Security Directory

L

L'Épicerie des Fermes

epiceriedesfermes.com

58

L'Épicerie des Fermes is a small retail and catering business based in Megève, France, specializing in fine grocery products, catering services, and a wine cellar. The website is professionally designed using the Wix platform and targets a general audience interested in quality fresh products and catering. The technical infrastructure relies on Wix hosting and Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness, though the website content appears legitimate and business-focused. Overall, the site is functional and safe but would benefit from improved compliance and transparency measures.

H

Hôtel Lodge Park

lodgepark.com

63

Hôtel Lodge Park is a luxury 5-star boutique hotel located in Megève, French Alps, offering upscale accommodation, a steakhouse restaurant, and a large wellness spa. The website reflects a high level of professionalism with rich content, multilingual support, and strong branding consistent with a luxury hospitality business. Technically, the site uses modern web technologies including Webflow CMS, Google Analytics, and Weglot for translations, providing a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS and reCAPTCHA implemented, though some security headers and policies could be enhanced. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. WHOIS data is unavailable or privacy protected, which slightly reduces transparency but does not detract significantly from the business credibility given the professional presentation and external references.

O

ORGREZ ECO

orgrezeco.cz

58

ORGREZ ECO is a Czech-based company specializing in sustainable energy consulting and project development, targeting companies and municipalities. The company offers a range of services including waste management projects, ESG consulting, energy concept planning, green heating solutions, community energy projects, and environmental assessments. It is part of the ORGREZ Group, which includes sister companies focused on energy and environmental technologies. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow, Google Tag Manager, and Cloudflare Turnstile captcha for security. The security posture is strong with HTTPS enforced and cookie consent implemented, although some security headers and policies could be improved. WHOIS data is unavailable due to privacy protection, but the domain and website content appear legitimate and consistent with the business claims. Overall, the website demonstrates good digital maturity and business credibility with a high trustworthiness rating.

A

AUMOVIO SE

continental-mobility-services.com

66

AUMOVIO SE is a German-based technology company specializing in advanced automotive and mobility solutions, including software-defined mobility, electric mobility, vehicle electrical/electronic architectures, safety systems, driver assistance, user experience, and cybersecurity. The company targets automotive manufacturers and industry partners, positioning itself as a medium-sized enterprise with a comprehensive portfolio of services and solutions. The website reflects a professional corporate presence with consistent branding and a clear navigation structure, although the accessed page is a 404 error page indicating missing content at the requested URL. Technically, the website leverages modern web technologies such as Adobe Helix CMS, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing. The site is mobile optimized and uses SVG graphics for logos and icons. Performance is moderate with basic SEO and accessibility features. Security posture is good with HTTPS enforced, but lacks explicit security headers and incident response information on the site. No critical vulnerabilities or security issues were detected in the analyzed content. Privacy and cookie policies are present and appear comprehensive, indicating GDPR compliance. However, no terms of service or vulnerability disclosure policies were found. Social media presence is active on Facebook, LinkedIn, and YouTube, enhancing trust and engagement. Overall, the website demonstrates a solid business credibility and technical foundation, though improvements in security transparency and content completeness are recommended to enhance user trust and compliance.

O

ONF Bois Bûche Sud Alsace

onf-bois-buche-sud-alsace.fr

51

ONF Bois Bûche Sud Alsace is a small regional business specializing in the production and distribution of dry firewood in the Alsace region of France. Affiliated with the Office National des Forêts (ONF) and its Energie Bois network, the company offers delivery and on-site pickup services, targeting residential and commercial customers who require quality firewood with guaranteed moisture content. The website is built on WordPress with WooCommerce, integrating modern tracking tools such as Google Analytics and Tag Manager, and uses HTTPS with reCAPTCHA for form security. However, it lacks explicit cookie consent mechanisms and security headers, which are areas for improvement. The domain registration is consistent with the business claims, showing legitimacy and stability.

A

ATEX

atexsport.cz

59

ATEX is a Czech-based manufacturer specializing in high-quality sportswear for professional and hobby athletes. With over 30 years of experience, the company produces custom and standard sports clothing including jerseys, vests, pants, and suits, primarily serving the Czech and Slovak markets with growing presence in other European countries. The website reflects a mature business with professional branding and a clear focus on quality and customer engagement through an e-shop and custom design services. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Microsoft Clarity, indicating a data-driven approach to user experience and marketing. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking, representing areas for improvement. Overall, the site is well-designed, mobile-optimized, and trustworthy, but the absence of WHOIS data and privacy documentation slightly reduces compliance confidence.

