Security Directory

F

Fédération française de hockey sur glace

liguemagnus.com

59

The Synerglace Ligue Magnus website serves as the official digital platform for the premier French ice hockey league, operated under the Fédération française de hockey sur glace. It provides comprehensive coverage including news, schedules, standings, player statistics, and access to official merchandise and live streaming services. The site targets hockey fans, players, and stakeholders within France, positioning itself as a central hub for elite hockey information. Technically, the website is built on a modern WordPress CMS with popular plugins such as WPBakery Page Builder and Yoast SEO, ensuring a good user experience and SEO optimization. Hosting and DNS services are managed via Cloudflare and Gandi SAS, providing reliable infrastructure. The site is mobile-optimized and integrates social media channels effectively. From a security perspective, the site employs HTTPS with a valid SSL certificate and domain transfer protections. Cookie consent mechanisms and privacy policies are in place, demonstrating GDPR compliance. However, DNSSEC is not enabled and additional security headers could enhance the security posture further. Overall, the website is professional, trustworthy, and well-maintained, with no signs of malicious activity or content safety concerns. Strategic improvements in security configurations and ongoing monitoring are recommended to maintain and enhance trust and compliance.

E

enel-med

enelsklep.pl

63

Enel-med operates a comprehensive e-commerce platform focused on healthcare services in Poland, offering a wide range of medical consultations, diagnostic tests, rehabilitation, dental care, and aesthetic medicine. The website is built on WordPress and integrates modern tracking and consent management tools such as Google Tag Manager, Facebook Pixel, Hotjar, and Cookiebot, indicating a mature digital infrastructure. Security posture is solid with HTTPS and DNSSEC enabled, though the absence of explicit privacy and terms of service pages suggests room for compliance improvement. Overall, the platform presents a professional and trustworthy front for healthcare consumers, with a clear market position in medical service e-commerce.

HP TRONIC Zlín, spol. s.r.o. is a well-established Czech company with over 30 years of experience in the consumer electronics and home appliances market, operating multiple retail brands such as DATART, NAY, and ETA. The company also extends its business into hospitality, managing Resort Valachy and Bistrotéka Valachy. With a large workforce and extensive retail presence, HP TRONIC holds a significant market position in the Czech Republic and Slovakia. The website reflects a professional digital presence with good content quality and user experience, targeting consumers interested in electronics and hospitality services. Technically, the site uses modern tracking and marketing tools but lacks visible security headers and explicit privacy and terms policies, which are areas for improvement. Security posture is moderate with HTTPS usage and cookie consent implemented, but further enhancements are recommended. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the company.

C

Continental Tires

continental-me.com

53

Continental Tires Middle East operates as a regional landing platform for the established global tire manufacturer Continental AG, targeting consumers and businesses in the Middle East and North Africa (MENA) region. The website facilitates language and country selection to direct users to localized content and services, including tire dealer location and vehicle-specific tire information. The business model focuses on B2C and B2B tire sales and distribution, leveraging Continental's strong brand recognition and market presence. The site positions itself as a reliable regional resource for Continental Tires products and services.

S

Suitcase Type Foundry

suitcasetype.com

62

Suitcase Type Foundry is a specialized font design and digitization business founded in 2003 by Tomáš Brousil. The company focuses on producing high-quality retail fonts and custom typefaces for professional and corporate clients. Their market position is niche, targeting designers and organizations needing bespoke typography solutions. The website reflects a professional and consistent brand image with a good user experience and clear navigation. Technically, the site uses modern web technologies including Bootstrap, Font Awesome, Google Analytics, and Google reCAPTCHA, ensuring a secure and functional user interface. Security posture is strong with HTTPS and form protections, though explicit security policies and incident response contacts are absent. The lack of WHOIS registration data reduces trust slightly, but the overall digital presence and social media links support legitimacy. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms.

Steiner & Kovarik is a small family-owned premium chocolate manufacturer based in the Czech Republic, operating since 2005. The company produces high-quality, design-focused chocolate products sold through multiple physical stores in Prague and an online e-shop, with international distribution including prestigious clients such as the Sultan's palace. The website is professionally designed, mobile-optimized, and uses a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, and Matomo Analytics. Security posture is good with HTTPS and reCAPTCHA implemented, but lacks some security headers and formal privacy and terms policies. The WHOIS data is missing, which raises concerns about domain registration legitimacy despite the professional online presence. Overall, the website is trustworthy and business credible but would benefit from improved transparency and security practices.

N

Nielsen Sports

nielsensports.com

66

Nielsen Sports is a globally recognized leader specializing in sponsorship media valuation and data analytics, serving rights holders and brands to optimize their sponsorship portfolios. The company operates primarily in the media sector with a strong B2B focus, offering services such as media valuation, fan insights, research, consulting, and esports analytics. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive SEO optimization. Technically, the site is built on WordPress with modern libraries and frameworks, supported by Google Tag Manager and OneTrust for analytics and privacy compliance. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. WHOIS data confirms the domain's legitimacy, showing consistent registration details and appropriate domain age. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

Luhačovské Zálesí, o.p.s. operates as a non-profit destination management organization promoting tourism in the Zlínsko and Luhačovicko region of the Czech Republic. The website provides comprehensive information on regional attractions, events, wellness, and cultural experiences, targeting tourists and visitors interested in this area. The organization holds recognized awards such as the EDEN European Destination of Excellence 2019, enhancing its credibility. Technically, the website employs modern web technologies including Foundation framework, jQuery, Swiper.js, Owl Carousel, and integrates Google Maps and multiple marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized with good navigation and content quality, though some security headers are not explicitly detected. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks visible advanced security headers. Privacy compliance is strong with a clear GDPR policy and cookie consent banner. No WHOIS data is available, which limits domain registration trust analysis, but the website's content and partner affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy digital presence for regional tourism promotion, with recommendations to enhance security headers and verify WHOIS data for improved trust and compliance.

