Security Directory

W

Weleda

weleda.cz

65

Weleda.cz is the Czech Republic localized website of Weleda, a well-established international natural cosmetics brand. The site offers a comprehensive e-commerce platform featuring a wide range of natural skincare and body care products, supported by educational content and a magazine section. The brand emphasizes holistic and natural care, targeting general consumers interested in natural and sustainable beauty products. The website demonstrates a consistent and professional brand presence with clear navigation and good content quality. Technically, the site uses modern JavaScript frameworks such as AngularJS, integrates Google Tag Manager and other tracking tools, and provides a cookie consent mechanism aligned with GDPR requirements. Security posture is generally good with HTTPS enforced, though some security headers are not evident in the provided data. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for commercial sites. Contact information and social media presence are comprehensive, supporting business credibility.

MyQ is a professional provider of print management software solutions designed to optimize printing processes, reduce costs, and promote eco-friendly practices. The company targets businesses and organizations seeking efficient print management and control. The website reflects a mature digital presence with multi-language support, comprehensive product information, and clear calls to action. Technically, the site employs modern JavaScript libraries and frameworks, integrates analytics tools, and demonstrates good performance and accessibility standards. Security posture is strong with HTTPS enforcement and security headers, although the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trustworthiness. Strategic recommendations include enhancing transparency around security practices and verifying domain registration details to bolster credibility.

R

Reality z celé ČR i zahraničí - RealHit.cz

realhit.cz

51

RealHit.cz is a Czech real estate portal established in 2010, offering a wide range of property listings including sales, rentals, auctions, and shares. The platform also provides additional services such as free price estimation, contract creation, legal advice, mortgage calculators, and educational content. The website targets general users interested in real estate within the Czech Republic and some international locations, supporting multiple languages for broader accessibility. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools like Google Tag Manager and Microsoft Clarity, indicating a moderate level of digital maturity. The site is hosted behind Cloudflare nameservers, ensuring reliable performance and security. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks some security headers and formal security policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and safe for general audiences.

О

ООО «Центр Болотова»

balzambolotova.com

49

The website balzambolotova.com serves as the official e-commerce platform for the sale and promotion of the Bolotov Balm, a health supplement aimed at rejuvenation, fat burning, and improving various health conditions such as diabetes and hypertension. The company behind the product, ООО «Центр Болотова», operates primarily in Ukraine and targets consumers interested in natural health remedies. The site features multiple language versions, customer testimonials, certifications, and detailed product information, positioning itself as a trusted source for this niche product. Technically, the website is built on the Bitrix CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and various marketing and analytics tools including Google Tag Manager and Facebook Pixel. Hosting is provided by Hosting Ukraine LLC. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. From a security perspective, the site employs HTTPS and secure form submissions but lacks DNSSEC and advanced security headers like Content Security Policy or X-Frame-Options. There is no visible cookie consent mechanism despite the use of tracking scripts, indicating partial privacy compliance. No explicit security or incident response policies are published, which could be improved to enhance trust and compliance. Overall, the website is professionally designed with consistent branding and good content quality. The business credibility is supported by certifications and clear contact information. However, improvements in privacy compliance and security hardening are recommended to elevate the site's trustworthiness and regulatory adherence.

Č

Časopisy pro volný čas, s.r.o.

objednatsipredplatne.cz

48

The website www.send.cz is an e-commerce platform specializing in magazine subscriptions primarily for the Czech market. It represents the publisher Časopisy pro volný čas, s.r.o. and offers a wide catalog of magazines across various themes, including options for gift certificates and bonuses. The platform targets readers interested in periodicals and provides a user-friendly interface with clear navigation and mobile optimization. The business model revolves around direct subscription sales and online management of subscriptions, positioning itself as a key player in the Czech magazine subscription market. Technically, the site employs modern web technologies such as Bootstrap 4, jQuery, FontAwesome Pro, and Google Fonts, ensuring a responsive and visually consistent user experience. It integrates Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is served over HTTPS with a good SSL configuration, although some advanced security headers are missing. Performance is moderate, with deferred image loading and carousel normalization enhancing user experience. From a security perspective, the site enforces HTTPS and uses secure login modals. It includes a cookie consent banner compliant with GDPR requirements. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. Overall, the website is professional, trustworthy, and well-structured for its business purpose. The main risk lies in the lack of domain registration data and limited security policy disclosures. Strategic recommendations include enhancing security headers, publishing detailed privacy and security policies, and improving domain registration transparency to bolster trust and compliance.

The website programprazskychkin.cz serves as an informational portal providing cinema program listings primarily for Prague and other locations in the Czech Republic. It aggregates schedules and links to multiple cinema websites, offering users a centralized resource for movie showtimes and related contests. The site targets general audiences interested in cinema and cultural events. Technically, the site uses basic HTML, CSS, and JavaScript with jQuery 1.10.2, alongside Google Analytics and Google Tag Manager for tracking. The design and user experience are functional but basic, with limited mobile optimization and accessibility features. Security posture is moderate to low, with no visible HTTPS enforcement in metadata, outdated JavaScript libraries, and lack of security headers. Privacy compliance is poor, with no visible privacy or cookie policies or consent mechanisms. Contact information is provided in the form of multiple cinema addresses and phone numbers, but no company emails or social media links are present. Overall, the site is a small-scale media information portal with moderate trustworthiness but requires improvements in security and privacy compliance.

