Security Directory

T

The Marshall Project

themarshallproject.org

64

The Marshall Project is a nonprofit news organization specializing in investigative journalism and reporting on the U.S. criminal justice system. It operates multiple newsletters and local network projects, positioning itself as a trusted source for criminal justice news and analysis. The website demonstrates a mature digital presence with a modern tech stack including JavaScript ES modules, Ruby on Rails backend indications, and CDN hosting via Amazon Cloudfront. Analytics tools like Google Analytics and Parsely are used for user engagement tracking. Security posture is strong with HTTPS enforced and CSRF protections in place, though explicit security headers and cookie consent mechanisms could be improved. WHOIS data is unavailable due to query failure, but the website's professionalism and nonprofit status support its legitimacy. Overall, the site is well-designed, content-rich, and trustworthy for its audience.

W

WebMD

webmd.com

66

WebMD is a leading enterprise in the healthcare information sector, providing trustworthy and timely health and medical news, educational content, and community services. The website serves a broad general audience seeking credible health information and expert commentary. It holds a strong market position as a trusted source in the healthcare information industry. Technically, WebMD employs modern web technologies including Vue.js, Adobe Launch for analytics, Google reCAPTCHA Enterprise for security, and robust content delivery via Amazon Cloudfront CDN. The site demonstrates excellent performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and consent management, although explicit security policies and vulnerability disclosures are not publicly available. Overall, the website is professional, secure, and compliant with privacy regulations such as GDPR. The lack of WHOIS data reduces transparency but does not detract from the site's credibility given its established brand presence.

M

Military Times

militarytimes.com

66

Military Times is a well-established independent media outlet providing comprehensive news coverage and resources related to military service members, veterans, and defense topics. The website offers a broad range of content including news, pay and benefits information, flashpoints, opinion pieces, and special projects, targeting military personnel and related communities. The business model is primarily media publishing supported by advertising and subscriptions, positioning Military Times as a trusted voice in its niche. Technically, the site employs modern web technologies such as Google Tag Manager, Prebid.js for ads, and performance monitoring tools, hosted likely on Akamai CDN, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is basic with no visible privacy or cookie policies in the provided content. WHOIS data is unavailable, which slightly reduces transparency but does not detract from the site's professional appearance and trustworthiness. Overall, Military Times presents a professional, content-rich, and secure platform serving its audience effectively.

L

Lightigo

lightigo.com

57

Lightigo is a small technology company specializing in the development and production of analytical systems for rapid multi-elemental analysis using Laser-Induced Breakdown Spectroscopy (LIBS). The website presents a professional and focused business offering niche scientific instrumentation targeted at industrial and research customers requiring fast elemental analysis. The technical infrastructure is based on WordPress with the Divi theme, enhanced by SEO and analytics tools such as Yoast SEO and Google Analytics. Hosting is provided by WEDOS Internet, a reputable Czech hosting provider. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy or terms of service. Contact information and social media presence are not explicitly provided in the analyzed content, which may impact user trust and engagement. Overall, the website is functional, well-designed, and relevant to its target audience but would benefit from enhanced security practices and clearer privacy and contact disclosures.

Č

České centrum pro investigativní žurnalistiku o.p.s.

investigace.cz

68

Investigace.cz is a Czech investigative journalism platform operated by České centrum pro investigativní žurnalistiku o.p.s., focusing on organized crime, corruption, and money laundering impacting Czechia and Slovakia. The site offers investigative articles, podcasts, and newsletters, targeting a general audience interested in in-depth journalism. It maintains partnerships with reputable organizations such as OCCRP, Deník N, GIJN, and ICIJ, enhancing its credibility and reach. Technically, the website is built on WordPress with modern plugins like Yoast SEO and integrates multiple analytics and tracking tools including Google Tag Manager, Microsoft Clarity, and Piwik PRO, all managed with user consent mechanisms. The site is mobile-optimized and employs CDN services for content delivery. However, some security headers are missing, and no explicit incident response or security policy pages are found. Security posture is generally good with HTTPS enforced and privacy compliance evident through comprehensive cookie and privacy policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness from a domain registration perspective. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, Investigace.cz presents a professional and trustworthy investigative journalism platform with strong content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and domain registration verification are recommended to enhance trust and security posture.

C

Colourbox

colourbox.com

70

Colourbox is an online platform providing royalty free stock photos, videos, and vectors, targeting a broad audience including print, web, and social media users. The website positions itself as a provider of high quality and transparent licensing stock media content. Technically, the site uses modern JavaScript frameworks, CDNs like Amazon Cloudfront, and integrates third-party services such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is accessible, mobile-optimized, and demonstrates good content quality and branding consistency. Security-wise, the site enforces HTTPS and cookie consent but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and reduces trustworthiness. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

F

Facta Pro Futura

factaprofutura.com

58

Facta Pro Futura is a specialized strategic foresight platform focusing on understanding future trends and challenges, particularly in the energy sector and Central Europe. The website offers horizon scanning, data analysis, reports, and a geocalendar to support decision-makers in anticipating risks and opportunities. The platform collaborates with recognized partners such as the Adapt Institute, enhancing its credibility in the foresight domain. Technically, the website is built on the Webnode CMS, leveraging AWS Cloudfront CDN for content delivery, and demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism but lacks visible security headers and formal privacy or terms of service pages. The absence of WHOIS registration data raises concerns about domain legitimacy, although the active and professional nature of the site partially offsets this risk. Overall, the site presents a moderate security posture with room for improvement in compliance and transparency.

