Security Directory

I

ITOPF

itopf.org

71

ITOPF is a globally recognized non-profit organization specializing in promoting effective spill response for oil, chemicals, and hazardous substances. The organization serves industry and government entities worldwide, providing expert advice, contingency planning, training, and claims analysis related to accidental ship-source pollution. ITOPF maintains a strong market position as a primary source of technical information and support in the environmental protection sector. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries and frameworks such as FancyApps UI Carousel and Google Analytics with Tag Manager for tracking and consent management. The site demonstrates good performance, mobile optimization, and accessibility standards, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and employs consent-based analytics tracking. However, it lacks explicit security headers and a published security policy or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, ITOPF's website is professional, trustworthy, and well-maintained, with comprehensive content and clear navigation. The absence of WHOIS data limits domain registration analysis, but the organization's legitimacy is supported by consistent branding, detailed service offerings, and active content updates. Strategic recommendations include implementing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and security.

The website 'DATAPLÁN' serves as a strategic management and sustainable development portal for municipalities and regions within the Czech Republic, operated under the National Network of Healthy Cities (Národní síť Zdravých měst ČR). It provides tools and data to support public administration and community planning, focusing on sectors such as energy and transport. The platform targets local government officials and regional authorities, positioning itself as a national resource for strategic development. Technically, the site employs modern web technologies including jQuery, Font Awesome, and Google Analytics, and is built on the ActionApps TOOLKIT CMS. The site is moderately optimized for performance and mobile devices, with good SEO practices but basic accessibility features. Security posture is adequate with HTTPS enabled and secure login forms, but lacks important security headers and privacy compliance mechanisms such as cookie consent and privacy policy pages. WHOIS data is unavailable due to privacy restrictions, but the website branding and content indicate legitimacy as a government-affiliated platform. Overall, the site is professional and functional but could improve in privacy compliance and security hardening.

L

LiveRamp

liveramp.com

75

LiveRamp is a well-established enterprise technology company specializing in data collaboration and identity resolution services for marketers and their partners. The company operates a comprehensive platform that connects people, data, and devices to enable personalized marketing and data monetization. Their market position is strong, supported by a global ecosystem and a broad portfolio of services including identity resolution, data marketplace, enrichment, and clean rooms. The website reflects a mature digital presence with excellent content quality and professional branding. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and GSAP, and integrates advanced SEO tools like Yoast SEO Premium. Hosting and DNS are managed via Cloudflare and AWS, ensuring robust infrastructure. Performance and mobile optimization are excellent, with asynchronous loading of scripts and consent management implemented via Ketch. The site uses Google Tag Manager for analytics and tracking, balanced with user consent mechanisms. From a security perspective, the site enforces HTTPS and employs domain registration protections to prevent unauthorized changes. While explicit security headers are not detailed, the use of consent management and absence of exposed sensitive data indicate a solid security posture. However, enabling DNSSEC and publishing a security.txt file would enhance security transparency and vulnerability management. No critical vulnerabilities or suspicious content were detected. Overall, LiveRamp's website demonstrates high professionalism, strong business credibility, and good privacy compliance. The risk profile is low, with recommendations focusing on incremental security improvements and enhanced incident response transparency.

The Ultomiris Pregnancy Registry Study website serves as a clinical research platform focused on enrolling and informing pregnant or breastfeeding women who have been prescribed ULTOMIRIS for autoimmune conditions. The site is professionally designed and targets both patients and healthcare providers in the United States. It provides detailed information about the study, medication, and participation methods, supported by links to official prescribing information and medication guides. The parent company IQVIA is prominently referenced, lending credibility to the site. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Vue.js, and Google Tag Manager, with Sitecore CMS inferred from cookie names. The site is mobile-optimized and includes accessibility features, though some improvements could be made. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism. However, explicit security headers are not detected, and no incident response or security policy pages are present. From a security and compliance perspective, the site demonstrates good privacy compliance with clear privacy and cookie policies and user consent mechanisms. The absence of WHOIS data for the domain is a notable anomaly, reducing trust slightly, but the professional content and association with IQVIA mitigate concerns. No vulnerabilities or exposed sensitive data were detected. Overall, the website is a credible and professionally maintained clinical research registry with moderate to good technical and security posture. Strategic improvements in security headers, incident response transparency, and domain registration clarity would enhance trust and compliance.

The website ultomirishcp.com serves as the official healthcare professional (HCP) resource for ULTOMIRIS®, a pharmaceutical product by Alexion Pharmaceuticals, Inc. It provides comprehensive information on the drug's indications, prescribing information, safety warnings including boxed warnings, dosing, administration, and patient support programs. The site targets healthcare professionals with detailed scientific and regulatory content, positioning ULTOMIRIS as a leading long-acting terminal complement inhibitor approved for multiple indications. The business model focuses on education, support, and access facilitation for healthcare providers and patients. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, and Bing Ads for analytics and marketing. Hosting is via Amazon AWS infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a professional and consistent design. However, explicit privacy and cookie policies are not clearly found, and security headers are not evident in the provided data. From a security perspective, the site uses HTTPS and enforces domain registration protections but lacks DNSSEC and visible security policies or vulnerability disclosure mechanisms. The presence of a REMS program and boxed warnings indicates regulatory compliance and risk management. No WAF or blocking mechanisms were detected, and no critical vulnerabilities were found in the analysis. Overall, the website is a high-quality, professional pharmaceutical resource with strong business credibility and technical implementation. Privacy compliance could be improved by adding explicit policies and cookie consent mechanisms. Security posture is solid but could benefit from enhanced headers and DNSSEC. The site is safe for general audiences and effectively supports its healthcare professional user base.

