Security Directory

R

Radio Haná s.r.o.

radiohana.cz

55

Radio Haná s.r.o. operates a regional radio station broadcasting on 92.3 FM, serving the Olomouc region and surrounding areas in the Czech Republic. The website offers live streaming, podcasts, local news, event information, and advertising services, positioning itself as a key local media outlet. The company targets local listeners interested in music and community events, leveraging digital platforms to extend reach. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and Facebook SDK, ensuring a responsive and engaging user experience. Security posture is solid with HTTPS enforcement and standard security headers, though no explicit security or incident response policies are published. Privacy compliance is evident with GDPR and cookie consent mechanisms in place. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its professional presentation and content. Overall, the site is well-structured, content-rich, and trustworthy for its audience.

L

Les Vipers de Montpellier

montpellier-vipers.com

60

Montpellier Vipers is a French ice hockey club with a strong regional presence, competing in Division 2 and offering youth training and community engagement. The website is professionally designed using WordPress and WooCommerce, featuring merchandising and event ticketing. The technical infrastructure is modern with good mobile optimization and SEO practices. Security posture is adequate with HTTPS but lacks some security headers and explicit privacy policies. The domain WHOIS data is missing, which raises transparency concerns but the website content and social media presence indicate a legitimate sports organization. Overall, the site is safe and suitable for general audiences.

L

LAUREA Medical and Scientific Learning, Communication and Advocacy

laurea.be

59

LAUREA Medical and Scientific Learning, Communication and Advocacy is a Belgium-based small enterprise specializing in designing and organizing medical and scientific learning activities, communication strategies, and advocacy efforts. Their services include live learning experiences, e-learning content creation, content marketing, and association management, targeting healthcare professionals, policy makers, and patients. The website is built on Squarespace and integrates modern analytics and marketing tools such as Google Analytics, Hotjar, and LinkedIn Insight. While the site is professionally designed and mobile-optimized, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but security headers and incident response information are missing. WHOIS data is restricted, limiting domain ownership transparency and slightly reducing trust. Overall, the website presents a credible and professional business presence with room for improvement in privacy compliance and security best practices.

The International Journal of MS Care (IJMSC) is a specialized, peer-reviewed open-access journal dedicated to multidisciplinary care and research in multiple sclerosis. It serves healthcare professionals and researchers, maintaining a strong market position as the official publication of the Consortium of Multiple Sclerosis Centers (CMSC). The website demonstrates a mature digital infrastructure leveraging modern web technologies such as Next.js and React, integrated with advanced analytics and consent management tools. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and incident response documentation are absent. Privacy compliance is well addressed through visible cookie consent mechanisms and a linked privacy policy. Overall, the website is professional, trustworthy, and well-optimized for user experience and accessibility.

E

European Committee for Treatment and Research in Multiple Sclerosis

ectrims.eu

65

The European Committee for Treatment and Research in Multiple Sclerosis (ECTRIMS) operates as the world’s largest professional organization dedicated to the understanding and treatment of multiple sclerosis. The website serves healthcare professionals, researchers, and patient communities by providing educational resources, fellowship programs, and community engagement opportunities. It holds a strong market position within the healthcare sector focused on neurological diseases. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, good privacy compliance, and trustworthy business credibility, with recommendations to enhance security transparency and incident readiness.

P

Political Watch

escaner2030.es

52

Escáner2030 is a Spanish-language online tool developed by Political Watch with support from the Spanish Ministry of Foreign Affairs. It provides free text analysis and visualization services related to the United Nations' Agenda 2030 Sustainable Development Goals (ODS). The website targets users interested in sustainability and social development, offering an easy-to-use interface for scanning text or uploading documents to detect ODS-related content. Technically, the site uses modern JavaScript frameworks such as Vue.js and build tools like Vite, ensuring a responsive and performant user experience. The presence of Google Tag Manager indicates moderate analytics and tracking capabilities. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks explicit security headers and published security policies, which could be improved. The WHOIS data for the domain is not publicly accessible due to registry restrictions typical for .es domains, but the association with recognized organizations supports its legitimacy. Overall, the website is professionally designed, trustworthy, and serves a niche educational purpose with room for enhanced privacy and security disclosures.

