Security Directory

K

Karavanista.cz

karavanista.cz

56

Karavanista.cz is a specialized retailer and service provider focused on equipment and accessories for caravans and motorhomes, primarily serving customers in the Czech Republic. The company offers a comprehensive e-commerce platform alongside installation and repair services, positioning itself as a trusted niche player with over seven years of market presence. The website is professionally designed with clear navigation, detailed product categories, and active customer engagement through a blog and testimonials. Technically, the site leverages the Shoptet e-commerce platform with common web technologies such as jQuery and integrates multiple analytics and marketing tools including Google Analytics and Facebook SDK. Security posture is adequate with HTTPS enforced and CSRF protections in place, though improvements in security headers and library updates are recommended. Privacy compliance is strong, featuring GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Overall, the website presents a credible and professional business front with moderate technical maturity and a good security baseline.

J

Jihomoravský kraj

jmk.cz

44

Jihomoravský kraj operates as the official regional government authority for the South Moravian Region in the Czech Republic. The website serves as a comprehensive information portal targeting citizens, businesses, municipalities, and non-profit organizations, offering news, public service information, grant details, and contact resources. The site is well-branded and consistent with government standards, reflecting a large, established public sector entity founded in 2006. Technically, the website is built on ASP.NET WebForms with a mix of modern JavaScript libraries such as jQuery, Fancybox, and SweetAlert2, alongside integrations for Facebook SDK and Google Tag Manager. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility and SEO features. Hosting details are not explicitly identified. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML. However, it lacks visible security headers like CSP or HSTS and does not publish a security policy or incident response contacts. Cookie consent mechanisms are absent, which is a compliance gap under GDPR. The domain WHOIS data is consistent and trustworthy, supporting the legitimacy of the site. Overall, the website presents a professional and trustworthy government portal with room for improvement in privacy compliance and security hardening. Strategic enhancements in security headers, cookie consent, and incident response transparency would strengthen its security posture and regulatory adherence.

N

Nadační fond Horské služby - Rescue

rescue.cz

59

Nadační fond Horské služby - Rescue is a Czech non-profit foundation dedicated to supporting members of the Czech Mountain Rescue Service and their families who face financial difficulties due to rescue operations or health issues. The foundation operates primarily through fundraising via merchandise sales and direct donations, targeting both professional and volunteer rescuers. The website serves as an e-commerce platform for branded clothing and promotional items, with clear calls to support the foundation either by purchase or direct financial contribution. Technically, the site is built on the Shoptet e-commerce platform, utilizing jQuery and Facebook SDK for social integration. The site is well-structured, mobile-optimized, and includes standard privacy and cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and CSRF protections in place, though the absence of explicit security headers and incident response contacts suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the website content and contact information appear legitimate and professional. Overall, the site presents a trustworthy and functional platform for its non-profit mission, with recommendations to enhance security transparency and domain registration verification.

M

Mesto Sliač

sliac.sk

62

The website www.sliac.sk is the official municipal portal for the town of Sliač in Slovakia. It serves as a comprehensive information hub for residents and visitors, providing access to local government details, public announcements, events, and electronic services. The site is well-structured, professionally designed, and targets the local community effectively. It leverages WordPress CMS with common plugins for cookie consent and UI enhancements, indicating a moderate level of digital maturity. The technical infrastructure includes modern web technologies and social media integrations, supporting good user experience and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with clear policies and consent banners aligned with GDPR requirements. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, the site reflects a trustworthy and professional municipal presence with room for minor security enhancements.

Z

ZŠ Bratrství, příspěvková organizace

zsbrat.cz

49

ZŠ Bratrství, příspěvková organizace, is a regional primary school located in the Czech Republic, focusing on fostering creativity, logical thinking, and mutual understanding among students. The website serves as an information portal for students, parents, and the local community, providing updates on school events, educational programs, and community projects. The school positions itself as an inclusive educational institution serving the Podhostýnsko region. Technically, the website employs common web technologies such as jQuery, FontAwesome, and Google reCAPTCHA, with integrations for social media platforms like Facebook and YouTube. The site is mobile-optimized and includes a cookie consent mechanism, reflecting a basic level of privacy compliance. Security-wise, the site uses HTTPS and some best practices but lacks visible security headers and a published incident response policy. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and suggesting the need for further verification of domain registration status. Overall, the website is professional, content-rich, and trustworthy from a user perspective but could improve in security transparency and domain legitimacy verification.

P

People’s Project.com

peoplesproject.com

57

People’s Project.com is a Ukrainian volunteer center focused on supporting the Ukrainian Army and providing treatment for severely wounded soldiers using unique technologies. The website positions itself as a national non-profit organization with a medium-sized presence in Ukraine. Technically, the site is built on WordPress with common plugins such as Elementor and photo gallery tools, and it integrates analytics and tracking services like Google Analytics, Facebook Pixel, and Hotjar. The site is accessible, uses HTTPS, and has moderate performance and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site appears legitimate in content and purpose but requires improvements in transparency and security practices.

