Security Directory

NRW Partner Zoo is a consortium of 12 major zoos and animal parks in North Rhine-Westphalia, Germany, focused on conservation, education, and providing visitor benefits such as discounted entry. The website is well-structured, informative, and targets families, zoo visitors, and conservation enthusiasts. Technically, it uses modern front-end frameworks like Bootstrap and jQuery, with responsive design and conditional Google Analytics tracking respecting user consent. Security posture is moderate with cookie consent implemented and anonymized analytics, but lacks explicit security headers and incident response policies. Overall, the site is trustworthy, professional, and compliant with GDPR, with clear contact information and strong partner representation.

S

Saint-Georges-sur-Baulche

saint-georges-sur-baulche.fr

44

Saint-Georges-sur-Baulche is a French municipal government website providing comprehensive information and services to local residents, including administrative procedures, urban planning, family portals, and community news. The site serves as the official digital presence of the commune, targeting residents, families, seniors, youth, and local associations. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Bootstrap framework, and Leaflet.js for mapping, ensuring good mobile responsiveness and SEO optimization. The site employs cookie consent mechanisms and Google Analytics with user consent, reflecting a good privacy compliance posture. Security-wise, the site uses HTTPS with an excellent SSL configuration but lacks some HTTP security headers and formal security policies, indicating room for improvement. The WHOIS data is unavailable, likely due to privacy protection or registry policies, but the website content and branding strongly indicate legitimacy as an official municipal site. Overall, the site is professional, trustworthy, and well-maintained, with moderate technical performance and good user experience.

C

Commune de Champs-sur-Yonne

champs-sur-yonne.fr

54

The website champs-sur-yonne.fr serves as the official digital portal for the municipal government of Champs-sur-Yonne, France. It provides residents and visitors with essential information including local news, administrative procedures, municipal services, and contact details. The site is positioned as a trusted local government resource, focusing on transparency and community engagement. The business model is public service oriented, with no commercial activities evident. The website is well-branded and consistent with the identity of a small municipal entity founded in 2014. Technically, the site employs a modern technology stack including Bootstrap, jQuery, and several carousel libraries for UI enhancement. It uses hCaptcha for form protection and a cookie consent management tool (tarteaucitron.js) to comply with privacy regulations. Hosting is provided by OVH, a reputable French hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses hCaptcha to mitigate spam on contact forms. However, it lacks visible HTTP security headers such as CSP or HSTS, and does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism, aligned with GDPR requirements. Overall, the website presents a low-risk profile with a solid foundation for public sector communication. Strategic improvements include enhancing security headers, publishing incident response information, and expanding accessibility compliance. These steps would strengthen the site's security posture and trustworthiness further.

A

ANCV Cheque-Vacances

cheque-vacances.com

57

ANCV Cheque-Vacances operates a well-established French government-backed program providing holiday vouchers to individuals and organizations, facilitating access to tourism, leisure, and cultural activities. The website reflects a mature digital presence with a strong brand, extensive partner network, and multiple user segments including public agents, enterprises, and tourism professionals. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use, though some accessibility and security header improvements are recommended. Security posture is solid with HTTPS and bot protection, but lacks some advanced DNS and header configurations. Privacy compliance is minimal on the homepage, with no visible privacy or cookie policies, which should be addressed to meet GDPR standards. Overall, the domain registration and WHOIS data confirm legitimacy and consistency with the business claims.

L

La C'ART

lacart.fr

44

La C'ART is a cultural subscription service offering access to 15 museums and art centers in the Lille metropolitan area, targeting residents and visitors interested in arts and culture. The website is well-branded, professionally designed, and provides comprehensive information about the pass, events, and partner institutions. Technically, the site uses modern web technologies including Bootstrap, jQuery, and integrates analytics tools like Matomo and Facebook Pixel. It is mobile-optimized and includes accessibility features, although some security headers could be improved. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security policies or vulnerability disclosure information. WHOIS data is missing, which reduces domain trust from a registration perspective, but the website content and external references indicate legitimacy. Overall, the site is a reliable and professional platform for cultural engagement in Lille.

E

E-BAAN,SE

hapra.cz

49

HAPRA Design is a Czech digital agency specializing in web design, e-commerce development, SEO, social media management, and online marketing services. With over 20 years of experience, the company offers comprehensive digital solutions aimed at businesses seeking to enhance their online presence. Their service portfolio includes website and e-shop creation, content management, PPC advertising, and technical maintenance, positioning them as a full-service digital partner. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site employs a modern technology stack including PHP, MySQL, JavaScript libraries such as jQuery, Bootstrap framework, and integrates marketing and analytics tools like Google Tag Manager and Facebook SDK. The site is mobile-optimized and uses a custom CMS named publishWEB. Performance is moderate with good SEO practices and basic accessibility features. From a security perspective, the website enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, no explicit security headers were detected, and no public security or incident response policies are available. The WHOIS data is missing, which limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, with recommendations to enhance security headers, publish security policies, and improve accessibility compliance to further strengthen their security posture and trustworthiness.