T

tech&fest

tech-fest.fr

65

Tech&Fest is a well-established technology and innovation festival based in Grenoble, France, targeting a broad audience including researchers, entrepreneurs, students, and professionals. The event focuses on themes such as economic and digital sovereignty, sustainability, and technological advancements. The website is professionally designed, mobile-optimized, and provides comprehensive event information, partner details, and multimedia content. Technically, the site leverages modern JavaScript frameworks (React), integrates multiple analytics and marketing tools, and is hosted on a reliable platform with good performance and security configurations. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms in place, although a dedicated security policy and incident response information are absent. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

L

Les Echos Le Parisien Événements

go-entrepreneurs.com

55

GO Entrepreneurs is a prominent French event organizer specializing in entrepreneurship-focused conferences and salons, primarily targeting creators, startups, and business leaders. The website reflects a professional and well-branded presence, showcasing upcoming events in Paris and Lyon for 2026. The business is positioned as a leader in the French entrepreneurial event market, operated under the umbrella of Les Echos Le Parisien Événements, a reputable media and events company. The site offers partnership opportunities and multimedia content such as podcasts, enhancing its engagement with the entrepreneurial community. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and Didomi for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Security measures include HTTPS enforcement and bot protection via Google reCAPTCHA, though some security headers are not explicitly detected. From a security and compliance perspective, the site demonstrates good GDPR adherence with clear privacy and cookie policies and a consent mechanism. However, the absence of a published security policy or incident response contact and the lack of WHOIS domain registration data introduce some concerns regarding transparency and domain legitimacy. Despite this, the professional content and strong branding mitigate some risks. Overall, the website is a credible and professional platform for entrepreneurial events in France, with recommendations to enhance security transparency and verify domain registration details to strengthen trust and compliance further.

C

CANAL+ Luxembourg S. à r.l.

canalplussport.cz

63

CANAL+ Sport is a media company specializing in broadcasting and streaming live sports events, primarily the English Premier League and WTA tennis tournaments, targeting Czech and Slovak audiences. The company operates subscription packages via Skylink Live TV, offering extensive sports content with Czech and Slovak commentary. The website reflects a professional media service with clear branding and user engagement through social media channels. Technically, the site uses modern web technologies including Google Tag Manager, Cookiebot for consent management, Bootstrap for responsive design, and integrates Twitter widgets for live social media content. The site is mobile optimized and performs well with good SEO practices. Security-wise, HTTPS is enforced and cookie consent is implemented, but the absence of security headers and lack of published privacy and terms policies indicate areas for improvement. WHOIS data is unavailable, which limits domain trust assessment, but the website content and contact information support legitimacy. Overall, the site is a credible sports media platform with moderate to good security posture and privacy compliance, suitable for general audiences.

B

BitWave Consulting s.r.o.

regionivancicko.cz

49

RegionIvančicko.cz is a regional information portal operated by BitWave Consulting s.r.o., serving the Ivančicko region in the Czech Republic. The portal provides comprehensive local news, event calendars, job listings, real estate offers, and a business directory, positioning itself as a key digital resource for residents and businesses in the area. It is part of a broader network of regional portals, enhancing its market presence and reach. Technically, the website employs a modern frontend stack including jQuery, Bootstrap 4.5.3, and various UI libraries such as Fancybox and Lightbox2. It integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on login forms, with a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no formal security or incident response policies are published. The absence of WHOIS data for the domain is a notable concern, limiting full trust verification. Overall, the portal demonstrates a solid digital presence with good content quality and privacy compliance but would benefit from enhanced security practices and domain registration transparency. Strategic recommendations include implementing comprehensive security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

B

BitWave Consulting s.r.o.

rosicko.cz

49

Rosicko.cz is a regional online portal operated by BitWave Consulting s.r.o., serving the Rosicko region in the Czech Republic. The portal provides a comprehensive range of local services including regional news, event calendars, job listings, classifieds, real estate offers, and a business directory. It targets residents and businesses in the region, positioning itself as a key local information hub and part of a broader network of regional portals. The business model relies on advertising, premium listings, and partnerships with local service providers. The website is professionally designed with consistent branding and good content quality.

