Security Directory

T

THINline s.r.o.

thinline.cz

66

THINline s.r.o. is a Czech technology company specializing in providing comprehensive online solutions including web design, web hosting, e-marketing, and custom information systems. The company operates multiple subsidiary brands such as Cesky-Hosting.cz, Spolehlive-Servery.cz, and WebSynergy.cz, serving a client base of approximately 30,000 daily users. Their market position is that of a well-established medium-sized service provider in the Czech Republic, focusing on reliable and professional internet services for businesses. Technically, the website is built on a custom CMS platform (WebSynergy) and employs modern web technologies including Google Analytics and Google Tag Manager for tracking. The site is mobile-optimized with good SEO and accessibility features, though some improvements in security headers could enhance the technical posture. Performance is moderate with a professional design and clear navigation. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, no explicit security policy or incident response information is found, and WHOIS data is unavailable, which slightly reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website presents a professional and trustworthy business front with solid privacy compliance and user experience. The main risk lies in the lack of WHOIS transparency and missing security headers, which should be addressed to improve domain legitimacy and security posture.

N

NTC Hosting

ntchosting.com

59

NTC Hosting is an established web hosting and domain registration provider with over 21 years of experience. The company offers a range of services including domain registration, web hosting, VPS solutions, and a website builder, supported by 24/7/365 technical support. The website reflects a professional business presence targeting individuals and businesses seeking reliable hosting solutions. Technically, the site employs modern web technologies such as the Foundation framework and jQuery, with integration of Google Tag Manager for analytics. While HTTPS is enabled, the site lacks advanced security headers and DNSSEC, which could enhance its security posture. Privacy and cookie policies are not evident, indicating potential compliance gaps. Overall, the site is functional, professional, and trustworthy but would benefit from improved security and privacy disclosures.

S

SuperOffice

superoffice.com

76

SuperOffice operates as a cloud-based CRM provider offering software solutions designed to enhance business relationships and revenue generation. The company maintains a professional and consistent web presence with localized versions for multiple countries, indicating a medium-sized international operation in the technology sector. Their business model is SaaS, targeting businesses seeking CRM solutions. Technically, the website leverages modern Microsoft Azure cloud infrastructure, ASP.NET Core framework, and integrates analytics and marketing tools such as Google Tag Manager and HubSpot. The site is mobile optimized and performs moderately well. Security posture is strong with HTTPS enforced and use of Azure Application Insights for monitoring, though explicit security headers and policies could be improved. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, WHOIS data is not publicly available, likely due to privacy protection, which slightly impacts trust but is justified for this business type. Overall, the website is professional, secure, and trustworthy with room for enhanced transparency in security policies and incident response.

Coworking Příbram z.s. is a small local business providing coworking office spaces, meeting rooms, and related services in the center of Příbram, Czech Republic. The website clearly communicates its offerings including fast internet, 3D printing, and flexible membership plans. The business targets freelancers, remote workers, and local professionals seeking quiet and well-equipped workspaces. The market position is that of a community-focused coworking provider with local partnerships and a modest but professional online presence. Technically, the website uses common front-end technologies such as Bootstrap, jQuery, and Owl Carousel, with Google Tag Manager for analytics. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Performance is moderate with no critical errors detected. The site uses HTTPS but lacks visible security headers and active secure forms, which are areas for improvement. From a security perspective, the site shows basic good practices such as HTTPS usage and no exposed sensitive data. However, it lacks privacy and cookie policies, security headers, and active secure contact forms, which are important for GDPR compliance and user trust. No WAF or blocking mechanisms are detected, and no vulnerabilities are evident from the provided data. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and activation of secure user input forms. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy and security policies will strengthen trust and compliance posture.

M

MIBO SCOOTERS s.r.o.

mibo.cz

59

MIBO SCOOTERS s.r.o. is a small Czech manufacturer specializing in handcrafted kickscooters and electric kickscooters, operating since 1998. The company emphasizes artisanal production in the Walachian region and maintains a close relationship with its sellers. Their website reflects a niche business model focused on quality and craftsmanship, targeting consumers interested in unique and locally made transportation solutions. The company leverages social media platforms such as Facebook, Instagram, and YouTube to engage with customers and promote their products. Technically, the website is built on the Solidpixels CMS platform and uses modern web technologies including Google Tag Manager and Google Analytics for tracking. The site is mobile optimized with good SEO practices and a cookie consent mechanism that supports GDPR compliance. However, the absence of a published privacy policy and terms of service documents represents a compliance gap. From a security perspective, the website uses HTTPS and implements cookie consent but lacks visible security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data for the domain is unavailable, which reduces trustworthiness from a domain registration perspective, though the website content and business information appear legitimate. Overall, the website scores well in content quality, technical implementation, and business credibility but should improve privacy compliance and security best practices. Strategic recommendations include publishing privacy and terms documents, adding security headers, and clarifying incident response contacts to enhance trust and compliance.

