Security Directory

A

Activision Publishing

callofduty.com

65

Activision Publishing operates the Call of Duty franchise, a leading global video game brand with a strong presence in digital entertainment and esports. The website serves as a hub for game promotion, community engagement, and esports event information, targeting gamers worldwide. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, advanced tracking and consent management tools, and secure SSO authentication. The site demonstrates excellent design quality, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement, secure cookies, and privacy compliance via OneTrust, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is trustworthy, professional, and aligned with industry standards.

S

Stichting Keurmerk Milieu, Veiligheid en Kwaliteit

stichtingkmvk.nl

38

Stichting KMVK is a well-established Dutch non-profit organization focused on promoting sustainability within the tourism sector. It operates as an authoritative body offering recognized sustainability certifications, environmental distinctions, and inspection services. The organization collaborates with prominent partners such as HISWA-RECRON, ANWB, and KHN, reinforcing its market position as a leader in sustainable tourism certification. The website reflects a professional and consistent brand image, targeting entrepreneurs and businesses in the Dutch tourism and recreation industry. Technically, the website employs modern web technologies including Google Fonts, jQuery, and Swiper.js, and is built on a CMS platform likely provided by Holiday Media. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. Security-wise, the site uses HTTPS and implements a comprehensive cookie consent mechanism with opt-in functionality, although it lacks publicly visible formal security policies or incident response contacts. Overall, the domain registration aligns well with the organization's history and legitimacy, supporting a high trust level.

A

Activision Blizzard Media

activisionblizzardmedia.com

61

Activision Blizzard Media operates as a premier in-game advertising company, leveraging the extensive reach of Activision Blizzard's iconic gaming franchises such as Candy Crush, Call of Duty, and World of Warcraft. The company targets brands and advertisers seeking to engage with a diverse and highly engaged gaming audience across multiple platforms globally. Their business model centers on delivering fan-first, insights-led advertising solutions including video ads, interactive playables, custom integrations, and performance measurement services. Technically, the website is built on Adobe Experience Manager (AEM) and employs modern web technologies such as jQuery, Google Tag Manager, OneTrust for consent management, and HubSpot for form handling. The site demonstrates good mobile optimization, accessibility, and SEO practices, providing a professional and user-friendly experience. From a security perspective, the site enforces HTTPS and integrates consent management mechanisms, with no evident vulnerabilities or exposed sensitive data. However, explicit security headers are not clearly visible in the provided data, and there is no public incident response or vulnerability disclosure information. The absence of WHOIS data for the domain is a notable anomaly, potentially indicating privacy protection or recent registration, which slightly impacts domain trustworthiness. Overall, the website presents a strong, professional digital presence aligned with a reputable enterprise brand. Strategic recommendations include enhancing transparency around security policies, adding vulnerability disclosure channels, and verifying domain registration details to improve trust and compliance posture.

K

KSL Capital Partners

kslcapital.com

65

KSL Capital Partners is a global investment firm specializing in travel and leisure sectors including hospitality, resorts, recreation, clubs, real estate, and travel services. The company positions itself as a global leader with over 30 years of investing experience and a portfolio of 165+ businesses. Their business model focuses on equity, credit, and tactical investment strategies combined with operational expertise. The website reflects a professional and well-branded digital presence with multimedia content and investor-focused features such as a secure login portal. Technically, the site uses modern web technologies including Webflow CMS, Google Analytics, and cookie consent mechanisms, ensuring a good user experience and moderate performance. Security posture is solid with HTTPS and cookie consent but lacks visible security headers and detailed privacy policies. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and professional but would benefit from enhanced privacy disclosures and security practices.

M

Media Mister

mediamister.com

67

Media Mister is a well-established social media marketing service provider operating since 2012, offering a broad range of engagement products such as followers, likes, views, and comments across major social platforms including Instagram, TikTok, YouTube, Facebook, and Spotify. The company targets social media users and marketers seeking to enhance their online presence and social proof through authentic and manual engagement services. Their market position is strong, supported by over 280,000 satisfied customers worldwide and a presence in nearly 200 countries. Technically, the website employs modern web technologies including jQuery, Bootstrap, and various analytics and marketing tools such as Google Analytics, Facebook Pixel, and Klaviyo, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and secure payment processing via Stripe and CoinPayments, although explicit security headers and policies are not publicly detailed. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

É

Éditions Françaises de Guides

facilities.fr

65

Facilities.fr is a specialized French website dedicated to facility management, targeting professionals responsible for general services and non-production procurement. The site offers a comprehensive directory of service providers, practical information, market trends, and a printed guide, positioning itself as a niche leader in the facility management information sector in France. The business model revolves around content provision, advertising, and subscription services such as newsletters and guides. Technically, the site is built on WordPress with modern libraries like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and vulnerability disclosure practices could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a medium-sized business audience effectively.

1

1984 ehf.