V

Veřejné zakázky přímo z Vašeho oboru

verejna-soutez.cz

61

The website www.verejna-soutez.cz provides specialized services focused on public procurement tenders primarily for businesses in the Czech Republic. It offers subscription-based notifications of new tenders, smart analysis of tenders, telephone consultations, and detailed reports to help clients gain competitive advantages in public contracts. The site is part of the Tender Service group, with multiple regional and language variants, indicating a broad market presence in Central Europe. Technically, the site is built on a modern Angular framework with PrimeNG components, integrating analytics tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security headers and detailed security policies. The absence of WHOIS data for the domain reduces trust and raises questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

S

SimpleShop – Chytrý prodejní formulář pro váš web

simpleshop.cz

47

SimpleShop is a Czech-based e-commerce platform specializing in providing smart sales forms for websites to sell digital products such as online courses, e-books, videos, memberships, and tickets. The platform targets small to medium-sized businesses and individual sellers seeking automated online sales solutions without the need for programming expertise. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it leverages WordPress with Elementor and several plugins for performance, multilingual support, and GDPR compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies are not publicly documented. WHOIS data is privacy protected, which is typical for commercial websites, and no suspicious patterns were detected. Overall, the site presents a trustworthy and professional business offering in the Czech e-commerce market.

N

Nová spirála

novaspirala.cz

48

Nová Spirála is a multi-genre cultural venue located at Výstaviště Praha, offering a modern event space with a rotating circular stage and advanced technology. The website presents a professional and comprehensive digital presence, targeting a general audience interested in cultural events, ticketing, and venue rental. The business model focuses on event programming, ticket sales, venue rental, and gift vouchers, positioning itself as a significant cultural hub in the Czech Republic. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and CookieHub, ensuring good SEO, privacy compliance, and user experience. Security posture is strong with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and integrates well with partner ecosystems. Strategic recommendations include enhancing security headers, continuous monitoring of third-party scripts, and maintaining privacy compliance.

JellyPot is a Czech-based content-first CMS platform built on the .NET framework, designed to provide flexible content modeling and management capabilities. It targets developers, designers, and content editors who require a customizable and headless CMS solution. The website showcases a professional design with detailed product descriptions, client testimonials, and references to reputable clients, indicating a solid market presence in the technology sector. Technically, the site uses modern JavaScript libraries such as jQuery and integrates Google Tag Manager and Google Analytics for tracking. The platform emphasizes flexibility in design and coding, supporting multiple output formats including HTML, XML, and JSON. Security-wise, the site lacks visible security headers and a published privacy policy, but it does implement a cookie consent mechanism. The absence of WHOIS registration data is a notable concern, potentially indicating domain privacy or data unavailability, which slightly impacts trustworthiness. Overall, the site is well-structured and professional but would benefit from enhanced transparency and security practices.

A

AnFas, spol. s r.o.

anfas.cz

52

AnFas, spol. s r.o. is a Czech-based branding, communication, and marketing agency focused on crafting clear, attractive, and beloved brands. Their services include naming, visual identity, brand messaging, web development, publications, presentations, marketing campaigns, and creative specialties. The company targets businesses seeking to strengthen their market position through effective communication and branding strategies. The website demonstrates a professional and consistent brand presence with comprehensive case studies and client testimonials, including endorsement from branding guru Marty Neumeier. Technically, the website employs modern JavaScript libraries such as jQuery and fullPage.js, integrates multiple analytics and marketing tools including Google Analytics 4, Smartlook, Microsoft Clarity, and Facebook Pixel, all managed via Google Tag Manager. The site uses HTTPS with good SSL configuration and implements a robust cookie consent mechanism compliant with GDPR. Performance and mobile optimization are good, though accessibility could be improved. From a security perspective, the site follows best practices with HTTPS and consent-based tracking but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable publicly due to CZ.NIC policies, but the domain and website content indicate a legitimate and established business. Overall, the website is professional, secure, and privacy-conscious, with minor recommendations to enhance security headers, accessibility, and transparency around security policies. The business shows strong credibility and a clear market niche in branding and marketing services.

I

I love Hummus s.r.o.

ilovekimchi.eu

51

The website www.ilovekimchi.eu represents a small Czech-based company, I love Hummus s.r.o., specializing in the production and B2B sale of fermented BIO food products, primarily Kimchi. The business operates an e-commerce platform targeting wholesale and private label customers, positioning itself as a reliable partner in the niche fermented foods market. The site is professionally designed with multilingual support and clear product offerings, reflecting a focused business model in the food retail and manufacturing sector. Technically, the website leverages modern web technologies including Google Tag Manager, Google Analytics 4, Facebook Pixel, and the Upgates e-commerce platform. The infrastructure supports responsive design and basic accessibility, with moderate performance. The presence of cookie consent and GDPR compliance mechanisms indicates a mature approach to privacy and regulatory adherence. From a security perspective, the site enforces HTTPS and employs secure forms with validation. However, explicit security headers are not detected, suggesting room for improvement in hardening the web server configuration. No vulnerabilities or exposed sensitive data were found in the analysis. The absence of WHOIS data due to EURid privacy policies limits domain registration transparency but is justified for this business type. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the security posture and user trust.

GavickPro is a specialized provider of Joomla templates and WordPress themes, targeting web developers, businesses, and bloggers seeking professional and responsive website designs. The company operates as part of the JoomlArt.com network, offering a broad portfolio of themes, plugins, and support services. Their market position is solid with a history of over eight years and a large user base. Technically, the website employs modern web technologies including jQuery, Google Analytics, and Joomla Framework, hosted with DDoS protection by Evolution Host. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS enabled and secure forms, but lacks visible HTTP security headers and explicit security policies. Privacy and cookie policies are comprehensive and GDPR compliant. WHOIS data is unavailable or privacy protected, which slightly reduces transparency but does not undermine overall legitimacy. No adult or questionable content is present, making the site safe for general audiences.