E

e-BAAN Internet s.r.o.

ostravski.cz

40

e-BAAN Internet s.r.o., operating under the brand 'Ostravski', is a Czech Republic-based small technology company specializing in web design, e-commerce solutions, and related digital services. With over 20 years of experience and a customer base exceeding 500 clients, the company offers comprehensive web development services including domain registration, hosting, SEO, graphic design, and content management. Their market position is focused on small businesses, freelancers, schools, and municipalities primarily within the Moravian-Silesian region and broader Czech Republic. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs a variety of modern web technologies such as jQuery, Bootstrap modals, Owl Carousel, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search engine visibility. However, some technical improvements are recommended, including the implementation of security headers and enhanced accessibility features. From a security perspective, the site uses HTTPS and has a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS data raises concerns about domain registration transparency. No explicit security or incident response policies are published, and security headers are missing, which could expose the site to certain risks. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is moderate but could be improved with best practices. The overall risk assessment suggests the website is legitimate and professionally maintained but would benefit from enhanced transparency in domain registration and improved security practices. Strategic recommendations include adding security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

G

Genesii

genesii.fr

52

Genesii is a French technology company specializing in bespoke web application development, custom websites, and AI integration services. Positioned as a small but innovative agency, it serves businesses seeking digital transformation solutions. The company holds the 'Jeune Entreprise Innovante' certification, highlighting its commitment to innovation and research, particularly in machine learning and e-learning platforms. The website is professionally designed, mobile-optimized, and provides clear contact information, supporting its business credibility. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery, Owl Carousel, and Swiper. It integrates Google Analytics, Google Tag Manager, and Calendly for marketing and scheduling. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, alongside a GDPR-compliant cookie consent mechanism. However, additional security headers and a published security policy would enhance its security posture. The security evaluation shows a good baseline with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong with visible policies and consent mechanisms. The absence of WHOIS data limits domain trust analysis, but the website content and certifications support legitimacy. Overall, the site is safe, professional, and trustworthy, with recommendations to improve security headers and incident response transparency. Strategically, Genesii should focus on enhancing its security documentation, expanding accessibility compliance, and maintaining transparency in data protection to strengthen trust and compliance in the evolving regulatory landscape.

U

Université de Technologie Belfort-Montbéliard

utbm.fr

56

Université de Technologie Belfort-Montbéliard (UTBM) is a recognized French public higher education institution specializing in engineering, master, and doctoral programs. It maintains accreditations such as CTI and the EUR-ACE label, emphasizing quality education and research. The website targets students, researchers, companies, and alumni, offering comprehensive academic and continuing education services. The institution has a solid market position within the French and international education sectors, supported by active social media presence and international partnerships. Technically, the website is built on WordPress with modern plugins and frameworks including Bootstrap, jQuery, and WPBakery. It employs GDPR-compliant cookie consent mechanisms and supports multilingual content via Weglot. Performance and mobile optimization are good, with accessibility features implemented. Analytics are primarily handled via Matomo, with Google Analytics configured but inactive. Security posture is good with HTTPS enforced and no exposed sensitive data. However, the absence of a published security policy and incident response contacts is a gap. The WHOIS data is unavailable, which slightly reduces trustworthiness but is mitigated by the institution's established reputation and accreditation. Overall, UTBM's website is professional, secure, and compliant, serving its educational mission effectively. Strategic improvements include publishing security policies and incident response information to enhance transparency and trust.

V

Vinofol, s.r.o.

vinofol.cz

52

Vinofol, s.r.o. is a well-established family winery based in the Czech Republic, operating since 1992. The company specializes in producing and selling high-quality wines from the Mikulov and Novosedly regions, leveraging modern technology and traditional winemaking methods. Their market position is strong within the Czech wine retail sector, supported by a broad product range, including award-winning wines, and a multi-channel sales approach via e-shop and physical vinoték stores. The website reflects a mature digital presence with integrated marketing and analytics tools, providing a professional user experience and clear business information. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a notable gap in domain transparency but does not detract significantly from the overall legitimacy based on website content. The site targets adult consumers, implementing age verification due to alcohol sales regulations.

P

PanneauPocket

panneaupocket.com

52

PanneauPocket is a French-based company providing a leading mobile application designed for local governments such as municipalities and intercommunal entities (EPCI) to communicate real-time information and alerts to residents. Established in 2017, the company has positioned itself as the number one mobile alert and information app in France, serving over 13,500 local entities including gendarmeries and covering approximately 8 million residents. Their key services include push notifications, RSS feeds, legal postings, directories, and event calendars, all aimed at enhancing local communication efficiency and citizen engagement. Technically, the website is built on WordPress with Elementor and leverages modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for UI and analytics. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Analytics tools such as Matomo and Microsoft Clarity are used for user behavior tracking, complemented by Google reCAPTCHA for form security. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain is unavailable, which slightly reduces trust but is mitigated by strong business signals such as media coverage, partnerships with official organizations, and transparent contact information. Overall, PanneauPocket presents a professional, trustworthy, and well-maintained digital presence with a strong market position in the French local government communication sector. Strategic improvements in security headers and publishing a dedicated security policy would further enhance their security posture and trustworthiness.

V

Ville d'Argentan

argentan.fr

10

The website argentan.fr serves as the official digital presence for the city of Argentan, France, providing municipal information, citizen services, event updates, and tourism resources. It targets residents and visitors, positioning itself as a trusted government portal with a medium-sized operational scope. The site leverages a modern WordPress CMS infrastructure with popular plugins and frameworks such as Elementor, Bootstrap, and Leaflet.js, indicating a mature and maintainable technical foundation. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and GDPR-compliant cookie consent management, though there is room for improvement in implementing comprehensive security headers. Overall, the site demonstrates a good balance of usability, compliance, and security for a government entity.

