Security Directory

A

Alphabet partner s.r.o.

onlineobec.sk

53

Online Obec, operated by Alphabet partner s.r.o., is a Slovak-based technology company specializing in digital solutions tailored for municipalities and local governments. The company offers an integrated ecosystem including municipality websites, mobile applications, and mobile broadcasting services designed to simplify administrative tasks and enhance citizen communication. With over 350 municipalities served, Online Obec holds a strong regional market position as a trusted provider of affordable and automated digital tools for public administration. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. The infrastructure supports responsive design, accessibility, and SEO best practices, ensuring a good user experience across devices. The use of Google Tag Manager and Cookiebot indicates a mature approach to analytics and user consent management. From a security perspective, the site enforces HTTPS with DNSSEC enabled, employs cookie consent mechanisms, and shows no signs of exposed sensitive data or vulnerabilities. However, explicit security policies and incident response contacts are not present, representing an area for improvement. Overall, the security posture is solid but could be enhanced with additional headers and documented policies. The overall risk assessment is low, with the website demonstrating professionalism, compliance with GDPR, and strong business credibility. Strategic recommendations include formalizing security policies, enhancing incident response readiness, and continuous monitoring of third-party scripts to maintain security and compliance.

E

East Carolina Anesthesia Associates

ecaa.com

43

East Carolina Anesthesia Associates (ECAA) is a physician-owned anesthesiology practice operating primarily in the Southeastern United States, with over 50 locations across North Carolina and Southeast Virginia. The company focuses on delivering comprehensive anesthesia and pain management services, partnering with hospitals, surgery centers, and doctors' offices. Their market position is strong as one of the fastest growing anesthesiology practices in the region, emphasizing patient care and satisfaction. The website reflects a professional healthcare service provider with clear business focus and consistent branding. Technically, the site is built on WordPress, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by GoDaddy, with domain registration dating back to 2000, supporting the company's established presence. Security posture is adequate with HTTPS enabled and anti-spam measures in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is minimal, with no explicit privacy or cookie policies detected, which could be a compliance risk. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

U

Université de Strasbourg

unistra.fr

55

Université de Strasbourg is a prominent French public university offering extensive educational programs, research activities, and international collaborations. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting students, researchers, and academic partners. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries, ensuring good performance and mobile optimization. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data is notable but likely due to AFNIC policies; however, the website's content and partner affiliations strongly support its legitimacy. Overall, the site scores well on content quality, technical implementation, and business credibility, with minor penalties for privacy compliance and WHOIS transparency.

R

RAK CZ a.s.

rak.cz

45

RAK CZ a.s. is a well-established Czech real estate company operating since 1990, specializing in property sales, rentals, management, auctions, consulting, and development. The company positions itself as a professional and comprehensive real estate partner offering unique and individualized client services. Their market presence is supported by quality management audits and membership in recognized real estate associations. Technically, the website is built on WordPress with modern plugins and frameworks, including Yoast SEO, Google Analytics, and GDPR-compliant cookie management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and reCAPTCHA integration, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the website content and business information are consistent and professional. Overall, the site demonstrates good content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy platform for real estate services in the Czech Republic.

T

TechnologyMountains

technologymountains.de

43

TechnologyMountains is a German-based technology collaboration network that aims to accelerate business progress by linking companies with technical expertise and bridging the gap between industry and science. The website presents a professional and consistent brand image focused on fostering technological leadership among its members. The technical infrastructure is built on WordPress with common plugins such as WooCommerce and caching mechanisms, providing moderate performance and good mobile optimization. However, the site lacks critical privacy and security policies, contact information, and advanced security headers, which lowers its overall security posture. No WAF or blocking mechanisms were detected, allowing full content accessibility. The WHOIS data is minimal but consistent with hosting providers, with no privacy protection or suspicious patterns identified. Overall, the site is safe for general audiences and serves a business-to-business market segment.

O

OLÚp Predná Hora

olup-prednahora.sk

40

OLÚP, n. o. Predná Hora is a well-established non-profit specialized psychiatric healthcare institution in Slovakia, founded in 2006. The organization offers a range of services including inpatient and outpatient psychiatric care, family therapy, and aftercare treatments. The website reflects a professional and trustworthy presence with comprehensive information targeted at patients and interested parties. It maintains a consistent brand identity and demonstrates compliance with GDPR and cookie regulations, enhancing user trust. The institution also actively engages users through social media channels and a dedicated mobile application.

