Security Directory

F

Facebook, Inc.

react.dev

57

React.dev is the official website for React, a leading JavaScript library for building web and native user interfaces, maintained by Meta Platforms, Inc. The site provides comprehensive documentation, learning resources, and community engagement tools targeting web developers and software engineers globally. It positions React as a foundational technology in modern frontend development with strong industry adoption and ecosystem support. The website demonstrates a mature technical infrastructure leveraging React and Next.js frameworks, optimized for performance, accessibility, and SEO. Security posture is strong with HTTPS enforcement and security headers, though explicit privacy and cookie policies are absent. Overall, the site reflects a professional and trustworthy digital presence aligned with Meta's standards.

U

Universal Media

ceotodaymagazine.com

59

CEO Today is a specialized online media platform and magazine dedicated to delivering the latest corporate developments, business news, and leadership insights targeted at CEOs and C-level executives. The website is operated by Universal Media Ltd, a UK-based media company. It offers a variety of content including interviews, news articles, awards, and a coaching directory, positioning itself as a niche media outlet for business leaders. Technically, the website is built on WordPress and leverages modern web technologies such as Google Tag Manager, Chart.js, and the Complianz GDPR/CCPA plugin for privacy compliance. The site demonstrates good mobile optimization, SEO practices, and performance characteristics, although some accessibility features could be enhanced. Advertising and affiliate marketing are integrated transparently, with multiple ad networks and affiliate programs in use. From a security perspective, the site enforces HTTPS, employs standard security headers, and manages cookie consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or incident response information suggests room for improvement in transparency and preparedness. Overall, the website presents a professional and trustworthy front for its business audience. The lack of WHOIS data limits domain trust verification, but the content quality and compliance measures support a positive risk assessment. Strategic recommendations include publishing a security policy, enhancing accessibility, and maintaining vigilance on third-party scripts.

C

Crownpeak Technology, Inc

crownpeak.com

67

Crownpeak Technology, Inc. is an enterprise technology company specializing in AI-driven product discovery and enterprise content management solutions. Their flagship products, Fredhopper and FirstSpirit, enable businesses to enhance digital experiences, improve conversions, and ensure accessibility compliance. The company targets large enterprises seeking scalable and flexible digital growth solutions. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding. Technically, the site employs modern analytics and marketing tools, robust consent management for GDPR compliance, and enforces HTTPS with security headers. However, the absence of WHOIS registration data raises questions about domain registration transparency. Security posture is solid but could be improved with published security policies and incident response information. Overall, Crownpeak presents as a credible and professional technology enterprise with room for enhanced transparency and security documentation.

A

Amicus Therapeutics, Inc.

amicusassisthcp.com

62

AmicusAssistHCP.com is a dedicated patient support website operated by Amicus Therapeutics, Inc., targeting US healthcare professionals who prescribe Amicus medications. The site provides resources, referral forms, and direct phone support to assist patients with insurance, financial aid, and treatment coordination. The business model focuses on enhancing patient adherence and support through personalized assistance, positioning Amicus Therapeutics as a patient-centric pharmaceutical company. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and OneTrust for cookie consent, hosted via GoDaddy. The site is mobile-optimized and accessible, with a moderate performance profile. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and DNSSEC are not enabled, representing areas for improvement. Privacy compliance is strong, with clear links to comprehensive privacy and terms of use hosted on the parent company domain. Overall, the website is professional, trustworthy, and aligned with healthcare industry standards.

C

Creatio

bpmonline.com

78

Creatio is an enterprise SaaS company specializing in CRM and workflow automation platforms that leverage no-code and AI technologies to accelerate business process automation and customer engagement. The company positions itself as a provider of fast-to-value solutions with high ROI, targeting businesses seeking to streamline operations and enhance customer relationship management. The website is built on Drupal 11 and integrates multiple modern marketing and analytics tools, including Google Tag Manager, Hotjar, and Cookiebot, indicating a mature digital infrastructure. Security practices include HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response information are not evident. The absence of WHOIS data suggests privacy protection, which is typical for enterprise SaaS providers but slightly reduces transparency. Overall, the website is professional, well-branded, and safe for general audiences.

P

Paris&Co

parisdelinnovation.fr

38

Le Paris de l'Innovation is an annual innovation event organized by Paris&Co and the City of Paris, held at the Hôtel de Ville. It serves as a major networking and business development platform for startups, investors, public institutions, and large companies focused on ecological, environmental, and social transition. The event offers startup meetups, demo spaces, conferences, workshops, and incubator networking opportunities. The website is professionally designed using WordPress with modern technologies and SEO best practices, providing good user experience and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly reduces domain trust, but the official partnerships and event details support legitimacy. Overall, the website is a credible and well-maintained platform for innovation stakeholders in Paris.