S

SOLODOOR a.s.

sestavsidvere.cz

45

SOLODOOR a.s. operates a specialized door configurator website targeting consumers and professionals interested in customized doors. The company provides a comprehensive service including door decor selection, model choice, and interior visualization, supported by professional consulting and warranty services through branded retail stores in the Czech Republic. The website is well-branded and professionally designed, reflecting a medium-sized retail business with a clear market position in door manufacturing and sales. Technically, the website employs a modern technology stack including jQuery, Lightbox, Google Tag Manager, and various marketing and analytics tools such as Adform, Microsoft Clarity, and Facebook Pixel. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and explicit security headers. HTTPS is enforced, ensuring secure communication. From a security perspective, the website demonstrates a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit privacy policies, terms of service, and contact information for security incidents reduces compliance maturity. The use of multiple third-party tracking scripts necessitates ongoing monitoring for privacy compliance. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts transparency but does not strongly detract from legitimacy given the professional site content. Overall, the website presents a trustworthy and professional front for SOLODOOR a.s., with recommendations to enhance privacy disclosures, security headers, and contact transparency to improve compliance and user trust further.

L

Limoo

limoo.cz

41

Limoo.cz is a Czech e-commerce website specializing in the retail of functional clothing and accessories from well-known Swedish brands such as CRAFT, HAGLÖFS, and DIDRIKSONS. The site targets consumers interested in outdoor and functional apparel, offering free shipping for orders over 1,000 CZK and immediate dispatch of products. The website demonstrates a modern technical infrastructure utilizing Bootstrap, jQuery, and several tracking and advertising technologies including Google Analytics, Facebook Pixel, and Leadhub. Cookie consent is implemented with granular user options, reflecting a basic level of privacy compliance. However, the absence of a visible privacy policy, terms of service, and contact information limits transparency and user trust. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy and business credibility. Security posture is moderate with HTTPS enabled but missing security headers and no published security or incident response policies. Overall, Limoo.cz presents as a functional and professionally designed retail website but would benefit from enhanced transparency, security practices, and compliance documentation.

S

SUMMIT TRADE DISTRIBUTION s.r.o.

summit-trade.sk

60

SUMMIT TRADE DISTRIBUTION s.r.o. operates a professional e-commerce platform specializing in premium outdoor equipment and apparel for activities such as skialpinism, climbing, freeride, and trekking. The company holds official distributor status for several renowned outdoor brands, positioning itself as a trusted retailer in Slovakia and the Czech Republic. Their business model combines retail sales with educational content and events under the Summit Academy brand, enhancing customer engagement and brand loyalty. The website is well-branded, content-rich, and targets outdoor enthusiasts seeking quality gear and knowledge. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Typekit fonts, likely built on a custom or proprietary CMS with PHP-based Nette framework elements. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Performance is moderate, with room for optimization. Security is robust with HTTPS enforced, CSRF protection on forms, and cookie consent mechanisms in place, though some security headers could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR adherence, and user consent management. However, no explicit security policy or incident response contacts are published, which could enhance trust and preparedness. Overall, the domain registration data aligns with the business claims, indicating a legitimate and established company. Strategically, the company should focus on enhancing security headers, publishing a formal security policy, and improving incident response visibility. Continued investment in technical performance and privacy transparency will further solidify their market position and customer trust.

G

GIENGER spol. s r.o.

gienger.cz

60

GIENGER spol. s r.o. is a professional wholesale company specializing in heating, sanitation, installation, and engineering networks, operating primarily in the Czech Republic and Slovakia. It is part of the larger European GC group, providing a broad portfolio of products and services targeted at installation firms and professionals in the technical building services (TZB) sector. The company offers a modern e-shop, bonus programs, and extensive product catalogs, positioning itself as a key player in its market segment with over 25 years of tradition. Technically, the website is built on WordPress using the Avada theme and incorporates modern plugins such as Yoast SEO and Slider Revolution. It employs Google Analytics and Google Tag Manager for analytics and tracking, and integrates reCAPTCHA for form security. The site is well-optimized for SEO and mobile devices, with a cookie consent mechanism compliant with GDPR requirements. From a security perspective, the site uses HTTPS with strong SSL configuration and includes standard security headers. The presence of a detailed cookie consent banner and reCAPTCHA indicates good privacy and security practices. However, the absence of explicit security policies, incident response information, and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is professional, content-rich, and trustworthy from a business and technical standpoint. The main risk factor is the lack of WHOIS domain registration data, which limits verification of domain legitimacy. Strategic recommendations include adding explicit security and incident response policies, terms of service, and a security.txt file to enhance transparency and trust.

T

TopGis, s.r.o.

gisonline.cz

60

TopGis, s.r.o. operates the GisOnline.cz platform, a sophisticated GIS mapping application tailored for municipalities, cities, investors, and corporate clients in the Czech Republic. The platform offers comprehensive services including digital technical maps, cadastral data visualization, asset inventory management, and smart city IoT sensor integration. The company positions itself as a leading GIS solution provider with a focus on precision mapping and innovative 3D visualization technologies. Technically, the website employs modern JavaScript frameworks, Google Tag Manager for analytics, and a cookie consent mechanism ensuring basic privacy compliance. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though improvements are recommended in security headers and formal security policies. The absence of WHOIS data is a notable gap, impacting domain trust assessment. Overall, the site is professional, content-rich, and well-structured, serving a specialized technology niche with clear business credibility.

