentura jižní Moravy

morava-napoleonska.cz

43

Morava Napoleonská is a regional tourism website focused on promoting historical and cultural sites related to Napoleonic battles in Moravia, Czech Republic. The site offers visitors information on locations, events, videos, and personalized itineraries to explore the region's rich European history. The platform targets history enthusiasts and tourists interested in cultural heritage, positioning itself as a niche informational resource supported by regional partners. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and integrates Google Analytics and Facebook social plugins. While the site includes a cookie consent mechanism, it lacks explicit privacy policy and terms of service pages, and no direct contact information is provided. Security posture is moderate with room for improvement, especially regarding modernizing libraries and implementing security headers. WHOIS data is unavailable, which reduces domain trust verification, but partner logos and content quality suggest legitimacy. Overall, the website is functional and informative but would benefit from enhanced security, privacy compliance, and transparency.

V

Visiting Nurses Association of America (V.N.A.A.)

eaglesmereairmuseum.org

60

The website represents the Visiting Nurses Association of America (V.N.A.A.) as featured within the Young Survival Coalition's platform, a nonprofit organization focused on supporting young women diagnosed with breast cancer. The business operates as a national association advocating for community-based nonprofit home health and hospice providers, offering services such as advocacy, education, and collaboration. The target audience includes patients, healthcare providers, and supporters within the nonprofit healthcare sector. The website is well-branded and consistent with a clear mission and service offering. Technically, the website is built on FusionCMS and integrates modern analytics and tracking tools including Google Analytics, Google Tag Manager, and Facebook Pixel. It uses HTTPS with good SSL configuration, and the site is mobile-optimized with good accessibility and SEO practices. However, some security headers are missing, and there is no visible cookie consent mechanism despite the use of tracking scripts, which could be improved for privacy compliance. From a security perspective, the site demonstrates a solid posture with no exposed sensitive data or vulnerabilities detected in the HTML content. The lack of explicit security policies or incident response contacts is a gap. The WHOIS data is unavailable or protected, which is typical for nonprofits, and does not raise immediate concerns. The domain appears legitimate and consistent with the organization's online presence. Overall, the website is professional, trustworthy, and serves its nonprofit advocacy purpose effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and user trust.