The website www.zaragozaciudad.net serves as an official municipal blog platform for the Ayuntamiento de Zaragoza, targeting local citizens with community engagement and information about city neighborhoods and municipal services. The site provides a directory of citizen blogs categorized by topics and neighborhoods, supporting local communication and participation. The business model is public sector focused, providing a platform for citizen interaction and municipal transparency. The website content is primarily in Spanish and reflects a government entity's communication channel. Technically, the website uses XHTML 1.0 and CSS 2.0 with JavaScript enhancements and integrates Google Analytics and Google Tag Manager for visitor tracking. The design is basic and somewhat dated, with limited mobile optimization and accessibility features. No modern CMS or advanced frameworks are detected. Performance is moderate, and SEO is basic with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site uses HTTPS as inferred from script sources but lacks explicit security headers such as CSP or HSTS. No privacy or cookie policies are present, indicating GDPR compliance gaps. The WHOIS data is missing or unavailable, which is inconsistent with the active municipal content and raises concerns about domain legitimacy. No incident response or vulnerability disclosure information is published, and no security best practices beyond basic HTTPS are observed. Overall, the website is functional and serves its public sector purpose but has notable gaps in privacy compliance, security posture, and domain registration transparency. Strategic improvements in security headers, privacy policies, and WHOIS registration clarity are recommended to enhance trust and compliance.

N

Nicer LLC

nicer.io

61

Nicer Studio is a technology-focused product design and development agency that partners with scale-ups and Fortune 100 companies to help them operate like startups. They specialize in building new digital products, offering services including branding, product design, operational support, funding, talent acquisition, and AI guidance. The website demonstrates a professional and modern digital presence with a strong emphasis on user experience and visual design. Technically, the site leverages modern JavaScript libraries such as GSAP for animations, Google Tag Manager for analytics, and is hosted on a CDN, ensuring good performance and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a credible business front but would benefit from improved transparency and security documentation.

G

GEMINI oční klinika a.s.

gemioptal.cz

52

Gemioptal.cz is an e-commerce website offering specialized eye health supplements developed by the Czech company GEMINI oční klinika a.s. The company leverages its expertise in ophthalmology to market products such as Gemioptal HERBAL, FORTE, and TOP Q, targeting consumers seeking to maintain or improve eye health. The website is professionally designed with clear navigation, customer testimonials, and a bonus program to enhance customer engagement. Technically, the site uses established technologies including jQuery, Google Tag Manager, and cookie consent scripts, ensuring compliance with GDPR and providing a good user experience across devices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place; however, the absence of security headers and use of an outdated jQuery version present moderate risks. The lack of WHOIS data transparency slightly reduces domain trustworthiness, though the business information and contact details are clearly presented and verifiable. Overall, the site is a credible and professional platform for health supplement sales in the Czech market.

C

Charentes Tourisme

charentestourisme.com

47

Charentes Tourisme is a regional tourism organization based in France, focused on supporting and boosting tourism activities in the Charentes region. The website offers a range of services including professional support, certifications like Tourisme & Handicap and Accueil Vélo, and digital tools such as online booking and data intelligence platforms. The organization targets tourism professionals, local authorities, and project leaders, positioning itself as a key regional player with a medium-sized operation founded in 2017. Technically, the website is built on WordPress with WooCommerce and uses modern tools like Google Analytics, Matomo, and Google Tag Manager, hosted by OVH sas. The site is well designed, mobile-optimized, and SEO-friendly, providing a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and some security plugins but lacks DNSSEC and explicit security headers, and does not publish a security policy or incident response information. Overall, the domain registration is consistent and transparent, supporting the legitimacy of the business. The site is safe for general audiences with no adult or questionable content.

N

Novaxia Investissement

novaxia-investissement.fr

47

Novaxia Investissement is a French real estate investment company specializing in sustainable and responsible investment funds, including SCPI and development funds classified under ISR and SFDR standards. The company targets investors seeking to invest in real estate with an impact focus, offering diversified portfolios and solutions such as insurance life and retirement plans. The website demonstrates a mature digital presence built on WordPress with modern technologies and good SEO practices. Security posture is adequate with HTTPS and reCAPTCHA integration, though some security headers are missing. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data limits domain trust verification, but the professional presentation and content quality support business credibility. Overall, the site is well-structured, informative, and trustworthy for its target audience.

P

PortlandLabs, Inc.

portlandlabs.com

65

PortlandLabs, Inc. is a technology company specializing in delivering innovative, secure, and scalable digital solutions primarily targeting government agencies and large enterprises. The company emphasizes compliance with rigorous security frameworks such as ISO 27001, HIPAA, SOC2, and IL2/IL4, serving clients including the U.S. Department of Defense and Fortune 100 companies. Their service offerings span artificial intelligence, web content management, analytics, managed IT, application development, user experience design, and data privacy and protection. The website reflects a mature business with a professional online presence and strong trust indicators such as client logos and testimonials. Technically, the website is built on Concrete CMS and employs modern web technologies including jQuery, Google Tag Manager, Matomo Analytics, and Userback for feedback. The site is mobile optimized with good SEO and accessibility basics, though some improvements in accessibility and cookie consent mechanisms are recommended. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and claims compliance with multiple security standards. However, no explicit security headers were detected in the provided data, and no incident response or vulnerability disclosure information is publicly available. The absence of WHOIS registration data is a notable anomaly that may warrant further investigation to confirm domain legitimacy. Overall, PortlandLabs presents a credible and professional digital presence with a strong security and compliance focus. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security policies and incident response contacts, and verifying domain registration details to strengthen trust and transparency.