I

Investigatívne centrum Jána Kuciaka

icjk.sk

53

Investigatívne centrum Jána Kuciaka is a Slovak non-profit investigative journalism organization founded in 2018, continuing the legacy of Ján Kuciak. The organization focuses on independent investigative journalism, data analysis of corruption cases, and publishes articles and podcasts to inform the public. It maintains strong partnerships with international investigative journalism networks and receives grant support from various embassies. Technically, the website uses modern JavaScript frameworks (Vue.js and Vuetify), is hosted with CDN support, and integrates common analytics and tracking tools. The security posture is good with HTTPS, DNSSEC, and secure forms, though explicit security headers and incident response contacts are missing. Privacy and cookie policies are present with consent mechanisms, indicating GDPR compliance. Overall, the website is professional, trustworthy, and well-positioned in its niche.

Z

ZŠ A MŠ DOBŘÍKOV

zsdobrikov.cz

59

The website www.zsdobrikov.cz represents a small local educational institution, ZŠ a MŠ Dobříkov, offering basic and kindergarten education with a focus on a family-like atmosphere and innovative teaching methods. The school emphasizes individual attention, project-based learning, and digital competence development. The site is built on the Webnode platform and hosted via AWS Cloudfront, reflecting a moderate level of technical maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and a public privacy policy, which are areas for improvement. The absence of public WHOIS data suggests privacy protection, common for small entities, but limits transparency. Overall, the site is trustworthy and safe for general audiences, with room to enhance compliance and security practices.

A

Align Technology, Inc.

itero.com

67

iTero.com is the official website for iTero intraoral dental 3D scanners, a product line of Align Technology, Inc., a leading enterprise in the healthcare technology sector. The company specializes in advanced digital scanning solutions for restorative and orthodontic dental practices, integrating with Invisalign workflows to enhance clinical productivity and patient engagement. The website targets dental professionals including general practitioners and orthodontists, offering product information, customer testimonials, and support resources. The technical infrastructure is modern and robust, leveraging Next.js and React frameworks with Mantine UI components, hosted on AWS with Cloudfront CDN for performance and scalability. The site is well-optimized for mobile devices and accessibility, employing multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Hotjar, and Optimizely to monitor user engagement and optimize experience. Security posture is strong with HTTPS enforced, domain transfer protections, and cookie consent mechanisms in place. However, DNSSEC is not enabled and no explicit security policy or vulnerability disclosure page is present. No direct company contact emails or phone numbers are publicly listed, with contact primarily via a detailed form. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website reflects a mature, enterprise-grade digital presence with high content quality, strong branding, and good security hygiene. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and providing explicit security contact information to further enhance trust and compliance.

A

ABCedu

abcedu.sk

53

ABCedu is a Slovak educational publishing company specializing in innovative textbooks and teaching materials for kindergarten through secondary school students. The company also supports teachers through innovative and update training programs and offers online learning applications. Established in 2019, ABCedu positions itself as a trusted educational partner in Slovakia with endorsements from the Ministry of Education and a strong digital presence. The website reflects a professional e-commerce platform with clear navigation and comprehensive content tailored to students, teachers, and parents. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Google Analytics, Facebook Pixel, and Sentry for error tracking. Cookie consent is managed via Cookiebot and Usercentrics, ensuring GDPR compliance. The site is hosted with CDN support and uses HTTPS, providing a secure browsing experience. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site uses HTTPS and CSRF tokens in forms but lacks explicit security headers and a public security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Overall, ABCedu presents a low-risk profile with a solid business model in the education sector, good technical implementation, and strong privacy compliance. Strategic improvements include enhancing security headers, publishing a security policy, and improving accessibility compliance.

T

Tribune Group GmbH

biolaseacademy.com

58

Biolase Academy is an educational platform focused on providing continuing education for dental professionals, particularly in the use of dental laser technology. The platform offers live and on-demand webinars featuring expert speakers and provides CE credits to its members. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and Amazon Cloudfront CDN. It integrates security features such as HTTPS and Google reCAPTCHA for form protection. However, explicit security headers are not detected, and no direct company contact emails or phone numbers are provided, which could impact user trust. The domain WHOIS data is missing, raising concerns about domain legitimacy and age, though the association with Tribune Group GmbH and ADA CERP recognition supports credibility. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place.

C

Creative Labs (Germany)

creative.com

74

Creative Labs (Germany) operates a professional e-commerce website focused on selling audio products such as wireless speakers, Bluetooth headphones, sound cards, and gaming headsets. The website targets German consumers interested in high-quality audio and gaming accessories. The site demonstrates a mature digital presence with modern technologies including WordPress CMS, Divi theme, jQuery, and analytics tools like Google Analytics and Matomo. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms compliant with GDPR. Security posture is good with HTTPS enforced and some security headers present, though additional headers could improve protection. The absence of WHOIS registration data for the domain reduces trust from a domain legitimacy perspective, but the professional branding and presence of awards support business credibility. Overall, the website is a reliable and professional platform for Creative Labs' German market operations.

