Security Directory

R

Rehaklinik Zihlschlacht AG

rehaklinik-zihlschlacht.ch

61

Rehaklinik Zihlschlacht AG is a leading neurological rehabilitation clinic based in Switzerland, specializing in advanced therapies including robot-assisted rehabilitation, Parkinson's disease treatment, multiple sclerosis care, and early neurological rehabilitation. The clinic operates under the parent company VAMED Schweiz and maintains a strong market position with specialized centers and a comprehensive interdisciplinary approach. The website reflects a mature digital infrastructure with modern technologies such as jQuery, Bootstrap, Matomo analytics, and Google reCAPTCHA, ensuring a professional and user-friendly experience. Privacy and cookie policies are well implemented with clear consent mechanisms, supporting GDPR compliance. Security posture is strong with HTTPS enforcement and no critical vulnerabilities detected, though some improvements in security headers and incident response information are recommended. Overall, the website and business demonstrate high credibility, trustworthiness, and technical maturity suitable for their healthcare audience.

R

Rehaklinik Dussnang AG

rehaklinik-dussnang.ch

58

Rehaklinik Dussnang AG is a specialized healthcare provider in Switzerland focusing on geriatric and musculoskeletal rehabilitation. The clinic offers a comprehensive range of services including inpatient rehabilitation, cure stays, wellness, and telemedicine programs. It operates under the parent company VAMED Schweiz and maintains a strong market position with over 135 years of history and recognized certifications such as the Fracture Liaison Service (FLS). The website is professionally designed, multilingual, and provides clear navigation and detailed service information. Technically, the site uses modern frameworks and libraries, including Umbraco CMS, Bootstrap, jQuery, and Matomo analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, cookie consent mechanisms, and reCAPTCHA integration, though some security headers and policies could be improved. Overall, the site demonstrates high trustworthiness and compliance with GDPR, supported by transparent WHOIS data consistent with the business identity.

V

VAMED Management und Service Schweiz AG

vamed.ch

61

VAMED Management und Service Schweiz AG operates as a leading provider of rehabilitation services in Switzerland, managing multiple specialized clinics and ambulatory centers. The company positions itself as a comprehensive healthcare service provider with a strong focus on neurological, musculoskeletal, cardiological, and oncological rehabilitation. Their website reflects a professional and well-structured digital presence, targeting patients, healthcare professionals, and partners within the Swiss healthcare market. The business model centers on delivering specialized rehabilitation care with an emphasis on innovation and patient-centered services. Technically, the website employs modern web technologies including jQuery, Bootstrap, Matomo analytics, and Google Maps API, integrated within an Umbraco CMS environment. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. The cookie consent mechanism is robust and GDPR compliant, reflecting a mature approach to privacy and user consent. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers and a published security policy or incident response contacts. No critical vulnerabilities or suspicious content were detected. Overall, the security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing vulnerability disclosure information. The domain registration data aligns well with the business claims, showing consistency and legitimacy. The website is free from WAF blocking or content restrictions, allowing full content access and analysis. Social media and partner links further reinforce the company's credibility and market presence.

S

Salesiánské středisko mládeže – dům dětí a mládeže Brno-Líšeň

salesko.cz

59

Salesko is a Czech non-profit organization dedicated to supporting children and youth primarily from Brno-Líšeň and surrounding areas. The organization offers a variety of youth-oriented activities including sports, music, creative workshops, camps, and cultural events. Their mission focuses on physical, mental, and spiritual development of young people. The website reflects a well-structured community hub with event announcements, registration forms, and news updates, positioning Salesko as a trusted local youth center. Technically, the website is built on WordPress with modern front-end frameworks like Bootstrap and jQuery, supplemented by plugins for forms, calendars, and push notifications. The site is mobile-optimized and uses HTTPS with Google reCAPTCHA to secure forms. Cookie consent is implemented, indicating awareness of privacy compliance, though no dedicated privacy policy page was found. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and form protection but lacks published security policies or incident response contacts. The absence of WHOIS data limits domain trust verification, though the website content and social media presence support its legitimacy. No vulnerabilities or exposed sensitive data were detected. Overall, Salesko presents a credible, community-focused non-profit with a solid digital presence. Enhancements in privacy documentation and security transparency would further strengthen trust and compliance.

D

DeepValidator

deepvalidator.swiss

10

DeepValidator is a Swiss-based technology company specializing in digital signature validation compliant with Swiss ZertES and EU eIDAS standards. The company offers a SaaS platform and API for businesses to verify digital signatures and the signing authority of individuals, integrating real-time checks against the Swiss commercial register. Positioned as a niche provider, DeepValidator emphasizes legal compliance and security in digital document workflows. The website reflects a professional and modern digital presence, leveraging WordPress CMS and integrating multiple analytics and marketing tools with user consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be enhanced. The domain WHOIS data is privacy protected but consistent with the business profile. Overall, DeepValidator demonstrates a mature digital infrastructure suitable for its market segment.

