High-risk security reports

C

Citymapper Limited

citymapper.com

47

Citymapper Limited operates a leading urban mobility platform offering a comprehensive transport app available on iPhone, Android, and web. The service integrates multiple transport modes including public transit, cycle hire, ferries, and on-demand cabs, targeting urban commuters seeking efficient multi-modal journey planning. The company is well-established with a domain age of over 19 years and a strong market presence in transportation technology. Technically, the website employs modern web technologies, including JavaScript, Typekit fonts, and a privacy SDK, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is basic with no explicit privacy or cookie policies found in the provided content. Overall, the site is professional, trustworthy, and safe for general audiences.

Sdružení účetních a daňových poradců, z.s. is a Czech non-profit association founded in 1991, providing educational seminars, online training, and publications for accounting and tax advisory professionals. The website presents a professional and consistent brand image, targeting Czech accounting professionals with membership benefits and educational content. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA, with good mobile optimization and secure HTTPS connections. Security posture is solid with secure login forms and HTTPS, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing, which raises concerns about domain registration transparency, though the website content and professional presentation support legitimacy. Overall, the site is well-structured, trustworthy, and serves its niche audience effectively.

O

Olife energy

olife-energy.net

42

The website represents an admin login portal for Olife energy, a company presumably operating in the energy sector. The site is minimalistic, focusing solely on user authentication with no public-facing content or detailed business information. The technical infrastructure is based on Angular 11 with some use of jQuery Fancybox for UI elements. The site lacks visible security headers and privacy policies, which indicates a basic security posture. The absence of WHOIS data raises concerns about the domain's registration status and legitimacy. Overall, the site appears to be an internal or restricted access portal rather than a public marketing site, limiting the scope of public information and trust signals.

The website webusager.fr is currently a placeholder page indicating it is under construction, hosted by OVH. There is no active business content, no contact information, and no privacy or cookie policies present. The domain is registered since 2012 with OVH, consistent with the hosting provider, but the lack of content suggests the site is not yet operational or is abandoned. Technically, the site uses basic HTML and CSS with no advanced frameworks or CMS detected. There is no evidence of HTTPS or security headers, which presents a security risk. No analytics or tracking technologies are in use, and no advertising or marketing tools are present. Overall, the site has very limited digital maturity and poor content quality.

A

agglo-larochelle.fr

agglo-larochelle.fr

47

The website www.agglo-larochelle.fr is currently inaccessible, displaying only a minimal 'Access Denied' message with no meaningful content or metadata. The lack of WHOIS data and absence of any business or contact information severely limit the ability to assess the company's operations or market position. Technically, the site lacks HTTPS, security headers, and any modern web technologies, indicating a very low digital maturity. From a security perspective, the site shows no evidence of compliance with best practices or privacy regulations, and the blocked content suggests either a misconfiguration or intentional restriction. Overall, the risk profile is high due to the lack of transparency and accessibility, and strategic recommendations focus on establishing a proper web presence with secure, compliant, and informative content.

Z

Základní škola Jablůnka

zsjablunka.cz

48

Základní škola Jablůnka is a small primary educational institution located in the Czech Republic, serving approximately 200 students from grades 1 through 9. The school is municipally operated by the local government of Jablůnka and offers comprehensive educational services including daycare and a school canteen. The website reflects a well-maintained digital presence with regular updates on school activities and events, targeting students, parents, and the local community. Technically, the site employs common web technologies such as jQuery, Bootstrap, and Swiper.js, ensuring a responsive and user-friendly experience across devices. However, the site lacks advanced security headers and formal privacy and terms of service documentation, which are important for compliance and trust. The absence of WHOIS data limits domain legitimacy verification, but the presence of official contact details and local government affiliation supports the site's authenticity. Overall, the website demonstrates a good balance of content quality and technical implementation but would benefit from enhanced security and privacy compliance measures.

C

CBS Nakladatelství s. r. o.

malovanemapy.cz

45

The website www.malovanemapy.cz represents CBS Nakladatelství s. r. o., a Czech company specializing in the creation and sale of hand-painted artistic maps. These maps are detailed, cartographically accurate, and serve both practical and decorative purposes for tourists, municipalities, schools, and other institutions. The company offers a variety of map types including city maps, area maps, cycling maps, panoramic maps, thematic maps, and orientation plans, catering to diverse customer needs. The business model focuses on bespoke map production and outdoor map solutions, positioning the company as a niche provider in the cartographic and artistic map market within the Czech Republic.