T

Tipiak

tipiak.fr

45

Tipiak is a French food brand specializing in products such as taboulé, quinoa, couscous, and boulgour, supported by a rich recipe platform with over 300 recipes. The website serves as both a product showcase and a culinary inspiration hub targeting general consumers interested in cooking. Technically, the site is built on Drupal CMS, uses Google Tag Manager for analytics, and implements EU cookie compliance mechanisms, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible with good SEO practices. Security posture is adequate with cookie consent and privacy policies in place, but lacks explicit security headers and published incident response information. The absence of WHOIS data for the domain reduces trustworthiness, though the website content and external links suggest a legitimate business. Overall, the site is professional and trustworthy but would benefit from enhanced security transparency and domain registration verification.

P

Paysan Breton

paysanbreton.com

50

Paysan Breton is a well-established French dairy brand specializing in traditional dairy products such as butter, whipped cheeses, fermented milks, and crepes, produced in Brittany. The website reflects a mature digital presence with a professional design, multilingual support, and rich content including recipes and news updates. The technical infrastructure is based on Drupal 10 CMS, leveraging modern web technologies and analytics tools like Google Tag Manager and Matomo. Security posture is solid with HTTPS and some security headers, though improvements are recommended. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS registration data raises some concerns about domain legitimacy, warranting further verification. Overall, the site is trustworthy, user-friendly, and well-positioned in the retail dairy sector.

Tendre & Plus is a French brand specializing in quality meat products and providing consumers with easy and quick meal ideas. The brand operates under the Elivia group, itself a subsidiary of the Terrena cooperative, positioning it well within the regional meat retail sector. The website offers a variety of recipes, product information, and customer engagement through a club offering discounts. Technically, the site is built on Drupal 8 with modern JavaScript libraries and includes cookie consent mechanisms compliant with GDPR. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, while HTTPS and cookie consent are implemented, the absence of explicit security headers and incident response contacts suggests room for improvement. The missing WHOIS data for the domain is a concern for domain legitimacy but does not detract from the overall trustworthiness given the brand's established presence and parent company backing. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration status to improve trust and compliance.

La Nouvelle Agriculture is a French cooperative focused on sustainable agriculture and direct consumer engagement, offering poultry, eggs, beef, and pork products with traceability. The website is built on Drupal 10 and integrates multiple analytics and advertising tools with a consent-based approach, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS and security headers, though privacy compliance is limited by the absence of explicit privacy and terms of service pages. Overall, the website presents a trustworthy and professional image aligned with its cooperative agricultural mission.

Z

Zámecké návrší z. ú.

zamecke-navrsi.cz

50

Zámecké návrší z. ú. is a cultural and hospitality organization based in Litomyšl, Czech Republic, managing the Zámecké návrší area, a UNESCO heritage site. The organization offers accommodation, event space rental, cultural activities, and visitor experiences, targeting tourists, families, and event organizers. The website reflects a medium-sized non-profit entity with a strong regional presence and official partnerships with local government and tourism bodies. Technically, the website uses modern web technologies including Google Analytics, Google Tag Manager, and a custom CMS likely based on the Nette Framework. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers are missing and no explicit incident response information is provided. Privacy compliance is strong with comprehensive GDPR-aligned policies and a named Data Protection Officer. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and suggesting further verification is needed. Overall, the website is professional, trustworthy, and well-suited for its cultural and hospitality mission.

Radio Čas s.r.o. is a well-established regional radio broadcaster in the Czech Republic, founded in 1998 and operating primarily in the Moravia and Silesia regions. The company offers radio broadcasting, online streaming, podcasts, event ticket sales, and promotional competitions. The website reflects a professional and modern digital presence built on WordPress, with a focus on user experience and content delivery. The technical infrastructure includes modern JavaScript libraries and performance optimizations, hosted likely by Active24, a reputable provider. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are needed in security headers and privacy compliance. Contact information is clearly presented, and social media integration is active. Overall, the site is trustworthy and professionally managed, but lacks explicit privacy and cookie policies, which are important for GDPR compliance.

