Security Directory

Z

Zahraniční Casina

podbrdskenoviny.cz

49

The website www.podbrdskenoviny.cz operates as a Czech-language affiliate marketing portal specializing in reviews and comparisons of foreign online casinos for Czech players. It offers detailed content on casino bonuses, payment methods, and safety considerations, targeting adult Czech gamblers interested in international gambling platforms. The site is professionally designed using WordPress with SEO optimizations via Yoast and integrates Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled, though explicit security headers and privacy policies are lacking. The absence of WHOIS data limits domain trust verification, but the site content and structure indicate a legitimate affiliate business model. Overall, the site provides valuable information for its niche audience with moderate technical maturity and compliance.

C

Colloredo-Mannsfeld spol. s r.o.

lesyzbiroh.cz

56

Colloredo-Mannsfeld spol. s r.o. is a medium-sized forestry and fishery management company based in the Czech Republic, with a long historical background linked to aristocratic roots. The company manages extensive forest areas and fishponds, focusing on sustainable forestry practices and nature conservation. Their website provides detailed information about their services, history, and ongoing projects, targeting a general audience interested in forestry and environmental stewardship. Technically, the website is built on WordPress using popular plugins like Yoast SEO and WPBakery Page Builder, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal policies. Overall, the site is professional and trustworthy but could improve privacy compliance and explicit contact information.

M

Minimalizace šikany

minimalizacesikany.cz

43

Minimalizace šikany is an educational program website focused on helping schools reduce the frequency and severity of bullying incidents. The site targets schools and educational institutions primarily in the Czech Republic. The business model appears to be service-oriented, providing programs and support for bullying prevention. The website uses WordPress with the Divi theme and includes SEO optimizations but lacks configured analytics and privacy compliance features. Technically, the site is moderately optimized for performance and mobile responsiveness but could improve accessibility and security headers. Security posture is basic with no evident vulnerabilities but lacks important security headers and privacy policies. Overall, the risk is moderate due to missing WHOIS data and privacy compliance gaps. Strategic recommendations include adding privacy and cookie policies, configuring analytics properly, improving security headers, and providing clear contact information to enhance trust and compliance.

A

Agence Voyelle

voyelle.fr

48

Agence Voyelle is a digital agency based in Rennes, France, specializing in digital strategy, web marketing, social media, SEO, content creation, and training services. The agency targets businesses seeking to enhance their digital presence and performance. The website demonstrates a strong market position with a focus on performance-driven and sustainable digital solutions. The company was founded in 2019 and operates primarily in the technology sector. The site is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure.

L

Le Saint Network

reseau-le-saint.com

55

Le Saint Network operates as a distributor specializing in fresh products including fruits, vegetables, seafood, flowers, fresh meat, hygiene products, and wine. The company maintains a network of brands and purchasing offices across France, targeting B2B clients in retail and food distribution sectors. The website reflects a professional and consistent brand presence with clear navigation and relevant content. Technically, the site is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies and standard analytics tools such as Google Analytics. Security posture is solid with HTTPS enforced and anti-spam measures in place, though explicit security policies and incident response information are absent. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, which slightly impacts trustworthiness. Overall, the website is functional, professional, and safe, but could improve transparency and compliance documentation.

B

Brets

brets.fr

56

Brets is a French family-owned company specializing in the production and retail of potato chips, emphasizing Breton identity and local ingredients. Established since 1995, it operates a professional website showcasing its products, company history, values, and recruitment opportunities. The company maintains a consistent brand image and targets a general audience interested in quality snack foods. Technically, the website is built on WordPress using the Enfold theme and integrates modern web technologies including Google Analytics and Tag Manager for analytics, alongside a cookie consent solution to ensure GDPR compliance. Security measures such as HTTPS and security headers are properly implemented, though no explicit security policy or incident response information is published. Overall, the website presents a professional and trustworthy digital presence with moderate to good performance and accessibility.

P

Poule et Toque

poule-et-toque.fr

64

Poule et Toque is a French company specializing in supplying poultry products to the professional foodservice and catering sectors. Their website presents a well-structured, professionally designed platform targeting restaurateurs and catering professionals with segmented product lines such as 'Prêt à Cuire', 'Prêt à réchauffer', and 'Prêt à Servir'. The company positions itself as an expert in French poultry, offering solutions tailored to various foodservice needs. The site includes rich content, social media integration, and a dedicated subdomain for a poultry competition, indicating active engagement in their industry. Technically, the website is built on WordPress with modern plugins like Yoast SEO and uses Matomo for analytics, showing a moderate level of digital maturity. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall professional presentation and compliance with GDPR suggest legitimacy. The site is accessible with no blocking or WAF challenges detected.