D

DAKACOM.CZ s.r.o.

dakacom.cz

58

DAKACOM.CZ s.r.o. is a Czech Republic-based market leader specializing in comprehensive marketing campaigns and instore solutions, leveraging advanced printing and 3D technologies with a strong emphasis on sustainability. The company serves a broad B2B audience including businesses and institutions across the EMEA region. Their service portfolio includes high-quality printing, 3D printing, plastic and plexi work, and carton packaging, supported by a robust technological infrastructure and a skilled workforce. The website reflects a professional and modern digital presence with multilingual support and multimedia content.

E

EZOfit s.r.o.

vitalfest.sk

46

VITALfest is a Slovakian health and wellness festival organized by EZOfit s.r.o., founded in 2023. The website serves as an informational and promotional platform for the festival, offering details about exhibitors, programs, ticketing, and event dates. The business targets general audiences interested in health, wellness, and natural products, positioning itself as a regional event organizer with a focus on experiential and educational offerings. Technically, the site is built on WordPress with common plugins like Yoast SEO and Google Site Kit, integrating Google Analytics and Tag Manager with GDPR-compliant consent mechanisms. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. No critical vulnerabilities or suspicious indicators were found. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

E

Estetica Magazine

esteticamagazine.es

52

Estetica Magazine is a professional media publication specializing in the Spanish hairdressing industry, providing up-to-date news, trends, educational content, and event coverage. It maintains a strong market presence with multiple international editions, targeting professionals and enthusiasts in the hairdressing sector. The website is built on a modern WordPress CMS infrastructure, leveraging popular plugins such as Yoast SEO and Elementor, and integrates marketing and analytics tools including Google Analytics, Google Tag Manager, Facebook Pixel, and advertising networks like Google AdSense. The site demonstrates good mobile optimization and user experience with a consistent branding approach. From a security perspective, the website employs HTTPS with a good SSL configuration but lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. No signs of WAF or content blocking were detected, and the site content is fully accessible. The WHOIS data is restricted due to registry policies for .es domains, limiting direct verification of domain registration details. However, the professional presentation and network of related international domains support the legitimacy of the site. Overall, the site scores well on content quality, technical implementation, and business credibility but has room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and publishing incident response and vulnerability disclosure information to enhance trust and compliance.

E

Estetica Magazine

esteticamagazine.de

50

Estetica Magazine Deutschland is a professional media publication focused on the German hairdressing industry, providing news, trends, product information, and educational content. It is part of an international network of Estetica Magazine editions, targeting professional hairdressers and industry stakeholders. The website demonstrates a solid market position with consistent branding and a medium-sized business profile founded around 2020. Technically, the site is built on WordPress with modern plugins like Elementor and Yoast SEO, integrating Google Analytics and AdSense for performance and monetization. The site is mobile-optimized and SEO-friendly, with good user experience and navigation. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit privacy and terms policies are missing. Overall, the site is trustworthy and professional, with room for improvement in compliance documentation and contact transparency.

E

Estetica Magazine

esteticamagazine.fr

52

Estetica Magazine is a professional media publication focused on the French hairdressing industry, providing news, trends, product information, and event coverage. The website targets professionals and enthusiasts in the hairdressing sector, positioning itself as a niche media outlet with international editions. The business model revolves around content publication and advertising revenue. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Elementor, and integrates multiple tracking and advertising services including Google Tag Manager, Facebook Pixel, and Google AdSense. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is generally good with HTTPS enforced and bot protection via reCAPTCHA, but lacks explicit security headers and privacy compliance mechanisms. WHOIS data is not publicly available, indicating privacy protection which is common and justified for media businesses. Overall, the site is professional and trustworthy but should improve privacy and cookie compliance.

E

EsteticaMagazine.com

esteticamagazine.com

52

EsteticaMagazine.com is an online media publication specializing in the hairdressing industry, providing news, techniques, product information, and fashion trends to professionals and enthusiasts worldwide. The website is built on a modern WordPress platform with SEO and marketing tools integrated, reflecting a medium-sized, professional digital media presence. While the site demonstrates good technical implementation, mobile optimization, and privacy compliance, the lack of publicly available WHOIS registration data raises concerns about domain legitimacy. Security posture is generally strong with HTTPS, security headers, and GDPR-compliant cookie consent, but the absence of a published security policy and incident response details suggests room for improvement. Overall, the site is trustworthy and safe for general audiences, with no adult or explicit content detected.