D

DeepCloud AG

deepmail.swiss

11

DeepMail, operated by DeepCloud AG, is a Swiss-based technology company specializing in secure document transmission solutions integrated with ERP systems such as Abacus. The company positions itself as a compliant and secure alternative to traditional email services for sensitive documents, emphasizing Swiss hosting and adherence to GDPR and Swiss data protection laws. Their pay-per-use business model offers flexibility without subscription fees, targeting organizations requiring secure communication channels. Technically, the website is built on WordPress with modern analytics and consent management tools, providing a professional and user-friendly experience. Security posture is strong, supported by ISO 27001 certification and advanced bot protection, though some security headers could be improved. Overall, the domain is privacy protected, which aligns with the company's privacy-centric business model, and no suspicious patterns were detected.

D

DeepPay

deeppay.swiss

61

DeepPay is a Swiss-based fintech company providing a unified REST API platform that connects software applications seamlessly with over 120 Swiss banks. Their service enables businesses to perform secure and efficient online payments, retrieve account statements, and access electronic documents directly from their ERP or accounting software. Positioned as a key player in the Swiss banking integration market, DeepPay emphasizes automation, compatibility, and security in financial transactions. Technically, the website is built on WordPress with modern SEO and analytics tools such as Matomo and Google Analytics, and it employs Google reCAPTCHA for bot protection. The security posture is strong with HTTPS enforced and cookie consent mechanisms implemented, although explicit security headers and detailed privacy policies are absent. Overall, DeepPay presents a professional and trustworthy digital presence aligned with its fintech business model.

D

DeepCloud AG

deepv.swiss

60

DeepCloud AG operates DeepV, a specialized cloud-based collaborative data visualization solution tailored for Abacus ERP customers. The platform enables secure sharing and interactive analysis of business data without requiring recipients to have an account, enhancing collaboration and decision-making. Positioned as a niche technology provider in Switzerland, DeepCloud AG emphasizes security and compliance, demonstrated by ISO/IEC 27001 and ETSI certifications. The website reflects a professional and trustworthy brand with clear messaging and a user-friendly interface. Technically, the website is built on WordPress with modern analytics and consent management tools, including Google Tag Manager, Google Analytics, Matomo, and CookieYes. It employs Google reCAPTCHA for bot protection and maintains a cookie consent mechanism aligned with GDPR requirements. The site is mobile-optimized, accessible, and SEO-friendly, supporting multiple languages and currencies. Security posture is strong, with HTTPS enforced and certified security policies in place. However, the absence of visible HTTP security headers suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common and justified for this business type, though it limits transparency. Overall, DeepCloud AG demonstrates a mature digital presence with a focus on secure, compliant, and user-centric solutions. Strategic recommendations include enhancing HTTP security headers, providing explicit incident response contacts, and maintaining up-to-date software to sustain security and trust.

D

DeepCloud AG

deepid.swiss

60

DeepID, operated by DeepCloud AG, is a Swiss-based digital identity verification and onboarding solution designed to streamline and secure customer onboarding processes. The company positions itself as an innovative player in the Swiss technology and finance sectors, offering services such as qualified electronic signatures, passporting, and two-factor authentication via a dedicated app. The website is professionally designed, content-rich, and optimized for multiple devices, reflecting a mature digital presence. Technically, the site leverages WordPress CMS, integrates Google reCAPTCHA for bot protection, and uses Matomo and Google Analytics for user behavior insights, complemented by a robust cookie consent mechanism. Security posture is strong, with HTTPS enforced, ISO 27001:2022 certification claimed, and no evident vulnerabilities or exposed sensitive data. However, some security headers could be improved, and explicit incident response or vulnerability disclosure policies are absent. Overall, the domain registration is privacy protected but consistent with the business claims, and the website demonstrates high trustworthiness and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing incident response information, and increasing transparency on data retention.

M

Město Benešov

benesov-zdravemesto.cz

47

The website benesov-zdravemesto.cz serves as the official online presence for the city of Benešov's Healthy City initiative, focusing on sustainable development, public participation, and social services. It targets local residents and stakeholders interested in community health and governance. The site is positioned as a government/public service platform with a medium-sized municipal scope, founded in 2016. The content is well-structured, professionally presented, and consistent with official city branding, including ISO 9001 certification as a trust indicator. Technically, the site uses the Vismo CMS platform with standard web technologies including HTML5, CSS3, JavaScript, Google Translate, and Google reCAPTCHA for accessibility and security. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. Security posture is adequate with HTTPS and reCAPTCHA but lacks important security headers and explicit incident response information. Overall, the security posture is solid but could be enhanced by implementing security headers, a vulnerability disclosure policy, and improved cookie consent mechanisms. Privacy compliance is basic but present, with a privacy policy and cookie policy available. Business credibility is high due to clear contact information, official domain use, and certifications. The risk assessment indicates a trustworthy municipal website with no critical security issues or suspicious content. Strategic recommendations include enhancing security headers, formalizing incident response contacts, and improving privacy consent mechanisms to align with GDPR best practices.