E

EDF Renewables North America

edf-renewables.com

53

EDF Renewables North America operates as a market-leading independent power producer and service provider specializing in renewable energy solutions including wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging across North America. The company positions itself as a sustainable energy partner, targeting businesses and communities seeking clean energy solutions. Their website reflects a mature digital presence with comprehensive content, multi-language support, and active engagement through social media channels. The business is a subsidiary of the EDF Group, a major global energy player, reinforcing its market credibility. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Yoast SEO, ensuring good SEO and user experience. The site is mobile-optimized and accessible, with a moderate performance profile. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, explicit security headers and incident response information are absent, representing areas for improvement. The WHOIS data for the domain is unavailable, indicating possible privacy protection or proxy registration. While this reduces transparency, the website's branding, content quality, and external affiliations support its legitimacy. No direct company contact emails or phone numbers are published, with contact facilitated via web forms. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website demonstrates a professional and trustworthy digital presence aligned with its business objectives in the renewable energy sector. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving direct contact information to strengthen trust and compliance.

S

StaWEBnice - tvorba webových stránek a eshopů

stawebnice.com

60

StaWEBnice is a small Czech technology service provider specializing in web development, e-commerce solutions, SEO, copywriting, and digital marketing. The company targets small business owners, entrepreneurs, and bloggers primarily in the Czech Republic, offering affordable and professional web and e-shop creation services. The website is well-structured, professionally designed, and provides comprehensive information about services, team, and client references. Technically, the site is built on Joomla CMS with modern frameworks and libraries, including Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. The absence of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

P

Provident Promotions

providentpro.com

53

Provident Promotions is a small, regionally focused creative agency based in Hastings, Nebraska, specializing in digital media marketing services including website design, logo creation, photography, video production, and SEO. The company targets local businesses and non-profits seeking professional marketing tools to build and grow their brands. Their website demonstrates a good level of technical maturity, leveraging WordPress CMS with modern plugins and libraries to deliver a responsive and SEO-optimized user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data for the domain raises concerns about domain registration transparency, which could impact trustworthiness despite the professional presentation and client testimonials. Overall, the website is well-designed and functional but would benefit from enhanced privacy compliance and clearer domain legitimacy.

W

Webto

webto.dk

46

Webto is a Danish technology company specializing in digital development, programming, and marketing services for both small and large businesses. With over 700 projects completed in 11 years, Webto positions itself as an experienced partner in website development and digital marketing. The website is professionally designed using WordPress with the Kadence theme and various plugins, reflecting a modern and responsive digital infrastructure. The technical stack includes SEO optimization tools and analytics services such as Microsoft Clarity and Google Tag Manager, indicating a mature digital marketing approach. Security-wise, the website uses HTTPS and implements cookie consent mechanisms, but lacks DNSSEC and explicit security headers, and does not publish a privacy policy or security incident response information, which are areas for improvement. Overall, the website is safe, business-focused, and trustworthy, with a solid domain registration history consistent with the company's claims.

I

isla

traceyour.events

62

TRACE by isla is a specialized SaaS platform focused on providing credible, real-time carbon measurement and reduction insights for the event industry. The platform targets event planners, business owners, and sustainability officers, offering tools to measure carbon footprints across live, hybrid, and digital events. TRACE positions itself as a niche leader in event sustainability, supported by strong branding, client testimonials, and case studies. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as Google Analytics, HubSpot, and Hotjar. The site is mobile-optimized and SEO-friendly, providing a professional user experience. Security-wise, the site enforces HTTPS and uses reCAPTCHA Enterprise for form protection but lacks some recommended security headers and a formal security policy. Privacy compliance is adequate with a comprehensive privacy policy, though cookie consent mechanisms could be improved. Overall, the domain WHOIS data is privacy-protected but consistent with the business's UK-based identity. The website demonstrates a high level of professionalism and trustworthiness with no critical security issues detected.

T

Two Stories - Brand Consultancy & Design Studio

twostories.studio

62

Two Stories is an independent brand consultancy and design studio based in the North West of England. They provide a range of services including brand consultancy, design, digital web development, and brand communications. The company positions itself as a purpose-led, award-winning agency focused on creating meaningful and memorable brands that connect with audiences. Their website is professionally designed, mobile-optimized, and includes comprehensive content about their services, portfolio, team, and client testimonials. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Analytics integration, ensuring good SEO and analytics capabilities. Security posture is strong with HTTPS enforced and a cookie consent mechanism in place, although some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website reflects a credible and professional business with a strong digital presence.