H

Hematologicko-onkologické oddělení, Fakultní nemocnice Plzeň

hematologieonkologie.cz

57

The Hematologicko-onkologické oddělení FN Plzeň website represents a specialized healthcare department within the Faculty Hospital Plzeň, uniquely accredited for all types of hematopoietic stem cell transplantation in the Czech Republic. The site provides comprehensive information about their services, accreditations, and partnerships, targeting patients and healthcare professionals. The business model focuses on delivering advanced hematology and oncology treatments, supported by clinical research and quality management. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Cookiebot for GDPR compliance, ensuring a responsive and user-friendly experience. However, some technical improvements could enhance accessibility and security headers. Security posture is moderate with cookie consent implemented but lacks visible security headers and explicit incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, limiting full domain trust analysis.

Gymnastika Zlín z.s. is a well-established sports club based in the Czech Republic, specializing in sport gymnastics and parkour training for children, youth, and adults. The club operates a multifunctional hall and a jump park facility, offering a wide range of courses tailored to different age groups and skill levels. It holds a strong market position as one of the largest sports clubs in the Zlín region and Czech Republic, emphasizing education, physical development, and safety in its training programs. The website reflects a professional and consistent brand image with clear course offerings and partner affiliations. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Owl Carousel, and Google Maps API, providing a good user experience with mobile optimization and clear navigation. However, there is room for improvement in accessibility and SEO optimization. The website does not appear to use any analytics or tracking services, indicating a minimal user tracking approach. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No forms collecting sensitive data were detected, reducing immediate risk exposure. The WHOIS data is consistent with the business claims, showing a legitimate and appropriately aged domain. Overall, the website is safe, professional, and trustworthy but would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident response.

I

Institute of Biomedical Science

ibms.org

70

The Institute of Biomedical Science (IBMS) operates a professional membership website focused on biomedical science professionals, support staff, and students. It offers membership services, accredited degree information, professional registration pathways, qualifications, resources, and events. The site is well-positioned as a leading body in the healthcare sector with a medium-sized international membership base. Technically, the website uses modern web technologies including Google Tag Manager, CookieControl for consent management, Bootstrap for responsive design, and Preside CMS. The site is mobile-optimized with good SEO and accessibility features, though some improvements in accessibility and security headers could be made. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, but explicit security headers are not clearly detected. Privacy compliance is robust with a comprehensive privacy policy and cookie consent banner. The WHOIS data is unavailable due to query failure or privacy protection, but the website's professional content and trust signals support its legitimacy. Overall, the website scores well on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy and professional resource for its target audience.

The Association for Laboratory Medicine is a UK-based professional membership organization dedicated to advancing clinical science and laboratory medicine. Founded in 2022, it serves healthcare scientists, clinical biochemists, immunologists, and microbiologists by providing education, resources, events, and advocacy to promote high standards in laboratory testing and patient care. The organization maintains strong industry partnerships and sponsors, enhancing its market position as a leading body in the laboratory medicine sector. Technically, the website is built on a modern stack including Preside CMS, Bootstrap, and jQuery, with Google Tag Manager for analytics. The site is mobile-optimized, accessible, and well-structured, offering a good user experience and professional design. SEO and metadata are properly implemented, supporting discoverability. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling. However, it lacks explicit security policies, incident response contacts, and security headers, which are areas for improvement. Privacy and cookie policies are present and GDPR compliant, reflecting a good privacy posture. Overall, the website is trustworthy, professional, and well-maintained, with no signs of blocking or WAF interference. The domain registration data aligns with the organization's profile, supporting legitimacy. Strategic recommendations include enhancing security transparency and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

E

Easy.jobs

easy.jobs

57

Easy.jobs is a technology company specializing in AI-powered recruiting software designed for startups to enterprises. Their SaaS platform offers an all-in-one recruitment solution including career page creation and applicant tracking system capabilities. Positioned as a leading AI recruiting software for 2025, Easy.jobs targets businesses seeking to streamline and accelerate their hiring processes. The website demonstrates a professional and modern digital presence built on WordPress with Elementor, leveraging various plugins and integrations to enhance user experience and functionality. Security posture is solid with HTTPS and no exposed sensitive data, though explicit security headers and incident response information are lacking. Privacy compliance is indicated by the presence of a privacy policy and terms of service, but cookie consent mechanisms are not evident. Overall, the website and domain registration data align well, indicating a legitimate and credible business with a strong market position in the recruitment technology sector.