1984.hosting

56

1984 ehf. is an Iceland-based green and ethical web hosting company founded in 2006, emphasizing freedom of speech and privacy. The company offers traditional web hosting, VPS with preconfigured VPN solutions, FreeDNS services, and domain registration. Their market position is niche, targeting privacy-conscious customers and those valuing green energy. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content. Technically, the site uses modern frameworks like Bootstrap and jQuery, with Matomo analytics for privacy-respecting tracking. Security posture is good with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and security headers. Privacy compliance is strong with GDPR and cookie policies present, though lacking explicit consent mechanisms. Overall, the domain registration aligns with business claims, using GDPR masking appropriately.

F

Free Software Foundation

endsoftwarepatents.org

58

EndSoftwarePatents.org is a non-profit advocacy website operated by the Free Software Foundation, focused on campaigning against software patents to protect developer freedom and promote free software principles. The website serves as an educational platform targeting software developers, free software advocates, and the general public interested in software freedom. It provides resources, blog articles, and calls to action to support the abolition of software patents. Technically, the site is built on WordPress with Bootstrap and jQuery, hosted under a domain registered since 2007 by the Free Software Foundation, indicating a mature and stable digital presence. The website is mobile-optimized and has a good design quality with clear navigation and relevant content.

A

Activision Blizzard

activisionblizzard.com

62

Activision Blizzard is a leading global interactive entertainment company known for its iconic video game franchises including Call of Duty, World of Warcraft, Diablo, Overwatch, and Candy Crush. The company operates through multiple subsidiaries such as Activision, Blizzard Entertainment, and King Digital Entertainment, delivering immersive gaming experiences and building engaged communities worldwide. Their market position is strong, supported by a large enterprise-scale operation and a diverse portfolio of popular games. Technically, the website is built on Adobe Experience Manager CMS, leveraging modern JavaScript libraries like jQuery and Google Tag Manager for analytics and marketing. The site is well-optimized for mobile and desktop, with fast performance and good accessibility features. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms implemented via OneTrust. From a security perspective, the site enforces HTTPS and uses anti-CSRF tokens for authenticated API calls. However, it lacks visible security headers and published security policies or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content analysis. Overall, the website presents a professional, trustworthy, and well-maintained digital presence consistent with a major enterprise in the technology and media sector. The absence of WHOIS data limits domain registration trust analysis but does not detract from the evident legitimacy and maturity of the business and its online assets.

Ú

Úřad pro ochranu hospodářské soutěže

uohs.cz

48

Úřad pro ochranu hospodářské soutěže (UOHS) is the central governmental authority in the Czech Republic responsible for enforcing competition law, overseeing public procurement, monitoring public support, and regulating market power abuses. The agency operates under Czech law and is led by a chairman appointed by the president. The website serves as an official communication channel providing news, regulatory information, and resources for businesses and the public. It maintains a professional presence with regular updates and social media engagement. Technically, the website employs standard web technologies including jQuery, Select2, and Featherlight for UI enhancements. It implements a cookie consent mechanism compliant with GDPR requirements and uses Google Analytics for traffic monitoring. The site is mobile-optimized and structured for good user experience, though accessibility features are basic. The absence of WHOIS data limits domain registration transparency but does not detract from the site's legitimacy given its official government domain and content. Security posture is moderate with HTTPS usage implied and cookie consent implemented. However, no explicit security headers or incident response policies are visible, suggesting room for improvement in security best practices. No vulnerabilities or exposed sensitive data were detected in the content analysis. Overall, the website is a credible and professional government resource with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and improving accessibility compliance to strengthen trust and resilience.

S

Stichting KMVK

greenkey.nl

65

Green Key is a well-established international sustainability certification organization focused on the hospitality sector, operated in the Netherlands by Stichting KMVK. The website presents a professional and comprehensive digital presence with clear information about the certification, its benefits, and how businesses can participate. The site is well-structured, mobile-optimized, and uses modern web technologies including Google Fonts, jQuery, Swiper.js, and Google Analytics with a compliant cookie consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website reflects a trustworthy and credible non-profit organization dedicated to promoting sustainability in hospitality.

H

Hotelsterren

hotelsterren.nl

63

Hotelsterren is a specialized service provider focused on the official classification of hotels in the Netherlands according to European standards. The company offers a web application called 'Klasse' to assist hotels in managing their classification process and compliance with 270 European norms. With over 1,200 hotels classified, Hotelsterren holds a strong market position as a trusted authority in the hospitality sector. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to its target audience of hotel owners and travelers. Technically, the website is built on WordPress with modern technologies including Bootstrap, React, and jQuery. It leverages Cloudflare for security and performance, Google Analytics and Facebook Pixel for tracking, and includes a cookie consent mechanism compliant with GDPR. Security posture is strong with HTTPS enforced and bot mitigation via Cloudflare Turnstile and Google reCAPTCHA, though some security headers could be explicitly added for enhanced protection. Overall, the website demonstrates good privacy compliance, business credibility, and technical maturity. No critical vulnerabilities or suspicious content were detected. The domain registration details align well with the business claims, supporting legitimacy and trustworthiness. Strategic improvements could focus on publishing formal security policies and enhancing accessibility features.

