Security Directory

F

Faroe Ship

faroeship.com

76

Faroe Ship is a well-established shipping and logistics company based in the Faroe Islands, with a history dating back to 1919. The company serves as a key regional transport hub in the North Atlantic, offering a comprehensive range of services including liner shipping, terminal operations, warehousing, cold storage, trucking, and special transports. Their website reflects a mature digital presence with clear service descriptions, customer portals, and updated news sections, positioning them as a leading logistics provider in their region. Technically, the website employs modern web technologies such as htmx and hyperscript for interactivity, integrates Google Tag Manager for analytics, and uses CookieHub for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a strong digital maturity. The domain is secured with HTTPS, and domain registration details align with the company’s claims, enhancing trustworthiness. From a security perspective, the site demonstrates good practices including HTTPS enforcement, domain status protections, and cookie consent mechanisms. However, there is room for improvement by enabling DNSSEC, publishing explicit security policies, and adding a security.txt file to facilitate vulnerability disclosures. No critical vulnerabilities or exposed sensitive data were detected. Overall, Faroe Ship’s website presents a professional, secure, and compliant digital front that supports their business operations effectively. The risk level is low, with recommendations focused on enhancing DNS security and formalizing security policies to further strengthen their security posture.

M

Maruška Oulická

vyklad-tarot-plzen.cz

57

The website vyklad-tarot-plzen.cz represents a small local business operated by Maruška Oulická, offering tarot card reading services including Tarot, Angel cards, and Symbolon readings primarily in Plzeň, Czech Republic. The business targets individuals seeking personal consultations for relationships, life decisions, and self-understanding. The site is professionally designed with good content quality and clear navigation, supporting a positive user experience for its target audience. Technically, the website is built on Joomla CMS using Gantry 5 framework and K2 content component, with Bootstrap 4 for responsive design. It employs Google Analytics for visitor tracking and Google reCAPTCHA v2 for spam protection on its contact form. The site is served over HTTPS with a valid SSL certificate, but lacks important security headers and privacy compliance mechanisms such as a privacy policy or cookie consent banner. From a security perspective, the site demonstrates basic best practices like HTTPS and CAPTCHA protection but misses advanced security headers and formalized security or incident response policies. No vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the website’s business claims, showing consistent registration details and appropriate domain age. Overall, the website is a credible and functional small business site with good content and technical implementation but requires improvements in privacy compliance and security hardening to enhance trust and regulatory adherence.

The website hockeynet.fr serves as the official login portal for the Fédération Française de Hockey sur Glace (French Ice Hockey Federation), targeting federation officials and administrators. It provides secure access to management tools and resources related to French ice hockey governance. The domain is registered with GANDI since 2020, consistent with the federation's digital presence. The site uses modern frontend technologies such as Vue.js and jQuery, with a responsive design and basic accessibility features. Security measures include HTTPS enforcement and CSRF token protection on the login form, though additional HTTP security headers are not detected. Privacy compliance is partially addressed with a linked GDPR charter, but lacks an explicit cookie consent mechanism. No contact or incident response information is provided on the login page, limiting transparency in security and support channels.

A

Anglet Hormadi Pays Basque

hormadi.fr

45

Anglet Hormadi Pays Basque is a professional ice hockey club based in France, competing in the Synerglace Ligue Magnus. The website serves as the official digital presence of the club, providing comprehensive information about the team, season schedules, news updates, ticketing options, and partner relations. The site targets sports fans and the local community, offering a well-structured and branded experience consistent with a medium-sized sports organization. Technically, the website is built on WordPress with a modern tech stack including popular plugins and libraries such as WPBakery, Bootstrap, and Google Analytics. The site demonstrates good mobile optimization, SEO practices, and user experience. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policies. From a security perspective, the site uses HTTPS and implements some best practices, though security headers could be enhanced. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common for such organizations, and does not raise immediate trust concerns. Overall, the website is professional, trustworthy, and suitable for its business purpose. Strategic recommendations include improving security headers, maintaining plugin updates, and enhancing incident response visibility.

O

Otrokovická BESEDA, s.r.o.

otrokovickabeseda.cz

56

Otrokovická BESEDA, s.r.o. operates as a local cultural event organizer and venue in Otrokovice, Czech Republic. The company provides a platform for event programming, ticket sales, and venue services, targeting the general public interested in cultural and entertainment activities. The website reflects a well-structured and professionally designed digital presence, leveraging modern web technologies such as React and Next.js, with good mobile optimization and SEO practices. Hosting is managed via websupport.cz, a local hosting provider, ensuring reliable infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Privacy compliance is partially met with a GDPR policy present but lacks a cookie consent mechanism. Overall, the business demonstrates high credibility with clear contact information, company registration details, and local partnerships. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving accessibility features to further strengthen trust and compliance.