I

IQS Group a.s.

iqsgroup.cz

58

IQS Group a.s. is a Czech Republic-based technology company specializing in nanotechnology, optical security, and 3D printing solutions. The company operates internationally, providing innovative products and technologies primarily for counterfeit protection, nanostructured optics, and medical applications. Their market position is that of an innovative leader with a medium-sized business model focused on B2B clients such as luminaire manufacturers and security document producers. The website reflects a professional and consistent brand image with clear communication of their subsidiaries and services. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and plugins for enhanced user experience and GDPR compliance. The site is mobile-optimized, accessible, and performs moderately well. Hosting and domain registration are consistent with the company's location and business age. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and the company holds multiple ISO certifications including ISO 27001 for information security. No critical vulnerabilities or exposed sensitive data were detected. However, some security headers could be improved, and incident response contact details are not explicitly provided. Overall, the website and business demonstrate a strong security posture, good privacy compliance, and high business credibility. The risk level is low, but recommendations include enhancing security headers and publishing a vulnerability disclosure policy to further strengthen trust and security culture.

E

ESC Olomouc

escolomouc.cz

46

ESC Olomouc operates as a modern equestrian center in the Czech Republic, specializing in hosting show jumping and dressage competitions. The website positions the center as the most exclusive equestrian venue in the country, targeting equestrian sports enthusiasts and competitors. Key services include event hosting, live streaming, and hospitality offerings such as a restaurant. The business is small-sized, founded in 2012, and maintains partnerships with local financial institutions and sports organizations. Technically, the website uses modern frontend technologies like Alpine.js and Swiper.js, with a responsive design and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. No forms or direct contact details are visible, which may impact user engagement and trust. Overall, the site is professional and content-rich but could enhance privacy compliance and security transparency.

A

AFM Productions

afmproductions.fr

49

AFM Productions is a specialized audiovisual production company founded in 1997 by the AFM-Téléthon association, focusing on creating documentaries and educational content about rare genetic diseases and medical research. The company targets a general audience interested in health, science, and social issues, leveraging storytelling to raise awareness and inform the public. The website reflects a professional and consistent brand identity aligned with its mission. Technically, the website is built on Drupal 10 with Bootstrap and uses modern libraries such as Swiper.js for UI components. It integrates Google Analytics and a GDPR-compliant cookie consent mechanism via CookieYes, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS and has implemented cookie consent but lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a trustworthy entity. Overall, the site presents a low-risk profile with good compliance and technical standards, though improvements in security headers and transparency policies are recommended.

P

PRAGUE BOATS s.r.o.

prague-boats.cz

61

Prague Boats s.r.o. is a well-established company specializing in river cruises and boat rental services on the Vltava River in Prague. With over 30 years of experience, the company emphasizes sustainable and eco-friendly boating, operating a modern fleet including fully electric boats. Their market position is strong locally, targeting tourists and event organizers seeking sightseeing, dining, and private event cruises. The website is professionally designed, mobile-optimized, and offers multilingual support with online booking capabilities. Technically, the website employs modern JavaScript libraries such as Swiper.js and Glide.js for interactive content, integrates multiple marketing and analytics tools including Facebook Pixel and Bing UET, and uses Google Tag Manager for tag management. The site is served over HTTPS with good performance and accessibility features, though some security headers are missing. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosure, and incident response contacts. WHOIS data is unavailable, which reduces trustworthiness slightly but is mitigated by clear business registration info and professional web presence. Overall, the website and business demonstrate a mature digital presence with room for improvement in transparency of privacy and security policies. Strategic recommendations include publishing privacy and terms of service pages, enhancing security headers, and providing vulnerability disclosure information to strengthen trust and compliance.

I

INTEC S.A.

intec.gr

53

INTEC S.A. is a well-established Greek company specializing in providing digital solutions, products, and services to the industrial and energy sectors within Greece. The company positions itself as a leading supplier in the Greek industrial market, offering key services such as installation, training, maintenance, mechanical installation supervision, and cybersecurity solutions. The website reflects a professional B2B business model targeting industrial clients and energy companies. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap 5, jQuery, and Font Awesome, and it is optimized for mobile devices with good accessibility features. The presence of Google Analytics indicates moderate user tracking with a cookie consent mechanism in place, although a formal privacy policy is missing. Security posture is adequate with HTTPS enabled and accessibility tools implemented, but lacks explicit security headers and published security policies. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the company and its online presence.

A

Aquitaine Blue Energies

aquitaine-blue-energies.fr

37

Aquitaine Blue Energies (ABE) is a regional association founded in 2021, focused on promoting and developing offshore wind and marine renewable energy sectors in the Nouvelle-Aquitaine region of France. The organization acts as a cluster to federate local companies and professionals around a common economic development project in the marine energy field. The website reflects a professional and consistent brand presence with clear messaging about its mission, values, and activities. Technically, the site is built on WordPress with modern plugins and themes, hosted by OVH, and demonstrates good SEO and mobile optimization. Security posture is adequate with HTTPS and no obvious vulnerabilities, but lacks published security policies and vulnerability disclosure mechanisms. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, including a company email and physical address in La Rochelle, along with active social media channels on Twitter and LinkedIn. Overall, the site is trustworthy and serves its business purpose well but should improve compliance and security transparency.

