Security Directory

F

Formspark

submit-form.com

66

Formspark is a technology-focused SaaS company founded in 2018, providing a backend service that connects web forms to email and other integrations without requiring users to manage servers or databases. The company targets agencies, freelancers, developers, and marketing teams, positioning itself as a reliable and easy-to-use form backend solution trusted by over 20,000 companies. The website is professionally designed with excellent content quality and clear navigation, supporting multiple languages and integrations with popular platforms such as Slack, Zapier, and various spam protection services. Technically, the website leverages modern frameworks including Next.js and React, hosted on AWS infrastructure. It demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforced, secure form handling, and multiple anti-spam protections, although some security headers are not explicitly detected and DNSSEC is not enabled. Privacy compliance is good with a comprehensive privacy policy and GDPR page, but lacks a cookie consent mechanism. Overall, the security maturity is solid for a small SaaS provider, with no visible vulnerabilities or suspicious patterns. The domain registration is privacy protected but consistent with the business profile and age. Contact information is available via email and support forms, with active social media presence. No critical issues were found, and the website is safe for general audiences. Strategic recommendations include implementing security headers, enabling DNSSEC, publishing a formal security policy and vulnerability disclosure program, and adding cookie consent to enhance privacy compliance and trust.

The website poslipribeh.cz is a newly registered domain (April 2024) currently serving as a parked domain landing page indicating availability for sale. It does not represent an active business or service and lacks any substantive content, contact information, or privacy and security policies. The technical infrastructure is minimal, relying on basic HTML, CSS, JavaScript, and an iframe loading external content from third-party domains associated with advertising and tracking. No HTTPS or security headers are detected, and the site does not comply with privacy regulations such as GDPR. Overall, the site has a low trustworthiness and business credibility score, reflecting its status as a parked domain rather than an operational business website.

T

Toret

toret.cz

67

Toret.cz is a specialized technology company focused on developing WooCommerce plugins tailored for the Czech and Slovak e-commerce markets. Established in 2014, the company has built a strong market position with over 12,000 active installations and more than 40,000 plugin sales, offering a comprehensive suite of plugins for payments, shipping, invoicing, marketing, and store customization. Their business model revolves around direct sales, subscription services, and bundled plugin packages, targeting web developers and e-shop owners seeking localized e-commerce solutions. Technically, the website is built on WordPress with WooCommerce and leverages modern web technologies including JavaScript, jQuery, and various marketing and analytics tools such as Google Tag Manager, Hotjar, and Microsoft Clarity. The site demonstrates excellent performance, mobile optimization, and SEO practices, supported by a consistent and professional design. Hosting is managed through REG-GRANSY, aligning with the domain registration data. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and integrates security best practices through plugins and regular updates. While explicit security headers like Content-Security-Policy are not detected, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy policies and terms of service are comprehensive and accessible, reinforcing compliance and trust. Overall, Toret.cz presents a low-risk profile with a mature digital presence, strong compliance, and a clear focus on serving the regional WooCommerce ecosystem. Strategic recommendations include enhancing security headers, maintaining vigilant plugin updates, and improving direct contact information visibility to further boost business credibility and user trust.

B

Binsfeld

binsfeld.lu

57

Binsfeld is an integrated communication agency based in Luxembourg, specializing in advertising, branding, digital media, social media, video and motion design, content creation, live events, and print. The company has established a solid market position with a professional portfolio and a clear focus on delivering comprehensive communication strategies to businesses and organizations. The website reflects a medium-sized agency with consistent branding and a strong digital presence, including multilingual support and active social media channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPML, ensuring good SEO and multilingual capabilities. Security measures include HTTPS, Google reCAPTCHA on forms, and a cookie consent mechanism, although some security headers could be improved. Overall, the website is professional, secure, and compliant with GDPR requirements, making it a trustworthy digital asset for the company.

The website www.prostabil.cz presents a health supplement product aimed at middle-aged and mature men to support prostate health and urinary function. The business model relies on directing users to partner e-commerce sites for purchase, indicating a niche supplement marketing approach within the Czech healthcare sector. The site content is clear and relevant but lacks direct business contact information and legal policies, which limits transparency and trust. Technically, the site uses basic web technologies including jQuery and NetteForms but does not demonstrate advanced CMS or hosting details. Security posture is weak due to missing HTTPS confirmation, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable, which raises concerns about domain legitimacy and registration transparency. Overall, the site is functional but requires significant improvements in security, compliance, and business credibility to enhance trust and user confidence.

VitalChrom, operated by AGROBAC s.r.o., is a Czech-based small retail business specializing in dietary supplements aimed at weight management. Their product portfolio includes the VitalChrom Shake, a nutritionally complete meal replacement, and VitalChrom Drink, a supplement containing MOROSIL® and chromium. The company sells directly to consumers via an e-commerce platform integrated into their website. The site is professionally designed with clear navigation and good mobile optimization, supporting a positive user experience. Technically, the website employs modern web standards, including HTTPS, Google Fonts, FontAwesome icons, and Matomo analytics for user tracking. However, the absence of WHOIS data limits domain trust verification. Security posture is generally good with HTTPS and secure form handling, but lacks advanced security headers and published security policies. Privacy compliance is partial, with no visible cookie consent mechanism or comprehensive privacy policy details. Overall, the website is functional and trustworthy but would benefit from enhanced transparency and security practices.