D

Digiregion s.r.o.

digiregion.cz

57

Digiregion s.r.o. is a Czech technology company specializing in digital communication solutions for municipalities. Their flagship product integrates municipal websites, TV channels, mobile apps, and digital information panels to enhance citizen engagement and streamline municipal communication. The company is part of the IS Group and has established a solid market presence with multiple municipal clients and positive testimonials. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Cloudflare DNS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, but lacks explicit security or incident response policies. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

B

BK Olomoucko z.s.

bkredstone.cz

40

BK Olomoucko is a Czech basketball club competing in the top-tier Kooperativa NBL league. The website provides comprehensive information about the team roster, match schedules, league standings, and news updates, targeting basketball fans and the local community. The club maintains partnerships with local organizations and sponsors, enhancing its market presence. Technically, the website employs modern web technologies including Bootstrap, SVG icons, and Google Analytics, hosted by REG-GRANSY. The site is mobile optimized and offers a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks explicit security headers and privacy compliance mechanisms such as privacy and cookie policies. Overall, the domain registration is consistent and legitimate, supporting the club's credibility.

B

BlueBud-Soft Ltd.

jd-dian.com

58

The website jd-dian.com represents BlueBud-Soft Ltd., a company specializing in electronic menu software solutions tailored for small to medium-sized restaurants. Their flagship product, 简单点点, offers a tablet-based electronic menu system designed to enhance restaurant management and customer experience. The company has a stable market presence in China and some overseas markets, focusing on providing stylish, easy-to-use digital menus and related services such as membership management and cloud menu access. Technically, the website is built with standard web technologies including HTML, CSS, JavaScript, and jQuery, hosted on Alibaba Cloud. It supports mobile users via a dedicated mobile site and employs HTTPS for secure communications. However, the site lacks advanced security headers and DNSSEC, which could be improved. The site uses Baidu Analytics for user tracking but does not provide cookie consent or privacy policies, indicating compliance gaps. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of privacy and cookie policies and security incident contacts are notable gaps. The domain registration data aligns well with the business claims, showing a consistent and legitimate registration history. Overall, the website is professional and functional with good business credibility but requires enhancements in privacy compliance and security best practices to improve trust and regulatory adherence.

NeurologyLive is a specialized online platform providing clinical neurology news, expert insights, multimedia interviews, and conference coverage. Owned by MJH Life Sciences and founded in 2019, it targets neurologists and healthcare professionals seeking up-to-date information and educational content. The website demonstrates a mature digital presence with a modern tech stack including Astro, React, and Sanity CMS, ensuring fast performance and excellent mobile optimization. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR standards. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, WHOIS data is unavailable, likely due to privacy protection, which is common and justified for media entities. Overall, NeurologyLive presents as a credible, professional, and trustworthy healthcare media platform.

N

National Multiple Sclerosis Society

nationalmssociety.org

75

The National Multiple Sclerosis Society is a well-established non-profit organization dedicated to supporting individuals affected by multiple sclerosis through research funding, advocacy, education, and community programs. The website serves as a comprehensive resource hub for patients, caregivers, healthcare professionals, and donors. It features extensive content including news, events, support groups, and educational materials, positioning the organization as a leader in the MS community. Technically, the website leverages Salesforce Experience Cloud and integrates multiple modern technologies and trusted payment processors, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, strict Content-Security-Policy, and secure payment integrations, although additional security headers could enhance protection. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and user-centric design, supporting the organization's mission effectively.

F

Fiken

fiken.no

66

Fiken.no is a Norwegian accounting software provider targeting small business owners and self-employed individuals. Founded in 2015, it offers a subscription-based SaaS platform that simplifies bookkeeping, invoicing, and tax reporting. The website is professionally designed using modern technologies such as Next.js and React, hosted on Vercel, and optimized for mobile devices. It employs comprehensive cookie consent mechanisms and integrates multiple third-party analytics and marketing tools, including Google Analytics, Facebook Pixel, and Intercom. Security posture is strong with HTTPS enforced and appropriate cookie management, although explicit privacy and terms of service pages are not detected in the provided content. The domain WHOIS data aligns well with the business claims, supporting legitimacy.

S

SÝN

auglysingar.is

59

SÝN is a leading Icelandic media company specializing in multi-channel advertising services including television, radio, online, and podcast platforms. The company leverages decades of experience to provide comprehensive advertising solutions tailored to Icelandic businesses and individuals. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site employs modern JavaScript frameworks and integrates Google Tag Manager and analytics tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security headers and vulnerability disclosure policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the overall business credibility and content quality remain high. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

Magasins Généraux is a cultural venue and creative center located in Pantin, France, founded in 2017 by BETC. It operates as a hub for artistic exhibitions, events, and public engagement, contributing to the cultural landscape of the Grand Paris area. The website reflects a professional and consistent brand image targeting a broad audience including groups, families, educators, and artists. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js with Prismic CMS, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained.