S

Symetri

symetri.fr

54

Symetri is a French company specializing in digital SaaS solutions aimed at optimizing waste management operations, particularly for waste disposal sites (déchèteries). Their offerings include access control, real-time activity monitoring, waste traceability, and cost reduction tools tailored for public entities such as communities, exploitants, and mixed syndicates. The company positions itself as a niche player with strong partnerships and certifications like UGAP-SCC and France 2030, indicating credibility and alignment with public sector standards. Technically, the website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data reduces domain trust slightly, but the active website and business signals support legitimacy. Overall, Symetri demonstrates a mature digital presence with room for enhanced security and transparency.

T

Table de massage : usage, types, avantages, prix

tabledemassage.fr

38

The website tabledemassage.fr is a newly registered French informational site focused on massage tables, their usage, types, advantages, and pricing. It targets professionals in massage therapy, physiotherapy, wellness centers, and individuals interested in massage equipment. The site provides detailed, well-structured content but lacks business contact information and formal policies. Technically, it uses a modern frontend stack including Bootstrap 4, jQuery, and various UI libraries, delivering a good user experience with mobile optimization. However, no CMS or backend technologies are detected, and performance is moderate. From a security perspective, the site lacks visible security headers, privacy policies, cookie consent mechanisms, and contact details for incident response. The domain is very new (registered in late 2024) but WHOIS data is transparent and consistent with the website content, indicating legitimacy. No WAF or blocking mechanisms are detected, and the site content is safe for general audiences with no adult or explicit material. Overall, the website scores moderately on content quality and business credibility but scores low on privacy compliance and security posture due to missing policies and headers. There are no critical security issues detected, but improvements are needed to enhance trust and compliance. Strategic recommendations include implementing HTTPS with strong SSL, adding privacy and cookie policies, providing clear contact information, and enhancing security headers to improve the security posture and user trust.

O

Tout savoir sur le metier d'oculiste

oculiste.fr

34

The website www.oculiste.fr is an informational platform focused on educating visitors about the profession of oculists (ophthalmologists) in France. It provides detailed content on the role, training, income, and distinctions between oculists and opticians. The site targets a general audience interested in eye care professions and related health topics. Technically, the site uses a standard Bootstrap 4 framework with common JavaScript libraries, delivering a moderate performance and good mobile responsiveness. However, it lacks advanced SEO and accessibility features. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies, which also impacts GDPR compliance. The WHOIS data is unavailable, raising concerns about domain legitimacy and trustworthiness. Overall, the site serves as a niche educational resource but requires significant improvements in security, privacy, and business transparency to enhance credibility and compliance.

P

PracevRegionu.cz - nabídky práce ve vašem regionu

pracevregionu.cz

43

PracevRegionu.cz is a Czech Republic regional job portal established in 2016, offering extensive job listings across multiple regions and municipalities. The platform targets both job seekers and employers, providing a marketplace for employment opportunities with over 155,000 job offers. The website is professionally designed with clear navigation and regional segmentation, supporting a focused business model of online job advertisement and regional employment facilitation. The business operates primarily in the Other industry sector, serving a small-sized market niche within the Czech Republic.

L

Conseils pour aménager et entretenir le grenier

le-grenier.fr

32

Le-Grenier.fr is a small French informational website dedicated to providing detailed advice and guidance on attic (grenier) renovation, insulation, ventilation, structural assessment, pest prevention, and storage optimization. The site targets homeowners and individuals interested in improving or converting their attic spaces. The business model appears to be content-driven with external links to related health and domain services, likely for SEO or partnership purposes. Technically, the website uses a modern front-end stack including Bootstrap 4, jQuery, and various UI libraries, delivering a good user experience with mobile optimization and clear navigation. However, there is no evidence of a CMS or advanced backend platform, suggesting a static or custom-built site. Security posture is weak due to lack of visible HTTPS enforcement, absence of security headers, and no privacy or cookie policies, which also impacts privacy compliance. The WHOIS data is unavailable, limiting trust and legitimacy verification. Overall, the site is functional and content-rich but requires improvements in security, privacy, and transparency to enhance trustworthiness and compliance.

S

Smartweb s.r.o.

smartweb.es

49

Smartweb s.r.o. is a Slovakia-based technology company specializing in website development and internet marketing services. The company offers a comprehensive suite of digital marketing solutions including SEO, Google Ads campaigns, Google My Business profile management, social media management, and analytics services. Their multilingual web presence targets European markets, positioning them as a regional player in the web development and marketing sector. The website is professionally designed with clear navigation and relevant content aimed at businesses seeking to enhance their online presence. Technically, the website leverages a proprietary CMS platform with modern JavaScript libraries such as jQuery, Google Tag Manager, and Owl Carousel. The site is mobile optimized and includes SEO best practices with proper meta tags and structured data. Performance is moderate, with room for improvement in accessibility features. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to Red.es restrictions limits domain registration insights, but the website content and contact information indicate a legitimate and established business. Overall, Smartweb s.r.o. demonstrates a solid digital presence with good business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would enhance their security posture and trustworthiness further.