H

Hellenic Cables

hellenic-cables.com

64

Hellenic Cables is a major European cable manufacturer specializing in submarine, power, and telecommunication cables, serving primarily industrial and energy sector clients. The company positions itself as one of the largest cable producers in Europe with a strong international presence and a B2B business model. Their website reflects a professional and well-structured digital presence, leveraging WordPress CMS with modern plugins and technologies such as Yoast SEO and OneTrust for privacy compliance. The site is well-optimized for SEO, mobile-friendly, and provides comprehensive corporate information including social media channels and contact details. Security-wise, the website enforces HTTPS and includes standard security headers, but lacks explicit security policy and incident response information. The WHOIS data for the domain is missing or inaccessible, which raises some concerns about domain registration transparency, though the website content and branding strongly indicate legitimacy. Overall, the site demonstrates a mature digital infrastructure with good privacy compliance and a solid security posture, suitable for a large industrial enterprise.

C

CLS (Collecte Localisation Satellites)

cls.fr

64

CLS (Collecte Localisation Satellites) is a large multinational company founded in 1986, specializing in satellite data collection and Earth observation services. The company operates globally with 35 sites and focuses on environmental monitoring, maritime security, sustainable fisheries, mobility, and energy infrastructure. CLS leverages advanced technologies such as data science, AI, and machine learning to provide actionable insights to governments, environmental agencies, and industry sectors. The website reflects a mature digital presence with professional design, comprehensive content, and multilingual support. Technically, the website is built on WordPress using the Divi theme and incorporates modern JavaScript libraries like Swiper.js and GSAP. It employs HTTPS with good SSL configuration and uses hCaptcha for form security. The site includes detailed privacy and cookie policies with consent mechanisms, indicating good privacy compliance. Analytics are implemented via Google Tag Manager with moderate user tracking. From a security perspective, the site shows good practices such as HTTPS enforcement and CAPTCHA usage but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, but the professional web presence and certifications support trustworthiness. Overall, CLS presents a strong business and technical profile with good security posture and privacy compliance. The main risk is the lack of publicly available WHOIS data, which should be further investigated to confirm domain registration legitimacy.

LD Studio is a Czech Republic-based small technology service provider specializing in custom web development, e-commerce solutions, graphic design, and complementary digital marketing and printing services. The company positions itself as a partner offering personalized and modern digital solutions primarily targeting businesses and individuals seeking professional web and graphic design services. The website reflects a professional and consistent brand image with clear contact information and client testimonials, indicating a trustworthy and established presence in its regional market. Technically, the website employs a moderate technology stack including jQuery, Swiper.js, and ASP.NET Web Forms, with Google Analytics integrated under privacy-conscious settings. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers and explicit privacy and terms of service pages, which are areas for improvement. Performance is moderate, and SEO practices appear adequate. From a security perspective, the site benefits from HTTPS and minimal exposure of sensitive data but would benefit from enhanced security headers and more transparent privacy policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact details suggest legitimate business operations. No critical vulnerabilities or adult content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, LD Studio presents a credible and professional digital agency with room for improvement in security and compliance transparency. Strategic enhancements in privacy documentation and security headers would strengthen its security posture and trustworthiness.

W

Wine Point Plzeň

winepointplzen.cz

53

Wine Point Plzeň is a small, specialized wine retailer located in Plzeň, Czech Republic, focusing on Czech and Moravian wines. The business offers a combination of retail sales, wine tastings, events, and corporate services, supported by an e-commerce platform. The website is built on WordPress using Elementor, featuring modern frontend technologies and a good user experience with mobile optimization. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security policies and cookie consent mechanisms. The domain registration is consistent and transparent, supporting the legitimacy of the business. Overall, the website presents a professional and trustworthy image but should improve privacy compliance and security transparency.

W

WSM – Czech Republic s.r.o.

wsm.cz

51

WSM – Czech Republic s.r.o. is a Czech manufacturing company specializing in mobile hall systems and modular containers for various business applications such as receptions, office spaces, and sales rooms. The company targets business and industrial clients primarily within the Czech Republic. The website is built on WordPress and uses common web technologies including Gravity Forms and Font Awesome. The digital infrastructure appears basic but functional, with moderate performance and good mobile optimization. Security posture is limited with no visible security headers or advanced protections, and WHOIS data is unavailable, likely due to privacy protection. There is a lack of privacy and cookie policies, as well as contact information, which impacts trust and compliance. Overall, the website serves as a basic informational platform for a small manufacturing business but would benefit from enhanced security, compliance, and transparency measures.