S

Studdio

studdio.com

52

Studdio is a French communication agency specializing in comprehensive marketing services including website creation, SEO, social media management, graphic design, logo creation, printing, and signage. The company offers subscription-based communication solutions with monthly fees over 24 to 48 months, targeting businesses seeking efficient and budget-controlled marketing support. The website is professionally designed, mobile-optimized, and provides clear navigation and service descriptions, positioning Studdio as a small but operationally focused agency in the French market. Technically, the website employs modern web technologies such as Google Tag Manager for analytics, Google Fonts for typography, and SVG icons for graphics. The site is served over HTTPS with good SSL configuration, though no explicit security headers were detected. Performance is moderate, with good mobile optimization and basic accessibility features. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit incident response or security policy pages were found. From a security perspective, the website shows a solid baseline with HTTPS and no exposed sensitive data. However, the absence of WHOIS registration data for the domain www.studdio.com is a notable concern, as it raises questions about domain legitimacy and registration consistency. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the HTML content. The site lacks explicit security best practices such as security headers and incident response contacts. Overall, Studdio presents a professional and trustworthy front for its communication services, but the missing WHOIS data and limited security disclosures suggest areas for improvement in transparency and security posture. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen trust and compliance.

A

Alcalie

alcalie.fr

45

Alcalie is a French editorial communication agency specializing in bespoke content creation and editorial strategy services. The company offers a comprehensive range of services including editorial strategy, content creation, magazines, annual reports, and corporate brochures. The website is professionally designed using WordPress with modern plugins and SEO optimizations, targeting businesses and organizations seeking high-quality editorial communication. The technical infrastructure is solid with good mobile optimization and performance, though some security best practices such as security headers and privacy policies could be improved. The security posture is generally good with HTTPS enforced, but lacks explicit incident response and vulnerability disclosure information. Overall, the website presents a trustworthy and professional image but would benefit from enhanced privacy compliance and domain registration transparency.

E

Evidens

evidens.fr

52

Evidens is a French marketing research institute specializing in exploratory, strategic, operational, and evaluation studies to help businesses understand their markets and customers. The company positions itself as a trusted partner for enterprises seeking data-driven decision-making support, with a focus on innovation and brand image analysis. The website is professionally designed, mobile-optimized, and uses modern web technologies including jQuery, Google Tag Manager, and a cookie consent solution (axeptio). Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with cookie consent implemented but no dedicated privacy policy or terms of service pages found. Contact is primarily via a web form, with no explicit emails or phone numbers displayed. WHOIS data aligns well with the business claims, showing a consistent and legitimate registration. Overall, the site is trustworthy and functional but could improve transparency and security practices.

M

Mediapilote

mediapilote.com

57

Mediapilote is a French communication and advertising agency with multiple regional offices across France. The company offers a broad range of services including brand strategy, communication strategy, digital strategy, creative campaigns, social media management, employer branding, and CSR communication. They also provide certified training programs under the Qualiopi label. The website presents a professional and consistent brand image with comprehensive service descriptions and client references, positioning Mediapilote as a reputable regional player in the media and communication sector. Technically, the website uses a mix of legacy and modern JavaScript libraries, integrates Google Tag Manager for analytics, and employs Axeptio for cookie consent management, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, though some improvements in security headers and library updates are recommended. The absence of WHOIS data reduces domain trustworthiness, but the professional content and branding mitigate concerns. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

S

StrefaWizytówek.pl

strefawizytowek.pl

44

StrefaWizytówek.pl is a specialized Polish e-commerce business focused on the production and printing of various types of business cards, including standard, plastic, and exclusive designs. Established in 2013, the company serves primarily business professionals and companies seeking high-quality printed business cards with additional graphic design services. The website demonstrates a strong market position locally with a comprehensive product offering, free delivery within Poland, and a creative studio for custom projects. Technically, the website is built on WordPress with WooCommerce, leveraging modern JavaScript libraries such as jQuery and Google Analytics for tracking. The site is hosted by OVH SAS, a reputable hosting provider. The website is mobile-optimized, SEO-friendly, and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS and employs nonce tokens in scripts, but lacks some recommended security headers which could enhance protection. Privacy and cookie policies are present and include consent mechanisms, indicating good compliance with GDPR. No incident response or security policy pages were found, suggesting room for improvement in transparency and security readiness. Overall, the website is professional, trustworthy, and well-maintained, with a solid business model and technical foundation. Strategic improvements in security headers and incident response disclosures would further strengthen its security posture and trustworthiness.

G

GC SKUPINA

trinnity-zmekcovace-vody.cz

54

The website www.trinnity-zmekcovace-vody.cz represents GC SKUPINA's TRINNITY brand, specializing in water softeners and filtration systems. The company positions itself as a major European manufacturer with patented American technology, offering a range of products designed to improve water quality, reduce heating costs, and protect household appliances. The site is well-structured, professionally designed, and targets residential and commercial customers primarily in the Czech Republic and Europe. Technically, the site is built on WordPress with modern plugins for SEO, cookie compliance, and user interaction, including Google Tag Manager and reCAPTCHA for security. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and incident response details are absent. The lack of WHOIS data is a concern for domain legitimacy but does not detract from the professional presentation and compliance observed on the site. Overall, the site demonstrates a mature digital presence with room for improvement in transparency and security documentation.