G

Gesellschaft für Maritime Technik e.V.

maritime-technik.de

65

Gesellschaft für Maritime Technik e.V. (GMT) is a German non-profit association focused on maritime technology, fostering cooperation between companies and research institutions to develop technologies for ocean research, protection, and sustainable use. The website positions GMT as a key network in the maritime technology sector, providing services such as networking, events, publications, and advocacy. The technical infrastructure is based on a modern CMS platform (Website-Editor.net) with standard web technologies including jQuery and CDN delivery, hosted by 1AND1. The site is well-structured, mobile-optimized, and uses HTTPS with appropriate security headers, reflecting a mature digital presence. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though explicit security policies and incident response information are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and partner affiliations.

P

ProFarm Blatnice

pro-farm.cz

57

ProFarm Blatnice is a Czech agricultural company specializing in plant and animal production with a strong emphasis on precision agriculture and sustainable farming practices. The company has been active in implementing precision agriculture since 2014 and holds recognition as a demonstration farm by the Ministry of Agriculture since 2019. Their services include a range of agro-services such as transport, soil processing, sowing, crop protection, fertilization, and harvesting. The website reflects a professional and consistent brand image targeting agricultural professionals and stakeholders interested in innovative farming techniques. Technically, the website is built on the Webnode CMS platform, utilizing Cloudfront CDN for content delivery. It integrates Google Analytics and Facebook SDK for analytics and social media engagement. The site is served over HTTPS with good SSL configuration but lacks important security headers and mobile responsiveness, which impacts user experience on mobile devices. SEO and accessibility features are basic, and no structured data or metadata beyond minimal meta tags are present. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, which are positive indicators. However, the absence of security headers, privacy and cookie policies, and contact information for incident response or data protection officers highlight compliance and security gaps. The WHOIS data is unavailable, which reduces trustworthiness but the website content and business information appear legitimate and professional. Overall, the website presents a credible agricultural business with room for improvement in security posture, privacy compliance, and technical modernization. Strategic enhancements in these areas would strengthen trust and regulatory compliance while improving user experience.

N

Nadácia Zastavme korupciu

zastavmekorupciu.sk

58

Nadácia Zastavme korupciu is a Slovak non-profit organization dedicated to combating corruption through investigative journalism, legal support for whistleblowers, and youth community engagement. Established around 2013-2014, it has built a recognized presence in Slovakia with a small but focused team. The website reflects a professional and consistent brand image, targeting a general audience interested in transparency and governance. Technically, the site is built on WordPress with modern plugins and CDN support, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though some advanced security headers and policies could be improved. Overall, the site is trustworthy and compliant with privacy regulations, though explicit privacy and security policies are not found. Contact information is limited on the site, which could be enhanced for better user engagement and trust.

Š

Šetina, Komendová & Partners s.r.o., Law Office

akskp.cz

65

Šetina, Komendová & Partners s.r.o. is a small law office based in Brno, Czech Republic, specializing in IT law, subsidies, and business corporation legal services. The firm emphasizes client-focused, innovative legal solutions and has international experience. Their website reflects a professional and trustworthy presence with clear contact information and a privacy-aware approach. Technically, the site is built on the Webnode CMS platform, uses Amazon Cloudfront CDN, and integrates common analytics and marketing tools such as Google Analytics and Hotjar. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing. WHOIS data is unavailable, likely due to privacy protection, which is common for small professional firms. Overall, the site is well-designed, accessible, and compliant with basic privacy regulations.

M

MS 97, s.r.o.

skolatreneru.cz

9

Trenérská škola Olympia, operated by MS 97, s.r.o., is an accredited educational institution specializing in fitness and bodybuilding trainer certifications authorized by the Czech Ministry of Education. The website presents a professional image with detailed course offerings, seminars, and a team of qualified lecturers. It targets individuals seeking recognized qualifications in personal training within the Czech Republic and the EU. The business model focuses on delivering accredited training programs and issuing certificates that enable graduates to operate professionally in the fitness industry. The site integrates modern web technologies hosted on AWS Cloudfront and built on the Webnode platform, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service pages. The absence of WHOIS data due to privacy protection slightly reduces transparency but is common for small businesses. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in compliance documentation and contact transparency.

D

DERTOUR

dertour.de

63

DERTOUR is a well-established German travel organizer and online travel agency offering a wide range of vacation products including hotels, package tours, cruises, and car rentals. The website targets general consumers interested in flexible and individual travel options, with a strong market position supported by its affiliation with the REWE Group. The digital infrastructure is modern, leveraging React and Next.js frameworks, and hosted on AWS Cloudfront CDN, ensuring good performance and mobile optimization. Privacy compliance is addressed through Usercentrics consent management and comprehensive privacy and cookie policies. Security posture is strong with HTTPS, security headers, and content security policies in place, although explicit security policies and incident response information are not publicly available. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