MeetDoc is a Hungarian healthcare-focused online platform that facilitates doctor search and appointment booking primarily in major Hungarian cities. The platform offers free and instant online appointment scheduling without requiring user registration, targeting patients seeking convenient access to medical professionals. The website is modest in size and scope, with a database of approximately 175 doctors, positioning itself as a niche regional service provider in the healthcare sector. Technically, the website is built using AngularJS, an older JavaScript framework, and integrates Google Analytics and Google Tag Manager for user tracking and analytics. The site loads with moderate performance and basic mobile optimization. However, it lacks modern security headers and advanced SEO or accessibility features. The absence of privacy and cookie policies, as well as contact information, indicates gaps in compliance and user trust facilitation. From a security perspective, the website uses HTTPS and has a domain with a long registration history and locked transfer status, which supports legitimacy. Nonetheless, the lack of DNSSEC, security headers, and vulnerability disclosure mechanisms suggests room for improvement in security posture. No critical vulnerabilities or adult content were detected, and the site is safe for general audiences. Overall, MeetDoc presents a functional but basic healthcare service platform with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security best practices, and user trust signals would enhance its credibility and resilience in the digital healthcare market.

C

CURSOR.cz

cursor.cz

53

CURSOR.cz is a small Czech Republic-based company specializing in web design and graphic services primarily for business clients. The company has been operating since 2004, offering services such as website creation, SEO optimization, domain registration, hosting, and various graphic design works including logos and print advertising. The website is professionally designed with good navigation and content relevance, targeting local businesses seeking digital presence and branding solutions. Technically, the site uses modern JavaScript libraries like jQuery and Slippry slider, integrates Google Tag Manager and Google Analytics for tracking, and is hosted likely by Active24. The site is mobile optimized and implements a comprehensive cookie consent mechanism in compliance with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. No contact emails or phone numbers are directly visible, and no terms of service or incident response policies are published, which could be improved for better trust and compliance. Overall, the website is safe, professional, and trustworthy with room for enhancements in security documentation and contact transparency.

T

Tropical Health and Education Trust (THET)

thet.org

70

The Tropical Health and Education Trust (THET) operates as a non-profit organization focused on supporting health workers globally through partnerships, capacity building, and policy work. The website positions THET as an established entity with a clear mission and vision to improve healthcare access worldwide. Their key services include grant management, volunteer programs, and digital transformation initiatives, targeting health workers, donors, and global health stakeholders. The organization is UK-based with a charity registration number, reinforcing its legitimacy. Technically, the website is built on WordPress with modern JavaScript libraries and integrations such as Google Tag Manager, Hotjar, and Google reCAPTCHA to enhance user experience and security. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and employs reCAPTCHA on forms, indicating a baseline security posture. However, the absence of visible security headers and a cookie consent mechanism suggests areas for improvement in compliance and defense-in-depth strategies. The WHOIS data is unavailable due to privacy protection or query issues, but the website's content and trust signals mitigate concerns about legitimacy. Overall, the website presents a professional, trustworthy, and content-rich platform for THET's mission. Strategic recommendations include enhancing security headers, implementing explicit cookie consent, publishing incident response policies, and improving WHOIS transparency where possible.

T

Tropical Health & Education Trust (THET)

pulsepartnerships.org

64

Pulse Partnerships is a community platform operated by Tropical Health & Education Trust (THET), a UK-based non-profit organization focused on global health partnerships and education. The website serves as a hub for community engagement, providing news, events, and resources to healthcare professionals and global health stakeholders. The platform is built on the Hivebrite community engagement system and integrates modern web technologies such as React and Mapbox for interactive features. Hosting is provided via SiteGround, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. From a technical perspective, the website demonstrates moderate digital maturity with a modern tech stack and responsive design optimized for mobile devices. However, there are areas for improvement in accessibility and SEO optimization. The site employs multiple analytics and tracking tools including Google Analytics, Amplitude, Datadog, and Sentry, but lacks clear privacy and cookie policies, which may impact user trust and compliance with GDPR. Security posture is adequate with HTTPS and some security best practices observed, but the absence of DNSSEC, security headers, and published security policies or incident response contacts indicates room for enhancement. No vulnerability disclosure or security.txt files were found, which are recommended for transparency and security culture. The WHOIS data aligns well with the business information, showing consistent domain registration and no privacy protection, supporting legitimacy. Overall, the website is professional and trustworthy for its target audience but should prioritize privacy compliance and security policy publication to strengthen its security posture and user trust. Strategic improvements in these areas will enhance compliance and reduce risk exposure.

B

Baťa region

batuvregion.cz

59

Baťa region is a culturally focused regional tourism website dedicated to promoting the Baťa region in the Czech Republic, highlighting its architectural heritage, historical sites, and cultural landmarks. The site targets tourists and locals interested in exploring the region's unique offerings through interactive maps, curated content, and social media engagement. The business model is informational and promotional, aiming to increase awareness and visitation to the Baťa region. Technically, the website employs a modern tech stack including jQuery, Swiper.js for sliders, Google Maps API for interactive location markers, Google Tag Manager for analytics, and Google reCAPTCHA v3 for form security. The site is hosted likely by Active24, with a responsive design optimized for mobile devices and good SEO practices. Cookie consent and GDPR compliance mechanisms are implemented, reflecting a mature digital infrastructure. From a security perspective, the website uses HTTPS with good SSL configuration, integrates reCAPTCHA to prevent spam, and employs cookie consent management. However, it lacks explicit security headers like CSP and security.txt for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. The site would benefit from enhanced security policies and incident response information. Overall, the website presents a professional and trustworthy front for regional tourism promotion with good content quality and technical implementation. The risk profile is low, with recommendations focusing on improving security headers, publishing security policies, and enhancing transparency around incident response and vulnerability disclosures.