O

Oferteo

oferteo.pl

66

Oferteo is a well-established Polish online marketplace founded in 2008 that connects customers with companies offering a wide range of services and products, including construction, finance, insurance, legal, and more. The platform enables users to post free requests for offers and compare bids from various firms, targeting businesses, institutions, and private individuals. Oferteo maintains a strong market position in Poland with a large user base and extensive service categories. Technically, the website employs modern web technologies such as JavaScript, Tailwind CSS, and integrates analytics and marketing tools like Google Tag Manager, Bing Ads, and TrustCommander. The platform is optimized for mobile and desktop, with good performance and accessibility features. It uses HTTPS with strong security headers, ensuring secure communication and protection against common web vulnerabilities. From a security perspective, Oferteo demonstrates good practices including encrypted connections, secure forms, and no visible exposure of sensitive data. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance transparency and trust. The absence of WHOIS data is likely due to privacy protection, which is justified for this business type. Overall, Oferteo presents a professional, secure, and user-friendly platform with comprehensive privacy and cookie policies, extensive business information, and strong branding. Strategic recommendations include publishing explicit security and incident response policies, and maintaining regular audits of third-party scripts to mitigate potential risks.

E

Evolution Host

evolution-host.com

72

Evolution Host is a specialized hosting provider established in 2015, offering VPS hosting, game servers, and advanced DDoS protection services. The company targets a broad audience from startups to enterprise clients, emphasizing reliability, security, and performance. Their market position is strengthened by multiple awards and positive customer testimonials, reflecting a strong reputation in the hosting industry. Technically, the website is well-implemented with modern web standards, mobile optimization, and integrated analytics, indicating a mature digital presence. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and published security policies could enhance trust further. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting a positive user experience and business credibility.

A

AnFas, spol. s r. o.

jakdostat.cz

47

The website www.jakdostat.cz is dedicated to promoting a specialized book focused on improving collaboration between clients and graphic designers, studios, or agencies. The business behind the site is AnFas, spol. s r. o., a small Czech company. The site provides basic information about the book, ordering options, and a discussion forum, targeting clients seeking to optimize their design partnerships. The market position is niche, with a focus on design collaboration culture and quality improvement. Technically, the website uses an older jQuery version (1.4.2) and integrates Google Analytics and Google Tag Manager for user tracking. The site lacks modern CMS indicators and does not show evidence of advanced frameworks or hosting details. Performance and mobile optimization are basic, with minimal accessibility features. No forms or interactive inputs are present, reducing attack surface but also limiting user engagement. From a security perspective, the site does not present HTTPS or security headers in the provided data, which lowers its security posture. No privacy or cookie policies are found, indicating poor privacy compliance. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. No vulnerabilities or exposed sensitive data were detected, but the site would benefit from improved security best practices. Overall, the website is functional for its purpose but lacks modern security, privacy, and technical standards. The domain's missing WHOIS data and lack of compliance documentation reduce trustworthiness. Strategic improvements in security headers, HTTPS enforcement, privacy policies, and domain registration transparency are recommended to enhance credibility and user trust.

I

Identity Online

identityonline.cz

50

Identity Online is a Czech Republic-based SaaS platform focused on providing cloud-based brand management and marketing content collaboration tools. The platform targets marketers, PR professionals, sales teams, and partners who require centralized, consistent, and secure access to brand assets and marketing materials. The website presents a professional image with detailed case studies and client references, indicating a niche market position with a focus on brand consistency and operational efficiency. Technically, the site uses modern JavaScript libraries such as jQuery, Video.js, and Swiper.js, along with Google Analytics and Tag Manager for tracking. The site is mobile optimized and offers a good user experience, though accessibility and SEO could be improved. Security posture is moderate, with HTTPS presumably enabled but lacking visible security headers and formal privacy or terms documentation. The absence of WHOIS data is a concern for domain legitimacy but does not directly contradict the business presence. Overall, the site is trustworthy and professional but would benefit from enhanced security and compliance transparency.

V

Váš Hosting s.r.o.

vas-hosting.eu

68

Váš Hosting s.r.o. is a Czech-based technology company specializing in providing virtual servers (VPS), dedicated servers, managed servers, webhosting, and domain registration services. With over 15 years of experience, the company manages a substantial infrastructure of more than 1,900 servers and 19,800 domains, serving a diverse clientele including notable businesses such as Rohlík.cz and Auto Palace. The website is professionally designed, offering clear navigation and comprehensive service information, including customer testimonials and case studies that reinforce its market credibility. Technically, the website employs modern technologies such as PHP 8+, Nginx, Apache, and Docker, alongside a custom VPS administration platform. It integrates Google Tag Manager for analytics and uses Bootstrap for responsive design, ensuring excellent performance and mobile optimization. Security practices include HTTPS enforcement, Anti-DDoS protection, 24/7 monitoring, and cookie consent mechanisms, although some security headers and incident response disclosures could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, although the business presence and content quality mitigate this concern. Overall, Váš Hosting presents a trustworthy and mature hosting service provider with a solid technical foundation and customer trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to strengthen trust further.

Y

Your Hosting s.r.o.

vas-hosting.com

68

Your Hosting s.r.o. operates the website www.vas-hosting.com, providing a comprehensive range of hosting services including virtual private servers, dedicated servers, managed servers, web hosting, and domain registration. The company targets small to medium businesses and web professionals, emphasizing secure, high-performance hosting solutions with 15+ years of experience and a strong customer base. The website features extensive customer testimonials and references, reinforcing its market position as a trusted regional hosting provider. Technically, the website is well-constructed using modern web technologies such as Bootstrap, Google Tag Manager, and supports mobile responsiveness and accessibility. The site employs HTTPS and cookie consent mechanisms, indicating a good level of digital maturity and privacy compliance. However, no explicit security policy or incident response information is published, which could be improved. Security posture is generally strong with HTTPS and some security best practices observed, but the absence of security headers and vulnerability disclosure mechanisms suggests room for enhancement. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration transparency and slightly impacts trustworthiness. Overall, the website is professional, secure, and user-friendly, but the domain registration anomaly warrants further verification. Strategic recommendations include publishing security policies, improving WHOIS transparency, and enhancing security headers to strengthen trust and compliance.