M

Město Benešov

benesov-bezpecnemesto.cz

49

The website 'Benešov - Bezpečné město' serves as an official municipal portal focused on public safety initiatives in Benešov, Czech Republic. It supports a regional project aimed at improving citizen safety and trust in local and national police forces. The site provides news, contact information, and links to related government and safety organizations, positioning itself as a trusted community resource. The business model is public sector oriented, with a medium-sized municipal entity operating the site since 2016. Technically, the site is built on the Vismo CMS platform, utilizing standard web technologies including HTML5, CSS, JavaScript, Google reCAPTCHA for form security, and Google Translate for accessibility. The site is served over HTTPS with a good SSL configuration but lacks some advanced security headers. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. From a security perspective, the site demonstrates basic best practices such as HTTPS and CAPTCHA protection on forms but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is partially met with linked privacy and cookie policies, though no active cookie consent mechanism is present. Contact information is clearly provided, enhancing business credibility. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. Recommendations include enhancing security headers, implementing cookie consent, and adding dedicated security and incident response information to improve compliance and user trust.

F

Fondazione Toscana Life Sciences

toscanalifesciences.org

45

Fondazione Toscana Life Sciences is a well-established non-profit research foundation based in Siena, Italy, focused on advancing life sciences and healthcare innovation. The organization operates as a research entity, business incubator, and ecosystem facilitator, supporting biotechnology startups and scientific research groups. Their website reflects a professional and comprehensive digital presence, with clear navigation, multilingual support, and rich content about their activities and services. The foundation maintains active social media channels and provides detailed privacy and cookie policies, demonstrating compliance with GDPR and user privacy standards. Technically, the site is built on WordPress with modern plugins and technologies, ensuring good performance and mobile optimization. Security measures include HTTPS, reCAPTCHA, and cookie consent management, though some security headers could be improved. The WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. Overall, the website presents a trustworthy and credible digital front for the foundation.

B

Blumark

blumarktax.com

71

Blumark is a small accounting and tax services firm based in Troy, Michigan, providing tax preparation, bookkeeping, and accounting services to individuals and businesses. The website reflects a professional and consistent brand presence with comprehensive legal documents such as privacy policy and terms of service embedded in modals. The technical infrastructure leverages modern web technologies including Laravel Livewire, Alpine.js, Cloudflare DNS, and AWS S3 for asset hosting, with monitoring via New Relic. Security posture is solid with HTTPS enforced, domain locking, and reCAPTCHA integration, though explicit security policies and cookie consent mechanisms are absent. Overall, the site is well-structured, performant, and trustworthy, suitable for its target audience.

Sběratelské zbraně s.r.o. is a Czech Republic-based small retail business specializing in the sale of collectible firearms, primarily from the World War I and II eras. The company operates a niche market model focusing on individual customer consultations and custom orders, emphasizing personalized service rather than a traditional storefront. Their website reflects this business model with detailed product listings, contact information, and legal disclaimers. Technically, the site is built on WordPress using modern frameworks such as Foundation CSS and integrates Google Analytics and reCAPTCHA for analytics and security. While the site is well-structured and SEO-optimized, it lacks some advanced security headers and cookie consent mechanisms, which could be improved for better compliance and security posture. The absence of WHOIS data for the domain is a notable concern, reducing domain trustworthiness despite the professional appearance and clear business information on the site.

AUTO Kralovice s.r.o. operates a professional used vehicle dealership in the Czech Republic, offering a broad range of automotive services including sales of cars, motorcycles, utility vehicles, trailers, financing options, insurance, servicing, and ecological vehicle disposal. The company targets consumers seeking quality used vehicles and related services, positioning itself as a reliable local provider with a comprehensive service portfolio. The website is built on WordPress with modern technologies and SEO optimizations, providing a good user experience and mobile responsiveness. Security measures include HTTPS and Google reCAPTCHA on forms, but lack of security headers and privacy policies indicate room for improvement. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and professional. Overall, the site demonstrates moderate digital maturity with opportunities to enhance compliance and security posture.

N

Networm Studio

networm.cz

41

Networm Studio is a small Czech-based group of freelancers specializing in custom web development, SEO optimization, e-commerce solutions, and social media marketing. Operating since 2005, they focus on personalized client solutions rather than templated websites, targeting businesses seeking tailored online presence. The website is built on WordPress with common technologies like Bootstrap, jQuery, and Google reCAPTCHA, indicating a moderate level of technical maturity. Security posture is adequate with HTTPS and anti-bot measures but lacks advanced security headers and formal privacy policies. WHOIS data is unavailable, which limits domain trust verification, but the website content and contact information appear professional and consistent with a legitimate business. Overall, the site is safe, well-structured, and serves its business purpose effectively.

P

PEŠEK Machinery s.r.o.

pesekm.com

50

PEŠEK Machinery s.r.o. is a Czech-based manufacturing company specializing in the development and production of special machines and fixtures for industrial automation, serving sectors such as automotive, energy, and transportation. The company emphasizes craftsmanship, quality, and unique engineering solutions, with a market presence spanning multiple European countries. Their website reflects a professional and well-structured digital presence, supporting their business model with clear product offerings and contact channels. Technically, the site uses modern web technologies including niCMS, Video.js, and Google Tag Manager, with good mobile optimization and SEO practices. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent management, though additional security headers could enhance protection. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website content and business information appear consistent and trustworthy. Overall, the site demonstrates a solid security posture and compliance with GDPR, supporting a positive risk profile.

