Security Directory

L

Le Relais des Fermes

relais-desfermes.com

59

Le Relais des Fermes is a specialized mountain restaurant located at 1300 meters altitude in Megève, France, offering authentic Alpine cuisine and a warm, family-friendly atmosphere. The business operates primarily during the winter season and offers event privatization services for groups up to 100 people. The website is professionally designed, multilingual, and integrates modern web technologies including Google Tag Manager and Weglot for translation. Security measures such as HTTPS and Google reCAPTCHA are implemented, and privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data raises some concerns about domain transparency, although the website content and branding strongly indicate a legitimate hospitality business affiliated with Maison & Hotels Sibuet.

É

École cantonale d'art de Lausanne (ECAL)

ecal.ch

58

The École cantonale d'art de Lausanne (ECAL) is a prestigious Swiss higher education institution specializing in art and design, with a history dating back to 1821. The website serves as a comprehensive portal for prospective and current students, showcasing detailed program offerings, events, projects, and institutional information. The institution holds a strong market position in art and design education within Switzerland and internationally. Technically, the website employs modern tracking and analytics tools such as Google Analytics and Hotjar, integrates multimedia content via Vimeo, and uses responsive design principles to ensure accessibility across devices. Security posture is solid with HTTPS enforced and CSRF protections in place, though explicit security headers and published security policies are absent. Privacy compliance is partial, with a cookie consent mechanism present but lacking a dedicated privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-maintained, reflecting the institution's reputation.

B

Bureau DGC

bureaudgc.com

46

Bureau DGC is a small Paris-based graphic design studio founded in 2016, specializing in book design, visual identity, spatial design, website, and digital media. The company targets artists, publishers, architects, urbanists, and brands, positioning itself as a niche creative agency with a professional portfolio showcasing diverse projects. The website reflects a consistent brand identity and provides clear contact information, though it lacks social media presence and phone contact details. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Analytics and Google Tag Manager for tracking. The site is hosted by OVH sas, a reputable provider. Mobile optimization is good, but accessibility and SEO optimizations are basic. No CMS or advanced frameworks are detected. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are important for enhancing security posture. There are no visible privacy or cookie policies, nor incident response contacts, indicating compliance gaps especially regarding GDPR. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website is professional and functional but would benefit from improved security practices and privacy compliance measures to enhance trust and regulatory adherence.

The website ibuildmytime.com serves as a personal and professional portfolio for Léa Guillon, a creative professional specializing in graphic arts, coding, and poetry. The site showcases a variety of printed and digital creative works including books, posters, websites, drawings, texts, and installations. The business operates as a small creative entity based in France, founded in 2022, targeting a general audience interested in artistic and digital content. The market position is niche, focusing on bespoke creative services rather than mass-market offerings. Technically, the website employs a modern JavaScript technology stack including jQuery, LazyLoad libraries, Swiper for sliders, and Video.js for video content. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is hosted by OVH sas, a reputable hosting provider, and uses HTTPS, though DNSSEC is not enabled. Mobile optimization is good, but accessibility and SEO features are basic. No CMS is detected, indicating a custom-built site. From a security perspective, the site lacks several best practices: no DNSSEC, no security headers detected, and no disclosed security or incident response policies. Privacy and cookie policies are absent, and no GDPR compliance indicators are present. Contact information is limited to an email address, with no phone or physical address provided. Despite these gaps, no critical vulnerabilities or malicious content were detected, and the domain registration is transparent and consistent with the business profile. Overall, the website is functional and professionally presented but would benefit from enhanced privacy compliance, security hardening, and clearer business information to improve trust and regulatory adherence.

W

Werken bij Belsimpel

werkenbijbelsimpel.nl

53

Werken bij Belsimpel is a professionally maintained recruitment and employer branding website for Belsimpel, a well-established Dutch telecom e-commerce platform. The site offers comprehensive information about career opportunities, company culture, and featured vacancies, targeting job seekers interested in telecom and technology sectors. The business is positioned as a large player in the Dutch market with a focus on simplifying telecom product access and services. Technically, the website is built on WordPress with Elementor and several Jet plugins, optimized for performance, mobile responsiveness, and SEO. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms in place, though explicit security policies and incident response details are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

F

Fresh Food Ventures Group BV

crisp.nl

69

Crisp.nl is an established online supermarket based in the Netherlands, founded in 2018 and operated by Fresh Food Ventures Group BV. The company offers a digital grocery shopping platform with a focus on fresh, quality products sourced directly from producers, providing next-day delivery across the country. Their market position is strong, having been recognized as the best online supermarket for three consecutive years, supported by a well-rated mobile app and a clear value proposition targeting consumers seeking convenience and quality. Technically, the website is modern, mobile-optimized, and uses Google Tag Manager for analytics and marketing, with a clean and professional design. Security posture is good with HTTPS enforced and a robust cookie consent mechanism, though no explicit security policy or incident response contacts are published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR, supported by B Corporation certification. Recommendations include publishing a security policy, incident response contacts, and enhancing security headers to further strengthen security posture.

