Security Directory

L

League of European Research Universities

leru.org

68

The League of European Research Universities (LERU) operates as a prominent non-profit network of 24 leading European research universities focused on advancing innovative research and influencing science policy. The website clearly communicates its mission, activities, and publications targeted at policymakers, researchers, and academic stakeholders. The organization maintains a professional online presence with active social media channels and regularly updated content, reinforcing its market position as a key advocate for research-intensive universities in Europe. Technically, the website employs a modern technology stack including Google Analytics, Google Tag Manager, jQuery, and asynchronous script loading to optimize performance. The site is mobile responsive with good SEO and accessibility basics, although there is room for improvement in accessibility and security headers. The website is hosted securely over HTTPS with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site demonstrates a solid baseline with HTTPS and no evident security flaws. However, it lacks explicit security headers, a cookie consent mechanism, and published security policies or incident response contacts, which are important for compliance and trust. The WHOIS data is unavailable due to privacy protection or query failure, but this is typical for organizations of this nature and does not raise immediate concerns. Overall, the website is trustworthy, professionally maintained, and serves its audience well. Strategic improvements in privacy compliance, security policy transparency, and contact information availability would enhance its security posture and user trust.

E

European University Foundation

uni-foundation.eu

9

The European University Foundation (EUF) operates as a non-profit organization focused on fostering collaboration among European universities and supporting higher education initiatives. The website presents a professional and consistent brand image, targeting academic institutions and stakeholders within the European education sector. The technical infrastructure is based on WordPress with the Divi theme, leveraging modern web technologies and integrating Google Analytics and Tag Manager for user tracking and analytics. The site demonstrates moderate digital maturity with good mobile optimization and basic SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of explicit security headers and lack of published privacy and security policies indicate areas for improvement. Overall, the website is safe, trustworthy, and suitable for a general audience, but could enhance compliance and security transparency to strengthen user trust and regulatory adherence.

P

Prosu

prosu.nl

57

Prosu is a well-established Dutch media and publishing company specializing in data, media, and advertising reach primarily for the agriculture and cleaning sectors in the Netherlands and Belgium. Founded in 1999, the company positions itself as an allround publisher offering tailored solutions to enhance impact in its target markets. The website reflects a professional and consistent brand image with good content quality and clear navigation, supporting its market presence. Technically, the website is built on WordPress CMS with modern SEO and multilingual capabilities, leveraging tools such as Yoast SEO, Google Tag Manager, and Google Analytics. The site demonstrates good mobile optimization and accessibility standards, with a moderate performance profile. Cookie consent mechanisms are implemented in compliance with GDPR, indicating a mature approach to privacy. From a security perspective, the site uses HTTPS with DNSSEC enabled, and no critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are absent, suggesting areas for improvement in transparency and readiness. The domain's WHOIS data is consistent with the business claims, reinforcing the site's legitimacy. Overall, Prosu's digital presence is solid with room for enhancements in security policy disclosures and incident response preparedness. The risk profile is low, and the company demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

D

DK Akord Ostrava

dkakord.cz

48

DK Akord Ostrava operates as a cultural and social center located in Ostrava-Zábřeh, Czech Republic, offering a wide range of cultural events including concerts, theater performances, and educational courses. The organization also provides venue rental services and operates a restaurant, positioning itself as a regional hub for cultural and social activities. The website reflects a medium-sized enterprise with a professional digital presence, integrating modern web technologies and multiple analytics and marketing tools to engage its audience effectively. The business model focuses on event hosting, ticket sales, and community engagement through educational and cultural programming. Technically, the site is built on WordPress with Bootstrap and jQuery, supported by reputable third-party services for analytics and marketing, ensuring a good user experience across devices. Security posture is solid with HTTPS enforcement and GDPR-compliant cookie consent mechanisms, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, well-maintained, and compliant with relevant privacy regulations, serving its target audience effectively.

T

TIMAC AGRO Maroc

timacagro.ma

53

TIMAC AGRO Maroc is a well-established agricultural solutions provider specializing in innovative fertilization, plant nutrition, and animal production products tailored for the Moroccan market. With a claimed 25 years of local expertise, the company positions itself as a trusted partner offering sustainable and environmentally respectful agricultural performance improvements. The website reflects a professional digital presence with clear branding, product categorization, and local support emphasis. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern analytics tools like Google Tag Manager and Matomo, and is hosted behind Cloudflare DNS services. Security posture is solid with HTTPS enabled and cookie consent implemented, though explicit privacy and terms policies are missing. The WHOIS data shows some inconsistencies, notably a future domain creation date, which may indicate a staging domain or data error but does not detract significantly from the site's legitimacy. Overall, the site is safe, professional, and targeted at agricultural professionals in Morocco.