A

ABF, a.s.

veletrhkosmetiky.cz

50

The website veletrhkosmetiky.cz represents a professional event organizer, ABF, a.s., specializing in biannual beauty trade fairs in the Czech Republic. The site targets beauty professionals, exhibitors, and visitors interested in cosmetics, hairdressing, nail design, and foot care. It offers comprehensive event information, exhibitor catalogs, and professional competition details, positioning itself as a leading organizer in the beauty industry within the region. Technically, the site is built on WordPress with modern libraries and plugins, including Google Tag Manager and Yoast SEO, ensuring good SEO and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and explicit incident response policies. Overall, the site is professional, trustworthy, and compliant with GDPR, with room for improvement in security best practices and accessibility.

G

General Code

generalcode.com

59

General Code is a company specializing in municipal code solutions that enable integration of ordinances, zoning codes, and building codes with various systems. The website positions the company as a forward-thinking provider targeting municipalities and government entities. The technical infrastructure is based on WordPress CMS with modern SEO and analytics tools such as Yoast SEO, Google Analytics, Microsoft Clarity, and Google Tag Manager. The website is well-optimized for mobile and has good design and navigation quality. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is missing, which raises concerns about domain registration transparency. Overall, the website is professional and functional but would benefit from improved privacy disclosures and security best practices.

I

International Code Council

iccsafe.org

60

The International Code Council (ICC) is a prominent non-profit organization dedicated to building safety solutions, codes and standards development, professional development, accreditation, and consulting services. The website reflects ICC's leadership position in the building safety sector, targeting professionals, members, and industry stakeholders. The business model is membership-based, offering a broad range of services including training, certification, and innovation initiatives. ICC maintains a strong market presence with multiple subsidiaries and partner organizations supporting its mission. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, Facebook SDK, and New Relic monitoring. The site demonstrates good performance, mobile optimization, and accessibility features. SEO is well implemented with Yoast SEO plugin and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses CSRF tokens and math challenge CAPTCHAs on forms, and integrates security monitoring tools. However, explicit security headers like CSP and X-Frame-Options are not clearly detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, supporting ICC's authoritative role. The lack of WHOIS data limits domain registration trust analysis but the site content and branding strongly support legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving incident response visibility.

B

Bici.cz

bici.cz

55

Bici.cz is a Czech Republic based e-commerce and retail business specializing in drums, percussion instruments, and related musical accessories. Established since 1996, it serves professional, amateur, and beginner musicians with a broad product catalog and a physical store located in Prague. The website demonstrates a mature digital presence with modern web technologies and integration of popular analytics and marketing tools such as Google Analytics and Facebook Pixel. However, the absence of WHOIS data and privacy/cookie policies indicates areas for improvement in transparency and compliance. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit security policies. Overall, the business appears legitimate and well-positioned in its niche, but should enhance privacy compliance and security disclosures to strengthen trust and regulatory adherence.

R

Real-Time Innovations, Inc.

rti.com

70

Real-Time Innovations, Inc. (RTI) is a leading software framework company specializing in distributed physical AI systems, serving industries such as aerospace & defense, medical technology, automotive, and robotics. Their flagship product, Connext DDS, is widely adopted in over 2,000 designs, positioning RTI as a market leader in middleware solutions for real-time data distribution. The website reflects a mature digital presence with professional design, clear business focus, and comprehensive content tailored to technical audiences. Technically, the site leverages HubSpot CMS and integrates multiple analytics and marketing tools, demonstrating digital maturity and marketing sophistication. Security posture is strong with HTTPS enforcement and appropriate security headers, though the absence of a vulnerability disclosure page and WHOIS data transparency are noted gaps. Overall, RTI presents a trustworthy and professional online presence aligned with its business stature.

G

Grassrootz

grassrootz.com

49

Grassrootz is a small Australian-based company providing a SaaS platform focused on event fundraising and community engagement for non-profit organizations and event organizers. Their website is professionally designed using Squarespace, featuring clear navigation, social media integration, and modern web technologies such as Google Tag Manager and reCAPTCHA. The platform offers services including event ticketing, registrations, and integrations to support fundraising efforts. Technically, the site is well-implemented with HTTPS and HSTS enabled, indicating a strong security posture. However, the absence of WHOIS data and lack of explicit privacy and terms of service policies represent gaps in transparency and compliance. No direct contact information or security incident response details are provided, which could impact trust and user confidence.

A

American Society of Transplantation

myast.org

30

The American Society of Transplantation (AST) operates a professional membership website dedicated to advancing transplantation science, education, and patient care. The site serves a global audience of transplant professionals, including physicians, pharmacists, researchers, and patients. AST offers a comprehensive range of services including educational events, communities of practice, research grants, advocacy, and patient resources. The organization is well-established with a domain age of over 11 years and a consistent brand presence across multiple digital channels. Technically, the website is built on a modern stack with Craft CMS, uses Foundation CSS framework, and integrates multiple third-party services such as Google Tag Manager, Facebook Pixel, and Adzerk for advertising. The site is mobile optimized, accessible, and SEO friendly, providing a professional user experience. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a good SSL configuration and does not expose sensitive data. The lack of DNSSEC and security headers are notable gaps. No explicit security policies or incident response information is publicly available, which could be enhanced to improve trust and compliance. Privacy compliance is adequate with a clear privacy policy, but cookie consent is missing despite tracking technologies. Overall, the website is trustworthy, professional, and well-maintained with a strong focus on its healthcare and non-profit mission. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and enabling DNSSEC to strengthen the security posture and privacy compliance.