S

Smartweb s.r.o.

smartweb.at

69

Smartweb s.r.o. is a Slovak-based technology company specializing in website development and internet marketing services. The company offers a comprehensive suite of services including SEO optimization, Google Ads campaign management, Google My Business profile management, social media profile administration, and analytics integration. Positioned as a regional player, Smartweb targets businesses seeking to enhance their online presence and marketing effectiveness. The website content is professional and well-structured, reflecting a clear business focus and consistent branding. Technically, the site leverages a proprietary CMS platform with common JavaScript libraries and integrates Google Tag Manager and Analytics for tracking and marketing purposes. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although the absence of security headers and explicit incident response policies suggests room for improvement. The lack of WHOIS data limits domain trust verification, but the presence of company registration details and contact information supports business credibility. Overall, the site demonstrates a mature digital presence suitable for its business model.

S

Smartweb s.r.o.

smartweb.sk

10

Smartweb s.r.o. is a Slovak-based technology company specializing in web development and internet marketing services. The company offers a comprehensive suite of services including website creation, SEO optimization, Google Ads campaign management, Google Business Profile management, social media profile management, and analytics integration. Positioned as a regional player with multilingual capabilities, Smartweb targets businesses seeking to enhance their online presence and marketing effectiveness. The website reflects a professional and consistent brand image with clear service offerings and contact information. From a technical perspective, the website employs a modern technology stack including jQuery, Google Tag Manager, and various UI libraries, built on the proprietary Smartweb CMS platform. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Analytics and marketing tools are integrated with transparent cookie consent mechanisms, supporting GDPR compliance. Security posture is solid with HTTPS enforced and a detailed cookie consent framework. However, the absence of a published security policy and incident response contacts indicates room for improvement in transparency and readiness. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, Smartweb s.r.o. presents a trustworthy and professional online presence with strong business credibility and privacy compliance. Strategic enhancements in security policy publication and incident response readiness would further strengthen their security posture and stakeholder trust.

Museoteca is a specialized online platform dedicated to showcasing museums, artists, and featured artworks, primarily targeting art enthusiasts and cultural audiences. The website offers curated content including museum information, artist profiles, and galleries of artworks, supported by interactive features such as search autocomplete and carousel displays. The platform is positioned as a niche cultural information portal with a small business scale and a focus on European and international art institutions. Technically, the website employs a traditional web stack with jQuery, Owl Carousel, FlexSlider, and integrates Google Analytics and Facebook SDK for tracking and social media connectivity. Hosting is provided by Acens Technologies, S.L.U., a Spanish registrar and hosting provider. The site demonstrates moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. From a security perspective, the site uses HTTPS (assumed), has a cookie consent mechanism, but lacks DNSSEC and security headers, which are recommended for enhanced protection. No explicit security policies or incident response contacts are provided, indicating room for improvement in security maturity. Privacy compliance is basic, with a privacy policy and cookie policy present but lacking detailed GDPR adherence statements. Overall, Museoteca presents a professional and trustworthy online presence with good content quality and business credibility. However, it would benefit from enhanced security practices, improved privacy compliance, and more comprehensive contact information to strengthen user trust and regulatory alignment.

C

Caux Seine agglo

cauxseine.fr

61

Caux Seine agglo is a French regional government entity providing local community services and information to residents and businesses in the Caux Seine area. The website serves as an official portal for announcements, events, and public services, targeting a regional audience. The site is built on WordPress and leverages modern web technologies including Matomo for analytics and Google Fonts for typography. The technical infrastructure is moderately optimized with good mobile responsiveness and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of a privacy policy and WHOIS data reduces compliance and trust scores. Overall, the site is professional and trustworthy but could benefit from enhanced privacy disclosures and security hardening.

E

Efficacity

efficacity.com

52

Efficacity is a French R&D institute dedicated to the decarbonation of cities, providing innovative software solutions, consulting, and labels to support sustainable urban development. Established in 2014 at the initiative of the French State, it serves a broad audience including local governments, urban planners, industrial clients, and state operators. The organization is well-positioned in the energy and government sectors with over 300 partners and clients nationally and internationally. Technically, the website is built on WordPress with Elementor and integrates modern SEO and analytics tools, hosted by Scaleway SAS. Security posture is solid with HTTPS and domain locking, though improvements can be made in DNS security and security headers. Privacy compliance is moderate due to the absence of explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich, supporting its business credibility.

H

Hotel Rudolf s.r.o.

hotelrudolf.cz

9

Hotel Rudolf s.r.o. operates a hospitality business providing accommodation, wellness, event hosting, and dining services in Havířov, Czech Republic. The website presents a professional and consistent brand image targeting travelers and guests seeking local hotel services with wellness and event facilities. The business appears to be a small-sized local hotel with a clear focus on customer experience and convenience. Technically, the website uses a traditional tech stack including jQuery 1.11.3, Bootstrap, and various UI libraries, managed via the AD-RS CMS platform. While the site is functional and moderately optimized for mobile, it uses outdated JavaScript libraries and lacks modern security headers, which could expose it to vulnerabilities. The website is accessible over HTTPS, but no explicit security policies or privacy notices are present. From a security perspective, the absence of WHOIS data limits domain legitimacy verification, and the lack of privacy and cookie policies indicates poor privacy compliance. The site uses Google Analytics for tracking but does not provide clear data protection information. Contact information is clearly provided, enhancing business credibility. Overall, the security posture is moderate but could be improved by updating libraries, adding security headers, and publishing privacy and cookie policies. The overall risk is moderate with recommendations to improve security best practices, privacy compliance, and technical modernization to enhance trust and protect customer data.