O

Obec Podlesí

obecpodlesi.cz

51

Obec Podlesí operates an official municipal website serving the local community of Podlesí in the Czech Republic. The site provides comprehensive information about local government, community events, official documents, and contact details. It targets residents and visitors seeking municipal services and updates. The website is well-structured with clear navigation and mobile optimization, reflecting a good level of digital maturity for a small government entity. Technically, it employs common JavaScript libraries such as jQuery, Bootstrap, and Swiper.js to enhance user experience. Security posture is moderate; HTTPS is used, and a cookie consent mechanism is implemented, but security headers and explicit privacy policies are lacking. The absence of WHOIS data reduces trust slightly, though the official nature and content quality support legitimacy. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy transparency.

F

FairCasinos

ferovakasina.com

63

FairCasinos is a Czech-focused online platform specializing in reviews and affiliate marketing for online casinos licensed for Czech players. The website offers detailed casino reviews, bonus offers, and guides to help Czech players find trustworthy and legal online gambling options. The business operates primarily as an affiliate and review site, targeting the Czech gambling market with a focus on compliance and quality. Technically, the site is built on WordPress, uses modern JavaScript libraries, and is hosted with Cloudflare DNS services, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though additional security headers and policies could enhance trust. Privacy compliance is basic, with cookie consent implemented but lacking explicit privacy and terms of service pages. Overall, the domain registration is consistent with the business claims, and the site presents a professional and trustworthy image for its niche audience.

F

FestivalyVina

festivalyvina.cz

41

FestivalyVina operates the largest wine festival tour in the Czech Republic, organizing and promoting multiple wine-related events across various cities. The website serves as an official portal providing event calendars, galleries, and information about wine producers, targeting wine enthusiasts and the general Czech public interested in wine culture. Technically, the site uses established JavaScript libraries such as jQuery and Swiper.js, integrates Google Analytics for visitor tracking, and loads resources over HTTPS, indicating a modern but moderately optimized infrastructure. Security posture is adequate but could be improved by implementing security headers and publishing privacy and cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and partner affiliations suggest a legitimate business. Overall, the site is professional, content-rich, and well-branded but requires enhancements in privacy compliance and security transparency.

C

CentraleSupélec Alumni

centralesupelec-alumni.com

58

CentraleSupélec Alumni operates as the official alumni network for the prestigious French engineering school CentraleSupélec, offering a comprehensive platform for graduates and students to connect, share experiences, and access career opportunities. The website provides a variety of services including a member directory, event calendar, job board, and mentoring programs, positioning itself as a key resource for its community. The business model is membership-based with additional revenue from contributions and donations. Technically, the website employs modern web technologies such as Vue.js, Google Tag Manager, and Google Maps API, ensuring a responsive and interactive user experience. The platform integrates OAuth authentication with major providers, enhancing security and ease of access. While performance is moderate, the site is mobile-optimized and SEO-friendly. From a security perspective, the site enforces HTTPS and uses secure login mechanisms. However, some standard security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, representing an area for improvement. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good data protection practices. No vulnerabilities or exposed sensitive data were identified. Overall, the website is professional, trustworthy, and well-aligned with its educational and non-profit mission. The lack of WHOIS data for the subdomain is typical and does not detract from its legitimacy. Strategic recommendations include enhancing security headers, improving accessibility, and maintaining regular security audits to uphold trust and compliance.

L

LOSAN

losan.cz

59

LOSAN is a Czech Republic-based company specializing in the sale and servicing of computing and office technology. Established since 1998, it offers a broad range of services including warranty and post-warranty repairs, network design and implementation, IT outsourcing, and tailored solutions for schools. The company maintains partnerships with reputable IT brands, enhancing its market credibility. The website reflects a mature digital presence with clear service descriptions and a user-friendly interface. Technically, the website is built on WordPress 5.7, utilizing modern libraries such as jQuery and FontAwesome, and includes a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and demonstrates good SEO practices, although some security headers are missing. Hosting and domain registration are consistent with the company's Czech location and history. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of analytics and advertising scripts suggests minimal user tracking, aligning with privacy compliance. Overall, LOSAN presents a trustworthy and professional online presence with solid business credibility and technical implementation. Strategic improvements in security headers and incident response transparency would further enhance its security posture and user trust.

Z

Základní škola Světlo s.r.o.

zssvetlo.com

60

Základní škola Světlo s.r.o. is a private elementary school based in Třebíč, Czech Republic, focusing on providing quality education with an individual approach and a friendly atmosphere. The school emphasizes collaboration with families and holistic development of students intellectually, personally, and spiritually. Their market position is that of a modern, value-driven educational institution with a strong local presence and active engagement through social media and virtual tours. Technically, the website is built on WordPress with modern plugins and libraries, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its educational mission.