The website 5mcl.fr currently presents no accessible content, metadata, or business information. The domain is registered with GANDI since 2021 and is active, but the website itself appears to be either under construction or blocked by security mechanisms. There are no visible privacy policies, contact details, or technical implementations such as scripts or analytics. This severely limits the ability to assess the business or security posture. The lack of HTTPS and security headers further reduces trustworthiness. Overall, the site is not currently suitable for business or customer engagement.

F

Flocon Vert

flocon-vert.org

47

Flocon Vert is a French non-profit organization providing a sustainability label for mountain tourism destinations committed to ecological transition. The website presents detailed information about the label, criteria, partner destinations, and upcoming events. It targets mountain destinations, tourism professionals, and environmentally conscious visitors. The site is built on WordPress with Elementor and integrates modern web technologies and Google analytics tools. Security posture is good with HTTPS and CAPTCHA protections, but lacks some security headers and explicit privacy/cookie policies. Contact information and social media presence enhance business credibility. Overall, the site is professional and trustworthy with a clear mission in sustainable tourism.

R

R' La Radiostation

laradiostation.fr

39

R' La Radiostation is a regional French radio station focused on serving mountain vacationers in the Tarentaise area. The website provides radio broadcasting content, news updates in French and English, and weather information relevant to its audience. The business appears to be a small, local media entity with a domain registered since 2004, consistent with its described history. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by OVH, and uses HTTPS for secure connections. However, it lacks explicit privacy and cookie policies, contact information, and security headers, which are important for compliance and security best practices. Overall, the site is functional and professionally designed but could improve in privacy compliance and security hardening.

G

Grosset Janin

grossetjanin.com

46

Grosset Janin is a well-established French company specializing in custom wooden chalet construction and renovation, with a history dating back to 1950. The company targets clients seeking bespoke chalet solutions, offering turnkey projects and renovation services. The website is professionally designed, bilingual (French and English), and optimized for performance and mobile devices. The technical infrastructure is based on WordPress with modern optimization tools like NitroPack and includes integrations such as Google Tag Manager and Google Maps API. Security posture is solid with HTTPS enforced and domain locking, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy and terms of service. Overall, the website reflects a credible and trustworthy business with room for enhanced transparency and security documentation.

The website andra.com is currently inaccessible due to a Cloudflare 502 Bad Gateway error, indicating a server-side issue preventing content delivery. The domain is long-registered since 1998 with Network Solutions, suggesting a legitimate and longstanding registration, but no business or contact information is available on the site to confirm operational status or business details. The technical infrastructure relies on Cloudflare as a CDN and security provider, but the origin server is not responding correctly. No privacy, cookie, or security policies are published, and no contact or social media information is present, limiting the ability to assess compliance or business credibility. Overall, the site is non-functional at this time, resulting in a low AI score and incomplete analysis.

K

Krinolína Art - Nikola Tylšová

krinolinaart.cz

41

Krinolína Art - Nikola Tylšová is a small artisan business specializing in hand-embroidered jewelry based in the Czech Republic. The website serves as an informational and branding platform with links to social media and contact details. The e-commerce shop is under preparation, indicating a startup phase. The business targets general consumers interested in unique handmade jewelry. Technically, the website is built on WordPress, hosted by Wedos, and uses modern web fonts and responsive design techniques. However, it lacks advanced security headers and privacy policies, which are important for compliance and trust. The security posture is moderate with HTTPS usage but no visible security enhancements. Overall, the site is functional and professional but would benefit from improved privacy compliance and security hardening.

S

SVOL obchodní s.r.o.

svolobchodni.cz

45

SVOL obchodní s.r.o. is a Czech company specializing in the sale and purchase of wood, forestry consulting, and coordination of joint trade for members of the SVOL association, the largest private forest owners group in the Czech Republic. The company offers direct sales, public market trading, and educational services focused on sustainable forest management. The website reflects a professional and consistent brand image with clear communication of services and contact information. Technically, the site uses common web technologies such as Bootstrap and jQuery, providing a responsive and user-friendly experience. However, there is a lack of explicit privacy and cookie policies, and security headers are missing, which could pose compliance and security risks. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy compliance measures.

D

Denotevrenychlesu.cz

denotevrenychlesu.cz

43

Denotevrenychlesu.cz is a Czech non-profit event website dedicated to organizing the 'Den otevřených lesů' (Open Forest Day), an event that invites the public to experience forests differently by visiting various forest locations managed by private, municipal, and church owners. The website targets families and nature enthusiasts, providing educational content and event information. The business operates on a small scale with a focus on public engagement and environmental education. Technically, the site is built on WordPress using Elementor and JetEngine plugins, integrating Google Maps for location display. The site is mobile-optimized and SEO-friendly but lacks privacy and cookie policies, which are compliance gaps. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers are missing. Overall, the site is trustworthy and professionally presented but could improve privacy compliance and security hardening.