I

International Visegrad Fund

visegradfund.org

65

The International Visegrad Fund is a well-established non-profit organization dedicated to fostering sustainable regional cooperation in Central Europe. It provides funding through grants, scholarships, fellowships, and artist residencies, supporting over 5,000 projects historically. The website reflects a professional and consistent brand image with a clear focus on its mission and services, targeting individuals and organizations involved in regional development, culture, and academia. The organization has a strong market position as a key regional fund with a 25-year history. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Select2, and Owl Carousel. It integrates Google Analytics and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized with good SEO practices and moderate performance. However, some accessibility features could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration and secure form handling. It lacks some security headers and explicit incident response or vulnerability disclosure policies, which are recommended for enhanced security posture. Privacy compliance is mostly addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a notable gap. Overall, the website presents a trustworthy and professional digital presence for the International Visegrad Fund, with minor improvements suggested in privacy compliance and security best practices to further strengthen its posture.

L

LEPOR s.r.o.

lepor.cz

41

LEPOR s.r.o. is a well-established Czech advertising agency founded in 2000, providing a range of services including copyshop, signmaking, graphic design, printing, and promotional product sales. The company targets local businesses and consumers primarily in the Czech Republic, leveraging partnerships with specialized online catalogs and product providers. The website reflects a solid local market presence with clear contact information and a focus on customer service. Technically, the site uses a combination of popular JavaScript libraries and frameworks such as jQuery and Bootstrap, with moderate performance and good mobile optimization. Security measures include Google reCAPTCHA Enterprise integration on the contact form, but lack visible advanced security headers or published security policies. Privacy compliance is basic, with a cookie consent banner but no privacy policy or terms of service pages. Overall, the site is functional and professional but could improve in security and compliance transparency.

M

Město Kutná Hora

kutnahora.cz

64

Město Kutná Hora operates an official municipal information portal serving citizens, entrepreneurs, and tourists. The website provides comprehensive information about city administration, cultural events, tourism, and local services. It holds a strong market position as the authoritative source for Kutná Hora city information, leveraging official branding and UNESCO heritage association. The portal supports multiple languages and integrates social media channels to enhance engagement. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and various JavaScript libraries for UI components and analytics. The CMS identified is Marwel, a specialized platform. The site is mobile optimized with good SEO and accessibility features, though some improvements in security headers and incident response transparency are recommended. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with GDPR-aligned cookie management and privacy policy presence. Overall, the website is a trustworthy, well-maintained municipal portal with moderate technical sophistication and good user experience. The absence of WHOIS data slightly reduces domain trust but does not detract from the legitimacy of the site. Strategic improvements in security policy publication and header implementation would enhance the security posture further.

AT Computers a.s. operates the ATC Market website, a well-established e-commerce platform specializing in technology products such as computers, servers, and accessories. The company has a strong regional presence in Slovakia and the Czech Republic, supported by a network of partner retail sites. The website offers a comprehensive product catalog, user account features, and a mobile application, targeting both consumers and business customers. The business model focuses on retail and B2B sales with physical and online channels. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and Owl Carousel, built on an ASP.NET MVC framework with a custom CMS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit incident response contacts are provided. The domain registration is consistent with the business identity, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with GDPR, serving its target audience effectively.

I

ITS Office Technology, spol. s.r.o.

itsoffice.cz

55

ITS Office Technology, spol. s.r.o. is a Czech-based small IT services company specializing in comprehensive IT management solutions tailored for small to medium-sized businesses. Their offerings include IT infrastructure optimization, monitoring, printing management, helpdesk support, virtualization, and cloud solutions. The company positions itself as a reliable partner providing cost-effective IT outsourcing and support services with SLA guarantees. The website content is professionally presented, targeting regional businesses seeking IT operational support. Technically, the website employs a traditional tech stack including jQuery, Bootstrap, and Font Awesome, running on a custom CMS (AD-RS). The site is HTTPS enabled and mobile responsive with moderate performance. However, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and security hardening. Google Analytics is used for user tracking, indicating moderate data collection practices. From a security perspective, the site shows basic good practices such as HTTPS and no visible sensitive data exposure. However, the absence of security headers and vulnerability disclosure policies suggests room for improvement. The WHOIS data is missing, which raises concerns about domain legitimacy and reduces trustworthiness, although the website content and contact information appear legitimate and consistent with a small regional IT service provider. Overall, the website is functional, professional, and relevant to its business purpose but would benefit from enhanced security measures, improved privacy compliance, and transparency in domain registration to strengthen trust and compliance posture.

A

Alterrenat Presse

alterrenat-presse.com

54

Alterrenat Presse operates as a specialized French e-commerce platform focused on alternative press, books, and magazines related to organic living, well-being, and ecological topics. The website is built on PrestaShop and offers a curated selection of products targeting a niche audience interested in sustainable and alternative lifestyles. The company maintains a professional online presence with clear contact information and social media engagement primarily via Facebook. Technically, the site uses a mix of legacy and modern JavaScript libraries and is mobile optimized with a moderate performance profile. Security posture is adequate with HTTPS enforced and basic security best practices, though improvements in security headers and updated libraries are recommended. The absence of WHOIS registration data raises concerns about domain legitimacy, but the active and professional website presence partially mitigates this risk. Overall, the site is a credible small business e-commerce platform with room for technical and security enhancements.