F

Favia s.r.o.

favia.cz

47

Favia s.r.o. operates a Czech-language e-commerce platform specializing in the retail and wholesale distribution of built-in and free-standing household appliances. Founded in 1992, the company positions itself as an established player in the Czech retail market, offering a broad product catalog and customer advisory services. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, the site leverages modern frontend technologies including Bootstrap 4, jQuery, and Owl Carousel, indicating a moderate level of digital maturity. Security measures include HTTPS enforcement and CSRF token implementation, though the absence of HTTP security headers and a published security policy suggests room for improvement. Privacy compliance is addressed with a cookie consent mechanism and a basic privacy policy, aligning with GDPR requirements. However, the lack of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further investigation. Overall, the site presents a trustworthy and professional front for its business operations but should enhance transparency and security posture to strengthen trust and compliance.

W

WEEE Forum

weee-forum.org

45

WEEE Forum is an established international non-profit association founded in 2003, representing electronic waste producer responsibility organisations primarily in Europe but with global reach. The organization focuses on coordinating efforts to tackle e-waste challenges through advocacy, resource sharing, and projects aimed at improving collection and recycling of electronic waste. The website reflects a mature digital presence built on WordPress with modern web technologies, offering good content quality and user experience. Social media integration and a members’ area indicate active community engagement. Security posture is adequate with HTTPS and anti-clickjacking measures, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the site is professional, trustworthy, and aligned with the organization's mission.

Č

Česká lékárnická komora

lekarnici.cz

56

Česká lékárnická komora (ČLnK) is a self-governing, non-political professional organization representing pharmacists across the Czech Republic. It serves as a regulatory and professional body ensuring the competence and rights of its members, providing education, legal support, and public expert advice on pharmaceuticals and healthcare. The organization maintains a strong national presence with a well-structured website offering multilingual support and comprehensive resources for both professionals and the public. Technically, the website is built on WordPress with modern plugins and SEO tools, hosted by a reputable provider, and demonstrates good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and formal policies could be improved. Overall, the domain registration and WHOIS data confirm the legitimacy and long-standing operation of the organization.

Z

Zlínská liga železných hasičů

zlzh.cz

48

Zlínská liga železných hasičů is a regional sports league in Czechia focused on Tough Firefighter Athlete (TFA) competitions. Founded in 2017, it organizes multiple annual events for firefighter athletes with categories for men, women, and masters. The website serves as a community hub providing event information, news, results, and contact details. Technically, the site uses a modern but basic stack including jQuery, Bootstrap, Font Awesome, Owl Carousel, Chart.js, and the Nette PHP framework. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with no detected advanced security headers or incident response contacts, and no privacy policy or terms of service published, which are compliance gaps. The domain registration data is consistent with the business history and regional focus, supporting legitimacy. Overall, the website is functional and trustworthy but would benefit from improved security and privacy compliance measures.

S

Santé Services

santeservices.lu

59

Santé Services is a Luxembourg-based healthcare service provider founded in 2001, specializing in project management and logistics solutions tailored for the healthcare sector. Their key services include catering (MedHospitality), logistics (MedLogistics), and innovation promotion (MedConsulting). The company serves healthcare institutions such as the Hôpitaux Robert Schuman and has diversified its offerings in response to healthcare needs, including during the COVID-19 pandemic. The website reflects a professional and consistent brand presence with clear service descriptions and active social media engagement. Technically, the website is built on WordPress with modern plugins like Yoast SEO and integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized and demonstrates good SEO practices. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, indicating GDPR compliance. The absence of WHOIS data limits domain trust analysis, but the website content and external partnerships suggest legitimacy. Overall, the site is safe, professional, and well-maintained, targeting healthcare professionals and institutions. Recommendations include enhancing security headers, publishing explicit security policies and incident response contacts, and improving transparency around data retention and vulnerability disclosures to strengthen trust and compliance.

F

FreshCognate LLC

freshcognate.com

9

FreshCognate LLC is a boutique educational strategy, instructional design, and media company specializing in creating impactful learning experiences through storytelling and data-driven approaches. Their clientele includes prestigious organizations such as Harvard Graduate School of Education, MIT, Google, and the Southern Poverty Law Center, positioning them as a trusted partner in the education and public health sectors. The company offers key services including video production, strategic planning, and instructional design, focusing on learner-centered and outcome-driven solutions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various multimedia libraries to deliver a visually appealing and responsive user experience. While the site performs moderately well and is mobile-optimized, there is room for improvement in accessibility and SEO optimization. The absence of a CMS and hosting details limits deeper infrastructure insights. From a security perspective, the site uses HTTPS and embeds YouTube videos with strict referrer policies, but lacks visible security headers and formal security or privacy policies. The missing WHOIS data raises concerns about domain transparency, although the professional presentation and client portfolio mitigate some trust issues. No critical vulnerabilities or exposed sensitive data were detected. Overall, FreshCognate LLC presents a professional and credible online presence with strong business credibility but has gaps in privacy compliance and domain registration transparency. Strategic improvements in security policies, privacy disclosures, and WHOIS transparency are recommended to enhance trust and compliance.