R

ROSA PARIS

rosaparis.com

66

ROSA PARIS is a French integrated advertising agency founded in 2020, offering creative and media services to clients such as SNCF and ParionsSport. The website presents a professional and creative brand image with case studies highlighting their work. Technically, the site uses modern web technologies including JavaScript libraries for feature detection and lazy loading, and is hosted with a reputable provider. The site is mobile optimized and SEO friendly but lacks some accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy but could improve compliance and security transparency.

B

BETC Places

betcplaces.com

67

BETC Places is a consulting firm specializing in creating meaningful living places that blend tangible and intangible elements such as history, community, and emotion. The company targets businesses and organizations involved in real estate development and place-making. The website is built on a modern Nuxt.js framework, indicating a good level of digital maturity, with mobile optimization and a professional design. Security posture is moderate, with HTTPS implied but lacking explicit security headers and incident response information. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website presents a professional image but would benefit from enhanced transparency and security practices.

BETC FULLSIX is a well-established French digital and creative agency specializing in consulting, digital innovation, and data-driven marketing services. The company operates under the Havas Group umbrella and targets brands seeking comprehensive digital transformation and creative solutions. The website reflects a mature digital presence built on modern technologies such as React and Next.js, integrated with Prismic CMS for content management. The site is professionally designed, mobile-optimized, and provides clear navigation and rich content relevant to its audience. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is strong, with clear cookie and privacy policies aligned with GDPR requirements. No incident response or vulnerability disclosure information is publicly available, which could be enhanced to improve trust. Overall, the website and business demonstrate high professionalism and credibility in the digital agency market.

M

Maison BETC

betcetoilerouge.com

53

Maison BETC is a specialized micro-network agency focused on luxury and premium sectors including fashion, beauty, and lifestyle brands. Operating internationally with offices in New York, Paris, and Shanghai, the company offers a comprehensive suite of services ranging from brand strategy and architecture to creative campaigns, digital experience design, and event production. The website reflects a professional and modern digital presence built using Framer technology, emphasizing visual appeal and clear brand messaging. Technical infrastructure is modern and performant, with good mobile optimization and fast loading times. Security posture is adequate with HTTPS and domain protection, though improvements such as DNSSEC and security headers are recommended. Privacy and compliance policies are currently missing, representing a compliance gap. Overall, the site demonstrates high business credibility but would benefit from enhanced privacy and security transparency.

K

Kirin Holdings Company, Limited

kirinholdings.com

58

Kirin Holdings Company, Limited operates as a global leader in creating shared value across the food and beverage to pharmaceutical sectors. The company emphasizes sustainability, innovation, and responsible business practices, targeting investors, customers, and partners worldwide. Their diversified portfolio includes alcoholic and non-alcoholic beverages, pharmaceuticals, and health science products, supported by a strong corporate governance framework and comprehensive investor relations resources. Technically, the website employs modern JavaScript libraries and asynchronous script loading to optimize performance and user experience, with excellent mobile responsiveness and accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies could be improved. The absence of WHOIS data for the domain is a concern but the professional content and branding consistency support legitimacy. Overall, the site presents a mature, trustworthy corporate presence with room for enhanced privacy compliance and security transparency.

協

協和キリンフロンティア株式会社

kyowa-kirin-frontier.com

58

協和キリンフロンティア株式会社 operates as a pharmaceutical company specializing in the manufacture and sale of authorized generic biopharmaceuticals in Japan. The company positions itself as a pioneer in the domestic market by being the first to obtain manufacturing and sales approval for authorized generics of biopharmaceuticals. Their website targets both healthcare professionals and the general public, providing detailed information about their products, safety initiatives, and health education. The business is a subsidiary of the well-established Kyowa Kirin group, enhancing its market credibility and trustworthiness. Technically, the website is built with modern web technologies including JavaScript and Google Tag Manager for analytics. It is hosted on Microsoft Azure DNS infrastructure, ensuring reliable DNS resolution. The site is mobile optimized and demonstrates good SEO practices with proper meta tags and Open Graph data. However, no CMS or specific frameworks were detected, and accessibility features are basic. Performance is moderate with no critical technical issues observed. From a security perspective, the site uses HTTPS with a valid SSL configuration and domain status protections that prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and security headers are not visibly implemented, which could be improved. There is no visible security policy or incident response information on the site, nor a vulnerability disclosure program. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. User tracking is moderate via Google Tag Manager. Overall, the website is professional, trustworthy, and aligned with the company's business objectives. The security posture is adequate but could benefit from enhancements in DNS security and security headers. Privacy compliance should be improved by implementing cookie consent and clearer data retention policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a low-risk profile for users and stakeholders.

T

Taste

taste.cz

65

Taste is a Czech digital agency established in 2014, specializing in cross-channel online solutions for business projects. The website presents a professional image with a clear focus on digital marketing and online project development. The technical infrastructure includes modern tools such as Google Tag Manager and Cookiebot for privacy compliance, indicating a mature digital presence. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though explicit security policies and headers could be improved. Overall, the website is trustworthy and well-positioned in its market segment, but lacks visible direct contact information and formal terms of service, which could enhance credibility.