T

TIMAC AGRO Canada

timacagro.ca

56

TIMAC AGRO Canada is a well-established agricultural company specializing in soil, plant, and animal nutrition solutions. With over 60 years of experience and a strong connection to its parent company Groupe Roullier, it serves farmers and agronomists with personalized agronomic products and expertise. The website reflects a mature digital presence with comprehensive product offerings, news updates, and multiple language support, targeting the Canadian agricultural market. Technically, the site is built on WordPress with Elementor and integrates modern analytics and marketing tools, ensuring good performance and user experience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though it lacks a publicly available security policy or incident response information. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is privacy protected, limiting domain age verification. Strategic recommendations include publishing security policies and incident response contacts to enhance trust and compliance.

T

TIMAC AGRO INTERNATIONAL

grasslandagro.com

67

TIMAC AGRO INTERNATIONAL is a well-established company specializing in soil, plant, and animal nutrition products, serving agricultural professionals globally. Founded in 1959 and headquartered in Saint-Malo, France, it operates as a subsidiary of Groupe Roullier. The company positions itself as a leader in sustainable agriculture solutions, offering fertilization, biostimulation, and animal production nutrition services. The website reflects a professional B2B business model targeting agribusinesses and farmers. Technically, the website is built on WordPress with Elementor, leveraging modern JavaScript libraries such as GSAP and jQuery. It integrates analytics tools including Matomo, Google Analytics (GA4), and Hotjar, with a robust cookie consent mechanism via Tarteaucitron, indicating good privacy compliance. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent management, but lacks visible advanced security headers and does not publish a dedicated security policy or incident response contacts. The WHOIS data is missing, which reduces transparency about domain registration and ownership, though the website content and external references support legitimacy. Overall, the website is professional, secure, and privacy-conscious, but could improve transparency and security posture by publishing security policies and enhancing domain registration visibility.

T

The Web Platform Podcast

thewebplatformpodcast.com

59

The Web Platform Podcast is a niche media business producing a weekly podcast focused on JavaScript and web standards. Founded in 2016, it targets developers and web technology enthusiasts, providing in-depth discussions on web platform development. The website is professionally designed with consistent branding and clear navigation, distributed via major podcast platforms and supported by social media channels. Technically, the site uses modern web technologies including Vue.js and integrates Google Analytics and Tag Manager for user tracking. Hosting is supported by Google Cloud DNS services, with domain registration managed by Squarespace Domains. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the site is trustworthy and functional but would benefit from enhanced security and privacy compliance measures.

V

Vykupujeme-online.cz

vykupujeme-online.cz

44

The website vykupujeme-online.cz operates as an online buyback platform primarily focused on purchasing used books and various types of games from customers in the Czech Republic. Founded in 2021, it targets general consumers looking for a convenient and quick way to sell their unwanted items online. The business model revolves around providing an easy-to-use online interface for submitting items and receiving payment, positioning itself as a niche player in the local retail market for second-hand books and games. The website features a professional design with good SEO and mobile optimization, leveraging modern web technologies such as Nuxt.js and Google Tag Manager for analytics and tracking. However, it lacks explicit privacy, cookie, and terms of service policies, which are critical for compliance and user trust.

K

Kolektor

kolektor.com

50

Kolektor is a large, established industrial and technology company based in Slovenia, specializing in manufacturing and technological solutions primarily for the automotive, energy, and construction sectors. The company operates multiple subsidiaries focused on energy transformers, water technologies, automation, and construction. Their website reflects a professional corporate presence with multilingual support and a focus on innovation and sustainability. Technically, the site employs modern tracking and analytics tools such as Google Tag Manager, Apollo.io, and IpMeta, and enforces HTTPS with reCAPTCHA protections on forms. However, some security best practices like security headers and explicit incident response contacts are missing. The WHOIS data is unavailable, which slightly reduces trust but the overall digital footprint and branding consistency support legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant, indicating a mature approach to data protection. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in security posture and transparency.

O

Open Net Sàrl

open-net.ch

52

Open Net Sàrl is a specialized Swiss company focused on Odoo ERP integration and hosting services, holding a leading market position as the top Odoo integrator in Switzerland with over 15 years of experience. Their business model revolves around providing modular ERP solutions tailored to client needs, complemented by innovative applications such as Mosaïk, CryptoSync, and CO₂ accounting. The company targets businesses seeking efficient and scalable ERP solutions with a strong emphasis on local presence and ecological commitment. Technically, the website is built on a modern Nuxt.js framework with Tailwind CSS, ensuring fast performance, excellent mobile optimization, and good accessibility. The use of Google Tag Manager indicates moderate analytics and tracking capabilities. SEO and content quality are high, with clear navigation and professional design. From a security perspective, the site enforces HTTPS, includes essential security headers, and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are areas for improvement. Privacy compliance is adequate with comprehensive privacy and terms policies, though cookie consent mechanisms could be enhanced. Overall, the website and business present a low-risk profile with strong credibility and professionalism. Strategic recommendations include enhancing security transparency, adding incident response contacts, and implementing explicit cookie consent to improve privacy compliance and user trust.