S

Somfy

somfypro.com.au

67

Somfy Pro Australia operates a professional B2B website offering smart shading and automation solutions, targeting installers, commercial partners, and professionals in the Australian market. The site provides comprehensive product information, technical resources, and partner programs, positioning Somfy as a key player in smart shading technology. The technical infrastructure is built on the Liferay CMS platform, integrating modern web technologies such as Google reCAPTCHA v3 for form security and Google Tag Manager for analytics. The website demonstrates good digital maturity with responsive design and structured navigation. Security posture is solid with HTTPS enforced and spam protection on forms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a legitimate and trustworthy business presence with a strong focus on professional services and customer support.

F

Figest B.V.

elektriskegardiner.dk

10

Elektriskegardiner.dk is a Danish e-commerce retailer specializing in electric curtains and smart home automation products. The company offers a range of motorized curtains with app control, free color samples, and free delivery, targeting consumers interested in smart home convenience and DIY installation. The website is built on Magento 2, leveraging modern web technologies and integrations such as Google Analytics, Facebook Pixel, and Trusted Shops for marketing and trust. The site demonstrates good content quality, clear navigation, and GDPR-compliant privacy and cookie policies with active consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA, though some security headers could be enhanced. WHOIS data is unavailable, likely due to privacy protection, which is common for small e-commerce businesses. Overall, the website is professional, trustworthy, and safe for general audiences.

(

(주)솜피

somfymall.com

60

Somfy Shop KR operates as a specialized e-commerce platform focused on motorized blinds, curtains, and smart home window covering solutions in South Korea. The company offers a broad product range including IoT-enabled blinds and remote controls, targeting tech-savvy consumers seeking home automation. The website is built on the Magento platform, leveraging modern JavaScript libraries and integrations such as Google Tag Manager and Naver Analytics, indicating a mature digital infrastructure. The site is well-structured, mobile-optimized, and provides comprehensive customer support information, including consulting services and multiple contact channels. Security posture is solid with HTTPS enforced and secure cookies, though some security headers could be improved. Privacy and cookie policies are present, supporting basic GDPR compliance, though no explicit advanced compliance frameworks are evident. The absence of WHOIS data for the domain is a notable anomaly that slightly detracts from overall trust but does not undermine the professional presentation and operational maturity of the site. Strategic partnerships with platforms like Naver Smartstore and Samsung SmartThings enhance market reach and product integration. Overall, the site presents a trustworthy and professional front for a medium-sized retail business in the smart home sector.

S

SIDO LYON

sido-lyon.com

63

SIDO LYON operates as a leading European event and showroom specializing in IoT, Artificial Intelligence, Robotics, and Extended Reality technologies. The website presents a professional and well-structured platform targeting industry professionals and companies interested in these advanced technology sectors. The business model centers around organizing and showcasing innovative technology solutions, positioning itself as a key player in the European technology event market. Technically, the website is built on WordPress CMS, leveraging popular plugins such as Contact Form 7 and Yoast SEO, alongside marketing and analytics tools including Google Tag Manager, Google Ads, and LiveChat. The site demonstrates good mobile optimization and SEO practices, with GDPR compliance implemented via the Didomi consent management platform. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS with strong SSL configuration and integrates GDPR consent mechanisms. However, the absence of explicit security headers and lack of published security policies or incident response contacts indicate areas for enhancement. The missing WHOIS data for the domain raises concerns about domain registration legitimacy, although the active and professional website presence suggests a legitimate business operation. Overall, SIDO LYON presents a credible and professional digital presence with solid business positioning in the technology event sector. Strategic improvements in security transparency, domain registration verification, and contact information disclosure would further strengthen trust and compliance.

C

Cosa

cosavostra.com

30

Cosa is a French consulting agency specializing in strategy, communication, e-commerce, and digital marketing. The company positions itself as a creative and strategic partner helping businesses reveal their uniqueness through effective digital and e-commerce strategies. The website demonstrates a professional and modern digital presence with multimedia content, client showcases, and multiple contact channels including forms, email, phone, and social media. Technically, the site is built on WordPress with Gravity Forms and integrates Google services such as reCAPTCHA and Tag Manager, indicating a mature digital infrastructure. Security measures like HTTPS and CAPTCHA are implemented, but the absence of security headers and privacy/cookie policies highlight areas for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy despite the professional appearance and reputable client logos. Overall, the site is well-designed and functional but should address compliance and transparency gaps to enhance trust and security.

P

padam - Relations media et Influence

padampadampadam.fr

55

padam is a French national and independent communication agency specializing in strategic communication, press relations, media relations, and influence strategies primarily serving clients in Nantes, Paris, and the Grand Ouest region. With 16 years of experience, the agency emphasizes pragmatic, clear, and measurable communication strategies to enhance visibility and reputation for businesses and organizations. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the site uses WordPress with Elementor and integrates Google Analytics and Tag Manager for tracking, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is missing, which slightly impacts trust but the overall professional presentation and active social media presence support legitimacy. Strategic recommendations include enhancing security headers and verifying domain registration details to strengthen trust.