Y

YWCA

ywca.org

64

YWCA is a well-established nonprofit organization dedicated to eliminating racism, empowering women, and promoting peace, justice, freedom, and dignity for all. The website reflects a professional and consistent brand presence with a clear mission targeting a general audience interested in social justice and empowerment. The organization maintains an active social media presence across major platforms, enhancing its outreach and engagement. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including jQuery, Google Tag Manager, and various analytics and marketing pixels. The site is secured with HTTPS and HSTS, indicating a strong baseline security posture. Performance and mobile optimization are good, though accessibility features could be improved. Security-wise, the site implements essential protections such as HTTPS and reCAPTCHA v3, but lacks some advanced security headers and does not publicly disclose a security policy or incident response plan. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partially addressed with a cookie consent banner, but explicit privacy and terms of service documents were not found in the provided content. Overall, the website presents a low-risk profile with strong business credibility and a good security baseline. Strategic improvements in privacy documentation, security headers, and accessibility would further enhance trust and compliance.

B

BIO COMPANY SE

biocompany.de

50

BIO COMPANY SE operates as a regional organic supermarket chain primarily serving Berlin, Brandenburg, and Sachsen since 1999. The company focuses on providing high-quality, sustainable, and regional organic food products, supported by a strong online presence including an e-commerce shop, newsletter, and customer loyalty programs. Their market position is that of a trusted regional leader in organic retail with a medium-sized business footprint. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Swiper.js, alongside specialized services like Matomo for analytics, Brevo for newsletters, and Uberall for store location mapping. The site is hosted on rzone.de infrastructure and uses a MODX CMS platform. Performance and mobile optimization are good, with a comprehensive cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and manages cookie consent effectively. However, it lacks publicly available formal security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, indicating legitimacy and trustworthiness. Overall, BIO COMPANY SE's website is professional, secure, and compliant with privacy regulations, supporting its business credibility and customer trust. Strategic improvements could focus on publishing formal security policies and enhancing security headers to further strengthen the security posture.

A

AGC Inc.

agc.com

60

AGC Inc. is a large multinational enterprise specializing in manufacturing and technology sectors including glass, electronics, chemicals, life sciences, and ceramics. The company positions itself as an innovator with a strong focus on sustainability and corporate governance. The website is professionally designed, content-rich, and targets a broad audience including investors, customers, and partners. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and explicit security policies added. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site reflects a mature digital presence consistent with a large enterprise, though WHOIS data is missing or obscured, which slightly impacts trust assessment.

M

MetroComm AG

leaderdigital.ch

49

LEADER Digital is a well-established regional business media portal serving the Eastern Switzerland economic community. It offers a comprehensive range of services including news, event listings, magazines, awards, and advertising opportunities. The website is professionally designed with consistent branding and targets primarily businesses, entrepreneurs, and organizations in the Ostschweiz region. The parent company is MetroComm AG, located in St.Gallen, Switzerland. Technically, the website employs modern web technologies such as jQuery, Owl Carousel, Google Analytics, Google Tag Manager, and Facebook Pixel. It uses the admiralCX content management system and demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate with asynchronous loading of scripts enhancing user experience. From a security perspective, the site uses HTTPS with anonymized IP tracking in analytics, but lacks explicit security headers and a dedicated security or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. Social media integration and contact information are clear and professional. Overall, the website is trustworthy, professional, and well-positioned in its market niche. Security and privacy practices can be improved to enhance compliance and user trust.

B

Big Time Gaming Pty Ltd

bigtimevegas.com

58

The website play.bigtimevegas.com/login serves as a login portal for Big Time Gaming's Big Time Vegas online gaming platform. It provides user authentication primarily through OAuth integrations with Facebook and Google, targeting online casino players and gamers. The site branding and footer link to Big Time Gaming Pty Ltd, indicating a legitimate business entity in the online gaming sector. However, the lack of WHOIS data for the subdomain is typical but limits direct verification of domain registration details. The privacy policy is present but basic, and no cookie consent mechanism is implemented, which may impact GDPR compliance. Technically, the site uses a modern frontend stack including Bootstrap 4.6, jQuery, and Google Analytics/Tag Manager for tracking. The site is mobile optimized with basic accessibility and SEO features. Security posture is moderate with OAuth login methods but lacks visible security headers and explicit security policies or incident response contacts. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the security posture is adequate but could be improved by implementing security headers, cookie consent, and clearer contact/security policies. The business credibility is supported by consistent branding and official company references. The site content relates to online gambling, which is age-restricted and thus rated as questionable content safety, suitable for mature audiences. Strategic recommendations include enhancing security headers, adding cookie consent for privacy compliance, publishing security and incident response policies, and conducting security audits of OAuth implementations to strengthen trust and compliance.