K

Kanzelsberger

kanzelsberger.cz

69

Kanzelsberger.cz is a well-established Czech Republic-based retail chain specializing in books and related products, operating both online and through 26 physical stores nationwide. The website offers a comprehensive e-commerce platform with a broad catalog of books across various genres, supported by promotional banners and customer engagement features such as newsletters and loyalty clubs. The business targets general book buyers in the Czech market, emphasizing convenience with options like in-store pickup and free shipping over a threshold. Technically, the website is built on modern frameworks including Angular 12 and integrates multiple third-party services such as Google Tag Manager, reCAPTCHA, and SmartEmailing for marketing and security. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, with a clean and professional design that supports a positive user experience. From a security perspective, the site enforces HTTPS and employs reCAPTCHA to protect forms, alongside a cookie consent mechanism indicating GDPR compliance. However, the absence of visible security headers and lack of published security policies or incident response contacts suggest areas for improvement. The missing WHOIS data reduces transparency and slightly impacts trustworthiness, though the overall business presence and content quality support legitimacy. Overall, Kanzelsberger.cz presents a solid e-commerce platform with good business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust and compliance.

I

I love Hummus s.r.o.

ilovekimchi.de

49

I love Hummus s.r.o. operates the website ilovekimchi.de, an e-commerce platform specializing in Korean fermented foods such as Kimchi. The company targets both B2B partners and retail customers, emphasizing certified quality products under strict IFS and BIO standards. The website is professionally designed, multilingual, and offers a range of products with clear pricing and availability. The business maintains a niche market position with a focus on health-conscious consumers and wholesale partnerships. Technically, the website leverages modern e-commerce infrastructure provided by Upgates, integrates multiple analytics and marketing tools including Google Analytics 4, Microsoft Clarity, and Facebook Pixel, and uses standard web technologies such as Bootstrap and jQuery. Hosting is managed via Forpsi nameservers, indicating a reliable hosting environment. The site is mobile-optimized and SEO-friendly, with proper cookie consent mechanisms in place. From a security perspective, the site enforces HTTPS and employs cookie consent management, but lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the analysis. WHOIS data is minimal but consistent with a small business profile. Overall, the security posture is good but could be improved with additional headers and transparency. The overall risk assessment is low, with recommendations to enhance security headers, publish incident response contacts, and maintain regular audits of third-party scripts. The website is trustworthy, compliant with GDPR, and provides clear contact channels, supporting a positive user and business experience.

I

I love Hummus s.r.o.

ilovekimchi.cz

50

The website www.ilovekimchi.cz is an e-commerce platform operated by I love Hummus s.r.o., specializing in the sale of fermented food products, primarily Kimchi and related items. It targets health-conscious consumers interested in fermented foods and Korean cuisine. The site offers a range of products, recipes, and educational content, positioning itself as a niche player in the Czech Republic's healthy food market. The business model is retail e-commerce with subscription options and a focus on product quality and customer engagement. Technically, the website is built on the Upgates e-commerce platform and utilizes modern web technologies including Google Tag Manager, Google Analytics 4, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The site is mobile-optimized, fast-loading, and employs standard web fonts and widgets to enhance user experience. Forms are validated using the Nette Framework, ensuring data integrity. From a security perspective, the site enforces HTTPS with a strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. While some security headers are present, there is room for improvement by adding explicit Content-Security-Policy and other headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain transparency and trustworthiness. Overall, the website presents a professional and trustworthy front for its business, with good content quality and technical implementation. The main risk lies in the lack of publicly available domain registration information, which could impact trust from a security and compliance standpoint. Strategic recommendations include enhancing security headers, publishing a security policy, and improving domain registration transparency to bolster credibility.

S

SimpleShop – Chytrý prodejní formulář pro váš web

simpleshop.sk

47

SimpleShop is a Czech-based e-commerce platform specializing in providing smart sales forms for digital products such as online courses, e-books, videos, memberships, and tickets. The platform targets small to medium businesses and individual content creators primarily in the Czech Republic and Slovakia. The website demonstrates a professional and modern digital presence, leveraging WordPress and Elementor technologies with strong SEO and performance optimizations. Privacy and cookie policies are comprehensive and GDPR compliant, with an active consent mechanism. Security posture is solid with HTTPS and security headers, though some areas like explicit security policies and incident response contacts could be improved. The domain WHOIS data is not publicly available, which is typical for Czech domains and does not detract from the site's legitimacy given the professional content and trust indicators. Overall, SimpleShop presents a trustworthy and well-maintained online platform with room for enhanced transparency in security and contact information.

