Security Directory

C

Creatives for Climate

creativesforclimate.co

64

Creatives for Climate is a non-profit global creative ecosystem dedicated to climate justice by uniting over 7,000 professionals across 90+ countries. The organization focuses on reshaping narratives, preserving truth, and driving systemic change through education, business transformation, and creative partnerships. Their market position is that of a leading global network in the climate creative space, leveraging community and campaigns to accelerate a just transition. Technically, the website is built on Squarespace CMS, utilizing modern web technologies including Google Analytics, Tag Manager, reCAPTCHA, and Typekit fonts. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Hosting is managed by Squarespace, ensuring reliable uptime and SSL encryption. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms with opt-in/out capabilities. However, it lacks some advanced security headers and does not publicly disclose security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a privacy policy and cookie banner. Overall, the website presents a moderate risk profile with good business credibility and technical implementation but could improve security posture and privacy transparency. Strategic recommendations include enhancing security headers, publishing incident response policies, and providing clearer contact information.

J

Jean Nicolas

jeannicolas1930.fr

54

Jean Nicolas is a cooperative brand specializing in the production and sale of preserved Breton vegetables, with a heritage dating back to 1930. The website targets consumers interested in quality regional food products and recipes, emphasizing local agricultural know-how and community engagement. The brand maintains a consistent and professional online presence with rich content including product showcases, recipes, and community news. Technically, the site is built on WordPress using WPBakery Page Builder and integrates multiple analytics and tracking tools such as Google Analytics, Matomo, and Microsoft Clarity, alongside cookie consent mechanisms to comply with privacy regulations. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical for commercial sites, but domain age cannot be verified. Overall, the site is well-structured, user-friendly, and trustworthy, with no signs of malicious activity or content blocking.

P

PCforAlla

pcforalla.se

63

PCforAlla is a well-established Swedish media website focused on computers, IT security, and technology news, offering guides, product tests, and subscription services. It operates under the parent company Foundry and targets consumers interested in technology with clear, pedagogical content in Swedish. The website demonstrates a mature digital infrastructure using WordPress CMS, enhanced SEO tools, and multiple advertising and analytics integrations. Security posture is solid with HTTPS enforcement and GDPR-compliant consent mechanisms, though explicit security headers and incident response information are not publicly detailed. The absence of WHOIS data for the queried subdomain reduces domain trust signals but does not detract from the site's professional presentation and content quality. Overall, PCforAlla presents a trustworthy and professional media platform with good technical and privacy compliance standards.

E

Eureden

eureden.com

55

Eureden is a large agro-food cooperative group based in Brittany, France, serving thousands of farmer-cooperators and employees. The group operates multiple branches including agriculture, eggs, meat, frozen foods, long life products, and retail distribution, emphasizing sustainable and innovative practices. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, it uses WordPress with modern plugins and analytics tools, ensuring good performance and SEO. Security posture is solid with HTTPS and secure forms, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trustworthiness, but the overall business credibility is supported by consistent branding, social media presence, and detailed corporate information. Recommendations include enhancing security headers, publishing incident response info, and verifying domain registration details.

F

Fonds Le Saint

fondslesaint.org

42

Fonds Le Saint is a small non-profit organization based in Bourg-Blanc near Brest, France, focused on promoting nutrition education and making sports accessible to children with disabilities. Established in 2015, the foundation supports local community initiatives and collaborates with sports clubs and educational programs. The website reflects a clear mission and target audience, emphasizing social impact and community engagement. Technically, the website is built on Joomla CMS with UIkit framework and uses common web technologies such as jQuery and Google Analytics for tracking. The site is mobile-optimized and presents a professional design with good navigation and content relevance. However, there is room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks important security headers, which could be enhanced to improve protection against common web threats. Privacy and cookie policies are not present, indicating compliance gaps with GDPR and related regulations. WHOIS data is unavailable due to query restrictions, limiting domain trust verification. Overall, the website is functional and trustworthy for its intended audience but would benefit from improved security practices and privacy compliance to strengthen its digital maturity and user trust.

N

Nutricia

pelnaporcjaopieki.pl

66

Pełna Porcja Opieki is a specialized healthcare website dedicated to supporting the nutritional needs of sick children, particularly focusing on enteral and oral nutrition. The site is affiliated with Nutricia, a recognized brand in medical nutrition, and provides educational content, product information, and expert advice targeted primarily at parents and caregivers. The website maintains a professional presence with consistent branding and clear navigation, supporting its niche market position in Poland.