G

GIENGER spol. s r.o.

dotace-info.cz

59

GIENGER spol. s r.o. is a well-established Czech company specializing in heating and energy solutions, with a focus on providing subsidy-related services for family homes. The company leverages its 30 years of market experience and is part of the larger GC SKUPINA group, enhancing its market credibility. Their website offers detailed information on current heating subsidies, product offerings, and consultation services, targeting homeowners seeking energy-efficient heating solutions. Technically, the website is built on WordPress using modern plugins and themes, ensuring good SEO, accessibility, and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA on forms, and a comprehensive cookie consent mechanism, though explicit security headers and policies are not fully implemented. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear professional and legitimate. Overall, the site presents a solid digital presence with room for security and compliance enhancements.

G

GIENGER spol. s r.o.

gienger.sk

10

GIENGER spol. s r.o. operates as a professional wholesale distributor specializing in technical building services (TZB) including heating, sanitary, and installation products primarily serving Slovakia. The company is part of the larger European GC skupina group, which has a strong market presence across multiple EU countries. Their business model focuses on B2B sales to installation firms and trade partners, supported by digital tools such as a mobile app and e-shop platform. The website reflects a mature digital presence with good content quality, clear navigation, and regional targeting. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for marketing insights. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent, indicating a trustworthy and legitimate operation.

M

MIBO Scooters s.r.o.

mibokolobezky.cz

51

MIBO Scooters s.r.o. operates an e-commerce platform specializing in the sale of scooters, including folding, racing, and electric models, along with related accessories and apparel. The company targets consumers primarily in the Czech Republic, offering a niche product line with a focus on quality and variety. The website is professionally designed with good navigation and mobile responsiveness, supporting a positive user experience. Technically, the site employs modern JavaScript libraries and Google Tag Manager for marketing and analytics, although Google Analytics is currently disabled. Security posture is moderate with HTTPS enforced but lacks some recommended security headers. Privacy and terms policies are present but basic, with cookie consent mechanisms implemented. The absence of WHOIS data reduces domain trustworthiness, but the presence of clear company contact information and registration details supports legitimacy. Overall, the site presents a credible and functional retail platform with room for security and compliance enhancements.

K

KICKBIKE CZ

kolobezkyspribehem.cz

9

KICKBIKE CZ operates a website focused on adult scooters, offering a variety of models including sport, city, racing, and mushing scooters. The business emphasizes its 25 years of tradition and storytelling around its products, targeting a general audience interested in transportation and sport scooters. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and includes integrations with Google Analytics and Google Tag Manager for visitor tracking. The technical infrastructure is modern and mobile-optimized, though performance is moderate and accessibility features are basic. Security measures include HTTPS usage and JavaScript-based hardening of fetch and XHR requests, but lack explicit security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain legitimacy verification, but the website content and structured data suggest a legitimate small business. Overall, the site presents a professional and trustworthy front with room for improvement in privacy compliance and security best practices.

A

Autocentrum Jan Šmucler

smucler.cz

48

Autocentrum Jan Šmucler is a medium-sized automotive dealership and service company based in the Czech Republic, specializing in authorized sales and servicing of major automotive brands including SEAT, CUPRA, Volkswagen, ŠKODA, and Honda Moto. The company operates multiple branches and offers a comprehensive range of services such as new and used car sales, leasing, insurance, and vehicle servicing. Their website reflects a professional and well-structured digital presence with detailed vehicle listings, promotional offers, and customer engagement features. Technically, the site employs modern web technologies including jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, Google reCAPTCHA, and secure form handling are implemented, though there is room for improvement in security headers and accessibility compliance. Privacy and legal policies are comprehensive and GDPR compliant, supporting trustworthiness. The absence of WHOIS data slightly impacts domain trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, maintaining up-to-date libraries, and improving accessibility features to further strengthen the security posture and user experience.

S

Statutární město Plzeň

plzen.eu

69

Statutární město Plzeň operates an official municipal website providing comprehensive information and services to residents, businesses, and tourists. The site offers city news, administrative procedures, cultural and social event information, and public service resources. It serves as a central digital hub for the city of Plzeň in the Czech Republic, reflecting a strong government presence and commitment to transparency and citizen engagement. The website is well-branded, consistent, and professionally maintained, with clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including JavaScript frameworks, Google Tag Manager, Microsoft Clarity, and cookie consent mechanisms, ensuring a good user experience and compliance with privacy regulations. Security posture is strong, supported by HTTPS, security headers, and ISO 27001 certification, although explicit incident response and vulnerability disclosure information are not publicly available. Overall, the website demonstrates a mature digital infrastructure suitable for a large municipal government entity.