Arche TI is a Canadian technology company specializing in Odoo ERP consulting, implementation, and optimization services. Positioned as the top Odoo integrator in Canada, they serve businesses primarily in Montreal, Quebec, Toronto, and other Canadian regions. Their key offerings include ERP consultation, project rescue, migration, customization, and ongoing support, targeting medium-sized businesses seeking digital transformation and operational efficiency. The company has a professional web presence with detailed service descriptions, client testimonials, and multiple office locations, reflecting a mature and credible business model. Technically, the website is built on the Odoo platform, leveraging modern web technologies such as JavaScript, FontAwesome, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with fast to moderate performance. However, there is room for improvement in security headers and explicit privacy compliance features. From a security perspective, the site uses HTTPS and includes CSRF tokens, indicating a baseline security posture. The domain is registered with GoDaddy and secured with registrar locks, consistent with the business's age and claims. No critical vulnerabilities or suspicious patterns were detected, but the absence of a visible privacy policy and cookie consent mechanism represents compliance gaps. The presence of a named Data Protection Officer with contact details is a positive indicator. Overall, Arche TI presents a trustworthy and professional digital footprint with strong business credibility and technical maturity. Strategic enhancements in privacy compliance and security best practices would further strengthen their security posture and regulatory alignment.

Dynapps is a professional and well-established Odoo implementation partner specializing in digitalizing business processes through tailored ERP solutions. They hold a strong market position as the largest Odoo implementer in Europe and have been recognized as the Best Odoo Partner in Europe 2024. Their services cover a broad range of industries including technology, energy, manufacturing, retail, and healthcare, targeting innovative companies seeking efficient business management solutions. The company operates multiple offices across Belgium, the Netherlands, Switzerland, and France, reinforcing their regional presence. Technically, the website is built on the Odoo CMS platform, utilizing modern web technologies such as Bootstrap, FontAwesome, Google Tag Manager, and Leadinfo for analytics and tracking. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, Dynapps demonstrates a strong posture with HTTPS enforcement, ISO 27001 certification, and use of Google reCAPTCHA on forms. However, there is room for improvement in implementing security headers and explicit incident response contacts. Overall, the website and business exhibit high professionalism, trustworthiness, and compliance with privacy regulations, although cookie consent mechanisms could be enhanced. The lack of public WHOIS data is due to EURid privacy policies and is justified for this business type. The risk profile is low, with no critical vulnerabilities detected, making Dynapps a credible and secure partner for ERP implementation.

N

Naturhelp.cz

naturhelp.cz

54

Naturhelp.cz is a Czech language informational website providing articles, reviews, and tips related to nature, gardening, ecology, and recipes. The site targets a general audience interested in environmental topics and sustainable living. It operates as a content publishing platform with monetization through Google AdSense. The website is built on WordPress, leveraging various plugins for SEO, multilingual support, and GDPR compliance. Hosting is provided by WEDOS, consistent with the domain registration data. The site demonstrates good digital maturity with responsive design, clear navigation, and structured data implementation. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR opt-in banner. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is professional, trustworthy, and safe for general audiences.

Z

ZAZUMi – vše pro zahradu i domov

zazumi.cz

57

ZAZUMi.cz is a Czech Republic-based e-commerce retailer specializing in plants, gardening supplies, and pet products. The website offers a broad catalog of products for home and garden enthusiasts, including indoor plants, garden equipment, and pet accessories. The platform supports customer accounts with login and registration features and provides clear contact information for customer support. The site is professionally designed with good navigation and mobile optimization, targeting primarily Czech-speaking customers interested in gardening and home care. Technically, the website employs modern JavaScript libraries such as Algolia for search and Mailkit for email services, alongside Google Tag Manager for analytics. The site uses HTTPS, ensuring encrypted communication, but lacks visible security headers which could enhance protection against common web attacks. Performance is moderate with room for improvement in accessibility and SEO features. From a security perspective, the site demonstrates basic best practices such as secure login forms with CSRF tokens and encrypted connections. However, the absence of privacy and cookie policies, as well as no visible incident response or vulnerability disclosure mechanisms, indicates gaps in compliance and security maturity. The lack of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. Overall, ZAZUMi.cz presents a functional and user-friendly e-commerce platform with a solid business focus but requires improvements in transparency, privacy compliance, and security hardening to enhance trust and regulatory adherence.

G

Gardners

gardners-eshop.cz

57

Gardners operates a professional e-commerce platform specializing in indoor plants, stylish flower pots, substrates, and plant care products primarily targeting the Czech market. The website is well-structured, with clear navigation and a comprehensive product catalog, positioning itself as the largest online shop for indoor plants in the region. The business model focuses on retail sales with additional services such as workshops and educational content. Technically, the site leverages the Shoptet e-commerce platform, integrates multiple analytics and marketing tools including Google Analytics, Facebook SDK, and Microsoft Clarity, and uses modern web technologies with CDN support for performance. Security posture is solid with HTTPS enforced, CSRF protection on forms, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly available. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and business focus. Overall, the website demonstrates a mature digital presence with good privacy compliance and user experience.