N

NUTRICIA Polska Sp. z o.o.

zywieniemedyczne.pl

63

Zywieniemedyczne.pl is a well-established Polish medical nutrition campaign website operated by NUTRICIA Polska Sp. z o.o. The site focuses on educating patients and caregivers about medical nutrition and provides resources, guides, and awareness campaigns. It enjoys a strong market position supported by reputable partners and a consistent brand presence. Technically, the website is built on WordPress with modern web technologies and integrates Google Analytics and Tag Manager with proper consent mechanisms. Security posture is good with HTTPS enforced, though some security headers could be improved. Privacy compliance is strong with accessible policies and cookie consent. Overall, the site is professional, trustworthy, and serves its target audience effectively.

I

iPresso S.A.

ipresso.pl

63

iPresso S.A. operates a sophisticated Marketing Automation platform designed for professional marketers and enterprises across multiple industries including e-commerce, finance, education, media, and travel. The platform offers a wide range of features such as personalized marketing scenarios, multi-channel communication (email, WhatsApp, push notifications), and extensive integrations with popular services like Google Ads, AWS, and Zapier. The company positions itself as a reliable and certified provider with ISO 9001 and ISO 27001 certifications, emphasizing data security and GDPR compliance. The website reflects a mature digital presence with excellent content quality, user experience, and mobile optimization. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and advanced analytics tools like Piwik PRO and Microsoft Clarity. Security posture is strong with HTTPS enforcement and adherence to recognized standards, although explicit security headers could be further confirmed. Overall, the business demonstrates a high level of professionalism and trustworthiness, supported by client testimonials and visible certifications.

E

Ekonomski institut, Zagreb

eizg.hr

57

Ekonomski institut, Zagreb is a well-established scientific institute specializing in applied economic research with a history spanning over 85 years. The organization provides valuable economic analyses, indices, publications, and educational events targeting researchers, policymakers, and economic professionals primarily in Croatia. The website reflects a professional and consistent brand image with a focus on delivering research outputs and facilitating knowledge dissemination through seminars and workshops. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Google Analytics for user tracking. It is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and secure form submissions but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. Overall, the domain registration and WHOIS data align well with the institute's profile, indicating a legitimate and trustworthy entity.

Hrvatska akreditacijska agencija (HAA) is a Croatian national accreditation agency operating as an independent, non-profit public institution. It provides accreditation services and manages the e-Akreditacija portal, which offers electronic services and maintains registers of accreditations. The agency is positioned as the authoritative accreditation body in Croatia with international cooperation ties to organizations such as ILAC and EA. The website is professionally designed, uses WordPress CMS, and integrates standard web technologies including Google Analytics and reCAPTCHA for security and analytics purposes. The site is accessible, mobile-optimized, and provides clear navigation and relevant content for its target audience of accredited entities and government bodies. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements could be made by adding security headers and explicit privacy policies. WHOIS data is redacted due to GDPR, but the domain and website content align with a legitimate government agency. Overall, the website demonstrates a good balance of professionalism, technical implementation, and business credibility.

S

SAFU

safu.hr

56

SAFU is the Central Agency for Financing and Contracting in Croatia, primarily responsible for managing EU and national funds related to various operational programs and projects. The website reflects its role as a government entity, providing information on funding programs, project implementation, and technical assistance. The site targets government bodies, project beneficiaries, and the general public interested in funding opportunities and project updates. Technically, the website is built on WordPress with Elementor, enhanced by SEO and accessibility plugins, and integrates Google Analytics and Tag Manager for performance and user tracking. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are not visible. Overall, the site is professional, well-structured, and trustworthy, with no signs of malicious activity or content safety concerns.

The Europski Potrošački Centar Hrvatska (ECC Croatia) operates as a national consumer protection center affiliated with the European Consumer Centres Network (ECC-Net). It provides advisory services and assistance for cross-border consumer complaints within the EU, Norway, Iceland, and the UK. The website targets Croatian consumers and EU cross-border shoppers, offering information on consumer rights, complaint resolution, and referrals to competent authorities. The organization functions as a government or non-profit entity, emphasizing consumer protection and education. Technically, the website employs a moderately modern technology stack including Bootstrap 3.3.6, jQuery 1.11.3, Font Awesome, and Owl Carousel. It is mobile responsive with good SEO practices and clear navigation. However, some JavaScript libraries are outdated, and no CMS or hosting provider details are evident. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS but lacks visible security headers such as Content Security Policy or HSTS. Forms use POST methods securely, and no sensitive data is exposed in the HTML. The absence of a cookie consent mechanism and security policy pages indicates partial GDPR compliance. WHOIS data is unavailable due to GDPR privacy restrictions, but the site’s affiliation with official EU and Croatian government entities supports its legitimacy. Overall, the website is professional, trustworthy, and serves an essential public service role. Security and privacy practices could be improved by implementing security headers, cookie consent, and publishing incident response information. The domain’s privacy protection is justified given GDPR regulations. The site poses low risk and is a reliable resource for consumer protection in Croatia.

