Security Directory

H

Historischer Verein Neuburg an der Donau e.V.

stadtmuseum-neuburg.de

55

The Stadtmuseum Neuburg an der Donau is a small non-profit cultural institution operated by the Historischer Verein Neuburg an der Donau e.V. The museum offers permanent and special exhibitions focused on the local history and culture of Neuburg an der Donau, targeting general public and cultural enthusiasts. The website is well-structured, content-rich, and provides comprehensive information about exhibitions, history, and visitor information. Technically, the site uses a legacy CMS (RoSys® Truevision) with Bootstrap and jQuery 1.9.1, which is outdated and poses some security risks. The site implements GDPR-compliant cookie consent with Matomo Analytics using IP anonymization, reflecting good privacy practices. However, no explicit security or incident response policies are published, and some security headers appear missing. Overall, the site is trustworthy and professional but would benefit from technical updates and enhanced security measures.

L

LANTECH INNOVATIONSZENTRUM GMBH

lantech.at

50

Lantech Innovationszentrum GmbH operates a technology and innovation center in Landeck, Austria, focusing on digitalization, technology, and services. Established in 2000, it hosts over 30 companies providing IT, construction, and innovation services regionally and internationally. The center offers office rentals, coworking spaces, seminar rooms, and a service office, supported by government and EU funding. The website is professionally designed, mobile-optimized, and uses TYPO3 CMS with modern web technologies. Privacy-conscious analytics via Matomo and a comprehensive cookie consent mechanism are implemented. Security posture is strong with HTTPS and security best practices, though explicit security policies and vulnerability disclosures are absent. Contact information is clear, enhancing business credibility.

S

Stadt Meerbusch

meerbusch.de

46

The website meerbusch.de serves as the official digital portal for the city of Meerbusch, Germany, providing comprehensive municipal information, citizen services, news, and event updates. It targets residents, local businesses, and visitors, offering a broad range of public services and administrative resources. The site is well-positioned as a local government authority platform with a clear focus on accessibility and user engagement.

F

Frankenhotel Drei Kronen Memmelsdorf GmbH

drei-kronen.de

43

Frankenhotel Drei Kronen Memmelsdorf GmbH operates a traditional hotel and brewery guesthouse located in Memmelsdorf near Bamberg, Germany. The business emphasizes a blend of Franconian culinary tradition and modern hospitality, offering hotel accommodations, brewery tours, event hosting, and regional tourism packages. The company holds recognized certifications such as the 3-Sterne-Superior hotel classification and the DEHOGA Umweltcheck Gold award, underscoring its commitment to quality and environmental responsibility. The website is professionally designed, mobile-optimized, and rich in content, targeting tourists, business travelers, and local visitors interested in authentic Franconian experiences. Technically, the site uses a modern stack including Bootstrap, jQuery, Matomo analytics, and Pimcore CMS, hosted on Hetzner infrastructure, ensuring reliable performance and good SEO practices.

O

OXID eSales AG

oxidforge.org

61

OXID eSales AG operates a professional knowledge base website dedicated to the OXID eShop e-commerce platform. The site targets developers, merchants, and partners by providing documentation, training, certification, modules, and community engagement channels. The company is well-established in Germany with a domain age consistent with its business history. Technically, the website uses modern front-end frameworks like Bootstrap and jQuery, hosted behind Cloudflare DNS, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. Overall, the site is professional, trustworthy, and content-rich, supporting a strong community and partner ecosystem.

A

AudioCodes

audiocodes.com

71

AudioCodes is a global enterprise technology company specializing in advanced voice networking and media processing solutions tailored for the digital workplace. Their offerings include Microsoft Teams integration, contact center innovations, meeting room solutions, and Voice.AI products, positioning them as a leading vendor in the telecommunications and technology sectors. The company targets enterprises and service providers, delivering both hardware and SaaS platforms to support unified communications and cloud migration strategies. Technically, the website demonstrates a mature digital infrastructure utilizing modern JavaScript libraries and analytics tools such as Google Tag Manager and ZoomInfo. The site is well-optimized for mobile and accessibility, with comprehensive SEO and structured navigation. Security best practices are observed with HTTPS enforcement and multiple security headers, although there is room for improvement in public vulnerability disclosure and incident response transparency. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms and GDPR adherence. The absence of WHOIS data reduces some trust but is mitigated by the professional presentation and external validation through partner portals and investor relations. Overall, AudioCodes presents a credible and professional online presence with a robust business model and technical foundation. Strategic recommendations include enhancing transparency around security incident response and vulnerability disclosures to further strengthen trust and compliance.

