Security Directory

B

Bílý kruh bezpečí, z.s

infovictims.cz

8

The website www.infovictims.cz serves as an informational and support platform primarily targeting victims of crime in the Czech Republic. It is associated with the non-profit organization Bílý kruh bezpečí, z.s, which focuses on providing legal rights information, support, and guidance related to criminal proceedings. The site is professionally designed with a clear focus on its niche audience, offering relevant content and resources for victims seeking assistance. From a technical perspective, the website employs standard web technologies including HTML5, CSS3, Google Fonts, and common JavaScript libraries such as Fancybox and Slick Carousel. The site appears to be moderately optimized for performance and mobile responsiveness, though accessibility features are basic. There is no evidence of a CMS or advanced frameworks, suggesting a custom or lightweight implementation. Security posture is moderate but could be improved. The site uses HTTPS (implied by base URL), but no security headers were detected in the provided data. There are no visible privacy or cookie policies, nor incident response contacts or data protection officer information, indicating gaps in compliance and security transparency. The WHOIS data is missing, which raises concerns about domain legitimacy and trustworthiness despite the site's professional appearance and association with a known non-profit. Overall, the website is a useful resource for its target audience but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration information to improve trust and compliance.

G

Guía de la Industria Química

guiaquimica.mx

48

Guía de la Industria Química is a specialized online platform focused on providing comprehensive information, business directories, and advertising opportunities for the chemical industry and related sectors in Mexico. Established in 2011, it serves industry professionals and companies by offering detailed articles, supplier listings, and sector-specific insights. The website positions itself as an important resource within the Mexican chemical manufacturing sector, supporting business decision-making and networking. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, Google Fonts, and interactive libraries such as Swiper and AOS for animations. It integrates Google Analytics, Google Tag Manager, and Mouseflow for user behavior tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Hosting details are limited but the domain registrar is consistent with the business location. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on forms to mitigate spam. However, it lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. No privacy or cookie policies are published, indicating compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure information is provided, which could be improved to strengthen trust. Overall, the website is professional, content-rich, and trustworthy for its target audience but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and providing clear incident response contacts to improve compliance and security posture.

M

Muséum de Bordeaux - sciences et nature

museum-bordeaux.fr

57

The Muséum de Bordeaux - sciences et nature is a well-established public museum located in Bordeaux, France, focusing on natural history and cultural exhibitions. It serves a broad audience including families, schools, leisure professionals, journalists, and patrons. The museum offers permanent and temporary exhibitions, educational workshops, events, and virtual tours, positioning itself as a key cultural institution in the region. Technically, the website is built on Drupal 10 with modern libraries such as jQuery UI, Slick Carousel, Leaflet.js for maps, and FontAwesome for icons. It demonstrates good mobile optimization, accessibility, and SEO practices. The site includes a cookie consent mechanism and privacy policies aligned with GDPR requirements, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. The WHOIS data is unavailable, which limits domain registration insights but does not detract from the site's legitimacy given its professional content and official nature. Overall, the website is secure, compliant, and professionally maintained, with no signs of blocking or malicious activity. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

T

The Conference Forum

theconferenceforum.org

60

The Conference Forum is a specialized event organizer and content provider serving the pharmaceutical, biotechnology, and drug delivery sectors. Founded in 2010, it offers a portfolio of conferences, webinars, podcasts, and editorial content aimed at professionals and executives in these industries. The business model centers on delivering industry-specific knowledge and networking opportunities, supported by marketing services tailored to the medicine development ecosystem. The website reflects a mature and consistent brand presence with a clear focus on its niche audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Slick Carousel, Select2, and integrates advanced analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. Hosting is provided by Bluehost Inc., and the site uses HTTPS with a valid SSL certificate. Mobile optimization and user experience are good, though accessibility and SEO could be improved. The site lacks a CMS signature, suggesting a custom or proprietary platform. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v3 to protect forms from abuse. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is limited to a web form, with no direct emails or phone numbers published. The domain registration is consistent and legitimate, with a long history and no privacy protection, reinforcing trustworthiness. Overall, the website is professionally maintained and serves its business purpose well. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust. The site is safe for general audiences and does not contain any adult or questionable content.

A

America250PADelco

america250padelco.org

56

The website america250padelco.org serves as the official online presence for the Delaware County, Pennsylvania committee dedicated to celebrating America's 250th birthday. The site provides informational content about the committee's activities and events, targeting a general audience interested in local government and community celebrations. The website is professionally designed with consistent branding and good content relevance, though it lacks detailed business information and contact data. Technically, the site uses modern web fonts and JavaScript libraries, hosted on a platform associated with f-static.com, but does not reveal advanced frameworks or CMS details. Security posture is moderate; HTTPS is implied but no security headers or policies are detected, and WHOIS data is unavailable, limiting domain trust assessment. Privacy and cookie policies are absent, which impacts compliance and user trust. Overall, the site is functional and informative but would benefit from enhanced security and compliance features.