G

Grow

grow.me

54

Grow is a technology-driven platform focused on enabling readers to curate and save content from their favorite creators for free. The platform emphasizes ease of use with a single login for content bookmarking and subscription, targeting content consumers who value efficient content management. Affiliated with Mediavine, Grow benefits from established market presence and resources. Technically, the website is built on WordPress with modern JavaScript libraries and integrates advanced consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and consent-based tracking, though there is room for improvement in security headers and explicit security policies. Overall, the site is professional, privacy-conscious, and trustworthy, with no signs of malicious activity or content safety concerns.

S

Shell Privat

shellservice.dk

66

Shellservice.dk is a professionally maintained website representing Shell Privat's services in Denmark, focusing on fuel supply, electric vehicle charging, and car wash services. The site targets private vehicle owners seeking high-quality energy and transportation services. The business is well positioned in the Danish market with a clear brand presence and consistent messaging. Technically, the site is built on WordPress with modern SEO and marketing tools, including Google Tag Manager and Cookiebot for consent management. Security posture is good with HTTPS and bot protection, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is supported by a comprehensive cookie consent mechanism, but no explicit privacy policy or terms of service pages were detected in the analyzed content. Overall, the site is trustworthy, professional, and safe for general audiences.

R

Rugby Club Vannes

rugbyclubvannes.bzh

45

Rugby Club Vannes operates a professional and well-structured website serving as the primary digital presence for the rugby club. The site provides comprehensive information about the club's teams, news, match schedules, ticketing, and merchandise. The club targets rugby fans and the local community in France, positioning itself as a regional sports entity with a solid online footprint. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO and WP Rocket for SEO and performance optimization. The site employs modern web technologies including jQuery and Font Awesome, and implements cookie consent via tarteaucitron.io, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with cookie consent present but no clear privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and functional, with room for improvement in privacy and security transparency.

I

INTRASY s.r.o.

intrasy.com

60

INTRASY s.r.o. is a Slovak-based company specializing in telematics solutions, including GPS vehicle monitoring, telematics hardware distribution, and API integrations for fleet management. The company targets businesses with vehicle fleets, logistics providers, and transport services, offering both hardware and software solutions to optimize fleet operations. Established in 2020, INTRASY positions itself as a trusted regional provider with a consistent brand and a clear focus on transportation technology. The website reflects a professional and user-friendly design with comprehensive service descriptions and active customer engagement channels.

I

INTRASY s.r.o.

intrasy.sk

60

INTRASY s.r.o. operates a professional website focused on vehicle telematics and fleet management solutions, primarily serving businesses in Slovakia. The company offers GPS monitoring, API integrations, and telematics hardware sales, positioning itself as a trusted regional provider with partnerships including Bolt, UPS, and SPS. The website is built on WordPress with WooCommerce, providing e-commerce capabilities and a content-rich blog to engage its target audience. Technically, the site employs modern web technologies, is mobile-optimized, and uses Cloudflare DNS with DNSSEC for enhanced security. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates good business credibility and technical maturity with room for improvement in formal security documentation and accessibility. The domain registration is consistent and legitimate, supporting the company's trustworthiness.

V

VORTAL

vortal.biz

65

VORTAL is a leading global provider of eProcurement and eSourcing solutions, targeting both public and private sector organizations. Their platform offers a comprehensive suite of services including category management, dynamic purchasing systems, eAuctions, and supplier relationship management, positioning them strongly in the B2B technology and government sectors. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern plugins for SEO, multilingual content, and cookie consent, indicating a well-maintained infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, complemented by a comprehensive cookie consent mechanism ensuring GDPR compliance. However, the absence of publicly available WHOIS data due to privacy protection slightly reduces transparency but is justified given the business nature. Overall, the site demonstrates a solid balance of business credibility, technical maturity, and privacy compliance.

B

Blossom Themes

blossomthemes.com

74

Blossom Themes is a small technology company specializing in the development and sale of feminine WordPress themes and templates. Founded in 2017, the company targets women, bloggers, and small business owners seeking easy-to-use, aesthetically pleasing website themes without coding. Their market position is niche-focused, offering specialized products in the WordPress theme ecosystem. The website demonstrates a professional design with good content quality and consistent branding, supported by structured data and SEO optimizations.