AT Computers a.s. operates the ATC Market e-commerce platform, specializing in technology and electronic products such as computers, servers, accessories, and related IT equipment. The company targets both retail consumers and business clients primarily in the Czech Republic and Slovakia, supported by a network of partner companies and subsidiaries. The website demonstrates a mature digital presence with a comprehensive product catalog, mobile applications, and clear business information. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Owl Carousel, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit security policies are recommended. The absence of WHOIS data limits domain trust analysis, but the overall business credibility and content quality support a positive risk assessment. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen trust and compliance.

K

Kolektor

kolektorsisteh.si

10

Kolektor Sisteh is a leading Slovenian technology company specializing in automation, electrical energy supply, and water management solutions. With over 30 years of experience and more than 5000 projects completed domestically and internationally, it operates as part of the larger Kolektor corporate group. The website reflects a professional and consistent brand image, targeting industrial and energy sector clients with a focus on innovative technological solutions. Technically, the site uses modern web technologies including Google Tag Manager, reCAPTCHA, and jQuery, with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS and CAPTCHA protections, though it lacks explicit security headers and incident response information. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, indicating GDPR awareness. Overall, the site is trustworthy and well-maintained, with room for improvement in security transparency and contact information visibility.

A

Akademie klasické homeopatie, spol. s r.o.

studujtehomeopatii.cz

42

Akademie klasické homeopatie, spol. s r.o. is a Czech Republic-based educational organization specializing in professional homeopathy training for medical professionals and the general public. The website offers detailed information about courses, seminars, congresses, and online lectures led by an experienced homeopath. The company has a clear market position with over 32 years of experience in the field. Technically, the website uses a modern JavaScript and CSS stack with responsive design and integrates common analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS and secure login forms, but lacks advanced security headers and explicit privacy policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and company registration details support legitimacy. Overall, the site is professional, informative, and trustworthy for its target audience.

S

Smartweb s.r.o.

smartweb.eu

71

Smartweb s.r.o. is a Slovakia-based technology company specializing in website creation, internet marketing, and analytics services. The company positions itself as a regional provider offering comprehensive digital marketing solutions including SEO, Google Ads campaigns, Google My Business profile management, social media management, and Google Analytics integration. Their multilingual website targets businesses seeking to enhance their online presence and marketing effectiveness. The company demonstrates consistent branding and provides clear business registration details, supporting its credibility. Technically, the website employs a proprietary CMS platform with a modern JavaScript technology stack including jQuery, Owl Carousel, and Google Tag Manager. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers and explicit security policies could be enhanced. The security evaluation reveals no critical vulnerabilities or exposed sensitive information. Privacy compliance is well addressed with clear privacy and cookie policies and user consent mechanisms. However, the absence of a vulnerability disclosure policy or security.txt file indicates an area for improvement in transparency and incident response readiness. Overall, the website is professional, trustworthy, and secure, suitable for its business purpose. Strategically, Smartweb should focus on enhancing security headers, publishing explicit security policies, and improving accessibility compliance to strengthen its security posture and user trust. Regular audits of third-party scripts and continued adherence to privacy regulations will further mitigate risks and support sustainable growth.

K

Kolektor

kolektoravtomatizacija.com

44

Kolektor is a well-established company specializing in automation and engineering solutions for industry, energy, and infrastructure sectors. The website highlights their expertise in digitalization of production processes, energy management systems, and electrical equipment. They emphasize over 30 years of experience and a strong partnership network with global manufacturers, positioning themselves as a leading provider in their market segment. The business model focuses on delivering turnkey solutions, consulting, and technical support to industrial and energy clients. Technically, the website employs modern web technologies including Google Tag Manager, reCAPTCHA, and responsive design, ensuring a good user experience across devices. Security posture is solid with HTTPS and CAPTCHA protections, though additional security headers and published policies could enhance trust. The absence of WHOIS data for the domain is a notable concern, potentially impacting domain legitimacy verification. Overall, the site is professional, content-rich, and safe for general audiences, supporting Kolektor's strong market presence.

A

AT Computers a.s.

atcomp.sk

10

AT Computers a.s. is a leading ICT wholesale distributor operating primarily in Slovakia and the Czech Republic. Established in 1998, the company offers a broad portfolio of hardware, software, and related services to thousands of business partners. Their market position as the largest ICT wholesaler in the region is supported by a comprehensive partner network and a strong online presence, including a dedicated business link platform and e-commerce market site. The website reflects a professional and business-focused approach, targeting ICT resellers and corporate clients. Technically, the website employs a mature technology stack based on ASP.NET MVC with client-side libraries such as jQuery, jQuery UI, and Font Awesome. It integrates Google reCAPTCHA for bot protection and SignalR for real-time communication, indicating a moderate level of digital maturity. The site is mobile-optimized and includes accessibility features, though some improvements are possible. Performance is moderate with room for modernization, especially updating legacy JavaScript libraries. From a security perspective, the site enforces HTTPS and implements multi-factor authentication for partner login, demonstrating a strong security posture. However, the use of outdated jQuery versions and the absence of explicit security headers like CSP and HSTS are areas of concern. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned privacy policies. No incident response or vulnerability disclosure policies are publicly evident. Overall, the website and business exhibit a high level of professionalism and trustworthiness with minor technical and security improvements recommended. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic enhancements in security headers and library updates would further strengthen the security posture and compliance standing.