C

Centar unutarnjeg tržišta EU

cut.hr

57

The website www.cut.hr represents the Centar unutarnjeg tržišta EU, a Croatian government-related portal focused on providing centralized information and coordination for the EU internal market within Croatia. It serves citizens, entrepreneurs, and competent authorities by offering contact points, guidance on EU rights and regulations, and access to EU-related programs and funds. The site is well-structured, professionally designed, and includes relevant content such as news, publications, and contact forms. It leverages modern web technologies including jQuery, WOW.js, and Google Analytics, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit policies are missing. Privacy compliance is partial, with a cookie policy present but no explicit privacy policy or consent mechanism. Overall, the site is trustworthy and authoritative, consistent with its government affiliation.

N

N/A

strukturnifondovi.hr

55

The website 'EU fondovi Hrvatska' serves as the central internet portal for EU funds and programs in the Republic of Croatia. It provides comprehensive information and resources related to EU funding opportunities, targeting Croatian citizens, government entities, businesses, and organizations interested in accessing EU funds. The site is positioned as an official government portal, offering authoritative content and guidance on EU programs. Technically, the website is built on WordPress using the Astra theme and several plugins including accessibility and GDPR compliance tools. It integrates Google Analytics for visitor tracking and maintains a moderate performance level with good mobile optimization and accessibility features. Security-wise, the site enforces HTTPS and employs basic security best practices, though it lacks explicit security headers and detailed security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a solid security posture and trustworthy business credibility, but it would benefit from publishing explicit privacy and terms of service policies to enhance compliance and user trust.

Z

Zagrebački holding d.o.o.

zgh.hr

54

Zagrebački holding d.o.o. is a large municipal holding company based in Zagreb, Croatia, managing a broad portfolio of public services including transportation, energy, waste management, and public markets. The company operates multiple subsidiaries that provide essential city infrastructure and services, positioning it as a key player in the local government sector. The website reflects this role with comprehensive information, clear navigation, and a professional design tailored to citizens, investors, and partners. Technically, the site uses modern JavaScript libraries, integrates Google Analytics and AddThis for tracking and sharing, and employs Mapbox for mapping services. The site is mobile-optimized and shows good SEO practices, though accessibility could be improved. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks some advanced security headers and a published security.txt file. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the domain's legitimacy and long-standing presence since 2007, consistent with the organization's profile. Overall, the website is trustworthy, well-maintained, and compliant with GDPR, serving its public service mission effectively.

K

Konfa media d.o.o.

zastita.info

58

Zastita.info is a Croatian media platform specializing in security industry news, events, and company catalogs. Operated by Konfa media d.o.o., it serves security professionals and companies in Croatia and the surrounding region. The website offers news updates, conference information, and advertising opportunities, positioning itself as a key regional security media outlet. Technically, the site uses a combination of legacy and modern web technologies including jQuery 1.8.1, UIkit, and Google Analytics, with moderate performance and good mobile optimization. Security posture is moderate but could be improved by updating outdated libraries and implementing security headers. Privacy compliance is basic with a cookie consent banner but no explicit privacy or terms of service pages. Overall, the domain is legitimate though WHOIS data is privacy protected, which is common for media businesses. The site is safe for general audiences and maintains a professional appearance.

V

Vodoopskrba i odvodnja d.o.o.

vio.hr

56

Vodoopskrba i odvodnja d.o.o. is a Croatian water utility company primarily serving the city of Zagreb and surrounding municipalities. The company provides essential services including water supply, wastewater drainage, and treatment, supported by a strong infrastructure and over 130 years of operational history. It operates under the parent company Zagrebački Holding, reflecting a stable market position in the regional energy and utilities sector. The website offers comprehensive customer service features, including emergency contact, online meter reading submission, and detailed informational resources. Technically, the site employs a modern tech stack with Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for user insights. Accessibility and mobile responsiveness are well addressed, enhancing user experience. Security posture is solid with HTTPS and ISO certifications, though there is room for improvement in HTTP security headers and incident response transparency. Privacy compliance is robust, featuring a detailed cookie consent mechanism and GDPR-aligned privacy policies. Overall, the website reflects a professional and trustworthy digital presence aligned with its business objectives.

Podružnica Tržnice Zagreb, a subsidiary of Zagrebački holding, operates a network of 28 market locations in Zagreb, Croatia, serving approximately 2500 tenants. The organization focuses on providing fresh domestic products including fruits, vegetables, dairy, fish, and meat products, positioning itself as a key retail market operator in the city. The website reflects a professional presence with clear navigation, relevant content, and integration of essential services such as equipment rental and online market information. The target audience includes local residents, business tenants, and visitors seeking fresh produce. Technically, the website employs a mix of legacy and modern JavaScript libraries, Google Analytics, and cookie consent mechanisms, indicating moderate digital maturity. Security posture is adequate but could be improved by updating legacy libraries and implementing security headers. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policy. Overall, the website is trustworthy and professionally maintained, supporting the organization's public service role.

