Security Directory

A

American Society of Cataract and Refractive Surgery (ASCRS)

eyeworldonsite.org

43

EyeWorld Onsite is a specialized media platform dedicated to providing comprehensive news coverage, session recaps, photo galleries, and industry spotlights related to the 2025 ASCRS Annual Meeting, a key event in the ophthalmology field. The website serves a niche audience of eye care professionals and industry partners, positioning itself as a trusted source for event-related content. Technically, the site is built on WordPress with a modern theme and plugins, hosted by Nexcess, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS but lacks advanced security headers and DNSSEC, and does not display privacy or cookie policies, which are compliance gaps. The domain registration is consistent with the event timeline and shows no suspicious patterns, supporting the site's legitimacy. Overall, the site is a credible, professional resource with room for improvement in privacy compliance and security hardening.

E

European Society of Retina Specialists

euretina.net

60

EURETINA is a well-established European professional society dedicated to retina specialists, providing a comprehensive platform for education, events, and membership services. The website reflects a mature digital presence with a focus on healthcare professionals, offering detailed event information, educational resources, and community engagement. Technically, the site is built on WordPress with modern plugins like Elementor and MemberPress, supported by Cloudflare DNS and CDN services, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and security headers could enhance resilience. Privacy compliance is partial, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its niche.

K

Kolpingovo dílo ČR z.s.

kolping.cz

46

Kolpingovo dílo ČR z.s. is a Czech non-profit organization dedicated to addressing social needs and supporting individuals through various community and social services. The organization is inspired by Adolph Kolping's philosophy and operates multiple facilities and programs including family centers, addiction counseling, prevention centers, and therapeutic communities. The website reflects an established presence with EU project backing and a focus on community engagement. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS enforced and privacy plugins in use, though additional HTTP security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's transparency and contact information support legitimacy. Overall, the site is professional, trustworthy, and serves a broad general audience with safe content.

J

Jihlavan

jihlavan.cz

45

Jihlavan is a Czech aerospace manufacturing company specializing in the development, production, and servicing of aircraft hydraulic assemblies and electromechanical components. With a 70-year tradition, the company positions itself as a regional leader and trusted partner for major aerospace clients such as Airbus and L39. The website reflects a professional and well-structured digital presence, supporting their business model focused on manufacturing and servicing aerospace components. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and GDPR compliance, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit incident response policies could enhance their security maturity. Overall, the website is trustworthy, professional, and compliant with privacy regulations, though the absence of WHOIS data slightly impacts domain trust verification.

L

Léonard Web Solutions

lws.be

41

Léonard Web Solutions (LWS) is a small web agency based in Heusy (Verviers), Belgium, specializing in website creation, graphic design, custom development, social media management, and SEO services. The company targets local businesses and individuals seeking professional digital presence solutions. The website is built on WordPress with modern SEO and performance optimizations, including Yoast SEO and WP Rocket plugins, and integrates Google Tag Manager and Microsoft Clarity for analytics. The site is well-structured, mobile-optimized, and provides a good user experience with consistent branding and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a published privacy policy are missing. WHOIS data is not publicly available, likely due to privacy protection, which is common for small businesses but reduces transparency. Overall, the website presents a professional and trustworthy digital presence for a small technology service provider.

N

Navu.co

navu.co

62

Navu.co is a technology company founded in 2023 that provides an AI-powered companion solution specifically designed for B2B websites. Their core offering includes an AI Sidebar that guides visitors, visitor journey analytics, and detailed visitor insights to help marketers improve engagement and conversions without needing to overhaul existing websites. The company targets B2B marketers and marketing agencies, offering a free tier for agencies to encourage adoption. Technically, the website is built on WordPress with a modern theme and SEO plugins, integrating third-party marketing and analytics tools such as HubSpot and Google Analytics. The site is mobile optimized and well structured, providing a good user experience. Security-wise, the site uses HTTPS with domain registration protections but lacks some advanced security headers and explicit cookie consent mechanisms. No direct company contact emails or phone numbers are published, but a physical address in Palo Alto, CA is provided. Overall, the website is professional, trustworthy, and focused on delivering AI-driven marketing enhancements for B2B clients.

M

M – KOVO s.r.o. / KOVORAN s.r.o.

m-kovo.cz

47

M – KOVO s.r.o. / KOVORAN s.r.o. is a Czech Republic-based medium-sized manufacturing company specializing in metalworking services such as CNC machining, grinding, turning, milling, cutting, and galvanizing. The company has a longstanding history dating back to 1991 and is engaged in projects aimed at improving energy efficiency and sustainability. Their target audience primarily consists of industrial clients requiring precision metal fabrication. The website is built on WordPress and employs common web technologies, providing a professional and navigable user experience. However, the absence of privacy and cookie policies, as well as missing WHOIS data, slightly detracts from the overall trustworthiness. Security posture is moderate with HTTPS enabled but lacking security headers and incident response information.