A

AT Computers a.s.

atcomp.cz

61

AT Computers a.s. is a leading ICT wholesale distributor operating primarily in the Czech and Slovak Republics. Established in 1998, the company offers a broad portfolio of hardware, software, and services to thousands of partners, positioning itself as the largest distributor in its region. The website reflects a mature business with a professional digital presence, including multifactor authentication for secure partner access and comprehensive privacy and cookie policies aligned with GDPR requirements. The company maintains a network of partner and subsidiary domains, reinforcing its market presence. Technically, the website employs a mix of legacy and modern web technologies such as jQuery, Font Awesome, Owl Carousel, and Google reCAPTCHA, ensuring functional user experience and security. While some libraries are outdated, the site uses HTTPS exclusively and implements multifactor authentication, indicating a strong security posture. However, explicit security headers and a public security policy are absent, representing areas for improvement. The security posture is robust with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent mechanisms. The absence of WHOIS data limits domain registration transparency, but the website's professional presentation and linked partner domains support legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy platform for its target audience. Strategic recommendations include updating JavaScript libraries to current versions, adding security headers such as Content-Security-Policy and HSTS, publishing a security policy and incident response contact, and continuing to enhance privacy transparency. These steps will further strengthen the company's digital trust and security posture.

A

Alterrenat Presse

alterrenat.com

41

Alterrenat Presse operates as a niche French e-commerce platform specializing in the sale of alternative and organic lifestyle books and magazines. The website presents a professional and consistent brand image, targeting French-speaking consumers interested in organic agriculture, well-being, and alternative education. The business model centers on online retail and subscriptions, with additional services including event participation and advertising. Technically, the site is built on PrestaShop CMS, leveraging common JavaScript libraries and responsive design for good user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking advanced security headers and vulnerability disclosure mechanisms. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly reduces trustworthiness. Overall, the site is functional, compliant with GDPR, and safe for general audiences.

T

Terre et Humanisme

terre-humanisme.org

49

Terre et Humanisme is a well-established French non-profit association dedicated to promoting agroecology and permaculture through education, solidarity projects, and expertise. With over 30 years of activity, it serves both individuals and professionals, leveraging a strong network of partners and animators. The website is professionally designed, content-rich, and provides multiple engagement channels including training, immersion stays, and an online store. Technically, the site is built on WordPress with modern plugins and integrations such as Google reCAPTCHA and Sendinblue for newsletters, hosted by Nuxit. Security posture is good with HTTPS and consent mechanisms, though improvements like DNSSEC and CSP headers are recommended. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

K

Kolektor

kolektorgradbenistvo.si

46

Kolektor Gradbeništvo is a construction-focused branch of the Kolektor group, operating primarily in Slovenia with a strong emphasis on infrastructure, high-rise buildings, and reinforced concrete structures. The company leverages its subsidiaries Kolektor Koling and Kolektor CPG to deliver comprehensive construction engineering services. The website reflects a mature business with a clear market position in the regional construction sector, targeting industry clients and potential employees. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and documented security policies. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Kolektor Etra d.o.o.

kolektor-etra.si

48

Kolektor Etra d.o.o. is a well-established Slovenian company specializing in the production of power and generator transformers with capacities up to 500 MVA and voltages up to 420 kV. With over 90 years of tradition and a presence in more than 40 countries, the company holds a strong market position within the energy manufacturing sector. It operates as part of the KOLEKTOR group, offering specialized transformer solutions including off-shore applications. The website reflects a professional corporate presence with clear business information and relevant content tailored to industrial clients and energy sector stakeholders. Technically, the site is built on WordPress with modern plugins and frameworks, providing good mobile optimization and moderate performance. Security posture is solid with HTTPS and basic best practices, though there is room for improvement in security headers and explicit policies. Privacy compliance is basic with privacy and cookie policies present but lacking advanced consent mechanisms. Overall, the website is trustworthy and professionally maintained, supporting the company's credibility and business objectives.

W

WebRex s.r.o.

webrex.eu

46

Mare Group CZ, formerly WebRex s.r.o., is a Czech-based technology company specializing in digital transformation, custom software development, automation, and integration services. With over two decades of experience, they serve a diverse client base across 32 industries, focusing on delivering tailored digital solutions that enhance business efficiency and decision-making. Their offerings include a modular platform called Avikana, AI-powered tools, and comprehensive project support from design to ongoing maintenance. Technically, the website employs modern web technologies such as Google Analytics and reCAPTCHA, ensuring secure and user-friendly interactions. However, the absence of WHOIS data and limited explicit privacy and cookie policies indicate areas for improvement in transparency and compliance. Overall, the company presents a professional and trustworthy digital presence with strong business credibility.