P

Pražské Příkopy

prazskeprikopy.cz

52

PražskéPříkopy.cz is a local media and lifestyle website focused on the Prague city center, providing news, shopping tips, event information, podcasts, and cultural content. The site targets residents and visitors interested in Prague's shopping and cultural scene. Technically, it is built on WordPress with popular plugins such as Yoast SEO and MonsterInsights for analytics, and uses Elementor for page building. The site is hosted with WEDOS and uses HTTPS with a valid SSL certificate. Security posture is moderate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Business credibility is supported by consistent branding, structured data, and active social media presence. Overall, the website is functional, well-designed, and content-rich but needs improvements in privacy and security disclosures.

S

Sociedade Brasileira de Patologia

sbp.org.br

11

The Sociedade Brasileira de Patologia (SBP) is a professional non-profit association representing pathologists in Brazil. It provides technical, scientific, and professional support to its members through educational programs, quality control, accreditation services, and legal advisory. The organization maintains a strong market position as a leading pathology society in Brazil, offering a wide range of services including certification, congresses, publications, and exclusive content for members. The website reflects a mature digital presence with a well-structured, content-rich platform targeting medical professionals and academic institutions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Tag Manager and Analytics for tracking. Hosting is supported by Microsoft Azure DNS infrastructure, indicating reliable and scalable hosting. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism, though GDPR-specific compliance indicators are limited. Contact information is available primarily via phone and contact forms, with no explicit incident response or vulnerability disclosure channels. Overall, the site is professional, trustworthy, and well-maintained, supporting the organization's mission and member services effectively.

F

Federation of African Medical Students' Associations

famsanet.org

35

The Federation of African Medical Students' Associations (FAMSA) is a well-established non-profit organization dedicated to uniting medical students across Africa. Founded in 1968, it serves as a continental federation fostering cooperation, education, and advocacy among African medical students. The website provides comprehensive information about the organization's structure, events, publications, and resources, targeting medical students and healthcare professionals in Africa. Technically, the site is built on WordPress with common libraries like jQuery and Owl Carousel, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional, content-rich, and trustworthy but would benefit from enhanced security and privacy measures.

L

Les Ours de Villard

les-ours-de-villard.com

57

Les Ours de Villard is a French regional sports club focused on ice hockey, providing official news, match schedules, results, and multimedia content to its community. The website serves as a hub for fans and participants, offering detailed event information and engaging content. Technically, the site leverages a modern but somewhat dated tech stack including Bootstrap 3, jQuery, and various JavaScript libraries, hosted by OVH sas. The site is mobile-optimized and implements structured data for SEO benefits. Security posture is adequate with HTTPS enforced and domain protections in place, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is strong, with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site is trustworthy, professional, and well-suited for its audience, though it lacks explicit contact and security policy disclosures.

L

LAB MARK a.s.

labmark.eu

61

LAB MARK a.s. is a well-established distributor specializing in clinical diagnostics, molecular biology, and genetics products. The company targets laboratories, healthcare professionals, and research institutions primarily in the Czech Republic. Their business model focuses on distributing a wide range of laboratory instruments, consumables, and reagents, supported by professional technical and application services. The website reflects a medium-sized enterprise with consistent branding and a strong market presence since 1998. Technically, the website is built on ASP.NET WebForms with modern front-end libraries such as jQuery, Bootstrap, and Owl Carousel. It is mobile optimized and provides a good user experience with clear navigation and relevant content. However, performance is moderate and accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating GDPR compliance. However, it lacks visible security headers and a vulnerability disclosure policy, which are areas for improvement. The WHOIS data is privacy protected, which is common for commercial entities but limits domain age and registrant verification. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, implementing a security.txt file, and improving accessibility to strengthen the security posture and compliance further.

Rehabilitační ústav Hrabyně a Chuchelná is a specialized healthcare institution under Fakultní nemocnice Ostrava, providing comprehensive rehabilitation services primarily for patients with musculoskeletal disabilities, amputations, and neurological conditions. The institution operates two specialized facilities with a combined capacity of 370 beds and offers a wide range of therapeutic services including physiotherapy, occupational therapy, psychological care, and social support. The website reflects a well-established organization with a strong focus on patient care and community engagement. Technically, the site uses a modern technology stack including jQuery, Google reCAPTCHA, and Matomo analytics, built on the IPO CMS platform. It is mobile optimized and accessible with good SEO practices. Security posture is generally good with HTTPS enforced and privacy compliance evident through GDPR policies and cookie consent mechanisms. However, the absence of WHOIS data and missing security headers indicate areas for improvement. Overall, the website is professional, trustworthy, and serves its healthcare audience effectively.

D

Dopravní podnik Ostrava a.s.

dpo.cz

55

Dopravní podnik Ostrava a.s. is a well-established public transportation company operating in Ostrava, Czech Republic, with a domain age dating back to 1998. The company provides comprehensive urban transit services including buses, trams, and trolleybuses, supported by digital tools such as mobile applications and online timetables. The website reflects a mature digital presence with a Joomla CMS platform, modern JavaScript libraries, and responsive design optimized for mobile users. Security practices include HTTPS enforcement and CSRF protection in forms, though some security headers are missing. Privacy compliance is evident with a dedicated GDPR page, but cookie consent mechanisms are not clearly implemented. Overall, the site is professional, trustworthy, and serves its target audience effectively.