Z

Zagrebački električni tramvaj

zet.hr

56

Zagrebački električni tramvaj (ZET) operates as the primary public transportation provider in Zagreb, Croatia, offering tram, bus, funicular, and cable car services. The website serves residents and visitors with comprehensive information on ticketing, routes, service updates, and EU-funded infrastructure projects. The company is positioned as a large, essential transportation entity under Zagrebački Holding, with a strong local presence and public sector backing. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Facebook Pixel, and Hotjar for analytics and user behavior tracking. The site is mobile-optimized with good navigation and SEO practices, though it lacks some accessibility features and a cookie consent mechanism. The CMS appears custom-built, and performance is moderate. From a security perspective, the site uses HTTPS with good SSL configuration and no exposed sensitive data. However, it lacks important security headers and visible security or incident response policies. The absence of a cookie consent banner indicates partial GDPR compliance. No vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and well-aligned with the business's public transportation mission. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence.

M

Ministarstvo gospodarstva

mingo.hr

55

The website represents the official online presence of the Ministry of Economy of the Republic of Croatia, serving as a central hub for disseminating information related to economic policies, energy approvals, public procurement, and consumer protection. It targets citizens, businesses, and government officials, providing access to news, documents, e-services, and public calls. The site is well-branded with consistent government identity and links to related official portals, reinforcing its authoritative position within the Croatian government ecosystem. From a technical perspective, the website employs a traditional tech stack including jQuery, Modernizr, and various UI libraries, alongside Google Analytics for visitor tracking. The site is mobile-optimized and accessible, with a cookie consent mechanism that aligns with GDPR requirements. However, some JavaScript libraries are outdated, which could pose security risks if not regularly updated. Security-wise, the site enforces HTTPS and implements cookie consent, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms the domain's legitimacy as a government entity with consistent registration details. Overall, the website is a trustworthy and professional government portal with good content quality and privacy compliance. Strategic improvements include enhancing security headers, updating legacy scripts, and publishing explicit security and incident response policies to strengthen the security posture and user trust.

Ż

Żywiec Zdrój

wolewode.pl

69

The website 'Mamo, tato, wolę wodę!' is an established educational program initiated by Żywiec Zdrój, targeting preschools in Poland to promote healthy hydration habits among children. The program offers educational materials, contests, and certification, positioning itself as a trusted and recognized initiative in the Polish education sector. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google services for analytics and spam protection. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA, and implements cookie consent mechanisms, though it lacks advanced security headers and a published security policy. The domain is stable and consistent with the business claims, enhancing trust. Overall, the site is secure, compliant with GDPR, and professionally maintained, suitable for its educational mission.

Ż

Żywiec Zdrój

postronienatury.pl

63

Żywiec Zdrój operates a comprehensive environmental program focused on sustainability, water resource protection, and plastic recycling. The website serves as a platform to communicate their long-term ecological commitments, including tree planting and educational initiatives. Technically, the site is built on a modern React and Next.js stack, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements like DNSSEC and security headers could be added. The domain is well-established and consistent with the brand's history. Overall, the site reflects a professional and trustworthy corporate presence with a strong focus on environmental responsibility.

N

Nutricia life-transforming nutrition

nutriciapediatryczna.pl

66

Pełna Porcja Opieki is a specialized healthcare website dedicated to supporting the nutritional needs of sick children, particularly focusing on enteral and oral nutrition. The site is affiliated with Nutricia, a recognized brand in medical nutrition, and offers educational content, product information, and expert resources targeted at parents and caregivers. The business operates primarily in Poland and maintains a professional online presence with consistent branding and clear user navigation. Technically, the site is built on WordPress with common libraries such as jQuery and Slick Carousel, and integrates marketing and analytics tools like Google Analytics, Google Tag Manager, and iPresso. The site is hosted by cyber_Folks S.A. and uses HTTPS with a good SSL configuration, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, with an active consent mechanism. Security policies and incident response contacts are not explicitly provided, representing an area for improvement. Overall, the website demonstrates a solid security posture with no critical vulnerabilities detected and maintains good compliance with privacy regulations.

F

Fundacja NUTRICIA

fundacjanutricia.pl

66

Fundacja NUTRICIA is a Polish non-profit foundation focused on nutrition research, education, and social change. Established in 2010, it operates nationally with multiple scientific partners and organizes educational programs and grant projects. The website reflects a professional and consistent brand presence targeting Polish-speaking audiences interested in nutrition and health. Technically, the site uses modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Analytics and Tag Manager for user tracking, and is hosted by cyber_Folks S.A. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and CSRF tokens, though additional security headers and policies could enhance protection. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, with no signs of suspicious activity or content.