D

Divadlo Kalich

divadlokalich.cz

60

Divadlo Kalich is a cultural venue based in Prague, Czech Republic, offering a variety of theatrical performances including comedies, musicals, concerts, and children's shows. The website serves as a platform for event listings and ticket sales, targeting a broad audience interested in live theater and cultural events. The site demonstrates a moderate level of digital maturity with the use of modern tracking technologies such as Google Analytics, Facebook Pixel, and Cookiebot for consent management. The technical infrastructure supports HTTPS and responsive design, ensuring accessibility and a good user experience across devices. However, the absence of publicly available WHOIS data limits the ability to fully verify domain legitimacy and registrant information. Security posture is adequate with HTTPS and cookie consent, but could be improved by implementing security headers and publishing clear privacy and security policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

P

Pro-idea s.r.o.

eventival.com

52

Eventival.com is a professional SaaS platform specializing in film festival and event management software. The company, Pro-idea s.r.o., founded in 2009 and based in the Czech Republic, offers a comprehensive and widely adopted solution for film festivals worldwide, boasting over 100 clients and extensive industry integrations. The website is well-designed, content-rich, and optimized for mobile, providing a positive user experience and clear business positioning as a market leader in its niche. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Google Maps API, with good performance and basic accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Privacy compliance is partial, with a cookie policy present but no explicit privacy or terms of service pages detected. The WHOIS data is missing or unavailable, which reduces domain transparency and trustworthiness despite the professional appearance and business legitimacy. Overall, the site is safe, trustworthy, and well-positioned in its industry but would benefit from enhanced transparency and security documentation.

C

Centrum dokumentárního filmu

c-d-f.cz

10

Centrum dokumentárního filmu (CDF) is a Czech non-profit organization focused on documentary film education, research, and cultural promotion. The website offers courses in film and media education, a videotéka (film library), a documentary book library, and research/production services. It targets educators, students, researchers, and film enthusiasts primarily in the Czech Republic. The organization collaborates with notable partners such as MFDF Ji.hlava and is supported by governmental and EU bodies, indicating a credible cultural institution. Technically, the website uses a modern JavaScript stack including jQuery, Knockout.js, and Owl Carousel, with Google Analytics for tracking. The site is mobile-optimized and provides a cookie consent mechanism aligned with GDPR requirements. However, no CMS or hosting provider details are evident, and some security headers appear missing, which could be improved. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is basic but present, with a privacy policy and cookie consent banner. The absence of WHOIS data limits domain legitimacy verification, but the website content and partnerships strongly suggest a legitimate entity. Overall, the site is professionally designed, content-rich, and trustworthy, though improvements in security headers and transparency policies are recommended to enhance compliance and trust further.

I

Inspirační fórum

inspiracniforum.cz

43

Inspirační fórum is a Czech non-profit platform associated with the International Documentary Film Festival Ji.hlava, focusing on societal, scientific, artistic, and political discourse. It serves as a hub for discussions, workshops, and projects that engage a diverse audience interested in contemporary global issues. The platform is supported by numerous reputable partners, including European institutions and cultural organizations, enhancing its credibility and reach. Technically, the website employs modern JavaScript libraries and is optimized for mobile devices, providing a smooth user experience. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. However, the absence of WHOIS data and explicit security headers slightly detracts from its overall trustworthiness. No critical security vulnerabilities or adult content were detected, making the site safe for general audiences.

B

Broker Vision

brokervision.cz

30

Broker Vision is a professional insurance brokerage company based in the Czech Republic, specializing in industrial and commercial risk insurance with over 20 years of experience. The website presents a clear business focus on providing advantageous insurance contracts and comprehensive claims handling services. The company targets industrial and commercial clients seeking reliable insurance solutions. Technically, the website uses standard web technologies including jQuery, Owl Carousel, Google Fonts, and Google Analytics, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage but lacks advanced security headers and publicly available security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve transparency and security practices.

N

Nášup, Spirála Ostrava z.ú.

nasupsidam.cz

42

Nášup, operated by Spirála Ostrava z.ú., is a Czech social enterprise focused on providing catering services in Ostrava while employing people with mental disabilities. The organization combines social impact with hospitality services, offering catering for events, companies, and private celebrations. Their mission emphasizes social inclusion and psychosocial support for disabled individuals, positioning them as a niche local player with a strong community focus. The website reflects this mission clearly with testimonials, partner logos, and detailed service descriptions. Technically, the site uses modern web technologies including Google reCAPTCHA v3 for form security and standard JavaScript libraries for UI enhancements. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and form protection, but lacks advanced security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with a small social enterprise. Overall, the site is functional, trustworthy, and professionally presented but could improve compliance and security transparency.

Q

Quae

quae-open.com

67

Quae-Open is an educational platform providing open access to scientific books primarily in the natural sciences domain. The website offers a catalog of over 300 books available for free download in PDF and ePub formats, targeting researchers, academics, and authors. The platform supports multilingual access (English and French) and includes author support and newsletter subscription features. Technically, the site uses modern web technologies including jQuery, Bootstrap, Matomo analytics, and Google Tag Manager, with a responsive design and good SEO practices. Security posture is solid with HTTPS and CSRF protections, but lacks some advanced security headers and explicit privacy policy documentation. The absence of WHOIS data for the domain is a notable concern for legitimacy and trust, although the site links to a known publisher domain, mitigating some risk. Overall, the site is functional, professional, and trustworthy for its educational purpose but would benefit from improved transparency and security disclosures.