Security Directory

F

FUNKE Mediengruppe GmbH & Co. KGaA

funke.fun

51

FUNKE FUN is a German media portal operated by FUNKE Mediengruppe GmbH & Co. KGaA, offering daily free sweepstakes, browser games, and discount vouchers from trusted brands. The website targets a broad general audience interested in entertainment and savings. It leverages partnerships with well-known brands such as HÖRZU and Tchibo to provide engaging content and promotional offers. Technically, the site uses modern JavaScript frameworks including Alpine.js and Livewire, integrates consent management tools, and employs Google Tag Manager for analytics. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS, uses security headers, and manages cookie consent effectively, though it lacks explicit security policy or incident response contact details. Overall, the website demonstrates a mature digital presence with good privacy compliance and trustworthy business information, though improvements could be made in providing direct contact channels and terms of service documentation.

FUNKE Wärmeaustauscher Apparatebau GmbH is a German-based specialist company focused on the development and production of industrial heat exchangers. The website presents a professional and consistent brand image targeting industrial clients and businesses requiring heat exchanger solutions. The company positions itself as a specialist in manufacturing within the industrial sector. Technically, the website is built on TYPO3 CMS and includes JavaScript tracking from sst.hydac.com, hosted on EuroDNS nameservers. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS implied but no visible security headers or explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information and incident response details are not found, limiting direct communication channels. Overall, the website is safe for general audiences and professionally designed but would benefit from enhanced security and privacy transparency.

I

InWIS – Institut für Wohnungswesen, Immobilienwirtschaft, Stadt- und Regionalentwicklung GmbH

inwis.de

65

InWIS GmbH is a German-based institute specializing in housing, real estate economics, and urban and regional development. The organization combines scientific research with practical consulting services, targeting housing companies, developers, municipalities, and other stakeholders in the real estate sector. Their offerings include market analyses, surveys, sustainability consulting, digital tools, and corporate advisory services. The website reflects a professional and well-established entity with a clear market position and strategic partnerships. Technically, the site is built on TYPO3 CMS, uses modern front-end technologies, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and privacy compliance including cookie consent mechanisms. However, explicit security policies and incident response information are not publicly available. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

M

Microsoft

cloud.microsoft

80

Microsoft 365 Copilot is a product offering from Microsoft Corporation, a leading global technology enterprise founded in 1975. The website serves as a sign-in and informational portal for Microsoft 365 Copilot, an AI-powered productivity assistant integrated with Microsoft 365 applications such as Word, Excel, and PowerPoint. The site targets both individual users and business customers, reflecting Microsoft's broad market reach and subscription-based SaaS business model. The website is professionally designed with consistent branding and clear navigation, optimized for mobile and desktop platforms.

A

Atlassian

trello.com

75

Trello, a product of Atlassian, is a well-established productivity and project management platform founded in 2004. It offers a comprehensive suite of tools including Inbox, Boards, Planner, Automation, and Power-Ups to help teams organize and manage tasks efficiently. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding consistency. Technically, the site leverages modern frameworks like React, is hosted on AWS, and integrates security and privacy tools such as OneTrust and Google reCAPTCHA. Security posture is strong with HTTPS enforcement, security headers, and domain registration protections, although DNSSEC is not enabled. Privacy compliance is robust with clear policies and consent mechanisms. Overall, Trello's website demonstrates high professionalism, trustworthiness, and technical maturity.

The website fondzabranyskod.cz currently serves a CAPTCHA challenge page designed to verify human visitors and prevent automated spam submissions. Due to this security mechanism, no substantive business content, contact information, or policies are accessible for analysis. The domain was registered in 2014 with REG-WEBGLOBE and uses the nameserver ns1.ignum.com, indicating a stable registration history but minimal public WHOIS data. The lack of visible business information and security headers limits the ability to assess the website's operational maturity or security posture comprehensively.

Xemel, operated by Trayto a.s., is a specialized SaaS platform focused on feed management for e-commerce businesses. It offers a comprehensive suite of tools including online XML/CSV feed editing, custom feed creation, AI-generated product descriptions, and integration with marketplaces and suppliers. The company targets e-shops, agencies, and firms seeking to optimize their product data feeds and online advertising. With a medium-sized presence and partnerships with notable e-commerce platforms, Xemel holds a strong market position in the Czech Republic and surrounding regions. Technically, the website is well-built with modern HTML5 and CSS3 standards, optimized for mobile devices, and provides a fast user experience. The presence of a security.txt file and HTTPS enforcement indicates a baseline security posture, though there is room for improvement in security headers and cookie consent mechanisms. The absence of WHOIS data is a concern but does not detract significantly from the overall trustworthiness given the rich content and client references. Security-wise, Xemel demonstrates good practices such as hashed feed URLs and backup strategies, but lacks explicit incident response contacts and some security headers. Privacy compliance is supported by a comprehensive GDPR policy and clear contact information. Overall, the platform appears reliable and professional, with a high level of business credibility and user trust. The main risks relate to the missing WHOIS data and minor security header gaps, which should be addressed to enhance trust and compliance. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response details, and pursuing formal security certifications to strengthen market confidence.