S

Sencito

sencito.cz

49

Sencito is a technology company specializing in smart IoT solutions tailored for municipalities to enable smarter community management through sensor networks and mobile applications. Their offerings include a variety of sensor modules, smart cameras, alarm systems, and data analytics tools designed to improve safety, resource management, and citizen engagement. The company targets small to medium-sized municipalities primarily in the Czech Republic and neighboring countries, positioning itself as an accessible and comprehensive provider of smart city technology. Technically, the website is built using modern JavaScript libraries such as jQuery, Blueimp Gallery, Owl Carousel, and AOS for animations. It integrates Google Tag Manager, Google Analytics, and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized with responsive design and includes cookie consent mechanisms to comply with GDPR. While the site lacks explicit security headers, it enforces HTTPS and uses spam protection on forms, indicating a reasonable security posture. From a security perspective, the site demonstrates good practices such as encrypted connections and data protection for sensor data. However, it lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. The absence of WHOIS data reduces domain trust verification but does not detract significantly from the site's legitimacy given its professional presentation and active content. Overall, Sencito presents a credible and professional online presence with a focus on IoT solutions for municipalities. Strategic improvements in security transparency and WHOIS data availability would further strengthen trust and compliance.

S

SH ČMS – Sbor dobrovolných hasičů Morávka

sdhmoravka.cz

55

SDH Morávka is a volunteer fire brigade organization based in the Czech Republic, providing firefighting, rescue, and civil protection services to the local community. The website serves as an information hub for community members, other fire brigades, and interested parties, offering news, event details, and safety information. The organization is supported by local government and foundations, reflecting a trusted community role. Technically, the website is built on WordPress using modern plugins and themes, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal incident response information. Privacy compliance is limited due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve transparency and compliance aspects.

J

JoomlArt

joomlart.com

57

JoomlArt is a well-established provider of Joomla templates, extensions, and related services with over 19 years of experience and a large customer base exceeding 300,000 members. The company operates multiple top Joomla clubs, offering a comprehensive suite of products including the T4 Page Builder and T4 Framework, targeting Joomla developers and businesses seeking professional website solutions. Technically, the website is built on Joomla CMS with modern frameworks and libraries, optimized for mobile and SEO, and integrates multiple analytics and marketing tools. Security posture is good with HTTPS enforced and secure payment indicators, though explicit security policies and incident response details are lacking. The absence of WHOIS domain registration data is a concern but the website's content quality, branding, and community presence support its legitimacy. Overall, the site is professional, trustworthy, and well-positioned in the Joomla ecosystem.

J

Janus s.r.l.

amamusei.it

55

AmaMusei is a specialized Italian company providing digital audioguide solutions for museums and cultural territories. Their platform enables museums to autonomously create and manage official guides accessible via a dedicated mobile app for iOS and Android. The company targets cultural institutions and local territories aiming to enhance visitor engagement and expand cultural experiences beyond museum walls. The business operates in a niche market with a small company profile and strong regional partnerships.

A

Aqualia

aqualia.com

68

Aqualia is a large, established Spanish company specializing in the integral management of the water cycle, with participation from FCC Group and IFM Investors. The company focuses on sustainable water management services targeting municipalities and citizens, emphasizing social responsibility and environmental sustainability. The website reflects a mature digital presence built on the Liferay CMS platform, integrating modern technologies such as jQuery, Bootstrap, and Google Tag Manager. It features comprehensive content, clear navigation, and multilingual support, indicating a well-maintained corporate site. Security posture is good with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit incident response policies are recommended. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its professional presentation and trust signals. Overall, the site is suitable for general audiences and aligns well with corporate and regulatory standards.

Z

ZX2C4

wireguard.com

61

WireGuard is a modern, high-performance VPN protocol and software project focused on simplicity, security, and speed. The project is led by Jason A. Donenfeld and hosted under the ZX2C4 organization, with strong emphasis on cryptographic soundness and minimal attack surface. The website provides comprehensive technical information, installation guides, and community resources, positioning WireGuard as a leading VPN solution in the technology sector. The digital infrastructure uses modern web technologies and analytics tools, delivering a fast and accessible user experience. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance documentation. The absence of WHOIS registration data is unusual but does not detract significantly from the overall trustworthiness given the project's transparency and community presence. Strategic recommendations include publishing privacy and cookie policies, enhancing security headers, and adding a security.txt file to improve vulnerability disclosure processes.

Graphene Themes Solutions is a small technology company specializing in the development and support of WordPress themes, notably the Graphene theme family. With over 1.5 million downloads and a strong community presence, they offer both free and premium themes alongside custom website development services. Their market position is that of a reputable and established WordPress theme provider with a loyal user base. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern web technologies and third-party analytics tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks important security headers and explicit cookie consent mechanisms. The absence of WHOIS registration data for the domain is a notable anomaly that impacts trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for its business, but improvements in security headers, privacy compliance, and domain registration transparency are recommended to enhance trust and compliance.