F

Fost Plus

fostplus.be

68

Fost Plus is a Belgian non-profit organization dedicated to promoting sustainable packaging management through sorting, recycling, reuse, and reduction initiatives. It serves a broad audience including households, businesses, schools, healthcare, horeca, and event sectors, positioning itself as a key player in Belgium's circular packaging economy. The website is professionally designed, multilingual, and rich in relevant content, reflecting a mature digital presence. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates advanced marketing and analytics tools such as HubSpot, Google Tag Manager, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. From a security perspective, the site enforces HTTPS and implements consent mechanisms, though it lacks explicit security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is restricted due to .be domain policies, but the overall domain legitimacy is supported by consistent business information and professional web presence. Overall, Fost Plus demonstrates a strong security posture, good privacy compliance, and high business credibility, making it a trustworthy and authoritative source in its domain.

G

GAINDE 2000

gainde2000.com

51

GAINDE 2000 is a Senegal-based technology company specializing in comprehensive digital transformation solutions for enterprises and public administrations across Africa. The company positions itself as a pioneer in African digital solutions, offering services such as sector expertise, partnerships, and international presence. Their website reflects a professional and consistent brand image with clear service offerings and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, delivering a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks some security headers and formal privacy/cookie policies. WHOIS data is missing, which raises concerns about domain registration legitimacy, though the website content and social presence suggest a legitimate business. Overall, the site scores well on content quality and business credibility but should improve privacy compliance and security practices.

CLIP Group S.A. is a well-established logistics company based in Poland, specializing in intermodal container terminal operations, storage, and transport services including rail and road. The company holds a strong market position as a leading operator in intermodal transport within Europe, supported by certifications and active participation in EU projects. Their website reflects a professional and comprehensive digital presence with clear service offerings and active communication channels. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements in security headers and privacy compliance mechanisms are recommended. Overall, the business demonstrates high credibility and operational maturity with room for enhancing privacy and security transparency.

W

Wine Point Plzeň

winepointplzen.cz

53

Wine Point Plzeň is a small, specialized wine retailer located in Plzeň, Czech Republic, focusing on Czech and Moravian wines. The business offers a combination of retail sales, wine tastings, events, and corporate services, supported by an e-commerce platform. The website is built on WordPress using Elementor, featuring modern frontend technologies and a good user experience with mobile optimization. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security policies and cookie consent mechanisms. The domain registration is consistent and transparent, supporting the legitimacy of the business. Overall, the website presents a professional and trustworthy image but should improve privacy compliance and security transparency.

S

SPŠ a VOŠ Příbram

spspb.cz

44

SPŠ a VOŠ Příbram is a regional educational institution in the Czech Republic providing secondary technical and higher vocational education. The website targets prospective students, current students, parents, and the general public, offering detailed information about study programs, school events, and virtual tours. The institution maintains an active social media presence and complies with GDPR regulations, including a comprehensive privacy policy and cookie consent mechanism. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery. It uses several plugins for video playback, galleries, and cookie management. The site is mobile-optimized and features good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks some security headers and a security.txt file for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, likely due to privacy protection, but the website's content and technical setup indicate legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving its educational mission effectively.

Č

Čachrov CZ

cachrov.cz

42

Čachrov CZ is a local community informational website serving the Čachrov region in the Czech Republic. It provides news, historical content, current events, and resources for residents and enthusiasts. The site is built on WordPress with a variety of plugins enhancing multimedia and social media integration. It maintains an active content publishing schedule and engages with users via social media platforms such as Facebook, Twitter, and YouTube. The website's technical infrastructure is modern and includes HTTPS encryption, Google Analytics, and Google Maps integration. However, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS but could be improved by adding security headers and formal incident response information. The absence of WHOIS data limits domain trust assessment, but the website content and structure indicate a legitimate community portal. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and publishing a security.txt file to improve transparency and compliance.

W

Wall&decò

wallanddeco.com

66

Wall&decò operates as a contemporary wallpaper and wall decoration retailer, targeting interior designers, homeowners, and businesses seeking stylish wall coverings. The website demonstrates a professional design with good content quality and clear navigation, supported by modern web technologies and multiple marketing and analytics tools. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the presence of comprehensive privacy and cookie policies indicates compliance with GDPR standards. Overall, the website presents a moderate risk profile with room for improvement in transparency and security documentation.