A

Sklep militarny: broni, amunicji i airsoft broni | AFG-obrona.pl

afg-obrona.pl

57

AFG-obrona.pl is an e-commerce platform specializing in military, outdoor, and airsoft equipment retail and wholesale primarily targeting Polish customers. The website offers a broad range of products including firearms, ammunition, airsoft guns, tactical gear, and outdoor supplies. It supports multiple languages and provides user account management with social login options, indicating a mature digital presence. Technically, the site uses a proprietary CMS (CREATIVE shop) with modern JavaScript libraries, CDN delivery, and tracking tools such as Google Tag Manager and Sentry for monitoring. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks visible security headers and explicit privacy and cookie policies, which are critical for compliance and user trust. The WHOIS data is unavailable from the official .pl registry, which limits domain trust assessment and raises some concerns about transparency. Overall, the site is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

A

AFG-obrana.cz - army shop. Prodej zbraní a střeliva.

afg-obrana.cz

58

AFG-obrana.cz is an e-commerce retail and wholesale business specializing in firearms, ammunition, airsoft equipment, archery, and tactical gear primarily serving the Czech Republic market. The website presents a professional and well-structured platform with clear navigation and multiple product categories targeting enthusiasts and professionals in defense and outdoor sectors. The business model focuses on both retail and wholesale customers, leveraging multilingual support and social login capabilities to enhance user experience. Technically, the website employs a modern technology stack including JavaScript frameworks, Google Tag Manager, Facebook SDK, Google reCAPTCHA, and Sentry for error tracking. It is built on the CREATIVE shop CMS platform and demonstrates good mobile optimization and SEO practices. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with active error monitoring via Sentry. However, it lacks explicit security headers and a publicly accessible privacy policy, which are areas for improvement. The WHOIS data is not publicly available, likely due to privacy protection, which is common for businesses dealing with sensitive products like firearms. Overall, the website is legitimate and professionally maintained but would benefit from enhanced transparency and security best practices to improve trust and compliance. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and establishing a vulnerability disclosure process.

A

AFG.eu

afg-defense.eu

65

AFG.eu operates as a specialized e-commerce retailer focused on military, hunting, airsoft, and outdoor equipment. The company targets enthusiasts and professionals seeking weapons, ammunition, tactical gear, and related accessories primarily in the European market. The website demonstrates a solid market position with multiple regional domains supporting localized audiences. Technically, the site is built on the CREATIVE shop CMS platform, leveraging modern JavaScript libraries, Google reCAPTCHA for bot protection, and Sentry for error monitoring. The presence of Google Tag Manager and Facebook SDK indicates active marketing and analytics efforts. Security posture is generally good with HTTPS enforced and CSRF protections in place, though the absence of explicit privacy and cookie policies and security.txt files suggests room for compliance improvement. Overall, the site is professional, accessible, and trustworthy with moderate risk due to limited WHOIS transparency and incomplete privacy disclosures.

E

Best places to Visit in Europe - Europe's Best Destinations

europeanbestdestinations.com

61

The website europeanbestdestinations.com serves as a travel inspiration platform focused on showcasing the best places to visit in Europe. It provides thematic rankings based on traveler votes, targeting tourists and travel enthusiasts interested in European destinations. The site is built using the Jimdo Creator CMS and incorporates common web technologies such as jQuery, Google Fonts, FontAwesome, and integrates advertising and tracking tools like Google Adsense and Facebook Pixel. The technical infrastructure is moderate in performance with basic mobile optimization and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy and terms of service documentation. The absence of WHOIS registrant data raises concerns about domain legitimacy and ownership transparency. Overall, the site is functional and professional but would benefit from enhanced security practices and clearer business and privacy disclosures.

A

AFG

afg.sk

57

AFG.sk is a Slovak-based e-commerce retailer specializing in army shop products including firearms, ammunition, airsoft equipment, outdoor gear, and self-defense items. The website targets military enthusiasts, hunters, airsoft players, and outdoor consumers primarily in Slovakia with multilingual support for neighboring countries. The business appears established with a comprehensive product catalog and clear contact information. Technically, the site uses a modern CMS platform (CREATIVE shop), integrates multiple third-party marketing and analytics tools, and employs HTTPS with security features like Google reCAPTCHA and Sentry error tracking. Security posture is solid but could be improved with enhanced HTTP headers and published security policies. Overall, the site is professional, trustworthy, and compliant with GDPR indications. No blocking or WAF interference was detected, allowing full content access and analysis.

F

Fond ohrožených dětí

fod.cz

55

Fond ohrožených dětí is a Czech non-profit organization dedicated to supporting endangered children through direct aid, family care alternatives, advocacy, and fundraising. The organization has a strong national presence with multiple partners and a clear mission to help children at risk of abuse, neglect, or abandonment. Their website reflects a mature digital presence with good content quality and consistent branding. Technically, the site uses a mix of legacy JavaScript libraries and modern tracking tools, with HTTPS enforced and moderate performance. Security posture is adequate but could be improved by adding security headers and explicit privacy and cookie policies. The absence of WHOIS data reduces domain trust but does not detract from the legitimacy of the organization as presented on the site. Overall, the site is safe, professional, and trustworthy for its audience.