Zeal Optics operates a professional e-commerce website specializing in premium polarized sunglasses, ski goggles, and related accessories targeting outdoor enthusiasts and sports consumers. The brand emphasizes sustainability and quality, positioning itself as a niche player in the outdoor retail market. The website infrastructure leverages modern technologies including jQuery, Google Tag Manager, OneTrust for cookie consent, and Yottaa for performance optimization, hosted likely on Akamai CDN with SAP Commerce as the backend platform. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance including GDPR adherence. However, the absence of WHOIS registration details and lack of explicit security policy or incident response information slightly reduce trust. Overall, the site is well-designed, accessible, and trustworthy for its target audience.

A

ARO Treuhand GmbH

aro-treuhand.ch

50

ARO Treuhand GmbH is a Swiss fiduciary services company providing comprehensive accounting, tax, payroll, and business consulting services primarily to small and medium-sized enterprises across Switzerland. The company emphasizes a constructive and transparent partnership with clients, leveraging modern technologies and automated processes to deliver efficient and reliable solutions. Their market position is that of a trusted regional player with a focus on personalized service and professional expertise. Technically, the website is built on WordPress using the Themify Ultra theme and several professional plugins including Builder Slider Pro, Contact Form 7, and Complianz GDPR for cookie management. The site is well-optimized for mobile devices and includes modern security features such as HTTPS and Google reCAPTCHA v3 on forms. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks some advanced security headers and a dedicated security policy or vulnerability disclosure page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy digital presence with good compliance and security posture. Strategic improvements could include adding security headers, publishing a security policy, and implementing a security.txt file to further enhance transparency and security readiness.

C

Cornèr Banca SA

corner.ch

73

Cornèr Banca SA is a well-established Swiss private banking group with a history dating back to 1952. The company offers a comprehensive suite of financial services including private banking, loans, structured products, and digital banking solutions. Their market position is strong, supported by industry recognition such as ranking second in Switzerland for capital strength by The Banker TOP 1000 World Banks 2025. The website targets private clients, financial intermediaries, and institutional clients, emphasizing personalized portfolio management and investment advisory services. Technically, the website is built on OpenCms with modern JavaScript libraries like jQuery and Swiper, integrated with Adobe DTM for analytics and Google reCAPTCHA for security. The site is mobile optimized and SEO friendly, with a professional design and clear navigation.

C

Cornèr Bank Ltd.

cornercard.ch

73

Cornèrcard is a Swiss financial services provider specializing in Visa and Mastercard credit cards, prepaid cards, and related financial products. The company targets private and business clients in Switzerland, offering a variety of card options including cashback, travel, and social cause cards. Cornèrcard is part of the Cornèr Group, a reputable financial group in Switzerland, and enjoys strong market positioning supported by customer satisfaction awards and recognitions. The website provides comprehensive information about products, services, and customer support, including a dedicated mobile app for card management.

카

카페24 주식회사

cafe24corp.com

45

Cafe24 Corp. is a South Korean technology company specializing in providing a comprehensive global e-commerce platform. Their services include commerce platform solutions, global market expansion support, store and design services, marketing, hosting, and entrepreneurship education. The company positions itself as a leader in the Korean e-commerce ecosystem with a strong partner network and a focus on enabling global online business success. The website content is professionally presented in Korean with multilingual support, targeting online merchants and businesses seeking e-commerce solutions. Technically, the website uses modern JavaScript libraries such as jQuery 3.6.0 and Google Tag Manager for analytics and marketing. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some accessibility features are basic, and no CMS or specific frameworks are detected. Hosting appears to be managed internally or through Cafe24's own infrastructure. From a security perspective, the site enforces HTTPS and uses standard tracking scripts without visible vulnerabilities or exposed sensitive data. However, the absence of security headers and cookie consent mechanisms indicates room for improvement in security best practices and privacy compliance. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, though the website content and branding suggest a legitimate business. Overall, Cafe24's website is a well-structured, professional platform supporting a large e-commerce business. Strategic recommendations include enhancing security headers, implementing GDPR-compliant cookie consent, publishing security policies, and clarifying domain registration information to improve trust and compliance.

L

Landkreis Görlitz

landkreis.gr

55

Landkreis Görlitz operates an official regional government website providing comprehensive information and services related to district administration, economy, tourism, education, and social affairs. The site targets residents and visitors of the Landkreis Görlitz region in Germany, offering multilingual content and online citizen services including appointment scheduling and online applications. The website is built on the active-City CMS platform and employs modern JavaScript libraries such as jQuery and Klaro for cookie consent, alongside Matomo for privacy-conscious analytics. From a technical perspective, the website demonstrates moderate performance and basic mobile optimization. Accessibility features are present but could be improved. Security practices include the use of S/MIME certificates for secure email communication and a GDPR-compliant cookie consent mechanism. However, the site lacks explicit HTTP security headers, a published security policy, and a vulnerability disclosure program, which are areas for improvement. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The domain registration data aligns well with the website content, supporting legitimacy. The security posture is adequate but could be enhanced by implementing recommended best practices. Privacy compliance is good, reflecting adherence to GDPR requirements. Strategic recommendations include enhancing security headers, publishing security and incident response policies, improving mobile and accessibility features, and establishing a vulnerability disclosure process to strengthen the site's security maturity and user trust.