L

Landkreis Aschaffenburg

landkreis-aschaffenburg.de

62

Landkreis Aschaffenburg operates as a regional governmental authority in Bavaria, Germany, providing a broad range of public services and information to residents, businesses, and visitors. The website serves as a digital portal offering access to administrative services, event information, news updates, and contact details. It positions itself as a modern, accessible, and user-friendly platform reflecting the region's blend of tradition and innovation. The site targets local citizens and stakeholders, emphasizing community engagement and service transparency. Technically, the website employs a mature technology stack including jQuery, Owl Carousel, and accessibility tools like ReadSpeaker, indicating a commitment to usability and inclusivity. The CMS appears to be IKISS, a specialized platform for public sector websites. Security posture is solid with HTTPS enforced and cookie consent implemented, though some standard security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a professional and trustworthy digital presence aligned with its governmental role.

L

Landratsamt Altötting

lra-aoe.de

58

Landratsamt Altötting operates as the official local government authority for Landkreis Altötting in Germany, providing a comprehensive range of public services, information, and administrative support to residents, businesses, and visitors. The website serves as a central portal for accessing online services, news updates, forms, and contact information, reflecting a strong commitment to transparency and community engagement. The site is well-positioned as a trusted government resource within its regional jurisdiction.

K

kajado GmbH

literaturlandwestfalen.de

42

Literaturland Westfalen is a cultural network platform focused on promoting literary events, festivals, and activities in the Westfalen region of Germany. The website serves as an information hub offering an event calendar, network details, interactive maps, and literature tips, targeting a general audience interested in literature and culture. The platform operates likely as a small non-profit entity supported by regional cultural institutions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries such as jQuery and Slick Carousel, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and secure forms, though lacking advanced security headers and explicit incident response policies. Privacy compliance is partial with a clear privacy policy but no cookie consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

W

Wohnungsgenossenschaft Duisburg-Hamborn eG

hamborner-woge.de

62

Wohnungsgenossenschaft Duisburg-Hamborn eG operates as a housing cooperative focused on providing rental apartments and related housing services in the Duisburg-Hamborn area of Germany. The website serves as an information portal for tenants and prospective members, offering details about housing offers, membership, events, and contact information. The organization maintains a local market position with a medium-sized operational scale and targets residents seeking affordable and community-oriented housing solutions. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and Font Awesome, with integrated accessibility features and mobile optimization. Analytics are handled via Piwik, and cookie consent is managed through Cookiebot, reflecting a strong commitment to privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although formal security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting a positive user experience and business credibility.

W

Wohnungsgenossenschaft Duisburg-Mitte eG

wgd-mitte.de

59

Wohnungsgenossenschaft Duisburg-Mitte eG is a well-established housing cooperative based in Duisburg, Germany, with a history spanning over 125 years. The organization focuses on providing affordable, needs-based housing, modernizing properties with energy-efficient solutions, and fostering social engagement within the community. Their services include rental housing, guest apartments, repair services, and social programs, targeting local residents and cooperative members. The website reflects a professional and consistent brand image with clear contact information and active social media presence. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and various UI libraries, ensuring good mobile responsiveness and user experience. However, there is no indication of a CMS, suggesting a custom-built or static site. Performance is moderate with room for optimization. SEO and accessibility are basic to good but could be improved further. From a security perspective, the site uses HTTPS but lacks visible security headers and a vulnerability disclosure policy. No cookie consent mechanism is present, which is a compliance gap under GDPR. The WHOIS data aligns well with the business claims, indicating legitimacy and consistent domain registration practices. Overall, the website is trustworthy and professional but would benefit from enhanced security measures, privacy compliance improvements, and formalized policies to strengthen user trust and regulatory adherence.

A

Arbeitsgemeinschaft Duisburger Wohnungsgenossenschaften

duisburger-wohnungsgenossenschaften.de

39

Die Duisburger Wohnungsgenossenschaften sind ein Verbund von acht regionalen Wohnungsgenossenschaften, die zusammen rund 15.000 genossenschaftliche Wohnungen in Duisburg anbieten. Sie fokussieren sich auf bezahlbaren und sicheren Wohnraum, fördern Karrieren durch Ausbildungsplätze und engagieren sich sozial in der Region. Die Website präsentiert sich als professionell und gut strukturiert mit klaren Informationen zu den Partnergenossenschaften und deren Angeboten. Technisch basiert die Seite auf bewährten Frontend-Technologien wie Bootstrap und jQuery, ist mobil optimiert und bietet eine moderate Performance. Sicherheitsrelevante Maßnahmen wie Security Headers oder Cookie-Consent-Mechanismen sind nicht explizit erkennbar, was Verbesserungspotential darstellt. Die Domainregistrierung ist konsistent und legitim, was die Vertrauenswürdigkeit der Website unterstützt.

F

Förderverein für regionale Entwicklung e.V.

intranetdienst.de

61

The website www.intranetdienst.de represents a small German-based organization, Förderverein für regionale Entwicklung e.V., offering a secure, web-based intranet system tailored for various sectors including companies, municipalities, educational institutions, and non-profits. The platform provides a comprehensive suite of modules such as document management, event planning, user rights management, and mobile app integration, positioning itself as a niche provider focused on efficient workplace communication and organization. The site is professionally designed with good content quality, clear navigation, and responsive design, supporting a positive user experience.