BENEFIT plus CZ, s.r.o. is a Czech-based tax, accounting, and consulting firm established in 1997, serving a diverse client base from small entrepreneurs to larger companies and non-profit organizations. The company emphasizes professional insurance coverage and is led by a certified tax advisor who is a member of relevant professional bodies. The website reflects a modest but functional digital presence built on WordPress, with basic navigation and content relevant to its business domain. However, the technical stack is outdated, posing potential security risks. The absence of privacy and cookie policies indicates a gap in compliance with modern data protection standards. Security posture is moderate with HTTPS enabled but lacking advanced security headers and updated software versions. The domain WHOIS data is missing, which reduces trustworthiness from a domain registration perspective but the website content and contact details appear consistent with a legitimate small business. Strategic improvements in security, compliance, and technical modernization are recommended to enhance trust and reduce risk.

A

ARTOIS MOBILITES

artois-mobilites.fr

47

Artois Mobilités is a regional public transportation authority in France managing the Tadao bus network and mobility initiatives focused on sustainable and innovative transport solutions. The website reflects an active organization with recent news updates, a clear focus on public service, and community engagement through newsletters and social media. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools such as Google Tag Manager and Facebook SDK, indicating a mature digital infrastructure. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and contact transparency.

The website giftlegacy.com is currently inaccessible beyond a Cloudflare security challenge page employing Turnstile captcha, which prevents direct content access and analysis. The domain is long-established, registered since 1999 via GoDaddy.com, LLC, with no privacy protection enabled. Due to the WAF challenge, no business, contact, or policy information is visible, limiting the ability to assess the company's market position, services, or compliance posture. The technical infrastructure includes Cloudflare as a security and performance provider, but no further technology or CMS details are available. Security posture cannot be fully evaluated due to blocked content, but domain registration data suggests a stable and legitimate domain. Overall, the site requires removal or adjustment of WAF restrictions to enable proper content delivery and compliance transparency.

A

ADRA Network

adra.cloud

47

ADRA Network operates a donation platform focused on humanitarian aid campaigns such as disaster relief and COVID-19 response. The organization targets donors interested in supporting global aid efforts. The website is built on a WordPress CMS with WooCommerce for donation processing, enhanced by Elementor for design and Cloudflare for hosting and CDN services. The technical infrastructure is modern and supports multi-currency donations and multilingual content, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to absence of visible privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the site is professional and trustworthy but could improve transparency and security practices.

The website www.databaze-strategie.cz serves as the official national portal for strategic and conceptual documents in the Czech Republic, operated under the auspices of the Ministry for Regional Development (Ministerstvo pro místní rozvoj ČR) and supported by the National Network of Healthy Cities of the Czech Republic. It provides a comprehensive database of strategic documents at international, national, regional, and local levels, targeting public administration entities, municipalities, and professionals involved in strategic planning. The platform acts as a key tool for cohesion policy and strategic governance in the country. Technically, the site employs a modern JavaScript stack including jQuery, jQuery UI, Select2, and integrates analytics via Google Analytics and Matomo. It uses HTTPS and includes cookie consent mechanisms compliant with GDPR. The site is moderately optimized for performance and mobile use, with basic accessibility features. However, no CMS or hosting provider details are evident, and some security headers are missing. From a security perspective, the site demonstrates good baseline practices such as HTTPS and cookie consent but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS registration data is a concern, reducing trustworthiness despite the official nature of the content. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is a reliable government resource with good content quality and moderate technical maturity. Strategic recommendations include improving security headers, publishing security and incident response policies, enhancing mobile and accessibility compliance, and verifying domain registration details to strengthen trust and compliance.

K

Komora daňových poradců České republiky

kdpcr.cz

49

Komora daňových poradců České republiky is a professional chamber representing tax advisors in the Czech Republic. The organization provides certification exams, educational courses, publications, and professional advocacy services. The website targets tax advisors, accounting professionals, students, and clients seeking tax advisory services. It holds a leading market position within the Czech tax advisory sector. Technically, the website uses a custom CMS with MooTools JavaScript framework, integrates Google Tag Manager, reCAPTCHA, and YouTube APIs, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and presents content in Czech with good design and navigation. Security posture is solid with HTTPS and reCAPTCHA usage, though security headers are not explicitly detected. WHOIS data is missing, which slightly reduces domain trust, but the website content and legal disclosures support legitimacy.