L

Landkreis Görlitz

kreis-goerlitz.de

55

Landkreis Görlitz operates an official regional government website providing comprehensive information about district administration, services, tourism, education, and social topics. The site targets residents and visitors of the Görlitz district in Germany, offering multilingual content and online services such as appointment scheduling and online applications. The website is built on the active-City CMS platform and incorporates modern web technologies including jQuery, Klaro for cookie consent, and Matomo for privacy-focused analytics. Hosting is provided by plesk11.ncserve.de. Security practices include the use of S/MIME certificates for secure email communication and a cookie consent mechanism compliant with GDPR. However, explicit security headers and vulnerability disclosure policies are not evident, suggesting room for improvement in security posture. Overall, the website is professional, trustworthy, and serves as a reliable information portal for the district.

S

Simple Lift s.r.o.

simplelift.cz

48

Simple Lift s.r.o. is a Czech-based company specializing in the sale and servicing of material handling equipment including pallet trucks, forklifts, hand trucks, lifting platforms, and tables. The company operates an e-commerce platform targeting businesses and individuals in the Czech Republic and Slovakia, offering both new and used equipment as well as maintenance services. The website is professionally designed, mobile-optimized, and includes structured data to enhance search engine visibility. Contact information and customer reviews are prominently provided, supporting customer trust and engagement. Technically, the site is built on WordPress with WooCommerce and uses modern libraries such as jQuery and Bootstrap, supported by WP Rocket for performance optimization. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though additional security headers and incident response information could improve the security maturity. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the website represents a legitimate, medium-sized business with a solid digital presence and good operational transparency.

S

Simopt, s.r.o.

simopt.cz

50

Simopt, s.r.o. is a Czech Republic based technology company specializing in virtual reality, 3D projects, e-learning, mobile applications, and web development services. With over 30 years of experience, the company targets businesses and educational institutions seeking innovative digital solutions. The website presents a professional and consistent brand image, showcasing key services and client testimonials that reinforce its market position as a trusted local provider. Technically, the site employs modern JavaScript libraries and frameworks, including jQuery, YouTube API, and cookie consent tools, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, though it lacks some advanced accessibility features. Security posture is adequate with HTTPS implied but lacks visible security headers and published security policies. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the website is trustworthy and professional, though the absence of WHOIS data reduces domain trust slightly. Strategic improvements in security headers, incident response transparency, and WHOIS data visibility would enhance credibility and security.

E

EEM - Empresa de Eletricidade da Madeira

eem.pt

61

EEM - Empresa de Eletricidade da Madeira is a regional energy company focused on the production, transport, distribution, and commercialization of electricity in the Autonomous Region of Madeira, Portugal. The company positions itself as an environmentally sustainable energy provider, serving residential and commercial customers in the region. Their website reflects a medium-sized enterprise with a clear business model centered on energy services and sustainability. The digital presence is professional, with good content quality and consistent branding.

The website crashday.cz represents a small academic research team from the Institute of Forensic Engineering at Brno University of Technology, specializing in traffic accident analysis and automotive crash testing. The site serves as an informational platform showcasing their work and research activities. The technical infrastructure is based on a modern WordPress CMS with standard plugins and themes, hosted by WEDOS, a Czech hosting provider. The site is accessible via HTTPS with a valid SSL certificate, ensuring secure communication. However, the site lacks critical privacy and cookie policies, as well as explicit contact information, which limits its compliance with GDPR and general privacy best practices. Security posture is moderate with room for improvement in security headers and incident response disclosures. Overall, the site is professionally presented but minimalistic in content and compliance documentation.

Rezervacekluziste.cz is an online reservation platform dedicated to managing bookings and ticket sales for sports facilities in the municipality of Líbeznice, Czech Republic. Operated by BluePool s.r.o., the platform enables users to register, select dates, purchase tickets via PayU, and receive QR code tickets for entry. The service targets local residents and visitors seeking convenient access to municipal sports venues. The website presents a professional and consistent brand aligned with the municipality and operator, offering clear instructions and support contact information. Technically, the site employs modern JavaScript libraries, Google Fonts, and Google Analytics for user tracking, hosted likely via WEDOS, a Czech hosting provider.

CreativeGUERILLA is a small Czech Republic based creative agency specializing in idea generation and execution for notable clients such as Plzeňský Prazdroj, BAT, L'Oréal, and Coca-Cola. The website is minimalistic, providing basic information and a single email contact without additional business or compliance details. Technically, the site uses jQuery 3.6.0 and is hosted via Active24, but lacks modern security features such as HTTPS and security headers. No privacy or cookie policies are present, indicating limited GDPR compliance. The security posture is weak due to missing HTTPS and security headers, though no critical vulnerabilities were detected. Overall, the site is functional but basic, with room for improvement in security, compliance, and content richness.