K

Kvalitní ŽIVOT.com

kvalitnizivot.com

57

Kvalitní ŽIVOT.com is a Czech Republic based e-commerce business specializing in natural health products, primarily focusing on Moringa supplements sourced from Tenerife. The company positions itself as a niche leader offering unique, patented probiotic and telomerase activation products, targeting health-conscious consumers including vegans and vegetarians. The website is professionally designed, with clear navigation, comprehensive product information, and multiple trust indicators such as EU organic certifications and GDPR compliance. Technically, the site runs on the Shoptet e-commerce platform, uses standard analytics and marketing tools, and enforces HTTPS with CSRF protection on forms. However, the WHOIS data for the domain is missing, which raises concerns about domain legitimacy despite the active and professional web presence. Overall, the site demonstrates a good security posture but could improve by updating outdated libraries and adding explicit security headers and incident response contacts.

T

Technické služby města Litoměřice

tsmlt.cz

60

Technické služby města Litoměřice is a municipal contributory organization established to provide essential technical and communal services to the city of Litoměřice, Czech Republic. Founded in 1995, the organization focuses on maintaining city cleanliness, public green spaces, infrastructure repairs, and other city maintenance tasks. The website reflects a well-established local government service provider with a clear mission and target audience consisting primarily of city residents and local stakeholders. The digital presence is professional, with good content quality and clear navigation, supporting the organization's public service role. From a technical perspective, the website employs a traditional tech stack including jQuery, Google Fonts, and Google Tag Manager for analytics. While the site is mobile-optimized and performs moderately well, the use of an outdated jQuery version suggests some technical debt and potential security risks. The hosting is managed through WEDOS, a Czech hosting provider, consistent with the domain registration data. Security posture is moderate; the site uses HTTPS and has implemented cookie consent mechanisms in compliance with GDPR. However, no explicit security headers or vulnerability disclosure policies are present, and the older JavaScript libraries could expose the site to known vulnerabilities. Contact information and a data protection officer are clearly provided, indicating some compliance with data protection regulations. Overall, the site is trustworthy but could benefit from enhanced security measures and updated technical components. The overall risk assessment is low to moderate, with no critical security issues detected. Strategic recommendations include updating JavaScript libraries, implementing security headers, formalizing security policies, and enhancing privacy documentation to improve compliance and trust. These steps will strengthen the organization's digital security posture and better protect user data while maintaining a professional and accessible web presence.

P

Parkování ČB › Parkování ČB

parkovanicb.cz

49

The website www.parkovanicb.cz appears to be related to parking services, as indicated by its title 'Parkování ČB'. However, the site lacks substantive business description, contact information, and privacy or cookie policies. The technical infrastructure is based on an older CMS (InizioCMS) and Bootstrap 3.3.7a framework, with analytics tools such as Google Tag Manager and Hotjar implemented. Security posture is weak due to the absence of HTTPS, security headers, and no visible incident response or security policies. The domain WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the site is accessible but minimal in content and security features, indicating a need for significant improvements in compliance, security, and business transparency.

P

ProDarce.cz

prodarce.cz

42

ProDarce.cz is a Czech Republic-based online platform dedicated to providing benefits, discounts, and rewards for voluntary blood and bone marrow donors. It positions itself as the largest database of such benefits in the country, targeting donors and related communities. The website offers regularly updated content about partner offers, insurance contributions, and events supporting blood donation. Technically, the site is built on WordPress with common plugins such as Yoast SEO and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a user-friendly experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy policies. WHOIS data is unavailable, which limits full trust verification of the domain registration. Overall, the site is safe, professional, and serves a niche non-profit community effectively.

M

Mary's Meals Česká republika z.s.

marysmeals.cz

65

Mary's Meals Česká republika z.s. is a Czech affiliate of the international non-profit organization Mary's Meals, dedicated to providing nutritious school meals to children in impoverished communities worldwide. The website clearly communicates its mission, programs, and ways to get involved, targeting donors, volunteers, and schools within the Czech Republic. The organization maintains a strong market position as a reputable charity with a consistent brand and transparent communication. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager for analytics and CookieFirst for consent management. The site is mobile-optimized, accessible, and performs moderately well, with good SEO practices and structured content. Security measures such as HTTPS and security headers are properly implemented, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the absence of WHOIS data for the domain reduces transparency and slightly impacts trustworthiness. Overall, the site is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing transparency by publishing a security policy and vulnerability disclosure, improving incident response visibility, and maintaining regular audits of third-party scripts to mitigate risks. These steps will strengthen the organization's security posture and stakeholder trust.

K

Kwantic

kwantic.fr

49

Kwantic is a French web development agency founded in 2020, specializing in custom web solutions including ERP, CRM, application development, and e-commerce platforms. The company operates multiple offices across major French cities, indicating a regional presence and a focus on serving businesses seeking digital transformation. The website is professionally designed using WordPress with modern technologies such as jQuery, Bootstrap, and various analytics tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, but lacks published privacy policies and security headers, which are important for compliance and protection. Overall, the website presents a credible business with room for improvement in privacy and security transparency.