S

Sport-Eli

sporteli.cz

39

Sporteli is a small family-owned business specializing in sailboat rentals and teambuilding events on the Orlík reservoir in the Czech Republic. Established in 1990, the company offers a fleet of 19 fully equipped vessels and professional crew support, targeting corporate clients and recreational sailors. The website is built on WordPress with modern technologies such as Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enabled, but lacks advanced security headers and privacy policies, indicating room for compliance improvements. The absence of WHOIS data raises some concerns about domain legitimacy, though the website content and contact information appear professional and trustworthy. Overall, the site scores well on business credibility and technical implementation but should address privacy and security policy gaps to enhance trust and compliance.

The website brdonos.cz represents a small-scale, local sports event organizer focused on the annual Brdonoš triathlon and related activities in Podlesí, Czech Republic. It provides event information, registration links, partner acknowledgments, and merchandise sales. The site is built on Joomla CMS with Bootstrap and standard web technologies, hosted by a Czech provider (WEDOS). The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO. Security posture is adequate with HTTPS and CSRF tokens but lacks security headers and cookie consent mechanisms, indicating room for improvement in compliance and security best practices. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

A

ATONdesign s.r.o.

atondesign.cz

45

ATONdesign s.r.o. is a Czech Republic based professional design studio specializing in graphic design, interior design, and exhibition stand construction. With over 25 years of experience, the company positions itself as a trusted partner for businesses seeking to enhance their brand and physical spaces through creative design solutions. The website reflects a well-structured and professional digital presence, leveraging WordPress CMS and modern web technologies to deliver a responsive and user-friendly experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though some improvements in security headers and privacy compliance are recommended. Overall, the website and business appear legitimate and credible, though the absence of WHOIS data and privacy policies slightly reduce trust levels.

J

Janáčkova akademie múzických umění

jamu.cz

51

Janáčkova akademie múzických umění is a Czech educational institution specializing in music and performing arts. The website serves students, prospective students, alumni, and the general public interested in cultural events and academic programs. It provides information on study programs, creative activities, public events, and student services. The institution appears to be a medium-sized regional academic entity with a consistent brand presence and a professional website design. Technically, the website is built on WordPress with Bootstrap and jQuery frameworks, incorporating plugins like NextGEN Gallery and Owl Carousel for enhanced user experience. It uses HTTPS and Google Tag Manager for analytics and tracking. The site is mobile responsive and optimized for SEO, though accessibility features are basic. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism with granular controls, indicating some level of privacy compliance. However, it lacks explicit privacy policy and terms of service pages, security headers, and vulnerability disclosure information. The WHOIS data is unavailable, which raises concerns about domain registration legitimacy and trustworthiness. Overall, the website is functional, professional, and safe for general audiences but would benefit from improved transparency in privacy and security policies and clearer contact information to enhance trust and compliance.

Z

Základní škola Světlo s.r.o.

zssvetlo.com

60

Základní škola Světlo s.r.o. is a private elementary school based in Třebíč, Czech Republic, focusing on providing quality education with an individual approach and a friendly atmosphere. The school emphasizes collaboration with families and holistic development of students intellectually, personally, and spiritually. Their market position is that of a modern, value-driven educational institution with a strong local presence and active engagement through social media and virtual tours. Technically, the website is built on WordPress with modern plugins and libraries, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its educational mission.

PNORS Technology Group is an Australian-owned enterprise comprising a group of companies that provide integrated and complementary technology-based solutions aimed at helping Australian businesses grow. The company positions itself as a medium-sized technology group with subsidiaries such as Pacific Commerce, WilldooIT, and Netway, focusing on improving business productivity and efficiency through technology. The website is professionally designed using the Odoo CMS platform and incorporates modern web technologies including Google Tag Manager for analytics and tracking. Privacy and cookie policies are implemented with consent mechanisms, reflecting a commitment to user privacy and compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS data for the domain is a notable anomaly that impacts trustworthiness from a domain registration perspective. Overall, the website is safe, professional, and well-structured, targeting Australian businesses seeking technology solutions.

H

HashBang

hashbang.fr

50

HashBang is a Lyon-based cooperative specializing in bespoke web and software engineering services, founded in 2013. The company emphasizes sustainable and responsible digital solutions, leveraging Python and Django technologies. Their market position is that of a trusted local cooperative with a strong commitment to social and ecological values. Technically, the website uses modern frameworks such as Bulma CSS and Wagtail CMS, hosted on Scaleway infrastructure, indicating a moderate level of digital maturity with good mobile optimization and accessibility. Security posture is adequate with HTTPS usage but lacks explicit security headers and formal security policies. Privacy compliance is partial, with a privacy policy present only in the legal mentions page and no cookie consent mechanism. Overall, the website is professional, trustworthy, and content-rich, targeting French-speaking business clients seeking custom IT solutions.