Webex, a Cisco brand, is a leading provider of collaboration and customer experience solutions, offering industry-leading video conferencing, cloud calling, and contact center services that support hybrid work environments for businesses of all sizes. The website demonstrates a mature digital presence with comprehensive product information, clear navigation, and professional branding consistent with Cisco's corporate identity. Technically, the site leverages modern technologies including Brightcove video players, Adobe Helix RUM for performance monitoring, and Adobe Experience Manager as its CMS, ensuring a fast, accessible, and SEO-optimized user experience. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a high level of business credibility and technical maturity, suitable for an enterprise-grade SaaS provider.

N

Nemours Children's Health

nemours.org

68

Nemours Children's Health is a large, nationally recognized pediatric healthcare system serving multiple states including Delaware, New Jersey, Pennsylvania, and Florida. The organization offers a wide range of pediatric specialties and services, supported by a professional and well-structured website that targets families, children, and healthcare professionals. The website leverages modern technologies such as Adobe Experience Manager and PostHog analytics, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and secure forms, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website presents a trustworthy and professional image consistent with a reputable healthcare provider.

G

GMX - kostenlose E-Mail-Adresse, FreeMail & Nachrichten

gmx.at

64

The website at https://www.gmx.net/consent-management/ appears to be a page related to GMX, a well-known free email service provider primarily serving German-speaking users. However, the page content is inaccessible, displaying an error message and a redirect form to the homepage, indicating a failure to load the intended consent management content. The technical infrastructure includes modern JavaScript libraries for consent and permission management, but the actual page content is missing or blocked. The WHOIS data for the domain www.gmx.net is not publicly available, with the WHOIS query returning no match, which is unusual for a major domain and reduces trustworthiness. Security posture is weak due to lack of visible security headers and no privacy or cookie policies found on this page. Overall, the site shows signs of incomplete or blocked content, limiting the ability to fully assess its security and compliance status.

C

CBL Asset Management

cblam.lv

10

CBL Asset Management is a Latvian-based financial services company specializing in asset management, including pension plans, investment funds, and portfolio management. It operates under the Citadele Group umbrella, targeting private banking clients and investors seeking sustainable financial growth. The website presents a professional and consistent brand image with clear service offerings and multilingual support, primarily in Latvian. The company maintains a solid market position within Latvia's finance sector, focusing on high-quality investment products and client consultations. Technically, the website employs modern web technologies such as JavaScript, SVG graphics, and Google Tag Manager for analytics. It uses Turbolinks for navigation optimization and implements HTTPS with CSRF protection on forms, indicating a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policy documentation and incident response contact information, which are recommended for enhanced transparency and trust. No vulnerabilities or suspicious content were detected, and the WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, reflecting a trustworthy and professional online presence. Strategic improvements in security policy transparency and incident response readiness would further strengthen its security posture and client confidence.

S

SIENNA

siennanursingsociety.org

63

SIENNA (Society of Internationally Educated Nurses in North America) is a non-profit organization dedicated to supporting internationally educated nurses migrating or planning to migrate to North America. The organization provides community support, networking opportunities, and resources to its target audience. The website is professionally designed using the Wix platform, featuring clear branding and relevant content aligned with its mission. Technical infrastructure is based on Wix's Thunderbolt framework, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain registration insights, but the website content and structured data suggest legitimacy and a small organizational size. Overall, the site is safe, professional, and trustworthy, though improvements in privacy compliance and security best practices are recommended.

I

International Council of Nurses

icn.ch

66

The International Council of Nurses (ICN) is a globally recognized federation representing over 130 national nursing associations. The organization serves as the authoritative voice for nursing worldwide, focusing on policy advocacy, education, leadership development, and global health initiatives. Their website reflects a professional and comprehensive digital presence, targeting nursing professionals, healthcare policymakers, and global health stakeholders. The content is rich, multilingual, and well-organized, supporting their mission to advance nursing and health policy globally. Technically, the website is built on Drupal 10, leveraging modern web technologies including SVG graphics and asynchronous loading of analytics scripts such as Google Tag Manager and Plausible Analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and formalized privacy and cookie policies, which are important for compliance and user trust. No vulnerability disclosure or incident response information is present, indicating room for improvement in transparency and security maturity. Overall, the ICN website is a trustworthy and authoritative platform with strong business credibility and technical foundations. Strategic enhancements in privacy compliance and security best practices would further strengthen its posture and user confidence.

U

Hledám děvče

utxo.cz

50

The website utxo.cz is a Czech language adult dating and escort service platform featuring profiles of women offering companionship and adult services. The site targets an adult audience seeking such services, with content and keywords clearly indicating NSFW material. Technically, the site uses modern web technologies including Vue.js and is hosted behind Cloudflare, but lacks important security and privacy features such as security headers, privacy policies, and incident response contacts. The WHOIS data is suspicious, showing a domain creation date in the future (2025), which undermines trust in the domain's legitimacy. Overall, the site has basic content quality and technical implementation but poor privacy compliance and business credibility indicators.