P

PanoPro s.r.o.

panopro.cz

58

PanoPro s.r.o. is a Czech Republic-based company specializing in professional 3D laser scanning, virtual tours, interactive maps, and 3D modeling services. The company targets businesses and professionals requiring advanced spatial visualization solutions across the Czech Republic. Their website reflects a professional service provider with a clear focus on real estate and related industries, offering both 3D and 2D deliverables. Technically, the website is built on WordPress using the Divi theme and integrates common plugins for SEO, analytics, and form handling, indicating a moderate level of digital maturity. Security-wise, the site employs HTTPS and Google reCAPTCHA, but lacks published privacy, cookie, and security policies, which are important for compliance and trust. Overall, the website is accessible, well-structured, and professional, but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

M

Mateřská škola Eliška, Opava, příspěvková organizace

mseliska.cz

54

Mateřská škola Eliška is a small, regionally funded preschool educational institution located in Opava, Czech Republic. It operates as a contributory organization under the Moravskoslezský kraj regional government, providing early childhood education and specialized support services such as rehabilitation and orthoptics. The website targets parents and guardians in the local community, offering information about classes, events, and organizational details. The business model is public sector focused, emphasizing community service rather than commercial revenue generation. Technically, the website employs a modern JavaScript stack including jQuery, Swiper.js for sliders, and Magnific Popup for image galleries, along with accessibility enhancements via ResponsiveVoice. The site is mobile optimized and features good navigation and content structure, though SEO and metadata completeness could be improved. No CMS or hosting provider details were identified. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS as implied by Open Graph URLs, but lacks visible security headers and cookie consent mechanisms. No forms or data collection points were found on the main page, reducing attack surface. The absence of WHOIS data and domain registration details is a concern for trust but does not directly impact the operational security posture. Privacy policy is present and appears GDPR compliant, but no explicit incident response or vulnerability disclosure information is provided. Overall, the website is safe, professional, and trustworthy for its intended audience, with moderate technical maturity and some room for security and compliance improvements. The lack of WHOIS data and cookie consent are the main gaps. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and improving metadata for SEO and social sharing.

G

Google Analytics Alternative

abralytics.com

44

Abralytics is a privacy-focused web analytics platform positioned as an alternative to Google Analytics (GA4), targeting web development agencies and businesses concerned with data privacy. The company offers cookie-free analytics, EU-based data storage, and white label branding, emphasizing user privacy and compliance. The website is built on WordPress with Elementor and integrates marketing and analytics tools such as HubSpot, Microsoft Clarity, and Google Tag Manager. While the site is professionally designed and mobile-optimized, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is generally good with HTTPS and domain protections, but DNSSEC and security headers are missing. Overall, the domain registration is consistent with the business profile, indicating legitimacy.

L

LMC France

lmc-web.fr

34

LMC France is a French web development agency specializing in delivering customized digital solutions. The company targets businesses and organizations seeking professional web development services. The website demonstrates a professional design with consistent branding and good content quality, indicating a small-sized agency operating in the technology sector within France. Technically, the site is built on WordPress using Elementor and integrates SEO tools like Yoast and analytics via Matomo, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks advanced security headers and explicit privacy or cookie policies. The absence of WHOIS data raises concerns about domain legitimacy and registration transparency. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and clearer contact information to improve trust and security.

A

Association de l'aluminium du Canada

aluminium.ca

57

The Association de l'aluminium du Canada (AAC) is a well-established industry association representing the Canadian primary aluminium sector, with a history spanning over 100 years. The organization focuses on promoting sustainable prosperity within the aluminium industry, advocating for decarbonization efforts in North America, and supporting member alumineries. The website is professionally designed, bilingual (French primary with English option), and targets industry stakeholders, government entities, and the general public interested in aluminium and sustainability topics. AAC's market position is strong as a key national industry association with a medium-sized organizational footprint.

T

Tébéo & Tébésud

tebeo.bzh

60

Tébéo & Tébésud operate as regional television broadcasters serving the Brittany West and Morbihan regions in France, offering local TV programming, live streaming, and replay services. The website is well-structured, leveraging modern web technologies such as WordPress with Elementor, Yoast SEO, and analytics tools like Piano Analytics and Google Tag Manager. The site demonstrates a moderate to good level of digital maturity with mobile optimization and SEO best practices in place. Security posture is strong with HTTPS enforced, security headers present, and use of reCAPTCHA for form protection. However, the absence of a published privacy policy, terms of service, and explicit contact information for security or business inquiries represents a compliance and trust gap. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

C

Centrum sociálních služeb Ostrava, o.p.s.

css-ostrava.cz

49

Centrum sociálních služeb Ostrava, o.p.s. is a well-established non-profit organization founded in 2006, providing a broad range of social services primarily in the Czech Republic. Their services focus on supporting families, children, and individuals in difficult social situations through shelters, crisis centers, family counseling, and social activation programs. The organization maintains a professional web presence with clear navigation and multiple physical locations integrated via Google Maps, enhancing accessibility for their target audience. The website encourages donations and donations with tax deduction benefits, indicating a transparent and community-focused business model. Technically, the website uses modern JavaScript libraries such as Swiper.js and Google Maps API, along with Google Tag Manager for analytics, reflecting a moderate level of digital maturity.