B

Blueweb

upterdam.sk

54

Upterdam.sk is the official website for the largest e-commerce conference and expo in Slovakia, organized by Blueweb. The site promotes the event scheduled for September 25, 2025, in Bratislava, targeting e-commerce professionals and businesses. It offers workshops, consultations, lectures, and networking opportunities, positioning itself as a leading event in the Slovak e-commerce sector. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

I

Information Commissioner's Office

ico.org.uk

74

The Information Commissioner's Office (ICO) is the UK's independent regulator responsible for upholding information rights and data protection laws. The website serves as a comprehensive resource for individuals, public bodies, and organizations, providing guidance, complaint mechanisms, and enforcement information. The ICO holds a strong market position as the national data protection authority with a clear mission to empower citizens and organizations through information rights. Technically, the website is built on a modern CMS (Umbraco), employs responsive design, and integrates cookie consent and analytics tools responsibly. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and UK data protection standards.

M

M+MP spol. s r.o.

chrudimskodnes.cz

47

ChrudimskoDnes.cz is a regional online portal serving the Chrudim area and the Pardubický kraj region in the Czech Republic. It provides a comprehensive range of services including local news, a business directory, job listings, classifieds, event calendars, and travel tips. The portal is part of the InfoDnes.cz network, which supports regional media presence. The website targets local residents, businesses, and visitors seeking regional information and services. The business model is based on advertising revenue and service listings, positioning itself as a key regional information hub.

M

M+MP spol. s r.o.

trebicdnes.cz

44

The website trebicdnes.cz is a regional information portal serving the Třebíč area and surrounding regions in the Czech Republic. It provides a comprehensive range of services including a business directory, local news and reports, job listings, event calendars, and travel tips. The portal is part of the InfoDnes.cz network, operated by M+MP spol. s r.o., and targets local residents, businesses, and visitors seeking regional information. The business model is primarily advertising and classified listings based, supporting local commerce and community engagement. Technically, the site employs standard web technologies such as HTML5, CSS3, and JavaScript, with integration of Google Fonts and advertising networks like Google Adsense and Seznam SSP. The site is served over HTTPS, includes a cookie consent mechanism compliant with GDPR, and shows good mobile optimization and SEO practices. However, explicit CMS or hosting provider details are not evident, and some modern security headers are not explicitly detected. From a security perspective, the site enforces HTTPS and uses a consent management platform for privacy compliance. No critical vulnerabilities or exposed sensitive data were found in the content. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness from a domain registration perspective. Despite this, the website content and branding align with a legitimate regional media portal. Overall, the site presents a moderate risk profile with good privacy compliance and security posture but suffers from lack of transparent domain registration data and limited direct contact information. Strategic improvements in security headers, accessibility, and domain registration transparency would enhance trust and compliance.

M

M+MP spol. s r.o.

jihlavadnes.cz

47

JihlavaDnes.cz is a regional online portal serving the Jihlava area and the Vysočina region in the Czech Republic. It offers a comprehensive suite of services including local news, a business directory, classifieds, job listings, event calendars, and travel tips. The portal is part of the InfoDnes.cz network, operated by M+MP spol. s r.o., and targets residents and businesses within the region. The website demonstrates a solid market position as a trusted regional media source with consistent branding and good content quality. Technically, the website employs standard web technologies such as HTML5, CSS3, and JavaScript, with integrations for Google Fonts, Google Adsense, and Seznam SSP advertising. It uses a consent management framework compliant with GDPR, ensuring user privacy and cookie consent. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. From a security perspective, the site uses HTTPS with good SSL configuration and implements consent mechanisms for tracking and advertising. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present, suggesting room for enhancement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The main risk factor is the absence of publicly available WHOIS data, which slightly reduces domain trustworthiness but does not outweigh the positive indicators from the website content and branding. Strategic recommendations include improving security headers, enhancing accessibility, and verifying domain registration details for transparency.

M

M+MP spol. s r.o.

havlickuvbroddnes.cz

47

The website www.havlickuvbroddnes.cz is a regional media portal focused on Havlíčkův Brod and its surrounding region in the Czech Republic. Operated by M+MP spol. s r.o. under the InfoDnes.cz network, it provides a comprehensive suite of services including local news, company directories, job listings, classifieds, event calendars, and travel tips. The portal targets local residents and businesses, positioning itself as a key regional information hub with a business model centered on advertising and community engagement. Technically, the site employs standard web technologies such as HTML5, CSS3, and JavaScript, with integrations for Google Fonts, Google Adsense, and Seznam SSP advertising. It uses HTTPS for secure communications and implements a GDPR-compliant consent management platform, reflecting a mature digital infrastructure suitable for its audience size and scope. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. From a security perspective, the portal benefits from HTTPS and a consent framework but lacks explicit security headers and detailed security policies. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is typical for Czech domains managed by CZ NIC and does not raise immediate concerns, though it limits transparency. Overall, the security posture is adequate for a regional media site but could be improved with additional headers and incident response information. The overall risk assessment is low, with the site appearing trustworthy and professionally managed. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and improving accessibility compliance. These steps would strengthen user trust and regulatory compliance, supporting the portal's continued role as a reliable regional information source.