T

Technologický Park Brno, a.s.

technologypark.cz

49

Technology park Brno (Technologický Park Brno, a.s.) operates a technology-focused business park in Brno, Czech Republic, providing office and commercial rental spaces primarily targeting technology and innovation companies. The park leverages its strategic location near major transport routes and multiple university faculties to offer a collaborative environment for research, development, and business growth. The website is professionally designed, featuring multimedia content such as virtual tours and an interactive map of available spaces, enhancing user engagement and business transparency. Contact channels are comprehensive, including email, phone, and a secure contact form with anti-spam measures. Social media integration further supports community engagement and marketing efforts.

A

AUDIT Brno, spol. s r.o.

auditbrno.cz

44

AUDIT Brno, spol. s r.o. is a Czech Republic based professional services company specializing in audit, accounting, tax advisory, payroll, and consulting services primarily targeting businesses, municipalities, and non-profit organizations. The company offers statutory audits, financial statement audits for mergers, tax consulting, payroll processing, and legal-economic advisory services. The website is well-structured, professionally designed, and provides clear service descriptions and contact information, supporting a strong regional market position in the finance sector. Technically, the website runs on WordPress with common plugins such as Yoast SEO and Easy Image Gallery, leveraging jQuery for client-side scripting. The site is mobile-optimized and SEO-friendly but lacks explicit security headers and privacy/cookie policies, which are important for compliance and trust. No forms or tracking scripts were detected, indicating minimal data collection. Security posture is moderate with HTTPS implied but no visible advanced security headers or incident response information. The absence of WHOIS data is a concern for domain legitimacy and trust, though the website content and contact details appear professional and consistent with a legitimate business. Overall, the website presents a low-risk profile but should improve privacy compliance, security headers, and domain registration transparency to enhance trust and security posture.

ATMO BFC is a regional environmental health organization focused on air quality, climate, energy, and mobility in Bourgogne-Franche-Comté, France. The website serves as an authoritative source for environmental data, publications, and public information. The organization appears well-established with a domain registered since 2017 and no privacy protection, indicating transparency. The site uses Drupal 10 CMS with modern JavaScript libraries and includes analytics via Matomo and cookie consent via CookieYes. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial due to the absence of a visible privacy policy page. Overall, the website is professional, content-rich, and trustworthy for its target audience.

The website navyrovne.jecool.net serves as a community portal for the residents and unit owners of a residential building, providing updates, committee information, document archives, and a communication platform. It is built on WordPress with standard plugins and a dated theme, indicating a small-scale, community-focused operation. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is minimal, lacking key security headers and formal privacy or cookie policies. No contact or business registration information is provided, reducing business credibility. The domain is a subdomain of jecool.net, with no WHOIS data available for the subdomain itself, which is typical but limits domain registration trust signals. Overall, the site is safe and appropriate for general audiences but requires improvements in security and compliance to enhance trust and protection.

S

Sdružení vlastníků obecních, soukromých a církevních lesů v ČR

svol.cz

48

Sdružení vlastníků obecních, soukromých a církevních lesů v ČR (SVOL) is a well-established Czech non-profit association founded in 2002, representing municipal, private, and church forest owners. The organization focuses on advocacy, education, and support services for forest owners, holding a significant market position covering 46% of non-state forest area in the Czech Republic. Their website provides comprehensive information, news updates, and resources tailored to their target audience of forest owners and forestry professionals. Technically, the site is built on Joomla CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for user tracking, complemented by a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission and audience.

A

APA POLSKA sp. z o. o. sp. komandytowa

apartiteq.pl

39

APA POLSKA operates the website apartiteq.pl, specializing in flexible and innovative systems for hanging pictures, wall decorations, and exhibition displays. The company targets a diverse audience including schools, businesses, residential customers, galleries, museums, and public spaces. Their product portfolio includes hanging systems, exhibition systems, signage, and sales support materials. The website is professionally designed with clear navigation and comprehensive product categorization, reflecting a solid market position in Poland.

M

Mastodon Share

mastodonshare.com

48

MastodonShare is a small, niche technology project launched in late 2022 that provides a free and privacy-focused tool enabling users to share content easily on any Mastodon instance. The service simplifies sharing by remembering the user's Mastodon instance via cookies and does not require browser extensions or API access. The website is well designed with clear instructions and a straightforward user experience, targeting Mastodon users and website owners who want to facilitate sharing to Mastodon. Technically, the site uses Bootstrap and Font Awesome for styling and icons, hosted on Hover's DNS infrastructure. The site is mobile optimized and SEO friendly but lacks advanced security headers and DNSSEC, which are recommended for improved security. No analytics or tracking scripts were detected, aligning with the stated privacy-first approach. From a security perspective, the site uses HTTPS and has domain registration protections but lacks a privacy policy, cookie consent mechanism, and formal security or incident response policies. No vulnerabilities or malicious content were detected, but improvements in security headers and compliance documentation are advised. Overall, MastodonShare presents a trustworthy, privacy-conscious utility with moderate technical maturity and good business credibility for a small project. Strategic improvements in privacy compliance and security posture would enhance trust and resilience.