P

Průvodce Koloběhem

pruvodce-kolobehem.cz

53

Průvodce Koloběhem operates as a specialized content platform providing the largest database of scooter routes primarily focused on the Czech Republic and Europe. The website offers detailed trip descriptions and navigation aids for mobile users, targeting outdoor enthusiasts and scooter riders. The business model centers on content provision and partnerships with related companies such as Kostka Koloběžky and Kudyznudy.cz, enhancing its market position as a leading resource in its niche. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing. Hosting is managed via Webflow's CDN and Amazon S3 for static assets, ensuring moderate performance and good mobile optimization. However, accessibility features are basic and there is room for improvement in security headers and privacy compliance mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. It integrates common tracking and retargeting services but lacks explicit cookie consent banners and security policies. The WHOIS data is privacy protected, which is reasonable for this business type, though it reduces transparency. No critical vulnerabilities or security incidents are evident from the analysis. Overall, the website presents a professional and trustworthy front with good content quality and business credibility. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance its security posture and user trust.

N

New Target, inc.

newtarget.com

70

New Target, Inc. is a professional digital agency specializing in creative, marketing campaigns, and website design, primarily serving brands and nonprofits in Southern California and Washington D.C. The company offers a comprehensive suite of services including marketing, website development, branding, and creative production. Their market position is strong within the nonprofit and brand sectors, supported by award-winning campaigns and a well-structured digital presence. The website reflects a mature digital infrastructure leveraging WordPress and Elementor, with extensive use of modern analytics and marketing technologies. Security posture is solid with HTTPS and security headers implemented, though there is room for improvement in publicly disclosing privacy and security policies. Overall, the business demonstrates credibility and professionalism, but the absence of WHOIS data raises questions about domain registration legitimacy that should be addressed.

U

UNOS

unos.org

50

UNOS (United Network for Organ Sharing) is a well-established nonprofit organization dedicated to managing the organ transplantation system in the United States. The organization provides critical services including organ donor registration, organ matching, data analytics, advocacy, and education. Their website reflects a mature digital presence with comprehensive content targeting donors, patients, healthcare professionals, and advocates. The site is built on WordPress using the Divi theme, incorporating modern web technologies and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. Security posture is solid with HTTPS enforcement and clientTransferProhibited domain status, though improvements such as DNSSEC and enhanced security headers are recommended. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

H

Health Resources & Services Administration

organdonor.gov

77

The website organdonor.gov is an official U.S. government platform managed by the Health Resources & Services Administration (HRSA) under the Department of Health & Human Services. It serves as a comprehensive resource for organ, eye, and tissue donation information, targeting both the general public and healthcare professionals. The site provides educational content, registration guidance, statistics, and professional outreach materials, positioning itself as a trusted authority in the organ donation space. Technically, the site is built on Drupal 10 and leverages modern web technologies including the US Web Design System, Google Analytics, and YouTube integration. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The hosting environment is consistent with government infrastructure, ensuring reliability and security. From a security perspective, the site enforces HTTPS and employs several best practices, though explicit security headers like X-Frame-Options were not confirmed. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy linked from the site, though a cookie consent mechanism is not evident. The WHOIS data is unavailable due to privacy typical for .gov domains, but the domain's legitimacy is supported by consistent branding and authoritative content. Overall, organdonor.gov presents a professional, secure, and trustworthy online presence with minor areas for improvement in cookie consent and explicit security header implementation. It effectively fulfills its mission as a government resource for organ donation awareness and education.

U

UNOS

transplantliving.org

55

UNOS (United Network for Organ Sharing) operates a comprehensive website providing patient resources related to organ transplantation. The organization is a well-established non-profit entity in the healthcare sector, with a domain registered since 1993, reflecting its longstanding presence. The website targets patients, transplant candidates, and their families, offering educational brochures and transplant-related information. Technically, the site is built on WordPress with the Divi theme, leveraging modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and Bing Ads. The site is mobile-optimized and uses HTTPS, ensuring secure data transmission. However, explicit privacy and cookie policies are not found on the analyzed page, which impacts privacy compliance scoring. Security posture is generally good with HTTPS and reCAPTCHA usage, but lacks visible security headers and incident response information. Overall, the website is professional, trustworthy, and safe for general audiences.

B

Bioracer Official Store

bioracer.com

60

Bioracer is a premium sportswear company specializing in custom bike clothing and accessories, targeting cyclists, triathletes, and athletes across multiple sports disciplines including skating and skiing. The company emphasizes performance, aerodynamics, and comfort, leveraging real-world racing data and wind tunnel testing. Their market position is strong within the niche of high-performance sports apparel, supported by endorsements and medals from professional athletes. The website is multilingual, professionally designed, and integrates e-commerce capabilities with a dedicated webshop and design-your-own apparel service. Technically, the website is built on WordPress using modern themes and plugins, with integrations for marketing and analytics tools such as HubSpot, Mailchimp, Google Tag Manager, and Facebook Pixel. The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional digital presence with comprehensive content and strong branding. The lack of WHOIS data for the subdomain is expected and does not detract from legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

A

AGConsult

agconsult.com

63

AGConsult is a well-established usability, CRO, and UX design agency operating primarily in Belgium and the Netherlands. With over 20 years of experience since 2001, the company specializes in user research, AB testing, UX design, conversion optimization, and training/coaching services. The agency serves businesses, governments, and non-profits, positioning itself as an independent and internationally recognized expert in its field. The website reflects a professional and consistent brand image, showcasing notable clients and testimonials that reinforce its market credibility. Technically, the site is built on WordPress with WooCommerce and leverages modern tools such as Google Tag Manager and GDPR-compliant cookie management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data limits domain registration trust verification but does not detract significantly from the overall legitimacy given the professional content and client references. Overall, AGConsult presents a strong business and technical profile with good privacy compliance and user experience.