M

Magma Sports & Timing

magmasports.es

49

Magma Sports & Timing is a small Galician company specializing in the professional timing and organization of sports events. Their website showcases a range of services including event organization, infrastructure rental, and participant timing, targeting sports event organizers and participants primarily in Spain. The company maintains a professional online presence with clear contact information and active social media links. Technically, the website employs modern front-end technologies such as Bootstrap, jQuery, and various carousel and popup libraries, ensuring a responsive and user-friendly experience. However, the site lacks visible advanced security headers and explicit cookie consent mechanisms, which are areas for improvement. The absence of WHOIS data due to query restrictions limits domain registration insights, but the website content and contact details support the legitimacy of the business. Overall, the site is well-structured and professional, with moderate technical and security maturity.

A

Ausind S.r.l.

ausind.it

51

Ausind S.r.l. is a well-established Italian business services company affiliated with Confindustria Genova, providing a broad range of services including training, HR solutions, safety, competitiveness, and communication. The company has a strong regional presence with over 45 years of experience and holds ISO 9001:2015 certification, reflecting its commitment to quality. The website is professionally designed using Drupal 8 CMS and integrates modern front-end technologies and analytics tools, demonstrating a mature digital infrastructure. Security measures such as HTTPS, cookie consent, and captcha on forms are implemented, though some backend PHP notices indicate minor technical issues that should be addressed to improve security posture. Overall, the website is compliant with GDPR and provides clear contact information and policies, supporting trust and transparency.

H

HARPAG s.r.o.

harpag.cz

47

HARPAG s.r.o. is a Czech independent insurance broker established in 2007, providing comprehensive insurance and financial advisory services to businesses, entrepreneurs, and private individuals. The company emphasizes personalized client service, cooperation with all major insurers, and maintaining client trust through professional expertise. The website reflects a mature business with clear service offerings and client testimonials, positioning it as a trusted player in the Czech insurance market. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and popular carousel libraries, hosted likely by WEDOS, a Czech hosting provider. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. Security posture is moderate with HTTPS usage and no visible vulnerabilities, but missing security headers and explicit incident response policies reduce the security maturity. Privacy compliance is partial, with a GDPR privacy policy document available but no cookie consent mechanism implemented. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

L

LABMARK

labmark.cz

57

LABMARK is a Czech-based company specializing in the distribution and sale of laboratory instruments, diagnostic kits, and consumables. Their website presents a comprehensive catalog of products targeting laboratories, healthcare providers, and research institutions. The company appears to hold a solid market position within the healthcare and laboratory supply sector in the Czech Republic. Technically, the website is built on ASP.NET WebForms with modern JavaScript libraries such as jQuery, Bootstrap, and Owl Carousel, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and privacy compliance measures are lacking. The absence of WHOIS data introduces some uncertainty about domain legitimacy, but the professional website and clear contact information support trustworthiness. Overall, the site is functional and business-focused but would benefit from enhanced privacy and security disclosures.

T

TCC – sportovní služby s.r.o.

tcc-sportovnisluzby.cz

44

TCC – sportovní služby s.r.o. is a Czech Republic-based small business specializing in individual and group hockey training, sports camps, and related services targeting children, youth, and adults. The company offers a variety of hockey-related training programs including skills camps, goalie training, video analysis, and conditioning programs. Their market position is niche and regional, supported by partnerships with local sports organizations and businesses. The website is professionally designed with consistent branding and clear navigation, providing good user experience and relevant content for its audience. Technically, the website uses a modern CMS (ProcessWire) and incorporates several popular JavaScript libraries and frameworks such as Foundation, jQuery, and Owl Carousel. It integrates multiple analytics and marketing tools including Google Analytics, Google Tag Manager, Hotjar, and retargeting services. The site is mobile optimized and performs moderately well, though some technical debt is present due to the use of an outdated jQuery version. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML. However, it lacks important security headers and uses an outdated jQuery version with known vulnerabilities, which could pose risks. Privacy compliance is weak as no privacy or cookie policies are found, and no consent mechanism is implemented despite the use of tracking scripts. Contact information is clearly provided, enhancing business credibility. Overall, the site scores moderately well but would benefit from improvements in security and privacy compliance.

L

Liga proti rakovině Praha z.s.

cdpr.cz

57

The website www.cdpr.cz represents the official platform for the Český den proti rakovině (Czech Day Against Cancer), a well-established non-profit fundraising and awareness campaign organized by Liga proti rakovině Praha z.s. The organization focuses on reducing cancer mortality in the Czech Republic through annual fundraising events, volunteer engagement, and public health campaigns. The site targets the general public, donors, volunteers, and corporate partners, providing information, donation options, and event participation details. Technically, the website is built on WordPress 6.8.3, utilizing common libraries such as jQuery, Bootstrap 3.3.7, Owl Carousel, and a GDPR cookie compliance plugin. The site is mobile-optimized with good SEO practices and moderate performance. It employs HTTPS with a good SSL configuration and includes a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible exposure of sensitive data. However, it lacks advanced security headers and a public vulnerability disclosure policy. The absence of WHOIS data limits domain trust verification, though the website content and partner affiliations suggest legitimacy. Overall, the site is a professional, trustworthy platform for a non-profit cause with strong content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