EUV Stadtbetrieb Castrop-Rauxel -AöR- is a municipal utility company serving the city of Castrop-Rauxel, Germany. The organization provides essential public services including waste disposal, street cleaning, winter services, infrastructure maintenance, environmental protection, and property tax collection. The website is designed to serve local residents and businesses with information and service portals. Technically, the site is built on TYPO3 CMS with common frontend libraries such as jQuery and Bootstrap, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks published security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, reflecting its public sector nature.

VABANQUE, spol. s r.o. is a Czech Republic based full-service advertising and communication agency with over 15 years of experience. The company offers a broad range of marketing and branding services including 3D modeling, packaging design, web development, video production, and event promotion. Their client portfolio includes notable brands and they emphasize tailored marketing solutions to strengthen client market positions. The website is professionally designed with clear navigation and contact information, reflecting a stable and credible business presence. Technically, the site uses common web technologies such as jQuery, Google Analytics, and Google Tag Manager, with moderate performance and basic mobile optimization. Security posture is average with HTTPS usage but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy but could improve in privacy and security transparency.

A

Archeopark Chotěbuz-Podobora

archeoparkchotebuz.cz

54

Archeopark Chotěbuz-Podobora is a cultural and archaeological site in the Czech Republic, offering educational and family-oriented experiences centered on prehistoric and early medieval history. The website serves as an official portal providing information about the park, events, exhibitions, and visitor information. Technically, the site is built on WordPress with modern front-end technologies like Bootstrap and jQuery, delivering a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced, though lacking some security headers and cookie consent mechanisms. The absence of WHOIS data limits domain trust verification but the site’s content and partner affiliations support its legitimacy. Overall, the site is well-positioned as a regional cultural attraction with good digital maturity but could improve security and privacy compliance.

V

Vimec France Accessibilite sarl

vimecfrance.fr

50

Vimec France Accessibilite sarl is a well-established French company specializing in custom private home elevators and accessibility solutions. With over 40 years in the industry and more than 15,000 installations across France, Vimec holds a leading market position. Their product range includes private elevators, platform lifts, stairlifts, and mobility aids tailored for residential use. The website reflects a professional and consistent brand image targeting individuals and professionals seeking home mobility solutions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates analytics tools like Google Analytics and Facebook Pixel, indicating a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Privacy compliance is well addressed with clear cookie and privacy policies aligned with GDPR. Overall, the site is trustworthy, user-friendly, and provides comprehensive business information.

O

One World Romania

oneworld.ro

47

One World Romania is a well-established non-profit organization dedicated to promoting documentary films through its flagship One World Romania festival and related cultural activities such as workshops and film tours. The organization targets documentary enthusiasts, educators, and the general public interested in socially relevant cinema. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern front-end technologies including Bootstrap and jQuery, hosted on a Romanian hosting provider, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a cookie policy present but no detailed privacy or incident response policies. Social media integration and newsletter subscription indicate active community engagement. Overall, the domain registration data aligns well with the website's claims, supporting legitimacy and trustworthiness.

HIT OFFICE, s.r.o. is a Czech-based company specializing in office supplies and food packaging products, offering both standard and custom manufacturing solutions. The company operates a multilingual website with an integrated e-shop, targeting business customers in need of office and food packaging materials. The website demonstrates a solid market position supported by multiple certifications such as FSC, ISO, and BRC, and showcases awards that emphasize quality and sustainability. The company was founded in 1994, indicating a mature presence in its sector. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Select2, Swiper, and Google services such as reCAPTCHA and Analytics. The site is mobile-optimized with good navigation and content quality, although some accessibility and SEO aspects could be improved. Security posture is generally good with HTTPS enforced and reCAPTCHA protecting forms, but lacks some security headers and explicit cookie consent mechanisms. The absence of WHOIS data is a notable gap, reducing transparency and trustworthiness from a domain registration perspective. However, the website content, certifications, and business information support the legitimacy of the company. No critical security vulnerabilities or adult content were detected, and the site appears safe for general audiences. Overall, HIT OFFICE's website is professional and functional, with room for improvement in privacy compliance and security best practices. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response policies, and providing clearer contact information for data protection officers.

D

Die Länderbahn CZ s.r.o.

laenderbahn.cz

46

Die Länderbahn CZ s.r.o. is a private regional railway operator active in the Czech Republic since 2010, with a Czech subsidiary founded in 2019. The company operates under the parent Die Länderbahn GmbH DLB and is part of the NETINERA group, itself linked to Ferrovie dello Stato Italiane. The website targets regional travelers in Liberec, Českolipsko, and Lounsko areas, offering train schedules, tariffs, and tourist information. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google services, providing a responsive and user-friendly experience. Security posture is generally good with HTTPS and reCAPTCHA usage, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which reduces domain trust but the website content and business information appear consistent and professional. Overall, the site is a reliable source for regional rail transport information with room for security and privacy improvements.