C

cyber_Folks S.A.

akademianutricia.pl

65

Akademia Nutricia is a Polish healthcare educational platform specializing in nutrition and medical knowledge dissemination. The website offers webinars, animations, product catalogs, and downloadable materials targeted primarily at healthcare professionals. The platform is positioned as a niche provider in the healthcare education sector in Poland, with a medium-sized business presence established since 2015. Technically, the website employs modern JavaScript frameworks such as Vue.js, integrates Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes, and is hosted by cyber_Folks S.A. The site is mobile-optimized with a good user experience and consistent branding. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. No privacy policy or terms of service were detected, which is a compliance gap. Overall, the website is functional, professional, and safe for general audiences but would benefit from improved privacy and security practices.

D

Danone

activia.pl

71

Activia Poland is a localized website for the well-known probiotic yogurt brand owned by Danone. The site focuses on promoting gut health through its product offerings and educational content. It targets general consumers interested in health and nutrition, providing product information and wellness tips. The website is professionally designed using modern web technologies such as React and Gatsby, ensuring good performance and mobile optimization. Analytics and marketing tools like Google Analytics and TagCommander are integrated for user behavior tracking and advertising purposes. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit security policies are missing. The absence of public WHOIS data is typical for .pl domains and does not detract from the site's legitimacy given the strong brand presence and compliance indicators. Overall, the site presents a trustworthy and professional digital presence for Activia in Poland.

1

Strona Główna

1000dni.pl

68

1000dni.pl is a Polish informational website dedicated to child nutrition and development during the first three years of life. It provides educational content focused on pregnancy, breastfeeding, and complementary feeding, targeting parents and caregivers. The website is positioned as a niche resource in the child health and nutrition sector, operating on a content-driven business model. The site is relatively mature, with domain registration dating back to 2012, and is hosted by cyber_Folks S.A., a known hosting provider.

Brno na kole is a well-established non-profit organization dedicated to promoting cycling and improving cycling infrastructure in Brno, Czech Republic. The website serves as a hub for cycling maps, news, analyses, and community events, targeting local cyclists and urban mobility advocates. The organization has a clear market position as a local advocacy group with a strong community presence and active social media engagement. Technically, the website is built on WordPress using the Salient theme and WPBakery Page Builder, integrating modern JavaScript libraries such as jQuery and OpenLayers for map functionalities. Hosting is provided by Websupport, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the site uses HTTPS with anonymized IP tracking in Google Analytics, but lacks important security headers and explicit privacy or cookie policies, which are compliance gaps. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy with consistent registration details and a domain age appropriate for the organization's history. Overall, the website is professional, trustworthy, and content-rich but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

V

V-Press s.r.o.

ivelo.cz

47

iVelo.cz is a Czech media publisher specializing in cycling-related content, including magazines such as Velo, 53 x 11, and Elektrokola. The website serves as a comprehensive portal for cycling enthusiasts, offering news, product reviews, training tips, and an e-commerce platform for subscriptions and cycling products. The company behind the site is V-Press s.r.o., a medium-sized entity based in Beroun, Czech Republic. The site enjoys a strong market position within the Czech cycling community and maintains consistent branding and professional content quality. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities. It leverages modern web technologies including jQuery, Google Tag Manager, and YouTube API integrations. The site is mobile-optimized with good SEO practices and moderate performance. Security is well implemented with HTTPS, multiple security headers, and cookie consent mechanisms aligned with GDPR requirements. From a security perspective, the site demonstrates a solid posture with no detected vulnerabilities or exposed sensitive data. However, the absence of a public security policy and incident response information suggests room for improvement in transparency and preparedness. The missing WHOIS data for the domain is a notable concern, reducing trust slightly, though the website content and business information appear legitimate. Overall, iVelo.cz presents a professional, secure, and user-friendly platform for cycling enthusiasts in the Czech Republic. Strategic recommendations include publishing a formal security policy, enhancing incident response visibility, and verifying domain registration details to strengthen trust and compliance.

Všudehrálové.cz is a Czech Republic-based niche community website dedicated to golf enthusiasts, providing news, tournament information, golf course rankings, and community updates. The site targets local golf players and fans, offering relevant content about golf courses and events primarily in the Czech region. The business model appears to be community-driven, possibly supported by membership or event fees, with a focus on fostering engagement among golf players. Technically, the website runs on WordPress 5.3.20 with jQuery 1.10.2, Google Analytics, and Google reCAPTCHA integrated for analytics and bot protection. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled and reCAPTCHA usage; however, the absence of security headers and use of outdated JavaScript libraries present vulnerabilities. Privacy compliance is weak due to missing privacy and cookie policies, and no GDPR consent mechanisms are evident. Overall, the site is functional and relevant to its audience but requires improvements in security and privacy to enhance trust and compliance.