P

Památník Tomáše Bati

pamatnikbata.eu

46

Památník Tomáše Bati is a cultural heritage and museum website dedicated to the memorial of Tomáš Baťa, a prominent figure in Zlín's history and architecture. The site targets visitors interested in architecture, history, and cultural tourism, offering guided tours, ticket sales, and event hosting. The website is professionally designed with clear navigation, multilingual support, and strong branding consistency. Technically, it is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The domain registration is consistent with the business's Czech origin, enhancing trustworthiness. Overall, the site presents a secure, compliant, and user-friendly platform for cultural engagement.

F

Filharmonie Bohuslava Martinů

filharmonie-zlin.cz

52

Filharmonie Bohuslava Martinů is a cultural institution based in the Czech Republic, focused on delivering classical music concerts and cultural events to the local community and classical music enthusiasts. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies such as Google Tag Manager and Font Awesome, with HTTPS enabled, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data due to privacy protection limits the ability to fully verify domain ownership and legitimacy. Overall, the security posture is moderate with room for improvement in privacy policies and security best practices. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

S

Statutární město Zlín

zlin.eu

66

The website https://zlin.eu/ serves as the official online presence of the statutory city of Zlín in the Czech Republic. It provides comprehensive information about the city's administration, culture, events, public services, and citizen engagement platforms. The site targets residents, local businesses, and visitors, offering services such as an official citizen portal, public notices, event calendars, and contact information for municipal departments. The business model is that of a government entity providing transparent and accessible information and services to its constituents. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Google Tag Manager, Google reCAPTCHA, OneSignal push notifications, and various UI libraries such as Slick Carousel and SweetAlert2. It is hosted by Media4web, s.r.o., a Czech hosting provider. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured navigation. Cookie consent and privacy policies are implemented with high confidence in GDPR compliance. From a security perspective, the site enforces HTTPS with a Content Security Policy header and uses Google reCAPTCHA to protect forms. While no critical vulnerabilities or exposed sensitive data were detected, additional security headers could enhance protection. There is no explicit security incident response or vulnerability disclosure information published, which could be improved to strengthen trust and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively serves its role as a municipal information hub with a strong digital presence. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clear incident response contacts to further improve security posture and stakeholder confidence.

D

Drukzo

helloprint.be

71

Drukzo is an established online printing service provider targeting the Belgian market, offering a wide range of print products such as flyers, brochures, banners, and stickers. The company positions itself as a cost-effective and quality-focused print shop, leveraging e-commerce to reach both consumers and businesses. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site employs modern web technologies including Vue.js, Algolia search, and integrates multiple analytics and marketing tools such as Google Analytics, Segment, and Convert Experiments. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and standard security headers, although explicit security and incident response policies are not publicly available. WHOIS data is restricted due to DNS Belgium policies, which is typical for .be domains, but the overall trust indicators and business presence suggest legitimacy. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent management. Overall, Drukzo demonstrates a mature digital presence suitable for its business model, with room for improvement in transparency of security policies and direct contact information.

C

Clinton Foundation

clintonfoundation.org

63

The Clinton Foundation is a large, well-established non-profit organization focused on philanthropic programs that address economic opportunity, public health, climate change, and leadership development. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The technical infrastructure is modern, leveraging WordPress CMS with advanced analytics and marketing tools, supported by Cloudflare for security and performance. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site presents a trustworthy and professional image aligned with the organization's mission.

N

Nextiva

nextiva.com

76

Nextiva is a well-established technology company founded in 2006, specializing in unified customer experience management platforms. Their offerings include business phone services, team communications, and AI-powered contact center solutions, targeting businesses seeking integrated communication tools. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response details are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness, though the absence of WHOIS data slightly reduces domain trust.

P

Peters Surgical

peters-surgical.com

48

Peters Surgical is a French-based medical device company specializing in the design, manufacture, and distribution of surgical products such as sutures, titanium clips, and surgical glue. The company has a strong international presence with dedicated country-specific websites and was acquired in 2024 by Advanced Medical Solutions (AMS), enhancing its global footprint. The website is professionally designed using WordPress with modern technologies and provides clear information targeting healthcare professionals, partners, and job candidates. Contact details and legal information are readily available, supporting business credibility. Technically, the site uses a solid tech stack including Gravity Forms and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but could be improved by adding DNSSEC and security headers. Privacy compliance is partially met with privacy and terms pages present but lacks a cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its healthcare audience.