E

EDF Renewables North America

edf-re.mx

53

EDF Renewables North America operates a dedicated Mexico division focused on renewable energy projects including solar and wind power generation. The company has been active in Mexico since 2000, with a large employee base and offices in Mexico City and Oaxaca. Their market position is strong as a leading independent power producer and service provider in the renewable energy sector, offering a broad portfolio of clean energy technologies and services. The website reflects a mature digital presence with modern technologies, SEO optimization, and multi-language support. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. WHOIS data is missing, which slightly impacts trust but the overall professional presentation and corporate affiliations support legitimacy.

E

Eden Renewables

eden-re.com

67

Eden Renewables is a small Indian company specializing in renewable energy solutions, likely offering consulting and sustainable energy services. The website is built on WordPress using Elementor and includes essential privacy compliance features such as a privacy policy and cookie consent banner. The technical infrastructure is moderate with standard hosting by GoDaddy and no advanced security headers detected. The security posture is adequate with HTTPS enabled but could be improved by adding DNSSEC and additional HTTP security headers. No incident response or vulnerability disclosure policies are published, which could be a gap in security transparency. Overall, the website is professional and trustworthy with room for technical and security enhancements.

R

RE/MAX Alfa

realitnikariera.cz

68

The website www.realitnikariera.cz serves as a professional career portal for RE/MAX Alfa, a leading real estate brokerage office in the Czech Republic. It offers comprehensive information about becoming a real estate agent, company mission, vision, strategy, and testimonials from current agents. The site is well-structured, content-rich, and targets individuals interested in real estate careers within the Czech market. Technically, it is built on WordPress with modern SEO and analytics tools, ensuring good performance and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers are not confirmed. WHOIS data is unavailable due to privacy protection, which is common and justified for business domains. Overall, the site is trustworthy, professional, and compliant with GDPR regulations.

RE/MAX Alfa is a professional real estate agency operating primarily in the Czech Republic, offering a wide range of services including property sales, rentals, appraisals, auctions, and legal support. The company is part of the international RE/MAX network and positions itself as a market leader with a strong focus on customer satisfaction and high-quality service delivery. The website is well designed, multilingual, and provides comprehensive information about services, agents, and legal policies. Technically, the site is built on WordPress with modern plugins and SEO optimizations, ensuring good performance and user experience. Security measures include HTTPS and Google reCAPTCHA, although additional security headers could enhance protection. The absence of WHOIS data is a notable gap, but the overall digital presence and business information suggest a legitimate and trustworthy operation.

F

Freiraumfest

freiraumfest.at

56

Freiraumfest is a non-commercial, self-organized cultural festival based in Graz, Austria, focusing on community-driven events and free spaces for cultural, artistic, and political engagement. The festival is scheduled for November 16-23, 2025, and aims to provide a platform for diverse community participation beyond commercial interests. The website is built on WordPress using modern plugins and themes, offering a good user experience with mobile optimization and SEO features. Security posture is adequate with HTTPS but lacks advanced security headers and formal policies. No privacy or cookie policies are present, which is a compliance gap. Overall, the site is legitimate and trustworthy for its purpose but could improve in privacy and security transparency.

R

Repair Café Graz

repaircafe-graz.at

45

Repair Café Graz is a small, community-driven non-profit initiative based in Austria focused on sustainability by promoting repair culture to reduce waste. The website serves as an informational platform for local community members interested in repair events and workshops. Technically, the site is built on WordPress using the Divi theme, incorporating standard web technologies and Google reCAPTCHA for form security. The website is accessible, mobile-optimized, and moderately performant but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS and reCAPTCHA, but missing security headers and formal policies reduce overall security maturity. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, matching the local community focus. Strategic improvements in privacy compliance, security headers, and transparency would enhance trust and security.

openscienceASAP is an educational and community-focused platform dedicated to promoting open science practices. The website provides resources, research, education, and social engagement opportunities for researchers and advocates of open science. The platform operates as a small-scale non-profit or community resource hub with a niche focus on open science within the education sector. Technically, the website is built on WordPress with standard web technologies including PHP and JavaScript, and uses external resources such as Google Fonts and Fontello icons. The hosting and domain registration are stable and consistent with the website's age and purpose. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy and cookie policies are absent, indicating compliance gaps. No contact information or incident response details are provided, limiting transparency. Overall, the website is functional but basic in content and technical sophistication.

F

Forum Urbanes Gärtnern

urbanes-gaertnern.at

54

Forum Urbanes Gärtnern operates the Zentralgartenbüro website as a non-profit organization dedicated to promoting urban gardening, community gardens, and educational gardening initiatives in Graz, Austria. The organization provides workshops, consulting, garden construction, and networking opportunities to foster social-ecological transformation through gardening. Their market position is that of a local leader in community gardening support with a clear focus on education and social impact. The website is professionally designed, mobile-optimized, and provides comprehensive content relevant to their audience.