C

CRESS AURA

cress-aura.org

49

CRESS AURA is a regional non-profit organization dedicated to representing, promoting, and supporting social and solidarity economy (ESS) structures in the Auvergne-Rhône-Alpes region of France. The organization offers key services including advocacy, training, accompaniment, and networking to ESS actors such as project initiators, enterprises, and local authorities. The website reflects a professional and consistent brand presence with rich content and clear navigation, targeting stakeholders involved in social economy and regional development. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by OVH sas. It employs Matomo analytics, indicating a privacy-conscious approach to user tracking. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enabled and domain status protections, but lacks DNSSEC and explicit security headers, which are recommended for enhancement. No privacy or cookie policies were found, indicating a gap in GDPR compliance. Contact information is available via multiple verified company emails and a contact form. The domain registration is consistent with the organization's profile, showing legitimacy and appropriate domain age. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, the website demonstrates strong business credibility and content quality but should improve privacy compliance and security hardening to enhance trust and regulatory adherence.

B

Bretagne Magazine

bretagne-magazine.fr

56

Bretagne Magazine is a well-established regional media publication focused on the Brittany region of France, offering monthly and special edition magazines that cover maritime stories, local culture, gastronomy, and regional news. The website supports subscription sales and provides rich editorial content targeted at residents and enthusiasts of Brittany. The business operates under the Groupe Télégramme umbrella, indicating a solid corporate backing and market presence. Technically, the website employs modern JavaScript libraries, consent management via Didomi, and analytics tools such as Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent banner. No critical vulnerabilities or suspicious patterns were detected, and contact information is clearly provided. Overall, Bretagne Magazine presents a trustworthy and professional online presence consistent with its business model and market position.

S

Seafile Ltd.

seafile.com

51

Seafile Ltd. operates a professional website offering an open source, self-hosted file synchronization and sharing platform targeting teams, companies, and organizations globally. The company provides both on-premise and cloud-based solutions with advanced features such as AI-powered file property automation, collaborative document editing, and enterprise-grade security. The website demonstrates a strong market position with over one million users and notable customers including universities and cybersecurity firms. Technically, the site employs modern web technologies including Bootstrap, jQuery, and FontAwesome, with Google Analytics integrated for user tracking. The design is professional, mobile-optimized, and content-rich, supporting a positive user experience. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy but does not detract from the business credibility evidenced by the website content and customer references. Overall, the site is trustworthy and well-maintained but would benefit from enhanced security headers and clearer domain registration transparency.

S

Salesiáni Dona Bosca Ostrava

boscoostrava.cz

48

Salesiáni Dona Bosca Ostrava is a local non-profit organization focused on youth and community engagement in Ostrava, Czech Republic. The website serves as an information portal for their activities including youth clubs, workshops for schools, accommodation, and church services. The organization maintains a consistent brand presence with official contact emails and social media channels, supporting community outreach and engagement. Technically, the website is built on WordPress using modern plugins and frameworks such as Bootstrap and Smart Slider 3, providing a responsive and user-friendly experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. The absence of WHOIS data limits domain trust verification, but the overall digital footprint and content quality support the legitimacy of the organization. Strategic recommendations include enhancing security headers, publishing a privacy policy, and improving accessibility features to strengthen compliance and trust.

O

Ostravská organizace vozíčkářů, spolek

vozickari-ostrava.cz

54

The website www.vozickari-ostrava.cz represents the Ostravská organizace vozíčkářů, a non-profit organization dedicated to providing transportation and advisory services for wheelchair users and people with disabilities in the Ostrava region of the Czech Republic. The organization offers specialized vehicle transport, an interactive magazine, and barrier-free consulting services. The site is designed to serve a local audience with clear contact options including a phone number and a contact form. The business model focuses on community support and charitable activities, including fundraising through the Donio platform.