Z

Zlínský zámek

zlinskyzamek.cz

57

The website zlinskyzamek.cz represents a cultural and historical institution centered around the Zlínský zámek castle in the Czech Republic. It serves as an informational portal for visitors interested in cultural exhibitions, galleries, and design market events. The site is modest in scale, targeting local and regional audiences interested in heritage and cultural activities. The business model appears to be non-profit or publicly funded, supported by partnerships with local government and cultural organizations. The domain age and registration data align well with the site's purpose and location, supporting its legitimacy. Technically, the website uses a basic technology stack including jQuery 1.7.1, Google Analytics, and Google Tag Manager for tracking. The site is hosted under Czech domain registration with name servers from forpsi.net. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. Accessibility and SEO optimizations are minimal. The site does not implement modern security headers or explicit privacy and cookie policies, which limits its compliance posture. From a security perspective, the site uses HTTPS (implied by Google Analytics scripts), but no explicit security headers were detected. The use of an outdated jQuery version introduces potential vulnerabilities. No forms or user input mechanisms were found, reducing attack surface but also limiting interactivity. Privacy compliance is weak due to absence of privacy and cookie policies and no GDPR consent mechanisms. No incident response or vulnerability disclosure information is provided. Overall, the site is a basic cultural informational portal with moderate trustworthiness but limited security and privacy maturity. Strategic improvements in updating technology, implementing security best practices, and adding privacy compliance mechanisms would enhance the site's security posture and user trust.

F

FYZIO GARDEN s.r.o.

fyziogarden.cz

62

FYZIO GARDEN s.r.o. operates a specialized physiotherapy and rehabilitation center located in Zlín, Czech Republic. The company offers professional healthcare services including physiotherapy, rehabilitation, massages, and gift vouchers. The website targets local clients seeking quality body care and rehabilitation services. The business model is service-oriented with a focus on healthcare and wellness. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, Google Analytics, and a cookie consent framework. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, no CMS or hosting provider details were detected, and some security headers appear to be missing. From a security perspective, the site uses HTTPS and has a comprehensive cookie consent mechanism, indicating good privacy compliance. The absence of WHOIS data is a notable gap, reducing domain transparency and trustworthiness. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and incident response information are recommended. Overall, the website is professional and trustworthy in content and presentation, but the lack of WHOIS data and some security best practices slightly reduce its security posture and domain legitimacy score.

Z

ZM - TECH s.r.o.

hotel-tomasov.cz

53

Hotel Tomášov is a premium 4-star hospitality business located in Zlín, Czech Republic, offering luxury accommodation, wellness, restaurant services, and event hosting. The hotel leverages its historical connection to the Baťa brand and regional tourism partnerships to position itself as a boutique destination for both leisure and business travelers. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data limits domain trust verification but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving incident response visibility to strengthen trust and compliance.

Z

Zámek Wichterle

zamekwichterle.cz

44

Zámek Wichterle is a hospitality business based in the Czech Republic offering hotel accommodation and unique wellness services including a beer spa. The website presents a professional and modern design built on WordPress with the Divi theme, enhanced by SEO optimizations via Yoast and user consent management through Cookiebot. The technical infrastructure is solid with HTTPS enabled and integration of Google Tag Manager for analytics. However, the site lacks explicit privacy and terms of service policies, and no direct contact information is readily available, which may impact user trust and compliance. Security posture is moderate with SSL in place but missing security headers and vulnerability disclosure mechanisms. Overall, the business appears legitimate and consistent with its domain registration data, but improvements in compliance and security transparency are recommended.

Z

ZÁLESÍ a.s.

pohoda-luhacovice.cz

44

Wellness Hotel Pohoda is a medium-sized hospitality business located in Luhačovice, Czech Republic, offering wellness, accommodation, and family-friendly services. The hotel is positioned as a reputable regional player with strong customer ratings and partnerships with local tourism and wellness platforms. Technically, the website uses a modern tech stack including jQuery, Google Analytics, and Facebook Pixel, with a CMS likely provided by Previo. The site is well-structured, mobile-optimized, and SEO-friendly, though some accessibility and security header improvements are possible. Security posture is solid with HTTPS and secure forms, but lacks explicit security headers and a dedicated security policy. Privacy compliance is strong with a comprehensive GDPR privacy policy and cookie consent mechanism. The absence of WHOIS data reduces domain trustworthiness, but the business information and certifications support legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences.