F

Freelo

freelo.cz

56

Freelo is a SaaS project and task management platform designed primarily for independent professionals and small teams seeking efficient collaboration and control over their projects. The website presents a professional and well-structured digital presence with comprehensive features such as Kanban boards, Gantt timelines, mind maps, and integrations, positioning itself as a niche player in the project management software market. The platform emphasizes ease of use, clear communication, and centralized information management, appealing to freelancers and small businesses. Technically, the website employs modern JavaScript frameworks, tracking tools like Google Tag Manager and Sentry for error monitoring, and ensures mobile responsiveness and SEO best practices. Security posture is solid with HTTPS enforcement and monitoring, though explicit security headers and detailed privacy policies are absent. WHOIS data is not publicly available, likely due to privacy protection, which slightly impacts trust but is common for SaaS providers. Overall, the site is professional, trustworthy, and technically sound, with room for improvement in privacy transparency and contact accessibility.

A

Affidea

affidea-neuracare.gr

61

Affidea neuraCare is a healthcare service provider specializing in neurology based in Athens, Greece. The website positions itself as a Center of Excellence offering world-class neurological care with specialized neurologists and innovative treatments. The business operates under the Affidea Group umbrella, indicating a medium-sized healthcare entity focused on patient care in neurology. The website content is minimal but includes well-structured metadata and SEO tags to support visibility. Technically, the website is built using the Astro framework with modern JavaScript modules, indicating a contemporary approach to web development. However, the provided HTML snapshot shows limited visible content and no interactive forms or contact details. The site appears moderately optimized for mobile and SEO but lacks accessibility features and performance indicators are moderate. From a security perspective, no explicit security headers or policies are detected, and no privacy or cookie policies are present, which are critical for GDPR compliance given the healthcare context. No analytics or tracking scripts are found, suggesting minimal user tracking. The absence of contact information and security policies reduces trust and compliance posture. No WAF or blocking mechanisms are detected, and the site is accessible. Overall, the website requires improvements in privacy compliance, security best practices, and content richness to enhance user trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, adding contact and incident response information, and enhancing security headers and SSL configurations.

P

PZU

pzu.pl

65

PZU is a leading Polish insurance and financial services company offering a broad portfolio of products including life, health, property, vehicle, travel insurance, and investment and retirement solutions. The website reflects a mature digital presence with multiple client portals, online calculators, and integrated services targeting both individual and corporate clients. The company maintains a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI components, Google Tag Manager for analytics, and ConsentManager for cookie compliance. The site is built on a CMS platform inferred as OneWeb CMS, with asynchronous script loading and mobile optimization. Performance is moderate with good SEO and basic accessibility features. Security posture is strong with HTTPS enforced, presence of security headers, and no visible sensitive data exposure. The site integrates a chatbot with event tracking and manages user consent effectively. However, there is no explicit security policy or incident response contact information published, and no security.txt file detected. The WHOIS data for the domain is unavailable, which limits domain registration trust analysis. Despite this, the website's professional quality, extensive service offerings, and consistent branding strongly indicate legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

S

St. Paul's Garda Medical Aid Society

medicalaid.ie

53

St. Paul's Garda Medical Aid Society operates as a non-profit healthcare organization providing medical aid and insurance services primarily to Garda members in Ireland. The website serves as an informational portal offering benefit guides, claims login, and contact details. The business has a niche market position with a long history dating back to 1980, although domain registration details could not be verified due to missing WHOIS data. Technically, the website is built on legacy ASP.NET WebForms technology with basic JavaScript usage. The site lacks modern CMS or advanced frameworks and shows moderate performance and basic mobile optimization. There are no analytics or tracking scripts detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS (assumed but not confirmed), but lacks critical security headers and privacy compliance documentation such as privacy and cookie policies. No incident response or vulnerability disclosure information is provided. The absence of WHOIS data reduces trustworthiness, though the site content appears professional and focused on its target audience. Overall, the website is functional and provides essential services to its members but requires improvements in security posture, privacy compliance, and transparency to enhance trust and regulatory adherence.

M

McArnolds

mcarnolds.be

61

McArnolds is a Brussels-based creative communications agency specializing in branding, website creation, ecommerce, digital marketing, and multimedia production. Established in 2007, the agency focuses on crafting bespoke digital experiences that highlight brand identity and engage audiences effectively. Their market position is that of a small but established creative agency with a portfolio of diverse projects across various sectors. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, reCAPTCHA v3, and Cookiebot for privacy compliance, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses bot protection, and manages cookie consent effectively, though it lacks explicit security headers and published security policies. Overall, the website is professional, well-designed, and compliant with GDPR, reflecting a trustworthy and credible business presence.