V

Vosges Matin

vosgesmatin.fr

67

Vosges Matin is a reputable regional news media organization serving the Vosges and Lorraine regions in France. The website offers continuous news coverage across various domains including local, national, and international news, sports, politics, economy, and environment. It operates on a subscription and advertising business model, supported by a professional digital presence including newsletters and mobile applications. The site is part of the EBRA Groupe, a known media group in France. Technically, the website employs modern web technologies such as Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security. The site is mobile-optimized and uses HTTPS with secure cookie practices. However, some security headers are not explicitly detected and could be improved. The site demonstrates good SEO practices and accessibility is basic but functional. From a security perspective, the site shows a mature approach to privacy compliance with GDPR-consistent cookie consent mechanisms and a clearly identified Data Protection Officer contact. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits domain registration verification, but the website content and business information strongly indicate legitimacy. Overall, Vosges Matin presents a trustworthy and professional digital news platform with solid privacy and security practices, though improvements in security headers and explicit security policies could enhance its posture further.

L

Le Progrès

leprogres.fr

67

Le Progrès is a well-established French regional news media outlet focusing on national and regional news for the Rhône-Alpes and surrounding regions. The website serves a broad general audience with digital news content and advertising as its primary business model. It holds a strong market position as a leading regional news provider in Eastern France. Technically, the site employs modern web technologies including Google Tag Manager, Didomi for consent management, and Prebid.js for advertising, indicating a mature digital infrastructure. The site is mobile optimized and uses HTTPS with strong security headers, reflecting a good security posture. However, explicit privacy policies and terms of service pages are not evident in the provided content, which slightly impacts privacy compliance. Overall, the website is professional, trustworthy, and safe for general audiences.

L

Le Républicain Lorrain

republicain-lorrain.fr

67

Le Républicain Lorrain is a prominent regional news media organization based in France, delivering continuous news coverage focused on Lorraine, France, and global events. The website offers a variety of services including news articles, videos, digital editions, and subscription models, targeting a general audience interested in regional and national news. It operates under the parent company EBRA Groupe, indicating a strong market position within the media sector. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, and a consent management platform (Didomi) to ensure compliance with privacy regulations. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Security-wise, the site enforces HTTPS, uses secure cookies, integrates Google reCAPTCHA for form protection, and manages user consent effectively. However, it lacks explicit security headers and a public security policy or vulnerability disclosure mechanism. Overall, the website is professional, trustworthy, and compliant with GDPR, with a solid security posture and a clear business model based on advertising and subscriptions.

L

Le Bien Public

bienpublic.com

72

Le Bien Public is a regional French news media organization focused on delivering local news, videos, and services for Dijon and the Côte d'Or region. It operates under the EBRA Group umbrella and offers subscription-based access complemented by advertising revenue. The website demonstrates a mature digital infrastructure with modern technologies such as Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR adherence, including a named Data Protection Officer contact. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its professional presentation and known parent company. Overall, the site is trustworthy, well-maintained, and suitable for a general audience.

L

L'Est Républicain

estrepublicain.fr

63

L'Est Républicain is a well-established regional news media organization serving the Franche-Comté and Lorraine regions in France. The website offers continuous news updates, videos, digital editions, and subscription services, targeting a broad general audience interested in local and national news. It operates under the parent company EBRA Groupe, reflecting a strong market position in regional media. Technically, the website employs modern web technologies including Google Tag Manager, Didomi consent management, and Google reCAPTCHA to ensure user privacy and security. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and secure form handling, although some HTTP security headers could be improved. Privacy compliance is robust, with clear GDPR adherence and a visible Data Protection Officer contact. Overall, the website is trustworthy, professional, and safe for general audiences.

L

Le Journal de Saône et Loire

lejsl.com

68

Le Journal de Saône et Loire (Le JSL) is a regional French news media organization focused on delivering live news, photos, and videos primarily for the Saône-et-Loire area. The website presents a professional and consistent brand image with active social media presence and app availability, targeting a general audience interested in regional news. Technically, the site employs modern web technologies including Google Tag Manager and consent management via Didomi, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and consent mechanisms, though lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, raising questions about domain registration status and legitimacy, which should be monitored. Overall, the site is functional and trustworthy as a regional news source but would benefit from enhanced privacy disclosures and security hardening.

L

Les Dernières Nouvelles d'Alsace

dna.fr

67

Les Dernières Nouvelles d'Alsace (DNA) is a prominent regional news media organization serving Strasbourg, Alsace, and broader France. The website provides continuous live news updates covering local, national, and international events including politics, sports, economy, and environment. It holds a strong market position as a leading regional news source with a large audience base. The business model centers on digital news publishing supported by advertising revenue and mobile app distribution. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and a consent management platform to ensure GDPR compliance. The infrastructure supports mobile optimization and integrates multiple advertising and analytics services for monetization and user insights. Security posture is robust with HTTPS enforcement, security headers, and privacy policies in place, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with good content quality and compliance, suitable for its media industry role.

L

L'Alsace

lalsace.fr

66

L'Alsace is a regional news media organization providing continuous local, national, and international news coverage focused on the Alsace region in France. The website offers a broad range of news categories including society, sports, politics, economy, health, and environment, targeting a general audience interested in regional and national news. The site is well-branded and maintains consistent messaging aligned with its media focus. Technically, the website employs modern JavaScript frameworks and tracking technologies such as Google Tag Manager and Didomi for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS, ensuring secure access for users. However, explicit privacy policies and contact information are not clearly presented, which may impact user trust and compliance. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and incident response details. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security best practices.