S

Sdružení obcí mikroregionu Valašské Klobucko

valasskeklobucko.cz

48

The website valasskeklobucko.cz serves as the official online portal for the Valašské Klobucko microregion, providing comprehensive information on tourism, local traditions, events, history, nature, accommodation, and gastronomy. It targets tourists and local residents interested in exploring or learning about the region. The business model is informational and promotional, typical for a government or non-profit regional entity. The site maintains a consistent brand presence and offers social media engagement channels to extend its reach. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies including HTML5, CSS, JavaScript, and integrates Google Analytics and Tag Manager for visitor tracking. It supports mobile optimization and basic accessibility features. The site includes a cookie consent mechanism compliant with GDPR requirements, enhancing user privacy controls. From a security perspective, the site enforces HTTPS and employs cookie consent with granular options. However, it lacks visible security headers such as CSP or HSTS, and does not provide explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is moderate but could be improved with additional headers and documented policies. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing security headers, publishing security and incident response policies, and continuous monitoring of third-party scripts. These steps will enhance the site's security maturity and user trust.

L

Lázně Luhačovice, a.s.

lazneluhacovice.cz

49

Lázně Luhačovice, a.s. is a well-established spa and wellness company based in the Czech Republic, offering a broad range of medical spa treatments, wellness stays, and leisure activities. The company targets health-conscious individuals, families, and patients seeking both insurance-covered and self-paid services. Their market position is strong within the Moravian spa sector, supported by multiple certifications and positive customer reviews. Technically, the website is built on a custom CMS by Emersion Software, utilizing modern JavaScript libraries like jQuery and Splide for UI components, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS and cookie consent mechanisms, but lacks some recommended security headers and a public security policy. WHOIS data is unavailable, which slightly reduces domain trust but the overall business credibility remains high due to transparent contact information and external trust signals. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to improve trust and compliance.

M

Město Vizovice

mestovizovice.cz

51

Město Vizovice operates as the official municipal government website for the town of Vizovice in the Czech Republic. It provides residents and visitors with comprehensive information about the town, including news, events, contact details, and virtual tours. The site emphasizes community engagement and local services, positioning itself as a trusted source of municipal information. The website targets local citizens, tourists, and stakeholders interested in the town's activities and services. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and Google services such as reCAPTCHA and Tag Manager. The site is mobile-optimized, accessible, and performs moderately well. It integrates an AI chat widget to assist users, enhancing user experience. However, the CMS appears custom or based on the Nette framework, with no explicit commercial CMS detected. From a security perspective, the website uses HTTPS and Google reCAPTCHA to protect forms, but lacks published privacy and cookie policies, security headers, and incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the municipal nature of the site. Overall, the website is professional, trustworthy, and well-maintained but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

A

Amendis

amendis.ma

57

Amendis is a Moroccan utility company specializing in water and electricity distribution, wastewater treatment, and customer services. It operates under the Veolia group umbrella, indicating a strong market position in the energy sector. The website provides comprehensive information about its services, news, and career opportunities, targeting both residential and commercial customers. The digital infrastructure is built on Drupal CMS with modern privacy and cookie consent mechanisms, reflecting a mature digital presence. Security posture is good with HTTPS and security headers implemented, though there is room for improvement in publishing explicit security policies and incident response contacts. The absence of WHOIS registration data is a concern but does not negate the legitimacy suggested by the website content and corporate affiliation. Overall, the site is professional, secure, and compliant with GDPR, serving as a reliable digital front for Amendis.

P

Pracuj.pl

pracuj.pl

70

Pracuj.pl is a leading Polish job portal focused on providing job offers, employer profiles, and career advice primarily for specialists and managers in Poland and abroad. The platform offers a comprehensive set of services including job listings, employer branding, legal and tax information, and salary reports, positioning itself as a key player in the Polish recruitment market. Technically, the website leverages modern web technologies such as React and Next.js, supported by Google services for analytics and marketing, ensuring a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and follows good practices, though it lacks some advanced security headers and public security policies. The absence of WHOIS data is typical for .pl domains and does not detract from the site's legitimacy. Overall, Pracuj.pl demonstrates a mature digital presence with good business credibility and moderate privacy compliance, suitable for its market segment.

T

TruMerit

trumerit.org

57

TruMerit is a leading healthcare credential evaluation and certification organization with a global focus on nursing and allied health professionals. The company offers a comprehensive suite of services including credentials evaluation, verification, certification, and document management, targeting healthcare workers, recruiters, licensing authorities, and academic institutions worldwide. The website reflects a mature digital presence with multiple portals tailored for different user groups and a strong emphasis on research and thought leadership. Technically, the site is built on WordPress with modern analytics and marketing tools integrated, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and anti-spam measures in place, though explicit security headers could be improved. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, TruMerit presents a professional, trustworthy, and well-maintained online presence suitable for its healthcare industry role.