O

OLÚp Predná Hora

olup-prednahora.sk

40

OLÚP, n. o. Predná Hora is a well-established non-profit specialized psychiatric healthcare institution in Slovakia, founded in 2006. The organization offers a range of services including inpatient and outpatient psychiatric care, family therapy, and aftercare treatments. The website reflects a professional and trustworthy presence with comprehensive information targeted at patients and interested parties. It maintains a consistent brand identity and demonstrates compliance with GDPR and cookie regulations, enhancing user trust. The institution also actively engages users through social media channels and a dedicated mobile application.

S

Solar Energy Industries Association

seia.org

71

The Solar Energy Industries Association (SEIA) is a well-established national trade association founded in 1974, dedicated to advancing the solar energy industry in the United States. It represents over 1,200 member companies and focuses on policy advocacy, research, education, and industry growth to promote clean energy solutions. The website reflects a professional and authoritative presence with excellent content quality and clear messaging targeted at industry stakeholders, policymakers, and communities interested in solar energy. Technically, the site is built on WordPress, enhanced with performance optimization tools like NitroPack, and integrates modern analytics and marketing technologies including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted via Cloudflare, ensuring robust infrastructure and security.

A

Ace Hotel

acehotel.com

72

Ace Hotel is an established boutique hotel chain operating in North America, Japan, Australia, and Greece, providing hospitality and lodging services. The website reflects a professional and consistent brand presence targeting travelers and tourists seeking unique hotel experiences. Technically, the site is built on WordPress, hosted on AWS infrastructure, and employs modern tracking and marketing technologies such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is mobile-optimized and accessible with good SEO practices. Security posture is generally good with HTTPS enforced and bot protection via reCAPTCHA; however, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the domain registration data supports the legitimacy and maturity of the business, with no suspicious patterns detected.

G

Geri Draws Japan

geridrawsjapan.com

56

Geri Draws Japan is a small-scale e-commerce and content creation business focused on illustration and travel blogging centered around Japanese culture. The website is professionally designed and hosted on Squarespace, featuring an online shop for art prints and related products. The business targets general audiences interested in Japanese culture and art. Technically, the site uses modern web technologies including Google Analytics, Facebook Pixel, and Google reCAPTCHA, with a good mobile-optimized design and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers such as HSTS and Content-Security-Policy. Privacy compliance is weak due to the absence of privacy and cookie policies. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy but the active and consistent web presence suggests a legitimate small business. Overall, the site is functional and trustworthy but would benefit from improved security and privacy practices.

P

Peecho B.V.

peecho.com

67

Peecho B.V. operates a professional print on demand platform specializing in custom photo books, magazines, wall art, and business stationery. The company targets creatives, self-publishers, enterprises, and app/platform developers, offering API integration and a global print network to enable fast, sustainable, and localized printing and drop shipping. Peecho is positioned as a trusted player with over 1 million users and 1,000+ companies, and is part of the Prodigi Group, enhancing its market credibility. Technically, the website is built on Webflow CMS with modern technologies including Google Tag Manager, reCAPTCHA, Weglot for translations, and Cloudflare for hosting and CDN services. The site is well-optimized for performance, mobile responsiveness, and SEO, with a professional design and clear navigation. Security best practices are observed with HTTPS, CAPTCHA protection on forms, and cookie consent mechanisms, though explicit security headers and policies could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust with comprehensive privacy and cookie policies and GDPR compliance indicators. However, the absence of WHOIS data and domain registration details introduces some uncertainty about domain legitimacy, though the professional web presence and business information mitigate this concern. Overall, Peecho presents a low-risk, credible business with a mature digital infrastructure and good privacy and security practices. Strategic improvements in publishing security policies and enhancing WHOIS transparency would further strengthen trust and compliance.

H

Hellenic Hydrocarbons and Energy Resources Management Company (HEREMA)

herema.gr

57

The Hellenic Hydrocarbons and Energy Resources Management Company (HEREMA) is a Greek governmental entity responsible for licensing and managing the development of Greece's energy resources, including hydrocarbon exploration and production, carbon capture and storage (CCS), underground gas storage (UGS), and offshore wind projects. The website reflects a professional and authoritative presence, targeting energy sector stakeholders, government officials, and industry professionals. It provides structured information about its mandate, regulatory frameworks, and ongoing projects, positioning itself as a key national authority in energy resource management. Technically, the website is built on WordPress and incorporates modern technologies such as Google reCAPTCHA for form security and CookieYes for cookie consent management. The site is mobile-optimized and includes SEO best practices, although accessibility features could be improved. Analytics are implemented via Google Analytics and YouTube embedded content, with a clear cookie consent mechanism in place. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to mitigate automated abuse. However, it lacks visible security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected. Privacy compliance is partial, with cookie consent but no explicit privacy policy or terms of service pages found. Overall, HEREMA's website demonstrates a solid digital presence with good business credibility and moderate technical maturity. Strategic improvements in privacy documentation, security headers, and accessibility would enhance its security posture and compliance standing.

reNews (operated by Renews Ltd) is a well-established renewable energy news platform founded in 2002, providing comprehensive coverage of offshore wind, onshore wind, solar, wave & tidal, energy storage, finance, grid, hydro, and industry people. The website targets renewable energy professionals, investors, and enthusiasts, offering news articles, daily newsletters, company profiles, and premium subscription content. Technically, the site uses modern web technologies including jQuery, Google Analytics, Google reCAPTCHA, and ShareThis, hosted behind Cloudflare DNS. The CMS is Umbraco, and the site is mobile-optimized with moderate performance. Security posture is decent with HTTPS and clientTransferProhibited domain status, but lacks DNSSEC and security headers. Privacy compliance is basic with a terms and conditions page referencing privacy but no dedicated privacy or cookie policy pages or consent mechanisms. Overall, the site is professional and trustworthy with room for improvement in security and privacy transparency.