C

CyberChimps

cyberchimps.com

78

CyberChimps is a small technology company specializing in the development and distribution of responsive, fast, and customizable WordPress themes. Established in 2010, the company targets WordPress users and developers seeking quality themes with customization capabilities. The website demonstrates a mature digital presence with professional design and good SEO practices, leveraging popular frameworks such as Elementor and Yoast SEO. Hosting and DNS services are provided via Cloudflare, enhancing performance and security. The security posture is solid with HTTPS enabled and domain locks in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is lacking, with no visible privacy or cookie policies and no consent mechanisms, which is a notable gap. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

N

Nachhaltig in Graz

nachhaltig-in-graz.at

46

Nachhaltig in Graz is a well-established local sustainability information portal based in Graz, Austria, founded in 2017. It provides residents with comprehensive resources on sustainable living, including news, event calendars, guides, and a dedicated mobile app. The website positions itself as a trusted community hub for environmentally conscious individuals, supported by active social media channels and regular content updates. Technically, the site is built on WordPress with a modern plugin ecosystem, including Yoast SEO and event management tools, hosted on a green energy-powered provider. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Security posture is solid with HTTPS and reCAPTCHA integration, but lacks some recommended security headers and explicit incident response policies. Privacy compliance is basic, with a GDPR privacy notice but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and serves its niche audience effectively.

C

cba – cultural broadcasting archive

cba.media

57

cba.media is a non-profit cultural broadcasting archive offering a large collection of podcasts, audio, video, images, and documents primarily targeting German-speaking audiences interested in culture, society, and politics. The platform is built on WordPress with a modern theme and provides a professional user experience with good navigation and mobile optimization. The website is secured with HTTPS and includes a comprehensive privacy policy compliant with GDPR. However, it lacks a cookie consent mechanism and visible security headers, which are areas for improvement. The WHOIS data is privacy protected, which is common for this type of organization and does not detract from its legitimacy. Overall, cba.media presents a trustworthy and well-maintained digital presence in the cultural media sector.

R

Radio Helsinki

helsinki.at

46

Radio Helsinki is a well-established community radio station based in Graz, Austria, with a strong focus on alternative and cultural programming. The website serves as a hub for live radio streaming, program schedules, podcasts, workshops, and community engagement. The station has a solid market position as a local non-profit media outlet with a loyal audience and active social media presence. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and Borlabs Cookie for SEO and privacy compliance. The site is mobile-optimized, accessible, and performs moderately well. Security best practices are observed with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. The security posture is good with no detected vulnerabilities or exposed sensitive data. GDPR compliance is evident through comprehensive privacy and cookie policies. The domain registration data aligns well with the business identity, indicating legitimacy and trustworthiness. Overall, the website presents a professional, trustworthy, and user-friendly platform for community radio listeners and contributors. Strategic improvements could focus on publishing formal security policies and incident response information to enhance transparency and trust.

S

SchloR

schlor.org

42

SchloR is a self-managed non-profit community project based in Vienna-Simmering, Austria, focused on providing solidarity-based housing and creative workspaces. The organization operates under the umbrella of recognized entities such as habiTAT and Mietshäuser-Syndikat, emphasizing collective living and cultural engagement. Their business model includes direct loans from supporters to finance their projects, reflecting a strong community trust and engagement. The website is well-structured, content-rich, and targets local community members interested in alternative housing and cultural activities. Technically, the website is built on WordPress using modern plugins like Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. The presence of Google reCAPTCHA on forms enhances security against automated abuse. However, some security best practices such as DNSSEC and security headers are not implemented, which could be improved to strengthen the security posture. From a security perspective, the site uses HTTPS and has domain transfer protections in place, indicating a legitimate and controlled domain. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Privacy compliance is adequate with a privacy policy present, though cookie consent mechanisms are lacking. No incident response or vulnerability disclosure information is found, which could be areas for future enhancement. Overall, SchloR presents a trustworthy, community-oriented project with a solid web presence and moderate technical maturity. Strategic improvements in security headers, cookie consent, and vulnerability disclosure would enhance their security and compliance posture further.