F

Floriánova huť

florianovahut.com

10

Florianova huť is a Czech-based small retail business specializing in handcrafted glass products with a tradition dating back to 1995. The company offers a variety of premium glassware including vases, petrolejové lampy (kerosene lamps), and decorative glass items through an e-commerce platform built on WordPress and WooCommerce. The website demonstrates a professional and consistent brand presence with comprehensive product listings and structured data to enhance SEO. Technically, the site uses modern web technologies and plugins, including Google Tag Manager and Complianz for GDPR compliance, ensuring a good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS registration data is a notable concern for domain legitimacy, but the website content and functionality suggest a legitimate business. Overall, the site is well-designed, privacy compliant, and user-friendly, targeting general consumers interested in premium handmade glass products.

R

Rupa

rupa.cz

9

Rupa is a Czech-based manufacturer specializing in the production and development of cereal bars. The company targets B2B clients and distributors within the food manufacturing and retail sectors. The website is built on WordPress using the Elementor framework, indicating a moderate level of digital maturity. The presence of Google Tag Manager suggests some level of analytics and marketing integration. Security posture is adequate with HTTPS enabled, but lacks important security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data limits transparency but is common for privacy-conscious domains. Overall, the website presents a professional image suitable for a medium-sized manufacturing business but would benefit from enhanced security and compliance features.

V

VAŠE LIGA z.s.

vaseliga.cz

61

VAŠE LIGA z.s. operates a Czech Republic-based sports league platform offering monthly organized matches across multiple sports including squash, badminton, tennis, ping-pong, beach volleyball, and padel. The platform targets active sports enthusiasts in various Czech cities, providing a structured and community-driven sports experience. The website demonstrates a solid market niche with a medium-sized operation and partnerships with local sponsors and foundations. Technically, the site employs a modern JavaScript stack with frameworks like Svelte and jQuery, integrates Google Maps and social media SDKs, and uses Google Tag Manager for analytics and marketing. The site is mobile-optimized and features a cookie consent mechanism aligned with GDPR requirements. Security posture is good with HTTPS enforced and secure login forms, though it lacks some HTTP security headers and explicit incident response contacts. The absence of WHOIS data reduces domain trustworthiness, but the website content and partner references support legitimacy. Overall, the site is professional, user-friendly, and trustworthy for its target audience.

D

D.A.S. právní ochrana

das.cz

70

D.A.S. právní ochrana is a Czech-based legal protection insurance provider with over 20 years of market presence, offering a range of legal insurance products tailored for private individuals, employees, families, and drivers. The company operates under the ERGO Versicherung Aktiengesellschaft pro ČR umbrella, providing comprehensive legal services and insurance packages with clear pricing and accessible customer support. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Alpine.js, Swiper.js, and various analytics and marketing tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, the absence of a publicly accessible privacy policy and WHOIS data transparency slightly reduce trust levels. Overall, the site demonstrates a mature digital presence suitable for its industry and audience.

Y

Yedoo

yedoo.eu

56

Yedoo is a European-based company specializing in the design, manufacture, and sale of adult and children's scooters, balance bikes, and children's bicycles. The company targets families and outdoor enthusiasts, offering a range of products with a focus on quality, durability, and design. Their market position is that of a niche manufacturer and retailer with a strong brand presence in the EU, supported by professional customer care and a 5-year frame warranty. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR, but lacks some advanced security headers and explicit incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve by adding security.txt and enhancing security headers.

V

Výstaviště Praha

navystavisti.cz

63

Výstaviště Praha operates as the official website for the Prague Exhibition Grounds, providing comprehensive information about events, venue rental, sports, dining, and visitor services. The website targets a broad audience including families, sports enthusiasts, and event attendees, positioning itself as a key local venue with a recognized brand in Prague. The business model focuses on public venue management and event hosting, supported by services such as space rental and an e-shop. Technically, the website employs a modern infrastructure with Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and CookieHub for analytics and marketing, hosted by a Czech hosting provider. The site is mobile-optimized with good SEO practices and a cookie consent mechanism ensuring GDPR compliance. Performance is moderate with room for improvement in accessibility. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security policies and incident response contacts suggests room for maturity. The site uses multiple third-party tracking scripts with user consent, reflecting a balance between analytics needs and privacy compliance. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of malicious activity or adult content. Strategic recommendations include publishing formal security and incident response policies, enhancing security headers, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

C

CNL Invest

cnlinvest.cz

49

CNL Invest operates the website Zadosti.cz, a Czech Republic-based platform offering a smart application designed to simplify the process of obtaining confirmations about the existence of engineering networks for construction projects. The company targets builders, IT infrastructure managers, and state employees, providing services that reduce administrative burdens and minimize risks related to errors and delays. The business is positioned as a niche service provider within the real estate and construction sector, founded in 2018, with a small company size and a focused market presence. Technically, the website is built on WordPress using the Elementor page builder, hosted on Azure DNS infrastructure. It employs modern web technologies including Google Tag Manager and Google Analytics for tracking and performance monitoring. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features, delivering a moderate performance experience. From a security perspective, the site uses HTTPS with a good SSL configuration and includes a cookie consent mechanism compliant with GDPR. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and there is no visible security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy digital presence with strong privacy compliance and a clear business focus. Strategic improvements in security headers and incident response documentation would enhance its security posture and trustworthiness.