B

Boiron

boiron.cz

66

Boiron is a French pharmaceutical company specializing in homeopathic medicinal products, positioning itself as a world leader in homeopathy since its founding in 1932. The website targets a general audience interested in gentle and natural health treatments, offering product information, health articles, and educational content. The company emphasizes quality and respect in its business philosophy. Technically, the website is built using modern frameworks such as Next.js and Tailwind CSS, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS enforced and some tracking scripts present, but lacks visible security headers and explicit security policies. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and consistent branding support legitimacy. Privacy compliance is partial, with cookie consent implemented but no clear privacy or terms of service pages found. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

A

Addonify

addonify.com

63

Addonify is a specialized provider of WooCommerce addons designed to enhance e-commerce store performance and sales conversion. Founded in 2020, the company offers a suite of plugins including Quick View, Wishlist, Floating Cart, and Compare Products, targeting WooCommerce store owners seeking to improve user experience and sales efficiency. The website is built on WordPress using Elementor and Astra theme, leveraging modern web technologies and integrating analytics tools such as Google Analytics and Microsoft Clarity. Security posture is solid with HTTPS and Cloudflare DNS, though DNSSEC is not enabled and security headers are absent. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a professional and trustworthy image with good content quality and user experience but requires improvements in privacy and security transparency.

R

Region-Tour.cz, s.r.o.

region-adrspach.cz

54

The website www.region-adrspach.cz serves as a regional tourism portal focused on the Adršpach and Broumovsko areas in the Czech Republic. It provides comprehensive tourist information, accommodation booking options, and recommendations for trips and activities. The business operates under Region-Tour.cz, s.r.o., a small hospitality sector entity targeting tourists interested in this region. The site is built on the Webnode CMS platform and leverages modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Mailchimp, and Sumo. The technical infrastructure includes CDN usage for performance optimization. Security posture is moderate with HTTPS enabled and IP anonymization in analytics, but lacks important security headers and visible privacy policies, which are compliance gaps. The absence of WHOIS data reduces transparency and trustworthiness, though the website content and structure appear professional and relevant. Overall, the site is functional and serves its business purpose but requires improvements in privacy compliance and security best practices.

Ô

Ôsez Mauges Tourisme et développement

osezmauges.fr

54

Ôsez Mauges Tourisme et développement operates as the official regional tourism office for the Mauges area in Maine-et-Loire, France. The website serves as a comprehensive portal for visitors, offering information on local attractions, events, accommodations, and activities. It positions itself as a key regional player promoting tourism between Angers, Nantes, and Cholet, targeting tourists interested in cultural, outdoor, and family-friendly experiences. The business model includes event promotion, online ticketing, and a gift shop, supporting local economic development. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. It uses responsive design and accessibility best practices, ensuring a good user experience across devices. The site integrates mapping technologies like OpenStreetMap and Leaflet for geolocation services. Cookie consent is managed via Axeptio, reflecting GDPR compliance. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms. However, explicit security headers are not clearly detected, and no published security policy or incident response contacts are found. The WHOIS data is unavailable, which slightly impacts trust but is not uncommon for French domains. Overall, the site demonstrates a solid security posture with room for improvement in transparency and header implementation. The overall risk is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to improve trust and compliance.

P

PhotoShelter

photoshelterbrands.com

68

PhotoShelter operates as a leading SaaS provider specializing in digital asset management and content distribution, targeting brands, photographers, and marketing teams. The platform offers a comprehensive suite of services including AI-powered search, real-time workflows, social content distribution, and video management, positioning itself strongly in the media industry. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to its audience. Technically, the site is built on WordPress with modern SEO and accessibility practices, integrating tools like Google Tag Manager, Hotjar, and OneTrust for analytics and compliance. Security posture is robust with HTTPS, security headers, and anti-spam measures, though explicit security policies and incident response details are not publicly disclosed. WHOIS data is unavailable publicly, likely due to privacy protection, but the website's professionalism and active social media presence support its legitimacy. Overall, the site scores highly on content quality, technical implementation, security, privacy compliance, and business credibility.