D

DeTect, Inc.

detect-inc.com

55

DeTect, Inc. is a specialized technology company focused on advanced radar and remote sensing systems primarily serving the wind energy, aviation safety, and security sectors. Established in 2003, the company offers a range of products including bird and drone detection radars, security surveillance radars, and mitigation systems designed to enhance environmental protection and flight safety. Their market position is that of a niche leader with a strong focus on B2B clients requiring sophisticated detection technologies. The website infrastructure is built on WordPress with Elementor, leveraging modern web technologies such as Google Tag Manager, Google Analytics, and CookieYes for consent management. The site demonstrates good digital maturity with responsive design, SEO optimization via Yoast SEO Premium, and basic accessibility features. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and Google reCAPTCHA implemented to prevent spam and bot attacks. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. Privacy compliance is well addressed with a comprehensive privacy policy and a granular cookie consent mechanism aligned with GDPR requirements. Overall, the website presents a professional and trustworthy front for DeTect, Inc., with strong business credibility and technical implementation. Strategic improvements in security transparency and performance optimization could further enhance their digital presence and risk posture.

A

Atos

atos.com

72

Atos is a specialist company in the electrohydraulic sector, offering innovative solutions for industrial, hazardous, and corrosive environments. The company targets industrial clients and engineering professionals, providing a broad range of products including proportional valves, cylinders, pumps, and complete hydraulic systems. The website reflects a professional and consistent brand image with multi-language support and a product configurator tool, indicating a mature digital presence. Technically, the site uses modern web technologies such as Google Tag Manager, reCAPTCHA, and Akamai performance monitoring, hosted likely on a CDN infrastructure. However, the absence of WHOIS registration data and lack of visible privacy and cookie policies represent gaps in transparency and compliance. Security posture is moderate with some best practices observed but missing security headers and incident response information. Overall, the site is functional and professional but would benefit from improved compliance and security transparency.

N

NIBE

nibe.cz

76

NIBE is a well-established European company specializing in sustainable heating and cooling solutions, primarily through advanced heat pump technology. The website targets the Czech market with localized content and offers a comprehensive product range including heat pumps, water heaters, ventilation units, and related accessories. The company positions itself as a leader in energy-efficient home comfort solutions. Technically, the website is built on the SiteVision CMS platform, utilizing modern web technologies such as jQuery, Uikit, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, reCAPTCHA integration, and a robust cookie consent mechanism via OneTrust, reflecting good privacy compliance and user data protection. The absence of exposed sensitive data and the use of security best practices contribute to a strong security posture. Overall, the website demonstrates professionalism, compliance with GDPR, and a trustworthy digital presence, although WHOIS data is privacy protected and unavailable. Strategic recommendations include publishing explicit security policies and incident response information to further enhance trust and transparency.

E

EQUINET s.r.o.

equitv.cz

47

EquiTV.cz is a specialized internet television platform focused on equestrian sports and related content, operated by EQUINET s.r.o. The website offers live streaming, video and audio content, podcasts, and news targeting horse enthusiasts primarily in the Czech Republic. The business operates as a niche media provider with advertising and fan club engagement as key revenue streams. Technically, the site uses modern web technologies including jQuery, Bootstrap, and media players, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy policies. WHOIS data is unavailable, which reduces transparency but the site content and business information appear legitimate. Overall, the site is professional and trustworthy within its niche.

P

PBtisk a.s.

pbtisk.cz

60

PBtisk a.s. is a specialized book production and printing company established in 1990, currently recognized as one of the leading producers in Central Europe. The company serves a professional clientele including publishers, galleries, and museums, offering complete book production services, climate-neutral printing, and custom book models starting from single pieces. The website reflects a mature digital presence built on WordPress with Elementor, featuring good design quality, clear navigation, and GDPR-compliant privacy and cookie policies. Security measures include HTTPS, Google reCAPTCHA, and cookie consent management, though some security headers could be improved. Overall, the site demonstrates a solid security posture with no critical vulnerabilities detected.

A

ATONdesign s.r.o.

atondesign.cz

45

ATONdesign s.r.o. is a Czech Republic based professional design studio specializing in graphic design, interior design, and exhibition stand construction. With over 25 years of experience, the company positions itself as a trusted partner for businesses seeking to enhance their brand and physical spaces through creative design solutions. The website reflects a well-structured and professional digital presence, leveraging WordPress CMS and modern web technologies to deliver a responsive and user-friendly experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though some improvements in security headers and privacy compliance are recommended. Overall, the website and business appear legitimate and credible, though the absence of WHOIS data and privacy policies slightly reduce trust levels.