L

LUMITOS AG

lumitos.com

46

LUMITOS AG operates as a leading B2B online media and marketing service provider focused on sectors including chemistry, life sciences, laboratory, pharmaceuticals, analytics, and food & beverage. The company offers a suite of six market-leading portals and newsletters that inform over 17 million users globally, enabling informed decision-making and business success. Their services encompass online marketing strategies, campaign development, lead generation, SEO/SEA, content marketing, and digital presence creation. The website reflects a mature digital infrastructure built on WordPress with modern analytics and consent management tools, indicating a solid digital maturity level. Security posture is good with HTTPS, CAPTCHA protections, and GDPR compliance, though additional security headers could enhance defenses. The absence of WHOIS data reduces transparency but does not negate the professional and trustworthy appearance of the business. Overall, the site is well-designed, content-rich, and compliant with privacy regulations, supporting a strong market position in the B2B marketing domain.

S

Svatopluk Vízdal

vizdal.cz

46

Svatopluk Vízdal is a small Czech Republic-based company specializing in the sale and professional installation of shading technologies including horizontal and vertical blinds, roller blinds, awnings, and insect screens. The company has been operating since 1994, serving both residential and commercial customers primarily in the Královéhradecký region. Their website reflects a focused business model centered on customized solutions and expert installation services. The company maintains a modest online presence with clear contact details and social media engagement via Facebook. Technically, the website is built on a legacy but stable technology stack including jQuery, Bootstrap 3.4, and FontAwesome. It uses the inPage CMS platform and incorporates several JavaScript libraries for UI enhancements. The site is mobile responsive and well-structured with good SEO practices, though accessibility features are basic. Security-wise, HTTPS is implied but security headers are not evident, and no explicit privacy or cookie policies are present, indicating room for compliance improvements. The security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of WHOIS data and domain registration details raises concerns about domain legitimacy and trustworthiness. The website lacks formal security policies, incident response contacts, and vulnerability disclosure mechanisms, which are important for enhancing trust and compliance. Overall, the site is functional and professional but would benefit from improved security and privacy transparency. Strategically, the company should prioritize implementing comprehensive privacy and cookie policies, enhance security headers, and verify domain registration details to strengthen trust. Adding vulnerability disclosure and incident response information would further improve security culture and customer confidence.

LUDdesign is a small Czech Republic-based business specializing in website creation and graphic design services, primarily serving clients in and around Trutnov. The website is minimalistic and currently under construction, providing basic contact information for two business owners along with their registration and banking details. The business model is service-based, charging hourly rates for design work. The domain has been registered since 2012, consistent with the business's stated history. Technically, the website is simple, built with basic HTML and CSS, hosted likely by Wedos, a Czech hosting provider. There is no evidence of advanced frameworks, CMS, or analytics tools. Mobile optimization and SEO are basic, and no security headers or HTTPS status could be confirmed from the data provided. From a security perspective, the site lacks critical elements such as a privacy policy, cookie consent, security headers, and incident response contacts. No forms or scripts were detected, reducing attack surface but also indicating limited functionality. The domain registration data aligns well with the website content, supporting legitimacy. No suspicious or malicious indicators were found. Overall, the website is low complexity and low risk but would benefit from implementing HTTPS, security headers, privacy and cookie policies, and improved technical and content quality to enhance trust and compliance.

The website www.arsy.cz is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business information, metadata, or contact details are available for analysis. The absence of WHOIS data further complicates verification of domain ownership and legitimacy. Technically, the site lacks visible security headers, privacy policies, or any modern web technologies, indicating a minimal or misconfigured web presence. The security posture is weak, with no evidence of HTTPS or compliance measures. Overall, the site presents a high risk due to lack of transparency and accessibility, and it is not possible to assess its business or security maturity accurately.