Z

ZOL

zol.fr

49

ZOL is a French digital agency specializing in custom web and mobile solutions, agile project management, consulting, UX/UI design, and data-driven digital transformation. Established since 2005 with a domain registered in 2008, the agency serves a diverse clientele including startups, SMEs, large groups, and communication agencies. Their market position is solid, supported by a portfolio of notable clients and a strong emphasis on bespoke digital craftsmanship. Technically, the website employs modern technologies such as PHP, Symfony, React, Docker, and integrates analytics tools like Google Tag Manager and Matomo. Hosting is provided by OVH, a reputable provider. The site is well-optimized for mobile and SEO, with a professional design and clear navigation, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a professional and trustworthy digital presence with room for improvement in privacy policy publication and security best practices. Strategic enhancements in these areas would strengthen compliance and security posture.

B

Bitfortune

bitfortune.com

57

Bitfortune is an established online crypto casino and sportsbook platform, founded in 2012, offering over 1,200 games including slots, live casino, and sports betting. The platform targets crypto gamblers and sports bettors, providing VIP rewards, promotions, and an affiliate program to enhance user engagement. The website demonstrates a consistent brand presence and a professional design tailored for adult users interested in crypto gambling. Technically, Bitfortune employs modern web technologies such as React and integrates multiple analytics and marketing tools including Google Tag Manager, Hotjar, and Microsoft Clarity. Hosting and DNS services are provided via Cloudflare, ensuring good performance and baseline security. However, DNSSEC is not enabled, and security headers are not visibly implemented, representing areas for security enhancement. Privacy compliance is weak, with no explicit privacy or cookie policies detected, which may pose regulatory risks. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Overall, Bitfortune presents a moderate risk profile with opportunities to improve privacy compliance and security posture.

T

The Coding Machine

thecodingmachine.com

66

The Coding Machine is a French-based technology company specializing in custom web and mobile application development, serving entrepreneurs, startups, and large enterprises. Established in 2004, it has a mature market presence and offers a comprehensive suite of services including technical conception, UX/UI design, development, maintenance, audits, and generative AI solutions. The company emphasizes adherence to deadlines and budgets, positioning itself as a reliable partner in digital transformation projects. Technically, the website is built on WordPress with a modern tech stack including Laravel, Symfony, React, Vue.js, and various No Code and blockchain technologies, hosted on Amazon AWS. The site is well-optimized for SEO and mobile, with good performance and accessibility standards. Security posture is solid with HTTPS, domain locks, and CAPTCHA-protected forms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a professional, trustworthy, and technically competent organization with a strong digital presence.

M

MOJAM

mojam.co

64

MOJAM is a technology company specializing in developing game services and platforms, notably for CS2 gamers, with a global user base spanning 168 countries. The company collaborates with esports stars and sponsors tournaments, positioning itself as a significant player in the gaming industry. Their website reflects a mature digital presence with modern technologies such as WordPress CMS, Google Tag Manager, and Three.js for 3D content, ensuring a rich user experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, MOJAM demonstrates a strong business credibility and technical maturity with a professional and trustworthy online presence.

I

IQVIA Digital

meddatagroup.com

73

IQVIA Digital is a leading healthcare marketing solutions provider specializing in delivering personalized, data-driven omnichannel engagement for pharma companies, agencies, partners, and publishers. As a subsidiary of IQVIA, it leverages advanced clinical and behavioral data to empower healthcare marketers to create meaningful customer experiences that drive better outcomes. The company positions itself as a trusted partner in the healthcare marketing ecosystem with integrated platforms and analytics capabilities. Technically, the website is built on the HubSpot CMS platform, utilizing modern web technologies including Google Tag Manager for analytics, Brightcove for video content, and Swiper for interactive carousels. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Privacy and cookie compliance are well implemented with clear policies and consent mechanisms. From a security perspective, the site enforces HTTPS and uses secure forms via HubSpot. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is notably missing or unavailable, which slightly reduces trustworthiness but does not outweigh the professional presentation and clear business legitimacy. Overall, IQVIA Digital demonstrates a strong business and technical profile with good security hygiene and privacy compliance. The main risk lies in the lack of WHOIS transparency, which should be investigated further to ensure domain registration legitimacy and continuity.

K

Kofi Kofi

kofikofi.cz

48

Kofi Kofi is a Czech Republic-based coffee business operating multiple mobile coffee trucks across various cities, complemented by a roasting facility and an e-commerce platform. The company targets general coffee consumers and emphasizes convenience and quality through its mobile retail model. The website reflects a medium-sized enterprise with consistent branding and a professional online presence. Technically, the site is built on WordPress with common plugins and integrates Google Analytics, Facebook Pixel, and Mapy.cz for mapping services. Security measures include HTTPS, Google reCAPTCHA, and a comprehensive cookie consent mechanism, though some security headers are missing. Privacy compliance is well addressed with GDPR-aligned policies and user consent options. Overall, the website is trustworthy, well-structured, and provides a good user experience without any detected malicious or adult content.