B

Beckman Coulter Diagnostics

beckmancoulter.com

10

Beckman Coulter Diagnostics is a globally recognized enterprise specializing in diagnostic instruments and solutions that support healthcare professionals in delivering accurate patient care. The company operates under the parent company Danaher Corporation and offers a broad portfolio of products including chemistry, immunoassay, hematology, and automation systems. Their website reflects a mature digital presence with comprehensive resources, training, and support services tailored to healthcare institutions and professionals. Technically, the website is built on the Sitecore CMS platform and leverages modern technologies such as Coveo for search, Marketo for marketing automation, and UserWay for accessibility compliance. The site demonstrates good performance, mobile optimization, and strong SEO practices. Privacy and cookie policies are clearly presented with consent mechanisms, indicating compliance with GDPR and related regulations. From a security perspective, the site enforces HTTPS, implements key security headers, and uses consent management tools. However, explicit security policies and incident response information are not publicly available, which could be improved to enhance transparency and trust. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is professional, trustworthy, and well-aligned with the company's healthcare industry focus. The absence of WHOIS data is a minor concern but does not detract significantly from the site's credibility given the strong corporate branding and comprehensive content.

J

Juraj Mertuš

mertus.sk

45

Juraj Mertuš is a professional Slovak woodcarver artist specializing in various artistic wood carvings including portraits and sacred art. The website serves as a portfolio and contact point, targeting art enthusiasts and cultural institutions. The site is well designed with good navigation and mobile optimization, employing modern technologies such as Bootstrap and Google Analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and explicit incident response policies. Privacy compliance is basic but present, with GDPR-aligned cookie consent and privacy policy pages. Overall, the website is trustworthy and professionally maintained, suitable for its niche artisan business model.

MS Nurse PRO is a well-established, Europe-focused educational platform dedicated to nurses caring for people living with multiple sclerosis. It offers free, accredited e-learning courses, hybrid training, and a supportive community to enhance professional development and patient care. The platform is backed by reputable organizations such as EMSP, IOMSN, and EURIMS, reinforcing its credibility and market position in the healthcare education sector. The website is professionally designed, mobile-optimized, and provides multilingual support to reach a broad European audience. Technically, it uses modern frameworks and is hosted with reliable providers, ensuring good performance and accessibility. Security measures include HTTPS, cookie consent, and secure forms, though explicit security headers and published security policies could enhance its posture further. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is trustworthy, safe, and serves its niche effectively.

D

Deutsche Multiple Sklerose Gesellschaft, Bundesverband e.V.

msconnect.de

59

The Deutsche Multiple Sklerose Gesellschaft (DMSG) operates a dedicated platform called MS Connect, designed to provide a confidential and supportive social networking environment for people affected by Multiple Sclerosis and their relatives. The platform is evolving into MS Connect 2.0, enhancing user interaction with chat and mobile app capabilities. The organization is a leading non-profit in Germany focused on healthcare support for MS patients, offering helpline services, educational content, and fundraising opportunities. The website reflects a professional and user-friendly design with clear navigation and accessibility features.

EASYDOT CREATIVE is a Greek-based small technology company specializing in website construction, eShop development, and digital marketing services. Established in 2011, it holds a strong market position in Greece as a reliable and professional digital solutions provider. The website is well-designed, mobile-optimized, and rich in relevant content targeting businesses and professionals seeking digital transformation. Technically, the site runs on WordPress with a modern theme and integrates multiple JavaScript libraries and marketing tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and anti-bot measures like reCAPTCHA, though formal security policies and incident response contacts are absent. Privacy compliance is robust with clear cookie consent and privacy policy presence. Overall, the site demonstrates high professionalism and trustworthiness with no blocking or suspicious content detected.

GENESIS Pharma is a well-established biopharmaceutical company specializing in the commercialization of innovative pharmaceutical products targeting serious and rare diseases across Central and Eastern Europe. The company positions itself as a trusted regional partner for leading global biopharmaceutical firms, with a portfolio focused on chronic and rare disease treatments. Their business model centers on strategic partnerships, pharmacovigilance, and logistics services to ensure innovative therapies reach patients effectively. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization, supporting their market position as a regional leader. Technically, the website employs modern JavaScript libraries such as Swiper.js for interactive content and includes a cookie consent mechanism indicating awareness of privacy compliance. The site is responsive and well-structured, though explicit privacy and terms of service pages are not found, which is a compliance gap. Security posture is good with HTTPS enforced and secure form inputs, but lacks some advanced security headers and incident response contact details. Overall, the security posture is solid but could be improved by publishing comprehensive privacy policies, terms of service, and vulnerability disclosure information. The absence of WHOIS data for the domain is a concern that slightly reduces trustworthiness, though the website content and partner affiliations strongly indicate legitimacy. Strategic recommendations include enhancing transparency on privacy and security policies and improving domain registration visibility to bolster trust.