P

Persollo

persollo.com

56

Persollo is a technology company specializing in AI-powered influencer marketing analytics and instant checkout solutions. Their platform enables brands and agencies to analyze social media accounts across Instagram, TikTok, and YouTube, discover influencers with targeted audiences, and facilitate social media sales with a streamlined one-click checkout process. Positioned as a leading solution in influencer marketing, Persollo targets marketing professionals seeking transparency and efficiency in influencer campaigns. Technically, the website is built on modern frameworks such as React and Semantic UI, with integrations including Stripe for payments and Cloudfront for content delivery. The infrastructure is hosted with DigitalOcean DNS and leverages multiple external services for analytics and social media engagement. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections. However, it lacks DNSSEC and explicit security headers, and does not publicly disclose incident response or vulnerability handling policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but cookie consent mechanisms are absent. Overall, Persollo presents a professional and trustworthy online presence with a solid business model and technical foundation. Strategic enhancements in security policies, privacy compliance, and transparency would further strengthen their risk posture and customer trust.

E

Eifela

eifela.sk

53

Eifela is a newly established Slovak health-related business, as indicated by the domain registration date in early 2024 and the website title emphasizing health support. The website uses modern web technologies including Bootstrap 5 and integrates common marketing and cookie consent tools such as Google Tag Manager and CookieHub. The technical infrastructure is hosted on Websupport with DNSSEC enabled, indicating a baseline of security awareness. However, the website lacks visible privacy policies, terms of service, and contact information, which limits its compliance and trustworthiness from a user perspective. Security headers are not detected, suggesting room for improvement in hardening the web server configuration. Overall, the website is accessible without WAF or blocking mechanisms, and the content is safe and appropriate for a general audience.

D

Deutscher Landwirtschaftsverlag GmbH

digitalmagazin.de

66

The website kiosk.digitalmagazin.de is a digital magazine kiosk platform operated by Deutscher Landwirtschaftsverlag GmbH, targeting German-speaking audiences interested in agriculture, forestry, hunting, gardening, and beekeeping. It offers subscription and purchase services for specialized publications. The platform is built on a modern Angular framework with a consistent and professional design, providing a good user experience and clear navigation. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not found. Overall, the site presents a trustworthy and professional digital media service with moderate technical maturity and good compliance.

A

Ackermann-Gemeinde

ackermann-gemeinde.cz

10

The Ackermann-Gemeinde website serves as a digital platform for a non-profit organization focused on fostering cultural and social ties between Germans and Czechs. It provides information on events, youth activities, and educational projects, targeting young people and culturally interested audiences. The site is built on the Webnode CMS platform, leveraging modern web technologies and CDN services to deliver content efficiently. The presence of cookie consent and privacy policies indicates a baseline compliance with privacy regulations. Security posture is adequate with HTTPS enforced, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, trustworthy, and well-aligned with its mission, though the absence of public contact details may limit direct engagement.

W

Webnode AG

webnode.sk

71

Webnode AG operates a mature and well-established SaaS platform specializing in easy-to-use website creation tools, including AI-assisted website building, templates, and e-commerce solutions. The company targets small businesses, individual users, and hobbyists primarily in European markets, offering a freemium business model with premium upgrades. The website demonstrates a professional digital presence with consistent branding, multilingual support, and comprehensive user guidance. Technically, the platform leverages modern web technologies, including Google Analytics, Tag Manager, reCAPTCHA, and a CDN for performance and security. Accessibility is addressed via integration with AccessiWay, and the site is mobile-optimized with good SEO practices. Security posture is strong with HTTPS, security headers, and bot protection, though explicit security policies and incident response contacts are not published. WHOIS data is not publicly available, likely due to privacy protection, which is common for commercial entities. Overall, the website is trustworthy, secure, and professionally maintained, supporting a positive user experience and business credibility.

Slovak Telekom is a leading telecommunications provider in Slovakia offering a wide range of services including mobile phones, mobile plans, internet, and television services. The company targets both individual consumers and business customers, providing modern digital solutions such as the Magenta AI assistant and security services like Click Security. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the website is built using modern frameworks such as Next.js and leverages Amazon Cloudfront CDN for performance. It employs Google Tag Manager and Sentry for analytics and error tracking, indicating a robust infrastructure. Security is well-implemented with HTTPS, multiple security headers, and no visible vulnerabilities or exposed sensitive data. However, the website lacks explicit privacy and cookie policies and does not provide clear incident response or vulnerability disclosure information, which are important for compliance and user trust. Contact information is limited to a customer support phone number and social media links, with no email or physical address explicitly found in the provided content. Overall, Slovak Telekom's website demonstrates strong business credibility and technical maturity but should enhance privacy compliance and transparency to improve user trust and regulatory adherence.

OpenDNS is a cloud-delivered enterprise and consumer internet security service now fully integrated under Cisco. The website positions OpenDNS as a trusted provider of faster, safer internet access with a focus on threat prevention and content filtering. The site is professionally designed, mobile optimized, and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, CDN hosting, and integrates Cisco Umbrella tracking tags, indicating a robust infrastructure. Security posture is strong with HTTPS and cookie consent, though explicit security headers and incident response contacts are not evident. WHOIS data is unavailable, likely due to privacy protection, but Cisco branding and domain usage strongly support legitimacy. Overall, the site is trustworthy, well-maintained, and aligned with enterprise security standards.