G

Groupe EBRA

ebra.fr

63

Groupe EBRA is the leading French regional daily press group, publishing multiple well-known regional newspapers and offering advertising, audiovisual, and event services. The website reflects a professional media company with a strong market position in France. The technical infrastructure uses modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms, indicating digital maturity. Security posture is good with HTTPS and security headers, but lacks explicit published security policies or incident response information. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the website is well-designed, content-rich, and trustworthy for its audience.

A

Auchan

auchan.fr

60

Auchan is a major French retail and e-commerce company providing a wide range of products including groceries, household goods, electronics, and more. The website offers multiple shopping channels such as drive, click & collect, and home delivery, targeting general consumers in France. The site is professionally designed with clear navigation and strong branding consistency, reflecting its enterprise-level market position. Technically, Auchan.fr uses modern JavaScript libraries, asynchronous loading, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. The site is mobile-optimized and performs well with responsive design and lazy loading techniques. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. WHOIS data is unavailable, which slightly reduces trustworthiness, but the website's content and external links support legitimacy. Overall, Auchan.fr is a high-quality, trustworthy retail website with good privacy and security practices.

G

Gîtes de France®

gites-de-france.com

61

Gîtes de France® is a well-established French vacation rental platform offering a variety of accommodations including gîtes, chambres d'hôtes, camping, and citybreaks. The website targets families, couples, and groups seeking quality vacation rentals across France, leveraging a recognized quality label to build trust. The platform provides booking services, thematic stay inspirations, and gift cards, positioning itself as a leader in the French hospitality sector. Technically, the site is built on Drupal 10, employs modern JavaScript libraries, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, providing an excellent user experience. Security-wise, the site uses HTTPS and secure Drupal forms but lacks visible advanced security headers, suggesting room for improvement. The absence of WHOIS registration data is a concern but does not detract significantly from the site's legitimacy given the strong branding and content quality. Overall, the site presents a professional, trustworthy, and user-friendly platform for vacation rental bookings in France.

F

FERRERO France

ferrero.fr

73

Ferrero France is a subsidiary of the globally recognized Ferrero Group, a family-owned Italian confectionery company founded in 1946. The company operates in the manufacturing and retail sectors, specializing in sweet food products with iconic brands such as Nutella®, Kinder®, Tic Tac®, and Ferrero Rocher®. The website reflects a mature, enterprise-level business with a strong emphasis on quality, sustainability, and corporate social responsibility. The digital presence is well-structured, multilingual, and professionally designed, targeting a broad general audience including consumers, partners, and job seekers. Technically, the website is built on Drupal CMS and incorporates modern web technologies such as Google Tag Manager for analytics, AddToAny for social sharing, and UserWay for accessibility enhancements. The site is mobile-optimized and includes SEO best practices, though accessibility compliance is moderate at 57%. Security posture is strong with HTTPS enforced and multiple security headers present, alongside a published vulnerability disclosure policy. However, WHOIS data for the domain is unavailable, which is unusual for a major brand and warrants monitoring. Overall, the website demonstrates a high level of digital maturity and security awareness, with comprehensive privacy and cookie policies aligned with GDPR requirements. The absence of explicit contact emails and phone numbers on the public site suggests a preference for contact via forms or social media channels. The site is safe for general audiences with no adult or questionable content detected.

K

KM2 >>

km2.de

53

KM2 >> is a professional digital agency based in Düsseldorf, Germany, specializing in web development, design, and online marketing services. The company positions itself as a trusted TYPO3 Gold Member and certified Solutions Partner, offering comprehensive digital solutions to businesses seeking enhanced online visibility. Their website reflects a mature digital presence with clear service offerings and client references, targeting businesses aiming to improve their digital footprint. Technically, the site is built on TYPO3 CMS, hosted behind Cloudflare, and integrates modern tracking and consent management tools such as Google Tag Manager and Usercentrics CMP. Security is well-managed with HTTPS, appropriate security headers, and privacy compliance mechanisms in place. No critical vulnerabilities or suspicious patterns were detected. Overall, KM2 >> demonstrates a strong security posture and digital maturity appropriate for a small to medium-sized digital agency.

A

Alliance Digitale

iabfrance.com

63

Alliance Digitale is a French non-profit industry association dedicated to structuring and defending the digital marketing sector in France. It brings together experts, advertisers, agencies, and technology providers to promote innovative and responsible solutions, ensuring a reliable and high-performing industry. The organization offers certifications such as the Privacy Protection Pact and Drive to Trust, publishes reports and guides, and hosts events and webinars to foster collaboration and knowledge sharing. The website reflects a mature digital presence with professional design, comprehensive content, and active engagement with its members and the broader industry. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use. Security posture is good with HTTPS and no obvious vulnerabilities, though some security headers and incident response policies are not explicitly published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, though improvements in transparency and compliance would enhance its security and privacy posture.

L

La Plateforme Maladies Rares

plateforme-maladiesrares.org

46

La Plateforme Maladies Rares is a French non-profit collaborative platform established in 2001, dedicated to coordinating efforts among key stakeholders in the rare diseases ecosystem. It is administered by Maladies Rares Info Services and primarily funded by AFM-Téléthon and the French Ministry of Health. The platform serves patients, families, healthcare professionals, researchers, and public health authorities by fostering collaboration, sharing knowledge, and providing support services. The website reflects a mature digital presence with good content quality, clear navigation, and consistent branding. Technically, it uses modern JavaScript libraries and fonts, hosted by a reputable registrar and hosting provider. Security posture is good with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and privacy compliance. Overall, the platform demonstrates high trustworthiness and professionalism, serving as a critical resource in the healthcare non-profit sector.