R

Rostlinky.cz

rostlinky.cz

42

Rostlinky.cz is an established online garden retail business operating since 2001, primarily serving customers in the Czech Republic and Slovakia. The website offers a wide range of gardening products including seeds, bulbs, balcony plants, ornamental and fruit trees, shrubs, perennials, and gardening accessories. The business model is focused on e-commerce retail with an emphasis on fair and expert service. Technically, the website is built on the Magento platform, utilizing common web technologies such as jQuery, Prototype.js, and Bootstrap, and integrates marketing and analytics tools like Google Tag Manager and Facebook SDK. The site is secured with HTTPS and implements GDPR-compliant cookie consent mechanisms. However, the absence of WHOIS registration data and lack of explicit security headers slightly reduce the overall trust and security posture. Contact information is limited to a phone number and online forms, with no public company email addresses found. Overall, the website presents a professional and trustworthy front for its business, but domain registration transparency and enhanced security headers would improve its credibility and security stance.

O

Onlinezahradnictvi.cz

onlinezahradnictvi.cz

53

Onlinezahradnictvi.cz is a Czech Republic-based small e-commerce business specializing in the sale and delivery of plants and gardening supplies. The company emphasizes sustainable packaging and supports local Czech growers, positioning itself as a niche leader in online plant retail. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information. Technically, it leverages the Shoptet e-commerce platform with integrations for analytics and marketing, including Google Analytics, Microsoft Clarity, and Facebook SDK. Security posture is good with HTTPS and CSRF protections, though some legacy libraries like jQuery 1.11.3 could be updated to enhance security. Privacy compliance is strong with visible cookie consent and a comprehensive privacy policy in Czech language. No WHOIS data is available, likely due to privacy protection, which slightly reduces transparency but is common for small businesses. Overall, the website is trustworthy, safe, and well-positioned in its market niche.

C

Crowdtech

crowdtech.com

53

Crowdtech is a technology company established in 2003, operating primarily in the Netherlands. The company appears to offer technology-related services or solutions, targeting a professional audience. The website is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Analytics, Google Ads, and Facebook Pixel. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS enabled and domain transfer lock in place, but improvements are recommended such as enabling DNSSEC and implementing security headers. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website presents a professional image but could enhance trust and compliance by publishing comprehensive policies and improving security configurations.

F

FMO

fmo.nl

71

FMO is the Dutch entrepreneurial development bank with over 50 years of experience investing sustainably in emerging markets. The organization supports economic development by financing projects in sectors such as energy, financial institutions, and agribusiness across more than 85 countries. Their business model focuses on partnering with other financiers to open new markets and take on challenging investments with significant risk exposure. The website reflects a mature, professional institution with clear communication and comprehensive information for partners and stakeholders. Technically, the website uses a modern CMS (Procurios), integrates YouTube videos via privacy-enhanced domains, and employs Google Tag Manager for analytics and tracking. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and structured navigation. Privacy and cookie policies are clearly presented with consent mechanisms, indicating compliance with GDPR requirements. From a security perspective, the site enforces HTTPS, uses privacy-conscious embedded content, and implements cookie consent. However, explicit security policies, incident response details, and vulnerability disclosure mechanisms are not publicly available, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website is trustworthy, professional, and well-maintained, supporting the organization's credibility and mission. Strategic recommendations include publishing security policies, adding vulnerability disclosure information, and enhancing security header visibility to further strengthen the security posture.

The University of Wisconsin–Madison is a prestigious public research university located in Madison, Wisconsin, founded in 1849. It offers comprehensive education opportunities to undergraduate, graduate, and professional students, and is recognized as one of the top-ranked research institutions in the United States. The university emphasizes public service through the Wisconsin Idea, aiming to improve lives beyond campus boundaries. Its website reflects a mature digital presence with extensive content, clear navigation, and strong branding consistency. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, and Eloqua for marketing and analytics. The site is well-optimized for mobile and accessibility, with good SEO practices. Hosting appears to be managed via university infrastructure or a dedicated CDN. Performance is moderate, with room for improvement in security headers and explicit security policy disclosures. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with user consent mechanisms. However, the absence of a published security policy or vulnerability disclosure program is noted. WHOIS data is unavailable, which is unusual but does not detract from the overall legitimacy given the institutional nature and external trust signals. Overall, the website is professional, trustworthy, and well-maintained, supporting the university's mission and public image effectively.

D

Divadlo Kalich

divadlokalich.cz

60

Divadlo Kalich is a cultural venue based in Prague, Czech Republic, offering a variety of theatrical performances including comedies, musicals, concerts, and children's shows. The website serves as a platform for event listings and ticket sales, targeting a broad audience interested in live theater and cultural events. The site demonstrates a moderate level of digital maturity with the use of modern tracking technologies such as Google Analytics, Facebook Pixel, and Cookiebot for consent management. The technical infrastructure supports HTTPS and responsive design, ensuring accessibility and a good user experience across devices. However, the absence of publicly available WHOIS data limits the ability to fully verify domain legitimacy and registrant information. Security posture is adequate with HTTPS and cookie consent, but could be improved by implementing security headers and publishing clear privacy and security policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

OLDstars is a Czech student theater group that organizes theatrical performances, festivals, and acting courses primarily in Prague and surrounding regions. Their website showcases a rich program of upcoming performances, news, and educational opportunities, targeting students and theater enthusiasts. The site is built on modern web technologies such as Next.js and React, providing a responsive and user-friendly experience. Security posture is good with HTTPS and some security best practices, though some HTTP security headers could be improved. Privacy and cookie policies are not clearly presented, which is a compliance gap. WHOIS data is unavailable, which reduces domain trust but the professional content and social media presence support legitimacy. Overall, the site is a well-maintained cultural platform with room for enhanced privacy and security transparency.