R

Requestor.com s.r.o.

servicedesk.net

49

Requestor.com s.r.o. is a technology company specializing in advanced helpdesk and ticket management solutions for customer service and internal operations. Their offerings include a cloud-based platform and an on-premises server version, both featuring integrated AI to enhance service delivery. The company targets businesses seeking efficient communication consolidation and ticketing systems. Technically, the website is built on WordPress with modern JavaScript libraries and frameworks, providing a responsive and user-friendly experience. Security posture is solid with HTTPS and no exposed sensitive data, though the absence of security headers and explicit privacy policies indicates room for improvement. The lack of WHOIS data for the domain raises concerns about domain registration transparency, impacting trustworthiness. Overall, the website is professional and functional but would benefit from enhanced compliance and security disclosures.

MyCat.cz is a Czech-based company operated by HN Consulting Brno s.r.o., providing a specialized information system designed to simplify administrative tasks for language schools. The platform offers comprehensive management tools including course scheduling, invoicing, library and publication management, translation tracking, and communication via email and SMS. The system targets language school management, teachers, students, and HR personnel, serving over 95 schools across Central Europe. The website is professionally designed, multilingual, and includes client testimonials that reinforce its market credibility. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, Google Fonts, and popular JavaScript libraries like Swiper.js and Owl Carousel. It is mobile-optimized and structured for good SEO performance. However, there is no evidence of a CMS or hosting provider disclosed. The site includes cookie consent mechanisms and GDPR-related pages, indicating a baseline compliance with privacy regulations. From a security perspective, the site uses HTTPS and includes cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or malicious content were detected in the analysis. The absence of WHOIS data for the domain is a concern and reduces the overall trust score, though the website content and contact information appear legitimate. Overall, MyCat.cz presents a solid business offering with a professional web presence and moderate technical maturity. To enhance trust and security posture, the company should address the missing WHOIS data, publish security policies, and implement recommended HTTP security headers.

The Adventist Organizational Directory is a long-established, authoritative online resource maintained by the General Conference Corporation of Seventh-day Adventists. It serves as a comprehensive locator and reference for Adventist churches, schools, and other entities worldwide, targeting members, researchers, and the general public interested in Adventist organizational information. The website provides updated contact information and facilitates change requests, differentiating itself from the Adventist Yearbook by including local entities and more frequent updates. Technically, the website employs a custom-built platform leveraging jQuery, jQuery UI, Google Tag Manager, and TrustArc for cookie consent management. It is hosted behind Cloudflare DNS services but lacks DNSSEC, and some scripts are loaded over HTTP, which may introduce mixed content risks. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS, but lacks visible security headers and DNSSEC, which are recommended for enhanced protection. The cookie consent mechanism indicates GDPR compliance efforts, although no explicit security or incident response policies are published. Overall, the security posture is moderate with actionable recommendations to improve DNS security, script delivery, and header implementation. The website is trustworthy and professional, with consistent branding and clear organizational affiliation. It does not contain any adult or questionable content, making it safe for general audiences. The domain registration data supports legitimacy with a long history and consistent organizational identity. Strategic improvements in security and technical modernization would enhance the site's resilience and user trust.

ONF Energie Bois is a French network specializing in the sale and distribution of wood energy products including firewood, wood pellets, and forest wood chips. It is developed and associated with the Office national des forêts (ONF), a reputable public forestry organization in France. The website serves as a portal for consumers and professionals to find distributors, estimate consumption, and learn about sustainable wood energy. Technically, the site is built on WordPress with common plugins for SEO, forms, and marketing integrations such as Google Analytics and Brevo. Security measures include HTTPS and Google reCAPTCHA, with visible user warnings about phishing attempts, indicating a proactive security stance. However, the absence of WHOIS registration data and lack of explicit privacy and cookie policies represent compliance and trust gaps. Overall, the site is professional, content-rich, and well-branded but would benefit from enhanced transparency and security headers.

O

ONF Vegetis

onf-vegetis.fr

52

ONF Vegetis is a French company specializing in sustainable management and maintenance of natural spaces, vegetation control, and wooden furniture for natural and urban environments. The company targets professionals seeking expert services in arboriculture, vegetation management, and infrastructure maintenance. The website reflects a mature digital presence with modern technologies such as Vue.js, jQuery, and GSAP, and integrates analytics tools like Matomo and Google Analytics via Google Tag Manager. Privacy and cookie policies are well implemented with a consent mechanism, demonstrating GDPR compliance. However, the site lacks a dedicated security policy and incident response information, which are recommended for enhanced trust and compliance. Overall, the website is professional, secure with HTTPS, and provides clear navigation and relevant content for its audience.