A

AFM-Téléthon

afm-telethon.fr

65

AFM-Téléthon is a prominent French non-profit organization dedicated to combating rare diseases through fundraising, research support, and patient assistance. The website reflects a mature digital presence with comprehensive content targeting families affected by rare diseases, donors, researchers, and healthcare professionals. It offers donation mechanisms, educational resources, and extensive information about its activities and subsidiaries. Technically, the site is built on Drupal CMS, employs modern analytics and consent management tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could be enhanced. The absence of WHOIS data is unusual but does not detract significantly from the site's legitimacy given the strong branding and external references. Overall, the site is professional, trustworthy, and well-aligned with its mission.

M

MapTiler

maptiler.com

10

MapTiler is a technology company specializing in providing mapping platforms and tools designed primarily for developers and enterprises. Their offerings include ready-to-use map styles, custom map design tools, SDKs for web and mobile applications, and location services such as geocoding and IP geolocation. The company also supports secure on-premise deployment and geodata processing, positioning itself as a versatile player in the mapping technology market. The website demonstrates a strong market position with notable clients like Siemens, Oracle, and Cisco, and a comprehensive suite of services tailored to various industries including real estate, aviation, drones, and logistics. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and employs advanced analytics and tracking tools like Google Tag Manager and Fathom Analytics. The site is well-optimized for performance, mobile responsiveness, accessibility, and SEO, reflecting a mature digital infrastructure. Security best practices are observed with HTTPS enforcement and multiple security headers, although explicit security policies and incident response contacts are not publicly detailed. From a security perspective, the site maintains a strong posture with no evident vulnerabilities or exposed sensitive data. However, the absence of a vulnerability disclosure policy and direct security contact information suggests room for improvement in transparency and incident readiness. The WHOIS data for the domain is unavailable or protected, which slightly reduces trust from a domain registration standpoint but does not detract significantly from the overall legitimacy given the professional presentation and external trust signals. Overall, MapTiler presents a professional, secure, and comprehensive mapping platform with a strong business model and technical foundation. Strategic recommendations include enhancing security transparency, publishing incident response details, and verifying domain registration information to further strengthen trust and compliance.

MakeArt s.r.o. is a Czech digital agency specializing in creating custom e-shops, web design, and SEO services primarily for ambitious brands and companies. Established in 2009, the company has built a strong market position with a portfolio of recognized clients and award-winning projects. Their business model focuses on delivering tailored digital solutions combining creativity and technology to help clients grow. The website reflects a professional and consistent brand image with clear navigation and comprehensive service descriptions. Technically, the website employs modern technologies including Bootstrap, jQuery, Google Tag Manager, and reCAPTCHA, supported by a custom CMS likely built on the Nette Framework. Hosting and domain registration are managed by WEDOS, a reputable Czech provider. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Cookie consent and privacy mechanisms are well implemented, indicating good digital maturity. From a security perspective, the site uses HTTPS with strong SSL configuration and integrates Google reCAPTCHA to protect forms. However, it lacks explicit HTTP security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is good but could be enhanced by adopting additional best practices and transparency. The overall risk assessment is low with no blocking or WAF detected, and the domain registration data supports legitimacy. Strategic recommendations include implementing security headers, publishing security policies, and maintaining up-to-date libraries to further strengthen security and compliance.

S

Svobodná účetní - Seyfor, a. s.

svobodnaucetni.cz

41

Svobodná účetní - Seyfor, a. s. operates an online educational platform focused on training individuals to become independent accountants within three months. The business targets both beginners and experienced accountants seeking freelance opportunities. Their model combines video lessons, software training, expert consultations, and certification endorsed by the Czech accounting association Svaz účetních. The website is professionally designed, mobile-optimized, and integrates modern technologies such as WordPress, jQuery, and Google Tag Manager. Privacy and cookie consent mechanisms are implemented, reflecting GDPR compliance. Security posture is solid with HTTPS and secure forms, though some security headers could be improved. The absence of WHOIS data is a notable concern but does not detract from the overall legitimacy suggested by the website content and partnerships.

S

SLUTO s.r.o.

vedeni-ucetnictvi.cz

11

SLUTO s.r.o. is a well-established Czech accounting and tax advisory firm founded in 2005, offering a broad range of services including online accounting, tax filing, payroll processing, and business consulting. The company positions itself as a trusted partner for businesses seeking professional financial management, leveraging modern technologies and digital solutions to enhance client experience. Their market position is reinforced by awards and memberships in professional organizations, indicating strong industry recognition. Technically, the website is built on WordPress with modern frameworks like Bootstrap and employs performance optimizations such as LiteSpeed Cache and lazy loading. Security measures include HTTPS, Google reCAPTCHA, and anti-spam protections, though some security headers could be improved. Privacy compliance is robust with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site reflects a mature digital presence with high professionalism and trustworthiness.