Ú

Úspěšný web s.r.o.

uspesnyweb.cz

64

Úspěšný web s.r.o. is a Czech Republic based small technology company specializing in custom web solutions including web presentations, e-commerce shops, and CRM systems. Founded in 2015, the company has established a solid local market presence with a portfolio of diverse clients across various industries. Their website demonstrates a professional and modern digital presence with clear navigation, responsive design, and comprehensive service offerings. The technical infrastructure leverages modern JavaScript frameworks, SVG graphics, and integrates Google Tag Manager and analytics tools with privacy-conscious consent mechanisms. Security posture is good with HTTPS enforced, CAPTCHA on forms, and GDPR compliance evident, though explicit security policies and headers could be enhanced. Overall, the website is trustworthy, well-branded, and aligns with the company’s business claims and WHOIS data, indicating a legitimate and credible business operation.

M

Ministerstvo pro místní rozvoj ČR

mmr.cz

62

The website represents the official online presence of the Ministry for Regional Development of the Czech Republic (Ministerstvo pro místní rozvoj ČR). It serves as a central government portal providing information on regional policy, housing, urban planning, construction law, investment policy, tourism, public auctions, real estate activities, and funeral services. The ministry was established in 1996 and plays a significant role in managing public funds and regulatory oversight in these sectors. The site targets Czech citizens, government officials, municipalities, and businesses involved in housing and regional development. Technically, the website is built on ASP.NET WebForms and likely uses Kentico CMS, with modern web technologies such as JavaScript, CSS, and Google Fonts. The site is mobile-optimized and provides a structured navigation experience. However, some security best practices like security headers are missing, and privacy and cookie policies are not explicitly found in the provided content. User tracking is implemented via Facebook Pixels, with Google Analytics scripts present but commented out. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, indicating basic security hygiene. The absence of WHOIS data is typical for government domains under CZ NIC registry policies and does not detract significantly from trustworthiness. No vulnerabilities or malicious content were detected. Overall, the site is professional, trustworthy, and serves its governmental function effectively. Recommendations include implementing explicit privacy and cookie policies with consent mechanisms, adding security headers to enhance protection, and regularly auditing third-party scripts and libraries for vulnerabilities.

Střední Čechy filmová kancelář operates as a regional film office providing location and production support services for filmmakers in Central Bohemia, Czech Republic. The website serves as an informational and contact portal, offering news, location listings, filmographies, and contact details for film production inquiries. The organization targets film producers and related professionals seeking filming locations and support in the region. The business model is service-oriented, facilitating film production logistics and location scouting. Technically, the website is built on the Public4u CMS platform and utilizes common JavaScript libraries such as jQuery and jQuery UI. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be enhanced. The site lacks advanced analytics or tracking scripts, indicating a minimal user tracking approach. From a security perspective, the site uses HTTPS and includes anti-spam measures on its contact form. However, no security headers were detected, and there is no visible privacy or cookie policy, which are compliance gaps. The absence of WHOIS data reduces transparency and trustworthiness. Overall, the security posture is moderate but could benefit from improvements in headers, policies, and vulnerability disclosures. The overall risk is moderate with no critical security issues detected. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance trust and reduce risk. The website is professionally presented with clear contact information and active social media presence, supporting business credibility.

O

Operátor ICT, a.s.

pidlitacka.cz

60

Operátor ICT, a.s. operates the Lítačka e-shop and smart card system for public transportation in Prague and the Central-Bohemian Region. The website serves as a comprehensive platform for purchasing tickets, ordering smart cards, and accessing travel information. It is well integrated with official city and regional transport authorities, reflecting a strong market position in the regional transportation sector. The target audience includes residents, students, seniors, and tourists who use public transport services. Technically, the website is built on modern frameworks such as Next.js and React, with a backend CMS powered by Strapi, and assets served via Azure CDN. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and a public security policy is absent. Privacy compliance is generally good with a clear privacy policy and terms of service, but lacks an explicit cookie consent mechanism. Overall, the website is professional, trustworthy, and well-maintained, supporting the business's credibility and operational needs.