M

Městská policie hl. m. Prahy

mppraha.cz

46

The website mppraha.cz is the official online presence of the Municipal Police of Prague, providing comprehensive information about their organizational structure, police units, public services, news, recruitment, and contact details. It serves residents and visitors of Prague with authoritative content related to public safety and law enforcement. The site is well-branded, consistent, and maintained with regular updates and official communications. Technically, it is built on Joomla CMS with modern web technologies including Leaflet for maps and integrates social media and analytics tools. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The domain is longstanding and consistent with the official entity, enhancing trustworthiness. Overall, the site is professional, secure, and compliant with privacy regulations.

M

Metrák, s.r.o.

metrak.cz

55

Metrák, s.r.o. operates an online platform for ordering waste container rentals and construction material deliveries across the Czech Republic. The company leverages a large network of over 450 local suppliers and nearly 3,000 containers to provide fast and reliable service. Their website offers a user-friendly interface with online pricing, ordering, and payment capabilities, targeting both individual and business customers. The business is well-positioned in the transportation and logistics sector with strong customer trust signals including high ratings on Google and Firmy.cz. Technically, the website is built on modern web technologies including Next.js and React, with integration of multiple analytics and marketing tools such as Google Tag Manager, Facebook SDK, and Smartlook. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a mature digital infrastructure. However, some improvements could be made in explicit security headers and cookie consent mechanisms to enhance compliance and security posture. From a security perspective, the site enforces HTTPS and does not expose sensitive data. While no critical vulnerabilities were detected, the absence of published security policies and incident response contacts suggests room for improvement in transparency and readiness. The lack of WHOIS data reduces domain registration trust but is mitigated by the professional presentation and external trust indicators. Overall, Metrák.cz presents a credible, professional, and functional online service with moderate risk. Strategic enhancements in privacy compliance and security transparency would further strengthen their position and customer confidence.

Ž

Živina

zivina.cz

55

Živina.cz is a Czech e-commerce platform specializing in quality food products designed for easy and tasty cooking. The company emphasizes fresh and farm-sourced ingredients, targeting general consumers interested in convenient cooking solutions. The website presents a professional and consistent brand image with a clear focus on retail food products, supported by a loyalty program and wholesale options. Technically, the site is built on the Shoptet platform, utilizing modern JavaScript libraries and multiple marketing and analytics integrations, ensuring a moderate to good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though the absence of a public security policy and incident response information suggests room for improvement. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. The lack of WHOIS data limits domain trust assessment but does not detract from the site's apparent legitimacy and professionalism.

N

Národní pedagogický institut České republiky

gramotnosti.pro

62

Gramotnosti.pro život is a Czech educational project website operated by the National Pedagogical Institute of the Czech Republic. It focuses on promoting literacy skills including reading, mathematical, and digital literacy for teachers and schools. The site offers a rich collection of educational resources, online lessons, videos, and strategic planning tools to support literacy development in preschool and primary education. The website is well-branded, professionally designed, and targets educators and educational professionals in the Czech Republic. Technically, it uses modern web technologies such as Bootstrap, jQuery, and integrates with YouTube and Facebook for video content and social engagement. Google Analytics is used for visitor tracking. Security posture is moderate with HTTPS implied but lacks explicit security headers and cookie consent mechanisms. Privacy compliance is supported by a GDPR consent modal for personal data processing. WHOIS data is limited due to TLD restrictions but the domain is consistent with the educational purpose and affiliation with a government institute. Overall, the website is trustworthy, content-rich, and serves as a valuable resource for its target audience.

B

Bushman

bushman.cz

67

Bushman.cz is a well-established Czech e-commerce retailer specializing in outdoor and casual clothing and accessories for men, women, and children. Founded in 1999, the company has expanded its presence across multiple European countries with localized domains. The website offers a comprehensive product catalog, including clothing, footwear, and camping accessories, supported by customer service and newsletter subscription features. Technically, the site leverages modern analytics, marketing tools, and a secure HTTPS infrastructure with Cloudflare DNS and CDN services. Security posture is solid with secure login forms and cookie consent management, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site presents a professional, trustworthy, and user-friendly experience with extensive tracking and marketing integration.

ZOOT.cz is a well-established Czech e-commerce platform specializing in fashion retail, offering a wide range of clothing, footwear, and accessories for women, men, and children. The website demonstrates a mature digital presence with extensive product categorization and brand partnerships, targeting a broad general audience. Technically, the site employs modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Hotjar, and Microsoft Clarity, indicating a strong focus on user behavior analysis and marketing optimization. Security-wise, the site enforces HTTPS and uses asynchronous loading of tracking scripts, but lacks visible security headers and published security policies, which are areas for improvement. The absence of publicly available WHOIS data suggests privacy protection, common for commercial entities, and the website content is accessible without WAF or blocking mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

Cubainformacion.tv is a Spanish-language media website focused on delivering news, videos, and political commentary related to Cuba and Latin America. It serves a niche audience interested in Cuban affairs, solidarity movements, and political developments. The site offers a mix of video content, news articles, radio broadcasts, and campaign promotions, positioning itself as a specialized media outlet in this domain. Technically, the website uses a custom CMS named Cubainformacion Publishing System, integrates modern video playback technologies such as Video.js and YouTube iframe API, and employs Google Analytics with IP anonymization for user tracking. The site is mobile-optimized and features a consistent branding approach with good content quality and navigation clarity. Security-wise, the site uses HTTPS and includes CSRF tokens but lacks explicit security headers and detailed privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain ownership verification, but the website content and technical setup appear legitimate and professional. Overall, the site is safe for general audiences and does not contain adult or explicit content.