M

M+MP spol. s r.o.

ostravadnes.cz

48

OstravaDnes.cz is a regional online portal serving the Ostrava area and the Moravskoslezský kraj region in the Czech Republic. It provides a comprehensive range of services including regional news, job listings, company directories, classifieds, event calendars, and travel tips. The portal is part of the InfoDnes.cz network, a recognized regional media group, and has been operational since 2009. The website targets local residents and businesses, offering valuable community information and advertising opportunities. Technically, the site employs standard web technologies such as HTML5, CSS3, JavaScript, Google Fonts, and integrates advertising via Google Adsense and Seznam SSP. It also implements GDPR-compliant cookie consent mechanisms and uses HTTPS for secure communication. Security-wise, the site shows good practices like encrypted connections and consent management but lacks advanced security headers and explicit security policies. The absence of WHOIS data is a notable gap, limiting domain registration trust verification. Overall, the site is professionally maintained, content-rich, and trustworthy for its audience, though improvements in security transparency and contact information could enhance credibility.

M

M+MP spol. s r.o.

zlindnes.cz

47

ZlínDnes.cz is a regional online media portal serving the Zlín and Zlínský kraj region in the Czech Republic. Operated by M+MP spol. s r.o. under the InfoDnes.cz network, it provides comprehensive local news, business directories, job listings, classifieds, event calendars, and cultural information. The portal targets residents and businesses in the region, offering free advertising and a variety of community-focused content. The business model relies on advertising revenue and paid listings, positioning itself as a key regional information hub.

M

M+MP spol. s r.o.

liberecdnes.cz

47

LiberecDnes.cz is a regional information portal serving the Liberec region in the Czech Republic. Operated by M+MP spol. s r.o. under the InfoDnes.cz network, it provides a comprehensive suite of services including a business directory, regional news, classifieds, job listings, event calendars, and travel tips. The portal targets local residents and businesses, positioning itself as a key regional media and information hub. The website demonstrates a good level of content quality and user experience with clear navigation and relevant regional content. Technically, the site employs modern web standards including HTTPS, Google Fonts, and advertising integrations such as Google Adsense and Seznam SSP. It features a cookie consent mechanism compliant with GDPR, enhancing privacy transparency. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details. No explicit contact emails or phone numbers are prominently displayed, which could impact user trust and business credibility. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and detailed security or incident response policies. There are no visible vulnerabilities or exposed sensitive data. Advertising and tracking are present but managed with user consent. Overall, the security posture is moderate but could be improved with additional headers and transparency. The overall risk assessment is moderate with recommendations to improve domain transparency, add clear contact information, publish terms of service, and enhance security headers. These steps would strengthen trust and compliance, supporting the portal's role as a reliable regional media platform.

M

M+MP spol. s r.o.

plzendnes.cz

47

PlzeňDnes.cz is a regional information portal serving the Plzeň and Plzeňsko area in the Czech Republic. It offers a comprehensive range of services including local news, business directories, job listings, classified ads, event calendars, and travel tips. The portal is part of the InfoDnes.cz network, a recognized regional media group, which enhances its market position and trustworthiness. The website targets residents and businesses in the Plzeň region, providing localized content and advertising opportunities. The business model is primarily based on advertising and regional content aggregation.

I

InfoDnes.cz

inzerce-dnes.cz

47

Inzerce-Dnes.cz is a Czech regional classified ads platform operated under the InfoDnes.cz network. It offers free listings across multiple categories including jobs, real estate, vehicles, services, and general goods. The platform targets the Czech Republic's general public seeking local classifieds and integrates listings with regional portals to enhance reach. The business model primarily relies on free ads with some paid categories such as finance and adult services. The website has been operational since at least 2015 and maintains a consistent brand presence within the InfoDnes.cz ecosystem. Technically, the website uses standard web technologies including HTML5, CSS3, and JavaScript, with Google Adsense for monetization. The site is moderately optimized for performance and mobile devices, with basic accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. However, no advanced frameworks or CMS platforms were detected, indicating a custom or lightweight solution. From a security perspective, the site enforces HTTPS and uses secure form validation for search inputs. However, no advanced security headers were detected, and there is no public security policy or incident response information. The absence of WHOIS data limits domain trust verification, but the website's operational status and presence of privacy and contact policies support moderate trustworthiness. Overall, Inzerce-Dnes.cz presents a functional and regionally focused classifieds service with a solid content base and basic security posture. Improvements in security headers, mobile optimization, and transparency around security policies would enhance its risk profile and user trust.