H

PID Haló - poptávková doprava Pražské integrované dopravy 🚐

halopid.cz

52

The website www.halopid.cz appears to be a Wix-hosted site with minimal content and no visible business information or contact details. The lack of WHOIS data and registrant information raises concerns about the legitimacy and transparency of the domain. Technically, the site uses standard Wix scripts and polyfills but lacks advanced security headers and privacy compliance mechanisms. The security posture is weak due to missing HTTPS verification and absence of security best practices. Overall, the site is incomplete and does not provide sufficient information to assess the business or its operations confidently.

H

Hlavní město Praha

praha.eu

60

The website praha.eu serves as the official portal for the City of Prague, providing comprehensive information and services related to city administration, transportation, culture, environment, and public services. It targets residents, visitors, and businesses, positioning itself as a key government resource. The site leverages modern web technologies including Liferay CMS and React, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with GDPR and cookie consent mechanisms in place. Overall, the site demonstrates a mature digital infrastructure suitable for a large government entity.

W

WinLocal

winlocal.de

58

WinLocal is a German-based B2B digital marketing service provider specializing in online visibility, online reviews, online advertising, and an integrated online control center powered by AI. The company targets businesses seeking to improve their online presence and customer acquisition through measurable and efficient digital marketing solutions. The website is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools such as Google Analytics 4 and Google Tag Manager. Hosting is provided by a reputable German hosting provider, ensuring reliable infrastructure. Security posture is solid with HTTPS enabled and no exposed sensitive data, though the absence of explicit security headers and policies suggests room for improvement. Privacy compliance is basic, with no visible privacy or cookie policies in the provided content. Overall, the website presents a professional and trustworthy image with good content quality and business credibility.

B

Boxtal

boxtal.com

67

Boxtal is a French-based company specializing in online shipping solutions, offering negotiated transport rates, e-commerce shipping services, and software tools to optimize logistics. The company targets e-commerce merchants and businesses requiring efficient parcel shipping and logistics management. Their platform integrates multiple carriers and provides value-added services such as insurance and multi-carrier parcel pickup. Technically, the website employs modern web technologies including JavaScript and web components, with embedded iframes for shipping quotes. The site is mobile-optimized and well-structured, providing a good user experience. Security-wise, HTTPS is enforced and cookie consent mechanisms are implemented, but explicit security headers and policies are not evident. The WHOIS data for the domain is unavailable, which reduces transparency but the website content and branding indicate a legitimate business. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security posture and business credibility transparency.

The website at restomp-excity.online/lander is a minimal placeholder or parking page with no substantive content, business information, or user interaction elements. The domain WHOIS data is suspicious, showing a creation date in the future and multiple prohibitive status flags, which undermines trust and legitimacy. Technically, the site uses basic JavaScript and loads external scripts from Google Adsense and a parking lander service, but lacks HTTPS and security headers. There are no privacy or cookie policies, no contact information, and no evidence of compliance with data protection regulations. Overall, the site appears inactive or abandoned, with very low digital maturity and security posture.

H

High Five GmbH

iamstudent.ch

58

Iamstudent.ch is a well-established online platform operated by High Five GmbH, focused on providing exclusive student discounts and vouchers in Switzerland. The website targets students and young adults, offering a wide range of deals across categories such as fashion, technology, food, and lifestyle. It holds a strong market position in the DACH region with sister sites in Austria and Germany, supported by a robust user base and positive reviews. The platform integrates modern web technologies including AngularJS, Matomo analytics, and a comprehensive consent management platform to ensure GDPR compliance. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, good privacy practices, and a user-friendly experience, making it a trusted resource for its audience.

I

Internationalistische Liste / MLPD

inter-liste.de

47

The Internationalistische Liste / MLPD website serves as the official online presence for a German political alliance and party focused on socialist and environmentalist policies. It provides information about their candidacy in the 2025 Bundestagswahl, their political platform, key figures, and campaign materials. The site targets politically engaged voters and supporters of leftist movements in Germany. Technically, the website is built on WordPress, uses modern web technologies, and is hosted by a reputable German hosting provider. The site is mobile-optimized and presents content in a clear, professional manner. Security-wise, the site uses HTTPS but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

W

white label eCommerce

the-white-label.com

61

white label eCommerce is a small German-based company specializing in providing white label ticketing and e-commerce software solutions. Their platform targets businesses and organizations seeking independent and modern ticketing and e-commerce capabilities under their own brand. The website is built on WordPress using modern technologies such as Bootstrap, Font Awesome, and Visual Composer, indicating a moderate level of digital maturity. SEO and marketing tools like Yoast SEO and Google Tag Manager are implemented to enhance visibility and user engagement. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced DNS security and security headers. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the website is professional and trustworthy but could improve transparency and security practices.