S

SECTRON s.r.o.

sectron.pl

47

SECTRON s.r.o. is a Czech-based company specializing in wireless technologies, including M2M and IoT solutions, with over 29 years of market presence. The company manufactures antennas, cable adapters, and distributes industrial modems, routers, and modules. Their business model combines manufacturing with authorized distribution and e-commerce sales across multiple countries. The website reflects a professional and consistent brand image targeting industrial and technology sectors, including electromobility and smart city applications. Technically, the website employs modern web technologies such as jQuery, Google Tag Manager, and Google Analytics, with a responsive design optimized for mobile devices. SEO and content structure are well implemented, though some accessibility features could be improved. Security practices include HTTPS usage and cookie consent mechanisms, but lack visible security headers and published security policies. The security posture is moderate, with no critical vulnerabilities detected in the provided data. Privacy compliance is evident through GDPR-aligned cookie and privacy policies. However, the absence of WHOIS data reduces transparency and trust slightly, though this is common for domains with privacy protection in the .pl registry. Overall, the website is professional, trustworthy, and business-focused, with recommendations to enhance security headers and publish incident response information to improve security maturity and trustworthiness.

T

Tubxporn.com - Best Porn Videos. Stream or Download Movies

tubxporn.com

39

Tubxporn.com is an adult entertainment website offering pornographic video streaming and free downloads. The site appears to serve a niche adult audience with a basic content offering and minimal on-site content, primarily redirecting users to a partner site. The technical infrastructure is simple, relying on standard web technologies and Google PageSpeed scripts, with moderate performance and basic mobile optimization. Security posture is weak due to lack of visible HTTPS confirmation, absence of security headers, and no privacy or cookie policies. The WHOIS data is missing, raising concerns about domain legitimacy and trustworthiness. Overall, the site lacks business transparency and compliance features, which increases risk for users and partners.

The website filesor.com is currently inaccessible due to a Cloudflare error 521 indicating the web server is down. The domain is registered since 2010 with NameCheap, Inc. and uses Cloudflare DNS services. No business, contact, or policy information is available on the site, and the content is limited to an error page. The technical infrastructure relies on Cloudflare for CDN and security, but the origin server is not responding, causing service disruption. Security posture is weak due to lack of visible security headers and no SSL configuration details. Privacy compliance and business credibility cannot be verified due to lack of content. Overall, the site is currently non-functional and provides no user or business information.

F

Fastpic

fastpic.org

47

Fastpic.org is a Russian-language free image hosting service established in 2016, offering users the ability to upload and share images, screenshots, and posters primarily for forums and online communities. The service provides multiple upload options including from local computer and via URL, with image resizing and optimization features. The business model relies on advertising revenue, with AdsKeeper ad network integrated and tracking pixels for analytics. The website targets a general audience seeking free and fast image hosting solutions, with a small-scale operation and moderate market presence in the niche image hosting sector. Technically, the site uses a traditional web stack with jQuery and FingerprintJS for user fingerprinting, hosted under a domain registered with Internet Domain Service BS Corp. The site shows moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. No CMS or modern frameworks are detected. Security practices are basic, with HTTPS implied but no DNSSEC or security headers observed. The upload form lacks CAPTCHA or bot mitigation, posing potential abuse risks. Security posture is moderate with room for improvement, especially in privacy compliance where no privacy or cookie policies are published, and no consent mechanisms are implemented. Contact information is limited to an email address for abuse and advertising inquiries. The domain WHOIS data is consistent and supports legitimacy, with no privacy protection or suspicious patterns. No WAF or blocking mechanisms are detected, allowing full content access. Overall, Fastpic.org is a functional but basic free image hosting service with moderate trustworthiness and security posture. Strategic improvements in privacy compliance, security headers, and abuse prevention would enhance its risk profile and user trust.

R

Premium HD Porn Videos and Sex Movies | Redtube Premium

redtubepremium.com

47

RedtubePremium.com is a defunct adult entertainment website that previously offered premium HD pornographic videos. The current website content indicates that the domain is no longer available and redirects users to Spicevids, a partner adult content platform. The site uses Google Analytics and Google Tag Manager for tracking but lacks privacy, cookie, or terms of service policies. WHOIS data is missing, suggesting the domain is unregistered or expired, which undermines the legitimacy and trustworthiness of the site. Technically, the site has basic mobile optimization and SEO but lacks security headers and visible HTTPS confirmation in the provided data. Overall, the site is accessible but minimal and primarily serves as a redirect to a partner site.

F

FGTC Investment GmbH

fgtc-investment.com

46

FGTC Investment GmbH is an independent asset management firm based in Germany, specializing in wealth management for affluent private clients, entrepreneurial families, foundations, and conservative institutions. Established in 2011 from the single family office of Silvius Dornier, the company focuses on capital market investments and agrarian/forestry assets, operating independently and free from third-party influences. It is part of the Viessmann Generation Group, emphasizing long-term generational wealth management. The website presents a professional image with clear business descriptions and structured data supporting SEO and accessibility.