DSV is a global leader in transport and logistics services, offering comprehensive freight solutions across road, air, sea, and rail, along with warehousing and contract logistics. The company has recently merged with Schenker, enhancing its market position as a world-leading logistics provider. The website reflects a mature digital infrastructure with integrated customer portals such as myDSV and Schenker Connect, providing streamlined booking and shipment management. The site is professionally designed, mobile-optimized, and supports multiple languages, targeting businesses worldwide requiring logistics services. Technically, the site uses modern web technologies, is hosted on Microsoft Azure, and employs Google Tag Manager for analytics. Security posture is strong with HTTPS and Content Security Policy headers, though additional headers could improve defense in depth. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user consent mechanisms. WHOIS data is unavailable, which is a transparency concern but the website's professional presentation and external references support legitimacy. Overall, the site is secure, reliable, and well-positioned to serve its enterprise clientele.

E

EXIsport

exisport.eu

57

EXIsport is a medium-sized retail and e-commerce company specializing in sports clothing, shoes, and electric bicycles, primarily serving the Slovakian market with a network of 21 physical stores. The website demonstrates a mature digital presence with a comprehensive product catalog and multi-channel sales approach. Technically, the site is built on PrestaShop CMS with modern JavaScript frameworks and tracking tools, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS, standard security headers, and no visible vulnerabilities, though some improvements in security policy transparency could be made. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the domain and business appear legitimate and trustworthy, with no blocking or WAF interference detected.

E

EXIsport

exisport.hu

54

EXIsport is a large Hungarian e-commerce retailer specializing in sportswear, footwear, and accessories, offering an extensive catalog of over 650,000 products. The website targets a broad audience including men, women, and children interested in sports and outdoor activities. It operates multiple regional domains indicating a strong Central European market presence. Technically, the site is built on PrestaShop with modern JavaScript libraries and uses Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and some consent management for cookies, but lacks explicit privacy and cookie policy pages, security policies, and incident response information. WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the website is professional and trustworthy but could improve privacy compliance and security transparency.

JustDev is a small technology-focused business founded in 2016, providing software development and technology consulting services. The website targets developers and technology professionals, positioning itself as a niche service provider. The digital infrastructure is built on modern JavaScript frameworks Nuxt.js and Vue.js, hosted via websupport.sk nameservers. The website demonstrates basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and secure session cookies, but lacks DNSSEC and security headers, indicating room for improvement. Privacy compliance is good with a clear cookie consent mechanism and privacy policy, though terms of service and incident response policies are absent. Overall, the website is functional and trustworthy but could benefit from enhanced security and compliance documentation.

C

CREATIVE shop

datesmobile.sk

56

DATES MOBILE is a Slovakian e-commerce retailer specializing in the sale of mobile phones and related accessories. The website offers a broad catalog of products including popular brands like Xiaomi, Apple, Samsung, and Motorola, targeting consumers in Slovakia. The business model is focused on online retail with additional physical stores, providing services such as free shipping over 30 EUR and mobile phone buyback. The site is built on the CREATIVE shop CMS platform and employs modern web technologies including JavaScript libraries, Google Analytics for tracking, and Sentry for error monitoring. The website is accessible, uses HTTPS, and has a generally good design and user experience, though mobile optimization and accessibility could be improved. Security posture is moderate with HTTPS and CSRF tokens present but lacks explicit security headers and comprehensive privacy or cookie policies. No signs of adult or questionable content were found, making it safe for general audiences. WHOIS data aligns with the business profile, showing consistent registrant information and domain legitimacy. Overall, the site is a functional and professional retail platform with room for improvement in privacy compliance and security best practices.

K

KACHLIČKOVO

kachlickovo.sk

55

KACHLIČKOVO is a Slovak retail company specializing in tiles and cladding products, offering both online e-commerce services and physical showroom experiences. The website presents a professional and well-structured platform with a focus on customer engagement through 3D bathroom design visualization and a wide product catalog. The company maintains a verified presence on local e-commerce platforms such as Heureka, enhancing its market credibility. Technically, the website employs a modern technology stack including Google reCAPTCHA for bot protection, Sentry for error monitoring, and Bloomreach Exponea for marketing automation. The platform is built on the CreativeShop CMS, with good mobile optimization and SEO practices. Performance is moderate, with multiple external scripts for enhanced user experience and marketing. From a security perspective, the site enforces HTTPS, integrates anti-bot measures, and uses CSRF tokens, indicating a solid baseline security posture. However, it lacks explicit security headers and published security or incident response policies. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, with minor improvements needed in privacy compliance and security transparency. The risk level is moderate, with recommendations focusing on enhancing privacy disclosures and security headers to align with best practices.