T

Tropical Health and Education Trust (THET)

globalhealthpartnerships.org

70

The Tropical Health and Education Trust (THET) operates as a UK-based non-profit organization dedicated to supporting health workers globally through partnerships, grant management, policy work, and volunteer programs. The website positions THET as an established entity with a clear mission and vision focused on universal health coverage and quality healthcare access worldwide. The organization targets health professionals, donors, volunteers, and policy makers, leveraging partnerships and digital transformation to advance its goals. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Hotjar, and Google reCAPTCHA for security and analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers and cookie consent mechanisms could enhance compliance and security posture. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security headers and incident response information suggests room for improvement. WHOIS data is unavailable due to privacy protection, which is common and justified for non-profits, but it slightly reduces trust signals. Overall, the website is professional, trustworthy, and well-maintained, with strong content quality and business credibility. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security policies to further strengthen compliance and user trust.

D

DAISY Foundation

daisyfoundation.org

63

DAISY Foundation is a well-established non-profit organization dedicated to recognizing nursing excellence and compassionate care. Founded in 2001, it serves healthcare professionals and organizations by providing recognition programs and educational resources. The website reflects a professional and consistent brand image aligned with its mission. Technically, the site is built on Drupal 9 and leverages modern web technologies including FontAwesome and cloud-based hosting via AWS Cloudfront. Analytics and tracking tools such as Google Analytics and Facebook Pixel are integrated, although no explicit cookie consent mechanisms or privacy policies were detected in the scanned content. Security posture is moderate with HTTPS enabled and domain locks in place, but lacks DNSSEC and visible security headers, which are recommended for enhancement. Overall, the domain registration data is consistent with the organization's claims, indicating a legitimate and credible online presence.

V

VINAŘSTVÍ OBELISK s.r.o.

vinarstviobelisk.cz

49

Winery Obelisk is a small Czech winery located in Valtice, focusing on traditional and ecological wine production inspired by classical antiquity and regional heritage. The company offers wine production, tasting, and event hosting services, targeting wine enthusiasts and event organizers. The website is built on Joomla CMS with modern web technologies and includes privacy and cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is good with HTTPS and no exposed sensitive data, though security headers and incident response info are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear professional and trustworthy. Overall, the site is suitable for mature audiences interested in wine and winery experiences.

R

Regina Schneiderová

uzmrzlinare.cz

46

U Zmrzlináře is a small local ice cream business based in Valtice, Czech Republic, operating since 2019. The website serves as an informational portal providing contact details, location, and social media links to customers. The business targets local residents and visitors seeking ice cream services. The site uses a simple technical stack including Bootstrap and Google Tag Manager for analytics, hosted by WEDOS, a Czech hosting provider. The website is basic in design and content but functional for its purpose. Security posture is minimal with no advanced headers or policies detected, and privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and consistency.

X

Xmarton

xmarton.sk

10

Xmarton is a Slovakian technology company specializing in automotive security and mobile control solutions. Their website presents a professional and consistent brand focused on helping car owners manage and secure their vehicles remotely. The business appears to be a small-sized niche player founded around 2017, with a clear target audience of car owners seeking convenience and security enhancements. Technically, the website is built on WordPress using popular plugins and frameworks, integrating modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot for consent management. The site enforces HTTPS and uses Google reCAPTCHA to secure forms, reflecting a moderate security posture. However, it lacks explicit privacy policies, terms of service, and direct contact information, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

H

Humans of UX

humansofux.com

51

Humans of UX is a community-driven project focused on mapping and surveying UX professionals in Slovakia and Czechia. The website serves as a platform to collect data on UX trends, tools, education, and work conditions in the region. It targets UX professionals and aims to provide insights into the local UX market. Technically, the site is built on Webflow CMS, hosted on Webflow's CDN, and uses common web technologies including Google Analytics and Tag Manager for tracking. The site is mobile-optimized and has a professional design with clear navigation. Security-wise, the site enforces HTTPS and uses secure form submissions to third-party email marketing services. However, it lacks visible security headers, privacy and cookie policies, and vulnerability disclosure mechanisms. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy despite the active and professional website presence. Overall, the site is functional and trustworthy for its intended audience but would benefit from improved transparency and security practices.

D

dTest, o.p.s.

dtest.cz

45

dTest, o.p.s. is a well-established Czech non-profit organization specializing in independent consumer product testing, advice, and protection of consumer rights. The website serves as a comprehensive platform offering product test results, consumer advice, subscription services, and various tools to assist consumers in making informed decisions. It holds a strong market position as the largest Czech consumer organization with over 30 years of operation. Technically, the website employs modern JavaScript libraries, integrates Google Tag Manager and Facebook SDK for analytics and marketing, and implements a GDPR-compliant cookie consent mechanism. The site is well-optimized for mobile devices and provides a professional user experience with clear navigation and rich content. Security-wise, the site uses HTTPS with good SSL configuration and basic security headers but lacks advanced security policies and incident response information. The absence of WHOIS data limits domain registration transparency but does not detract significantly from the site's credibility given its extensive content and business presence. Overall, the website demonstrates a mature digital presence with strong privacy compliance and trustworthy business practices.