B

Broadcast Sport

broadcastsportevents.co.uk

63

Broadcast Sport is a specialized media company focused on the sports broadcasting industry, offering an online news portal, quarterly magazine, and hosting the Broadcast Sport Summit event. The website targets professionals in sports media including producers, broadcasters, athletes, and brands. The company positions itself as a niche leader in sports media innovation and networking. Technically, the website uses a modern tech stack with jQuery, Google Analytics, and a proprietary CMS (SHOWOFF by ASP.events). It is mobile optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are missing. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

P

PlanetHoster

planethoster.live

57

PlanetHoster Forums is an official community platform supporting PlanetHoster's web hosting services. It serves as a hub for customers to discuss maintenance, outages, reviews, tutorials, and technical support. The forum is well-structured, bilingual (primarily French), and actively maintained with thousands of discussions and messages. The website uses modern web technologies including XenForo CMS, jQuery, FontAwesome, and integrates Google Analytics and Tag Manager for analytics. HTTPS is enforced with a valid SSL certificate, and forms include CSRF tokens, indicating a good security baseline. However, some security headers are missing, and no explicit security or incident response policies are published on the forum site. Privacy and terms of service pages are present and linked, showing attention to compliance. The WHOIS data is privacy protected but consistent with an active and legitimate domain. Overall, the site demonstrates a professional and trustworthy presence with a strong community focus.

Colliers Finland Oy is a leading global real estate advisory and consultancy firm, providing expert services in the Finnish market. The company positions itself as a world leader in real estate advisory, targeting professionals, investors, and clients seeking comprehensive property services. Their website reflects a mature digital presence with multiple language and regional versions, indicating a broad international footprint. The business model focuses on professional services including property management, investment advisory, and consultancy, catering to an enterprise-level clientele. Technically, the website is built on the Sitecore CMS platform, leveraging modern technologies such as Google Tag Manager, Google Analytics, and OneTrust for privacy compliance. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a clean and professional design. Security measures include HTTPS enforcement, Cloudflare Turnstile captcha for bot mitigation, and cookie consent management, demonstrating a strong security posture. While the WHOIS data for the domain is unavailable, which is unusual for a large enterprise, the website's professionalism and trust signals mitigate concerns. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear policies and GDPR adherence. Overall, the site presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing explicit security and incident response policies, implementing a vulnerability disclosure program, and enhancing transparency around data retention to further strengthen trust and compliance.

Nabium, d. o. o., is a Slovenian small business specializing in consulting, education, fairy tale production, marketing services, and creative writing. The company positions itself as a provider of strategic, innovative, and cost-effective marketing and communication solutions tailored to client needs. The website reflects a professional and consistent brand image with clear contact information and a focus on client service. Technically, the site is built on WordPress using WPBakery Page Builder and standard web technologies, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security transparency.

I

IRDO – Inštitut za razvoj družbene odgovornosti

irdo.si

38

IRDO – Inštitut za razvoj družbene odgovornosti is a Slovenian non-profit institute dedicated to promoting social responsibility and sustainable development. The organization offers a range of services including conferences, training, consultation, awards, research, and publishing. It holds a national partnership with CSR Europe, positioning itself as a key player in the social responsibility sector within Slovenia and the broader EU region. The website targets managers and professionals interested in integrating social responsibility into their organizations. Technically, the website is built on WordPress with modern plugins and libraries such as WPBakery Page Builder and Ultimate VC Addons, providing a good user experience with mobile optimization and clear navigation. However, there is room for improvement in accessibility and SEO features.

F

Fondazione FIRMO

fondazionefirmo.it

9

Fondazione FIRMO is a specialized Italian non-profit foundation dedicated to research, awareness, and support for bone diseases. The website presents a professional and well-structured platform targeting patients, healthcare professionals, researchers, and donors. It offers key services including research funding, patient education, events, and health tools. Technically, the site is built on WordPress with modern plugins and technologies, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data raises concerns about domain registration transparency, impacting trustworthiness. Overall, the site is credible and professional but would benefit from enhanced privacy compliance and security disclosures.

S

Sinklar Conference Management B.V.

wco-iof-esceo.org

10

The website www.wco-iof-esceo.org represents the 26th World Congress on Osteoporosis, Osteoarthritis and Musculoskeletal Diseases, a globally recognized clinical congress organized by reputable healthcare organizations IOF and ESCEO. The event targets healthcare professionals and researchers in musculoskeletal health, offering a comprehensive scientific program and various engagement opportunities such as abstract submissions and awards. The site is professionally designed using Drupal 10, with good mobile optimization and accessibility features. It includes GDPR-compliant cookie consent mechanisms and clear contact information, enhancing user trust and compliance. However, the absence of WHOIS data limits domain trust assessment, and security headers are not detected, suggesting room for security improvements.