S

Salut Restaurant

salutrestaurant.cz

65

Salut Restaurant is a modern hospitality business located in Prague 7, Holešovice, offering seasonal, fresh, and modern cuisine with a focus on quality dining experiences. The website showcases a professional and well-structured digital presence, including event hosting, daily and evening menus, and an e-shop. The business is part of the Absolutum Group, indicating a stable parent company relationship. Technically, the website employs modern JavaScript libraries and tracking tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA usage, though some security headers could be improved. Privacy compliance is well addressed with clear GDPR and cookie policies. Overall, the website is trustworthy and professionally maintained, though the lack of WHOIS data slightly reduces domain trustworthiness.

M

Město Benešov

benesov-city.cz

50

The website benesov-city.cz serves as the official digital portal for the city of Benešov, Czech Republic. It provides residents and visitors with comprehensive municipal information, including news, events, public services, and administrative contacts. The site is well-positioned as a government entity portal, offering key services such as online citizen services, event calendars, and official announcements. The target audience primarily consists of local citizens and visitors seeking city-related information and services. From a technical perspective, the website employs a traditional web stack with HTML5, CSS, and JavaScript, leveraging the Vismo CMS platform. It integrates modern tools such as Google Analytics for visitor tracking and Google reCAPTCHA for form security. The site is hosted under a Czech registrar with a domain age dating back to 1998, indicating a mature and stable online presence. Mobile optimization and accessibility features are well implemented, contributing to a positive user experience. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms. Cookie consent mechanisms comply with GDPR requirements, enhancing privacy compliance. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively serves its role as a municipal information hub with good technical and security practices. Strategic recommendations include enhancing security headers, publishing a formal security policy, and considering a vulnerability disclosure program to further strengthen security posture.

S

SmartMailer.cz

smartmailer.cz

53

SmartMailer.cz is a Czech-based small technology company founded in 2021, offering a SaaS email marketing platform tailored for businesses, especially e-commerce users on Prestashop and WooCommerce. The platform provides easy-to-use tools for creating and managing email campaigns, newsletter automation, and detailed campaign analytics. The business model is subscription-based with tiered pricing according to the number of contacts. The website is professionally designed, multilingual, and provides clear contact and legal information, positioning SmartMailer as a trustworthy niche player in the Czech and Slovak markets. Technically, the website uses modern web technologies including JavaScript, Google Analytics, and Google reCAPTCHA for security and analytics. Hosting is inferred to be with WEDOS, a Czech hosting provider. The site is mobile optimized with good SEO practices but lacks some accessibility features. Security posture is solid with HTTPS and anti-spam measures on forms, though it lacks published security policies and some HTTP security headers. From a security and compliance perspective, the site does not publish a privacy or cookie policy, which is a notable GDPR compliance gap. The terms of service are comprehensive and available via a modal on the homepage. No incident response or vulnerability disclosure information is provided. WHOIS data is consistent with the business claims, showing no suspicious patterns. Overall, the site is safe, professional, and business-focused with room for improvement in privacy compliance and security transparency. Strategic recommendations include publishing privacy and cookie policies with consent mechanisms, adding security headers, and providing incident response contacts to enhance trust and compliance. These improvements will strengthen the security posture and regulatory adherence, supporting business growth and customer confidence.

S

Střední škola řemesel, Šumperk

skolasumperk.cz

45

Střední škola řemesel, Šumperk is an educational institution specializing in vocational and technical education in the Czech Republic. The school offers a wide range of study programs including apprenticeship, maturitní (graduation) and extension courses, focusing on crafts and technical trades. It maintains strong partnerships with local and regional companies, providing practical training and opportunities for students. The website reflects a well-structured and professionally maintained digital presence, supporting prospective students and stakeholders with comprehensive information and resources. Technically, the site employs modern web technologies such as jQuery, Nette Framework, Flatpickr, and integrates Google services including reCAPTCHA and Tag Manager, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS and form protections, though improvements in security headers and explicit incident response policies are recommended. Overall, the site is compliant with GDPR and cookie regulations, providing clear privacy and cookie policies with consent mechanisms. The domain WHOIS data is unavailable, which slightly impacts trust but the website content and external references strongly indicate legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date third-party libraries to further strengthen security and compliance.

S

Střední škola technická

kourilkova8.cz

45

Střední škola technická is a Czech technical secondary school located in Přerov, offering a variety of technical and vocational education programs. The website reflects a well-established educational institution with a focus on practical and theoretical training in fields such as mechatronics, automechanics, optics, and more. The school maintains partnerships with notable companies, enhancing student opportunities for internships and employment. Technically, the website is built on WordPress with modern plugins and technologies, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, security headers, and CAPTCHA integration, although formal security and incident response policies are not published. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy page. Overall, the site is professional, trustworthy, and serves its educational audience effectively.

S

Střední odborná škola a Základní škola, Město Albrechtice, příspěvková organizace

souzma.cz

48

The website represents a public educational institution in Město Albrechtice, Czech Republic, offering secondary vocational and basic education. It is affiliated with the regional government (Moravskoslezský kraj) and provides a variety of educational programs including special education and vocational training. The site targets prospective students and the local community, providing detailed information about courses, admissions, and school activities. Technically, the website employs a modern technology stack including jQuery, Flatpickr, Tippy.js, and Google Tag Manager, built on the Nette PHP framework. It features responsive design, accessibility considerations, and integrates Google reCAPTCHA for form security. Cookie consent and GDPR compliance mechanisms are implemented, reflecting a mature digital presence. From a security perspective, the site uses HTTPS and includes anti-bot measures. However, explicit security headers are not evident in the HTML content, and no published security or incident response policies were found. The WHOIS data is missing, which slightly impacts trust but is mitigated by the official nature of the institution and clear contact information. Overall, the website is professional, secure, and compliant with privacy regulations, serving its educational mission effectively. Strategic improvements include enhancing security headers, publishing security policies, and improving WHOIS transparency to bolster trust.