L

LevneiPhony.cz

levneiphony.cz

56

LevneiPhony.cz is an e-commerce business specializing in the sale of affordable used and refurbished Apple iPhones and related accessories, targeting consumers primarily in the Czech Republic. The website offers a variety of iPhone models in different conditions, including new, unpacked, nearly new, and used, with warranty and money-back guarantees, enhancing customer trust. The business model focuses on providing premium quality devices at significantly reduced prices, appealing to budget-conscious customers seeking Apple products. The site is well-structured with clear navigation and product categorization, supporting a positive user experience.

E

Eqvista

eqvista.com

70

Eqvista is a specialized equity management and valuation service provider founded in 2018, targeting startups and private companies. The company offers a SaaS platform combined with expert advisory services, including cap table management, 409A valuations, financial modeling, and various valuation services such as software, IP, gift and estate tax, and portfolio valuations. Eqvista has established a strong market position with over 20,000 customers and significant assets under administration, supported by professional certifications and a robust digital presence. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and Cloudflare DNS. The site demonstrates good SEO practices, mobile optimization, and a professional design that supports a positive user experience. Analytics and marketing tools are extensively used, indicating a mature digital marketing strategy. From a security perspective, the site uses HTTPS with a good SSL configuration and Cloudflare DNS but lacks DNSSEC and some advanced security headers like Content Security Policy. There is no visible security policy or incident response contact, which could be improved. No critical vulnerabilities or blocking mechanisms were detected, and no sensitive data exposure was found. Overall, Eqvista presents a trustworthy and professional online presence with strong business credibility and a good security posture. Strategic improvements in DNS security and formal security policies would enhance their security maturity and compliance posture.

E

EastBiz.com, Inc.

incparadise.net

59

EastBiz.com, Inc., operating the IncParadise.net website, is a specialized service provider focused on business incorporation and registered agent services primarily in Nevada and Wyoming. The company offers a comprehensive suite of services including corporation and LLC formation, registered agent services, mail forwarding, and business account setup. With a domain age dating back to 2009 and clear business contact information, the company positions itself as a trusted and established player in the niche market of US business formation services. Technically, the website is built on WordPress and leverages a modern technology stack including Google Tag Manager, Google Analytics, Facebook Pixel, and other marketing and analytics tools. The site is well-structured with good SEO practices and mobile optimization, although some accessibility features could be enhanced. Hosting and DNS are managed through reputable providers including GoDaddy and Cloudflare. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks several important HTTP security headers and does not have DNSSEC enabled. There are no visible vulnerabilities or exposed sensitive data, but improvements in security headers and DNS security are recommended to strengthen the security posture. Overall, the website is professional, trustworthy, and provides clear business information and contact channels. The extensive use of tracking and marketing tools indicates active customer engagement and lead generation efforts. The risk profile is low with no signs of malicious activity or content safety concerns.

C

CleverMaps

clevermaps.io

65

CleverMaps is a technology company specializing in location intelligence solutions designed to provide actionable insights for smarter business decisions. Their website positions them as a trusted provider serving industries worldwide, focusing on delivering data-driven analytics through a SaaS model. The company maintains a professional online presence with consistent branding and a clear value proposition centered on location analytics. Technically, the website is built using modern frameworks such as Framer and integrates popular analytics and marketing tools including Google Tag Manager, Microsoft Clarity, and Mailchimp. While the site is accessible and well-structured with good mobile optimization, it lacks visible privacy and cookie policies, which impacts its privacy compliance posture. Security headers are not evident, and SSL configuration details are not available from the provided data, suggesting room for improvement in security best practices. The WHOIS data is privacy protected, which is common for tech companies but limits transparency. Overall, the website demonstrates moderate digital maturity with a solid business focus but requires enhancements in privacy disclosures and security configurations to strengthen trust and compliance.

G

Good Design Store

good-designstore.com

49

Good Design Store is a French-based e-commerce retailer specializing in Scandinavian and Nordic design furniture, lighting, and home decoration products. Established in 2014, the company operates both online and through physical boutiques in Marseille and Nice, targeting consumers seeking high-quality contemporary design. The website presents a professional and well-structured platform powered by PrestaShop, integrating modern analytics and marketing tools such as Microsoft Clarity and Google Tag Manager. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and comprehensive privacy policies. Security posture is good with HTTPS enforced and secure payment options, though improvements are recommended in DNS security and HTTP headers. Overall, the site demonstrates a mature digital presence with strong business credibility and user trust.

C

Cheqly

cheqly.com

63

Cheqly is a fintech company founded in 2021 that offers US business banking solutions primarily targeting startups and small businesses. It operates as a neobank providing online US business accounts, venture debt, and partners with companies like IncParadise and Eqvista to offer company incorporation and equity management services. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a modern digital infrastructure built on WordPress with integrations such as Google Tag Manager and reCAPTCHA. Security posture is solid with HTTPS enforced and domain registration locked, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is partially addressed with a privacy and cookie policy present but lacking a consent mechanism. Overall, Cheqly presents a trustworthy and legitimate fintech service with room for improvement in security transparency and privacy controls.