Č

Čazmatrans - Nova d.o.o.

cazmatrans.hr

53

Čazmatrans - Nova d.o.o. is a Croatian transportation company specializing in bus services within Croatia and international routes. The website provides an online ticket purchasing platform targeting general travelers and commuters. The company has a medium-sized presence with multiple subsidiaries and a well-established market position since 2012. The website is professionally designed with good navigation, mobile optimization, and relevant content focused on transportation services. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper.js, and integrates Google services like Tag Manager and Maps API, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, cookie consent implemented, and secure payment logos displayed, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and provides a safe user experience.

A

ACADEMIA d.o.o.

lahko.si

46

Lahko.si is a Slovenian educational platform dedicated to promoting lifelong learning through various educational programs, including live and online courses. The platform is supported by recognized educational entities such as ACADEMIA d.o.o. and ACS, positioning it as a reputable resource in the Slovenian education sector. The website offers video content with accessibility features like captions and transcripts, enhancing user engagement and inclusivity. Technically, the site is built on Drupal 10 with modern front-end technologies, ensuring a responsive and accessible user experience. However, explicit privacy policies and terms of service are not readily found, which may impact user trust and compliance. Security posture is moderate with HTTPS usage and no visible vulnerabilities, but lacks explicit security headers and incident response contacts. Overall, the platform is a credible educational resource with room for improvement in privacy and security transparency.

S

SloCro klub

slo-cro-klub.hr

47

SloCro klub operates as a regional economic chamber focused on strengthening business relations between Slovenia and Croatia. The organization facilitates cooperation through partnerships, information support, and consulting services, targeting businesses and institutions engaged in cross-border economic activities. The website reflects a professional and consistent brand presence with a clear business focus on economic cooperation. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is moderate, with HTTPS enabled and domain transfer protections in place, though DNSSEC is not enabled and security headers are absent. Privacy compliance is basic, with a cookie consent mechanism implemented but no explicit privacy or terms of service pages found. Overall, the site is accessible, well-structured, and serves its business purpose effectively.

B

Business at OECD

biac.org

11

Business at OECD (BIAC) is a well-established advocacy organization representing the private sector's interests at the OECD. Founded in 1962, it connects over 55 national business and employer bodies, facilitating dialogue between business and government to promote economic growth and sustainable development. The website reflects a professional and authoritative presence with comprehensive policy content, reports, and event information targeting business leaders, policymakers, and OECD stakeholders. Technically, the site is built on HubSpot CMS, leveraging modern web technologies and analytics tools, with good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is evident with a clear privacy policy and cookie consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, though WHOIS data is unavailable due to privacy protection, which is justified given the organization's nature.

M

Maze Creative

mazecreative.co.uk

61

Maze Creative is a small, remote creative agency specializing in branding and digital product design, operating studios in London and Valencia. The company offers a comprehensive range of services including creative direction, brand identity, UI/UX design, and no-code development. Their market position is that of a specialized boutique agency focused on long-term client relationships and delivering high-quality creative solutions. Technically, the website is built on modern web technologies including Webflow CMS, uses Google Analytics for visitor insights, and implements Google reCAPTCHA for bot protection. The site is well-optimized for mobile devices and provides a professional user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies are not publicly documented. The absence of WHOIS data for the exact domain queried introduces some uncertainty regarding domain registration legitimacy, but the website content and client testimonials strongly indicate a legitimate business. Privacy compliance is partial, with cookie consent present but no explicit privacy or terms of service pages found. Overall, the website is professional and trustworthy with room for improvement in transparency and security documentation.

F

Filmlab Palestine

flp.ps

62

Filmlab Palestine is a well-established non-profit organization dedicated to promoting and expanding Palestinian cinema culture since 2014. The organization offers a variety of programs including workshops, film festivals, post-production studios, and streaming platforms targeting filmmakers, families, and the broader community interested in Palestinian audiovisual storytelling. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on Drupal 10 with modern front-end libraries and is mobile optimized, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible with active social media engagement and clear contact information.

D

Derendinger AG

derendinger.ch

72

Derendinger AG is the largest supplier of automotive spare parts and consumables in the Swiss aftermarket, serving professional garages and workshops. The company offers a wide range of products including parts for passenger cars, commercial vehicles, motorcycles, tires, lubricants, and workshop equipment, supported by consulting and training services. Their market position is strong as a key player within the Swiss Automotive Group. Technically, the website is built on Neos CMS with modern JavaScript libraries such as Swiper.js and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and privacy compliance evident through clear policies and consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO, supporting the company's business credibility and market presence.