S

STORMWARE s.r.o.

stormware.cz

11

STORMWARE s.r.o. is a well-established Czech software company specializing in economic and accounting software solutions, primarily through its flagship product POHODA. The company targets entrepreneurs and medium to large enterprises, offering a comprehensive suite of products including payroll, tax, and mobile invoicing software. Their market position is strong within the Czech Republic, supported by extensive customer support, training, and a professional online presence. Technically, the website is built on ASP.NET with modern JavaScript libraries and frameworks, ensuring good performance and mobile optimization. Security measures include HTTPS, a strict Content-Security-Policy, and cookie consent mechanisms, reflecting a mature security posture. However, the absence of WHOIS data limits domain trust verification. Overall, the site is professional, secure, and compliant with GDPR, making it a trustworthy platform for its users.

I

iPodnik cloud s.r.o.

ipodnik.cz

10

iPodnik cloud s.r.o. is a Czech-based cloud service provider specializing in modern private cloud solutions built on Microsoft platforms. With over 14 years of experience and a customer base exceeding 4000, the company offers a range of services including hosting for accounting software Pohoda, Microsoft 365 applications, Power BI reporting, and custom cloud server configurations. Their market position is solid within the Czech and Slovak regions, targeting small to medium enterprises and accounting firms seeking secure and efficient cloud infrastructure. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Tag Manager, Facebook Pixel, and reCAPTCHA v3 for form security. Security posture is good with HTTPS enforced and some security best practices observed, though improvements in security headers and explicit privacy policy publication are recommended. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the business indicators and content quality. Overall, iPodnik demonstrates a strong business and technical foundation with room for enhanced privacy compliance and security hardening.

W

Wolters Kluwer ČR, a. s.

dauc.cz

10

DAUČ is a professional Czech Republic-based expert portal specializing in tax and accounting information, operated by Wolters Kluwer ČR, a reputable global information services company. The website offers a comprehensive range of expert articles, legal documents, commentaries, and practical tools targeted at professionals and businesses needing authoritative guidance on tax and accounting matters. The business model is subscription-based, providing premium content and services to registered users. The portal holds a strong market position within the Czech financial and legal information sector, supported by consistent branding and high-quality content.

A

ANAG, spol. s r.o.

anag.cz

10

ANAG, spol. s r.o. is a Czech publishing and educational company specializing in legal, economic, health, and leisure publications and seminars. The company offers a broad range of products including books, magazines, audiobooks, e-books, and organizes seminars both in-person and online. Their website is professionally designed, targeting professionals and individuals seeking educational materials in their fields of interest. The company maintains a strong presence on social media platforms and provides clear navigation and content relevant to their audience. Technically, the website employs modern JavaScript libraries such as jQuery, integrates Google Tag Manager for analytics, uses Smartsupp for live chat support, and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The site is mobile optimized and performs moderately well, with good SEO practices and basic accessibility features. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and consistency suggest legitimacy. Overall, ANAG's website presents a trustworthy and professional digital presence with room for improvement in security header implementation and transparency of security policies. The risk level is low, and the site is suitable for its intended audience.

S

Story by Jakub

storybyjakub.com

10

Story by Jakub is a Czech-based motivational and health awareness platform centered around Jakub Žák, an athlete and speaker who promotes cardiovascular health and personal development through motivational lectures, charity projects, and media content. The website serves a niche audience interested in health, motivation, and sports, leveraging partnerships with notable organizations such as Cardion and Toyota Brno. Technically, the site is built on WordPress with modern plugins and integrates analytics and social media effectively, though it lacks some privacy compliance elements such as explicit privacy and cookie policies. Security posture is adequate with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and formal policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

D

Duacode

duacode.com

10

Duacode is a Spanish technology company specializing in custom software development and UX/UI design services. Their website presents a professional image with a clear focus on user experience and tailored software solutions. The company targets businesses and organizations seeking specialized digital products and interfaces. The website demonstrates a mature digital presence with modern technologies such as Cookiebot for consent management and Google Tag Manager for analytics. Social media integration and client area access further indicate a business-oriented approach. However, the lack of WHOIS data raises concerns about domain registration legitimacy, which should be addressed to improve trust. Technically, the website is well-structured, mobile-optimized, and uses modern fonts and JavaScript libraries. Performance is moderate with good SEO and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. No vulnerabilities or sensitive data exposures were detected. Overall, the security posture is solid but could be enhanced by adding security headers and incident response information. Privacy compliance is strong with clear policies and consent mechanisms. The business credibility is good, supported by clear contact information and professional content. The domain registration inconsistency is the main risk factor. Strategic recommendations include verifying and publishing domain registration details, implementing security headers, and providing a security policy or incident response contacts to strengthen trust and compliance.

S

SolarPower Europe

solarpowereurope.org

10

SolarPower Europe is a leading European solar industry association focused on advocacy, market insights, and fostering collaboration across the solar PV value chain. The organization provides comprehensive reports, campaigns, and events to support the energy transition towards renewables, storage, and grid flexibility. Their website demonstrates a mature digital presence with modern technologies such as Nuxt.js, Google Analytics, and YouTube integration, delivering a rich user experience optimized for mobile and desktop users. Security posture is solid with HTTPS and no visible vulnerabilities, although some security headers and explicit security policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data limits domain trust verification, but the professional content and transparency support legitimacy. Overall, the website is a trustworthy and authoritative source for solar energy information and industry engagement.