O

ONF International

onfinternational.org

43

ONF International is a French-based consulting and expertise firm specializing in forestry management, sustainable forest practices, and climate change mitigation projects. Operating globally with subsidiaries in Latin America and Africa, it serves both public and private sector clients. The company is a subsidiary of the Office National des Forêts (ONF), leveraging French forestry expertise internationally. The website is professionally designed, multilingual, and provides comprehensive information about its services and projects. Technically, the website is built on WordPress with modern web technologies including Google Analytics, Tag Manager, and reCAPTCHA for security. It uses HTTPS with a valid SSL certificate and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and has good SEO and accessibility basics, though some security headers are missing. From a security perspective, the site shows good practices such as HTTPS enforcement and bot protection on forms. However, it lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. WHOIS data is unavailable due to privacy protection, but the domain and website content appear legitimate and consistent with the business claims. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security policy transparency and enhanced security headers would further strengthen its posture.

O

ONF-Agir pour la forêt

onf-agirpourlaforet.fr

54

ONF-Agir pour la forêt is a French non-profit organization dedicated to raising funds to support projects of general interest in public forests managed by the Office National des Forêts (ONF) and its partners. The website presents a professional and well-structured platform aimed at individuals and enterprises interested in sustainable forest management and biodiversity preservation. The organization positions itself as a key player in environmental conservation within France, leveraging public engagement and corporate sponsorships to finance its initiatives. Technically, the website employs a modern technology stack including Vue.js, jQuery, GSAP, and integrates analytics tools such as Matomo and Google Tag Manager. It uses a proprietary or custom CMS platform and implements cookie consent mechanisms compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks explicit security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's profile. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable source for donors and partners interested in forest conservation efforts in France.

A

AUMOVIO Aftermarket GmbH

cryptontechnology.com

62

Continental Aftermarket, operated by AUMOVIO Aftermarket GmbH, is a prominent player in the automotive aftermarket sector, offering a comprehensive range of products including replacement parts, garage equipment, tyres, and specialized vehicle solutions. The company targets automotive professionals, garages, and distributors primarily in the United Kingdom and internationally. The website reflects a mature B2B business model with strong branding and a broad product portfolio. Technically, the website employs modern tracking and consent management technologies, ensuring GDPR compliance and user privacy. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and includes a Content Security Policy, but could enhance security headers further. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data retrieval issues, which slightly impacts trustworthiness. Overall, the website demonstrates a solid digital presence aligned with Continental's brand standards.

U

Uniroyal

uniroyal-tyres.com

67

Uniroyal is a tire brand specializing in wet weather driving safety, offering products for cars and trucks. The website positions Uniroyal as a brand under Continental with a long history dating back to 1868. The site provides product information, dealer locators, and brand values, targeting both individual consumers and commercial transport businesses. Technically, the website is built on Adobe Experience Manager, uses Google Tag Manager for analytics, and implements consent management for GDPR compliance. The site is well-structured, mobile-optimized, and professionally designed. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers are not evident. WHOIS data for the domain is unavailable, which reduces trustworthiness and requires further verification. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its audience effectively.

S

Semperit

semperit.com

64

Semperit is a well-established Austrian tyre brand operating under the Continental group, offering a wide range of tyres for cars, SUVs, vans, trucks, and buses suitable for all weather and road conditions globally. The website demonstrates a professional and consistent brand presence with comprehensive product information, multimedia content, and legal documentation, reflecting a mature digital presence. Technically, the site leverages Adobe Experience Manager CMS, integrates dynamic media, and employs modern tracking and consent management tools, indicating a robust digital infrastructure. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and a public security policy suggests room for improvement. The missing WHOIS data for the domain is a notable anomaly that slightly impacts trust but does not detract from the overall legitimacy given the brand's reputation and content quality. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a trustworthy platform for its target audience.

A

AUMOVIO Aftermarket GmbH

galfer-aftermarket.com

66

GALFER is a well-established brand specializing in premium aftermarket brake products, primarily brake pads, targeting automotive and motorcycle markets internationally. The company operates a professional website with multiple language options and country-specific partner sites, reflecting a mature international presence. The business model focuses on manufacturing and distributing high-performance brake components through a dealer network. Technically, the website employs modern tools such as Google Tag Manager and reCAPTCHA Enterprise, and is built on a CMS platform (likely Umbraco), ensuring a stable and maintainable infrastructure. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. Security posture is moderate with HTTPS usage, CSRF protection, and cookie consent mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is strong with GDPR-aligned cookie consent and a comprehensive privacy policy. Overall, the website is professional, trustworthy, and safe for general audiences.

ATE is a globally recognized brand specializing in automotive brake technology and aftermarket products. The company offers a wide range of braking components including disc brakes, drum brakes, brake fluids, hydraulic parts, and related services such as partner finder and certified brake centers. The website reflects a mature business with a consistent brand presence and a focus on both B2B and B2C markets. Technically, the website employs modern web technologies including Google Tag Manager, reCAPTCHA Enterprise, and ConsentManager for cookie compliance, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and bot protection in place, though there is room for improvement in security headers and published security policies. Overall, the site is professional, well-structured, and compliant with GDPR requirements, supporting a trustworthy online presence.