L

Loxxess AG

loxxess.com

53

Loxxess AG operates as a contract logistics provider specializing in solutions for E-Commerce, Omnichannel, Pharma, and Healthcare sectors. The company positions itself as reliable, efficient, scalable, and transparent, targeting business clients requiring dedicated logistics services. The website is professionally designed, primarily in German, and reflects a mature digital presence with SEO optimization and cookie consent mechanisms in place. Technically, the site runs on WordPress with modern plugins such as Yoast SEO and Cookiebot, and integrates Google Tag Manager and hCaptcha for analytics and security respectively. Security posture is good with HTTPS enforced and consent management implemented, though explicit security headers and incident response information are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and structure suggest a legitimate and established business. Overall, the site is well-maintained, with moderate to good technical and security maturity, but could improve transparency and security best practices.

B

BIGGEST

biggest.cz

49

BIGGEST is a large Czech company specializing in demolition, construction, soil stabilization, recycling of construction waste, and rental of construction machinery. The company positions itself as the largest professional in these sectors within its region, offering a broad range of services including packaging services in partnership with other companies. The website is professionally designed, content-rich, and targets clients needing large-scale construction and demolition projects. The presence of partner logos and references enhances its market credibility. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Sentry for error monitoring. It uses reCAPTCHA for form security and implements GDPR-compliant cookie consent mechanisms. However, explicit contact information such as emails and phone numbers are not directly visible in the provided HTML content, which may affect user trust and ease of contact. Security-wise, the site uses HTTPS and some best practices but lacks visible security headers and published security policies or incident response information. The WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and professional presentation suggest legitimacy. Overall, the site scores well in content quality, business credibility, and privacy compliance but could improve in security posture and transparency.

F

Form Sparrow | Build Forms Fast. Collect Data Instantly.

formsparrow.com

65

Form Sparrow is a technology-focused SaaS platform specializing in fast and easy web form building and data collection. The website presents a professional and clean interface targeting developers and businesses seeking no-code form management solutions. The platform positions itself as a hassle-free alternative for form management with API integration capabilities. Technically, the website uses modern JavaScript frameworks such as React and integrates Google Analytics and Google Tag Manager for user tracking. The domain is registered since 2019, consistent with the startup nature of the business. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers which are recommended for enhanced protection. Privacy and cookie policies are not found, indicating a compliance gap. Contact information is not explicitly provided on the homepage, which may affect user trust and support accessibility. Overall, the website is functional and professional but would benefit from improved privacy compliance and security best practices.

P

PI International

profinews.com

63

PROFINEWS is a specialized online publication operated by PI International, focusing on industrial communication technologies such as PROFINET, PROFIBUS, IO-Link, and omlox. The website serves a professional audience involved in industrial automation and manufacturing sectors by providing news, product updates, training information, and event announcements. The site is well-established, with a domain age dating back to 2006, reflecting a mature presence in its niche market. The business model centers on media publication and information dissemination, supported by partnerships with technology providers and industry organizations. Technically, the website is built on WordPress using the OceanWP theme and incorporates modern web technologies including jQuery and multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted behind Cloudflare, providing CDN and DNS services, although DNSSEC is not enabled. Performance and mobile optimization are good, with a professional design and clear navigation enhancing user experience. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks advanced security headers and a published security policy or incident response contacts. Cookie consent is implemented, and privacy policies are comprehensive and GDPR compliant. No critical vulnerabilities or exposed sensitive data were detected. The site uses multiple third-party scripts for advertising and tracking, indicating moderate user tracking levels. Overall, PROFINEWS presents a trustworthy and professional online presence with good content quality and business credibility. Security posture is adequate but could be improved by enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy. The site is safe for general audiences and does not contain any adult or questionable content.

L

Le Dauphiné Libéré

ledauphine.com

71

Le Dauphiné Libéré is a well-established regional French news media organization delivering comprehensive local and national news coverage primarily for several southeastern French departments. The website offers a rich mix of articles, videos, podcasts, and digital newspaper editions, supported by a subscription and advertising business model. The site targets a broad general audience within its regional scope and maintains a strong brand presence consistent with its parent company, EBRA Group. Technically, the website employs modern web technologies including Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security, ensuring a robust digital infrastructure. Security posture is solid with HTTPS enforcement and consent mechanisms, though explicit security headers could be improved. Privacy compliance is strong, with clear GDPR adherence and a dedicated Data Protection Officer contact. The absence of publicly available WHOIS data is a notable transparency gap but does not detract significantly from the site's legitimacy given the professional content and branding. Overall, the website represents a credible, secure, and user-friendly digital news platform with room for minor security enhancements.

C

Citeo

citeo.com

64

Citeo is a French eco-organization specializing in the Extended Producer Responsibility (REP) for household packaging and graphic papers. It plays a key role in promoting recycling and environmental sustainability for producers and businesses in France. The website is professionally designed, primarily in French, and targets businesses involved in packaging and paper production. Technically, the site uses modern frameworks such as Nuxt.js and integrates multiple analytics and tracking tools with a clear cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is good with HTTPS and security headers in place, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain reduces trustworthiness slightly, but the overall professional presentation and compliance with privacy regulations indicate a legitimate and established organization.