A

Associazione svizzera delle organizzazioni giovanili (SAJV)

congedogiovanile.ch

53

The website congedogiovanile.ch serves as an informational platform dedicated to promoting and explaining the youth leave rights (congedo giovanile) in Switzerland. It targets young employees and apprentices under 30 engaged in volunteer activities within cultural, sports, or social organizations. The site provides downloadable forms, informational brochures, legislative references, and a chatbot for user assistance. The organization behind the site is the Swiss Association of Youth Organizations (SAJV), positioning itself as a trusted non-profit resource in this niche. Technically, the site is built on a Redaxo CMS platform, utilizing standard web technologies such as HTML5, CSS3, JavaScript, jQuery, and Swiper.js for UI components. While the site is well-structured and mobile-optimized, it lacks critical privacy and cookie policies and does not expose security headers, which are areas for improvement. No contact emails or phone numbers are explicitly provided, which may affect user trust and compliance. Overall, the site is legitimate, safe, and serves its informational purpose effectively but would benefit from enhanced security and privacy compliance measures.

V

VolonTerra

volonterra.ch

52

VolonTerra is a Swiss non-profit organization focused on promoting voluntary engagement among youth groups across Switzerland, particularly through environmental and community projects scheduled for September 2026. The website serves as a platform for project registration, information dissemination, and local leadership recruitment, supported by partnerships such as with SAJV. The digital infrastructure is built on REDAXO CMS with modern JavaScript libraries, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and standard security headers, though lacking explicit security policies and vulnerability disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the site is trustworthy and professionally presented, targeting youth volunteers and community participants.

S

SAJV (Schweizerische Arbeitsgemeinschaft der Jugendverbände)

jugendsession.ch

39

Jugendsession.ch is the official website for the Eidgenössische Jugendsession, a prominent Swiss non-profit youth political participation project organized by the Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV). The platform facilitates annual gatherings of 200 young people from across Switzerland to discuss political issues and formulate demands, aiming to strengthen youth political engagement. The website is professionally designed, multilingual, and supported by numerous Swiss cantons and federal offices, reflecting a strong market position within the government and non-profit sectors. Technically, the website employs modern web technologies including jQuery, Swiper.js, and FontAwesome, with image optimization via ImageKit. It is likely powered by the Contao CMS. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Security posture is strong with HTTPS enforced and appropriate security headers present, though there is room for improvement in privacy compliance and incident response transparency. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, it lacks a cookie consent mechanism and a vulnerability disclosure policy, which are recommended for compliance and transparency. Contact information is clearly provided, but no dedicated security or incident response contacts are visible. Overall, jugendsession.ch is a trustworthy, well-maintained government-affiliated site with a clear mission and solid technical foundation. Strategic enhancements in privacy compliance and security transparency would further strengthen its risk profile and user trust.

F

Federazione svizzera delle associazioni giovanili (FSAG)

fchag.ch

49

The Federazione svizzera delle associazioni giovanili (FSAG) is a well-established Swiss non-profit organization founded in the 1930s, serving as an umbrella for over 60 youth organizations representing more than 500,000 children and young people. The website clearly communicates its mission to advocate for youth interests politically and socially, with key projects focused on youth engagement, future participation, and inclusion. The organization maintains a strong presence across multiple social media platforms, enhancing its outreach and engagement. Technically, the website is built on the REDAXO CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js for interactive elements. The site is served over HTTPS with appropriate security headers, indicating a good security posture. Performance and mobile optimization are adequate, providing a positive user experience. Security-wise, the site implements HTTPS and standard security headers but lacks published security policies, incident response information, and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service page. Contact information is limited to a phone number, with no verified company emails publicly listed. Overall, the website is professional, trustworthy, and aligned with the organization's mission. However, improvements in privacy compliance, security transparency, and user data protection practices are recommended to enhance trust and regulatory adherence.

S

Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV)

jugendurlaub.ch

54

Jugendurlaub.ch is a Swiss non-profit informational website dedicated to promoting and facilitating youth leave rights for employees and apprentices under 30 years old engaged in voluntary youth work. The site is closely associated with the Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV), providing authoritative information, downloadable forms, and FAQs to support its target audience. The website is well-branded, consistent, and provides clear contact details, enhancing its trustworthiness and user accessibility. Technically, the site uses modern web technologies including jQuery, Swiper.js, and the Redaxo CMS platform, delivering a good user experience with mobile optimization and multilingual support. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is a notable gap due to the absence of privacy and cookie policies. Overall, the site is legitimate, trustworthy, and serves a clear non-profit advocacy purpose in Switzerland.

S

Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV)

sajv.ch

57

The Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV) is a well-established Swiss non-profit umbrella organization representing approximately 60 youth organizations and over 500,000 children and young people. The organization focuses on political advocacy, youth engagement, inclusion, and social projects. Their website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to their target audience of youth and political stakeholders. Technically, the site uses modern web technologies including jQuery and Swiper.js, and is built on the Redaxo CMS platform. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO.