The website www.mojerevma.cz is a Czech informational portal dedicated to educating the general public about rheumatic diseases. It offers a variety of content including articles, videos, and an online magazine, authored or curated by medical professionals. The site targets individuals seeking knowledge about rheumatology and related health topics. Technically, the site is built on LuckyWonder CMS 3.0 and uses common web technologies such as jQuery, FontAwesome, and Google reCAPTCHA v3 for form protection. The design is professional and mobile-optimized, providing a good user experience with clear navigation. Security posture is moderate with HTTPS enforced and spam protection on forms, but lacks advanced security headers and explicit privacy or cookie policies, which are compliance gaps. The absence of WHOIS data limits domain legitimacy verification, though the website content and partner affiliations suggest a legitimate healthcare informational service. Overall, the site scores moderately well on content quality, technical implementation, and business credibility but needs improvements in privacy compliance and security best practices.

The website 'Nechci bolest | CENTRUM LÉČBY BOLESTI' serves as an informational and educational platform focused on pain treatment for the general public, primarily in the Czech Republic. It provides comprehensive content about different types of pain, treatment options, practical advice, and alternative therapies. The site also offers a contact form for users to ask questions directly to medical professionals and the editorial team. The presence of partner projects and a dedicated magazine subdomain indicates a networked approach to healthcare education. Technically, the site uses a variety of modern web technologies including jQuery, Bootstrap, FontAwesome, Google Analytics, and Google reCAPTCHA v3, built on the LuckyWonder CMS 3.0 platform. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Cookie consent mechanisms are implemented to comply with GDPR requirements. From a security perspective, the site employs reCAPTCHA to protect forms from spam and includes a cookie consent banner. However, no explicit security headers were detected, and WHOIS data for the domain is missing, which raises concerns about domain registration transparency. No critical vulnerabilities or malware indicators were found in the content. The site lacks explicit privacy and security policies, which could be improved to enhance user trust and compliance. Overall, the website is a well-structured, content-rich resource for pain treatment information with moderate technical maturity and security posture. Strategic improvements in domain registration transparency, security headers, and privacy documentation are recommended to strengthen trust and compliance.

M

Marek Žmijovský

zmickey.sk

55

The website zmickey.sk is a personal portfolio for Marek Žmijovský, a Slovak web designer specializing in WordPress and Joomla development. The site presents his skills, work history, education, and portfolio samples, targeting potential clients seeking freelance web design services. The business model is that of an individual freelancer with a small-scale operation primarily serving Slovak and English-speaking markets. The domain age and WHOIS data align well with the professional timeline presented, indicating legitimacy and consistency. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, Font Awesome, and Google Fonts. It is hosted on Websupport, a Slovak hosting provider, with DNSSEC enabled, which adds to the security trustworthiness. The site is responsive and well-structured, though some accessibility and SEO optimizations could be improved. No CMS is detected, indicating a custom-coded site. From a security perspective, the site lacks explicit HTTP security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. There is no visible incident response or vulnerability disclosure information. The contact form collects user data but no anti-spam or security measures are evident in the provided content. No analytics or tracking scripts are present, indicating minimal user tracking. Overall, the site is professional and functional but could improve its security posture and privacy compliance. The risk level is moderate with no critical vulnerabilities detected but with room for improvement in security best practices and legal compliance.

A

AISM | Associazione Italiana Sclerosi Multipla

aism.it

61

AISM (Associazione Italiana Sclerosi Multipla) is a well-established Italian non-profit organization dedicated to supporting individuals affected by multiple sclerosis. The website serves as a comprehensive resource offering information, support services, research funding, and advocacy. It targets patients, caregivers, volunteers, and researchers primarily within Italy. The organization maintains a strong market position as a leading association in its sector, supported by a large-scale operation and a professional digital presence. Technically, the website is built on Drupal 9 with modern front-end frameworks like Bootstrap 5 and integrates various third-party libraries for enhanced user experience, including Owl Carousel and Leaflet for maps. The site is mobile-optimized, accessible, and employs Google Tag Manager and CookieHub for analytics and cookie consent management, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, implements key security headers, and provides cookie consent mechanisms, indicating a solid security posture. However, it lacks a publicly available security policy or incident response contact, which are recommended for enhanced transparency and readiness. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is trustworthy, professionally designed, and compliant with GDPR requirements. It effectively balances user experience, accessibility, and security, making it a reliable platform for its audience.

S

Sdružení soukromých gynekologů ČR

ssg.cz

49

Sdružení soukromých gynekologů ČR is a professional association representing private gynecologists in the Czech Republic. The organization provides membership services, legal support, and organizes professional events and conferences to support its members. The website reflects a niche healthcare association with a clear focus on serving medical professionals in gynecology. The domain has been registered since 2000, indicating a well-established presence in the sector. Technically, the website uses a combination of legacy and modern JavaScript libraries including jQuery, Owl Carousel, and Google Maps API. While the site is functional and moderately optimized for performance and SEO, it shows some technical debt such as the use of outdated jQuery versions and lacks visible modern security headers. The cookie consent mechanism is implemented with granular user preferences, indicating some level of privacy compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS (implied by base href and external links), but lacks explicit security headers and uses older JS libraries that may pose vulnerabilities. No incident response or security policy information is publicly available. The WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy but could improve its security posture and privacy transparency.