R

Raiola Networks

raiolanetworks.es

80

Raiola Networks is a well-established Spanish web hosting and domain registration company founded in 2014. It offers high-quality hosting solutions including SSD hosting, VPS, dedicated servers, and specialized WordPress hosting, targeting Spanish-speaking customers seeking reliable and fast web hosting services. The company maintains a strong market position in Spain with a medium-sized operation and consistent branding across its digital presence. Technically, the website employs modern web technologies such as ES modules, Google Fonts, FontAwesome, and integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, TikTok Pixel, and Mautic. The hosting infrastructure leverages AWS DNS services, ensuring robust performance and scalability. Security posture is strong with HTTPS enforced, proper security headers, CSRF protection, and a comprehensive cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is professional, secure, and compliant, reflecting a mature digital presence.

P

Watch The Best Premium HD Porn Videos | Pornhub Premium home

pornhubpremium.com

68

Pornhub Premium operates as a leading subscription-based adult entertainment platform offering high-definition, ad-free pornographic videos featuring popular performers. The website targets adult audiences exclusively and employs age verification modals and explicit disclaimers to ensure compliance with legal requirements. Technically, the site uses modern web technologies including Vue.js and jQuery, with a focus on performance and mobile optimization. Privacy and cookie consent mechanisms are robust, reflecting good GDPR compliance practices. However, the absence of publicly available WHOIS data and lack of explicit security policies or incident response contacts present transparency and trust challenges. Overall, the platform demonstrates a mature digital infrastructure but could improve in security communication and registrant transparency.

P

Pornhub

pornhub.org

65

Pornhub is a globally recognized adult entertainment platform offering free and premium pornographic video content. It operates a large-scale video streaming service with extensive user-generated and studio content, supported by advertising and premium subscriptions. The website demonstrates a mature digital infrastructure with modern JavaScript frameworks, third-party ad networks, and comprehensive cookie consent mechanisms. Security posture is strong with HTTPS enforcement, age verification modals, and privacy policies aligned with GDPR standards. However, WHOIS data is unavailable, likely due to privacy protections, which is common in this industry. Overall, the site is professionally managed with a high level of trust and compliance for adult content delivery.

P

Pornhub

pornhub.com

65

Pornhub is a leading adult entertainment website offering free and premium pornographic video content globally. It operates a large-scale platform with extensive multimedia streaming capabilities and a broad user base. The site employs modern web technologies and integrates major advertising networks to monetize its services. Privacy and cookie policies are comprehensive and include user consent mechanisms, reflecting compliance with data protection regulations such as GDPR. The site features age verification and RTA ratings to restrict access to adult content appropriately. However, WHOIS data is unavailable, limiting transparency about domain ownership. No direct company contact or security incident response information is publicly visible, which could be improved to enhance trust and compliance. Overall, the website demonstrates a mature technical infrastructure and a strong market position in the adult media sector.

R

RedTube

redtube.com.br

58

RedTube is a large-scale adult entertainment platform specializing in free pornographic video streaming, targeting Portuguese-speaking audiences. The site offers a broad catalog of adult content, including videos, categories, live cams, and user interaction features such as playlists and watch later. It operates on an advertising-supported business model, leveraging major ad networks like TrafficJunky. Technically, the site employs modern JavaScript libraries, lazy loading, and streaming technologies to deliver content efficiently across desktop and mobile platforms. The presence of age verification modals and cookie consent mechanisms demonstrates compliance with regulatory requirements such as GDPR. Security posture is adequate with HTTPS enforced and some best practices in place, though improvements in security headers and vulnerability disclosure are recommended. Overall, the site is professionally designed and functional, with extensive tracking and advertising integrations typical for the adult media industry.

R

Redtube

redtube.com

65

Redtube is a prominent adult entertainment website offering free streaming of pornographic videos, including high-definition and virtual reality content. It targets an adult audience with a broad range of categories, pornstars, and channels, supported primarily through advertising revenue. The platform demonstrates a mature digital presence with comprehensive privacy and cookie policies, age verification mechanisms, and integration of major ad networks and analytics tools. Technically, the site uses modern JavaScript libraries and asynchronous loading techniques to optimize user experience across devices. Security posture is adequate with HTTPS enforcement and cookie consent, though lacks explicit security policy disclosures and detailed incident response contacts. The absence of WHOIS data reduces domain transparency but is common in this industry. Overall, Redtube maintains a strong market position as a leading free adult video streaming service with good technical and privacy compliance, balanced by some gaps in business credibility and security transparency.

D

Danesco Trading Ltd.

k2s.cc

61

Keep2Share is an established online file hosting and sharing platform founded in 2012, offering users fast downloads, video streaming, and cloud storage services. The business operates on a freemium model, providing both free and premium account options to its general internet user base. The website is built using modern web technologies including React and integrates popular analytics and tracking tools such as Google Analytics and Yandex Metrica. Hosting and DNS services are managed via Cloudflare, ensuring reliable performance and security. The site demonstrates a good level of technical maturity with responsive design and basic accessibility features. Security measures include HTTPS enforcement, reCAPTCHA integration, and domain locking, although DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is partial, with privacy and terms policies present but lacking cookie consent mechanisms. Overall, the site is safe for general audiences and maintains moderate trustworthiness, though improvements in security transparency and privacy compliance are recommended.