P

PharOS

pharosgr.gr

48

PharOS is a privately owned pharmaceutical company based in Greece, specializing in the development, manufacturing, and supply of generic and value-added pharmaceutical products. The company boasts a significant global footprint with over 104 products and marketing authorizations in more than 116 countries, positioning itself as a key player in the pharmaceutical industry. The website reflects a professional and consistent brand image, targeting healthcare professionals and global markets. Technically, the site is built on WordPress, utilizing common libraries such as jQuery and Google Analytics, with moderate performance and good mobile optimization. Security measures include HTTPS and reCAPTCHA integration, though additional security headers and explicit privacy policies are lacking. Overall, the site is safe, trustworthy, and well-structured but would benefit from enhanced privacy compliance and security documentation.

P

PC Lékař.eu

pclekar.eu

39

PC Lékař.eu is a small Czech IT and telecommunications service provider operated by Petr Kubeš since 1992. The website offers a range of services including remote PC repair, helpdesk support, IT administration, and technical infrastructure documentation. The business targets individuals and small businesses in the Czech Republic seeking reliable IT and telco support. The site is built on WordPress with a moderate technical stack including Bootstrap and various plugins for enhanced functionality. The website is well-structured with good content quality and navigation, though it lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is adequate with HTTPS enforced but missing important security headers and vulnerability disclosure mechanisms. WHOIS data is privacy protected, which is common for small businesses, and no suspicious patterns were detected. Overall, the website is professional and trustworthy but could improve compliance and security practices.

B

BlučinaNet s.r.o.

blucinanet.eu

41

BlučinaNet s.r.o. is a small Czech telecommunications company established in 1992, providing internet and television services primarily to residential and small business customers. The website presents a professional and consistent brand image with clear service offerings including internet connectivity, TV packages, and router hardware. The company targets customers in the Czech Republic, emphasizing affordable and reliable service. Technically, the website is built on a modern Nuxt.js and Vue.js stack, offering good mobile optimization and user experience, though SEO and accessibility could be improved. Security posture is solid with HTTPS enforced, but lacks important security headers and published privacy or cookie policies, which reduces compliance and trust. No blocking or WAF mechanisms were detected, and no suspicious content or tracking scripts are present, indicating a safe and straightforward online presence.

N

Národní kulturní památka Vyšehrad

praha-vysehrad.cz

49

Národní kulturní památka Vyšehrad operates as a national cultural monument in Prague, providing visitors with guided tours, cultural events, educational programs, and venue rental services. The website reflects a well-established institution supported by the City of Prague, targeting tourists, local visitors, and educational groups. The business model centers on cultural heritage preservation combined with revenue from ticket sales and merchandise. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, and Google Maps API, likely built on a Ruby on Rails framework, hosted by Active24. The site is mobile optimized with good navigation and content quality. Security posture is moderate with CSRF protections and HTTPS usage implied, but lacks explicit security headers and comprehensive security policies. Privacy compliance is basic with a GDPR-aligned privacy policy but no cookie consent mechanism. Overall, the domain registration data supports the legitimacy and trustworthiness of the site.

N

Nadace Jedličkova ústavu

kolobezkaden.cz

43

Koloběžka DEN is a Czech family-oriented sports event organized by the non-profit Nadace Jedličkova ústavu. The website serves as an informational and promotional platform for the annual event held in Prague, featuring race details, schedules, galleries, and partner information. The event targets families and sports enthusiasts, emphasizing community engagement and local participation. The site is well-branded and supported by multiple reputable partners, enhancing its credibility. Technically, the website is built on WordPress with a modern but somewhat dated tech stack including Bootstrap 3 and jQuery. It uses common plugins for mobile navigation, image lightboxes, and slideshows. The site is hosted likely by WEDOS, a Czech hosting provider, and uses HTTPS with a good SSL configuration. Performance and mobile optimization are adequate, though accessibility and SEO could be improved. From a security perspective, the site has HTTPS enabled but lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present. Google Analytics and Tag Manager are used for tracking without visible consent mechanisms, indicating privacy compliance gaps. No forms are present on the homepage, reducing attack surface but also limiting direct data collection. Overall, the website is functional and trustworthy for its purpose but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

Cirio Alta Cucina is a well-established Italian brand specializing in tomato-based food products, operating under the parent cooperative Conserve Italia. The website reflects a mature business with a strong market presence, targeting both professional chefs and consumers seeking authentic Italian tomato products. The brand leverages its historical legacy dating back to 1856 and maintains partnerships with culinary organizations such as the Federazione Italiana Cuochi. Technically, the website employs modern JavaScript libraries and responsive design, ensuring good user experience across devices. Security measures include HTTPS, DNSSEC, and a cookie consent mechanism, although explicit security and incident response policies are not publicly available. Overall, the site demonstrates a solid security posture with room for improvement in transparency and accessibility.