MAS Karlštejnsko, z.ú. is a small, non-profit regional development agency based in the Czech Republic, established in 2008. The organization focuses on supporting municipalities, entrepreneurs, non-profit organizations, and private individuals within its region by providing consulting services, facilitating access to European and national grant programs, and managing projects aligned with local development strategies. The website reflects a professional and consistent brand presence with clear communication of its mission and services. Technically, the site is built on WordPress using modern technologies such as Bootstrap, jQuery, and Swiper.js, with SEO optimization via Yoast and analytics through Google Analytics and Tag Manager. The site is mobile-optimized and performs moderately well.

M

Město Odolena Voda

odolenavoda.cz

46

The website www.odolenavoda.cz serves as the official online presence for the town of Odolena Voda in the Czech Republic. It provides residents and visitors with municipal information, official announcements, event calendars, forms, and contact details. The site targets local citizens and stakeholders seeking government services and community updates. The business model is that of a government entity focused on public service delivery and community engagement. Technically, the website employs a mix of legacy and modern web technologies including jQuery 1.8.3, Bootstrap 4.3.1, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The CMS platform is Vismo, a specialized system for municipal websites. The site is served over HTTPS and includes cookie consent mechanisms, indicating a moderate level of digital maturity and privacy awareness. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect form submissions. However, it lacks explicit security headers such as Content Security Policy or HSTS, and uses an outdated jQuery version which could expose it to vulnerabilities. No WHOIS data is available, which reduces domain trust assessment confidence. Privacy and cookie policies are present and GDPR compliant, but no dedicated security or incident response policies are found. Overall, the website is functional, professional, and trustworthy for its intended audience, but could improve its security posture and transparency. The absence of WHOIS data is a notable gap that should be addressed to enhance legitimacy. Strategic recommendations include updating JavaScript libraries, implementing security headers, and publishing security policies to strengthen user trust and compliance.

Obec Máslovice operates an official municipal website serving the local community of Máslovice, Czech Republic. The site provides comprehensive information about local services, events, municipal office activities, and public notices. It targets residents and visitors interested in community engagement and local governance. The website is built on WordPress, utilizing common web technologies such as jQuery and Google Analytics with IP anonymization to respect user privacy. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is generally good with HTTPS enforced, though the absence of security headers and cookie consent mechanisms suggests room for improvement. The lack of WHOIS data reduces domain registration transparency but does not detract from the site's apparent legitimacy as a government entity.

M

MOONTON Games

moonton.com

62

MOONTON Games is an established international mobile gaming company specializing in game development, publishing, and esports. The company operates globally with offices in multiple Asian countries and has a strong presence in the mobile esports ecosystem, particularly with its flagship title Mobile Legends: Bang Bang. The website reflects a professional and consistent brand image targeting gamers worldwide and esports enthusiasts. Technically, the site employs modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response contacts are absent. Overall, the site is safe, accessible, and trustworthy, though WHOIS data for the subdomain is unavailable, which is typical for subdomains but limits full domain trust verification.

L

Le Saint Network

reseau-le-saint.com

55

Le Saint Network operates as a distributor specializing in fresh products including fruits, vegetables, seafood, flowers, fresh meat, hygiene products, and wine. The company maintains a network of brands and purchasing offices across France, targeting B2B clients in retail and food distribution sectors. The website reflects a professional and consistent brand presence with clear navigation and relevant content. Technically, the site is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies and standard analytics tools such as Google Analytics. Security posture is solid with HTTPS enforced and anti-spam measures in place, though explicit security policies and incident response information are absent. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, which slightly impacts trustworthiness. Overall, the website is functional, professional, and safe, but could improve transparency and compliance documentation.

E

EDF Renewables North America

edf-renewables.com

53

EDF Renewables North America operates as a market-leading independent power producer and service provider specializing in renewable energy solutions including wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging across North America. The company positions itself as a sustainable energy partner, targeting businesses and communities seeking clean energy solutions. Their website reflects a mature digital presence with comprehensive content, multi-language support, and active engagement through social media channels. The business is a subsidiary of the EDF Group, a major global energy player, reinforcing its market credibility. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Yoast SEO, ensuring good SEO and user experience. The site is mobile-optimized and accessible, with a moderate performance profile. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, explicit security headers and incident response information are absent, representing areas for improvement. The WHOIS data for the domain is unavailable, indicating possible privacy protection or proxy registration. While this reduces transparency, the website's branding, content quality, and external affiliations support its legitimacy. No direct company contact emails or phone numbers are published, with contact facilitated via web forms. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website demonstrates a professional and trustworthy digital presence aligned with its business objectives in the renewable energy sector. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving direct contact information to strengthen trust and compliance.

HugeDomains operates as a specialized e-commerce platform focused on selling premium domain names such as Crebe.com. Established since 2005, it offers customers flexible payment plans, a 30-day money back guarantee, and secure purchasing options including PayPal and Escrow.com. The website is professionally designed with clear navigation, mobile responsiveness, and customer testimonials that enhance trust and credibility. Technically, the site employs modern technologies including jQuery, Google Analytics, and Cloudflare Bot Management, ensuring a stable and secure user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers could be improved. Privacy compliance is well addressed with comprehensive policies and GDPR-aligned consent banners. Overall, the platform presents a trustworthy and user-friendly domain marketplace with solid business and technical foundations.