GW Train Regio a.s. operates regional train services across multiple regions in the Czech Republic, providing transportation solutions with a focus on passenger convenience through online ticket sales and timely operational updates. The company maintains a professional web presence with clear branding, comprehensive contact information, and certifications that enhance trust. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Google services for analytics and security, and implements a robust cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though some HTTP security headers could be improved. Overall, the website is accessible, well-structured, and serves its target audience effectively.

DanCzek Teplice a.s. is a leading distributor of cigars, cigarillos, selected cigarette types, and tobacco products in the Czech Republic, targeting adult consumers and tobacco retailers. The website reflects a professional retail and wholesale business model with a clear focus on tobacco product distribution and a retail network. Technically, the website uses modern frontend technologies such as jQuery, Bootstrap, and FontAwesome, providing a responsive and visually consistent user experience. However, the site lacks visible security headers, privacy policies, and contact information, which are critical for trust and compliance. The WHOIS data is missing or inaccessible, raising concerns about domain registration legitimacy. Overall, the site is functional and well-branded but requires improvements in security posture and compliance documentation.

P

Klub Pánů z Ponožkovic - Barevné ponožky pro kavalíry

ponozkovice.cz

54

The website www.ponozkovice.cz represents a niche retail subscription club focused on delivering colorful socks monthly to its members. The business model revolves around membership subscriptions and gifting options, targeting consumers interested in unique and vibrant sock products, primarily in the Czech Republic. The site is well-branded with consistent design and clear navigation, supported by social media presence on Facebook and Instagram. Technically, the site uses a modern JavaScript stack including jQuery, Bootstrap, and Google Tag Manager, indicating moderate digital maturity and good mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and published privacy policies. Cookie consent is implemented comprehensively with granular user controls and partner disclosures. However, the absence of WHOIS data and lack of direct contact information reduce overall trust and business credibility. Strategic improvements in transparency, security headers, and contact availability would enhance the site's trustworthiness and compliance.

I

International Water Association

worldwatercongress.org

45

The International Water Association operates the IWA World Water Congress & Exhibition, a leading biennial global event for water sector professionals. The website serves as the official platform for the 2026 Congress in Glasgow, providing comprehensive information about the event, its programme, and related activities. The site targets a professional audience including utility leaders, researchers, government officials, and allied sectors. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled, though improvements are recommended in security headers and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission and market position.

H

Hakuv parni pivovar s.r.o.

hpp.beer

54

Hákův parní pivovar is a small Czech craft brewery established in 2018, specializing in authentic Czech craft beer with a strong local presence. The company operates multiple pubs and hostinec locations, offers gift packages, and actively participates in charitable projects, enhancing its community engagement and trustworthiness. The website reflects a professional and consistent brand image targeting craft beer enthusiasts and local customers. Technically, the site is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. However, there are gaps in privacy compliance and security best practices, such as missing privacy and cookie policies and lack of security headers. The domain registration data is consistent and supports the legitimacy of the business. Overall, the website is functional and trustworthy but would benefit from enhanced security and compliance measures.

A

Arc network

hrtechnologyconference.com

53

The HR Technology Conference website represents a large-scale, well-established event organizer specializing in HR technology conferences and expos. The company, Arc network, positions itself as a leader in the HR tech event space, hosting the world's largest expo of its kind with extensive educational sessions, networking opportunities, and industry awards. The website content is professionally curated, targeting HR leaders, industry professionals, exhibitors, and sponsors, with a strong emphasis on innovation and transformation in HR practices. Technically, the site leverages a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and other marketing and analytics tools. It is built on the SHOWOFF CMS platform by ASP.events, optimized for mobile and accessibility, and employs HTTPS with good SSL configuration. The site integrates multiple third-party scripts for tracking and advertising, reflecting a mature digital marketing approach. Security posture is solid with HTTPS and secure form handling, though some standard security headers are not explicitly detected. Privacy compliance is partially addressed with a comprehensive privacy policy linked externally, but lacks an explicit cookie consent mechanism. No visible security policy or incident response contacts are found, and WHOIS data is missing, which slightly reduces trust but is not uncommon for event domains. Overall, the website is professional, content-rich, and trustworthy from a business perspective, with room for improvement in privacy compliance and security transparency.

F

First information systems, s.r.o.

buildary.online

48

Buildary.online is a cloud-based construction project diary and management software provided by First information systems, s.r.o., targeting construction professionals in the Czech and Slovak Republics. The platform offers modules for project diary, task management, and construction works reporting, emphasizing compliance with legislation and ease of use. The website is professionally designed using Joomla CMS and hosted on Microsoft Azure, ensuring reliable infrastructure and security. Multiple marketing and analytics tools are integrated, including Google Analytics, Facebook Pixel, and Hotjar, with a cookie consent mechanism in place. However, the site lacks explicit privacy policy and terms of service pages, which are recommended for full compliance and transparency. Security posture is good with HTTPS and reputable hosting but could be improved by adding explicit security headers and a vulnerability disclosure policy.