V

VT Centrum

vtcentrumbrod.cz

55

VT Centrum is a modern driving school based in Český Brod, Czech Republic, offering professional driving courses primarily for category B licenses. The business targets individuals seeking to obtain their driver's license with a focus on quality instruction and modern training equipment. The website reflects a local service provider with a clear and professional presentation, catering to a regional audience. Technically, the site is built on the Webnode CMS platform and hosted via AWS Cloudfront, employing standard web technologies such as JavaScript and CSS. The site is mobile-optimized and performs moderately well, with good SEO practices and clear navigation. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published privacy policy, which impacts GDPR compliance. The absence of WHOIS data reduces transparency and trustworthiness, though the website content suggests a legitimate business. Overall, the site scores moderately well in content quality, technical implementation, and business credibility, but improvements in privacy and security policies are recommended.

N

NA CESTÁCH BEZPEČNĚ z.s.

nacestachbezpecne.cz

59

NA CESTÁCH BEZPEČNĚ z.s. is a registered non-profit association founded in 2021 focused on road safety education and prevention across all road user groups, including children and the growing community of caravan enthusiasts. The organization positions itself as a specialized entity within the Czech transportation safety sector, delivering educational content, public awareness campaigns, and interactive activities such as quizzes and lectures at events like Caravaning Brno. The website reflects this mission with relevant content and a clear target audience of road users of all ages. Technically, the website is built on the Webnode CMS platform and leverages Amazon Cloudfront CDN for content delivery. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good SEO practices. The site includes a cookie consent mechanism and uses Google Tag Manager for analytics, indicating a moderate level of digital maturity. However, some accessibility features and security headers are lacking, which could be improved. From a security perspective, the site enforces HTTPS and provides a cookie consent banner, but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, although the website content and structure appear professional and transparent. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with room for improvement in compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and resolving the domain registration transparency issue to enhance trust and credibility.

Č

Česká obec Sokolská

obchodsokol.cz

71

The website fnshp.cz/ceska-obec-sokolska/ serves as an official e-commerce platform for Česká obec Sokolská, offering licensed merchandise including clothing, accessories, collections, and publications. It targets members and supporters of the organization, providing a professional and branded shopping experience. The site is well-structured with clear navigation and multiple product categories, supporting Czech and English languages. Social media integration with Facebook and Instagram enhances community engagement. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, Sentry for error monitoring, and Typekit fonts. It uses HTTPS and has implemented cookie consent mechanisms, reflecting a good level of digital maturity. The CMS appears custom or proprietary, developed by wpj.cz, a partner domain. Performance and mobile optimization are adequate, though accessibility could be improved. From a security perspective, the site enforces HTTPS and uses monitoring tools but lacks explicit security headers visible in the HTML. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with accessible privacy and cookie policies, and GDPR adherence is evident. However, WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for e-commerce sites. Overall, the website presents a secure, professional, and user-friendly platform for official merchandise sales. Strategic improvements in security headers and accessibility would enhance its posture. The absence of WHOIS transparency is noted but does not detract significantly from legitimacy.

V

VaK Jesenicka

jesenickavoda.cz

57

Jesenickavoda.cz is a Czech regional water utility website focused on providing information and services related to potable and utility water supply in the Jeseník region. The site features news articles, community engagement content, and water management updates, positioning itself as a key local resource for residents and stakeholders. The business operates in the energy sector, specifically water utilities, and targets local consumers and environmental professionals. Technically, the website is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for hosting and Google Analytics for visitor tracking. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with a moderate performance profile. Security-wise, the site uses HTTPS and basic security headers but lacks advanced security headers and explicit security policies. The absence of WHOIS data and privacy policy reduces transparency and compliance confidence. Overall, the site is professional and trustworthy in content and design but would benefit from enhanced security and privacy disclosures.

F

FANUC Global

fanuc.eu

82

FANUC Global is a leading enterprise in the manufacturing sector specializing in factory automation solutions. With over 60 years of experience, FANUC offers a broad portfolio including CNC systems, industrial robots, machining centers, injection molding machines, and IIoT solutions. The company targets manufacturing industries worldwide, providing scalable automation technologies to enhance productivity and operational efficiency. Their digital service platform, MyFANUC, supports customers with product registration, orders, and downloads, reflecting a mature digital infrastructure. Technically, the website is built on modern frameworks such as Next.js and Drupal CMS, leveraging cloud CDN services for performance and global reach. The site is well-optimized for SEO, mobile responsiveness, and accessibility, indicating a high level of digital maturity. Security practices include HTTPS enforcement and cookie consent management via Cookiebot, with no visible vulnerabilities or exposed sensitive data. The security posture is strong, though explicit security headers could be confirmed. Privacy compliance is robust, with comprehensive privacy and cookie policies and GDPR adherence. The absence of public WHOIS data is typical for .eu domains and does not detract from the domain's legitimacy. Overall, FANUC demonstrates a professional, trustworthy online presence aligned with its market leadership. Recommendations include enhancing transparency on security policies and incident response, publishing a security.txt file, and confirming security headers to further strengthen trust and compliance.