F

FYZIOMEDIS s. r. o.

fyziomedis.cz

45

FYZIOMEDIS s. r. o. is a healthcare service provider based in Ostrava Poruba, Czech Republic, specializing in rehabilitation, physiotherapy, and neurology. The company offers comprehensive care including post-operative and post-injury treatment, urological and gynecological physiotherapy, neurological examinations, neurosonography, and infusion day care. Their target audience primarily consists of patients seeking specialized medical rehabilitation and neurological services locally. The website presents a professional and consistent brand image with clear contact information and social media presence, supporting their market position as a local specialized healthcare provider. Technically, the website employs modern web technologies such as Bootstrap and jQuery, with Google Analytics for visitor tracking and a cookie consent mechanism indicating awareness of privacy regulations. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, the absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, but lacks visible security headers and a published privacy policy or security incident response information. The WHOIS data for the domain is unavailable, which reduces transparency and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected, but improvements in security headers and privacy documentation are recommended. Overall, FYZIOMEDIS presents a credible and professional online presence suitable for its healthcare services, but should enhance transparency and security compliance to strengthen trust and regulatory adherence.

O

Obec Veřovice

verovice.cz

44

Obec Veřovice is the official municipal website for the village of Veřovice in the Czech Republic, providing residents and visitors with comprehensive information about local government, events, public services, and community news. The site targets local citizens and stakeholders, offering key services such as event calendars, official notices, and contact details for municipal offices. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a good level of digital maturity for a small government entity. Technically, the website employs modern web technologies including the Foundation CSS framework, jQuery, Font Awesome icons, and integrates third-party services such as Google Analytics, Facebook Pixel, and OneSignal for push notifications. The site uses HTTPS and implements a cookie consent mechanism compliant with GDPR, indicating awareness of privacy regulations. However, the absence of explicit security headers and lack of visible incident response or security policy pages suggest areas for improvement in security posture. From a security perspective, the site shows good practices such as encrypted connections and cookie consent management but lacks advanced security headers and detailed security policies. No vulnerabilities or malicious content were detected. The missing WHOIS data for the domain reduces the overall trust score, although the website content and official contact information support its legitimacy as a municipal site. Overall, Obec Veřovice presents a trustworthy and functional online presence for a small government entity, with recommendations to enhance security headers, provide clearer security policies, and improve domain registration transparency to strengthen trust and compliance.

O

Obec Trojanovice

trojanovice.cz

46

Obec Trojanovice is a small municipal government entity serving the Trojanovice community in the Czech Republic. The website provides comprehensive information about the municipality, including local administration, community services, tourism, and public notices. The site is built on WordPress with a modern tech stack and includes GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS enforced, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust verification but the official contact details and content quality support legitimacy. Overall, the website effectively serves its purpose as a municipal information portal with good technical and privacy compliance.

O

Obec Krásná

obec-krasna.cz

47

Obec Krásná operates as the official municipal government website for the mountain municipality of Krásná in the Moravian-Silesian region of the Czech Republic. The website provides comprehensive information about the municipality, including local news, events, administrative contacts, and community services. It serves residents and visitors by offering access to reservation systems for sports facilities, event calendars, and official documents. The site is positioned as a trusted local government portal with a focus on community engagement and transparency. Technically, the website is built on WordPress using Elementor and several plugins such as Modern Events Calendar Lite, providing a modern and responsive user experience. The site employs HTTPS and includes cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of a visible privacy policy and terms of service pages suggests room for improvement in compliance documentation. From a security perspective, the site uses HTTPS and secure contact forms but lacks advanced security headers and explicit vulnerability disclosure information. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the content. The lack of WHOIS data limits the ability to fully verify domain legitimacy, but the official nature and content quality support trustworthiness. Overall, Obec Krásná's website is a well-structured, informative municipal portal with good technical implementation and a solid security baseline. Enhancements in privacy policy visibility, security headers, and domain registration transparency would further strengthen its security posture and compliance standing.

Obec Morávka is a small municipal government entity serving the Morávka area in the Czech Republic. The website provides comprehensive local government information including public notices, events, administrative forms, and community resources. It targets residents and visitors seeking official information and services. The business model is typical of local government, focusing on public service and community engagement. Technically, the site uses a custom CMS (IPO), jQuery libraries, Google reCAPTCHA, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are lacking. WHOIS data is unavailable or privacy protected, which is common for such entities, but the domain and content appear legitimate and consistent with the municipality's identity. Overall, the site is professional, trustworthy, and serves its community well.