S

Spravia Sp. z o.o.

spravia.pl

52

Spravia Sp. z o.o. is a Polish real estate developer specializing in new apartment sales in Warsaw districts such as Mokotów, Bemowo, and Praga Południe. Founded in 2021, the company presents a professional online presence with a well-structured website optimized for SEO and user experience. The site targets general consumers interested in purchasing residential properties in Warsaw, offering detailed plans and pricing information. Technically, the website is built on WordPress with modern marketing and analytics integrations including Google Tag Manager, Hotjar, and Cookiebot for GDPR compliance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though security headers and incident response policies are not explicitly published. Overall, the website reflects a medium-sized real estate business with a consistent brand and good digital maturity.

L

Swiss Gaming and Esports Hub: Festivals, Collaboration, and Competitive Insights

ludicious.ch

9

The website ludicious.ch serves as a niche media platform dedicated to the Swiss gaming and esports community. It provides news, festival coverage, and insights into the growth of esports and international collaboration within Switzerland's gaming industry. The target audience includes game developers, esports enthusiasts, and industry professionals interested in Swiss gaming culture. Technically, the site is built on WordPress with common plugins such as Yoast SEO and uses jQuery and Font Awesome for UI elements. The site is mobile optimized and has good SEO practices but lacks advanced accessibility features. Security-wise, the site uses HTTPS but lacks security headers and formal security policies, which could be improved. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Contact is available only through a contact form, with no direct emails or phone numbers published. Overall, the site is professional and relevant but would benefit from enhanced security and privacy compliance measures.

G

Game Lab Graz

gamelabgraz.com

42

Game Lab Graz is an academic research group led by Johanna Pirker, focusing on exploring the full potential of video games through designing and researching virtual, engaging, and immersive experiences. The website serves as a platform to showcase projects, publications, courses, and team information related to game design and virtual reality. The target audience primarily includes students, researchers, and professionals interested in game development and immersive technologies. The business model is centered around education and research within the academic sector, positioning itself as a niche player in the field of game design and virtual reality research. Technically, the website is built on WordPress CMS with Elementor page builder and uses common web technologies such as jQuery, Bootstrap grid, and FontAwesome icons. Hosting appears to be provided by Alfahosting based on DNS nameservers. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The design is professional and consistent with academic branding, providing a good user experience and clear navigation. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No exposed sensitive data or vulnerable libraries were detected. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR and other data protection regulations. No incident response or security contact information is provided, which could be improved to enhance trust and readiness. Overall, the website is trustworthy and professionally maintained, with a strong academic focus. The main risks relate to privacy compliance and security best practices, which should be addressed to improve the security posture and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing clear contact information for security incidents.

S

SUBOTRON

subotron.com

10

SUBOTRON is a Vienna-based platform dedicated to digital game culture, focusing on organizing events such as talks, panels, and workshops, as well as providing news and networking opportunities for indie game developers and enthusiasts. The website positions itself as a niche community hub for Austrian and international digital game culture, with a history dating back to 2002. The business model appears to be community-oriented, possibly non-profit, emphasizing cultural and educational activities in the gaming sector. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as jQuery, Google reCAPTCHA v3 for spam protection, and FontAwesome for icons. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks DNSSEC, security headers, and published security policies or incident response contacts. No privacy or cookie policies were found, indicating gaps in compliance with GDPR and related regulations. The domain is well-established with consistent WHOIS data, enhancing trustworthiness. Overall, SUBOTRON presents a professional and trustworthy online presence with solid business credibility and technical implementation. The main areas for improvement include enhancing privacy compliance, implementing security best practices such as DNSSEC and security headers, and publishing clear policies to improve user trust and regulatory adherence.

S

Spektral

spektral.at

10

Spektral is a small non-profit community and cultural space based in Graz, Austria, providing an open space for social and cultural activities. The organization is currently engaged in a crowdfunding and crowdlending campaign to purchase their premises to secure long-term operation and independence. The website reflects a community-driven approach with active engagement through events, media, and social channels. Technically, the site is built on WordPress using a responsive theme and common plugins for media playback and event calendars, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and basic protections like Akismet for spam, but lacks advanced security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the site is trustworthy and professional, with clear contact information and partner affiliations, but could improve in security and privacy transparency.

M

Masáže Hořovice Martin Crk

masaze-martincrk.cz

37

Masáže Hořovice Martin Crk is a small local business providing massage and wellness services in the Czech Republic. The website presents a professional and clean design with clear contact information and a focus on natural massage oils and stress relief. The business is relatively new, founded in 2022, and targets general consumers seeking relaxation and physical well-being. The site uses WordPress CMS with common plugins such as Yoast SEO and jQuery, indicating a standard modern web infrastructure. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy for its business purpose but would benefit from enhanced privacy and security practices.