T

Türkische Gemeinde Deutschland

tgd.de

65

Türkische Gemeinde Deutschland (TGD) is a German non-profit umbrella organization representing the interests of people with Turkish migration backgrounds. The website provides comprehensive information about their projects, member associations, and societal topics such as participation, equality, and diversity. The organization targets migrants and stakeholders interested in integration and social inclusion. Technically, the website is built on WordPress using WPBakery Page Builder and several plugins, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers are not explicitly detected. Privacy compliance is strong with detailed GDPR-compliant policies and consent management. Overall, the site is professional, trustworthy, and well-structured, supporting the organization's mission effectively.

M

Domača stran | Mojaizbira

mojaizbira.si

43

Mojaizbira.si is a Slovenian governmental and educational platform dedicated to providing comprehensive information about vocational professions and schools. Supported by the Ministry of Education, Science and Sport and co-financed by the European Social Fund, it serves as an authoritative resource for students and career advisors in Slovenia. The platform offers searchable databases of over 500 professions and 150 schools, along with information on scholarships for deficit professions. Technically, the website is built on Drupal 8, hosted on Arnes infrastructure, and includes modern web technologies such as FontAwesome and Klaro for cookie consent. Google Analytics is used for traffic monitoring. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service on the homepage. Overall, the site is professional, trustworthy, and well-targeted to its audience, though improvements in transparency and security practices are recommended.

I

IRDO – Institute for the Development of Social Responsibility

horus.si

41

The website www.horus.si represents the Slovenian Award for Social Responsibility HORUS, managed by IRDO, a non-profit institute focused on promoting social responsibility and sustainable development. The site serves as an information hub for award calls, laureates, workshops, and news updates, targeting organizations and individuals interested in social responsibility within Slovenia. The business model is non-profit, centered on recognition and promotion rather than commercial sales. The domain age and content history support a credible and established presence in this niche. Technically, the site is built on WordPress with popular plugins like Slider Revolution and WPBakery Page Builder, ensuring a modern and responsive design. The site loads moderately fast and is mobile-optimized, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS with a good SSL configuration. However, it lacks explicit security headers and formal privacy or cookie policies, which are important for GDPR compliance and user trust. No vulnerabilities or malicious content were detected, and contact information is clearly provided, enhancing credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security hardening. Strategic recommendations include adding comprehensive privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure policy to enhance user trust and regulatory compliance.

S

Suomalaisen Työn Liitto

avainlippu.fi

52

Suomalaisen Työn Liitto is a well-established non-profit organization dedicated to promoting Finnish work and products through certification marks such as Avainlippu. The website serves as a comprehensive platform to inform consumers and businesses about the certification criteria, benefits, and application processes. The organization enjoys a strong market position in Finland with thousands of companies using its marks, reflecting trust and recognition in the Finnish market. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, hosted on a reliable provider. Security posture is solid with HTTPS, cookie consent, and no evident vulnerabilities, though some security headers could be enhanced. Overall, the site is professional, user-friendly, and compliant with privacy regulations, supporting the organization's mission effectively.

S

Stämpfli Kommunikation

staempfli.ch

57

Stämpfli Kommunikation is a well-established Swiss communication agency and printing service provider founded in 1997. The company offers a range of services including web presence development, branding, editorial systems, and printing solutions, targeting businesses and organizations in Switzerland. The website is professionally designed, powered by TYPO3 CMS, and optimized for mobile devices, reflecting a moderate level of digital maturity. However, the absence of explicit privacy and cookie policies, as well as security headers, indicates areas for improvement in compliance and security posture. The domain registration data aligns well with the company's history, supporting its legitimacy. Overall, the website presents a professional business image but would benefit from enhanced privacy and security measures to strengthen trust and compliance.

W

winebg.info

winebg.info

50

winebg.info is a Bulgarian media website dedicated to wine culture, events, wineries, and wine tourism in Bulgaria. The site targets wine enthusiasts and consumers in Bulgaria, providing content such as event coverage, tasting notes, winery profiles, and cultural articles. The website uses WordPress CMS with a variety of plugins to enhance user experience, including age verification to restrict underage access to alcohol-related content. The site demonstrates moderate digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. Overall, the site appears legitimate and focused on its niche audience with room for security and compliance improvements.