D

Dramox s.r.o.

dramox.cz

55

Dramox s.r.o. operates a leading online streaming platform specializing in theater performances, offering access to hundreds of shows from over 250 theaters. The service targets theater enthusiasts, families, and educational institutions, providing a subscription-based model with a free trial period. The platform supports cultural preservation by channeling a significant portion of subscription fees back to theaters and artists. Technically, Dramox employs a modern web stack including Next.js, React, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook. The website is optimized for various platforms including smart TVs and mobile devices, ensuring a seamless user experience. Security posture is strong with HTTPS enforcement and modern security headers, though the absence of WHOIS data introduces some trust concerns. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to user data protection. Overall, Dramox presents a professional, secure, and user-friendly service with a clear cultural mission.

G

Galerie výtvarného umění v Ostravě, p. o.

gvuo.cz

49

Galerie výtvarného umění v Ostravě, p. o. is the oldest regional art gallery in Ostrava, Czech Republic, established in 1952. It operates as a non-profit cultural institution under the Moravskoslezský kraj (Moravian-Silesian Region) and offers art exhibitions, educational programs, virtual tours, and an e-shop. The website reflects a well-established institution with a clear focus on art and culture, targeting the general public and educational sectors. The business model is centered on cultural enrichment and public engagement rather than commercial profit. Technically, the website employs a modern technology stack including HTML5, CSS3, JavaScript libraries such as jQuery, Leaflet.js for maps, and Google Analytics for tracking. It uses the Shopnero CMS platform and is hosted by Active24. The site is mobile-optimized with good SEO practices and structured data enhancing search engine visibility. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy and GDPR adherence. Overall, the website is professional, trustworthy, and well-maintained, with a strong cultural and educational focus. Strategic improvements in security policies and accessibility could further enhance its posture and user trust.

P

Pro-idea s.r.o.

eventival.com

52

Eventival.com is a professional SaaS platform specializing in film festival and event management software. The company, Pro-idea s.r.o., founded in 2009 and based in the Czech Republic, offers a comprehensive and widely adopted solution for film festivals worldwide, boasting over 100 clients and extensive industry integrations. The website is well-designed, content-rich, and optimized for mobile, providing a positive user experience and clear business positioning as a market leader in its niche. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Google Maps API, with good performance and basic accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Privacy compliance is partial, with a cookie policy present but no explicit privacy or terms of service pages detected. The WHOIS data is missing or unavailable, which reduces domain transparency and trustworthiness despite the professional appearance and business legitimacy. Overall, the site is safe, trustworthy, and well-positioned in its industry but would benefit from enhanced transparency and security documentation.

D

DAFilms

dafilms.cz

55

DAFilms.cz is a niche online streaming platform specializing in curated art-house, documentary, festival, and children's films primarily targeting Czech-speaking audiences. Founded in 2012, it offers a subscription-based model with a focus on unique and authorial film content not commonly found on mainstream platforms. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, Cookiebot for GDPR compliance, and reCAPTCHA for bot protection. The site is served over HTTPS with a good SSL configuration, though some security headers could be improved. Privacy compliance is strong with a comprehensive cookie consent mechanism and links to detailed privacy policies. However, explicit contact and security policies are not readily found on the homepage, which could be enhanced for trust and compliance. Overall, the site is secure, compliant, and well-positioned within its niche market.

G

GARVIS Solutions s.r.o.

reenio.cz

71

REENIO, operated by GARVIS Solutions s.r.o., is a Czech-based online reservation system offering a cloud-hosted SaaS platform tailored for businesses providing direct customer services such as sports facilities, wellness centers, education, and cultural events. The platform supports free and paid subscription models, integrates secure online payments, and emphasizes ease of use and customer communication. The company holds a strong market position in the Czech Republic with a focus on GDPR compliance and continuous product development.

Centario, s.r.o. is a small Czech Republic-based company specializing in the development of web applications and projects. The website serves as a basic informational portal presenting company contact details, legal identifiers, and a brief description of services. The business appears to target local clients seeking web development services, positioning itself as a small but established player in the technology sector since 2011. The company provides clear contact information and legal registration data, supporting its legitimacy and trustworthiness. Technically, the website employs basic modern web technologies including Google Analytics and Google Tag Manager for tracking, and uses a Google font for styling. Hosting and domain registration are managed by WEDOS, a known Czech hosting provider. The site is simple with minimal content and no interactive forms, which reduces complexity but also limits user engagement. Performance and mobile optimization are basic but functional. SEO and accessibility features are minimal, indicating room for improvement in digital maturity. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance and user trust. The use of Google Analytics is configured to deny ad and analytics storage by default, showing some privacy consideration. No forms or user input fields reduce attack surface, but the absence of incident response contacts or vulnerability disclosure policies indicates limited security maturity. WHOIS data is consistent and transparent, reinforcing the domain's legitimacy. Overall, the website is safe and professional but basic, with moderate risk due to missing compliance documentation and security best practices. Strategic improvements in privacy compliance, security headers, and digital maturity would enhance trust and reduce potential vulnerabilities.