O

ONE SYSTEM

onesystem.cz

56

ONE SYSTEM is a Czech Republic-based company specializing in transportation safety and monitoring systems, primarily serving public transport operators and vehicle fleet managers. Their offerings include camera systems for monitoring passenger boarding and alighting, vehicle interiors, and external surroundings, as well as fleet management solutions. The company emphasizes safety, operational efficiency, and modular system design tailored to client needs. The website reflects a professional small business with a clear focus on transportation safety technology.

K

Komunitní nadace Blanicko – Otavská

konabo.cz

59

Komunitní nadace Blanicko – Otavská is a Czech community foundation dedicated to supporting local projects that benefit residents and foster regional development. The foundation operates primarily in the Blanicko – Otavská region, providing grants and managing donor funds to support social services, environment, culture, education, and local development. The website reflects a small but established non-profit organization with a clear mission and local focus. Technically, the site is built on the Webnode CMS platform, uses HTTPS with Cloudfront CDN for asset delivery, and implements a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of WHOIS domain registration data and lack of published privacy and terms policies represent gaps in transparency and compliance. Security posture is adequate with HTTPS but could be improved by adding security headers and formal vulnerability disclosure mechanisms. Overall, the website is professional and trustworthy in content but would benefit from enhanced compliance and security practices.

Č

Černovická dechovka

cernovickadechovka.cz

57

Černovická dechovka is a traditional Czech brass band with a rich history dating back to 1933. The band performs a variety of traditional music styles including polkas, waltzes, tangos, marches, and seasonal music such as Christmas carols. It actively participates in festivals, concerts, and community celebrations, and has recorded CDs and DVDs that have been broadcast on Czech radio and television. The website serves as an informational and promotional platform for the band, targeting music enthusiasts and local community members interested in traditional Czech brass music. Technically, the website is built using the Webnode CMS platform and hosted on AWS Cloudfront CDN, employing modern web technologies such as HTML5, CSS3, and JavaScript. The site is mobile-optimized and includes basic SEO and accessibility features. It uses HTTPS for secure communication and implements a cookie consent banner to comply with basic privacy regulations. However, it lacks advanced security headers and comprehensive privacy or terms of service documentation. From a security perspective, the site shows a moderate security posture with HTTPS enabled and cookie consent mechanisms in place. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, as it conflicts with the band's claimed long history. No critical vulnerabilities or exposed sensitive data were detected. The site does not collect user data through forms beyond cookie consent, reducing privacy risks. Overall, the website is a well-maintained informational site for a cultural music group with good content quality and user experience. Security and privacy compliance can be improved by adding security headers, privacy policies, and domain registration transparency. The lack of WHOIS data is a notable risk factor that should be addressed to enhance trust and legitimacy.

U

Urban Market

urbanmarket.sk

37

Urban Market is a Slovakian event organizer specializing in large-scale sales exhibitions showcasing local author design, fashion, and artistic creations. The website positions itself as the largest such event in Slovakia, targeting a general audience including families. The business model revolves around organizing events and cultural programs that promote local creators. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by event management plugins and Google Analytics for tracking. Hosting appears to be provided by Websupport with DNSSEC enabled, indicating a secure domain setup. Security posture is good with HTTPS and DNSSEC, but lacks explicit privacy, cookie, and security policies, which are important for compliance and trust. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

K

KOKOZA, o. p. s.

kokoza.cz

45

KOKOZA, o. p. s. is a Czech non-profit organization dedicated to promoting urban gardening, food cultivation, and composting within city environments. Their website serves as an educational platform inspiring and connecting communities to grow vegetables and fruits even in limited urban spaces such as terraces and window boxes. The organization focuses on community engagement and environmental sustainability. Technically, the website is built on WordPress using Elementor and enhanced with SEO and analytics tools like Rank Math and Google Tag Manager. The site is served securely over HTTPS with a good SSL configuration and uses modern web technologies and CDNs for performance. However, explicit privacy policies and terms of service are not present, which slightly impacts compliance and trust. Security posture is generally good, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is professional, trustworthy, and well-positioned within its niche, but could enhance transparency and security documentation to improve compliance and user trust.

B

Bastide le confort médical

bastideleconfortmedical.com

59

Bastide Le Confort Médical operates as a leading French e-commerce platform specializing in medical equipment and mobility aids, including fauteuils releveurs (lift chairs), incontinence products, and professional medical supplies. The company positions itself as the premier network for medical equipment in France, targeting both individual consumers and healthcare professionals. Their business model focuses on online retail complemented by physical stores and customer support services, including delivery and installation. Technically, the website is built on the Planet Unified Commerce platform, utilizing AngularJS and Bootstrap frameworks, with integrations for advanced search (Doofinder), marketing (Google Tag Manager, SaleCycle), and cookie consent management (Axeptio). The site is mobile-optimized and employs HTTPS with a moderate performance profile. However, some modern security headers are missing, and the site could improve accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and consent management but lacks comprehensive security headers and explicit privacy policies. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data raises concerns about domain legitimacy, though the professional content and business information mitigate some risk. Overall, the website presents a trustworthy and professional front for a healthcare retail business but should address WHOIS inconsistencies and enhance security and privacy disclosures to strengthen trust and compliance.