T

Teleflex Incorporated

teleflex.com

60

Teleflex Incorporated operates a global healthcare technology website providing regional access to its medical device products and services. The company is positioned as an established enterprise in the healthcare sector with a broad international presence across Americas, EMEA, and Asia Pacific. The website serves primarily healthcare professionals and regional distributors, offering localized content and contact points. Technically, the site uses a modern and common technology stack including jQuery, Bootstrap, and Font Awesome, with a CMS likely based on DotCMS. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. Privacy compliance is supported by a clear privacy policy and cookie consent banner powered by Osano, indicating GDPR awareness. No critical security issues or blocking mechanisms were detected, and the domain registration is consistent with a mature, legitimate business. Overall, the website is professional, secure, and trustworthy with room for improvement in security policy transparency and technical security hardening.

E

Eureko

eureko.cz

71

Eureko.cz is a Czech-based e-commerce business specializing in therapeutic, rehabilitation, wellness, and fitness products. The website targets professionals such as therapists and rehabilitation specialists as well as wellness and fitness consumers. It offers a broad product range including own-brand and leading global manufacturers' goods, supported by expert advice. The company appears to be a medium-sized player in the Czech healthcare retail sector with a consistent brand presence and good content quality. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Owl Carousel, Google Tag Manager, and Cookiebot for consent management. The site is served over HTTPS with cookie consent mechanisms that comply with GDPR, showing a mature digital infrastructure. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site uses HTTPS and cookie consent best practices but lacks visible security headers and published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Advertising and tracking are transparent with multiple third-party providers disclosed via Cookiebot. Overall, the website is professional and trustworthy with moderate risk due to missing WHOIS transparency and limited published security governance. Strategic improvements in security headers, incident response disclosure, and contact information transparency are recommended to enhance trust and compliance.

Č

Česká advokátní komora

advokatnidenik.cz

62

Advokátní deník is an official Czech legal news portal published by the Czech Bar Association (Česká advokátní komora). It provides legal news, articles, legislative updates, and announcements targeted at legal professionals and the broader legal community in the Czech Republic. The website is well-positioned as a trusted source of legal information with a consistent brand and professional content quality. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various SEO and performance plugins. It is mobile optimized and uses structured data for enhanced SEO and social media integration. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is strong with GDPR-aligned cookie policies and consent banners. No direct contact emails or phone numbers are found on the homepage, but social media channels are active and official. Overall, the site is professional, trustworthy, and serves its niche effectively.

D

Diesel Plus

diesel-plus.com

45

Diesel Plus is a small professional content production company specializing in creating custom content and graphic design services for business websites across various sectors including business, finance, industrial, lifestyle, science, and technology. The website is built on WordPress with modern plugins and demonstrates good design quality, clear navigation, and mobile optimization. However, the absence of privacy and cookie policies, as well as missing WHOIS registration data, present compliance and trust concerns. The security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Overall, the website is functional and professional but would benefit from enhanced compliance and security transparency.

A

Anadolu Ebeler Derneği

anadoluebelerdernegi.org

57

Anadolu Ebeler Derneği is a Turkish non-profit professional association dedicated to midwives, providing professional support, legal consultancy, educational commissions, and organizing events and projects related to midwifery. The organization maintains a strong presence in Turkey and is affiliated with the European Midwives Association, enhancing its credibility and international connections. The website is well-structured, professionally designed, and mobile-optimized, offering clear navigation and relevant content for its target audience of healthcare professionals and families. Technically, the website employs modern web technologies including Bootstrap, jQuery, Owl Carousel, and SweetAlert2, hosted behind Cloudflare for DNS and CDN services. The site uses HTTPS with domain transfer protection enabled, though DNSSEC is not activated. Performance is moderate with room for improvement in accessibility and SEO. Analytics are implemented via Google Analytics and Google Tag Manager, with moderate user tracking. Security posture is adequate with HTTPS and transfer lock, but lacks advanced security headers and a vulnerability disclosure policy. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Contact information is clearly provided, including a contact form, email, and physical address, supporting business credibility. Overall, the website is a trustworthy and professional platform for the association, but should improve privacy compliance and security disclosures to enhance user trust and regulatory adherence.

L

Liga proti rakovině Praha z.s.

lpr.cz

56

Liga proti rakovině Praha z.s. is a well-established non-profit organization dedicated to reducing mortality from malignant tumors in the Czech Republic for over 35 years. The organization focuses on cancer prevention, patient quality of life improvement, and support for oncology research and equipment. Their website reflects a mature digital presence with comprehensive content, active social media engagement, and multiple partnerships. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and serves its mission effectively.