T

Tinycc

tinycc.com

69

Tinycc is a well-established URL shortening and link management service founded in 2004, offering branded short URLs, retargeting pixels, analytics, and custom domain management to marketing professionals and businesses. The company positions itself as a reliable and feature-rich platform with a strong client base including notable brands. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, and Bing Ads tracking, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and domain transfer protection, though improvements like DNSSEC and security headers are recommended. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, Tinycc demonstrates a mature digital presence with high trustworthiness and professional content.

Z

Zákony pro lidi PLUS

zakonyprolidiplus.cz

61

Zákony pro lidi PLUS is a Czech Republic-based subscription legal information service providing comprehensive access to Czech laws, historical legal documents, international treaties, judicial decisions, and related legal resources. The website targets legal professionals, public administration, educational institutions, and students, offering tools such as note-taking, bookmarking, and English translations of key laws. The platform is positioned as a reliable and cost-effective legal research tool in the Czech market. Technically, the site employs modern web technologies including Bootstrap and Font Awesome, with a responsive design and moderate performance. Security posture is good with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies, which are recommended for compliance and trust. The WHOIS data is not publicly available, indicating privacy protection, which is common and justified for this type of service. Overall, the website is professional, trustworthy, and safe for general audiences.

Cubainformacion.tv is a Spanish-language media website focused on delivering news, videos, and political commentary related to Cuba and Latin America. It serves a niche audience interested in Cuban affairs, solidarity movements, and political developments. The site offers a mix of video content, news articles, radio broadcasts, and campaign promotions, positioning itself as a specialized media outlet in this domain. Technically, the website uses a custom CMS named Cubainformacion Publishing System, integrates modern video playback technologies such as Video.js and YouTube iframe API, and employs Google Analytics with IP anonymization for user tracking. The site is mobile-optimized and features a consistent branding approach with good content quality and navigation clarity. Security-wise, the site uses HTTPS and includes CSRF tokens but lacks explicit security headers and detailed privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain ownership verification, but the website content and technical setup appear legitimate and professional. Overall, the site is safe for general audiences and does not contain adult or explicit content.

F

Freundschaftsgesellschaft BRD-Kuba e.V.

fgbrdkuba.de

64

Freundschaftsgesellschaft BRD-Kuba e.V. is a well-established non-profit solidarity organization founded in 1974, focusing on fostering relations and support for Cuba within Germany. The website serves as an informational platform targeting individuals and groups interested in solidarity activities. Technically, the site is built on WordPress using the Divi theme and enhanced with the Rank Math SEO plugin, hosted likely by 1&1 IONOS. The site is accessible, mobile-optimized, and uses HTTPS with good SSL configuration, though it lacks some security headers and formal privacy and cookie policies. Security posture is moderate with room for improvement in transparency and incident response readiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

A

Autodesk

autodesk.fr

74

Autodesk is a globally recognized leader in design and manufacturing technology, offering a comprehensive suite of software solutions for architecture, engineering, construction, manufacturing, and entertainment industries. The website reflects a mature digital presence with professional design, multilingual support, and extensive use of modern web technologies. The technical infrastructure includes advanced monitoring and analytics tools such as Dynatrace, Tealium, and Qualtrics, indicating a high level of digital maturity and performance optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security and privacy policies are not clearly presented in the provided content. Overall, Autodesk's website demonstrates a high level of professionalism and trustworthiness, consistent with its market position as an enterprise technology provider.

A

Autodesk

autodesk.de

63

Autodesk is a globally recognized leader in design and manufacturing software, serving professionals across architecture, engineering, construction, manufacturing, and entertainment sectors. The company offers a comprehensive suite of 3D design and engineering tools that empower innovators worldwide. Their market position is strong, supported by a large enterprise footprint and a history dating back to 1982. Technically, Autodesk's website demonstrates a mature digital infrastructure leveraging modern web technologies such as Adobe Experience Manager, React-based micro frontends, and advanced monitoring via Dynatrace. The site is optimized for performance, accessibility, and SEO, reflecting a high level of digital maturity. From a security perspective, Autodesk employs robust measures including HTTPS, comprehensive security headers, and compliance with industry standards like ISO 27001 and SOC 2. Incident response and vulnerability disclosure processes are publicly documented, indicating a proactive security posture. Overall, Autodesk's website and digital presence reflect a trustworthy, professional, and secure enterprise platform. The absence of WHOIS data is consistent with privacy protection practices common among large corporations. The risk profile is low, with recommendations focusing on continuous security updates and monitoring.