Ν

Ντάντος Δημήτριος Α.Ε.

dados.gr

46

The website dados.gr represents the Greek company "Ντάντος Δημήτριος Α.Ε.", a small-sized business founded in 2003 specializing in the retail and distribution of alcoholic beverages primarily in the regions of Halkidiki and Thessaloniki. The company serves a mature audience including hotels, supermarkets, and catering centers, collaborating with major suppliers such as Coca-Cola and Diageo. The website content is in Greek and provides basic business information without advanced digital marketing or user engagement features. Technically, the site is built on an outdated Joomla 1.5 CMS platform, which poses significant security risks due to lack of updates and support. The site lacks modern security headers, HTTPS enforcement visible in the content, and does not provide privacy or cookie policies, indicating compliance gaps. No forms or email contacts are present, limiting user interaction and data collection. Overall, the website has a basic design and moderate navigation clarity but requires urgent technical and security improvements to meet modern standards.

Y

YouBeHero

youbehero.com

69

YouBeHero is a Greek non-profit platform established in 2017 that enables users to convert commissions from their online purchases into donations to charitable organizations without any additional cost. The platform targets socially conscious Greek consumers and supports 151 registered organizations. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and Tag Manager for tracking. The domain is registered with GoDaddy and uses Cloudflare DNS services, ensuring reliable hosting and DNS management. Security posture is solid with HTTPS enforced and CSRF protections, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-optimized for mobile and SEO. No critical security or content safety issues were detected.

Açık Açık Derneği operates as a non-profit platform in Turkey dedicated to promoting transparency, open communication, and accountability primarily within civil society organizations and social enterprises. The website serves as a hub to connect donors with transparent and accountable NGOs and social initiatives, emphasizing ethical standards and donor rights. The platform is positioned as a trusted intermediary in the Turkish non-profit sector, with a focus on social impact and public resource accountability. Technically, the website employs modern web technologies including JavaScript, Cloudflare DNS services, and Google reCAPTCHA for bot mitigation. While the site is mobile-optimized and presents a professional design, it lacks advanced security headers and DNSSEC, which are recommended for enhanced security. The absence of a privacy policy and terms of service pages indicates room for improvement in compliance and transparency. From a security perspective, the site benefits from HTTPS and bot protection but misses key security best practices such as DNSSEC and security headers. No critical vulnerabilities or blocking mechanisms were detected, suggesting a moderate security posture. However, the lack of published security policies and incident response contacts limits the site's readiness for security incidents. Overall, the website is legitimate, well-aligned with its stated mission, and technically sound for its scale. Strategic improvements in privacy compliance, security hardening, and contact transparency would enhance trust and resilience.

Z

Emil Zátopek Ostrava Golden Marathon

zatopekmarathon.com

57

The Emil Zátopek Ostrava Golden Marathon website represents a professionally designed event platform dedicated to organizing a marathon and related races in Ostrava, Czech Republic. The event targets a broad audience of runners from elite athletes to amateurs and families, positioning itself as a new but promising marathon event with international participation. The website provides comprehensive event information, registration links, and partner acknowledgments, reflecting a focused business model centered on sports event management. Technically, the website employs modern front-end technologies including Bootstrap, Swiper, and animation libraries, hosted by a reputable Czech provider (WEDOS Internet). The site is mobile-optimized with good navigation and performance, though accessibility features are basic. Analytics are implemented via Plausible, a privacy-conscious service, indicating moderate user tracking. From a security perspective, the site uses HTTPS with good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of privacy and cookie policies represents a compliance gap, especially under GDPR regulations. Overall, the website is trustworthy and professionally maintained but would benefit from improved privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

Musicant is a Czech cultural association specializing in organizing concerts and representing artists primarily in jazz, world music, folk, and alternative genres. The organization operates mainly in Havířov and Ostrava, targeting music enthusiasts interested in quality and diverse musical experiences. Their business model revolves around event organization, artist representation, and ticket sales facilitation, positioning them as a regional cultural player with a strong local presence. The website reflects a professional and consistent brand image with clear contact information and active social media engagement.

P

ProProfs Survey Maker

proprofssurvey.com

62

ProProfs Survey Maker is a well-established SaaS platform offering online survey creation tools enhanced with AI capabilities. It targets individuals and businesses seeking to gather customer feedback through customizable surveys, forms, polls, and quizzes. The platform is part of the larger ProProfs brand, which includes multiple related products and subsidiaries, indicating a mature market presence. The website demonstrates professional design, clear navigation, and mobile optimization, supporting a positive user experience. Technically, it employs modern web technologies and integrates Google Tag Manager for analytics, reflecting a moderate to advanced digital maturity. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are lacking. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS domain registration data is a notable concern, reducing trustworthiness despite the professional appearance and business legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and domain registration clarity.

P

ProProfs Knowledge Base

proprofskb.com

61

ProProfs Knowledge Base offers a comprehensive AI-powered knowledge base software solution designed to reduce customer support tickets by up to 80%. Positioned as a leading SaaS provider in the knowledge management space, ProProfs targets businesses seeking to improve internal knowledge sharing and customer self-service. The website demonstrates a mature digital presence with structured data, multiple product integrations, and clear calls to action for demos and free trials. Technically, the site employs modern web standards, Google Tag Manager for analytics, and is mobile-optimized, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data is a notable anomaly, suggesting either recent domain registration or privacy protection, which slightly impacts trust but is mitigated by the professional site content and branding. Overall, ProProfs Knowledge Base presents as a credible and professional technology provider with room for enhanced transparency in domain registration and security disclosures.