E

EPSA Innovation

sogedev.com

59

EPSA Innovation, formerly known as Sogedev, is a French consulting firm specializing in public funding advisory services for companies, particularly in innovation and research financing such as Crédit Impôt Recherche (CIR) and Crédit Impôt Innovation (CII). The company holds a strong market position as one of the top referenced experts by the Médiation des entreprises and operates multiple offices across France and internationally in Brazil. Their business model focuses on assisting companies in securing public financial aids and optimizing innovation-related tax credits. The website is professionally designed, content-rich, and targets French SMEs and larger enterprises seeking funding solutions. Technically, the website uses a modern but somewhat dated JavaScript stack including jQuery 1.9.1, Google Tag Manager, and Pardot for marketing automation. The site is mobile optimized with good SEO practices but lacks some advanced accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks explicit security headers and incident response documentation. Privacy compliance is basic with a privacy and cookie policy present, including consent mechanisms. The WHOIS data for the domain www.sogedev.com is missing, which raises some concerns about domain transparency and registration legitimacy. However, the website branding and content clearly indicate affiliation with EPSA, a known entity, mitigating some risk. No adult or questionable content is present, making the site safe for general audiences. Overall, EPSA Innovation presents a credible and professional online presence with moderate technical maturity and a good security baseline. The main risk area is the lack of WHOIS transparency and some missing security best practices. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving privacy compliance documentation.

A

Agence KN

agence-kn.fr

47

Agence KN is a specialized web agency based in Lyon, France, focusing on WordPress website creation, SEO audits, and digital marketing services since 2011. The company targets businesses seeking tailored digital solutions with a strong emphasis on client satisfaction and technical excellence. Their website demonstrates a mature digital infrastructure using WordPress CMS, modern JavaScript libraries, and GDPR-compliant cookie management. Security posture is good with HTTPS and consent mechanisms, though some security headers are missing. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract from the professional presentation and business legitimacy. Overall, the agency presents a credible and professional digital presence with room for security enhancements.

W

We Recruit

werecruit.io

59

We Recruit is a French-based recruitment software company offering a customizable ATS platform designed to optimize recruitment processes for recruiters, managers, and candidates. The company positions itself as a niche provider with a modular solution adaptable to various recruitment needs. The website reflects a mature business with a strong market presence supported by client testimonials and a professional digital footprint. Technically, the site is built on WordPress with Elementor and optimized for performance and SEO, hosted by OVH sas. Security posture is solid with HTTPS, domain locks, and no exposed sensitive data, though DNSSEC is not enabled and no explicit security policy is published. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site demonstrates high professionalism and trustworthiness.

S

Soren

soren.eco

63

Soren is a French eco-organism officially accredited to manage the collection and recycling of used photovoltaic solar panels across France. It acts as a key coordinator in the circular photovoltaic energy sector, collaborating with various stakeholders including individual holders, market producers, institutions, and local authorities. The organization offers free collection services, recycling, reuse initiatives, and educational resources to promote sustainable energy transition. The website demonstrates a mature digital presence built on WordPress with modern plugins and SEO optimizations, reflecting a professional and trustworthy business. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No WHOIS data is available, likely due to privacy protection, but the website's content and structure strongly support legitimacy. Overall, Soren presents a credible and well-established entity in the renewable energy recycling sector.

E

ecosystem

ecosystem.eco

73

ecosystem is a French eco-organization dedicated to extending the lifecycle of electrical and electronic equipment through repair, reuse, and recycling. Accredited by public authorities, it serves both individuals and professionals with services including locating repairers, donation and recycling points, and providing educational resources. The website is professionally designed, content-rich, and well-structured, targeting a broad audience interested in sustainable management of electrical waste. Technically, the site employs modern analytics tools such as Matomo and Google Tag Manager, along with Cookiebot for consent management. The site is mobile-optimized and accessible, with good SEO practices. However, explicit security headers and detailed security policies are not evident, representing an area for improvement. Security posture is moderate with HTTPS implied but lacking visible advanced security headers or incident response information. The absence of WHOIS data limits domain trust assessment, though the website's professional presentation and public accreditation support its legitimacy. Overall, ecosystem presents a trustworthy and authoritative platform in its domain, with recommendations to enhance security transparency and domain registration visibility to further strengthen trust and compliance.