P

Planet Express

planetexpress.com

66

Planet Express is a medium-sized logistics and package forwarding service provider established in 2001, offering US address provision and international package forwarding with consolidation services. The company targets international shoppers and businesses seeking to shop in US stores and ship globally. The website is built on WordPress with modern SEO and analytics integrations, providing a good user experience and mobile optimization. Security posture is strong with HTTPS, security headers, and domain registration protections, though it lacks explicit security policies and incident response contacts. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the site is professional, trustworthy, and technically sound, supporting its business operations effectively.

C

Centrální evidence psů ČR

evidencepsu.cz

47

Evidence psů is a Czech Republic based online platform dedicated to the registration of dogs via microchip in the national dog registry. It offers services including dog registration, sale of unique dog tags with QR codes, a lost and found dog database, and a blog with dog-related information. The platform targets dog owners in the Czech Republic and positions itself as a national registry with additional value-added services. Technically, the website employs modern web technologies such as Google Analytics, Facebook Pixel, Google reCAPTCHA, and Smartsupp chat, ensuring a responsive and user-friendly experience. The site is hosted on HTTPS with cookie consent mechanisms and privacy policies aligned with GDPR requirements. Security posture is good with HTTPS and form protections, though explicit security headers are missing. The absence of WHOIS data for the domain reduces trust from a domain registration perspective, but the professional presentation and comprehensive contact information support legitimacy. Overall, the website is well-structured, secure, and compliant, serving a niche market effectively.

F

Ferrino

ferrino.cz

50

Ferrino.cz is a professional e-commerce website specializing in the retail of outdoor equipment such as tents, sleeping bags, backpacks, and apparel, primarily targeting customers in the Czech Republic and Slovakia. The site serves as the exclusive importer and retailer of Ferrino brand products in these markets, offering a comprehensive product catalog, rental services, and customer support. The website demonstrates a solid market position with a focus on outdoor enthusiasts and professionals. Technically, the site employs a modern tech stack including jQuery, Bootstrap, and various marketing and analytics tools, with good mobile optimization and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the website content and branding appear legitimate and professional. Overall, the site is well-structured, privacy compliant, and trustworthy for its business domain.

B

Bella Rose

bellarose.cz

51

Bella Rose is a Czech Republic-based e-commerce retailer specializing in Scandinavian home decorations and lifestyle accessories. The website offers a wide range of products including seasonal collections, gifts, and home textiles, targeting consumers interested in stylish and cozy home atmospheres. The company positions itself as an expert in creating home ambiance with a focus on quality and design. Technically, the website uses a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and other marketing and analytics tools. It implements cookie consent mechanisms and HTTPS for secure browsing. However, the absence of WHOIS registration data and lack of explicit privacy and terms of service pages indicate areas for improvement in transparency and compliance. Security posture is moderate with HTTPS enabled but missing security headers and no visible incident response or vulnerability disclosure policies. Overall, the website is professional and trustworthy but would benefit from enhanced compliance documentation and security best practices.

M

Manni Group

mannigroup.com

70

Manni Group is a well-established Italian industrial company specializing in steel processing, sandwich panels, energy efficiency, and off-site construction technologies. The company has a strong market position in Europe with multiple subsidiaries and a focus on innovation and sustainability. The website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, it uses WordPress with modern integrations such as HubSpot and Google Analytics, and implements good security practices including HTTPS and cookie consent mechanisms. However, there is room for improvement in DNS security and publishing explicit security policies. Overall, the security posture is strong with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, enhancing trustworthiness.

A

AiVision, s.r.o.

aivision.cz

53

AiVision, s.r.o. is a Czech Republic based technology company specializing in web development, e-commerce solutions, and IT services with over 21 years of market presence. The company offers a comprehensive portfolio including website creation, web design, database applications, SEO, hosting, and WordPress security services. Their market position is that of an established local provider focused primarily on Prague and surrounding regions. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Google Analytics and Facebook SDK for marketing and tracking, and uses Google reCAPTCHA for form security. The site is mobile optimized and provides a professional user experience with clear navigation and relevant content. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and detailed security policies. WHOIS data is unavailable, which slightly impacts domain trustworthiness, though business legitimacy is supported by consistent contact information and client references. Overall, the site demonstrates good digital maturity and business credibility with room for improvement in security transparency and WHOIS data availability.

D

Del Monte Foods Corporation II Inc.

delmontefoodservice.com

65

Del Monte Foodservice is a well-established B2B foodservice supplier offering a wide range of produce, broths, and snacks to professional foodservice customers. The company leverages its long history and brand recognition to maintain a strong market position. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content tailored to its target audience. Technically, the site is built on Drupal 9 with integrations of HubSpot forms and Google Analytics, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though explicit security headers and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site presents a trustworthy and professional digital presence, though WHOIS data absence warrants further verification.