D

Duncan-Parnell

duncan-parnell.com

65

Duncan-Parnell is a well-established company with over 75 years of experience specializing in survey equipment, geospatial technology, and custom printing solutions. The company serves a professional B2B audience including construction contractors, engineers, and architects primarily in the Southeastern United States. Their business model focuses on providing high-quality hardware, software, and services to support successful project execution. The website reflects a mature digital presence with multiple locations and a broad product catalog. Technically, the site uses modern frameworks like Bootstrap and integrates multiple analytics and marketing tools, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness somewhat, but the professional content and business information mitigate this risk. Overall, the site is trustworthy and professionally maintained.

F

Filmondo

filmondo.cz

52

Filmondo is a Czech creative studio specializing in video marketing and related services such as aerial drone photography, animation, photography, training, virtual tours, live streaming, and equipment rental. The company positions itself as a specialist with over seven years of experience and a substantial portfolio of references, targeting businesses and organizations seeking to enhance their brand through video content. The website is built on WordPress and employs modern web technologies including jQuery, Bootstrap, and various JavaScript libraries, with Google Analytics and Tag Manager integrated for user tracking. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and visible privacy or cookie policies. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and client testimonials indicate a legitimate and professional business. Overall, the site is well-designed, user-friendly, and content-rich, though improvements in privacy compliance and security headers are recommended.

Rinker Materials is a division of The QUIKRETE Companies specializing in the manufacturing and distribution of concrete pipe and related infrastructure products. The company targets construction professionals and infrastructure developers, offering a range of products including bridges, precast box culverts, end treatments, and specialty applications. The website reflects a well-established business with consistent branding and a clear market position within the transportation and manufacturing sectors. Technically, the website is built on WordPress with Bootstrap and uses modern libraries such as jQuery and Font Awesome. It integrates marketing and analytics tools including Google Tag Manager, Google Analytics, and HubSpot, alongside a cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks advanced security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected, but the absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the website presents a professional and trustworthy front for Rinker Materials, but the missing WHOIS information and lack of explicit security policies suggest areas for improvement to enhance trust and compliance.

D

Duncan-Parnell

duncanparnell.com

66

Duncan-Parnell is a well-established, family-owned business specializing in providing high-quality survey equipment, geospatial technology, and custom printing solutions primarily to construction contractors, engineers, surveyors, architects, and designers. With over 75 years of experience and multiple physical locations across the Southeastern United States, the company positions itself as a trusted partner offering both products and services including equipment rentals and support. The website reflects a professional B2B business model with a focus on customer service and industry-specific solutions. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, and Microsoft Clarity, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities, though there is room for improvement in implementing comprehensive security headers and explicit security policies. The absence of WHOIS data reduces domain trust verification, but the website content and business information strongly suggest legitimacy. Overall, the site is well-designed, mobile-optimized, and provides clear navigation and contact options, supporting a positive user experience.

N

Netigate

ntgt.de

59

Netigate operates a professional survey and feedback platform targeting businesses seeking employee, customer, and market insights. The website analyzed is a login portal supporting organizational and individual accounts, with accessibility features and links to legal and privacy policies hosted on official Netigate domains. The technical infrastructure is based on ASP.NET Web Forms hosted on Microsoft Azure DNS, using modern JavaScript libraries like jQuery. The site demonstrates moderate digital maturity with basic mobile optimization and accessibility compliance. Security posture is adequate with HTTPS usage and secure form handling, though explicit security headers and cookie consent mechanisms are absent. Overall, the site is trustworthy and business-focused with no signs of malicious activity or suspicious content.

F

FC Vysočina Jihlava

fcvysocina.cz

46

FC Vysočina Jihlava operates an official website serving as the primary digital platform for the football club. The site provides comprehensive information about the club, including team rosters, match schedules, ticketing, fan engagement, and historical archives. The club targets football fans and the local community, positioning itself as a regional sports entity competing in the Chance národní liga. The business model focuses on fan engagement, sponsorship visibility, and community presence. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and LightGallery, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS usage and cookie consent mechanisms, but lacks visible security headers and formal privacy or security policies. Overall, the domain is legitimate and well-established, consistent with the club's history. Recommendations include publishing privacy and terms of service policies, enhancing security headers, and providing clear contact information for security and business inquiries.

Z

Zoologická zahrada Jihlava, příspěvková organizace

zoojihlava.cz

57

Zoo Jihlava is a well-established zoological garden in the Czech Republic, operating since 2001. The organization provides animal exhibitions, educational programs, and various visitor services including events and guided tours. The website reflects a non-profit business model focused on community engagement and education, targeting families, children, and tourists. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the website is built on WordPress with modern libraries such as jQuery and Google Maps API integration. It uses HTTPS with a valid SSL certificate and implements cookie consent mechanisms compliant with GDPR. The site shows moderate performance and good mobile optimization, although accessibility features are basic. SEO is supported by the Yoast SEO plugin, enhancing search visibility. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX calls, but lacks explicit security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. Business credibility is supported by clear contact information, social media presence, and trust indicators such as organizational memberships. Overall, Zoo Jihlava's website demonstrates a solid digital presence with good security and privacy practices. Strategic improvements could include adding security headers, publishing a security policy, and enhancing accessibility. These steps would further strengthen the site's security posture and user trust.