DRANA s.r.o. is a Czech-based company specializing in the import and production of spices, seasoning mixes, marinades, dried vegetables, mushrooms, and herbs primarily serving professional gastronomy clients and retail customers. With approximately 30 years of experience, the company emphasizes quality, innovation, and social responsibility, including employing handicapped individuals. The website is built on the Shoptet e-commerce platform, utilizing standard web technologies such as jQuery, Google Analytics 4, and Facebook SDK. The site is well-structured, mobile-optimized, and includes GDPR-compliant privacy and cookie policies. Security posture is adequate with HTTPS and CSRF protections, but could be improved by updating outdated libraries and adding security headers. WHOIS data is missing, which reduces domain trustworthiness, but the website content and business information appear professional and credible.

U

Urząd Miasta Łodzi

lodz.pl

60

The website lodz.pl serves as the official digital portal for the city of Łódź, Poland, providing residents, visitors, and businesses with comprehensive information about city news, events, public services, and cultural activities. It is positioned as a key communication channel for municipal affairs and community engagement. The site targets a broad audience including local citizens, tourists, and stakeholders interested in city developments. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and third-party analytics and advertising tools. The infrastructure is hosted by OVH SAS, a reputable provider, and the domain has a long history dating back to 1995, indicating a mature online presence. Security-wise, the site enforces HTTPS and uses several security best practices, though it lacks some security headers and explicit privacy and cookie policies. The absence of a security.txt file and vulnerability disclosure mechanisms suggests room for improvement in transparency and incident response readiness. Overall, the site is professional, trustworthy, and well-branded, but could enhance privacy compliance and security posture to meet higher standards.

A

Acronym Finder

acronymfinder.com

63

Acronym Finder operates as a comprehensive online dictionary specializing in acronyms, abbreviations, and initialisms with over 4 million entries and more than 1 million human-edited definitions. The website serves a broad audience including professionals, students, and the general public seeking to decode acronyms across various sectors such as technology, government, business, science, and pop culture. It maintains a strong market position as the largest and most trusted resource in its niche, supported by a long domain history dating back to 1998 and notable press coverage. Technically, the website employs a modern tech stack including Bootstrap for responsive design, JavaScript libraries, and is hosted via Cloudflare, ensuring good performance and mobile optimization. Advertising is integrated through Google Adsense and Amazon Ads, with tracking via Cloudflare Insights and Facebook SDK. SEO and accessibility are adequately addressed, though some improvements could be made in security headers and GDPR compliance. From a security perspective, the site benefits from HTTPS and domain transfer protections but lacks DNSSEC and explicit security policies. No incident response or vulnerability disclosure information is publicly available, and cookie consent mechanisms are absent, indicating partial privacy compliance. No critical vulnerabilities or suspicious content were detected. Overall, Acronym Finder presents a professional, trustworthy, and content-rich platform with moderate technical maturity and a solid security baseline. Strategic enhancements in privacy compliance and security policies would further strengthen its posture.

D

DSAD

dsad.com

66

DSAD is a specialized domain name aftermarket news and auction listing website, established with a domain age dating back to 2001, indicating a long-standing presence in the domain aftermarket industry. The site provides regularly updated content including auction recaps, domain auction lists, and advertising opportunities primarily through affiliate marketing and Google Adsense. The target audience consists of domain investors, buyers, and sellers interested in aftermarket domain sales. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for forms and social sharing. Hosting and DNS services are provided by GoDaddy and Cloudflare respectively, with HTTPS enabled and basic security headers in place. However, DNSSEC is not enabled, and no advanced security headers or vulnerability disclosures are present.

Eye Magazine is a niche print publication focused on graphic design and visual culture, targeting professionals and enthusiasts in the creative industry. The website serves as a portal for magazine content, subscription sales, event information, and blog updates. The business model relies on print magazine sales, subscriptions, and advertising revenue. The brand is established with a history dating back to 1990, positioning itself as a respected media outlet within its sector. Technically, the website employs standard web technologies including JavaScript, Google Tag Manager for analytics, and third-party advertising scripts from AdvertServe. The site is accessible and moderately optimized for performance and mobile devices, though improvements in accessibility and SEO could be made. No CMS or hosting provider details are evident from the source. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. No contact emails or incident response information are provided, limiting transparency. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and branding appear professional and consistent. Overall, the website presents a professional front for Eye Magazine but would benefit from enhanced privacy compliance, security hardening, and transparency regarding domain registration and contact information to improve trust and reduce risk.

S

Spectacle - The Best Video Marketing Inspiration

spectacle.is

51

Spectacle.is is a niche media platform founded in 2019 that curates and showcases the best product and marketing videos to inspire brands and marketers. The website targets marketing professionals and content creators seeking video marketing inspiration. Technically, the site is built on modern JavaScript frameworks such as Vue.js and Nuxt.js, with integrations for Google Analytics, Google Tag Manager, and Facebook SDK for tracking and marketing purposes. The site is mobile optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS and reCAPTCHA for forms but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is legitimate and stable but would benefit from improved privacy and security practices.