S

StaWEBnice - tvorba webových stránek a eshopů

stawebnice.com

60

StaWEBnice is a small Czech technology service provider specializing in web development, e-commerce solutions, SEO, copywriting, and digital marketing. The company targets small business owners, entrepreneurs, and bloggers primarily in the Czech Republic, offering affordable and professional web and e-shop creation services. The website is well-structured, professionally designed, and provides comprehensive information about services, team, and client references. Technically, the site is built on Joomla CMS with modern frameworks and libraries, including Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. The absence of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

I

isla

traceyour.events

62

TRACE by isla is a specialized SaaS platform focused on providing credible, real-time carbon measurement and reduction insights for the event industry. The platform targets event planners, business owners, and sustainability officers, offering tools to measure carbon footprints across live, hybrid, and digital events. TRACE positions itself as a niche leader in event sustainability, supported by strong branding, client testimonials, and case studies. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as Google Analytics, HubSpot, and Hotjar. The site is mobile-optimized and SEO-friendly, providing a professional user experience. Security-wise, the site enforces HTTPS and uses reCAPTCHA Enterprise for form protection but lacks some recommended security headers and a formal security policy. Privacy compliance is adequate with a comprehensive privacy policy, though cookie consent mechanisms could be improved. Overall, the domain WHOIS data is privacy-protected but consistent with the business's UK-based identity. The website demonstrates a high level of professionalism and trustworthiness with no critical security issues detected.

T

Two Stories - Brand Consultancy & Design Studio

twostories.studio

62

Two Stories is an independent brand consultancy and design studio based in the North West of England. They provide a range of services including brand consultancy, design, digital web development, and brand communications. The company positions itself as a purpose-led, award-winning agency focused on creating meaningful and memorable brands that connect with audiences. Their website is professionally designed, mobile-optimized, and includes comprehensive content about their services, portfolio, team, and client testimonials. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Analytics integration, ensuring good SEO and analytics capabilities. Security posture is strong with HTTPS enforced and a cookie consent mechanism in place, although some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website reflects a credible and professional business with a strong digital presence.

U

Union Internationale de Pentathlon Moderne (UIPM)

uipmworld.org

49

The Union Internationale de Pentathlon Moderne (UIPM) website serves as the official digital presence of the international governing body for Modern Pentathlon and related multisport disciplines. It provides comprehensive information on events, athlete rankings, education programs, and governance. The site targets athletes, national federations, and fans globally, positioning itself as a key authority in the sport. Technically, the website is built on Drupal 7 with a mature tech stack including jQuery, Google Analytics, and Matomo for analytics, and is well-optimized for mobile and SEO. Security posture is solid with HTTPS enforcement and privacy compliance, though some security headers could be improved. The WHOIS data is incomplete, which slightly impacts domain trustworthiness, but the website content and structure indicate a legitimate and professional organization. Overall, the site demonstrates a high level of digital maturity and business credibility.

M

Městská část Praha 6

praha6.cz

68

Městská část Praha 6 operates as the official municipal government website for the Prague 6 district in the Czech Republic. It provides residents and visitors with comprehensive information including news, events, traffic restrictions, public services, and official documents. The website is well-positioned as a trusted local government resource with a clear focus on community engagement and transparency. The site targets local citizens, public officials, and visitors seeking district-related information and services. Technically, the website employs modern web technologies such as Nuxt.js for server-side rendering, jQuery, Axios, and Litepicker for UI components, alongside Google Analytics and Tag Manager for tracking. The site is hosted by a reputable registrar and shows good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not published, and some recommended security headers are missing. No critical vulnerabilities or WAF blocking were detected, indicating a stable security posture but with room for improvement. Overall, the website demonstrates a solid balance of content quality, technical implementation, and privacy compliance, supporting its role as a credible government portal. Strategic enhancements in security headers and transparency policies would further strengthen its trustworthiness and resilience.