F

Fundació ENT

fiscalidadresiduos.org

48

The website 'Observatorio Fiscalidad Residuos - ENT' is operated by Fundació ENT, a small non-profit organization founded in 2018 in Spain. It serves as an observatory focused on fiscal instruments related to waste management, providing updated data, studies, and case references primarily for public administrations and researchers. The site is well-structured, professionally designed, and offers relevant content in Spanish and Catalan, with an English summary available. Technically, it is built on WordPress with modern plugins and uses Google Analytics for user tracking. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks published privacy and security policies. Overall, the domain registration aligns well with the organization's identity, indicating legitimacy and trustworthiness.

I

InCommon

incommon.org

49

InCommon is a well-established organization founded in 2000, providing integrated identity and access management (IAM) services primarily for the education and research sectors. Their offerings include single sign-on, cloud access, federation services, eduroam wireless access, certificate services, and trusted access software solutions. The website reflects a strong community-driven approach, targeting students, faculty, staff, and researchers globally. The organization maintains a reputable market position as a leader in IAM for research and education communities. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and Cloudflare DNS/CDN services. The site is well-optimized for SEO, mobile-friendly, and accessible, with excellent design quality and user experience. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with good SSL configuration and employs Google reCAPTCHA v3 for form protection. DNSSEC is not enabled, and no explicit security headers were detected, which are areas for enhancement. The WHOIS data shows privacy protection typical for this sector, with a domain age consistent with the organization's history, supporting legitimacy. Overall, InCommon demonstrates a strong digital presence with professional content and solid security posture, though improvements in privacy compliance and DNS security would further strengthen their risk profile and trustworthiness.

S

Spectrum Ophthalmics

spectrum-uk.co.uk

63

Spectrum Ophthalmics is a UK-based supplier specializing in ophthalmology equipment, targeting healthcare professionals and clinics in the UK and Ireland. The company positions itself as a leading provider of advanced ophthalmic technology and solutions. The website reflects a professional and focused business model centered on healthcare equipment supply. Technically, the website is built on WordPress 6.0.1, utilizing modern analytics and marketing tools such as Google Analytics, Hotjar, and Cookiebot for cookie consent management. The site is mobile-optimized and SEO-friendly, providing a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, but lacks visible security headers and explicit security policies, which are recommended for improvement. The WHOIS data for the domain is unavailable due to a domain registration error indicating the domain name is invalid per Nominet UK rules, which raises concerns about domain legitimacy. Overall, the website is professional and safe, but the domain registration inconsistency should be addressed to enhance trust and credibility.

A

ARTOS, a.s.

nuo.sk

56

NUO.sk is a Slovak telecommunications service provider offering bundled high-speed internet, digital television with over 200 channels, and telephone services primarily targeting domestic households across Slovakia. The company operates through a network of regional partners, with ARTOS, a.s. as the main entity. The website presents a professional and consistent brand image with clear service descriptions and multiple contact options. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Bootstrap, AOS, and Leaflet, and integrates Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. WHOIS data aligns well with the website's business claims, indicating a legitimate and consistent registration. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy and professional online presence for NUO services.

I

INFINITY GROUP a.s.

infinitygroup.sk

48

INFINITY GROUP a.s. is a Slovak manufacturing company specializing in the production of shaped cut parts and weldments for construction, mining machinery, rail vehicles, and handling equipment. Established in 2008, the company leverages advanced technologies such as laser, plasma, and oxygen cutting, CNC machining, bending, surface treatment, and welding to deliver high-quality products. The company holds multiple certifications including ISO 9001 and CE standards, reinforcing its commitment to quality and compliance. The website targets industrial clients and businesses in the manufacturing sector, positioning itself as a reliable regional manufacturer with a solid market presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Isotope, Owl Carousel, and Google Fonts. It employs performance optimizations such as lazy loading and caching via WP Rocket, and integrates GDPR-compliant cookie consent mechanisms through the Complianz plugin. The site is mobile-optimized and SEO-friendly, though some lazy loading images show errors which may affect user experience. From a security perspective, the site uses HTTPS with DNSSEC enabled and integrates Google reCAPTCHA v3 for bot protection. However, it lacks explicit HTTP security headers and does not provide a dedicated security policy or incident response contact. No vulnerabilities or malicious content were detected, but improvements in security headers and broken image fixes are recommended to enhance security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility. The domain registration data aligns well with the business claims, showing a consistent and legitimate online presence. Strategic recommendations include implementing security headers, fixing broken images, and adding explicit security and incident response information to further strengthen trust and security.

P

pixelmolkerei AG

pixelmolkerei.ch

60

pixelmolkerei AG is a specialized company providing advanced CGI, 3D visualization, and VR/AR/MR solutions primarily for the healthcare sector. With offices in Switzerland and Canada, they serve medical professionals and healthcare institutions by delivering immersive training and marketing content. Their market position is strong, supported by long-term partnerships with reputable healthcare companies and positive client testimonials. The website reflects a professional and modern digital presence with rich multimedia content and interactive features. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics for user tracking. Security posture is good with HTTPS and CAPTCHA on forms, but lacks some security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and well-designed but could improve compliance and security transparency.