TsunamiZone.org is a multilingual public safety website dedicated to tsunami preparedness and awareness. It is affiliated with the Statewide California Earthquake Center (SCEC) headquartered at the University of Southern California. The platform provides educational resources, event registration, and community engagement tools targeting individuals, schools, and organizations in tsunami-prone regions worldwide. Supported by government agencies and scientific organizations, it serves as a trusted resource for tsunami readiness. Technically, the website is built on WordPress with modern JavaScript libraries and plugins for social media integration and responsive menus. It employs HTTPS and uses Google Analytics and Facebook Pixel for tracking, though it lacks some advanced security headers and cookie consent mechanisms. The site is mobile-optimized and offers good navigation and content quality. From a security perspective, the site demonstrates a solid baseline with HTTPS and no visible vulnerabilities but could improve by implementing additional security headers and privacy compliance features. The absence of WHOIS data transparency slightly reduces trust but is mitigated by the credible content and partner affiliations. Overall, TsunamiZone.org is a reliable and professional resource for tsunami preparedness with moderate technical maturity and a good security posture. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

R

Race Space Ltd

race-space.com

59

Race Space Ltd operates a specialized online platform focused on race entry and endurance event management technology. The company targets race directors and athletes seeking efficient event registration and management solutions. Their market position is that of a niche technology provider offering SaaS-based race event systems. The website content is professional, well-branded, and clearly communicates their value proposition and services. Technically, the site employs modern JavaScript libraries including jQuery, RequireJS, and Facebook SDK, with Google Tag Manager for analytics and marketing. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partially met with privacy and terms pages present but no cookie consent mechanism detected. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, though the active social media presence and professional site content mitigate this somewhat. Overall, the site scores well in content quality and technical implementation but should improve privacy and security transparency.

R

Race Space Ltd

racespace.com

58

Race Space Ltd operates an online race event management platform targeting race directors and endurance athletes. The company offers a SaaS solution for race entry, event management, and registration technology, positioning itself as a niche technology provider in the endurance sports sector. The website branding is consistent and professional, with a clear focus on inspiring a new generation of athletes and supporting race organizers with growth tools like the Race Space Accelerator. Technically, the website employs modern JavaScript libraries including RequireJS, jQuery, and Bootstrap, alongside Facebook SDK and Google Tag Manager for marketing and analytics. The site is mobile-optimized with asynchronous script loading to enhance performance. However, some accessibility features could be improved, and explicit security headers are not detected in the HTML source. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. No direct contact emails or phone numbers are published, relying instead on a contact form. The absence of WHOIS data for the domain is a concern, as it suggests either privacy protection or a registration anomaly, which impacts trustworthiness. Overall, the website is functional, professional, and safe for general audiences, but improvements in transparency, security headers, and privacy compliance would enhance trust and security posture.

E

Edchemy Solutions India Private Limited

edchemy.com

64

Edchemy Solutions India Private Limited operates a comprehensive digital education platform designed to support institutions, teachers, and students. The platform offers a wide range of services including live online classes, recorded video publishing, digital assignments, attendance management, and student relationship management. Trusted by over 150 educational institutions globally, Edchemy positions itself as a robust and user-friendly solution for automating and streamlining educational administration and learning processes. The company targets K-12 schools, universities, and distance education providers primarily in India. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, Owl Carousel, and integrates popular analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized with a clean design and clear navigation, though accessibility features are basic. Security posture is moderate with HTTPS usage but lacks visible security headers and formal privacy or cookie policies. From a security and compliance perspective, the absence of privacy and cookie policies and lack of WHOIS registration data are notable gaps. No forms or incident response contacts are present, limiting transparency in data handling and security incident management. The website content is safe and appropriate for a general audience with no adult or questionable material detected. Overall, Edchemy presents a credible and professional educational technology business with room for improvement in privacy compliance and security best practices. Further verification of domain registration and implementation of comprehensive privacy and security policies are recommended to enhance trust and compliance.

I

Independent Evaluation Office (IEO) of the Global Environment Facility (GEF)

gefieo.org

57

The GEF Independent Evaluation Office (IEO) website serves as a professional platform providing independent evaluations and data-driven insights on environmental projects and programs under the Global Environment Facility. The site targets environmental professionals, policymakers, and global sustainability stakeholders, positioning itself as a trusted authority in environmental evaluation. The business model is non-profit, focusing on transparency, accountability, and advancing global environmental goals through rigorous assessments. The website is affiliated with the World Bank and GEF, enhancing its credibility and reach. Technically, the website is built on Adobe Experience Manager (AEM) and hosted within the World Bank's infrastructure, leveraging modern JavaScript libraries and third-party analytics tools such as LinkedIn Insight, Facebook SDK, and Adobe Helix RUM. The site demonstrates good performance, mobile optimization, and accessibility, with a well-structured content hierarchy and professional design. From a security perspective, the site enforces HTTPS and employs secure third-party scripts, though explicit security headers like Content-Security-Policy and X-Frame-Options are not visible in the HTML and should be verified server-side. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy linked to the World Bank domain, but the absence of a cookie consent mechanism is a gap for GDPR compliance. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Recommendations include implementing explicit security headers, adding cookie consent mechanisms, and regular audits of third-party scripts to maintain security and compliance standards.