M

Medartis AG

medartisusa.com

51

Medartis AG operates a professional website focused on innovative osteosynthesis implants for upper and lower extremities, targeting medical professionals and healthcare providers. The company positions itself as a global leader in the orthopedic medical device sector, offering a comprehensive portfolio of products and educational resources. The website is built on TYPO3 CMS, utilizing modern web technologies such as jQuery and custom JavaScript, delivering a well-structured, mobile-optimized, and content-rich experience. Privacy and cookie compliance are well implemented with clear consent mechanisms and a comprehensive privacy policy. Security posture is moderate with no visible security headers and no exposed sensitive data, but the absence of WHOIS data and security.txt reduces trust slightly. Overall, the site is professional, trustworthy, and serves its business purpose effectively.

S

S. A. B. Impex, s.r.o.

lecba-rakoviny.com

48

The website lecba-rakoviny.com is an information portal focused on modern cancer treatment technologies, operated by the company S. A. B. Impex, s.r.o., based in the Czech Republic. The domain has been active since 2013, indicating a stable presence in the healthcare information niche. The site uses WordPress CMS with the Divi theme and Yoast SEO plugin, reflecting a moderate level of digital maturity. Google Tag Manager is implemented for analytics and tracking purposes. Security posture is basic with HTTPS enabled but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is limited as no explicit privacy policy or terms of service were found, though a cookie policy with consent mechanism is present. Overall, the website is professional and relevant to its target audience but would benefit from improved security and privacy disclosures.

T

Trulife

trulife.com

69

Trulife is a well-established healthcare company specializing in prosthetics, orthotics, breastcare, pressure care, and walking aids with over 60 years of experience. The website serves as a global e-commerce platform offering a comprehensive product catalog and educational resources targeted at healthcare professionals, distributors, retailers, and consumers. The company positions itself as a niche specialist with a consistent brand and professional online presence. Technically, the site is built on Shopify, leveraging modern web technologies and third-party marketing and analytics tools such as Yotpo and Mailchimp. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and domain transfer protection, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy and professionally maintained, supporting the company's market position.

K

KLS Martin Group

klsmartin.com

62

KLS Martin Group is a well-established international medical technology company specializing in innovative surgical solutions. Founded in 1896 and headquartered in Germany, the company offers a broad portfolio including implant systems, surgical lasers, high-frequency surgical devices, operating lights, and surgical instruments. The website reflects a mature digital presence with multilingual support, comprehensive product and service information, and global contact points. Technically, the site is built on TYPO3 CMS, hosted behind Cloudflare, and implements modern web standards with good performance and mobile optimization. Security posture is strong with HTTPS, bot protection, and cookie consent mechanisms, though some security headers could be explicitly verified. Privacy compliance is robust with clear GDPR-aligned policies and cookie management. The absence of WHOIS data is a notable anomaly but does not detract from the site's professional presentation and trustworthiness. Overall, the site demonstrates a high level of business credibility and digital maturity.

OrthoPedia Patient is an educational platform specializing in orthopedic patient education, offering accessible learning content such as videos and modules focused on orthopedic conditions and treatments. The platform targets patients, students, and healthcare learners seeking reliable orthopedic information. It occupies a niche market position within healthcare education, leveraging a digital learning management system to deliver content. Technically, the website is built on a modern LMS platform (Intellum) and integrates multiple analytics and tracking tools including Google Analytics, Snowplow, and Hotjar. The site uses HTTPS with strong SSL configuration and is hosted on Amazon S3 for media assets, indicating a robust infrastructure. The design is professional, mobile-optimized, and accessible, providing a good user experience. From a security perspective, the site employs HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The absence of a privacy policy and terms of service on the homepage slightly reduces privacy compliance scores. WHOIS data for the subdomain is unavailable, which is typical, but no suspicious patterns were found. Overall, the website presents a low-risk profile with good technical and security posture, though improvements in privacy transparency and security policy publication are recommended to enhance trust and compliance.

The website perf1.com is a parked domain page managed via Nameshield, a company specializing in brand protection, cybersecurity, and domain name management. The site itself contains minimal content, primarily linking to Nameshield's main services and offering a domain availability search form. There is no active business content or product offering on this domain. The WHOIS data query returned no match, indicating the domain may be unregistered, privacy protected, or in a transitional state, which limits the ability to verify registrant details or domain age. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. The page is simple and moderately optimized for mobile but lacks modern SEO and accessibility features. No HTTPS or security headers were detected, which is a significant security shortfall. No analytics or tracking scripts are present, indicating minimal data collection or user tracking. From a security perspective, the absence of HTTPS and security policies, combined with no contact or incident response information, suggests a low security posture. The domain's parked status and lack of WHOIS data reduce trust and legitimacy. No vulnerabilities or malicious indicators were found, but the site does not follow best practices for security or privacy compliance. Overall, the domain appears to be a placeholder with no active business operations. Strategic recommendations include securing the domain with HTTPS, adding privacy and cookie policies, providing contact and security incident response information, and improving technical SEO and accessibility to enhance trust and compliance.