D

Del Monte Foods

delmontefoods.com

68

Del Monte Foods is a well-established food manufacturing and retail company with a rich history spanning over 135 years. The company offers a portfolio of well-known brands focused on wholesome and quality food products, targeting general consumers and grocery buyers primarily in the United States. Their business model centers on manufacturing and brand management with a strong emphasis on sustainability and corporate responsibility. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that supports their market position. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and includes accessibility features such as the UserWay widget. Performance is moderate, with good SEO and meta tag implementation. However, some security headers are not explicitly present, and there is no visible cookie consent mechanism, which could be improved for compliance. From a security perspective, the site enforces HTTPS and uses secure analytics scripts, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective, though the website content and branding strongly indicate legitimacy. Overall, the security posture is good but could benefit from enhanced header policies and privacy compliance features. The overall risk assessment is low, with recommendations to improve privacy compliance by adding cookie consent, publish security policies, and enhance security headers. These steps will strengthen trust and regulatory adherence while maintaining a professional and secure online presence.

A

American Heart Association

goredforwomen.org

71

Go Red for Women is a prominent initiative by the American Heart Association focused on ending heart disease and stroke in women through education, advocacy, and community engagement. The website serves as a comprehensive resource for awareness, volunteer opportunities, and fundraising efforts. It targets women, healthcare advocates, and donors, positioning itself as a leading national movement in women's cardiovascular health. Technically, the site is built on the Sitecore CMS platform, leveraging modern technologies such as Google Tag Manager, Facebook Pixel, and Hotjar for analytics and user engagement. The site is mobile optimized, accessible, and SEO friendly, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with cookie consent mechanisms and GDPR considerations. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility, though WHOIS data is privacy protected, which is justified for this non-profit entity.

F

Filières de Santé Maladies Rares

filieresmaladiesrares.fr

47

Filières de Santé Maladies Rares is a French healthcare informational platform dedicated to rare diseases, providing resources, directories, research bulletins, and training for patients, caregivers, and healthcare professionals. The website positions itself as a national coordination point for rare disease filières in France, offering comprehensive content relevant to its audience. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and moderate performance. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved and explicit privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the site content and infrastructure indicate legitimate operation. Overall, the site is professional, trustworthy, and safe for general audiences.

T

The Mighty

themighty.com

61

The Mighty is a well-established online community platform dedicated to supporting individuals facing various health challenges including mental health, chronic illness, disability, and rare diseases. Founded in 2001, it serves a niche audience seeking peer support and health-related content. The platform leverages modern web technologies including Nuxt.js for server-side rendering and integrates analytics tools such as Google Analytics and Segment for user behavior tracking. Hosting and DNS services are provided via Cloudflare, ensuring reliable performance and security. Security posture is solid with HTTPS enforced and domain status locks in place, though DNSSEC is not enabled and security headers could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies in the analyzed content. Overall, the website demonstrates good professionalism and trustworthiness but would benefit from enhanced privacy disclosures and security policies.

F

Five9

five9.com

73

Five9 is a leading enterprise provider of cloud contact center software and AI-powered customer experience solutions. The company targets businesses seeking to enhance their customer service operations through reliable, scalable, and intelligent cloud-based platforms. Their market position is strong, supported by a professional website, high customer ratings, and a clear focus on AI integration in contact centers. The website is built on Drupal 10 and incorporates modern analytics and optimization tools, reflecting a mature digital infrastructure. Performance and mobile optimization are good, supporting a positive user experience. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security headers and public security policies could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, indicating attention to regulatory requirements. Overall, Five9 presents a trustworthy and professional online presence, though the absence of WHOIS data limits domain registration trust verification.

C

Coucou de France

coucou-de-france.fr

58

Coucou de France is a specialized online travel guide focused on the Mont-Blanc region, offering curated hiking trails, local events, and activities to both local actors and visitors. The website demonstrates a high level of professionalism with excellent content quality, clear navigation, and mobile optimization. Technically, it leverages modern frameworks such as Next.js and React, integrates analytics tools like PostHog and Google Tag Manager, and employs Facebook Pixel for marketing and retargeting purposes. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website's content and technical setup suggest a legitimate and trustworthy service. Overall, the site is well-positioned as a niche regional guide with room for improvement in privacy compliance and security transparency.

N

Netdev

netdev.fr

46

Netdev is a small digital agency based in Annecy, France, specializing in web creation, digital marketing solutions, and media services such as photo, video, and drone shoots. The company targets businesses seeking to enhance their online presence through expert digital solutions. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. The technical infrastructure includes modern analytics and marketing tools like Matomo, Google Tag Manager, and Microsoft Clarity, indicating a mature digital setup. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website presents a trustworthy and professional business presence with moderate risk due to lack of WHOIS transparency and some missing security documentation.