V

VC4A

vc4a.com

62

VC4A is a well-established platform founded in 2010 that supports entrepreneurs, investors, mentors, and organizations primarily in Africa and Latin America. It serves as a comprehensive ecosystem for startup acceleration, offering services such as venture promotion, investor networking, mentorship, and program management. The platform is recognized and trusted by prominent global partners, enhancing its market credibility and reach. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses domain locking mechanisms but lacks DNSSEC and some advanced security headers. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, VC4A presents a professional, trustworthy, and secure online presence aligned with its business objectives.

A

ABOUT YOU

aboutyou.com

68

ABOUT YOU is a large online fashion retail platform operating in Finland, offering over 1500 brands with fast delivery and a 30-day return policy. The website demonstrates a professional design with good content quality and consistent branding, targeting general consumers interested in fashion e-commerce. Technically, the site uses modern JavaScript libraries, asynchronous script loading, and integrates Usercentrics for consent management and Datadog for logging, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and logging mechanisms in place, though the absence of explicit security headers and published security policies suggests room for improvement. Privacy compliance is partially addressed via cookie consent mechanisms, but lacks visible privacy and terms of service documentation. Overall, the site is trustworthy and safe for general audiences, with a moderate to good AI-assessed quality and security score.

A

AVISIA

avisia.fr

74

AVISIA is a French consulting firm specializing in data, artificial intelligence, and digital marketing solutions. Established since 2007, the company supports projects combining data and AI technologies to deliver decision-making solutions. The website reflects a professional and consistent brand presence targeting businesses seeking expert consulting in these domains. Technically, the site is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit privacy or security policies. WHOIS data is not publicly available, indicating privacy protection, which is common and justified for this business type. Overall, the site is trustworthy and professional but could improve transparency regarding privacy and contact information.

S

SNCF Group

groupe-sncf.com

58

SNCF Group is a leading global player in low-carbon mobility, specializing in passenger transport and freight logistics. The company operates internationally with a large workforce and a diversified portfolio of subsidiaries including SNCF SA, Keolis, and GEODIS. Their business model focuses on sustainable transportation solutions and mass transit services, positioning them as a world leader in their sector. The website reflects a mature digital presence with comprehensive content targeting various stakeholders such as job seekers, investors, journalists, suppliers, and travelers. Technically, the site leverages modern frameworks like Next.js and React, integrates advanced consent management and bot protection, and demonstrates good performance and accessibility standards. Security posture is strong with HTTPS and bot mitigation, though explicit security policies and incident response contacts are not published. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and branding. Strategic recommendations include enhancing transparency around security policies and improving WHOIS data availability for trust enhancement.

V

VC4A

vc4africa.com

62

VC4A is a well-established technology platform founded in 2010 that supports startups, investors, mentors, and organizations primarily in Africa and Latin America. It offers a comprehensive ecosystem including startup acceleration, investor deal flow, mentorship, and program management services. The platform is recognized and trusted by reputable global partners, enhancing its market position as a leading startup support platform in emerging markets. Technically, the website is built on WordPress with modern JavaScript libraries and uses Cloudflare for DNS and CDN services. It implements HTTPS with a good SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. However, DNSSEC is not enabled, and no explicit security policy or incident response contact information is published, which are areas for improvement. Overall, the site is professional, secure, and privacy-conscious, with a high trustworthiness rating.

M

Mister Mix Dog

mistermixdog.sk

57

Mister Mix Dog is a well-established family business specializing in premium cold-pressed dog food produced in Tuscany, Italy. With over 30 years of tradition and 40 years of experience in zootechnics, the company targets dog owners, breeders, and sports dog handlers primarily in Slovakia and neighboring countries. Their product range includes specialized dog foods tailored to various life stages and health needs, complemented by natural vitamins and supplements. The website is professionally designed, leveraging the Shoptet e-commerce platform, and provides clear contact information and social media presence.

N

Not explicitly stated

pombilitiopfolda.com

64

The website provides detailed information about POMBILITI® (cipaglucosidase alfa-atga) + OPFOLDA® (miglustat), an FDA-approved two-component therapy for adults with Pompe disease. It serves as an educational and support platform targeting patients and healthcare providers, offering clinical trial results and resources. The site is built using modern web technologies including React and Gatsby, with a focus on accessibility and mobile responsiveness. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance practices. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and explicit security policies are absent. Overall, the site is professional, trustworthy, and aligned with healthcare industry standards.