H

HMS Stavby

hms-stavby.cz

37

HMS Stavby is a small construction company based in the Czech Republic, operating since 2012. The website presents basic information about the business and its services, targeting a general audience interested in building and construction. The site is built on WordPress using the Divi theme, with standard web technologies such as jQuery and Google Fonts. The hosting provider is WEDOS, consistent with the Czech location. The website has basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but no security headers detected and an expired domain status which poses a risk. Privacy compliance is minimal with no privacy policy or terms of service found, though a cookie consent mechanism is implemented. Overall, the site is functional but lacks comprehensive security and compliance measures.

J

JAN VLČEK

vlcek-stavby.cz

39

Jan Vlček operates as an authorized builder and member of the Chamber of Authorized Engineers and Technicians in Construction, providing construction management and project services primarily in the Czech Republic. The business targets individuals and companies seeking professional construction oversight and authorized building services, with a focus on civil, residential, and industrial projects. The website reflects a small, local service provider with over 30 years of industry experience, supported by professional certifications and clear contact information. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Revolution Slider. It employs jQuery 1.7.2 and Google Maps API for functionality. The site shows moderate performance and basic mobile optimization but uses outdated JavaScript libraries and lacks advanced SEO and accessibility features. No analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS but lacks important security headers like Content-Security-Policy and Strict-Transport-Security. The use of outdated libraries presents potential vulnerabilities. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is clearly provided, but no incident response or security policies are visible. Overall, the website is functional and moderately professional but requires improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and protect user data effectively.

ČESKOMORAVSKÝ POHÁR RALLYE (ČMPR) operates as an organizer and promoter of rally competitions primarily targeting motorsport enthusiasts in the Czech Republic. The website serves as the official platform for event calendars, results, rules, and news related to the rally cup. The business is positioned as a niche regional motorsport event organizer with a small organizational size and a history dating back to 2010. The site content is primarily in Czech and focuses on rally event information and community engagement via social media channels such as Facebook and YouTube. Technically, the website is built on WordPress using the Blocksy theme and leverages common web technologies including jQuery, Yoast SEO for search optimization, Google reCAPTCHA v3 for form security, and Swiper.js for UI components. Hosting appears to be provided by a Czech hosting provider (cesky-hosting.eu). The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms from abuse. However, it lacks visible security headers and does not publish security policies or incident response contacts. Privacy and cookie policies are absent, indicating gaps in compliance with GDPR and related regulations. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a professional and trustworthy front for its business purpose but would benefit from enhanced privacy compliance, security policy transparency, and improved contact information availability to strengthen user trust and regulatory adherence.

C

CENDIS, s.p.

cendis.cz

62

CENDIS, s.p. is a Czech government-related entity specializing in transportation information systems under the Ministry of Transport of the Czech Republic. The organization provides key ICT solutions and services such as electronic highway vignettes, unified railway tickets, electronic toll supervision, and various training and certification programs. Their target audience includes drivers, transport operators, public transport passengers, and government officials. The website reflects a professional and consistent brand image with a focus on transparency and public service. Technically, the site is built on WordPress using Elementor and Smart Slider 3, with Google Analytics integrated for visitor tracking. The site is mobile-optimized and offers good navigation and content relevance. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some advanced security headers and explicit incident response contacts. WHOIS data is missing, which reduces domain trustworthiness, but the official nature of the site and linked government registries support legitimacy. Overall, the site is a reliable source of transportation ICT information and services in the Czech Republic.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-kampagne-2019.de

42

The website 'bkk-kampagne-2019.de' represents a health awareness campaign by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on promoting healthy sleep habits. It provides educational content, tips, and resources related to sleep health, targeting the general German-speaking public. The campaign is positioned as a niche, non-profit initiative within the healthcare sector, with a clear and consistent branding approach. The website content is well-structured, professionally designed, and offers multilingual support (German and English). Technically, the site is built on WordPress, leveraging caching and minification plugins to optimize performance. It uses HTTPS with a good SSL configuration, but lacks some security headers and cookie consent mechanisms, which are recommended for enhanced compliance and security. No forms or data collection mechanisms are visible on the homepage, reducing privacy risks. Contact information is clearly provided, including a verified organizational email and physical address in Berlin. No suspicious or malicious indicators were found, and the domain appears legitimate and appropriate for the campaign's history and purpose.