A

A V E N T I N, spol. s r.o.

aventin.cz

47

Aventin Shopping is a Czech Republic-based developer specializing in retail parks. The company has developed five retail parks totaling 58,000 square meters, focusing on a unified and modern retail concept. Their website reflects a professional and consistent brand image targeting retail customers and tenants within the Czech market. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response information are missing. Overall, the site is trustworthy and well-maintained, though the absence of WHOIS data slightly reduces transparency.

K

Kögel Trailer

koegel.com

55

Kögel Trailer GmbH is a well-established German manufacturer specializing in trailers and transport solutions. The company offers a broad portfolio including trailer manufacturing, parts sales, service, rental, and telematics solutions, positioning itself as a key player in the European transportation sector. Their website reflects a professional and comprehensive digital presence with multilingual support and detailed product and service information. Technically, the site is built on WordPress with modern plugins and tracking tools, ensuring good performance and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and business information. Strategic recommendations include enhancing security headers, adding incident response details, and verifying domain registration data to strengthen trust.

T

Turistické informační centrum statutárního města Most

imostecko.cz

60

The website www.imostecko.cz serves as the official tourism portal for the city of Most and its surrounding region in the Czech Republic. It provides comprehensive information about local attractions, cultural events, accommodation, and practical visitor information. The site is positioned as a trusted source for tourists and residents seeking to explore the area, supported by official city affiliation and partnerships with regional tourism organizations. The business model focuses on information dissemination and promotion of local tourism and culture. Technically, the website is built on WordPress CMS with modern technologies including jQuery, Google Analytics, and Google Tag Manager for analytics and tracking. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented via JSON-LD. Performance is moderate, with room for improvement in security headers and hosting transparency. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, demonstrating good privacy compliance aligned with GDPR. However, it lacks explicit security policies, incident response information, and security headers which could enhance its security posture. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website is a professionally maintained government-affiliated portal with good content quality and user experience. The absence of WHOIS data reduces domain trustworthiness slightly, but the official nature and content quality mitigate this concern. Strategic recommendations include enhancing security headers, publishing security policies, and regular audits of third-party scripts to maintain a strong security posture.

M

Město Kromeříž

kromeriz.eu

55

The website kromeriz.eu serves as the official tourism and cultural information portal for the city of Kroměříž in the Czech Republic. It provides comprehensive visitor information including historical sites, cultural events, travel tips, and practical details to support tourism and local engagement. The site targets a broad audience including families, seniors, cyclists, and school groups, positioning itself as a trusted and authoritative source for the region. The business model is informational and government-supported, focusing on promoting local tourism and culture. Technically, the site is built on WordPress 6.8.2 with popular plugins such as Yoast SEO, Contact Form 7, and Google Site Kit. It uses modern web technologies including Google reCAPTCHA v3 for form security, Google Maps API for location services, and jQuery libraries for UI enhancements. Hosting is provided by WEDOS Internet, a reputable Czech hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and integrates reCAPTCHA to mitigate spam and abuse. However, it lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. No explicit privacy, cookie, or incident response policies are found, indicating potential compliance gaps with GDPR and related regulations. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, kromeriz.eu is a professionally maintained government tourism portal with solid business credibility and technical infrastructure. To improve, the site should publish clear privacy and cookie policies, implement additional security headers, and provide incident response information to strengthen trust and compliance. These steps will enhance the site's security posture and regulatory adherence while maintaining its role as a key regional tourism resource.

T

Tecfen Medical

tecfenmedical.com

48

Tecfen Medical is a reputable manufacturer and distributor specializing in ophthalmic surgical disposables and post-operative products, serving over 60 countries worldwide. The company holds ISO 13485:2016 certification, underscoring its commitment to quality in the healthcare sector. Their website reflects a professional and consistent brand image, targeting eye care professionals and healthcare providers with a comprehensive product catalog and active participation in industry events. Technically, the site is built on WordPress with a modern tech stack including Google Analytics and Tag Manager, hosted on HostGator, and optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is strong, featuring a comprehensive privacy and cookie policy with consent mechanisms aligned with GDPR. Overall, the website demonstrates high trustworthiness and business credibility, with clear contact information and social media presence.

D

Dopravní podnik města Hradce Králové, a.s.

novesmhd.cz

42

Dopravní podnik města Hradce Králové, a.s. is a medium-sized public transportation company operating in Hradec Králové, Czech Republic. The company provides bus and trolleybus services with a focus on modernizing its ticketing system, including contactless payments and a new tariff structure effective from 2024. The website serves as an information portal for passengers, offering details on ticket types, tariff changes, and contact information. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and Slider Revolution, hosted on a Czech hosting provider. Security posture is adequate with HTTPS enabled and secure form handling, but lacks advanced security headers and privacy compliance mechanisms such as cookie consent and privacy policy. The company is transparent with contact details, social media presence, and official registration information, enhancing trustworthiness. Overall, the website is professional and functional but could improve privacy compliance and security hardening.