K

KaiBaanThai

kaibaanthai.com

53

KaiBaanThai is a prominent real estate agency operating primarily in Thailand, with headquarters in Bangkok and Phuket. The company offers a digital platform for buying, selling, and renting properties including houses, condos, and villas. Their market position is strong within the Thai real estate sector, leveraging a combination of expert advice and digital tools to serve customers. The website supports multiple languages, enhancing accessibility for international clients. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Vue.js components, and Laravel backend technologies, indicating a mature digital infrastructure. However, some security best practices like security headers and explicit privacy policies are missing or not detected, which could be improved. The WHOIS data is unavailable, raising questions about domain registration status, but the website content and business information appear legitimate. Overall, the site provides a professional user experience with good content quality and moderate security posture.

1

108Siam

108siam.com

66

108Siam is a Thailand-based real estate agency specializing in property sales, rentals, and management services across multiple major cities including Bangkok, Pattaya, Phuket, and Chiang Mai. The company offers a comprehensive online platform for property listings, consultations, and guides tailored to buyers and renters in Thailand. The website is professionally designed, multilingual, and integrates modern web technologies such as Laravel, Vue.js, and various analytics and marketing tools. Security posture is generally good with HTTPS and CSRF protections, though some security headers and privacy policies are missing. The WHOIS data is unavailable or inconsistent, which raises some concerns about domain registration legitimacy. Overall, the site serves as a credible real estate marketplace but would benefit from enhanced privacy compliance and clearer domain registration transparency.

J

JobCute

jobcute.com

59

JobCute is a Thai-based online job portal offering a wide range of job listings across multiple industries and regions within Thailand. The platform facilitates job seekers to upload resumes and apply easily, while employers can post job vacancies to attract qualified candidates. The website is bilingual, supporting Thai and English languages, targeting primarily the Thai job market. Technically, the site employs modern web technologies including Bootstrap for responsive design, Google Analytics and Tag Manager for tracking, and OneSignal for push notifications. The site is served over HTTPS with a valid SSL certificate, ensuring secure data transmission. However, the absence of visible privacy and terms of service pages and the lack of WHOIS registration data raise concerns about compliance and domain legitimacy. Overall, the site presents a professional and functional job search experience but would benefit from enhanced transparency and security practices.

PitchBook is a leading enterprise-level financial data and research platform specializing in private market data and capital market intelligence. The company offers a suite of award-winning software applications designed to empower capital market professionals with actionable insights. The website reflects a strong market position with extensive use by industry-leading organizations and frequent citations in major media outlets. Technically, the site is built on a modern stack including Brightspot CMS, AWS hosting, and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook SDK, and Marketo. The site is well-optimized for performance and mobile devices, providing an excellent user experience. Security posture is solid with HTTPS enabled and domain protections in place, though improvements such as enabling DNSSEC and publishing explicit security and privacy policies are recommended. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

A

ARTAJASATEKNIK

artajasateknik.com

59

ARTAJASATEKNIK is a small Indonesian technology business specializing in the sale and installation of CCTV, PABX, networking equipment, and related services primarily serving the Malang Raya region. The company operates an e-commerce enabled website built on WordPress, offering a product catalog, blog content, and customer engagement via WhatsApp. The website demonstrates moderate digital maturity with use of modern frameworks like Bootstrap and integration of Google Analytics and Facebook SDK for marketing and tracking. Security posture is adequate with HTTPS and domain transfer protections, but lacks published privacy and cookie policies, as well as vulnerability disclosure mechanisms. Overall, the website is functional and professional but could improve compliance and security transparency.

R

run2gether - Laufurlaub Austria - Kenya

run2gether.com

61

run2gether is a non-profit organization focused on promoting running and social projects between Austria and Kenya. Founded in 2007, it offers running holidays, training camps, coaching, and supports social initiatives such as kindergartens and sponsorships in Kenya. The website is professionally designed, content-rich, and well-structured, targeting athletes, sports enthusiasts, and supporters of social causes. Technically, the site uses WordPress with WooCommerce, integrates Google Analytics and Tag Manager, and employs modern SEO and accessibility practices. Security posture is good with HTTPS and reCAPTCHA, though additional security headers could enhance protection. The absence of WHOIS domain registration data is a concern for domain legitimacy verification but does not detract from the evident authenticity of the organization's mission and online presence.

A

aBit Private Limited

abit.bt

56

aBit Private Limited is a Bhutanese IT solutions company specializing in website development, cloud server solutions, hospitality software, IT infrastructure, and digital marketing. The company targets businesses in Bhutan seeking professional IT services to enhance their online presence and operational efficiency. The website reflects a well-established local market position with over 1000 clients and a strong portfolio. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and social media SDKs, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA but lacks advanced security headers and formal privacy policies, which are areas for improvement. Overall, the site is professional and trustworthy with clear contact channels and business legitimacy.