G

Global Solar Council

globalsolarcouncil.org

10

The Global Solar Council is a non-profit organization serving as the global voice for the solar energy industry, representing associations and corporations worldwide. Their website demonstrates a strong market position as an advocacy and capacity-building entity within the renewable energy sector, particularly solar PV and battery storage. The site is professionally designed, mobile-optimized, and rich in relevant content including news, resources, events, and membership information. Technically, the website employs modern web technologies, integrates reputable analytics and marketing tools, and is hosted on a reliable platform with HTTPS enforced. Security posture is solid with cookie consent mechanisms aligned with GDPR and other privacy regulations, though explicit security policies and incident response contacts are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is justified for this type of organization. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

W

webDOMU s.r.o.

webdomu.cz

55

webDOMU.cz is a Czech Republic based SaaS platform specializing in providing web solutions for housing cooperatives (bytová družstva) and homeowners associations (SVJ). Founded in 2014, the company offers a comprehensive portal that enables easy creation and management of websites tailored to the needs of these communities. Their services include online voting, document sharing, automated notifications via email and SMS, and additional financial and insurance services. The platform targets a niche market with a strong local presence and a loyal customer base of over 20,000 users. Technically, the website employs modern frontend technologies such as Bootstrap and jQuery, integrates multiple analytics tools including Google Analytics and Matomo, and uses HTTPS to secure data transmission. However, the backend CMS appears custom-built with no explicit mention of security frameworks or certifications. Security posture is solid with encrypted data transmission and secure login forms, but lacks published security policies or incident response contacts. Privacy compliance is basic with cookie consent mechanisms and terms of service available, but no dedicated privacy policy or GDPR compliance statements were found. Overall, the website is professional, trustworthy, and well-positioned in its market segment, though improvements in security transparency and accessibility could enhance its maturity.

I

ImperialMedia s.r.o.

imperialmedia.cz

58

ImperialMedia s.r.o. is a Czech advertising and digital agency offering comprehensive services including graphic design, web development, online marketing, photography, and advertising production. The company targets businesses across the Czech Republic, positioning itself as a professional and certified agency with national reach. Their website demonstrates a high level of digital maturity, utilizing WordPress CMS with modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is well optimized for SEO, mobile responsiveness, and accessibility, providing a positive user experience. Security posture is solid with HTTPS and secure forms, though some HTTP security headers are missing and no explicit security policy or incident response information is published. Privacy compliance is strong, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, the website reflects a trustworthy and professional small business agency, though the absence of WHOIS data slightly reduces domain trustworthiness.

A

AUMOVIO Aftermarket GmbH

galfer-frenos.es

49

GALFER is a medium-sized manufacturing company specializing in high-end braking systems for the automotive aftermarket, operating primarily in Spain with international partner sites. The website reflects a professional business presence with good content quality and clear navigation, targeting automotive commercial partners and customers. Technically, the site uses Umbraco CMS, integrates Google Tag Manager and reCAPTCHA for analytics and security, and implements cookie consent mechanisms aligned with GDPR. However, a visible server-side error message indicates backend issues that could expose sensitive information. Security posture is moderate with some best practices observed but lacks explicit security policies and incident response information. Overall, the website is functional and trustworthy but would benefit from backend fixes and enhanced security transparency.

A

AUMOVIO Aftermarket GmbH

galfer-hamulce.pl

62

GALFER is a specialized supplier of high-quality brake components, targeting both B2B and B2C customers primarily in Poland and supported by an international partner network. The website presents a professional and consistent brand image with clear navigation and relevant content focused on brake pads and dealer services. The technical infrastructure leverages modern tools such as Google Tag Manager and reCAPTCHA Enterprise, and is built on Umbraco CMS, indicating a mature digital presence. Security measures include HTTPS usage and CSRF protection, though explicit security headers are not detected, suggesting room for improvement. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, supporting GDPR adherence. Overall, the site is trustworthy and well-positioned in its market segment.

A

AUMOVIO Aftermarket GmbH

galfer-aftermarket.it

6

The website galfer-aftermarket.com is operated by AUMOVIO Aftermarket GmbH, focusing on automotive aftermarket products such as brake pads and dealer support. The site targets a global audience with multiple localized versions. However, the current page content is a 404 error page, limiting the available business information. The technical infrastructure includes Google Tag Manager and Google reCAPTCHA Enterprise, indicating some level of digital maturity and bot protection. Privacy compliance is partially addressed with a cookie consent modal and a privacy policy link. Security posture is moderate but lacks visible security headers and explicit SSL configuration details. The absence of WHOIS registration data for the domain is a significant concern, reducing trustworthiness and suggesting the need for further verification. Overall, the website presents basic content quality and moderate technical implementation but is hindered by domain registration inconsistencies and minimal content availability.

R

Regiontourist.cz

regiontourist.cz

50

Regiontourist.cz is a Czech Republic-based online tourism platform established in 2009, offering curated accommodation listings, travel experiences, and regional travel tips. The platform targets tourists and service providers in the hospitality sector, providing a marketplace and content hub for travel planning within the Czech Republic. The website demonstrates a good level of content quality, with clear navigation, structured data for SEO, and active social media integration. Technically, it uses a combination of legacy and modern web technologies including jQuery, Bootstrap, and Google Tag Manager, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit cookie consent mechanisms. WHOIS data is unavailable, which impacts trust and transparency. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.