W

Waragod.sk

waragod.sk

60

Waragod.sk is a Slovak-based e-commerce retailer specializing in outdoor, tactical, sports, and hobby apparel and equipment. The website targets active lifestyle consumers across multiple Central European countries, offering a broad product range including clothing, footwear, tactical gear, and accessories. The business operates a multilingual platform with clear contact information and a professional online presence. Technically, the site is built on Joomla CMS with CreativeShop e-commerce integration, leveraging modern analytics and tracking tools such as Google Analytics, Facebook Pixel, and Sentry for error monitoring. Security is well implemented with HTTPS, CSRF tokens, and Google reCAPTCHA, although some advanced security headers and policies are missing. Privacy compliance is partial due to the absence of explicit privacy and terms of service pages. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

D

DELIKATESO - Delikateso.sk

delikateso.sk

46

Delikateso.sk is an e-commerce website focused on selling delicatessen products primarily targeting customers in Slovakia. The site offers online shopping services for food-related products, positioning itself within the retail e-commerce sector. The website demonstrates a moderate level of digital maturity with the use of modern JavaScript libraries and third-party analytics tools such as Google Analytics, Hotjar, and Facebook SDK. However, it lacks comprehensive privacy and security documentation, including a privacy policy and terms of service, which are critical for compliance and user trust. Security monitoring is partially addressed through Sentry integration, but additional security headers and policies are absent. Overall, the website is accessible without WAF or blocking mechanisms, but the absence of clear contact information and privacy documentation reduces its credibility and compliance posture.

R

Robel.sk

robel.sk

61

Robel.sk is a Slovakian e-commerce retailer specializing in branded footwear and accessories, targeting consumers primarily in Slovakia and neighboring countries. The website offers a broad selection of quality shoes and related products from well-known brands, supported by services such as in-store reservation, free delivery to pickup points, and a 30-day return policy. The business operates multiple country-specific domains, indicating a regional market presence and a mature business model focused on retail and online sales. Technically, the website employs a modern technology stack including JavaScript frameworks, Google reCAPTCHA for bot protection, Sentry for error tracking, and various marketing and analytics tools such as Facebook Pixel, Google Tag Manager, and Mouseflow. The platform is built on the CREATIVE shop CMS and uses Amazon Cloudfront CDN for content delivery. Security posture is solid with HTTPS enforced, CSRF tokens, and OAuth login options; however, explicit cookie consent mechanisms and security.txt disclosures are missing, representing compliance and transparency gaps. Overall, the website is professional, trustworthy, and well-positioned in its market segment, though improvements in privacy compliance and security policy publication are recommended.

D

DREVONA Market s.r.o.

drevona.sk

57

DREVONA Market s.r.o. is a Slovak furniture manufacturer and retailer operating both physical stores and an e-commerce platform. The company offers a wide range of furniture products including living room, bedroom, kitchen, office, and children's furniture, primarily produced in their own manufacturing facilities in Slovakia. Their market position is that of a trusted local brand with multiple retail locations and a strong online presence. Technically, the website is built on the CREATIVE shop CMS platform, utilizing modern web technologies including Google Analytics, Facebook Pixel, and Sentry for error tracking. Security measures such as HTTPS, CSRF tokens, and Google reCAPTCHA are implemented, reflecting a mature security posture. Privacy and cookie policies are present and GDPR compliant, supporting user data protection. Overall, the website demonstrates good content quality, professional design, and clear navigation, making it a reliable and user-friendly platform for customers.

A

ALLTOYS

alltoys.sk

55

Alltoys.sk is a Slovakian retail company specializing in toys for children, operating both an e-commerce platform and a network of physical stores. The website offers a broad selection of toys including popular brands like LEGO, and targets parents and children. The business is well-established in the Slovak market with clear contact information and a professional online presence. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, reCAPTCHA, and Sentry for error tracking, built on the CREATIVE shop CMS platform. The website is mobile optimized and SEO friendly, providing a good user experience. Security posture is solid with HTTPS enforced and secure form handling, though additional security headers could enhance protection. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the site is trustworthy and professionally managed, with room for improvement in publishing explicit security policies and incident response details.

T

Target

target.com

11

Target Corporation operates a large-scale retail and e-commerce platform serving millions of customers across the United States. The website offers a comprehensive shopping experience including groceries, clothing, electronics, and household essentials with options for contactless pickup and delivery. Target maintains a strong market position as a leading retail chain with a well-established brand and extensive product offerings. The website is professionally designed with excellent content quality and user experience, optimized for mobile and desktop platforms. Technically, the site leverages modern frameworks such as Next.js and integrates multiple third-party services for analytics, advertising, and customer engagement, hosted on a robust CDN infrastructure ensuring fast performance. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website reflects a mature digital presence aligned with enterprise retail standards.