P

PhotoShelter

socialie.com

66

PhotoShelter operates a leading digital asset management platform focused on empowering photographers, brands, and marketers to manage and distribute visual content effectively. The website promotes their Socialie product for automated social content distribution, targeting influencers and stakeholders to expand reach. The company positions itself as a technology-driven SaaS provider with a comprehensive suite of features including AI, real-time workflows, analytics, and integrations. Technically, the site is built on WordPress with modern SEO and tracking tools like Yoast SEO, Google Tag Manager, and Hotjar, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the domain is a subdomain of photoshelter.com, a reputable entity, and no suspicious WHOIS data or content issues were found, supporting a high legitimacy score.

X

Xantipa Agency s.r.o.

xantipa.eu

41

Xantipa Agency s.r.o. is a Czech Republic based marketing and advertising agency specializing in strategic and creative marketing solutions. The company offers services including marketing strategy, creative campaigns, branding, and advertising, targeting businesses seeking effective marketing communications. The website is built on WordPress and integrates common marketing technologies such as Google Tag Manager, Google Analytics, and Facebook Pixel, indicating a moderate level of digital maturity. The site is well designed, mobile optimized, and provides clear contact information and social media presence, supporting business credibility. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is not publicly available due to EURid privacy policies, but no suspicious indicators were found. Overall, the website presents a professional marketing agency with moderate risk and good operational transparency.

Z

ZOO Dvorec

zoodvorec.cz

46

ZOO Dvorec is a private zoological garden located in the South Bohemian region of the Czech Republic, established in 2007. The website serves as a comprehensive portal for visitors, offering detailed information about visiting hours, ticketing, animal exhibits, educational programs for schools, and special experience activities such as guided tours and animal caretaker programs. The business model focuses on visitor engagement, education, and community involvement, supported by an e-shop and animal adoption initiatives. The zoo maintains an active presence on social media platforms including Facebook, YouTube, and Instagram, enhancing outreach and visitor interaction. Technically, the website employs a custom CMS with a technology stack including jQuery 1.11.2, jQuery UI, Flexslider, Fancybox, and integrates Google Tag Manager and Google Analytics for tracking. The site uses HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. However, some outdated JavaScript libraries present potential security risks, and no explicit security headers were detected. The website performance is moderate with basic mobile optimization and accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks published security policies or incident response contacts. The use of older JavaScript libraries and absence of security headers are notable vulnerabilities. No signs of malware, phishing, or exposed sensitive data were found. Privacy compliance is good with accessible privacy and cookie policies. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, ZOO Dvorec's website is well-structured, content-rich, and trustworthy, serving its audience effectively. Strategic improvements in updating technical components and enhancing security headers would strengthen its security posture and resilience against emerging threats.

V

VetAgro Sup

vetagro-sup.fr

55

VetAgro Sup is a French public higher education and research institution specializing in veterinary medicine, agronomy engineering, and public veterinary health inspector training. The institution holds multiple accreditations and offers a range of educational and clinical services, positioning itself as a reputable player in the education and healthcare sectors in France. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to students, researchers, and professionals in related fields. Technically, the site is built on WordPress with modern plugins and frameworks, including Elementor and Bootstrap, and integrates analytics tools such as Google Analytics and Matomo. Security posture is good with HTTPS enforced and use of ReCaptcha, although explicit security headers and published security policies are lacking. Privacy compliance is well addressed with visible cookie consent and privacy policies. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or content blocking.

G

GLOBDATA a.s.

globdata.cz

62

GLOBDATA a.s. is a Czech company specializing in ICT services for public transport and municipal services, positioning itself as a leader in this sector within the Czech Republic. The company offers a range of services including contactless mobile payments, SMS services, voice services, and comprehensive ICT support. The website reflects a professional business presence with clear service descriptions and a focus on innovation in payment and ticketing solutions. Technically, the website employs modern analytics and tracking tools such as Google Analytics and Google Tag Manager, and it is mobile-optimized with a responsive design. However, the absence of WHOIS data and lack of explicit privacy and cookie consent mechanisms indicate areas for improvement in transparency and compliance. Security posture is moderate with HTTPS usage implied but no visible security headers detected, and no forms or sensitive data collection points on the homepage reduce immediate risk. Overall, the site is functional and professional but would benefit from enhanced security headers, privacy compliance, and clearer contact information to improve trust and regulatory adherence.

Shen Yun Performing Arts is a globally recognized performing arts company specializing in classical Chinese dance and music performances. The company tours extensively, reaching audiences in over 20 countries and 200 cities annually. Their business model centers on ticket sales for live shows that celebrate and revive traditional Chinese culture. The website is professionally designed, mobile-optimized, and rich in content, providing comprehensive information about performances, ticketing, and audience reviews. Technically, the site employs modern web technologies including React, Google Tag Manager, and multiple analytics platforms, ensuring good performance and user experience. Security posture is strong with HTTPS enforcement and security headers, though the absence of public WHOIS data slightly reduces domain trustworthiness. Overall, the site demonstrates a mature digital presence with effective marketing and analytics integration, supporting a reputable cultural enterprise.