A

Autodesk

autodesk.co.nz

73

Autodesk is a global leader in design and make technology, providing software solutions across architecture, engineering, construction, manufacturing, and entertainment sectors. The company operates an enterprise-grade website that showcases its products and services with a professional and modern design. The website targets professionals and enterprises seeking advanced 3D design, engineering, and entertainment software solutions. Autodesk's market position is strong, supported by a comprehensive portfolio and a large global customer base. Technically, the website leverages modern web technologies including JavaScript, CSS3, and HTML5, integrated with Adobe Experience Manager CMS and advanced analytics and tag management tools such as Dynatrace and Tealium. The site is well optimized for performance, mobile responsiveness, accessibility, and SEO, reflecting a mature digital infrastructure. From a security perspective, Autodesk employs HTTPS with strong SSL configurations, security headers, and content security policies. The site uses secure cookie attributes and third-party monitoring tools to maintain security posture. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, Autodesk's website demonstrates a high level of professionalism, security, and compliance, consistent with its enterprise stature. The domain is longstanding and privacy protected, which is justified given the company's size and brand. Strategic recommendations include enhancing public security disclosures and maintaining vigilant updates to third-party components.

A

Autodesk

autodesk.com.au

73

Autodesk is a globally recognized leader in 3D design, engineering, and entertainment software, serving professionals and enterprises across architecture, engineering, construction, manufacturing, and media industries. The company operates a sophisticated digital presence with a modern technology stack, including advanced analytics and tag management tools, and a robust content management system (Adobe Experience Manager). The website reflects a mature digital infrastructure with excellent performance, mobile optimization, and accessibility. Security posture is strong, with HTTPS enforcement, comprehensive security headers, and publicly available security policies and incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR adherence, and a designated Data Protection Officer. Overall, Autodesk's website and digital footprint demonstrate a high level of professionalism, trustworthiness, and business credibility.

A

Autodesk

autodesk.co.uk

73

Autodesk is a globally recognized leader in 3D design, engineering, and entertainment software, serving professionals across architecture, engineering, construction, manufacturing, and media industries. The company operates a sophisticated digital presence with a modern technology stack including Adobe Experience Manager CMS, advanced analytics, and performance monitoring tools. The website demonstrates excellent design quality, mobile optimization, and SEO practices, reflecting Autodesk's enterprise-grade digital maturity. Security posture is strong with HTTPS enforcement, comprehensive security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Autodesk's website reflects a high level of professionalism, trustworthiness, and business credibility consistent with its market position.

Č

Česká pošta

kredit-ds.cz

59

The website kredit-ds.cz/payment is an official service portal operated by Česká pošta, the Czech postal service, providing a platform for users to top up credit for their data mailboxes. The site targets Czech individuals and businesses who use electronic government communication services. It offers payment options including payment by card and domestic bank transfer, with clear instructions and official branding. The website is well-structured, mobile-optimized, and provides essential contact information, enhancing user trust and accessibility. Technically, the site is built using modern web technologies including React and Material-UI, ensuring a responsive and user-friendly interface. While performance is moderate, the site lacks some advanced SEO and accessibility features. Security practices include HTTPS and form validation, but the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and security hardening. From a security perspective, no critical vulnerabilities or malware indicators were found. However, the lack of WHOIS data due to privacy protection limits domain registration transparency. The site aligns with GDPR requirements through its privacy policy, but cookie consent is missing. Overall, the site demonstrates a solid security posture for a government service but should enhance transparency and compliance features. The overall risk assessment is low, with recommendations focusing on improving security headers, cookie consent, and publishing security policies to strengthen user trust and regulatory compliance. The site’s legitimacy is high given its association with Česká pošta and consistent branding.

Č

Česká pošta, s.p.

datovy-trezor.cz

65

Česká pošta, s.p. operates the Datový trezor service, a supplementary digital mailbox capacity service for existing data mailboxes in the Czech Republic. The website provides a secure, government-backed platform for ordering and managing this service, targeting both individual and business users who require secure digital communication. The site is well-branded with official logos and provides clear contact information, terms, and privacy policies, reflecting a mature digital service offering from a national postal authority. Technically, the site leverages modern web technologies including React and Liferay, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement and standard security headers, though some improvements in vulnerability disclosure and incident response transparency could be made. Overall, the site is trustworthy and professional, though the lack of WHOIS data limits domain registration trust analysis.

Oneplay is a Czech Republic-based streaming service offering a wide range of entertainment content including movies, series, sports, exclusive content, and live TV with replay and recording features. The platform targets a general audience interested in online video entertainment and positions itself as a regional player in the media streaming market. The website demonstrates a modern technical infrastructure utilizing JavaScript frameworks, Google Tag Manager for analytics, and privacy SDKs to manage user consent. However, the absence of publicly available WHOIS data and lack of visible privacy and cookie policies indicate gaps in transparency and privacy compliance. Security posture is moderate with HTTPS enabled and no obvious vulnerabilities, but missing security headers and incident response information suggest room for improvement. Overall, the site is functional and professional but would benefit from enhanced compliance and trust signals to improve business credibility and user confidence.