W

Weblider - agencja interaktywna

weblider.pl

44

Weblider is a well-established digital marketing agency based in Poznań, Poland, specializing in SEO, Google Ads, web design, and premium marketing services. With over 10 years of experience and certifications such as Google Partner and Google Analytics, they position themselves as a trusted local leader in the marketing technology sector. Their website reflects a professional and comprehensive service offering targeting businesses seeking to improve their online presence. Technically, the site is built on WordPress with modern integrations including Google Analytics and Facebook SDK, providing a solid digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website is user-friendly, mobile-optimized, and compliant with GDPR, supporting a high level of business credibility.

I

iRaiser Group

iraiser.eu

54

iRaiser Group is a digital fundraising solutions provider specializing in tools for charities and non-profits to enhance donor engagement and increase donations. With a global client base of over 900 charities, iRaiser offers services such as donation forms, peer-to-peer fundraising, crowdfunding, event fundraising, and ticketing. The company positions itself as a leader in digital fundraising innovation since 2012. Technically, the website is built on HubSpot CMS and integrates multiple modern analytics and marketing technologies including Google Analytics, Piwik PRO, and Facebook Pixel. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. The absence of WHOIS data for the domain reduces transparency but does not negate the legitimacy indicated by the website content and client references. Overall, iRaiser demonstrates a mature digital presence with strong business credibility in the non-profit fundraising sector.

I

International Greeter Association

internationalgreeter.org

75

International Greeter Association operates a niche community-driven platform offering free local guided walks for tourists worldwide. The website positions itself as a connector between travelers and local greeters, focusing on small groups and personalized experiences. The business model appears non-profit or community-based, targeting tourists seeking authentic local interactions. The website is built on WordPress using the Divi theme, with SEO optimization via Rank Math and tracking through Google Tag Manager. Hosting is provided by a reputable registrar, and the domain is relatively young but consistent with the business age. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is limited, with no visible privacy policy or terms of service, though a cookie consent mechanism is present. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance documentation.

J

JRK

menejodpadu.sk

57

JRK operates a Slovak-focused website providing comprehensive waste management solutions, particularly targeting bio-waste composting and municipal waste optimization. The company offers digital platforms (JRK DIGITAL) and technical equipment to municipalities, positioning itself as a key regional player in environmental sustainability and waste management. The website is built on WordPress with modern technologies including Bootstrap, jQuery, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and ActiveCampaign. Security posture is good with HTTPS and cookie consent mechanisms, though minor backend code warnings and lack of explicit security policies suggest room for improvement. Overall, the site is professional, content-rich, and trustworthy, serving a B2G/B2B audience effectively.

J

JRK Česká republika s.r.o.

jrkdigital.eu

60

JRK Česká republika s.r.o. operates the website 'Pro méně odpadu' offering JRK DIGITAL, a comprehensive waste evidence system tailored for municipalities and technical waste services. The platform integrates software and hardware solutions to provide real-time data collection, waste flow analysis, and operational optimization. The company positions itself as a key player in the Czech waste management sector, supported by EU co-financing and ISO 14001 certification. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, and incorporates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and obfuscated contact emails, though it lacks some HTTP security headers and a public vulnerability disclosure policy. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the detailed contact information and certifications. Overall, the website presents a professional, trustworthy, and well-structured digital presence for JRK Česká republika s.r.o., with recommendations to enhance security headers and WHOIS transparency to further strengthen trust and compliance.

J

JRK Česká republika s.r.o.

chytreodpady.cz

60

JRK Česká republika s.r.o. operates the website meneodpadu.cz, providing advanced waste management software and hardware solutions primarily targeting municipalities and technical waste services in the Czech Republic. Their flagship product, JRK DIGITAL, offers comprehensive waste evidence systems that enable clients to optimize waste collection, reduce administrative burdens, and increase revenues. The company positions itself as a regional leader with a strong focus on environmental sustainability and digital transformation in waste management. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and jQuery, integrating multiple third-party marketing and analytics tools including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and ActiveCampaign. The site is mobile responsive, well-structured, and SEO optimized, providing a professional user experience. Security practices include HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent aligned with GDPR requirements. Contact information is detailed and includes multiple regional managers, enhancing business credibility. However, the absence of WHOIS data reduces domain trust slightly, warranting monitoring. Overall, the website reflects a mature digital presence with strong business and technical foundations. Strategic recommendations include enhancing security headers, implementing a vulnerability disclosure policy, and improving accessibility features to further strengthen trust and compliance.

C

Copylot Group

copylot.com

57

Copylot Group is a French communication consulting group that unites multiple communication agencies under a collaborative and growth-oriented business model. The group focuses on advising and supporting brands and professionals in communication through shared tools, agile methods, and collective intelligence. Their services span branding, marketing, digitalization, audiovisual communication, and marketing studies. The website is professionally designed, mobile-optimized, and uses modern technologies including Google Tag Manager, Google reCAPTCHA, and Axeptio for cookie consent management. However, the domain WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy. Security posture is moderate with HTTPS and reCAPTCHA implemented but lacks explicit security headers and published privacy policies. Contact is primarily via a web form and LinkedIn. Overall, the website presents a professional image but would benefit from improved transparency and security practices.