F

FazWaz-VN.com

fazwaz-vn.com

68

FazWaz-VN.com operates as a leading online real estate marketplace specializing in property sales and rentals across Vietnam. The platform offers extensive listings including condos, apartments, villas, and commercial properties, targeting Vietnamese buyers and renters as well as international investors. The website is professionally designed with multi-language support and a comprehensive property search experience. Technically, the site leverages modern JavaScript frameworks such as Vue.js and jQuery, integrates with Google Analytics, Facebook SDK, and OneSignal for marketing and user engagement, and is built on the Laravel framework. Security posture is solid with HTTPS enforced and CSRF protection, though some security headers are missing and privacy policies are not clearly presented. The WHOIS data is notably absent, which raises some concerns about domain registration transparency. Overall, the site is functional, trustworthy, and positioned well in the real estate sector, but could improve compliance and security disclosures.

F

FazWaz.vn

fazwaz.vn

66

FazWaz.vn operates as a leading real estate marketplace specializing in property sales and rentals across Vietnam and Southeast Asia. The platform offers a comprehensive listing of condos, houses, villas, and commercial properties, targeting buyers, renters, and sellers. With multi-language support and a broad regional presence, FazWaz positions itself as a trusted intermediary in the real estate sector. Technically, the website employs modern web technologies including Vue.js and jQuery, integrates multiple analytics and advertising services, and maintains good SEO and mobile optimization standards. Security-wise, the site enforces HTTPS, uses standard security headers, and includes CSRF protection, though it lacks publicly visible security policies or incident response information. Overall, FazWaz demonstrates a mature digital presence with moderate to high security posture and business credibility.

F

FazWaz.sg

fazwaz.sg

64

FazWaz.sg operates as a leading real estate marketplace focused on Singapore and Southeast Asia, offering a comprehensive platform for buying, renting, and selling properties including condos, houses, and villas. The website presents a professional and user-friendly interface with extensive property listings and market data, targeting property buyers, renters, and sellers. Technically, the site employs modern web technologies such as Vue.js, jQuery, and integrates with major analytics and marketing services including Google Analytics, Facebook Pixel, and OneSignal for push notifications. Security posture is solid with HTTPS enforcement and CSRF protection, though some security headers are missing and privacy policies are not explicitly presented. The absence of WHOIS data for the domain www.fazwaz.sg is a notable anomaly, raising concerns about domain registration transparency despite the site's professional appearance and active business presence. Overall, FazWaz.sg is a credible and functional real estate portal with room for improvement in privacy compliance and domain registration transparency.

F

FazWaz.id

fazwaz.id

63

FazWaz.id operates as a leading real estate marketplace focused on Indonesia and Southeast Asia, offering extensive property listings for sale and rent. The platform supports multiple languages and currencies, targeting buyers, renters, and sellers seeking residential and commercial properties. The business model centers on connecting users with real estate agents and projects through an online portal with advanced search and comparison features. Technically, the website employs modern JavaScript frameworks such as Vue.js and jQuery, integrates analytics and marketing tools like Google Analytics, Facebook Pixel, and OneSignal, and uses HTTPS for secure communications. The site demonstrates good design quality, mobile optimization, and SEO practices, though some accessibility features could be improved. Security posture is solid with HTTPS and CSRF protection, but lacks explicit security headers and formal privacy or cookie policies. WHOIS data confirms the legitimacy of the domain registration, matching the business entity and location. Overall, FazWaz.id presents a professional and trustworthy platform with room for enhanced privacy compliance and security hardening.

TLC Kft is a medium-sized Hungarian manufacturing company specializing in welded steel structures primarily for material handling machinery such as cranes and telescopic loaders. Founded in 2003 and operating under the parent company Sennebogen, TLC Kft holds a leading market position in its sector with a focus on quality and modern manufacturing technologies. The website reflects a professional digital presence built on WordPress with standard industry tools and moderate performance and mobile optimization. Security posture is generally good with HTTPS and no exposed sensitive data, though the use of an outdated jQuery version and lack of security headers present moderate risks. Privacy compliance is indicated by a comprehensive privacy policy and terms of service, but no cookie consent mechanism was detected. Contact information is clearly provided, supporting business credibility.

F

FazWaz.ae

fazwaz.ae

62

FazWaz.ae operates as a leading real estate platform in the United Arab Emirates, providing an extensive portfolio of over 90,000 property listings including condos, houses, and villas for sale and rent. The platform targets home buyers, renters, and real estate investors seeking comprehensive market data and a simplified property search experience. FazWaz maintains a strong market position with multilingual support and a wide geographic footprint including localized sites in multiple countries. Technically, the website employs modern web technologies such as jQuery, Vue.js, and integrates with major analytics and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. The site is hosted securely with HTTPS and implements standard security headers and CSRF protections, reflecting a mature security posture. However, it lacks publicly available security policies and incident response information, which could be improved to enhance trust and compliance. Overall, FazWaz.ae presents a professional, trustworthy, and user-friendly real estate marketplace with room for enhanced privacy and security transparency.