N

New/Mode

newmode.net

66

New/Mode is a technology company specializing in providing an empowerment and community action platform designed to help non-profits, unions, and advocacy groups amplify their voices and launch campaigns efficiently. The platform offers a suite of tools including smart petitions, email outreach, click-to-call, and campaign analytics, positioning itself as a trusted partner for leading campaigners globally. The website is built on HubSpot CMS and integrates modern analytics and marketing technologies, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, New/Mode presents a professional, credible, and secure online presence suitable for its target audience.

S

SOPREMA GmbH

soprema.de

72

SOPREMA GmbH is a leading German manufacturer specializing in sealing systems, insulation materials, and sustainable building solutions such as photovoltaic and green roof systems. The company targets construction professionals, architects, and planners, offering a broad portfolio of products and technical services. Their market position is strong within the manufacturing sector, emphasizing innovation and sustainability. The website is built on TYPO3 CMS and incorporates modern web technologies including Bootstrap, jQuery, and Font Awesome, ensuring a responsive and accessible user experience. Hosting is managed via Gandi.net, a reputable provider. Security posture is solid with HTTPS enforced, cookie consent mechanisms in place, and use of analytics tools respecting user privacy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the site is professional, trustworthy, and well-optimized for its audience.

B

Budvarka Budvar

budvarka-budvar.cz

57

Budvarka Budvar operates as the original restaurant of the Budějovický Budvar brewery located in České Budějovice, Czech Republic. The business focuses on serving a full range of beers from the national brewery alongside traditional Czech and international cuisine, targeting local residents and tourists interested in authentic beer and dining experiences. The website reflects a small hospitality business with consistent branding and a clear market position as a concept restaurant for the Budvar brand. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and various UI libraries, built on the Smarty CMS. The site is mobile optimized with good SEO practices and moderate performance. HTTPS is enforced, and a cookie consent mechanism is implemented, indicating basic privacy compliance. However, the absence of privacy and terms of service pages limits full compliance. From a security perspective, the site uses HTTPS but lacks visible security headers and formal security policies. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is unavailable, which reduces domain registration trust but does not negate the legitimacy suggested by the website content and brand association. Overall, the website presents a professional and trustworthy front for a small hospitality business with room for improvement in privacy documentation and security hardening. Strategic recommendations include adding privacy and terms policies, implementing security headers, and publishing vulnerability disclosure information to enhance trust and compliance.

C

Corel Corporation

officecommunity.com

67

WordPerfect, under Corel Corporation, offers a legacy office suite product line targeting individuals, businesses, and educational institutions. The website provides comprehensive support resources including tutorials, downloads, orders, and account management. The business model centers on software sales and licensing with a focus on niche market segments. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site employs modern web technologies such as jQuery, Bootstrap, Google Tag Manager, and Optimizely, indicating a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of a dedicated security policy or vulnerability disclosure page is noted. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the lack of WHOIS registration data for the domain www.wordperfect.com is a concern, suggesting possible privacy protection or domain aliasing. Overall, the website is trustworthy and professional but would benefit from enhanced transparency in security policies and domain registration details.

C

Corel Corporation

wordperfect.com

67

The website www.wordperfect.com serves as the official portal for the WordPerfect family of productivity software products, including office suites and PDF tools. It targets individuals, businesses, government, and educational institutions with a variety of licensing options. The site is professionally designed, with clear navigation and a consistent brand presence aligned with Corel Corporation and its parent company Alludo. The business model focuses on software sales and licensing, maintaining a niche but established market position in office productivity software. Technically, the site employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS enforcement and trusted certification badges, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure mechanisms, and enhancing accessibility.

C

Corel Corporation

videostudiopro.com

50

The website www.videostudiopro.com represents the VideoStudio Pro family of video editing software products by Corel Corporation, reimagined by Alludo. It targets individual consumers as well as business and education sectors, offering multiple product tiers, licensing options, free trials, and extensive learning resources. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, it employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Optimizely, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain is a notable anomaly, possibly due to privacy protection or recent registration, but the website's professional content and association with Corel and Alludo mitigate immediate trust concerns. Overall, the site is reliable and well-maintained, suitable for its target audience.

C

Corel Corporation

paintshoppro.com

62

The website www.paintshoppro.com represents the official online presence for PaintShop Pro, a photo editing software product line owned by Corel Corporation. The site offers comprehensive product information, free trials, special offers, and educational resources targeting individual photographers, business, and education sectors. The business model revolves around software sales, licensing programs, and bundled product offerings. The website is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and Optimizely for analytics and A/B testing. It is mobile optimized and uses HTTPS with a cookie consent mechanism, indicating a good level of digital maturity. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and manages user consent for cookies and tracking. However, explicit security headers are not detected, and no public security policy or incident response information is available. The absence of WHOIS data for the domain is a notable gap, though the site’s professional appearance and linkage to Corel and Alludo domains mitigate some concerns. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

C

Corel Corporation

painterartist.com

63

The website www.painterartist.com represents the official online presence for the Painter family of digital painting software products, owned by Corel Corporation and reimagined by its parent company Alludo. It targets individual artists, businesses, and educational institutions with a comprehensive product lineup including Painter, Painter Essentials, and ParticleShop. The site offers product information, free trials, tutorials, and licensing options, positioning itself as a mature player in the digital art software market. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed privacy and cookie policies. However, the absence of WHOIS data and explicit security policies slightly detracts from trust. Overall, the site is professional, content-rich, and trustworthy, though improvements in transparency and security disclosures are recommended.