E

EDF solutions solaires

edfenr.com

69

EDF solutions solaires is a well-established French company specializing in photovoltaic solar energy solutions for both residential and professional clients. The company positions itself as a leader in the French solar autoconsumption market with over 20 years of experience and more than 100,000 customers. Their services include installation, maintenance, financing, and administrative support for solar panel projects. The website reflects a professional and comprehensive approach to solar energy, targeting individuals and businesses seeking sustainable energy solutions. Technically, the website is built on WordPress with WooCommerce, leveraging modern JavaScript libraries such as jQuery and Google Tag Manager for analytics and marketing. The site is well-optimized for SEO, mobile responsiveness, and accessibility, indicating a mature digital infrastructure. Consent management is handled via Didomi, ensuring GDPR compliance. From a security perspective, the site uses HTTPS with good SSL configuration and includes some security headers, though the Content-Security-Policy header is commented out and could be improved. No critical vulnerabilities or exposed sensitive data were detected. The absence of a public security policy or incident response contact is noted as an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The main concern lies in the WHOIS data, which is missing or unavailable, potentially due to privacy protection or registry issues. This should be monitored to ensure domain legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving transparency around incident response.

B

BTR Consulting s.r.o.

btrconsulting.cz

47

BTR Consulting s.r.o. is a specialized real estate consulting company focused on the Build to Rent segment in the Czech Republic. The company offers a comprehensive suite of services including project acquisition consulting, expert advice, marketing strategies, property management, rental services, construction optimization, and furnishing of rental apartments. Their target audience includes investors, developers, and small companies seeking tailored real estate solutions. The website reflects a boutique service provider with a strong emphasis on quality and long-term client relationships. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and reCAPTCHA for analytics and security. The site is mobile-optimized and uses security best practices such as HTTPS and security headers. However, it lacks explicit cookie consent mechanisms and dedicated security or incident response policies. Overall, the website is professional, trustworthy, and well-aligned with the company's business model and market position.

B

bnt attorneys in CEE

bnt.eu

60

bnt attorneys in CEE is a leading international business law firm specializing in providing comprehensive legal services across Central and Eastern Europe. Their expertise spans insolvency, taxes, mergers and acquisitions, real estate law, compliance, and other key business law areas. The firm operates multiple offices in the region's capital cities, managed by local partners, emphasizing a strong regional presence combined with international experience. Their website reflects a professional and consistent brand image, targeting international businesses seeking legal guidance in the CEE region. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and enhanced by SEO tools like Yoast. It integrates Google Analytics and Tag Manager for analytics and marketing purposes. The site is mobile-optimized and demonstrates good performance and accessibility standards, though some accessibility features could be improved. Hosting is provided by Webglobe, a reputable registrar and hosting provider. From a security perspective, the site employs HTTPS with good SSL configuration and secure form handling. Cookie consent mechanisms are in place, and privacy policies comply with GDPR requirements. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving accessibility to further strengthen trust and compliance.

S

Srdce na dlani, nadační fond

srdcenadlani.cz

48

Srdce na dlani is a Czech non-profit foundation dedicated to supporting children from children's homes through motivational programs, assistance for independent living, and educational activities. The organization has a clear mission and a network of partners, with a website that reflects its charitable focus and community engagement. The site provides contact information and showcases partner logos, indicating established relationships within the sector. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, along with jQuery and Lightbox for UI enhancements. The site is mobile-optimized and features good navigation and content structure, although some accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and does not expose sensitive data, but lacks visible security headers and explicit privacy or cookie policies. The absence of WHOIS data limits domain legitimacy verification, which slightly reduces trustworthiness. No incident response or security policy information is published, which could be improved to enhance transparency and compliance. Overall, the website is professional and trustworthy for its non-profit purpose, but would benefit from enhanced privacy compliance documentation, improved security headers, and verified domain registration information to strengthen its security posture and business credibility.

G

Gimmick log ｜ jQueryやWordPressの情報を中心に紹介しています

gimmicklog.com

54

Gimmick log is a Japanese language technical blog established in 2019, focusing on web development topics such as jQuery, WordPress, JavaScript, web design, and marketing tools. The site targets web developers, designers, and marketers seeking practical tutorials and tips. It operates primarily as a content publishing platform monetized through advertising. Technically, the site is built on WordPress CMS, uses modern JavaScript libraries like jQuery, and integrates Google Analytics, Google Tag Manager, Microsoft Clarity, and Google Adsense for analytics and monetization. The site is hosted likely by GMO Internet Group, consistent with the domain registrar information. Security-wise, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and important security headers, and no privacy or cookie policies are published, indicating compliance gaps. No contact information or incident response details are provided, limiting transparency. Overall, the site is functional, moderately secure, and professionally presented but would benefit from enhanced privacy compliance and security hardening.

P

PerPetum Energy

perpetumenergy.com

56

PerPetum Energy is a medium-sized company specializing in electrical decarbonization solutions, including photovoltaic energy, wind power, EV charging, energy storage, and flexibilization services. The company targets industrial consumers, developers, infrastructure owners, public entities, and communities aiming for CO2 emission-free energy transitions. Their business model encompasses development, EPC contracting, investment, operation, and maintenance of renewable energy projects. The website is professionally designed, multilingual, and content-rich, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response information. WHOIS data is missing or inconsistent, which slightly impacts trust but the website content and social media presence support legitimacy. Overall, the site demonstrates a strong business and technical foundation with room for security and transparency improvements.