F

Flying Bisons

flyingbisons.com

71

Flying Bisons is a well-established digital consulting and delivery firm founded in 2015, specializing in helping businesses drive digital transformation and accelerate growth through a broad range of services including UX research, digital strategy, product design, branding, development, and data analytics. The company targets ambitious brands and startups seeking to create world-class digital products and experiences. Their market position is strong, supported by a high Clutch rating and a portfolio of notable clients such as KFC, IKEA, and Burger King. Technically, the website is built with modern web technologies, uses Cloudflare DNS, and integrates advanced tracking and analytics tools like Google Tag Manager and Sentry for error monitoring. The site is mobile-optimized, fast, and accessible with good SEO practices. Security posture is solid with HTTPS enforced and some security best practices in place, though DNSSEC is not enabled and some security headers are not explicitly found. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the domain registration data is consistent and supports the legitimacy of the business. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, and adding vulnerability disclosure information to enhance trust and compliance.

P

Panattoni Development Europe sp .z o.o.

panattoni.sa

56

Panattoni Development Europe sp .z o.o. is a leading global industrial real estate developer, recognized as the largest logistics developer in Europe since 2017. The company has expanded its operations to the Middle East, establishing a presence in Riyadh, Saudi Arabia. Their business model focuses on development, capital deployment, and providing comprehensive real estate services with a strong emphasis on sustainability and green-certified industrial spaces. The website reflects a professional and well-structured digital presence, targeting investors and industrial real estate clients with clear navigation and rich content.

M

Günstige Unterkünfte für Monteure und Reisende | Monteurzimmer.de

monteurzimmer.de

9

Monteurzimmer.de is a German-based online platform offering affordable accommodations primarily targeted at workers and travelers. The website provides a large inventory of over 20,000 listings with direct contact options and free mediation services. The platform positions itself as a significant player in the hospitality sector for budget-conscious travelers and professionals. Technically, the site leverages modern web technologies including JavaScript, Google Maps API, and Google Tag Manager, hosted on Amazon AWS infrastructure. The site is mobile optimized and offers multi-language support, enhancing accessibility for a diverse user base. Security posture is adequate with HTTPS enabled and basic security practices, though there is room for improvement in security headers and incident response transparency. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and contact transparency to improve trust and compliance.

H

High Five GmbH

iamstudent.de

59

iamstudent.de is a German online platform operated by High Five GmbH that provides students with access to exclusive discounts, coupons, and sweepstakes tailored to their needs. The platform is well-positioned in the student discount market in Germany and extends its services to Austria and Switzerland through related domains. The website offers a user-friendly experience with a focus on student engagement and brand partnerships. Technically, the site leverages modern web technologies including AngularJS, consent management platforms, and analytics tools, hosted on Amazon AWS infrastructure. Security posture is solid with HTTPS enforcement and GDPR compliance, though explicit security policies and incident response contacts are not prominently displayed. Overall, the site demonstrates a professional and trustworthy presence with good privacy practices and a clear business focus on education and retail sectors.

D

Günstige Unterkünfte für die Zwischenzeit | DeinZimmer.de

deinzimmer.de

68

DeinZimmer.de is an online platform specializing in affordable temporary accommodations in Germany, targeting students and individuals seeking short-term housing solutions such as student rooms, shared apartments, and apartments. The platform offers over 5,000 listings with a focus on ease of search, free mediation, and direct contact between renters and landlords. Technically, the website leverages modern JavaScript, Google Maps API for location services, and Google Tag Manager for analytics, hosted on Amazon AWS infrastructure. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. Overall, the website is legitimate and professional but would benefit from enhanced privacy compliance and security best practices.

R

RVB Books

rvb-books.com

65

RVB Books is an independent publisher and gallery specializing in fine arts books, operating primarily through an e-commerce Shopify platform. The company has a niche market position targeting art enthusiasts and collectors, offering curated collections of art books and exhibitions. The website is professionally designed with a clear catalog and artist listings, supporting a small business model founded in 2011 in France. Technically, the site leverages Shopify's robust infrastructure, modern JavaScript libraries, and GDPR cookie consent mechanisms, ensuring a good user experience and moderate performance. Security posture is solid with HTTPS enforced, domain status protections, and form protection via hCaptcha, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the site is trustworthy, safe, and compliant with basic privacy requirements, though improvements in transparency and security documentation are recommended.