T

The Siegel Rare Neuroimmune Association

wearesrna.org

66

The Siegel Rare Neuroimmune Association (SRNA) is an international nonprofit organization dedicated to advocating for individuals affected by rare neuroimmune disorders such as ADEM, AFM, MOGAD, NMOSD, ON, and TM. The organization focuses on education, advocacy, and accelerating research to find cures. Their website reflects a professional and consistent brand presence with multilingual support and active social media engagement. The target audience includes patients, families, healthcare professionals, and researchers. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Hotjar, and New Relic for monitoring. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks some security headers and explicit incident response information. Privacy compliance is partial, with cookie consent mechanisms but no explicit privacy policy found in the provided content. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

P

PAN Foundation

panfoundation.org

61

PAN Foundation is a well-established non-profit organization dedicated to providing financial assistance, advocacy, and education to patients with life-threatening, chronic, and rare diseases. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The organization leverages modern web technologies including WordPress CMS, Google Tag Manager, Facebook Pixel, and Fundraise Up for fundraising, indicating a robust technical infrastructure. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be enhanced for improved protection. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR considerations. Overall, the website demonstrates high professionalism and trustworthiness, supporting the organization's mission effectively.

N

National Infusion Center Association

infusioncenter.org

63

The National Infusion Center Association (NICA) is a well-established nonprofit trade association founded in 2007, dedicated to representing non-hospital infusion providers and outpatient care settings. The organization focuses on advocacy, standards development, education, and membership services to support community-based infusion centers across the United States. Their website reflects a professional and comprehensive digital presence with detailed information about their mission, team, and services, positioning them as a leading voice in infusion therapy advocacy. Technically, the website is built on WordPress using the Betheme theme, incorporating modern technologies such as Google Tag Manager, HubSpot, and various analytics and marketing tools. The site is mobile-optimized and SEO-friendly, with good performance and accessibility features. Hosting appears to be managed via GoDaddy, consistent with the domain registrar information. From a security perspective, the site enforces HTTPS and employs domain locking statuses to protect domain integrity. However, it lacks DNSSEC, advanced security headers, and a published security.txt file, which are areas for improvement. Privacy compliance is basic, with no explicit privacy or cookie policies detected, and no consent mechanisms for cookies, which could pose compliance risks. Overall, the website is trustworthy, professional, and serves its target audience effectively. Strategic improvements in privacy compliance and security hardening would enhance its risk posture and user trust.

Infusion Access Foundation is a small nonprofit organization dedicated to advocating for patients requiring provider-administered infusion and injection treatments. The organization focuses on community support, education, and policy advocacy to improve access to therapies for chronic disease patients. Their website is professionally designed with rich patient stories and resources, targeting patients, advocates, and policymakers. Technically, the site uses modern frameworks including React and WordPress as a headless CMS, supported by Firebase and Zoho for backend services and marketing. The site is mobile-optimized and SEO-friendly, though it lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is good with HTTPS and no exposed sensitive data, but could be improved by enabling DNSSEC and adding security headers. Overall, the website is trustworthy and well-positioned within its niche, but should enhance privacy compliance and incident response transparency.

G

Global Genes

globalgenes.org

68

Global Genes is a well-established non-profit organization founded in 2010, dedicated to empowering the rare disease community globally. Their website serves as a comprehensive platform offering patient services, advocacy events, educational resources, and research facilitation tools. The organization targets individuals, caregivers, advocates, clinicians, and researchers involved in rare diseases, positioning itself as a trusted leader in this niche. The site’s content is rich, professionally presented, and highly relevant to its audience, reflecting a strong commitment to community support and education. Technically, the website is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and various analytics and marketing tools such as Google Analytics, Hotjar, and Google Tag Manager. Hosting and DNS services are managed via GoDaddy and Cloudflare, ensuring reliable performance and moderate loading speeds. The site is mobile optimized and accessible, with good SEO practices implemented. From a security perspective, the site enforces HTTPS and employs domain status protections to prevent unauthorized changes. However, it lacks DNSSEC, Content-Security-Policy headers, and a publicly available security policy or incident response information, which are areas for improvement. No critical vulnerabilities or suspicious activities were detected, and privacy compliance is supported by clear privacy and cookie policies with consent mechanisms. Overall, Global Genes presents a secure, credible, and professionally managed online presence with minor security enhancements recommended to further strengthen its posture. The organization’s transparency, trust signals, and comprehensive resources contribute to a high level of trustworthiness and user confidence.