B

Bohemiasoft s.r.o.

dropareal.cz

52

Dropareal is a Czech Republic-based e-commerce platform specializing in dropshipping services. It enables entrepreneurs to launch their own online stores without upfront inventory costs by partnering with 33 wholesalers offering over 100,000 products. The platform handles order fulfillment and customer service through wholesalers, allowing users to focus on marketing and sales. The website is professionally designed, mobile-optimized, and provides comprehensive legal and privacy documentation, including GDPR compliance and cookie consent mechanisms. Technically, Dropareal employs a modern tech stack including Bootstrap, jQuery, Google Fonts, and various third-party analytics and retargeting tools such as Google Analytics, Facebook Ads, and Seznam Retargeting. The site uses HTTPS with good SSL configuration and secure form handling, though it lacks explicit HTTP security headers and a dedicated security policy page. The website performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site demonstrates good practices with encrypted connections and cookie consent but could improve by implementing additional security headers and providing incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms. Business credibility is supported by clear company information, contact details, and legal terms. Overall, Dropareal presents a trustworthy and professional dropshipping platform with solid technical and privacy foundations. Recommendations include enhancing security headers, adding incident response information, and improving accessibility to further strengthen the security posture and user trust.

B

Bohemiasoft s.r.o.

shopareal.cz

51

Shopareal, operated by Bohemiasoft s.r.o., is a specialized e-commerce platform enabling users to embed their products on any website, effectively transforming any site into a functional online store with shopping cart capabilities. The platform targets small to medium-sized e-commerce businesses and website owners seeking to expand their sales channels without building a full e-shop from scratch. The business model is subscription-based SaaS, offering different plans to suit existing e-shop owners or those starting fresh. Technically, the website employs modern web technologies including Bootstrap, jQuery, and popular JavaScript libraries, ensuring a responsive and user-friendly experience. Integration with analytics tools like Google Analytics and Hotjar indicates a mature digital infrastructure focused on user behavior insights. The site is mobile-optimized and SEO-friendly, though accessibility features could be improved. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, the absence of security headers and lack of explicit incident response or vulnerability disclosure policies suggest areas for improvement. The missing WHOIS data for the domain is a notable concern, impacting domain trustworthiness and legitimacy verification. Overall, Shopareal presents a professional and functional e-commerce solution with good privacy compliance and user experience. Strategic enhancements in security practices and domain registration transparency would further strengthen its market position and trustworthiness.

B

Bohemiasoft s.r.o.

zombeek.cz

50

Zombeek.cz is a Czech-based online platform operated by Bohemiasoft s.r.o. that provides users with a free, easy-to-use website builder featuring responsive templates, drag-and-drop editing, and e-shop integration. The platform targets individuals and small businesses seeking to quickly create professional websites without technical expertise. The website demonstrates a solid technical infrastructure leveraging modern web technologies and third-party services such as Google reCAPTCHA and analytics tools. Security posture is generally strong with HTTPS enforcement and anti-bot measures, though some security headers are missing and no formal security policy is published. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned privacy policies. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Overall, Zombeek.cz presents a professional and trustworthy service with room for improvement in security transparency and domain registration clarity.

S

Slovenská produkčná, a.s.

valetin.sk

60

Valetin is a Slovak video advertising platform that aggregates inventory from 8 Slovak publishers with over 30 portals, enabling advertisers to purchase video ad formats with unified campaign settings and without overlaps. The platform targets advertisers seeking broad reach and inventory in the Slovak market. Technically, the website uses a modern JavaScript stack with multiple libraries for UI and analytics, hosted on a domain associated with Slovenská produkčná, a.s., a reputable Slovak media company. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is basic with policies present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in the Slovak media advertising sector.

S

Saint-Gobain Construction Products CZ a.s.

e-radce.cz

56

The website e-radce.cz represents Saint-Gobain Construction Products CZ a.s., a significant player in the Czech construction materials market, specializing in high-quality facade and insulation systems, plasters, coatings, and adhesives. The site targets both professional and consumer audiences interested in construction and renovation solutions, offering detailed guides, pricing, and multimedia content to support product selection and application. The business model is a hybrid B2B and B2C supplier and manufacturer, with a medium-sized market presence and consistent branding. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and various UI plugins, supported by Google Analytics and Tag Manager for tracking. Hosting appears stable and consistent with the registrar Active24. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate, with asynchronous loading of scripts enhancing user experience. From a security perspective, the site uses HTTPS (assumed from modern standards though not explicitly confirmed in HTML), but lacks visible security headers and explicit security or privacy policies, which are areas for improvement. Cookie consent is implemented, indicating some GDPR compliance awareness. No forms or sensitive data collection points are present on the main page, reducing attack surface. No WAF or blocking mechanisms were detected, and no suspicious or malicious content was found. Overall, the website is professionally maintained with moderate technical maturity and business credibility. Key recommendations include adding explicit privacy and security policies, implementing security headers, and enhancing accessibility and SEO features to improve compliance and trustworthiness.