R

Renault

renew.ma

46

Renew Maroc operates as an official online platform for certified used Renault vehicles in Morocco, offering a comprehensive range of services including vehicle sales, financing, trade-in, assistance, and insurance. The website is professionally designed with clear navigation and targets Moroccan consumers interested in purchasing certified used Renault cars. Technically, the site leverages modern frameworks such as Vue.js and Nuxt.js, and integrates Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and domain registration transparency, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the platform presents a trustworthy and professional presence in the Moroccan automotive market.

M

Mobilize Financial Services

mobilize-fs.ma

47

Mobilize Financial Services Maroc is a specialized financial services provider operating since 2005, focusing on automotive financing, insurance, and related services for Renault Group vehicles in Morocco. The company positions itself as a trusted partner offering innovative and comprehensive mobility solutions to both individual and professional customers. The website reflects a mature digital presence with professional branding, clear service offerings, and customer testimonials that reinforce trust. Technically, the website is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile optimized and includes SEO best practices, although performance is moderate. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but could be improved by adding explicit security headers and formal incident response contacts. Overall, the site is accessible without WAF or blocking mechanisms, and privacy compliance is well addressed with clear policies and cookie consent. The lack of WHOIS data reduces domain trust slightly, but the strong brand association and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and improving transparency on contact details.

H

Hellowork

hellowork.com

65

Hellowork operates as a leading online job board and recruitment platform in France, offering a wide range of employment opportunities, CV management, job alerts, and recruitment services. The website targets job seekers and recruiters, positioning itself as a premier resource in the French employment market. The platform is well-branded and maintains a consistent professional image with strong social media integration and mobile app availability. Technically, the website employs modern web technologies including Turbo Frames, Tailwind CSS, and integrates multiple analytics and marketing tools such as Google Tag Manager, Piano Analytics, and Microsoft Clarity. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers are missing. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, the absence of explicit security headers and lack of published security policies or incident response information indicate areas for improvement. The WHOIS data is unavailable, which raises questions about domain registration transparency but does not necessarily indicate illegitimacy given the site's professional presence. Overall, Hellowork presents a mature digital presence with strong business credibility and user engagement, though it would benefit from enhanced security transparency and domain registration clarity.

C

CustomGPT.ai

customgpt.ai

65

CustomGPT.ai is a technology startup founded in 2023 specializing in creating custom GPT models tailored from user content for business applications. The company targets businesses and professionals seeking AI-powered solutions to enhance their operations. The website is built on WordPress with Elementor and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and CookieYes for cookie consent management. Hosting is provided via Amazon AWS infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, though it lacks visible contact information and formal privacy or terms of service pages. Security posture is moderate with HTTPS enabled but missing key security headers and published security policies. The domain is privacy protected, consistent with a small tech startup, and shows no suspicious registration patterns.

C

CYMEDICA – partner pro veterinární profesionály

cymedica.cz

62

CYMEDICA is a well-established veterinary partner operating since 1995, serving the Czech Republic and Central and Eastern Europe markets. The company specializes in veterinary product distribution, professional education, and expert consulting, positioning itself as a market leader with a strong regional presence. Their website reflects a mature digital infrastructure with multilingual support, e-commerce capabilities, and active engagement through social media and newsletters. Technically, the site is built on WordPress with WooCommerce and employs modern libraries and plugins, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be enhanced. The absence of WHOIS data is a transparency concern but does not detract from the overall legitimacy indicated by certifications and professional content. Strategic recommendations include improving security headers, publishing vulnerability disclosure information, and enhancing incident response contacts.

The website www.shoptak.cz represents a small Czech company, techka s.r.o. & Tomáš Hlad, specializing in custom design and modification of Shoptet e-commerce templates. They hold a strong market position as a gold partner of Shoptet, serving thousands of e-shops primarily in the Czech and Slovak markets. Their key services include bespoke template creation, template customization, and Shoptet add-ons, targeting e-shop owners seeking tailored UX/UI solutions. The website content is professionally presented with clear navigation and positive client testimonials, reinforcing their credibility. Technically, the site employs modern JavaScript libraries such as jQuery, Slick Carousel, and AOS for animations, alongside Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and uses Google Fonts for typography. However, no explicit CMS or hosting provider information is discernible. Performance is moderate with good SEO practices but basic accessibility features. From a security perspective, HTTPS is implied but no security headers were detected in the provided data. The site includes a cookie consent banner indicating some privacy compliance, but lacks explicit privacy, terms of service, or security policies. No WHOIS data was retrievable, which raises concerns about domain registration legitimacy. No vulnerability disclosure or incident response information is present. Overall, the website is professional and trustworthy from a business and content perspective but would benefit from enhanced security practices, explicit privacy documentation, and verification of domain registration details to improve trust and compliance.

R

RUSCONA Česko

ruscona.cz

48

RUSCONA.cz is a professional e-commerce platform specializing in gel nail modeling products and accessories, targeting both professional nail technicians and consumers in the Czech Republic. The website offers a wide range of UV gels, gel polishes, polygels, and related tools, supported by educational courses and a strong brand presence. The site is built on the Shoptet e-commerce platform and integrates modern analytics and marketing technologies such as Google Analytics, TikTok Pixel, Facebook SDK, and Hotjar, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data limits domain trust assessment, but the professional presentation and comprehensive content suggest a legitimate and established business. Overall, the site demonstrates good technical implementation, privacy compliance, and business credibility.