S

SuperHosting.BG Ltd.

obemnibukvi.eu

43

The website obemnibukvi.eu represents a Bulgarian company specializing in the design, manufacturing, and installation of volumetric letters and advertising signage. With over 26 years of experience, the company serves clients across Bulgaria with offices in Sofia, Varna, and Veliko Tarnovo. The business is positioned as an established local player offering comprehensive services including design, production, and installation of advertising letters and related signage products. The website content is primarily in Bulgarian and targets a general audience interested in advertising and signage solutions. Technically, the website is built on WordPress CMS and utilizes common web technologies such as PHP, jQuery, FancyBox for image galleries, Google Fonts, and FontAwesome icons. The hosting provider is SuperHosting.BG Ltd., a reputable Bulgarian hosting company. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. External integrations include Google Translate and StatCounter for analytics. From a security perspective, the website uses HTTPS with a good SSL configuration but lacks advanced security headers and formal security policies. There is no privacy or cookie policy present, which indicates compliance gaps with GDPR and related privacy regulations. The contact form is present and appears to have validation, but no explicit security or incident response policies are disclosed. The domain WHOIS data is transparent and consistent with the hosting provider, with no suspicious patterns detected. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and formalized security policies to strengthen trust and regulatory adherence.

F

Filmlab Palestine

flp.ps

62

Filmlab Palestine is a well-established non-profit organization dedicated to promoting and expanding Palestinian cinema culture since 2014. The organization offers a variety of programs including workshops, film festivals, post-production studios, and streaming platforms targeting filmmakers, families, and the broader community interested in Palestinian audiovisual storytelling. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on Drupal 10 with modern front-end libraries and is mobile optimized, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible with active social media engagement and clear contact information.

V

Vision Zero e.V.

vision-zero-oncology.de

57

Vision Zero Oncology is a German non-profit initiative focused on reducing avoidable cancer deaths through collaboration among scientific, medical, and industrial stakeholders. The website serves as a platform for information dissemination, event promotion, and publication sharing, targeting healthcare professionals, researchers, and the public. Technically, the site uses a modern Bootstrap framework, integrates Cookiebot for GDPR-compliant cookie management, and employs Google reCAPTCHA for form security. The hosting is managed via One.com with HTTPS enforced, indicating a secure baseline. Security posture is solid with room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its mission effectively.

Wirth & Horn Informationssysteme GmbH is a German technology company founded in 2020 specializing in innovative digital solutions primarily for e-commerce and publishing sectors. Their offerings include enterprise web applications, master data management platforms (PIM.RED), AI integrations such as LLM and RAG systems, UX/UI design, cloud hosting, and business intelligence services. The company targets publishers and enterprises seeking scalable, secure, and customer-oriented digital sales platforms. Technically, the website is built on modern frameworks like Next.js and React, hosted with Cloudflare DNS and CDN, and optimized for mobile and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. Overall, the site demonstrates professionalism, good content quality, and compliance with GDPR, reflecting a trustworthy and credible business presence.

S

SAJV (Schweizerische Arbeitsgemeinschaft der Jugendverbände)

jugendsession.ch

39

Jugendsession.ch is the official website for the Eidgenössische Jugendsession, a prominent Swiss non-profit youth political participation project organized by the Schweizerische Arbeitsgemeinschaft der Jugendverbände (SAJV). The platform facilitates annual gatherings of 200 young people from across Switzerland to discuss political issues and formulate demands, aiming to strengthen youth political engagement. The website is professionally designed, multilingual, and supported by numerous Swiss cantons and federal offices, reflecting a strong market position within the government and non-profit sectors. Technically, the website employs modern web technologies including jQuery, Swiper.js, and FontAwesome, with image optimization via ImageKit. It is likely powered by the Contao CMS. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Security posture is strong with HTTPS enforced and appropriate security headers present, though there is room for improvement in privacy compliance and incident response transparency. Security-wise, the site shows no critical vulnerabilities or exposed sensitive data. However, it lacks a cookie consent mechanism and a vulnerability disclosure policy, which are recommended for compliance and transparency. Contact information is clearly provided, but no dedicated security or incident response contacts are visible. Overall, jugendsession.ch is a trustworthy, well-maintained government-affiliated site with a clear mission and solid technical foundation. Strategic enhancements in privacy compliance and security transparency would further strengthen its risk profile and user trust.

S

Sparstopp

sparstoppjugend.ch

9

Sparstopp is a Swiss non-profit advocacy website dedicated to opposing government budget cuts in youth and child promotion programs. The site serves as a mobilization platform for youth organizations and civil society, providing information, petitions, and calls to action. The website is well-designed with good content quality and clear navigation, targeting Swiss youth organizations and the general public concerned with youth funding. Technically, it uses modern front-end libraries such as Swiper.js and FontAwesome and is likely built on the REDAXO CMS. However, the site lacks key privacy and cookie policies, security headers, and explicit contact information, which impacts its security posture and privacy compliance. No WAF or blocking mechanisms were detected, and the content is safe for general audiences.