S

Střední škola technická a řemeslná, Nový Bydžov

sstrnb.cz

49

Střední škola technická a řemeslná, Nový Bydžov is a Czech secondary technical and vocational school offering education in technical fields, food industry, and driving training. The institution targets students and prospective students seeking practical and theoretical education in these sectors. The website reflects a well-established regional educational institution with partnerships with notable companies such as Škoda, Volvo, and Bosch. Technically, the website uses modern JavaScript libraries and frameworks, including jQuery, Flatpickr, and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is strong with a clear GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, supporting the institution's educational mission.

O

Outseta

outseta.com

58

Outseta operates as a SaaS membership operating system designed to help businesses and creators monetize and grow their membership offerings. The platform integrates payments, authentication, protected content, CRM, email marketing, and help desk tools into a unified solution. The website presents a professional and modern interface with good content relevance and user experience, targeting businesses seeking an all-in-one membership management solution. Technically, the site employs modern web technologies including Google Fonts, Google Tag Manager, reCAPTCHA, and Plausible Analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and bot protection, but lacks explicit security headers and published security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and technology usage suggest a legitimate business. Privacy and cookie policies are not clearly presented, indicating room for compliance improvement.

B

Belle Main

bellemain.org

54

Belle Main is a French non-profit foundation dedicated to the conservation of movable heritage and the preservation of artisanal craftsmanship. Founded in 2015 and affiliated with the Fondation du patrimoine, it provides financial support for restoration projects and artisan training. The website presents a professional and consistent brand image, targeting proprietors of antique furniture and artisans. Technically, the site is built on WordPress with a moderate performance profile, employing common plugins for SEO, forms, and cookie compliance. Security posture is adequate with HTTPS enforced and reCAPTCHA on forms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is strong with a clear cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site is trustworthy and well-maintained, with no critical security or content safety issues detected.

L

Les Bricos du Cœur

bricosducoeur.org

49

Les Bricos du Cœur is a French non-profit association founded in 2013 dedicated to supporting social aid organizations by organizing solidarity renovation projects, managing donations of materials, and operating a solidarity hardware store. The website reflects a well-established organization with a clear mission to improve the living and working environments of social structures such as associations, foundations, hospitals, and EHPADs. Their market position is strengthened by over 1200 completed projects and a network of engaged partners. Technically, the site is built on WordPress with modern libraries and performance optimizations, ensuring good user experience and mobile responsiveness. Security posture is strong with HTTPS, security headers, and anti-bot protections, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with visible cookie consent and privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its non-profit mission.

R

Rivacom

rivacom.fr

50

Rivacom is a regional communication agency operating primarily in Brittany, France, with offices in Brest and Rennes. The company offers a comprehensive suite of communication services including press relations, event management, digital marketing, branding, and audiovisual production. Positioned as a 360° communication agency, Rivacom targets businesses and organizations seeking professional marketing and communication support within the regional market. The website reflects a professional and consistent brand image, supported by active social media channels and modern web technologies. Technically, the website is built on WordPress using the Elementor page builder, leveraging popular libraries such as jQuery and Slick Carousel. It integrates Google Tag Manager, Google Analytics, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and demonstrates good SEO practices with appropriate meta tags and structured data. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. Cookie consent mechanisms are implemented, indicating awareness of GDPR requirements. However, the absence of additional security headers and lack of visible privacy policy or terms of service pages suggest areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, but the website content and social presence support legitimacy. Overall, Rivacom presents a trustworthy and professional online presence suitable for its business domain. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and improving contact information visibility to strengthen trust and compliance.

G

GoDaddy Operating Company, LLC

arawa.com

71

This website is a professional domain sales landing page operated by GoDaddy, offering the premium domain 'arawa.com' for purchase. It targets individuals and businesses interested in acquiring premium domain names, providing secure transactions, multiple payment options, and customer support. The site is well-branded and consistent with GoDaddy's domain aftermarket business model. Technically, the site uses modern web technologies including React and Next.js, hosted on GoDaddy infrastructure, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and reCAPTCHA integration, although explicit incident response and vulnerability disclosure information are not present. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy compliance. Overall, the site is trustworthy and professionally maintained, serving as a reliable platform for domain sales.

C

CRESS GRAND EST

cress-grandest.org

51

CRESS GRAND EST is a regional non-profit organization dedicated to supporting and promoting the Social and Solidarity Economy (ESS) in the Grand Est region of France. The website serves as a comprehensive resource hub offering information, events, employment opportunities, and promotional activities related to ESS. It holds a recognized certification (QUALIOPI) indicating quality in training services and maintains partnerships with regional and European institutions. The organization targets ESS actors, entrepreneurs, and stakeholders within the region, positioning itself as a key regional player in the social economy ecosystem. Technically, the website is built on the Flexit CMS platform, utilizing modern web technologies including jQuery and Google Tag Manager for analytics and tracking. The site is mobile-optimized with good navigation and SEO practices. Security measures include HTTPS enforcement and Google reCAPTCHA for form protection, alongside a GDPR-compliant cookie consent mechanism. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies. The absence of direct contact emails or phone numbers on the homepage suggests contact is likely handled through dedicated pages or forms. Social media presence is robust, enhancing trust and engagement. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence for a regional non-profit entity. Recommendations include enhancing security headers, publishing explicit security policies, and improving accessibility features to further strengthen compliance and user experience.