M

MoniLu s.r.o.

monilu.cz

10

MoniLu s.r.o. operates a Czech-based e-commerce website specializing in ergonomic baby carriers and related baby clothing products, including Merino garments. The company targets parents and caregivers of newborns and young children, offering products in multiple size ranges and custom options. The website is professionally designed with clear navigation and product categorization, supporting a positive user experience. The business model is retail-focused with additional services such as product rental and customer guidance. Technically, the site uses the Shoptet e-commerce platform, integrates common analytics and marketing tools like Google Analytics and Facebook SDK, and employs standard web technologies including jQuery. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though security headers are not explicitly detected. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for small e-commerce businesses. Overall, the site presents a legitimate, well-maintained online retail presence with moderate technical maturity and good privacy practices.

G

GoldPC.cz

goldpc.cz

52

GoldPC.cz is a Czech Republic-based e-commerce retailer specializing in affordable and quality computers, including notebooks, desktops, components, and accessories. The company offers a 24-month warranty and customer support via phone and email, targeting both consumers and businesses. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools such as Google Analytics and Facebook Pixel. Privacy and cookie policies are present, indicating GDPR compliance awareness. However, the absence of WHOIS registration data reduces domain trustworthiness and warrants further verification. Security posture is generally good with HTTPS and CSRF protections, but lacks explicit security policies and vulnerability disclosure mechanisms.

G

Garlo.cz

garlo.cz

10

Garlo.cz operates as a Czech online plant marketplace aggregator and price comparison platform, offering access to over 16,000 plants by unifying multiple garden e-shops under one roof. The website targets gardening enthusiasts and plant buyers in the Czech Republic, providing a comprehensive catalog and easy navigation to partner stores. Technically, the site leverages the Shoptet e-commerce platform, integrates multiple modern tracking and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook SDK, and uses HTTPS with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published privacy or security policies. The absence of WHOIS data reduces transparency but does not negate the site's apparent legitimacy. Overall, Garlo.cz presents a professional and trustworthy online presence in the gardening retail sector.

K

KeZdraví.cz

kezdravi.cz

49

KeZdraví.cz is a Czech Republic-based e-commerce platform specializing in natural health products including Schüssler salts, homeopathic remedies, and Bach flower essences. The website offers a broad catalog of products alongside educational content such as a homeopathic manual, targeting consumers interested in alternative medicine and natural wellness. The business operates primarily in the healthcare retail sector with a small company size profile. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Fonts, and tracking tools such as Google Analytics and Facebook SDK. The site is mobile-optimized with good navigation and content quality. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks some advanced security headers and uses an outdated jQuery version. The absence of WHOIS registration data is a notable concern, impacting domain legitimacy trust. Overall, the site is professional and trustworthy from a user perspective but would benefit from enhanced security practices and domain registration transparency.

K

Klenoty Amber

klenotyamber.cz

10

Klenoty Amber operates an e-commerce platform specializing in the retail of silver and amber jewelry, including necklaces, bracelets, earrings, and gift items. The website targets a general audience interested in quality jewelry products, offering a broad catalog with detailed product categories and customer support. The company appears to be a small-sized retailer based in the Czech Republic, with a professional online presence and clear business information. Technically, the website is built on the Shoptet e-commerce platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook SDK for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Security-wise, the site enforces HTTPS, uses CSRF tokens in forms, and implements cookie consent mechanisms compliant with GDPR. However, the use of an outdated jQuery version and the absence of explicit security policies or incident response contacts are areas for improvement. The lack of WHOIS data reduces domain transparency and slightly impacts trustworthiness. Overall, the website is professional, secure, and compliant, with moderate risk due to missing domain registration details and minor technical updates needed.

M

mlady-vedec.sk

mlady-vedec.sk

58

Mladý-vedec.sk is a Slovak e-commerce retailer specializing in educational and scientific toys designed for children who enjoy playful learning. The website offers a broad range of didactic products including experiment kits, building sets, and educational games. Positioned as a niche player in the Slovak market, it targets parents and educators seeking quality educational toys. The business model is primarily online retail with additional wholesale cooperation and affiliate partnerships. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

Z

Zidlestoly.cz

zidlestoly.cz

57

Zidlestoly.cz is a Czech Republic-based e-commerce retailer specializing in chairs, tables, and furniture for various interiors. The company emphasizes quality products with a 30-year market presence and offers fast shipping within 48 hours. The website is built on the Shoptet platform and integrates multiple analytics and marketing tools, including Google Analytics 4, Microsoft Clarity, and Facebook Pixel, with a clear cookie consent mechanism. Security posture is generally good with HTTPS and CSRF protections, though some outdated libraries like jQuery 1.11.3 present potential vulnerabilities. The absence of WHOIS data limits domain trust assessment, but the website content and business claims appear professional and credible.