The Autoimmune Encephalitis Alliance is a specialized non-profit organization dedicated to supporting patients, caregivers, healthcare professionals, and researchers involved with autoimmune encephalitis. Their mission focuses on collaborative research, clinical care, education, and community support to find a cure and improve patient outcomes. The website reflects a mature organization with a clear market position in the healthcare non-profit sector, offering key services such as patient support, professional resources, research grants, and community engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and Gravity Forms. It employs Google Analytics and Tag Manager for tracking and uses Google reCAPTCHA to secure forms. The site is mobile-optimized with good SEO practices and structured data for enhanced search visibility. Hosting and domain registration are stable and consistent with the organization's history. From a security perspective, the site uses HTTPS with a valid SSL configuration and implements reCAPTCHA on forms to prevent abuse. However, it lacks security headers and DNSSEC, and does not publish a security policy or incident response contacts. Privacy compliance is limited as no privacy or cookie policies were found, which is a notable gap for GDPR and other regulations. Overall, the website is professional, trustworthy, and content-rich, but could improve its privacy and security posture to enhance compliance and user trust. Strategic improvements in security headers, privacy disclosures, and incident response transparency are recommended to strengthen the organization's digital maturity and risk management.

The Autoimmune Association is a well-established nonprofit organization dedicated to autoimmune disease awareness, advocacy, education, and research. With over 30 years of history and an international reach, it serves patients, caregivers, healthcare professionals, researchers, and policymakers. The website reflects a professional and comprehensive digital presence, offering extensive resources, news updates, and engagement opportunities. The organization leverages modern web technologies and SEO best practices to maintain a high-quality user experience across devices. Security posture is solid with HTTPS and domain protections, though there is room for improvement in DNSSEC and security headers. Privacy compliance is adequate but could be enhanced by implementing cookie consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, supported by multiple certifications and transparent contact information.

M

MIDPOINT Institute

midpoint-institute.eu

56

MIDPOINT Institute is a well-established talent incubator focused on advancing European film and series professionals, especially from Central and Eastern Europe. The organization offers a variety of project development programs, skills training, and networking platforms to support emerging audiovisual talents. The website reflects a professional and consistent brand presence, with clear contact information and comprehensive program details. Technically, the site uses modern JavaScript libraries and tracking tools with a strong emphasis on privacy compliance, including cookie consent management. Security posture is good with HTTPS enforced, though there is room for improvement in HTTP security headers and published security policies. Overall, the website and organization appear legitimate and trustworthy, with strong alignment between business claims and digital presence.

H

Hotel a Pension SEEBERG

seeberg.cz

56

Hotel a Pension SEEBERG is a family-run hospitality business located in Františkovy Lázně, Czech Republic, offering accommodation, wellness, dining, and leisure services. The website reflects a well-established small business with a focus on comfort, wellness, and eco-friendly experiences. The company targets tourists, families, and wellness seekers, positioning itself as a romantic and relaxing destination with a 30-year history. Technically, the website uses modern JavaScript libraries and frameworks such as jQuery, OwlCarousel, and Foundation, and integrates Google Analytics, Facebook Pixel, and Google Tag Manager for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and rich multimedia content. Security-wise, the site enforces HTTPS and has cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. WHOIS data is not publicly available, indicating privacy protection, which is common for small businesses but slightly reduces trust. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations, but could improve security posture and transparency.

M

MINIB, a.s.

minib.cz

54

MINIB, a.s. is a Czech-based manufacturer specializing in heating, cooling, and ventilation units such as convectors, fan-coils, induction units, and chilled beams. Established in 1999, the company holds a strong position in the European HVAC market, offering energy-efficient and innovative solutions supported by independent certifications and patents. Their business model includes manufacturing, project consultation, and custom HVAC solutions targeting architects, contractors, and building owners. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern JavaScript libraries including jQuery and Swiper.js, integrates Google Tag Manager for analytics, and implements a robust cookie consent mechanism. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and published vulnerability disclosure information. WHOIS data is unavailable, which impacts transparency and trust but does not detract significantly from the overall legitimacy given the professional web presence and business information. Overall, the website is well-structured, secure, and compliant with privacy regulations, supporting the company’s credibility and market presence.

CPI Property Group is a prominent European real estate owner specializing in commercial office properties, with a strong presence in the Czech Republic. The website showcases Mayhouse, a modern office building in Prague 4, emphasizing tenant amenities such as fitness facilities, bicycle storage, and a shared terrace. The company positions itself as a leader in sustainable real estate, highlighting certifications like BREEAM In-Use V6 and LEED. The site is professionally designed, mobile-optimized, and provides clear contact channels for leasing inquiries. Technically, the website employs modern tracking and analytics tools including Google Tag Manager and Facebook Pixel, alongside a cookie consent mechanism ensuring GDPR compliance. The site uses Google Maps API for location display and features asynchronous script loading to optimize performance. While no explicit CMS or hosting provider is identified, the site demonstrates good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses standard tracking scripts responsibly. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given the professional presentation and trust signals. Overall, the website is a reliable and professional platform for commercial real estate leasing, with strong business credibility and good technical implementation. Strategic improvements in security headers and incident response transparency would further enhance trust and compliance.

C

Colours of Data

cod.bi

53

Colours of Data is a professional data consulting company specializing in data integration, enrichment, analytics, customer insight, and fostering a data-driven culture. The company targets businesses seeking to leverage data for improved decision-making and operational efficiency. Their website demonstrates a solid digital presence with modern technologies and a user-friendly design, including cookie consent mechanisms and client case studies that enhance credibility. However, the absence of WHOIS registration data and lack of explicit privacy and terms of service policies present concerns regarding domain legitimacy and compliance. Security posture is moderate with room for improvement in security headers and incident response transparency.