G

Girasole, z. s.

girasole.cz

58

Girasole, z. s. is a Czech non-profit organization providing healthcare and social services focused on home hospice care, personal assistance, and emergency care for seriously ill and elderly individuals in the Hustopeče region. Their mission is to support patients and families to live dignified lives at home during serious illness. The website reflects a local healthcare service provider with a clear focus on palliative and hospice care, supported by community and regional partnerships.

P

Podřipské muzeum v Roudnici nad Labem - příspěvková organizace města Roudnice n. L.

podripskemuzeum.cz

57

Podřipské muzeum in Roudnice nad Labem is a public cultural institution operated as a contributory organization of the city. It focuses on preserving and presenting the history and culture of the Podřipsko region through permanent and temporary exhibitions, workshops, lectures, and public events. The museum targets local residents and visitors interested in regional heritage and cultural education. The website reflects a small but professionally managed institution with clear contact information and active social media presence. Technically, the website is built on the Webnode platform, leveraging modern web technologies including HTTPS, CDN hosting via Amazon Cloudfront, and Google Tag Manager for analytics. The site is mobile-optimized with good design and navigation, though some SEO and accessibility features could be enhanced. The cookie consent mechanism is implemented, but privacy and terms of service pages are missing, indicating partial compliance with GDPR requirements. From a security perspective, the site uses HTTPS and basic security headers but lacks advanced headers and a security.txt file for vulnerability disclosure. No WHOIS data is available, which limits domain trust assessment, but the website content and contact details suggest legitimacy. Overall, the security posture is moderate with room for improvement in compliance and security best practices. The overall risk is low given the nature of the institution and the website content. Strategic recommendations include adding privacy and terms policies, improving security headers, and publishing vulnerability disclosure information to enhance trust and compliance.

Č

Časopis CzechIndustry

casopisczechindustry.cz

54

Časopis CzechIndustry is a specialized magazine focusing on Czech industry, commerce, transport, and construction sectors. It serves a niche audience of industry professionals and stakeholders by providing news, expert interviews, and event information relevant to the Czech industrial landscape. The website content is well-structured and relevant, reflecting a small but focused publishing business. Technically, the site is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN and Google Analytics for tracking with IP anonymization, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data reduces transparency and trustworthiness, although the presence of clear contact information and consistent branding supports legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

A

Acord, z.s.

acord-spolek.cz

57

Acord, z.s. is a small Czech non-profit organization focused on cultural activities including theater and music, primarily serving the local community of Slatiňany. The organization engages both children and adults in theatrical performances, family events, and charitable concerts, emphasizing community involvement and cultural enrichment. Their business model relies on sponsorships and donations, with transparent public donation accounts and a clear contact presence on their website. Technically, the website is built on the Webnode CMS platform and utilizes Amazon Cloudfront CDN for content delivery. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. The presence of Google Tag Manager indicates moderate user tracking and analytics capabilities. However, the site lacks advanced security headers and comprehensive privacy documentation. From a security perspective, the website enforces HTTPS and implements a cookie consent banner, which are positive indicators. However, the absence of security headers and privacy policies represents compliance gaps, particularly under GDPR. The missing WHOIS data reduces domain trustworthiness, though the website content and contact details suggest a legitimate small non-profit entity. Overall, the security posture is moderate but could be improved with better policy transparency and technical safeguards. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance trust and security posture. The website is safe for general audiences and does not contain any adult or questionable content.

I

Intra-African Trade Fair (IATF)

iatf.africa

55

The Intra-African Trade Fair (IATF) 2025 website serves as a comprehensive platform promoting a major pan-African trade event scheduled in Algiers, Algeria. The event focuses on fostering intra-African trade, investment, and economic development across multiple sectors including agribusiness, creative industries, automotive, and research. The platform targets a diverse audience of businesses, investors, government entities, and entrepreneurs seeking to engage with Africa's growing $3.5 trillion market. The website provides detailed session schedules, speaker profiles, and event information, positioning itself as a key gateway for trade opportunities in Africa. Technically, the website is built on modern web technologies including React and Next.js, leveraging Material-UI for UI components and Amazon Cloudfront for content delivery. It demonstrates good mobile optimization and SEO practices, although accessibility features are basic. The site uses Google Tag Manager for analytics and tracking, indicating moderate user tracking levels. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. Privacy compliance is partial, with a cookie consent banner present but no accessible privacy policy or terms of service pages. WHOIS data is privacy protected but consistent with a legitimate event domain. Overall, the website is professional and trustworthy, with strong business credibility but some gaps in privacy and security transparency. Strategic improvements in privacy policy publication, security header implementation, and incident response disclosure would enhance trust and compliance.

O

Obecní úřad Hrusice

obec-hrusice.cz

10

The website obec-hrusice.cz serves as the official digital presence for the municipality of Hrusice in the Czech Republic. It provides residents and visitors with essential information such as news updates, official notices, contact details, event calendars, and local services. The site is positioned as a local government authority platform, targeting the community and stakeholders within the municipality. The business model is governmental public service, with a focus on transparency and community engagement. Technically, the website is built using modern web technologies including Nuxt.js and Tailwind CSS, hosted on Amazon AWS Cloudfront CDN, ensuring good performance and mobile responsiveness. The site employs HTTPS with good SSL configuration and security headers, reflecting a solid security posture. However, it lacks some advanced privacy compliance features such as a cookie consent mechanism and explicit security or incident response policies. From a security perspective, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. The domain registration data is consistent and trustworthy, with a long-standing domain age appropriate for a municipal entity. The absence of a vulnerability disclosure policy and incident response contact points are areas for improvement. Overall, the website is professional, trustworthy, and serves its purpose effectively, though it could enhance privacy compliance and security transparency to further strengthen user trust and regulatory adherence.