T

Téčko, příspěvková organizace

vratnice.com

63

The website www.vratnice.com represents Téčko, příspěvková organizace, a cultural organization operating the Vrátnice Art & Music Club and Café & Bar in Rožnov pod Radhoštěm, Czech Republic. The business focuses on providing cultural events, music performances, café services, and venue rental, targeting a general audience interested in arts and culture. The website is professionally designed with clear navigation and good mobile optimization, supporting the organization's community engagement and event promotion efforts. Technically, the site uses common JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel, with a cookie consent mechanism ensuring GDPR compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and business information appear consistent and trustworthy. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site is functional, compliant, and serves its business purpose well, but improvements in security and domain registration transparency are recommended.

F

Fresh Services, s.r.o.

freshservices.cz

53

Fresh Services, s.r.o. is a Czech digital marketing agency established in 2007, specializing in digital marketing and web development services. The company maintains a professional online presence with active social media profiles and a website optimized for SEO and user experience. Their business model focuses on providing marketing and web solutions to businesses primarily in the Czech Republic. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Cookiebot for compliance and analytics. The site is mobile-optimized and uses Google Tag Manager for marketing and tracking purposes. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though additional security headers could improve protection. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

D

Dobrá Energie

dobra-energie.eu

64

Dobrá Energie is a Czech energy supplier providing electricity and gas services primarily to households and businesses within the Czech Republic. The company positions itself as a stable and fair provider with a strong backing from its parent company epet, part of the EPH group. Their business model focuses on offering competitive energy prices without long-term commitments, supported by a modern customer portal and online contract management. The website reflects a professional and user-friendly digital presence with clear navigation and relevant content for its target audience. Technically, the site employs modern analytics and cookie consent management tools, ensuring compliance with GDPR and providing transparency about data collection. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The lack of publicly available WHOIS data is consistent with privacy protection practices common in commercial domains. Overall, the website and business appear legitimate and trustworthy with a solid market position in the Czech energy sector.

A

Asociace AKU-BAT CZ

akubat-asociace.cz

53

The website represents Asociace AKU-BAT CZ, an industry association likely focused on batteries and accumulators in the Czech Republic. The site provides event information and association-related content primarily in Czech. Technically, it is built on WordPress with common plugins and uses CDNs and Google Tag Manager for analytics. The security posture is weak with no visible security headers or privacy policies, and WHOIS data is unavailable, indicating privacy protection or registration issues. Overall, the site is accessible and safe but lacks transparency and formal compliance documentation.

U

UNEF

unef.es

60

UNEF is the leading Spanish association representing the solar photovoltaic sector, with over 790 member companies and coverage of more than 90% of the industry activity in Spain. The website serves as a comprehensive platform for advocacy, certifications, industry reports, events, and member services, positioning UNEF as a key stakeholder and spokesperson in the renewable energy market. Technically, the website employs modern web technologies including Google Analytics and Tag Manager, uses HTTPS with good SSL configuration, and provides a responsive and well-structured user experience. Security posture is solid with encrypted communications and cookie consent mechanisms, though it lacks publicly disclosed security policies or incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for industry participants and stakeholders.

O

Obnovitelně s.r.o.

obnovitelne.cz

51

Obnovitelně.cz is a Czech informational portal dedicated to modern energy solutions, renewable energy sources, and sustainable economy topics. It serves a general audience interested in energy, ecology, and sustainability by providing news, opinions, interviews, and podcasts. The website is professionally designed, mobile-optimized, and features a consistent brand identity. It maintains active social media profiles and offers newsletter subscriptions to engage its audience. Technically, the site is built on modern frameworks such as React and Next.js, with integrated analytics and consent management tools. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though explicit security headers could be improved. The absence of WHOIS data reduces transparency but is likely due to local domain registration policies. Overall, the site presents a trustworthy and professional presence in the Czech renewable energy media sector.

P

pixalpes

pixalpes.com

58

Pixalpes is a French-based e-commerce photography business specializing in sports and event photo galleries. The website operates on the PrestaShop platform and offers customers access to various event photo collections, including triathlons, trails, and other sporting events primarily in the French Alps region. The business targets general consumers interested in purchasing event photography. The site integrates PayPlug for secure payment processing and provides clear contact information including a French phone number and physical address, supporting its legitimacy as a small regional business. Technically, the website is built on a modern e-commerce CMS (PrestaShop) with standard web technologies including Google Tag Manager for analytics and Material Icons for UI. The site is mobile responsive and has a moderate performance profile. However, it lacks advanced security headers and explicit privacy or cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain is a notable concern, potentially indicating a new registration or privacy restrictions. From a security perspective, HTTPS is enforced and payment processing is handled by a reputable third party, which are positive indicators. No obvious vulnerabilities or exposed sensitive data were detected in the HTML content. The site does not contain adult or explicit content, making it safe for general audiences. Overall, the security posture is moderate but could be improved by adding security headers, privacy policies, and incident response information. The overall risk assessment suggests the site is a legitimate small business with some gaps in compliance and security best practices. Strategic improvements in privacy compliance and security hardening would enhance trust and reduce potential risks.