L

Le Marathon Vert

lemarathonvert.org

57

Le Marathon Vert is an established regional marathon event organizer based in Rennes, Brittany, France. The website serves as the official portal for marathon-related information including race details, registration links, results, and sustainability initiatives. The organization targets runners and sports enthusiasts, providing a comprehensive digital presence with social media integration and volunteer coordination. The business model centers on event management and community engagement with a focus on environmental responsibility. Technically, the website employs a custom CMS and integrates modern tracking and analytics tools such as Google Analytics and Google Tag Manager with IP anonymization. Cookie consent is managed via tarteaucitron.js, reflecting a commitment to privacy compliance, although no explicit privacy policy page was found. The site is mobile-optimized and offers good navigation and content quality, though some security best practices like security headers and vulnerability disclosure policies are absent. From a security perspective, the site uses HTTPS and anonymizes user IPs in analytics, but lacks visible security headers and formal incident response contacts. WHOIS data is unavailable or protected, which is common for event sites, and does not raise immediate concerns. Overall, the site demonstrates a moderate to good security posture with room for improvement in transparency and policy disclosures. The overall risk is low, with recommendations to enhance security headers, publish privacy and terms policies, and establish vulnerability disclosure mechanisms to strengthen trust and compliance. The website is professional, trustworthy, and well-positioned within its niche, serving its audience effectively.

I

INTRASY s.r.o.

intrasy.com

60

INTRASY s.r.o. is a Slovak-based company specializing in telematics solutions, including GPS vehicle monitoring, telematics hardware distribution, and API integrations for fleet management. The company targets businesses with vehicle fleets, logistics providers, and transport services, offering both hardware and software solutions to optimize fleet operations. Established in 2020, INTRASY positions itself as a trusted regional provider with a consistent brand and a clear focus on transportation technology. The website reflects a professional and user-friendly design with comprehensive service descriptions and active customer engagement channels.

Ú

Úřad pro mezinárodněprávní ochranu dětí

umpod.cz

68

Úřad pro mezinárodněprávní ochranu dětí is a Czech government agency dedicated to providing international legal protection for children, particularly in cross-border family law matters such as custody, visitation, international adoption, and prevention of parental child abduction. The website serves as an official information portal offering resources, contact details, and guidance for families and legal professionals. It maintains a clear market position as a trusted government entity within the Czech Republic. Technically, the site is built on the Liferay CMS platform, leveraging modern web technologies including jQuery, Bootstrap, React, and Google Analytics for user insights. The site is mobile-optimized, accessible, and well-structured with good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data limits domain registration transparency but does not detract from the site's legitimacy given its government affiliation and consistent branding. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

A

Art'cade

artcade.fr

56

Art'cade is a small retail business based in Lyon, France, specializing in the sale and rental of original arcade machines that blend retro gaming culture with urban art aesthetics. The website presents a professional and consistent brand image, targeting retro gaming enthusiasts and urban art lovers. The business model focuses on niche market offerings combining entertainment and artistic expression. Technically, the website is built on the Wix platform, leveraging modern web technologies and tracking tools such as Google Analytics and Facebook Pixel. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is good with HTTPS enabled, but lacks some security headers and visible privacy compliance documentation. The absence of WHOIS data limits domain legitimacy verification, which slightly reduces trust. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures.

V

VORTAL

vortal.biz

65

VORTAL is a leading global provider of eProcurement and eSourcing solutions, targeting both public and private sector organizations. Their platform offers a comprehensive suite of services including category management, dynamic purchasing systems, eAuctions, and supplier relationship management, positioning them strongly in the B2B technology and government sectors. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern plugins for SEO, multilingual content, and cookie consent, indicating a well-maintained infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, complemented by a comprehensive cookie consent mechanism ensuring GDPR compliance. However, the absence of publicly available WHOIS data due to privacy protection slightly reduces transparency but is justified given the business nature. Overall, the site demonstrates a solid balance of business credibility, technical maturity, and privacy compliance.

R

RE/MAX Česká republika

remax-czech.cz

50

RE/MAX Česká republika operates as a leading real estate brokerage network in the Czech Republic, offering a wide range of services including property sales, rentals, auctions, mortgage financing, and commercial real estate solutions. The company also supports career development for real estate agents and franchising opportunities, positioning itself as a dominant player with over 170 offices nationwide. The website is professionally designed with excellent content quality, clear navigation, and good mobile optimization, reflecting a mature digital presence. Technically, the site leverages modern tools such as Google Tag Manager, Google Analytics, and Mapy.cz API, with a consent-based cookie management system enhancing privacy compliance. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and explicit privacy documentation. The absence of WHOIS data reduces domain trustworthiness but does not detract from the overall professional appearance and market credibility of the business. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security.txt, and enhancing security headers to further strengthen trust and compliance.

Č

Český svaz moderního pětiboje, z.s.

pentathlon.cz

44

Český svaz moderního pětiboje, z.s. is the official Czech Modern Pentathlon Association, established in 2002, serving as the national governing body for modern pentathlon sports in the Czech Republic. The organization focuses on athlete development, competition organization, and promotion of the sport to youth and sports enthusiasts. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience of athletes, clubs, and fans. Technically, the site employs modern JavaScript libraries, lazy loading, and integrates social media and analytics tools, indicating a moderate to good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements are recommended in security headers and removal of potentially sensitive inline scripts. Privacy compliance is basic, lacking explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business, supporting high legitimacy and trustworthiness.