U

UN Decade on Restoration

decadeonrestoration.org

59

The UN Decade on Restoration website serves as the official platform for the United Nations' global initiative to promote ecosystem restoration. It provides comprehensive information on the importance of restoring ecosystems to support food and water security, mitigate climate change, and prevent environmental degradation. The site targets a broad audience including governments, environmental organizations, restoration practitioners, and the general public. Technically, the website is built on Drupal 10, leveraging modern web technologies and third-party integrations such as Google Tag Manager and Facebook SDK for analytics and marketing. The security posture is solid with HTTPS and standard security practices, though explicit privacy and cookie policies are not found in the provided content, which is a compliance gap. The domain WHOIS data is unavailable, likely due to privacy protection, which is justified for a UN initiative. Overall, the website is professional, trustworthy, and well-positioned as an authoritative source on ecosystem restoration.

U

United Nations Environment Programme

unep.org

63

The United Nations Environment Programme (UNEP) is a globally recognized authority on environmental issues, operating as a key program under the United Nations. The website reflects UNEP's mission to address climate change, biodiversity, pollution, and sustainable development through comprehensive programs and advocacy. It targets a broad audience including governments, NGOs, and the general public worldwide. The site is well-branded, professionally designed, and offers multilingual support, enhancing its global reach. Technically, the website is built on Drupal 10, leveraging modern web technologies such as asynchronous script loading, Google Tag Manager, and Facebook SDK for enhanced user engagement and analytics. The site demonstrates good performance, mobile optimization, and accessibility features, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts responsibly. However, it lacks explicit security headers and a public security policy or vulnerability disclosure page, which are recommended for further strengthening its security posture. The WHOIS data is incomplete, which slightly reduces confidence in domain registration transparency but does not detract from the site's legitimacy given its strong UN affiliation and trust signals. Overall, UNEP's website is a high-quality, trustworthy platform that effectively supports its mission. Strategic improvements in security transparency and WHOIS data completeness would further enhance its credibility and resilience.

U

United Nations Environment Programme

unenvironment.org

63

The United Nations Environment Programme (UNEP) is a globally recognized authority on environmental issues, operating under the United Nations umbrella. The website serves as a comprehensive platform for environmental programs focusing on climate action, nature conservation, pollution control, and sustainable development. It targets a broad audience including governments, NGOs, civil society, and the general public. UNEP holds a strong market position as a leading international environmental organization with extensive partnerships and a clear mission. Technically, the website is built on Drupal 10, leveraging modern web technologies such as jQuery, Font Awesome, Google Tag Manager, and Facebook SDK. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The infrastructure reflects a mature digital presence suitable for a large international organization. From a security perspective, the site enforces HTTPS and uses modern libraries without exposing sensitive data. However, it lacks explicit security headers and published security policies or incident response information, which are recommended for enhanced security posture. Privacy and cookie policies are present and comprehensive, indicating good compliance with GDPR and related regulations. Overall, the website is professional, trustworthy, and well-maintained, with minor areas for improvement in security transparency and technical optimization. The incomplete WHOIS data does not detract significantly from the site's legitimacy given its strong UN affiliation and consistent branding.

I

International Finance Corporation (IFC)

ifc.org

71

The International Finance Corporation (IFC) is a leading global development institution focused on fostering private sector growth in developing countries. As a member of the World Bank Group, IFC operates in over 100 countries, providing investment, advisory, and asset management services to catalyze economic development and job creation. The website reflects IFC's authoritative market position with comprehensive sector expertise and a broad range of financial products and services tailored to emerging markets. The target audience includes private sector companies, investors, governments, and development partners worldwide. Technically, the website is built on Adobe Experience Manager (AEM) and incorporates modern web technologies such as jQuery, Bootstrap, and various analytics and tracking tools including Microsoft Application Insights and Adobe Analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a dedicated security policy page are absent. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Contact information is primarily provided via inquiry forms and directories rather than direct emails or phone numbers, consistent with large international organizations. Social media presence is active across major platforms, enhancing trust and engagement. Overall, the IFC website demonstrates a mature digital presence with high content quality, strong business credibility, and good security practices. Recommendations include publishing a dedicated security policy, enhancing security headers, and providing vulnerability disclosure information to further strengthen trust and compliance.

W

WestCord Hotels

westcordhotels.de

54

WestCord Hotels operates a multilingual WordPress-based website targeting travelers interested in unique hotel accommodations across various locations in the Netherlands. The site offers booking services and presents itself as a medium-sized hospitality business with consistent branding and good content quality. The technical infrastructure leverages modern web technologies including WooCommerce for e-commerce capabilities, Google Tag Manager, Facebook SDK for marketing, and Cookiebot for cookie consent management. SEO and social media integration are well implemented through structured data and Open Graph metadata. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though the absence of explicit privacy policy, terms of service, and incident response information indicates room for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and safe for general audiences.

W

WestCord Hotels

westcordhotels.com

61

WestCord Hotels is a well-established Dutch hotel group operating 16 hotels across major cities and regions in the Netherlands. Their official website provides comprehensive information about their hospitality services, targeting tourists and business travelers. The company has a solid market position as a recognized hotel group with a medium-sized business footprint. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, Facebook SDK, and Cookiebot for GDPR-compliant cookie consent. The site is mobile-optimized and SEO-friendly, offering a good user experience. Security-wise, the site uses HTTPS and implements cookie consent but lacks explicit security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-term registration consistent with the business history. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and advanced header configurations.