V

Vinařská akademie Valtice, z. s.

vinarska-akademie.cz

46

Vinařská akademie Valtice, z. s. is a well-established educational institution specializing in wine education, offering a variety of courses including sommelier training, viticulture, and specialized wine technologies. The academy positions itself as the oldest and most successful partner in wine education in the Czech Republic, with a strong reputation supported by over 5,500 graduates and more than 31 years of operation. Their business model includes in-person courses, an online e-shop for course purchases, and gift vouchers, targeting wine enthusiasts and professionals in the hospitality and viticulture sectors. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and Revolution Slider, hosted by REG-WEDOS. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks visible security headers and explicit security policies. Privacy compliance is partial, with a GDPR policy available but no cookie consent mechanism. The security posture is solid but could be improved by implementing security headers, cookie consent, and incident response information. The WHOIS data confirms the domain's legitimacy and consistency with the business claims, reinforcing trustworthiness. Marketing tools include Facebook Pixel for user tracking, indicating moderate user tracking levels. Overall, the website is professional, trustworthy, and well-positioned in its niche, with recommendations to enhance security and privacy compliance to further strengthen its digital maturity and user trust.

K

Kalnorė

kalnore.lt

40

UAB Kalnorė is a Lithuanian company specializing in the sale and consultation of agricultural machinery and grain storage technologies, particularly plastic sleeve grain storage. Founded in 2014, the company targets agricultural businesses and farmers primarily in Lithuania. The website is professionally designed using WordPress with modern plugins and technologies, providing a good user experience and clear navigation. Social media integration and customer testimonials enhance trust and credibility. Technically, the site uses HTTPS, Google reCAPTCHA, and SEO plugins, but lacks some security headers and a configured analytics setup. Privacy compliance is partially addressed with cookie consent but lacks a dedicated privacy policy page. Overall, the site is secure and trustworthy with room for improvement in privacy and security documentation.

Ambit Media a.s. operates a specialized media portal focused on the publication and subscription management of healthcare-related magazines and educational materials primarily targeting healthcare professionals and readers interested in medical topics. The company, founded in 2016 and based in the Czech Republic, offers subscription services, book sales, and educational events, positioning itself as a niche media publisher within the healthcare sector. The website reflects this focus with content primarily in Czech and includes partner links to related healthcare and medical publication sites. From a technical perspective, the website employs a modern tech stack including jQuery, Bootstrap, Google Fonts, and various UI and carousel libraries. It integrates Google Analytics and Google Tag Manager for user tracking and marketing insights. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. Hosting is managed through REG-ZONER, consistent with the domain registration data. Security posture is moderate; while HTTPS is implied and cookie consent mechanisms are in place, explicit security headers and detailed security policies are absent. No critical vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic but present, with a privacy policy, cookie banner, and terms of service clearly linked. Contact information is comprehensive, enhancing business credibility. Overall, the website presents a professional and trustworthy front for Ambit Media a.s., with a solid business model and consistent domain registration data. Strategic improvements in security headers, incident response transparency, and enhanced privacy compliance would further strengthen the site’s security and trustworthiness.

U

UAB „Eiva Beauty“

nookfamily.lt

37

Nook Family is a Lithuanian hair care brand offering a range of products including daily care, styling, restorative treatments, and professional lines. The official distributor in Lithuania is UAB „Eiva Beauty“. The website serves as a brand and product showcase with links to an external e-shop. The business targets both consumers and professionals interested in hair care products. The domain is well-established since 2012, supporting the legitimacy of the business presence. Technically, the website is built on WordPress and uses common JavaScript libraries such as jQuery (version 1.11.1), Fotorama, Fancybox, and Owl Carousel for UI components. Google Analytics and Facebook Pixel are used for tracking and marketing purposes. The site is served over HTTPS with a good SSL configuration but lacks modern security headers and uses an outdated jQuery version, which may pose security risks. Mobile optimization and accessibility are basic but functional. From a security perspective, the site has no visible security policy, incident response contacts, or vulnerability disclosure mechanisms. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Contact information is clearly provided, enhancing business credibility. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, the website is functional and credible but would benefit from security and privacy improvements, including updating libraries, adding security headers, implementing cookie consent, and publishing terms of service and security policies.

K

KISA

kisa.it

50

KISA is a well-established municipal IT service provider based in Saxony, Germany, founded in 2003. The company specializes in providing IT infrastructure, software solutions, data protection, and digitalization services tailored for public administration and municipal clients. Their market position is strong within the regional government sector, supported by a comprehensive service portfolio and positive client testimonials. Technically, the website is built on a modern stack including Bootstrap 4, jQuery, and a custom GeoCMS, with good mobile optimization and accessibility features. Security posture is solid with HTTPS, DNSSEC, and privacy-conscious analytics, though some advanced security headers and explicit security policies are missing. Overall, the site is professional, trustworthy, and compliant with GDPR, featuring clear cookie consent mechanisms. No blocking or WAF interference was detected, allowing full content access and analysis.

HARTMANN is a leading healthcare company specializing in medical devices, hygiene, and wound care products. The website targets healthcare professionals and medical sector stakeholders primarily in France, offering a comprehensive catalog of medical and hygiene products. The company positions itself as a market leader with a broad portfolio of key services including incontinence management, wound care, surgical sets, and diagnostics. The website is built on IBM WebSphere Portal technology and incorporates modern web technologies such as jQuery, JWPlayer, and Cookiebot for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. WHOIS data is missing, which slightly impacts trustworthiness but the overall digital presence and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility compliance.