P

Pin Up Secret

pinup-secret.fr

55

Pin Up Secret is a French e-commerce company specializing in natural cosmetic products, particularly those based on goat milk. Established in 2011, the company offers a range of skincare products including soaps, exfoliants, peelings, and curated sets targeting women seeking effective and natural beauty solutions. The website is professionally designed, mobile-optimized, and integrates modern e-commerce technologies such as PrestaShop, Google Tag Manager, and secure payment options including Scalapay and PayPal. Privacy and cookie policies are present, indicating compliance with GDPR requirements. The security posture is strong with HTTPS enforced and use of reCAPTCHA to protect forms. Customer trust is reinforced by a high volume of positive reviews and certification from Société des Avis Garantis. Overall, the website presents a trustworthy and professional online presence with moderate to good technical maturity.

1

1001coques

1001coques.fr

46

1001coques is a French e-commerce retailer specializing in mobile phone cases and accessories, offering a large catalog of over 100,000 references. The website targets consumers owning mobile phones and tablets, providing a variety of products including personalized cases and gift cards. The platform is built on PrestaShop and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is professionally designed with good mobile optimization and clear navigation. Security measures include HTTPS and standard security headers, but there is no publicly available security policy or incident response information. WHOIS data is unavailable, which raises some concerns about domain transparency, though the site appears legitimate and operational.

M

Maison Godillot

maisongodillot.com

63

Maison Godillot operates as a niche e-commerce retailer specializing in tasteful and quality home objects and accessories. The website is professionally designed on the Shopify platform, targeting a general audience interested in home decoration, office supplies, kitchenware, and children's products. The company positions itself as a purveyor of craftsmanship and quality, with a clear focus on curated product collections and brands. Technically, the site leverages modern web technologies and Shopify's robust infrastructure, including integrations with marketing and analytics tools such as Klaviyo and Google Analytics. The site is mobile optimized and provides a good user experience with clear navigation and structured content. Security posture is generally good with HTTPS enforced and secure payment processing via Shopify Payments. However, explicit security headers are not visible in the HTML, and no dedicated security or incident response policies are published. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating privacy protection or registration inconsistencies. Overall, the site is functional, professional, and trustworthy from a user perspective but would benefit from enhanced transparency and security disclosures.

Clef en Ligne is a well-established French e-commerce company specializing in the sale of keys, key duplication, mechanical and electronic cylinders, and home security products. With approximately 40 years of experience, it holds a strong market position as a trusted provider of original and patented keys, offering a wide range of products and expert customer service. The website is professionally designed, user-friendly, and optimized for mobile devices, providing comprehensive product information, guides, and FAQs to assist customers. The company emphasizes secure transactions and rapid delivery, leveraging modern e-commerce technologies including PrestaShop, Google Analytics, Facebook Pixel, and Sendinblue for marketing and analytics.

S

Save The Deco

savethedeco.com

60

Save The Deco operates a French e-commerce website specializing in trendy party decorations and accessories for events such as weddings, birthdays, baptisms, and baby showers. The site targets consumers planning celebrations and offers a wide range of products including personalized items. The company maintains an active social media presence and uses modern e-commerce technologies, primarily PrestaShop, to deliver its services. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Technical infrastructure includes Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data retrieval issues, which slightly impacts trustworthiness. Overall, the site appears legitimate and professionally managed but would benefit from enhanced transparency and security practices.

E

Equestra

equestra.fr

54

Equestra.fr is a specialized French e-commerce retailer focused on equestrian products, including horse equipment, rider apparel, and horse care items. The website positions itself as the largest equestrian store in France, offering a wide range of products and personalized services. The technical infrastructure is built on PrestaShop CMS with integrations of modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Brevo (Sendinblue). The site uses HTTPS and secure payment gateways, indicating a solid baseline security posture. However, the absence of explicit privacy and cookie policies, lack of visible contact information, and missing WHOIS data slightly reduce trust and compliance confidence. Overall, the website is professional, well-structured, and serves a niche retail market effectively.

M

Modio.sk | Módne inšpirácie, novinky aj zľavy na jednom mieste

modio.sk

53

Modio.sk is a Slovak e-commerce platform specializing in fashion and sports equipment aggregation and inspiration. It offers users a comprehensive search engine for products from various e-shops and physical stores, featuring extensive brand and category listings. The website targets consumers interested in fashion and sports products within Slovakia, providing curated content such as fashion inspirations and news. Technically, the site uses a traditional web stack including jQuery, Google Tag Manager, and lazy loading for images, delivering a moderate performance with good mobile optimization and clear navigation. Security-wise, the site enforces HTTPS and uses rel="nofollow" on external links but lacks advanced security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices.