U

Univerza Alma Mater Europaea

almamater.si

44

Univerza Alma Mater Europaea is a Slovenian international university established in 2012, offering a wide range of academic programs including undergraduate, graduate, doctoral, specialist, and lifelong learning courses. The institution targets students and academic professionals seeking career-oriented education aligned with future job market demands. The website reflects a mature digital presence with multilingual support and comprehensive academic and institutional information. Technically, the site employs modern web technologies such as Google Tag Manager, Hotjar, Facebook Pixel, and Swiper.js, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced and privacy-conscious analytics configurations, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and well-aligned with the university's mission and audience.

D

Dominik Martini

dmartini.cz

58

Dominik Martini operates a specialized e-commerce service business focused on the Shoptet platform, offering custom e-shop modifications, add-ons, and performance improvements. The company holds a certified partnership with Shoptet and maintains a strong reputation supported by over 346 verified customer reviews with perfect ratings. The website is professionally designed, mobile-optimized, and provides clear contact information, reinforcing its credibility in the Czech e-commerce market. Technically, the site employs modern web technologies including jQuery, Slick Carousel, AOS animations, and integrates analytics tools such as Microsoft Clarity and Google Analytics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are absent, representing areas for improvement. Overall, the business demonstrates a mature digital presence with a focus on customer satisfaction and technical excellence.

Q

QS ImpACT

qsimpact.org

67

QS ImpACT is a youth-led non-profit organization dedicated to empowering young people globally to create social impact aligned with the United Nations Sustainable Development Goals (UN SDGs). The platform offers scholarships, awards, youth summits, and community leadership programs to recognize and support youth contributions to sustainable development. The website presents a professional and consistent brand image with clear navigation and relevant content targeting youth interested in social change and education opportunities. Technically, the website is built using modern web technologies including Next.js and React, hosted likely on AWS infrastructure with DNS managed via AWS nameservers. It integrates analytics tools such as Microsoft Clarity and Google Analytics via Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no visible privacy policy, cookie consent mechanism, or security incident contact information, which are gaps in compliance and user trust. No WAF or blocking mechanisms were detected, and the domain registration is consistent with the business age and profile. Overall, QS ImpACT presents a trustworthy and professional platform with room for improvement in privacy compliance and security best practices. Strategic enhancements in policy transparency, security headers, and user data protection would strengthen the organization's digital trust and compliance posture.

L

Lidová konzervatoř a Múzická škola, p. o.

lkms.cz

58

Lidová konzervatoř a Múzická škola Ostrava is a public educational institution offering serious artistic education in music, visual arts, drama, dance, and artistic therapies. It serves both professional aspirants and hobbyists, operating under the auspices of the Statutární město Ostrava. The website reflects a well-structured, content-rich platform targeting students and the general public interested in cultural education. Technically, the site uses modern web technologies including JavaScript, SVG, and Google Tag Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. The lack of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its public affiliation. Overall, the site is professional, trustworthy, and serves its educational mission effectively.

D

Dolní oblast VÍTKOVICE, z.s.

dolnivitkovice.cz

53

Dolní oblast VÍTKOVICE, z.s. operates a unique industrial heritage site in the Czech Republic, transformed into a cultural, educational, and social center with international reach. The website offers extensive information about events, tours, educational programs, and venue rentals, targeting tourists, schools, and cultural visitors. The business model is non-profit and focuses on preserving and promoting industrial heritage through diverse services including e-commerce for tickets and gift vouchers. Technically, the website is built on WordPress with modern plugins and technologies, ensuring good SEO, mobile responsiveness, and user experience. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern but does not detract from the site's legitimacy given its active content and social presence. Overall, the site is professional, trustworthy, and compliant with GDPR regulations.

D

DK Poklad Ostrava

dkpoklad.cz

49

DK Poklad Ostrava is a well-established cultural and social center located in Ostrava-Poruba, Czech Republic, founded in 2004. The organization offers a diverse range of services including cultural performances, congresses, seminars, workshops, cinema, venue rentals, and restaurant services. It targets a broad audience interested in cultural and social events, positioning itself as a key regional player in the hospitality and media sectors. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is good with HTTPS and secure forms, though some security headers could be improved. Privacy compliance is strong, featuring GDPR-compliant policies and cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and serves its community effectively.

L

Limagrain

limagrain.com

70

Limagrain is a large French cooperative agricultural and agro-food group headquartered in Auvergne, France, with operations in 53 countries. The group specializes in the selection, production, and commercialization of high-value seeds for large-scale and vegetable crops, alongside unique agro-food supply chains that valorize the production of its 1,300 cooperative farmers. The website reflects a mature and professional business with a strong cooperative identity and a focus on sustainability and innovation. Technically, the website uses modern JavaScript frameworks, Google Tag Manager for analytics, and accessibility tools to ensure compliance and user experience. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and incident response contacts. The absence of WHOIS registration data reduces trust slightly but is offset by the professional presentation and social media presence. Overall, the site is well-designed, accessible, and informative, serving a broad audience including agricultural professionals and job seekers.