G

Gransy, s.r.o.

mapy.cz

63

Mapy.com is a well-established online mapping portal operated by Gransy, s.r.o., offering detailed global maps with specialized features such as hiking and cycling trails, route planning, and aerial/3D views. The platform targets tourists, outdoor enthusiasts, and general users seeking comprehensive map services. The website demonstrates a mature digital infrastructure leveraging modern JavaScript APIs, asynchronous loading, and integration with Seznam.cz services. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though additional security headers and formal security policies could enhance protection. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, the site is professional, user-friendly, and trustworthy with a strong market position in the transportation and mapping sector.

T

Transmatico GmbH

transmatico.com

54

Transmatico GmbH is a German-based company specializing in sustainable local crossmedia advertising solutions for newspapers, magazines, and advertising papers. Their offerings include digital native advertising content preparation, landing pages, traffic management with SEO, and sales training. The company has a strong market presence with over 200 successful integrations and multiple industry awards, positioning them as a reputable player in the media advertising sector. The website is professionally designed, mobile-optimized, and provides comprehensive information about their products and client successes. Technically, the site runs on WordPress with Elementor and uses modern analytics tools like Matomo and Google Analytics, alongside a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS and security headers in place, though the absence of a public security policy and incident response contacts is noted. The WHOIS data for the domain is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website and business appear legitimate and professional, but the domain registration inconsistency slightly reduces trustworthiness.

P

Domain Default page

pm-srv-15.de

32

The analyzed website pm-srv-15.de currently serves as a default placeholder page generated by the Plesk hosting control panel. It contains no active business content, contact information, or privacy and security policies. The page primarily targets IT specialists or website owners managing hosting environments, providing links to Plesk resources. The domain appears to be hosted by Host Europe with DNS partly managed by GoDaddy. The lack of HTTPS enforcement and absence of security headers indicate a low security posture. No analytics or tracking mechanisms are present, and the site does not collect user data. Overall, the website is inactive and does not represent an operational business or service at this time.

ConversionRuler is a specialized SaaS provider offering subscription-based PPC and online marketing campaign tracking and ROI measurement services. Established in 2002, the company targets SEO, SEM, and PPC professionals as well as ecommerce businesses seeking detailed insights into their marketing effectiveness. The website presents a clear business model with transparent pricing and a focus on usability and integration with various online marketing channels. Technically, the site uses standard web technologies with AWS DNS infrastructure, but lacks modern CMS or advanced frameworks. The design is professional though somewhat dated, with basic mobile optimization and accessibility features. Security posture is moderate; while domain registration is stable and protected against unauthorized changes, the absence of DNSSEC and security headers, as well as missing cookie consent mechanisms, indicate areas for improvement. No explicit privacy or incident response policies are published, which may affect compliance with GDPR and other regulations. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy practices to strengthen user trust and regulatory compliance.

M

Max Planck Institute for Security and Privacy

mpi-sp.org

63

The Max Planck Institute for Security and Privacy is a research institute founded in 2019 and affiliated with the Max Planck Society in Germany. It focuses on advancing security and privacy technologies through foundational research, systems development, and societal impact. The website serves academics, researchers, students, and professionals interested in security and privacy research, offering information about research areas, people, career opportunities, and contact details. The business model is centered on academic research and education within the technology sector, positioning itself as a leading institution in its field. Technically, the website is built on the JustRelate CX Cloud CMS platform, utilizing modern JavaScript libraries such as RequireJS and Slick Carousel for UI components. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate with deferred loading of styles and scripts. Security is well implemented with HTTPS enforced and CSRF protection on forms, though explicit security headers are not detected. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Security posture is strong overall with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in adding security headers, publishing a security policy, and providing vulnerability disclosure information. The absence of WHOIS data reduces trust slightly, but the strong affiliation with the Max Planck Society and professional website design mitigate concerns. No advertising or tracking services are detected, supporting user privacy. Overall, the website is safe, professional, and trustworthy, serving its academic audience effectively. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response and vulnerability disclosure information, and improving accessibility features to further strengthen compliance and user trust.

H

Hochschule Bochum

hochschule-bochum.de

64

Hochschule Bochum is a large public University of Applied Sciences in Germany offering a wide range of bachelor and master degree programs across disciplines such as construction, economics, technology, health, computer science, and sustainability. The website is professionally designed, content-rich, and well-structured to serve students, prospective students, and academic stakeholders. Technically, the site is built on TYPO3 CMS with modern web technologies and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and privacy compliance documentation. No signs of blocking or WAF interference were detected, allowing full content access. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security disclosures.