S

Salesiáni Dona Bosca Ostrava

boscoostrava.cz

48

Salesiáni Dona Bosca Ostrava is a local non-profit organization focused on youth and community engagement in Ostrava, Czech Republic. The website serves as an information portal for their activities including youth clubs, workshops for schools, accommodation, and church services. The organization maintains a consistent brand presence with official contact emails and social media channels, supporting community outreach and engagement. Technically, the website is built on WordPress using modern plugins and frameworks such as Bootstrap and Smart Slider 3, providing a responsive and user-friendly experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. The absence of WHOIS data limits domain trust verification, but the overall digital footprint and content quality support the legitimacy of the organization. Strategic recommendations include enhancing security headers, publishing a privacy policy, and improving accessibility features to strengthen compliance and trust.

V

Vinofil Vinkurs

vinforedrag.no

52

Vinofil Vinkurs is a Norwegian small business specializing in wine education through in-person and digital courses, targeting both corporate and private clients. The website presents a professional and consistent brand image with clear offerings such as wine courses at workplaces, private homes, and gift cards. The business is newly established in 2023, and the domain registration aligns with this timeline. The site leverages modern web technologies and analytics tools but lacks critical privacy and security disclosures, which impacts compliance and trustworthiness. No blocking or WAF mechanisms hinder content access, allowing full analysis.

C

Culligan Storkök AB

3s.nu

55

Culligan Storkök AB operates as a leading Swedish provider of commercial kitchen solutions, offering comprehensive services from planning and design to installation and maintenance. With over 30 years of industry experience and a nationwide service network, the company targets professional kitchens including restaurants, cafes, and schools. The website reflects a mature digital presence with professional branding, clear service offerings, and strong customer engagement channels. Technically, the site is built on WordPress with modern frameworks and integrates advanced analytics and marketing tools while maintaining GDPR compliance. Security posture is solid with HTTPS and CAPTCHA protections, though there is room for improvement in HTTP security headers and formal security policies. Overall, the site demonstrates high professionalism and trustworthiness, supporting Culligan Storkök's market position as a reliable B2B partner in the hospitality sector.

I

ISTRABENZ PLINI d.o.o.

istrabenzplini.hr

11

Istrabenz plini d.o.o. is a Croatian energy company specializing in the supply of technical gases, LPG in bottles and tanks, natural gas, and innovative energy solutions. As part of the international SIAD Group, it holds a strong market position in Croatia, serving households, industrial clients, and public institutions. The company emphasizes sustainability and modern energy technologies. The website reflects a mature digital presence built on WordPress with modern SEO and user experience practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Contact and business information is transparent and comprehensive, supporting trust and credibility.

A

Apiherbal Ltd.

apiherbal.com

52

Apiherbal Ltd. is a Croatian company specializing in the development, certification, registration, distribution, and marketing of natural herbal-based medical devices and cosmetic products. The company holds a CE ISO 13485 certification, indicating compliance with medical device quality management standards. Their product portfolio targets uro-genital diseases, chronic wounds, inflammatory skin diseases, and menopausal issues, positioning them as a niche player in the healthcare sector focused on natural remedies. The website is professionally designed, mobile-optimized, and provides comprehensive contact information and legal policies, supporting a trustworthy online presence. Technically, the website runs on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution. It integrates Google Analytics and Google reCAPTCHA for analytics and security, respectively. The site uses HTTPS with a good SSL configuration but lacks some security headers and DNSSEC, which are recommended for enhanced security. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CAPTCHA protection on forms, and cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The WHOIS data is transparent and consistent with the business profile, enhancing trustworthiness. No critical vulnerabilities or suspicious content were detected. Overall, Apiherbal Ltd. presents a credible and professional online presence with a solid foundation in security and privacy compliance. Strategic improvements in security headers, DNSSEC, and explicit security policies would further strengthen their posture and trust with customers and partners.

C

Crafthemes

crafthemes.com

9

Crafthemes is a small technology business specializing in the development and sale of free and premium WordPress themes, primarily targeting bloggers and small businesses. Their website showcases a variety of themes with a focus on simplicity, SEO optimization, and customization. The company emphasizes customer support and documentation to enhance user experience. Technically, the website is built on WordPress using modern tools such as Elementor, Easy Digital Downloads, and Google reCAPTCHA, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, with good SEO practices in place. Security posture is reasonable with HTTPS enforced and CAPTCHA on forms, but lacks advanced security headers and published security policies. The absence of privacy and cookie policies is a notable compliance gap. WHOIS data is missing or unavailable, which raises concerns about domain legitimacy despite the professional website presence. Overall, the site is functional and trustworthy from a user perspective but would benefit from improved transparency and security documentation.