D

Dr. Max Holding

drmax.eu

58

Dr. Max Holding operates as a leading pharmaceutical group headquartered in Prague, Czech Republic, with a significant presence across 17 European countries. It is the second largest pharmacy chain in Europe and focuses on retail pharmacies, e-commerce, wholesale distribution, and marketing services for strategic partners. The website reflects a mature business with a clear market position and a broad service offering in the healthcare sector. Technically, the site uses modern JavaScript libraries such as jQuery and Owl Carousel, and integrates Google Analytics and Tag Manager with IP anonymization, indicating a moderate level of digital maturity. However, the absence of visible security headers and explicit privacy and cookie policies suggests room for improvement in security posture and privacy compliance. The WHOIS data is privacy protected, which is typical for large enterprises, but limits direct verification of domain registration details. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance transparency.

Z

Zlatý Anděl

zlatyandel.cz

52

Zlatý Anděl is a Czech Republic-based shopping center offering a variety of retail shops, restaurants, and office spaces. The website is professionally designed with clear navigation and mobile optimization, targeting local shoppers and business tenants. The technical infrastructure includes modern JavaScript frameworks, cookie consent management, and Google Tag Manager for analytics. Security posture is strong with HTTPS and cookie consent but could be improved by adding security headers and visible contact information. The absence of WHOIS data reduces domain trustworthiness, though the website's professional appearance and social media presence support legitimacy. Overall, the site is low risk but would benefit from enhanced transparency and security disclosures.

D

DOMOPLAN a.s.

domoplan.cz

57

DOMOPLAN a.s. is a Czech Republic-based real estate developer specializing in premium residential buildings and holiday apartments. The company emphasizes quality architecture, sustainability, and community development, positioning itself as a recognized leader in the Czech real estate market with multiple industry awards. Their business model includes property sales, leasing, and investment fund management, targeting buyers and investors interested in high-quality living spaces. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics, Smartlook, and Google Tag Manager, with a responsive and well-structured design optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. Overall, the website projects professionalism, trustworthiness, and a mature digital presence.

G

G4 REALITY

g4reality.cz

49

G4 REALITY is a small regional real estate agency based in Rosice u Brna, Czech Republic, specializing in the sale and rental of houses and apartments primarily in the surrounding areas including Rosice, Ivančice, Moravský Krumlov, and Brno venkov. The company offers comprehensive real estate services including professional property valuation, legal services, and mortgage consulting through partnerships with recognized specialists. The website reflects a professional and trustworthy business presence with clear contact information and positive client testimonials. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Tag Manager, ensuring a responsive and user-friendly experience. However, the absence of WHOIS data and some security headers slightly reduce trustworthiness from a security perspective. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism. Overall, the site is well-designed, content-rich, and serves its target audience effectively.

V

Visit Svalbard

visitsvalbard.com

59

Visit Svalbard operates as the official tourism portal for the Svalbard archipelago, providing comprehensive information and booking services for activities, accommodations, and events. The website targets tourists seeking authentic Arctic experiences and positions itself as a leading resource for travel planning in the region. Technically, the site employs a mature technology stack including jQuery, Google Tag Manager, and Cookiebot for consent management, running on the NewMind CMS platform. The site is well-optimized for SEO, accessibility, and mobile devices, with good performance and modern security practices such as HTTPS and security headers. However, the absence of WHOIS registration data raises concerns about domain transparency, although the website content and branding strongly indicate legitimacy. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the site demonstrates a strong digital presence and marketing maturity but would benefit from improved domain registration transparency and clearer contact information.

M

My Online Schooling

myonlineschooling.co.uk

72

My Online Schooling is a British international online school established in 2016, providing accredited UK education from Key Stage 2 to A-Level. The school offers live virtual lessons, after school clubs, SEND support, and pastoral care to a global community of over 1,000 pupils from more than 80 countries. The website is professionally designed, mobile-optimized, and rich in relevant educational content, targeting parents and students seeking flexible, high-quality online schooling. The business model focuses on delivering British curriculum education through an online platform with subject-specialist teachers and flexible timetables. Technically, the website uses a modern tech stack including Google Analytics, Facebook Pixel, HubSpot forms and chat, and Finalsite CMS. The site performs moderately well with good SEO and accessibility features. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though explicit security headers are not fully verified. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. The website demonstrates strong trust indicators such as accreditations, multiple office locations, and active social media presence. However, the WHOIS lookup for the domain www.myonlineschooling.co.uk failed due to a domain naming rules violation, indicating potential registration issues or that the domain is a subdomain or alias. This discrepancy lowers the domain legitimacy score and suggests caution. Overall, the website is trustworthy and professional, but the domain registration inconsistency should be investigated further. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and resolving domain registration inconsistencies to improve trust and compliance.