B

Bochum Marketing GmbH

bochum-tourismus.de

52

Bochum Marketing GmbH operates the official tourism website for the city of Bochum, Germany, providing comprehensive information on local attractions, events, accommodations, and cultural highlights. The website serves as a key digital platform to promote tourism and local engagement, targeting visitors and residents interested in exploring Bochum's offerings. The site is built on TYPO3 CMS and employs modern web technologies, including responsive design and accessibility features, ensuring a positive user experience across devices. While the site is well-branded and professionally maintained, it lacks explicit privacy and terms of service policies, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled, but could be improved by adding security headers and formal incident response contacts. Overall, the website is a reliable and authoritative source for tourism information in Bochum, with room for enhancement in privacy and security transparency.

I

Integrovaná doprava Středočeského kraje, p.o.

idsk.cz

58

Integrovaná doprava Středočeského kraje (IDSK) is a public organization focused on managing and developing an integrated transport system for the Central Bohemian Region and Prague. Established in 2017, it plays a key role in coordinating rail and bus transport services, economic administration, quality standards, and marketing efforts in the region. The website reflects a professional and consistent brand presence with clear information targeting residents and travelers in the region. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks advanced security headers and uses an outdated JavaScript library. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible, supported by official contact details and partner links.

W

Webstudio

webstudio.team

49

Webstudio is a specialized service provider focused on bringing healthcare data to the web through interactive visualizations, graphic design, editorial work, and web development. Their market position is niche, serving state and academic sectors in the Czech Republic with a focus on healthcare and medical education projects. The website demonstrates a good level of digital maturity with modern technologies such as Google Analytics and Microsoft Clarity integrated for analytics and user behavior insights. The site is well-designed, mobile-optimized, and accessible, providing a professional user experience. Security posture is solid with HTTPS enforced and appropriate security headers, although explicit security and privacy policies are not publicly available. Overall, the domain and website appear legitimate and trustworthy, with privacy-protected WHOIS data typical for small specialized businesses.

T

TOPlist s.r.o.

toplist.cz

58

TOPlist s.r.o. operates a Czech web analytics and visitor counting service, providing online traffic auditing and advertising listings primarily targeting website owners and businesses interested in monitoring their web traffic. The company has a long-standing presence since 1997, positioning itself as a trusted local provider in the web analytics niche. The website is professionally designed with clear navigation and a focus on delivering relevant content and services. Technically, the site employs modern frontend technologies including Bootstrap, FontAwesome, jQuery, and the Ace Admin Template, ensuring a responsive and user-friendly experience. However, some technical aspects such as security headers and privacy compliance require improvement. Security posture is moderate with HTTPS enabled and obfuscated email addresses, but lacks explicit security policies and headers. Overall, the site is safe, trustworthy, and well-maintained but would benefit from enhanced privacy and security practices to align with modern compliance standards.

R

Ruth van Beek

ruthvanbeek.com

45

Ruth van Beek's website serves as a professional portfolio for the artist based in the Netherlands, showcasing her art and related book publications. The site targets art enthusiasts and potential gallery visitors, positioning itself as a niche artist platform with gallery representation and book sales. The business model revolves around art promotion and sales through galleries and publications. Technically, the website is built on the ProcessWire CMS with custom JavaScript and CSS, delivering a visually appealing and moderately performant experience with good mobile optimization. However, accessibility features are basic and could be improved. Security posture is moderate with HTTPS enabled and email obfuscation implemented, but lacks security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible GDPR compliance mechanisms. Overall, the website is trustworthy and professional but would benefit from improved security and privacy practices.

H

Harvey Lloyd Screens

harveylloydscreens.co.uk

55

Harvey Lloyd Screens is a small, established UK-based business specializing in bespoke screen printing services for artists, illustrators, and graphic designers. The company has a long history dating back to 1976 and operates an e-commerce platform hosted on Shopify, targeting creative professionals seeking high-quality screen printing solutions. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site leverages modern Shopify infrastructure and scripts, ensuring moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced and use of hCaptcha for form protection, though explicit security headers are minimal. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. However, the WHOIS data for the domain is unavailable due to domain naming rules errors, which raises concerns about domain registration legitimacy. Overall, the site is trustworthy and functional but would benefit from enhanced security headers and clearer business contact information.

T

TINYCC

tiny.cc

66

Tiny.cc is a well-established URL shortening service operating since 2006, offering free and premium plans to general internet users and businesses. The service provides core features such as URL shortening, link editing, click statistics, QR code generation, and custom domains. The website is professionally designed with good mobile optimization and clear navigation, supporting a positive user experience. The presence of a cookie consent banner and privacy policy indicates awareness of privacy compliance requirements. Technically, the site uses modern JavaScript libraries and third-party advertising and sharing tools, with HTTPS enforced ensuring secure communications. However, security headers and explicit security policies are not published, representing an area for improvement. WHOIS data confirms the domain's legitimacy and consistent registration details, supporting trustworthiness. Overall, the site is functional, secure, and credible with room for enhanced security transparency and contact information.