S

Somfy

somfy.cz

51

Somfy Czech Republic operates as a prominent provider of home automation and smart home systems, specializing in motorized solutions for gates, garage doors, blinds, pergolas, and related smart devices. The company is part of the larger Somfy Group, established in 1969, and targets consumers in the Czech Republic seeking advanced home comfort and automation solutions. The website reflects a mature digital presence with comprehensive product information, support services, and multimedia content to engage customers. Technically, the website employs a custom CMS platform with modern JavaScript libraries including jQuery and TagCommander for marketing and analytics. The site is well-structured with JSON-LD schema data, SEO-optimized metadata, and responsive design elements, ensuring good user experience across devices. Hosting appears to leverage Akamai CDN services, contributing to moderate performance. From a security perspective, the site enforces HTTPS and includes some security headers, though it lacks explicit advanced headers like CSP or security.txt for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by clear privacy and cookie policies, though cookie consent mechanisms could be enhanced. Contact and support channels are available but no dedicated security incident response or data protection officer information was found. Overall, the website is professional, trustworthy, and well-aligned with business goals. The absence of WHOIS data reduces domain registration transparency but does not significantly detract from the site's legitimacy given the strong brand presence and consistent content. Strategic improvements in security headers and transparency would further strengthen the security posture.

H

heroal - Johann Henkenjohann GmbH & Co. KG

heroal.de

59

heroal - Johann Henkenjohann GmbH & Co. KG is a well-established German manufacturer specializing in high-quality aluminum building products including windows, doors, roller shutters, sun protection, roll gates, facades, and roofing systems. The company emphasizes premium 'Made in Germany' quality and holds certifications such as ISO EN 9001 and ift-Rosenheim RC 4. Their business model focuses on manufacturing and distributing products through a network of Fachpartners (specialist partners), supported by configurator tools and energy consulting partnerships. The website targets private customers, architects, and processors, reflecting a mature market position as a technological leader in aluminum processing for building products in Germany. Founded in 1874, heroal has a long heritage and a strong brand presence supported by consistent branding and trust indicators.

C

Cetris s.r.o.

cetrishobby.cz

62

Cetris s.r.o. operates the website www.cetrishobby.cz, promoting and selling CETRIS® HOBBY boards designed for hobbyists and small construction projects. The company targets DIY enthusiasts and gardeners in the Czech Republic, offering a niche product with detailed pricing, project ideas, and direct factory sales. The website is well-structured, visually consistent, and provides clear contact information and social media links, supporting a professional business presence. Technically, the site uses Google Analytics and Google Maps APIs, with responsive design and moderate performance. Security posture is adequate but could be improved by adding security headers and explicit privacy policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding suggest a legitimate business. Overall, the site is safe for general audiences and provides valuable content for its target market.

H

HP TRONIC, s.r.o.

valachy.cz

61

Resort Valachy is a well-established hospitality business operating in the Beskydy region of the Czech Republic, offering hotel accommodations, wellness and spa services, golf, and various leisure activities year-round. The website presents a professional and comprehensive digital presence with detailed information about services, events, and booking options. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and user experience. Security posture is moderate with HTTPS usage and cookie consent mechanisms, though explicit security headers are not detected in the provided data. The absence of WHOIS data limits domain trust assessment, but the business information and online presence indicate legitimacy. Overall, the site is suitable for general audiences, with no adult or questionable content detected.

H

HP TRONIC, s.r.o.

hotelprior.cz

63

Hotel Prior & Energy Spa is a modern four-star hotel located in the center of Zlín, Czech Republic, offering upscale accommodation, a large spa facility with panoramic views, gastronomy, and conference services. The business targets both leisure and business travelers seeking relaxation and event spaces. The website demonstrates a professional digital presence with comprehensive content, clear navigation, and multilingual support via Google Translate. The technical infrastructure includes modern JavaScript libraries, marketing tools, and analytics services, indicating a mature digital marketing approach. Security posture is good with HTTPS enforced and cookie consent mechanisms implemented; however, explicit security headers and incident response information are absent. The lack of WHOIS data limits domain trust assessment but the overall website and business information appear legitimate and professional.

The website batovskydomek.cz serves as an informational portal for the Baťovský domek exhibition, a cultural and architectural heritage site located in Zlín, Czech Republic. The site is managed by aArchitektura, spolek, and provides visitors with exhibition details, reservation contacts, and downloadable materials. The business operates in the cultural heritage and architecture niche, targeting general audiences interested in local history and architecture. The domain age and WHOIS data align well with the business profile, indicating legitimacy and consistency. Technically, the website employs modern frontend technologies including Bootstrap 5, jQuery, Google Fonts, and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No CMS is detected, and hosting appears to be provided by Active24. The site is accessible without WAF or blocking mechanisms. From a security perspective, the site uses HTTPS (implied) but lacks visible security headers such as CSP or HSTS. There are no privacy or cookie policies present, which is a compliance gap especially under GDPR. No forms are present, reducing data collection risks. Google Analytics is used without visible consent mechanisms, indicating moderate user tracking but poor privacy compliance. Overall, the website is functional and provides basic information with moderate trustworthiness. Key improvements include adding privacy and cookie policies, implementing security headers, and enhancing privacy compliance. These steps will improve user trust and security posture while aligning with regulatory requirements.