ESO travel operates a professional Slovak travel agency website specializing in exotic and cultural vacations to destinations such as Thailand, China, Cuba, and the USA. The website presents a broad portfolio of travel packages including last minute and first moment offers, supported by a clear navigation structure and multilingual options. Technically, the site uses modern frameworks like Foundation and jQuery, integrates Google Analytics and Tag Manager for marketing insights, and employs a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and standard security headers present, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-maintained, and suitable for its target audience of Slovak travelers seeking exotic holidays.

G

GO parking s.r.o.

goparking.cz

10

GO parking s.r.o. operates a parking service near Prague Airport, offering customers convenient parking options with online reservation capabilities, transfer services to the airport, and additional services such as car washing and electric vehicle charging. The company targets travelers, corporate clients, and travel agencies, positioning itself as a competitive local parking provider with attractive pricing and comprehensive service offerings. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in Czech with English support. Technically, the site employs modern analytics and tracking tools, including Google Analytics, Microsoft Clarity, and Google Tag Manager, alongside reCAPTCHA v3 for bot protection and a chatbot for customer interaction. Security posture is generally good with HTTPS enforced and secure forms, though the absence of visible security headers and incident response information suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness but does not detract significantly from the overall legitimacy of the business. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving transparency around domain registration.

R

Růžový EDEN

ruzovy-eden.cz

45

Růžový EDEN is a Czech-based online florist specializing in high-quality flower bouquets, including large 100-rose arrangements, wedding decorations, and gift floral services. The company emphasizes freshness, quality, and social responsibility by donating a portion of sales to charitable organizations. The website is built on the PrestaShop platform, featuring a modern e-commerce infrastructure with responsive design and SEO-friendly structured data. Security posture is solid with HTTPS and anonymized analytics, though some security headers and explicit policies could be improved. Contact information is clearly presented, supporting customer trust and engagement. Overall, the site is professional, trustworthy, and well-positioned in the Czech retail flower market.

N

Navigo Solutions s.r.o.

navigo3.com

11

Navigo Solutions s.r.o. operates the Navigo3 platform, a comprehensive project and company management software solution primarily targeting small to large businesses in creative and project-driven industries. The website presents a professional and well-structured digital presence, offering detailed information about their software capabilities, customer testimonials, and multiple contact channels. The company has established itself since 2012, with a consistent domain registration and a clear focus on delivering SaaS solutions for project management, financial oversight, human resources, and firm-wide information systems. The platform supports multiple languages and integrates modern web technologies to enhance user experience and accessibility. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, reCAPTCHA, and GDPR compliance plugins. Hosting is provided via Amazon AWS infrastructure, ensuring reliable performance and scalability. SEO and accessibility are well addressed, with proper meta tags, structured data, and mobile optimization. The site employs cookie consent mechanisms and privacy policies aligned with GDPR requirements. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and implements cookie consent management. However, DNSSEC is not enabled, and some security headers are not explicitly detected, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found in the analysis. The domain registration is consistent with the business claims, and no suspicious patterns were detected, indicating a trustworthy and legitimate online presence. Overall, Navigo3's website demonstrates a mature digital footprint with strong business credibility, good technical implementation, and solid privacy and security practices. The site is safe for general audiences and provides a professional user experience. Strategic recommendations include enabling DNSSEC, enhancing security headers, and publishing a vulnerability disclosure policy to further strengthen security posture and trust.

H

Health Orientation Kft.

managedoc.com

55

ManageDoc is a Hungarian-based healthcare technology company offering an online medical appointment scheduling system tailored for individual practitioners and medical institutions. The platform facilitates efficient appointment management through a web-based interface and integrates with partner sites such as MeetDoc.com to enhance patient acquisition. The website is built on WordPress with Bootstrap and includes modern UI elements and tracking via Google Analytics and Tag Manager. Security posture is moderate with SSL encryption but lacks some security headers and cookie consent mechanisms. WHOIS data for the subdomain is unavailable, which is expected, but the main domain appears legitimate with consistent business information. Overall, the platform presents a professional and trustworthy service for healthcare providers in Hungary.

D

Digital Journal Inc

digitaljournal.com

65

Digital Journal Inc operates a global media platform that elevates voices in the news cycle, with a strong presence online since 1998. The website serves as a content partner and news publisher, targeting a general audience interested in world news, business, technology, entertainment, and lifestyle. The company maintains a professional brand image with consistent branding and a comprehensive content offering. Technically, the site is built on WordPress CMS, leveraging modern optimization tools such as WP Rocket and Google Tag Manager, ensuring fast performance and excellent mobile optimization. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partially met with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy and professional but could improve transparency and security practices.