S

Swiss Athletics

swiss-athletics.ch

57

Swiss Athletics is the official national federation for athletics in Switzerland, focusing on promoting elite sports, youth development, and broad participation. The organization operates a comprehensive website offering event registration, licensing, athlete support, coaching education, and competition results. The site targets athletes, coaches, officials, and athletics enthusiasts within Switzerland. Technically, the website is built on WordPress with modern plugins and integrates Google advertising and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are lacking. Overall, the website is professional, trustworthy, and well-optimized for SEO and mobile use, supporting the federation's mission effectively.

L

Landeswasserverbandstag Thüringen e. V.

lvt-thueringen.de

50

The Landeswasserverbandstag Thüringen e. V. (LVT) is a non-profit umbrella organization representing water management associations in the German state of Thüringen. Established following the 2019 regional law, it serves as a coordinating and representative body for twenty water maintenance associations. The website provides information about the organization, its members, and current news, targeting stakeholders in the water management sector and regional authorities. The site is professionally designed using WordPress and Elementor, with clear navigation and relevant content in German. Technically, the site employs modern web technologies and is hosted on servers associated with rzone.de. Security posture is adequate with HTTPS enabled and cookie consent implemented, though explicit security headers and policies are not publicly disclosed. Overall, the site is trustworthy and compliant with GDPR requirements, reflecting a legitimate regional government-related entity.

V

Vereinigung liechtensteinischer gemeinnütziger Stiftungen und Trusts (e.V.)

vlgst.li

67

The Vereinigung liechtensteinischer gemeinnütziger Stiftungen und Trusts (VLGST) is a non-profit association representing charitable foundations and trusts in Liechtenstein. It serves as a platform for dialogue, governance promotion, and advocacy to strengthen the philanthropic sector in the region. The website reflects a professional and consistent brand presence, targeting foundations, trusts, and stakeholders interested in philanthropy and governance. Technically, the site is built on Concrete5 CMS with modern libraries such as jQuery and Bootstrap, and uses Matomo for privacy-conscious analytics. Security posture is good with HTTPS enforced, but lacks some security headers and explicit policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche.

L

Liechtensteinische AHV-IV-FAK

ahv.li

60

The Liechtensteinische AHV-IV-FAK website serves as the official digital presence of the national social insurance institution responsible for old-age, disability, family compensation, and supplementary benefits in Liechtenstein. It provides comprehensive information, forms, and online services tailored to residents and employers, positioning itself as a trusted government resource. The site is well-structured, professionally designed, and targets a general audience seeking social insurance services. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap for responsive design and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. Performance is moderate, with asynchronous loading of scripts enhancing responsiveness. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and preparedness. No critical vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the domain's legitimacy and consistency with the institution's identity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements include publishing a dedicated security policy, incident response information, and implementing additional security headers to further harden the site against potential threats.

W

Wirtschaftskammer Liechtenstein

wirtschaftskammer.li

56

Wirtschaftskammer Liechtenstein serves as the official chamber of commerce for Liechtenstein, providing advocacy, support, and services to local businesses and entrepreneurs. The organization holds a strong market position as the primary business representative body in the country, focusing on business development, training, and member services. The website reflects a professional and consistent brand image targeting business stakeholders within Liechtenstein. Technically, the website is built on WordPress with a modern technology stack including Bootstrap, FontAwesome, and privacy-focused Matomo analytics. The site demonstrates good mobile optimization and moderate performance, with standard SEO and accessibility features. Security posture is solid with HTTPS enforced and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the security posture is mature with no critical vulnerabilities detected. Privacy compliance is strong, with comprehensive GDPR-aligned privacy and cookie policies and a consent mechanism in place. Contact information is transparent and complete, enhancing trustworthiness. The site is free from adult or questionable content, making it safe for general audiences. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure mechanisms, enhancing accessibility, and maintaining up-to-date software to mitigate risks. These steps will further strengthen the organization's digital trust and security culture.

W

WEMAG

wemag.com

46

WEMAG is a regional German energy and internet service provider specializing in sustainable solutions such as certified green electricity, natural gas, photovoltaic systems, heat pumps, and fiber-optic internet. The company targets private customers, businesses, and municipalities with tailored energy and telecommunications products. The website is built on Drupal 10 and incorporates modern technologies including lazy loading images and consent management via Usercentrics. Security posture is solid with HTTPS and consent mechanisms, though explicit privacy and security policies are not clearly presented. WHOIS data is unavailable, which slightly impacts trust but the professional presentation and clear service offerings support legitimacy. Overall, WEMAG demonstrates a mature digital presence with room for improvement in transparency and security disclosures.