B

BSH domácí spotřebiče s.r.o.

brandexperiencecenter.cz

63

The Brand Experience Center website represents a showroom and experiential center for premium home appliance brands Bosch, Siemens, and Gaggenau. It targets customers interested in selecting household appliances and attending culinary events, offering reservation services and expert advice. The business is positioned as a medium-sized retail entity operating in the Czech Republic, with a domain age consistent with its operational history since 2016. The website content is professionally presented, with clear branding and consistent messaging aligned with the parent company BSH Hausgeräte GmbH. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Owl Carousel, ensuring a responsive and user-friendly experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. No blocking or WAF interference was detected, and privacy compliance is well addressed with comprehensive policies in Czech. Overall, the site demonstrates a solid digital presence with good trust indicators and business credibility.

T

Tympanum — Audioknihy

tympanum.cz

59

Tympanum.cz is a Czech Republic-based e-commerce platform specializing in the sale of audiobooks. Established since 2006, it offers a wide catalog of audiobook titles with previews and promotional banners. The website targets Czech-speaking consumers interested in audiobooks and related media. The platform uses modern web technologies including jQuery, jPlayer, and Google Tag Manager for analytics and advertising. While the site demonstrates good content quality, navigation, and mobile optimization, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS usage implied but missing explicit security headers. No contact emails or phone numbers were found in the provided content, which may affect user trust and support accessibility. Overall, Tympanum.cz is a legitimate and established business with room for improvement in privacy and security transparency.

V

Víceúčelové sportoviště

sportvpolici.cz

53

The website 'Sport v Polici nad Metují' serves as a regional sports and recreational portal offering multi-purpose sports facilities, including running, cycling, swimming, and skiing activities in Police nad Metují, Czech Republic. It targets local residents and tourists interested in outdoor sports and leisure activities. The site provides booking options, event calendars, and contact information, positioning itself as a community-focused sports service provider. Technically, the website employs modern JavaScript libraries such as jQuery, jCarousel, and Magnific Popup, and integrates Google Analytics for visitor tracking. The site is mobile responsive and uses HTTPS, ensuring secure communication. However, it lacks explicit privacy and cookie policies and does not implement security headers, which are areas for improvement. From a security perspective, the site shows a moderate posture with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data reduces domain trustworthiness, but the presence of clear contact details and certifications like the Czech Quality System badge enhances credibility. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the site is functional and professionally presented but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

M

MERKURIA - ARTES a.s.

branocentrum.cz

44

MERKURIA - ARTES a.s. operates the website branocentrum.cz as an authorized dealer and service provider for BRANO brand lifting and door closing technology. The company offers a broad range of industrial lifting equipment and related products, targeting industrial and commercial customers primarily in the Czech Republic. The website features an e-commerce platform with product listings, pricing, and purchase options, supported by a physical showroom and service center. Technically, the site uses legacy JavaScript libraries and a CMS platform called Webareal, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks modern security headers and uses outdated libraries, posing potential risks. WHOIS data is unavailable, reducing domain trust from a registration perspective, but business information and contact details are clearly presented, supporting legitimacy. Privacy compliance is basic with cookie consent but no explicit privacy policy page found. Overall, the site is professional and trustworthy for its business domain but would benefit from technical and security improvements.

M

MERKURIA-ARTES a. s.

nilfiskcentrum.cz

42

Nilfiskcentrum.cz is a Czech Republic-based specialized retailer and service provider focused on professional cleaning equipment, primarily the Nilfisk and Nilfisk Alto brands. The company MERKURIA-ARTES a. s. operates the site, offering a broad range of cleaning machines, accessories, and related services including machine rental and ecological disposal. The website targets professional cleaning service providers and end customers within the Czech market. The business model is primarily e-commerce combined with service offerings, positioning itself as a regional leader in cleaning technology retail and support. Technically, the website runs on the BohemiaSoft e-commerce platform, utilizing a mix of legacy and modern JavaScript libraries such as jQuery 1.8.3, jQuery UI, Select2, and Owl Carousel. Google Analytics and Facebook SDK are integrated for analytics and marketing purposes. The site is mobile optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in updating legacy libraries. From a security perspective, the site enforces HTTPS and uses standard security cookies including CSRF tokens and session management. However, the use of outdated jQuery versions introduces potential vulnerabilities. Security headers are minimal, and no explicit security policies or incident response information are published. Cookie consent mechanisms are implemented, indicating GDPR awareness. Overall, the website is professional and trustworthy in appearance, with clear contact information and social media presence. The absence of WHOIS data for the domain reduces domain trust and raises questions about registration transparency. There are no indications of adult or questionable content, and the site is fully accessible without WAF or blocking mechanisms. Strategic recommendations include updating JavaScript libraries to mitigate vulnerabilities, enhancing security headers, publishing clear security and incident response policies, and verifying domain registration details to improve trustworthiness.