T

TOMPRINT

tomprint.cz

48

TOMPRINT is a Czech-based company specializing in textile printing and promotional product services, including screen printing, digital printing, sublimation, embroidery, and advertising production. With an established presence of approximately 35 years, they serve both business and individual customers through a physical location in Prague and an online e-shop. The website reflects a professional and customer-focused business with clear contact information and positive customer testimonials. Technically, the site uses modern web technologies and tracking tools such as Google Tag Manager and analytics scripts, with a cookie consent mechanism implemented to comply with privacy regulations. However, the absence of a published privacy policy and terms of service, along with missing WHOIS registration data, presents gaps in transparency and trust. Security posture is moderate, with HTTPS implied but no visible security headers or incident response information. Overall, the site is functional, safe, and well-designed but would benefit from enhanced compliance and security documentation.

A

AiVision, s.r.o.

paper.cz

47

Paper.cz is a Czech Republic-based e-commerce retailer specializing in paper goods, gift wrapping, party supplies, stationery, and related products. The company operates both online and through multiple physical retail locations in Czech cities such as Třinec, Nový Jičín, Prostějov, Havířov, Frýdek-Místek, and Jablunkov. The website offers a broad product range including creative materials, decorations, seasonal goods, and school supplies, targeting general consumers and event organizers. The business model focuses on direct online sales complemented by physical stores, positioning Paper.cz as a significant distributor in its market segment.

N

Nejlevnejsi-Barvy-Laky.cz

nejlevnejsi-barvy-laky.cz

50

Nejlevnejsi-Barvy-Laky.cz is a Czech Republic based e-commerce retailer specializing in paints, varnishes, and related products for interior and exterior use. The company offers a wide range of products including wall paints, facade paints, wood and metal coatings, and painting tools. They also provide color mixing and tinting services and painting work in the Prague area. The business positions itself as the largest online seller of paints and varnishes in the Czech market, targeting both general consumers and professional painters. The website is professionally designed with good navigation and mobile optimization, supported by a mature digital marketing infrastructure including Google Analytics, Facebook Pixel, and affiliate tracking. Contact information and business details are transparent and consistent with WHOIS data, enhancing trustworthiness.

L

LINDR.CZ.s.r.o.

lindr.cz

61

LINDR.CZ.s.r.o. operates a Czech-language website focused on dispensing equipment, targeting businesses and consumers interested in such products. The company appears to be a medium-sized manufacturing entity with an e-commerce presence via a related subdomain. The website employs modern frontend technologies and integrates essential tools such as Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly visible in the HTML content. No contact information or terms of service pages were found, which slightly impacts the overall trust and compliance assessment. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website is professional, GDPR compliant, and technically sound, serving its target market effectively.

V

VORWERK CS k.s.

vorwerk.cz

48

Vorwerk Czech Republic operates a professional and well-established website focused on retailing household appliances, specifically vacuum cleaners under the Kobold brand and kitchen appliances under the Thermomix brand. The company has a strong market presence in the Czech Republic, supported by a comprehensive e-commerce platform and customer service infrastructure. The website demonstrates good content quality, clear navigation, and consistent branding, targeting consumers interested in home cleaning and cooking solutions. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Tag Manager, with a custom e-commerce CMS (AiShop). Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the site reflects a mature digital presence aligned with business goals.

A

AiVision, s.r.o.

kavaprodej.cz

55

The website www.kavaprodej.cz represents a Czech-based e-commerce business specializing in the retail of fresh roasted coffee beans, teas, chocolates, and coffee accessories. The company, AiVision, s.r.o., positions itself as a provider of high-quality, freshly roasted coffee from a family roastery in Prague's Holešovice district. The site targets coffee enthusiasts and retail customers within the Czech Republic, offering a wide variety of coffee types including Arabica, Robusta, bio, decaffeinated, and gourmet blends. The business model is primarily direct-to-consumer online sales with a focus on product variety and freshness. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery and various JavaScript libraries for UI enhancements, and integrates Google Tag Manager, Google Analytics 4, and Facebook Pixel for marketing and analytics purposes. The platform appears to be a custom or proprietary e-commerce CMS. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses secure login forms with AJAX validation. Cookie consent mechanisms are implemented, supporting GDPR compliance. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, suggesting room for improvement. No visible vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data for the domain raises concerns about domain registration transparency and legitimacy, though the website content and business presence appear professional and trustworthy. Overall, the website demonstrates a solid business presence with good technical and security practices, but the lack of WHOIS information and some missing security headers slightly reduce the trust score. Strategic recommendations include enhancing security headers, verifying domain registration details, and continuing to maintain GDPR compliance and user privacy protections.

A

AiVision, s.r.o.

dortisimo.cz

60

Dortisimo.cz is an established e-commerce retailer specializing in confectionery supplies, serving customers primarily in the Czech Republic. The website offers a wide range of products including cake decorating materials, baking ingredients, and confectionery tools. The business targets both retail customers and professional bakers, positioning itself as a specialist in the confectionery supply market with a medium-sized operation. The site supports multiple languages and currencies, enhancing accessibility for a broader audience. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various analytics and marketing tools, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, reCAPTCHA, and cookie consent mechanisms are implemented, reflecting a good security posture. However, the absence of WHOIS data and lack of explicit security policies or incident response contacts slightly reduce the overall trustworthiness. Overall, Dortisimo.cz presents a professional and secure online presence with room for improvement in transparency and security documentation.