The website cdn.perf1.com is a parked domain page managed by Nameshield, a company specializing in brand protection, cybersecurity, and domain name management services. The site itself contains minimal content, primarily serving as a placeholder indicating the domain is registered but not actively used. The page links to Nameshield's main website and related services but lacks any direct business or product offerings on this domain. From a technical perspective, the site uses basic HTML, CSS, and JavaScript without any advanced frameworks or CMS detected. The content is minimal and the site shows basic mobile optimization and accessibility. There is no evidence of HTTPS or security headers from the provided data, which limits the security posture. No analytics or tracking technologies are present, indicating minimal data collection or user tracking. Security-wise, the absence of HTTPS and security headers is a concern, as is the lack of privacy and cookie policies. The WHOIS data is unavailable, which restricts the ability to verify domain ownership and legitimacy fully. However, the association with Nameshield, a known domain management company, provides some trust. There are no signs of vulnerabilities or malicious content, and the site is safe for general audiences. Overall, the domain appears to be parked and not actively used for business operations. The security posture is weak due to missing HTTPS and policies, and the lack of WHOIS data reduces trust. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, and providing contact information to improve credibility and compliance.

T

Thuasne

thuasne.com

58

Thuasne is a healthcare company specializing in medical devices such as orthopedic supports and compression therapy products, serving an international market with localized websites for multiple countries. The website is built on modern web technologies including React and Next.js, providing a good user experience with mobile optimization and basic accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks explicit privacy policies, terms of service, and detailed contact information which are important for compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy and should be investigated further. Overall, the site is professional and trustworthy in appearance but requires improvements in transparency and security best practices.

The website www.hotelscombined.com is currently inaccessible beyond a CAPTCHA verification page, indicating the presence of a web application firewall or bot mitigation system. This prevents direct access to business content, limiting the ability to analyze the company's services, policies, or contact information. The domain WHOIS query returned no registration data, suggesting the domain may be unregistered, privacy protected, or otherwise obscured, which raises concerns about legitimacy and transparency. Technically, the site uses Google reCAPTCHA Enterprise to prevent automated access, but lacks visible security headers or HTTPS confirmation in the provided data. Overall, the site exhibits minimal content and poor user experience due to access restrictions.

Z

Zentiva Group, a.s.

zentiva.cz

76

Zentiva Group, a.s. is a well-established pharmaceutical company specializing in the production and distribution of generic medicines primarily serving the Czech Republic and surrounding regions. The website presents a professional image with clear branding and a focus on quality generics. The company targets healthcare professionals and consumers seeking affordable pharmaceutical products. The digital presence includes integration with Google Tag Manager and Cookiebot for analytics and privacy compliance, reflecting a mature digital infrastructure. Technically, the website employs modern JavaScript libraries and frameworks such as Modernizr and Select2, uses Google Fonts for typography, and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses cookie consent banners to manage user privacy preferences effectively. However, the absence of certain security headers and lack of published security or incident response policies indicate areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained, with a strong compliance posture regarding privacy and user consent. The lack of WHOIS data due to privacy protection is typical for corporate domains and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

B

BZCompany Internacional s.r.o.

forumantikoncepce.cz

45

Fórum Antikoncepce is a Czech healthcare information platform operated by BZCompany Internacional s.r.o., providing reliable and objective educational content about contraception and female reproductive health. The website is professionally designed, mobile-optimized, and endorsed by the Czech Gynecological and Obstetrical Society, positioning it as a trusted niche resource for women and healthcare professionals. Technically, the site employs modern web standards, HTTPS encryption, Google reCAPTCHA for form security, and cookie consent mechanisms, reflecting a moderate level of digital maturity. However, the absence of a privacy policy and terms of service pages, along with missing WHOIS registration data, indicates gaps in transparency and compliance. Security posture is generally good with SSL and secure forms, but lacks some recommended HTTP security headers. Overall, the site is safe, trustworthy, and focused on general audience healthcare education without any adult or explicit content.

Unilabs is the largest private provider of laboratory and diagnostic services in the Czech Republic, operating over 20 laboratories and 80 collection points with a workforce exceeding 1200 employees. The company offers a broad range of routine and specialized diagnostic tests including biochemistry, hematology, microbiology, immunology, pathology, genetics, and forensic genetics, also serving veterinary practices. The website reflects a professional and comprehensive digital presence with clear navigation, modern technology stack, and compliance with GDPR and cookie consent regulations. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit security policies could be improved. The absence of WHOIS data reduces domain trust from a registration perspective but does not detract from the professional business presentation. Overall, Unilabs demonstrates a mature digital infrastructure supporting its market-leading position in healthcare diagnostics.

M

maxdorf

slovniky.cz

52

Slovníky.cz is a Czech online dictionary and lexicon platform operated by the company Maxdorf, established in 1998. The website offers specialized lexicons, including medical dictionaries, and links to related services such as a bookstore and an encyclopedic club. The business targets general users seeking reference materials in Czech language, operating a niche content service with a small-scale business model. Technically, the site is built with basic HTML, CSS, and JavaScript, incorporating Google Analytics for visitor tracking. The infrastructure is hosted by REG-ZONER, a Czech hosting provider, and the domain is long-established, supporting business credibility. Security posture is moderate with HTTPS enabled but lacks modern security headers and privacy compliance mechanisms. No privacy or cookie policies are present, and no contact information is provided, which limits trust and compliance. Overall, the site is functional but could benefit from modernization and enhanced security and privacy practices.