M

MetroNews Television

wvmetronewstv.com

68

MetroNews Television is a media streaming platform dedicated to providing comprehensive news, talk, and sports coverage for West Virginia. It offers a variety of programming including live and archived shows, sports broadcasts, and exclusive interviews, positioning itself as the only true statewide medium for the Mountain State. The platform targets West Virginia residents and sports enthusiasts, delivering content accessible across multiple devices without requiring a traditional TV provider. Technically, the website leverages modern web technologies such as React, Google Analytics 4, Google Tag Manager, and Google reCAPTCHA Enterprise for security and analytics. It is hosted likely on AWS infrastructure using Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site includes proper meta tags, SEO elements, and accessibility features, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. While explicit security headers are not fully confirmed, the site demonstrates good security hygiene with CSRF tokens and no exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR and related regulations. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency. Overall, MetroNews Television presents a professional and trustworthy media service with strong technical and security foundations. The main risk lies in the lack of publicly available domain registration information, which should be addressed to enhance trust and credibility.

F

Flowmedik Oy

echat.fi

44

Flowmedik Oy operates the echat.fi website, providing eConsultation services primarily targeting Finnish healthcare consumers. The website is designed in Finnish and offers online medical consultation services, positioning itself as a niche healthcare provider in Finland. The domain is registered since 2018, consistent with the company's business timeline. Technically, the website employs modern web technologies such as Font Awesome icons, Google Fonts, and Raygun for error monitoring, hosted on Cloudpit infrastructure. However, the site lacks comprehensive privacy and cookie policies, and no explicit contact information is present on the homepage, which may impact user trust and compliance. Security-wise, HTTPS is used, and error monitoring is active, but security headers and other best practices are missing, indicating room for improvement in security posture. Overall, the website is functional but basic in content and compliance, scoring moderately in AI evaluation.

P

Perfalytics, Inc.

perfalytics.com

64

Freshpaint is a healthcare-focused privacy platform designed to help healthcare marketers and organizations manage their data in compliance with HIPAA regulations. The company offers a suite of services including a BAA-supported platform, safe-by-default data blocking, complete visitor journey tracking, and secure server-side connections to ensure sensitive health information is never shared with non-compliant advertising and analytics tools. Positioned as a specialized SaaS provider, Freshpaint targets healthcare marketers seeking to balance high-performance marketing with stringent privacy requirements. The website reflects a professional and consistent brand image, emphasizing trust and compliance.

U

U Lidušky

obchodulidusky.cz

57

U Lidušky is a small, family-run retail business operating multiple farm food stores and a bistro in Plzeň, Czech Republic, since 2014. They focus on healthy, local, and farm-sourced products including bakery items, meats, and gluten-free foods. Their market position is that of a trusted local provider emphasizing quality and freshness. Technically, the website is built on the Webnode CMS platform, uses Amazon Cloudfront CDN, and integrates standard analytics and marketing tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and a published privacy policy, which are important for GDPR compliance. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and contact details suggest a legitimate business. Overall, the site scores well on content and technical implementation but should improve privacy and security disclosures to enhance trust and compliance.

T

Tereza Buchalová – fotograf

terezabuchalova.cz

58

The website www.terezabuchalova.cz represents a small local photography business based in the Czech Republic, specializing in portrait and lifestyle photography. The site offers services including studio rental and photography workshops, targeting a general audience primarily in the Pardubice region. The business model is service-oriented with a focus on personal photography sessions and educational offerings. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

S

Senior Point Zlín

senior-point-zlin.cz

57

Senior Point Zlín is a community-focused service providing a friendly contact point for seniors in the city of Zlín, Czech Republic. The website serves as an informational portal offering details about services, events, and leisure activities tailored for senior citizens. The organization appears to be a small, local non-profit or government-supported entity dedicated to senior welfare. Technically, the website is built on the Webnode CMS platform, hosted via AWS Cloudfront CDN, and uses modern web technologies including JavaScript and CSS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and a privacy policy page, which are important for GDPR compliance. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and hosting appear legitimate. Overall, the site is functional and trustworthy for its intended audience but would benefit from improved privacy and security practices.

L

La Fabrica Bistro

lafabricabistro.cz

55

La Fabrica Bistro is a small hospitality business located in the Czech Republic, offering a refined bistro experience with a focus on breakfast, brunch, and lunch menus featuring local farm and forest ingredients. The website presents a professional and visually appealing design with clear navigation and contact information, primarily targeting local customers and visitors interested in quality dining. The technical infrastructure relies on Webnode CMS and AWS Cloudfront CDN, with Google Tag Manager implemented for analytics. Security posture is moderate with HTTPS enabled but lacks important security headers and privacy compliance documentation. The absence of WHOIS data reduces domain trustworthiness, though the website content appears legitimate and business-focused. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.