A

Ars Technica

arstechnica.com

11

Ars Technica is a well-established online media company specializing in technology news, reviews, and analysis since 1998. It targets technologists, IT professionals, and tech enthusiasts with comprehensive coverage of IT, AI, science, cybersecurity, and related fields. The website operates under the Condé Nast parent company, reflecting a large-scale media presence with a professional and consistent brand identity. Technically, the site leverages WordPress CMS, modern JavaScript libraries, and advanced analytics tools such as Google Tag Manager and Snowplow, hosted on AWS infrastructure. The site demonstrates excellent performance, mobile optimization, and SEO practices. Security-wise, Ars Technica enforces HTTPS, employs security headers, and restricts domain transfers, though it lacks DNSSEC and explicit security policies in the visible content. Privacy compliance is partially implemented with a consent management system but lacks visible privacy and cookie policies in the provided data. Overall, the site is trustworthy, professional, and safe for general audiences.

V

Virtuplex

virtuplex.space

63

Virtuplex operates the world's largest commercial virtual reality labs with locations in Dubai, Bratislava, and Prague. The company specializes in providing VR solutions that allow clients to experience and interact with buildings, products, and spaces before they are physically built. Their market position is strong, supported by over 100 projects and a diverse client base across industries such as real estate, urban planning, retail, manufacturing, and defense. The website reflects a mature digital presence with modern technologies and comprehensive service descriptions.

Auto Sport Klub Hořovice operates as a local motorsport club primarily focused on organizing rally events such as Rallye Hořovice. The website serves as an information hub for participants, media, and fans, providing event schedules, official documents, and partner links. The business is small-sized, rooted in the Czech Republic, and has been established since 2003, as supported by domain registration data. The target audience includes motorsport enthusiasts and regional participants. Technically, the website is built on WordPress with common JavaScript libraries like jQuery and MooTools, offering basic mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and GDPR cookie consent implemented, but lacks advanced security headers and explicit privacy policies. No contact emails or phone numbers are directly provided, which limits direct communication channels. Overall, the website is functional and trustworthy for its niche but could benefit from enhanced privacy and security disclosures.

M

Městské sportovní centrum Hořovice příspěvková organizace města Hořovice

bazenhorovice.cz

43

Bazén Hořovice is a municipal swimming pool and aquapark facility operated by the Městské sportovní centrum Hořovice, a city sports organization in the Czech Republic. The website provides comprehensive information about the indoor swimming pool, summer aquapark, services such as refreshments, gym access, and specialized massages. It targets local residents and visitors seeking recreational aquatic activities. The business operates as a public service entity with a local government affiliation, emphasizing community engagement and leisure services. Technically, the website is built on WordPress CMS, utilizing plugins like Smart Slider 3 and integrating YouTube videos for enhanced user experience. The site is hosted by hosting-profi.cz and demonstrates moderate performance with good mobile optimization. SEO and accessibility are basic but functional. The cookie consent mechanism complies with GDPR requirements, although privacy and terms of service policies are missing. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks advanced security headers and published security policies or incident response contacts. No vulnerabilities or suspicious activities were detected. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website is a trustworthy, well-maintained municipal service portal with room for improvement in privacy compliance and security hardening. Strategic recommendations include publishing privacy and terms policies, enhancing security headers, and improving accessibility features.

H

Hotel zámek Berchtold

zamekberchtold.cz

59

Hotel zámek Berchtold is a hospitality business located in the Czech Republic offering a range of services including corporate events, teambuilding, weddings, family vacations, wellness, sports, and restaurant facilities. The website presents a professional and consistent brand image with clear navigation and relevant content targeting corporate clients, families, and tourists. The business is small-sized and has been established since 2006, supported by a domain registration consistent with its history. Technically, the website is built on WordPress hosted on WordPress.com, leveraging Jetpack and other standard plugins. It uses HTTPS with good SSL configuration and includes integrations such as Facebook SDK and Google Translate. Performance and mobile optimization are moderate to good, though accessibility features could be improved. From a security perspective, the site benefits from WordPress.com hosting security but lacks explicit security policies, vulnerability disclosure, and advanced security headers. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy policy or terms of service pages. Contact information is comprehensive and trustworthy. Overall, the website is safe, professional, and credible with minor gaps in privacy and security documentation. Strategic improvements in privacy policy publication, security headers, and incident response information would enhance trust and compliance.

M

MZ.cz

pruvodkarlaiv.cz

53

MZ.cz is a Czech-language content portal offering a wide range of informational articles, guides, and reviews across sectors such as finance, career, parenting, psychology, relationships, health, travel, shopping, and lifestyle. The website targets the general Czech-speaking public seeking practical advice and knowledge. Technically, the site is built on WordPress CMS, leveraging popular plugins like Yoast SEO and integrating Google services for analytics and advertising. The site demonstrates good digital maturity with responsive design, structured data, and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve transparency and security practices.