M

MERKURIA - ARTES a.s.

vodacentrum.cz

44

Vodacentrum.cz is an established Czech e-commerce retailer specializing in kitchen sinks, faucets, valves, and range hoods, primarily offering products from reputable European brands such as Franke, Silfra, and Paffoni. The company, MERKURIA - ARTES a.s., targets consumers and businesses in the Czech Republic seeking quality sanitary and kitchen installation products. The website demonstrates a professional and consistent brand presence with clear navigation and relevant product offerings. Technically, the website employs a variety of JavaScript libraries including jQuery, jQuery UI, and several UI components like MasterSlider and Owl Carousel. It integrates Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics purposes. The site is built on the Webareal CMS platform and uses HTTPS to secure communications. However, the use of an outdated jQuery version poses potential security risks, and there is no evidence of advanced security headers such as CSP. From a security perspective, the site follows basic best practices including HTTPS enforcement and cookie consent mechanisms. There is no visible security policy or incident response contact information, and no vulnerability disclosure or security.txt file is present. The absence of WHOIS data reduces domain trustworthiness, although the website content and contact details appear legitimate and professional. Overall, Vodacentrum.cz presents a trustworthy and functional e-commerce platform with room for improvement in security practices and domain transparency. Strategic enhancements in updating libraries, implementing security headers, and publishing vulnerability disclosure policies would strengthen its security posture and trustworthiness.

E

European Packaging Institutes Consortium

epic-packaging.eu

47

The European Packaging Institutes Consortium (EPIC) is a pan-European organization representing national packaging institutes and their members, including retailers and raw material manufacturers. Established in 2002, EPIC focuses on fostering cooperation, education, innovation, and information exchange within the packaging industry to promote sustainable and responsible packaging practices. The consortium is a member of the World Packaging Organisation and operates primarily from Czechia. The website serves as an informational and networking platform for members and stakeholders in the packaging sector. Technically, the website is built on the Orchard CMS platform and utilizes modern front-end technologies such as jQuery, Bootstrap, Owl Carousel, and Animate On Scroll libraries. The site demonstrates good mobile optimization and SEO practices but lacks some advanced accessibility features. Performance is moderate, with no critical technical issues detected. The website is fully accessible without any WAF or security blocking mechanisms. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML content. However, it lacks visible security headers and explicit security or privacy policies. No incident response or vulnerability disclosure information is provided. Contact information is clearly presented, enhancing business credibility. Overall, the security posture is adequate but could be improved by implementing additional security headers and formal policies. The overall risk assessment indicates a trustworthy and professional website with minor gaps in privacy compliance and security best practices. Strategic recommendations include adding comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, and publishing incident response contacts to improve trust and compliance.

P

PETERKA & PARTNERS

peterkapartners.hr

50

PETERKA & PARTNERS is a law firm specializing in providing comprehensive legal and tax services to businesses operating in Central and Eastern Europe, including countries such as the Czech Republic, Slovakia, Poland, Hungary, Bulgaria, Romania, Ukraine, Belarus, and Russia. The firm positions itself as a leading full-service legal partner in this regional market. The website reflects a professional and consistent brand image with a clear focus on its target audience of business clients in the region. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Fonts, Font Awesome, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and has good SEO fundamentals, although accessibility features are basic. Hosting appears to be provided by Active24, a known regional hosting provider. From a security perspective, the site uses HTTPS and includes form validation scripts, but lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance. Contact information is limited to an email address related to sanctions inquiries, with no phone numbers or physical addresses provided. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and trustworthy but could improve its privacy compliance and security posture by publishing relevant policies, enhancing security headers, and providing more comprehensive contact details. These improvements would strengthen user trust and regulatory compliance.

O

OBALOVÝ INSTITUT SYBA, s.r.o.

obalovaakademie.cz

48

OBALOVÁ AKADEMIE is a Czech Republic-based educational initiative specializing in seminars, workshops, and certification programs within the packaging industry. It serves a broad professional audience including packaging technicians, purchasing managers, quality and ecology managers, and logistics specialists. The project is operated by OBALOVÝ INSTITUT SYBA, s.r.o., an established entity since 2013, with a strong network of industry partners and media collaborators. The website is professionally designed, bilingual (Czech and English), and provides comprehensive information about its offerings and partners. Technically, the site is built on Orchard CMS, employs modern JavaScript libraries such as jQuery and Bootstrap, and integrates Google Tag Manager for analytics and marketing purposes. Security posture is solid with HTTPS enforced and a GDPR-compliant cookie consent mechanism, although some security headers and explicit incident response policies are absent. Overall, the site demonstrates a mature digital presence with good privacy compliance and trustworthy business information.