S

Sparstopp

sparstoppjugend.ch

9

Sparstopp is a Swiss non-profit advocacy website dedicated to opposing government budget cuts in youth and child promotion programs. The site serves as a mobilization platform for youth organizations and civil society, providing information, petitions, and calls to action. The website is well-designed with good content quality and clear navigation, targeting Swiss youth organizations and the general public concerned with youth funding. Technically, it uses modern front-end libraries such as Swiper.js and FontAwesome and is likely built on the REDAXO CMS. However, the site lacks key privacy and cookie policies, security headers, and explicit contact information, which impacts its security posture and privacy compliance. No WAF or blocking mechanisms were detected, and the content is safe for general audiences.

F

Förderkreis Kunsthalle Bielefeld e.V.

foerderkreis-kunsthalle-bielefeld.de

42

The Förderkreis Kunsthalle Bielefeld e.V. is a German non-profit association dedicated to supporting the Kunsthalle Bielefeld art museum. The organization engages art enthusiasts and supporters through membership benefits such as free museum entry, exclusive previews, art trips, and social events. The website serves as an informational and membership portal, targeting local and regional art supporters. Technically, the site is built on WordPress with a modern but basic tech stack including Bootstrap and jQuery, hosted likely by agenturserver. The site is mobile optimized and presents a consistent brand image with good content quality. Security posture is moderate with HTTPS enabled but lacking advanced security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained but could improve in security and privacy transparency.

H

Hessischer Bauernverband e. V.

hessischerbauernverband.de

59

The Hessischer Bauernverband e. V. is a regional agricultural association representing approximately 18,000 agricultural enterprises in Hessen, Germany. The organization focuses on advocating for agricultural, economic, social, educational, and cultural interests of people working in agriculture and forestry. Their website serves as an information hub for members and the public, offering news, events, educational resources, and member services. The association maintains a strong presence on multiple social media platforms and partners with numerous related organizations.

B

BX1

bx1.be

59

BX1 is a French-language regional media company focused on delivering news, culture, sports, traffic, and weather information for the Brussels Capital Region. The website offers a variety of content including news articles, TV broadcasts, radio and podcasts, and live streaming services. It targets residents and French-speaking audiences in Brussels, positioning itself as a key regional media outlet. The business appears medium-sized, founded in 2015, and maintains a consistent brand presence across multiple social media platforms. Technically, BX1 uses WordPress CMS with popular plugins such as Yoast SEO and Elementor, hosted on OVH and assets served via DigitalOcean. The site is moderately performant, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS enabled and reCAPTCHA implemented, though explicit security headers and a published security policy are lacking. Privacy compliance is partial, with a GDPR cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, BX1 demonstrates a professional and trustworthy online presence with room for improvement in privacy and security transparency.

V

Verband Christlicher Hotels (VCH)

vch.ch

10

The website www.vch.ch represents the Verband Christlicher Hotels (VCH), a Swiss association of Christian hotels offering accommodations primarily in Switzerland and neighboring European countries. The site provides detailed listings of over 30 Christian hotels, targeting travelers seeking faith-based hospitality experiences. The business model centers on promoting member hotels and facilitating bookings, brochures, and job offers within the hospitality sector. The website is professionally designed with consistent branding and multilingual support, positioning VCH as a niche leader in Christian hospitality in Switzerland. Technically, the site is built on TYPO3 CMS with modern front-end technologies including Bootstrap, jQuery, Swiper.js, and Leaflet.js for interactive maps. It uses Matomo analytics, reflecting a privacy-conscious approach to user tracking. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is adequate with HTTPS enforced but lacks visible security headers and explicit privacy and cookie policies, indicating areas for improvement. Security-wise, no critical vulnerabilities or WAF blocking were detected. However, the absence of privacy and cookie policies and security headers represents compliance and security gaps. No incident response or vulnerability disclosure information is present. The WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, the website is a credible, well-structured platform for Christian hospitality services in Switzerland, with good business credibility and technical implementation. Strategic enhancements in privacy compliance and security headers would strengthen its security posture and regulatory adherence.

K

KidsGames

kidsgames.ch

9

KidsGames is a non-profit organization focused on organizing team-based sports and educational events for children aged 7 to 14 in the French-speaking regions of Switzerland. The website serves as an information hub for event details, media content, sponsorship, and partnership opportunities. The organization emphasizes inclusivity, teamwork, and biblical values in its activities. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery and Bootstrap, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS enabled and Google reCAPTCHA integrated, but lacks explicit security headers and privacy/cookie policies. Contact information is limited but includes official email and social media presence. Overall, the website is professional and trustworthy but could improve in privacy compliance and security transparency.