S

SOS PL s.r.o.

sospl.cz

46

SOS PL s.r.o., operating the website www.sospl.cz, is a specialized service organization supporting primary care physicians in the Czech Republic. The company offers a range of services including practice purchase and sale, practice conversion to limited liability companies, accreditation support, safety audits, and professional liability insurance. The website is professionally designed, targeting healthcare professionals and members of the SPL ČR association, providing clear navigation and relevant content. The business operates in the healthcare sector with a small organizational size and a niche market position.

F

Fakultní nemocnice Hradec Králové

fnhk.cz

72

Fakultní nemocnice Hradec Králové is a major healthcare institution in the Czech Republic, serving as one of the largest medical facilities in Eastern Bohemia. The website provides comprehensive information about clinical services, patient care, employee resources, and commercial healthcare offerings. It targets patients, employees, partners, and the general public, positioning itself as a key regional healthcare provider with a strong emphasis on quality and safety. The site is professionally designed, mobile-optimized, and offers clear navigation and rich content in Czech with an English language option. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI components, integrates Google Analytics and Facebook Pixel for tracking, and uses Typekit fonts for typography. The site is served over HTTPS with good SSL configuration, though explicit security headers are not detected in the provided data. Privacy and security policies are prominently published, indicating a mature approach to compliance and data protection. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain reduces transparency and slightly impacts trustworthiness. No incident response or vulnerability disclosure information is found, which could be improved. Overall, the site demonstrates a good balance of usability, compliance, and security suitable for a large public healthcare institution. Strategic recommendations include enhancing security headers, publishing incident response contacts, and establishing a formal vulnerability disclosure policy to further strengthen security and trust.

M

www.mgus.cz

mgus.cz

55

The website www.mgus.cz serves as the official platform for the XXIV. pracovní konference na téma monoklonálních gamapatií, a specialized medical conference scheduled for October 8, 2025, in Hradec Králové, Czech Republic. The site provides essential event information including expert guarantors, venue details, and registration navigation. The business model focuses on event organization within the healthcare sector, targeting medical professionals and researchers interested in monoclonal gammopathies. The site is built on the Webnode CMS platform and hosted via AWS Cloudfront CDN, reflecting a moderate level of digital maturity with good mobile optimization and basic SEO practices.

MEDISTA spol.s r.o. is a Czech-based company specializing in the supply and servicing of laboratory and medical technology equipment, including hematology, biochemistry, transfusiology, diabetology, insulin pumps, sensors, and veterinary medicine. Established in 1999, the company serves healthcare professionals and veterinary practitioners primarily in the Czech Republic. The website reflects a professional business with clear contact information and a focus on B2B and B2C sales and services. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery. It is mobile responsive and well-structured with good SEO practices. However, there is a lack of advanced security headers and no visible CMS or hosting provider information. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS and includes a honeypot anti-spam measure in its contact form, but lacks explicit security headers and privacy or cookie policies, which are important for GDPR compliance. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency. Overall, the website is functional and professional but would benefit from enhanced security measures, privacy compliance documentation, and improved transparency to strengthen trust and regulatory adherence.

U

UXsniff

uxsniff.com

68

UXsniff is a small technology company founded in 2017 that provides AI-powered user experience and SEO analytics tools. Their platform offers session recordings, heatmaps, feedback widgets, surveys, site audits, broken link checking, and innovative Time-Travel A/B testing without the need for split traffic or code changes. The company targets website owners, UX professionals, and digital marketers aiming to optimize website performance and conversions. The website is professionally designed, mobile-optimized, and integrates modern web technologies such as SVG animations, Google Fonts, and YouTube APIs. Hosting and DNS are managed via GoDaddy and Cloudflare respectively, ensuring reliable infrastructure. Security posture is good with HTTPS enabled and domain status protections, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Contact information is limited to a contact form and no explicit emails or phone numbers are provided. The site is mentioned in reputable media outlets, enhancing trust. Overall, the website is functional, professional, and trustworthy but should improve privacy and security disclosures to enhance compliance and user trust.

Medilyst s.r.o. is a Czech Republic based company specializing in professional education focused on vascular access. The company operates a website that provides information about educational events, a forum for professional communication, and contact details. The website is well-structured, professionally designed, and targets healthcare professionals and specialized medical workplaces. The domain has been registered since 2011, indicating a stable and established business presence. Technically, the website uses modern frontend technologies such as Bootstrap 5 and FontAwesome, hosted on websupport.cz infrastructure. The site is mobile optimized and provides a cookie consent mechanism, reflecting good privacy compliance practices. Security posture is adequate with HTTPS enforced, though security headers are not explicitly detected and no incident response or security policy pages are found. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in security best practices and transparency.