F

Fermes de Marie

fermesdemarie.com

63

Les Fermes de Marie is a luxury 5-star hotel located in Megève, France, offering premium alpine hospitality services including accommodation, spa, wellness, and gourmet dining. The website presents a strong market position targeting affluent travelers, families, and wellness enthusiasts, supported by a consistent brand and rich content. The technical infrastructure leverages modern web technologies such as Webflow CMS, Google Analytics, Facebook Pixel, and reCAPTCHA, ensuring a performant and secure user experience. Security posture is robust with HTTPS, security headers, and consent mechanisms, though explicit security policies and incident response contacts are absent. The WHOIS data is missing, which raises some concerns about domain transparency but does not detract significantly from the overall trustworthiness given the professional presentation and business legitimacy. Strategic recommendations include enhancing security transparency and maintaining vigilance on third-party scripts.

G

GMAC – Graduate Management Admission Council

gmac.com

63

GMAC (Graduate Management Admission Council) is a globally recognized nonprofit association that serves as the owner and administrator of the GMAT exam, connecting millions of candidates with graduate business schools worldwide. The organization provides a comprehensive platform offering exams, market intelligence, professional development, and recruitment solutions tailored for both learners and educators in graduate management education. Their market position is strong, supported by partnerships with mba.com and BusinessBecause, and a clear focus on advancing business education globally. Technically, the website employs modern frameworks like Bootstrap and Swiper.js, with good mobile optimization and SEO practices, supported by Google Tag Manager for analytics and tracking. Security posture is robust with HTTPS, security headers, and secure forms, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-aligned with its business mission, though WHOIS data is unavailable, which slightly impacts domain transparency.

The website www.yourcareer.gov.au appears to be a government-related portal focused on career services in Australia. However, the provided HTML content is minimal and primarily consists of a loading spinner with no substantive content accessible, indicating that the site is likely protected by a Web Application Firewall or similar security mechanism that blocks full content retrieval. The technical infrastructure includes modern JavaScript modules and tracking via Google Analytics and Google Tag Manager, but lacks visible security headers or privacy policies in the accessible content. The WHOIS data is unavailable due to registrar and auDA restrictions, which is typical for Australian government domains, supporting the legitimacy of the site. Overall, the site’s security posture is weak based on the accessible data, with critical gaps in privacy compliance and contact information. Strategic recommendations include improving content accessibility, implementing comprehensive privacy and cookie policies, and enhancing security headers and HTTPS enforcement.

W

Workforce Australia

workforceaustralia.gov.au

68

Workforce Australia is a government-operated employment services platform designed to assist Australian individuals in finding jobs and accessing employment-related programs. The website offers a variety of services including job search, training programs, career transition assistance, and employer services for job advertising and candidate sourcing. It serves as a national portal under the Australian Government, targeting job seekers and businesses across Australia. Technically, the website employs modern web technologies such as Vue.js and the Mint Framework, hosted on Microsoft Azure infrastructure. It integrates Google Analytics and Google Tag Manager for user analytics and tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, although explicit privacy and cookie policies are not clearly presented in the analyzed content. From a security perspective, the site uses HTTPS and does not expose sensitive data in its HTML content. However, it lacks visible security headers and explicit security policies or incident response contacts. The WHOIS data is limited due to Australian domain administration policies but aligns with expectations for a government domain, indicating legitimacy. Overall, Workforce Australia presents a professional and trustworthy government service platform with a solid technical foundation. Enhancements in privacy transparency, security header implementation, and contact information visibility would further strengthen its security posture and user trust.

The Department of Veterans' Affairs (DVA) website serves as the official Australian government portal dedicated to providing comprehensive support, benefits, and services to veterans and their families. The site is well-positioned as a trusted government entity, offering a wide range of resources including claims processing, health and mental wellbeing support, education, employment assistance, and commemoration services. The target audience primarily includes veterans, their families, healthcare providers, and the general Australian public seeking information related to veterans' affairs. Technically, the website is built on Drupal 10 and hosted on GovCMS, reflecting a modern and secure content management infrastructure. The use of Google Tag Manager and other contemporary web technologies indicates a mature digital presence. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and employs best practices such as IP anonymization in analytics. However, explicit security headers and a public security or incident response policy are absent, representing areas for improvement. The WHOIS data is limited due to privacy policies typical for government domains but aligns with the domain's legitimacy and trustworthiness. Overall, the DVA website presents a professional, secure, and user-friendly platform that effectively supports its mission. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving privacy compliance transparency to further strengthen trust and security posture.

Revvity is a large healthcare technology company specializing in life sciences research solutions, diagnostics, clinical and pharma services, and imaging solutions. The company targets scientific researchers and pharmaceutical industries, providing comprehensive workflow solutions from target to cure. The website demonstrates a mature digital presence built on Drupal 10, integrating advanced marketing and analytics tools such as Google Tag Manager, Visual Website Optimizer, and Demandbase. The site is well-optimized for mobile and accessibility, with professional design and clear navigation. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a limitation but does not detract significantly from the overall legitimacy given the professional web presence and trust signals.