G

Panel de Control

gestiondecuenta.com

56

The website paneles.gestiondecuenta.com is a Spanish-language login portal designed for users to manage various services and applications through a centralized control panel. It targets a general audience likely consisting of existing customers or users of the service platform. The site offers language options linking to related domains in Galician, Catalan, English, and Portuguese, indicating a multi-regional approach. The business model appears to be service management, but no explicit company or business details are provided on the login page. The market position and company size cannot be determined from the available data. Technically, the site uses a standard modern web stack including jQuery 3.6.0, Bootstrap, and the Inspinia framework for UI. The site is mobile optimized with good design quality and user experience. However, no CMS or hosting provider information is discernible. Performance is moderate based on the technology used and page complexity. SEO and accessibility features are basic but functional. From a security perspective, the site uses HTTPS (implied by URL scheme) and employs secure form submission via POST. The password field includes a show/hide toggle for usability. However, no HTTP security headers (CSP, HSTS, etc.) are detected, and no anti-CSRF tokens are visible in the login form. There is no privacy or cookie policy present, nor any contact or incident response information, which limits compliance and trust. WHOIS data for the subdomain is unavailable, which is typical, but no registrar or domain creation data is found for the main domain, limiting trust assessment. Overall, the site is functional and professionally designed but lacks transparency and security best practices in several areas. The risk level is moderate with recommendations to improve security headers, privacy compliance, and contact transparency to enhance trust and regulatory adherence.

R

Rotopino.pl S.A.

narzedzia.pl

76

Narzedzia.pl is a large Polish e-commerce platform specializing in tools and power tools for both professional and home use. The website offers a broad product range with over 30,000 items, fast delivery options, and deferred payment methods, targeting professionals in construction, finishing, and gardening sectors as well as DIY enthusiasts. The business is operated by Rotopino.pl S.A., a known entity in the Polish market. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and Google Analytics 4, ensuring good performance and user experience. Security is well implemented with HTTPS, security headers, and cookie consent mechanisms, although no explicit security policy or incident response information is published. The WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but is common for commercial sites. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

S

stonebrook GmbH

stonebrook.de

49

stonebrook GmbH is a regional IT service provider based in Schwabmünchen, Germany, specializing in IT support and infrastructure solutions for small and medium-sized enterprises. Their offerings include IT management, server hosting, monitoring, patch management, and telephony solutions, positioning them as a reliable local partner for IT needs. The website is professionally designed, content-rich, and targets regional businesses effectively. Technically, the site runs on WordPress with modern plugins such as Contact Form 7 and Google reCAPTCHA, ensuring basic security and user interaction capabilities. The presence of SEO plugins and structured data indicates a focus on discoverability and user experience. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though additional security headers and explicit security policies could enhance protection. Privacy compliance is partially addressed with a GDPR privacy policy present, but lacks cookie consent mechanisms and detailed incident response information. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness. The site is accessible without WAF or blocking mechanisms, facilitating comprehensive analysis.

The website hanikvolleyball.cz is a Czech-language volleyball training and informational platform primarily targeting volleyball players and enthusiasts. It offers articles, videos, and information about volleyball camps, focusing on both beginner and advanced training. The site is small-scale, with a niche market position, and has been operational since 2002, indicating a stable presence in its domain. The business model revolves around content publishing and community engagement through social media channels. Technically, the site is built on WordPress with modern plugins for SEO, document embedding, and cookie consent. It uses Google Analytics and Tag Manager with IP anonymization, reflecting a moderate level of digital maturity. Security-wise, the site benefits from HTTPS and cookie consent but lacks visible security headers and formal privacy or security policies, which are areas for improvement. Overall, the site is safe, professional, and well-structured but would benefit from enhanced compliance and security practices.

Dampfers-Corner.de is a small German-language blog focused on the vaping community, offering an Easy Liquid Calculator tool and affiliate advertising primarily through Amazon. The site operates on WordPress with a basic but functional design and moderate technical infrastructure. It uses HTTPS and includes GDPR-compliant cookie consent and privacy policy pages, but lacks explicit security policies and terms of service. Contact is available only via a form, with no direct emails or phone numbers published. The security posture is moderate with room for improvement in security headers and incident response readiness. Overall, the site is accessible, safe, and serves a niche audience with basic content and tools.

B

Bigpoint

seafight.com

63

Seafight.com is an established online browser-based MMORPG pirate game operated by Bigpoint GmbH, targeting gamers interested in fantasy and pirate-themed multiplayer experiences. The website offers a rich user experience with real-time gameplay, social media integration, and community engagement. Technically, the site uses a mature technology stack including jQuery, Google Analytics, and hCaptcha for security and user interaction. The security posture is solid with HTTPS enforced and CAPTCHA protections, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site presents a professional and trustworthy gaming platform with a strong market position in its niche.