A

Alcyon

alcyoneurope.com

41

Alcyon is a European leader in the distribution of veterinary medicines, pet food, and veterinary equipment, operating primarily in France, Belgium, and Italy. The company is structured with subsidiaries in these countries and governed by a board largely composed of practicing veterinarians, emphasizing its close ties to the veterinary profession. The website presents a professional and multilingual platform that highlights the company's history, organizational structure, and key business metrics, targeting veterinary professionals across Europe. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support. It uses jQuery and is optimized for mobile devices with good SEO practices. The site is served over HTTPS with no visible security vulnerabilities in the provided HTML content. However, it lacks some security headers and visible privacy or cookie policies, which are important for compliance and user trust. From a security perspective, the site demonstrates a solid baseline with HTTPS and no exposed sensitive data. The absence of privacy and cookie policies, as well as missing incident response and vulnerability disclosure information, indicates areas for improvement in compliance and transparency. The WHOIS data is notably missing or unavailable, which raises some concerns about domain registration transparency despite the professional appearance and content of the website. Overall, Alcyon’s website is a well-structured and professional digital presence for a veterinary distribution group, but it would benefit from enhanced privacy compliance, security headers, and clearer domain registration information to improve trust and regulatory adherence.

J

JS VISION

jsvision.com

48

JS VISION is a well-established medical devices importer and distributor with a strong presence in Thailand's healthcare logistics sector. The company boasts nearly three decades of operation, a broad partner network, and a significant volume of sold products. Their website reflects a professional business model focused on healthcare providers and institutions, offering importation, distribution, warehousing, and delivery services. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Performance and mobile optimization are adequate, though accessibility could be improved. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced security and compliance transparency.

U

U!REKA, European University Alliance

ureka.eu

49

U!REKA is a European University Alliance comprising over 30 higher education institutions and partners focused on educating future professionals to lead the transition to climate-neutral, smart, and sustainable cities. The alliance offers collaborative education, research, staff training, and organizes events and workshops to foster innovation and sustainability in European cities. The website positions U!REKA as a significant player in European higher education collaboration with a large network of partners and a strong focus on sustainability and innovation. Technically, the website is built on WordPress using modern plugins such as Elementor and The Events Calendar, with Google Tag Manager integrated for analytics. The site demonstrates good SEO practices, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Hosting and domain registration are consistent with the business profile, and the site uses HTTPS with no visible security vulnerabilities. From a security perspective, the site employs HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies and incident response information, which could be improved. Privacy and cookie policies are present and GDPR compliant, supporting regulatory adherence. The site collects minimal user data primarily through newsletter subscription forms and event registrations. Overall, U!REKA's website is professional, trustworthy, and well-structured, supporting its mission as a European university alliance. Strategic recommendations include enhancing security transparency, formalizing incident response contacts, and optimizing analytics configuration to improve privacy compliance and security posture.

N

NetSpace s.r.o.

netspace.sk

51

NetSpace s.r.o. is a Slovak telecommunications and IT services provider with over 21 years of experience. The company specializes in delivering internet connectivity, fixed telephony, corporate network construction and management, security and camera systems, as well as hosting and repair services primarily targeting businesses and local governments. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress with modern libraries and plugins, optimized for SEO and mobile use. Security posture is good with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response details. Overall, the domain registration and website content are consistent and legitimate, indicating a trustworthy business presence.

F

FIVB

fivb.com

67

FIVB is the international governing body for volleyball, providing comprehensive information and services related to volleyball, beach volleyball, and snow volleyball globally. The website serves players, officials, fans, and national federations with detailed content on competitions, rankings, regulations, development programs, and organizational structure. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses multiple plugins for multilingual support and enhanced user experience. The security posture is solid with HTTPS and no visible sensitive data exposure, but lacks some security headers and visible privacy/cookie policies. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency. Overall, the site is professional, content-rich, and trustworthy from a user perspective but could improve compliance and security transparency.

R

REGINA GmbH

reginagmbh.de

49

REGINA GmbH is a well-established regional innovation agency and non-profit organization focused on promoting sustainable development and social-economic improvements in the Landkreis Neumarkt i.d.OPf., Germany. Founded in 1997, it operates under municipal ownership with 19 cities and municipalities as shareholders. The company offers project management, consulting, and regional coordination services, emphasizing climate protection, housing, organic farming, and community engagement. The website reflects a professional and consistent brand image targeting local government entities, businesses, and residents. Technically, the site is built on WordPress with Elementor and uses privacy-conscious analytics (Matomo). Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is trustworthy, compliant with GDPR, and well-suited for its audience.