Jihočeské nemocnice is a regional healthcare network serving the South Bohemian region of the Czech Republic, providing advanced medical services and efficient financial management. The website presents information about their hospitals, healthcare services, and career opportunities, targeting residents and healthcare professionals in the region. The domain is well-established since 2006, supporting the legitimacy of the organization. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies such as Google Tag Manager and CookieYes for cookie consent management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS and implements a detailed cookie consent mechanism, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Contact information is not clearly presented on the homepage. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security documentation, improved accessibility, and clearer contact details to strengthen compliance and user trust.

The World Organization of Family Doctors (WONCA) operates a comprehensive and professionally designed website serving as a global hub for family doctors and related healthcare professionals. The site offers extensive resources including membership information, conferences, clinical resources, and advocacy materials. It targets a global audience of medical professionals and member organizations, positioning itself as a leading non-profit entity in the healthcare sector. The website demonstrates strong branding consistency and high content quality, supporting its role as a trusted information source in family medicine. Technically, the website employs a mature technology stack including ASP.NET WebForms, Pegboard CMS, jQuery, and Google Analytics, ensuring a modern and responsive user experience. The site is mobile optimized and accessible, with good SEO practices and clear navigation. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and publicly available incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data for the domain introduces some uncertainty regarding domain legitimacy, although the website content and external references strongly support its authenticity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements in security header implementation and transparency around incident response would enhance its security posture and trustworthiness.

The website mo-je.cz represents a small Czech business specializing in technical SEO and online profile management services for platforms such as Firmy.cz, Mapy.cz, and Google Search. The business targets other companies seeking to improve their online visibility through sustainable SEO practices rather than paid advertising. The site is professionally designed with clear navigation and relevant content, though it lacks comprehensive privacy and cookie policies. Technically, the site uses modern web technologies including Google Tag Manager, Google Fonts, and Font Awesome icons, and appears mobile-optimized with moderate performance. Security posture is adequate but could be improved by adding security headers and formal policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and raising questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

M

MEDIBAY s.r.o.

zenske-zdravi.cz

51

The website www.zenske-zdravi.cz is a professionally designed Czech-language health information portal focused on women's health, providing expert-verified content, prevention strategies, medical advice, and community engagement features. It is operated by MEDIBAY s.r.o., a small healthcare-related entity. The site demonstrates a mature digital infrastructure with modern technologies such as Google Tag Manager, Google Analytics, reCAPTCHA v3, and a cookie consent mechanism, ensuring compliance with GDPR and user privacy standards. Security posture is strong with HTTPS enforced and secure form handling, though some security headers and explicit policies are missing. The absence of WHOIS data limits domain trust assessment, but the website content and structure indicate legitimacy and professionalism.

T

TIDI Products, LLC

tidiproducts.com

10

TIDI Products, LLC operates a professional and comprehensive website focused on medical products designed to support caregivers and protect patients. The company targets healthcare professionals and medical facilities, offering a broad range of safety and protective equipment. The website is well-branded, consistent, and provides clear contact information and resources such as blogs and product instructions. Technically, the site is built on HubSpot CMS, leveraging modern JavaScript libraries and marketing tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data for the domain is a concern, potentially indicating a registration issue, but the website content and professionalism suggest a legitimate business presence. Overall, the site scores well in content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and domain registration clarity.

C

Centros Comerciales Carrefour S.A.

carrefour.es

62

Carrefour España operates a comprehensive online retail platform specializing in a wide range of products including fresh food, electronics, home goods, and fashion. Established in 1973, it is a major player in the Spanish retail market, offering services such as home delivery and in-store pickup. The website is professionally designed with strong branding and consistent content quality, targeting a general consumer audience. Technically, the site leverages modern JavaScript frameworks, Google Tag Manager for analytics, and OneTrust for cookie consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly available. Overall, the domain registration data aligns well with the business identity, supporting the site's legitimacy and trustworthiness.

F

Fundación ONCE

fundaciononce.es

66

Fundación ONCE is a prominent Spanish non-profit organization dedicated to the social inclusion and cooperation for people with disabilities. It operates under the Grupo Social ONCE umbrella and provides a wide range of services including training, employment support, accessibility innovation, and international cooperation. The website reflects a mature and professional digital presence with comprehensive content and strong branding consistency. Technically, the site is built on Drupal CMS with modern web technologies and integrates multiple analytics and marketing tools while maintaining good privacy compliance and security posture. Security best practices such as HTTPS, security headers, and cookie consent mechanisms are implemented, although there is room for improvement in incident response transparency and vulnerability disclosure. Overall, the website is trustworthy, well-maintained, and aligned with its mission and audience.