Security Directory

T

techka s.r.o.

tomashlad.eu

45

Tomáš Hlad operates a professional web development and e-commerce service business primarily focused on custom WordPress websites and Shoptet e-shop templates. The company, techka s.r.o., holds a recognized position as a Shoptet golden partner, serving small to medium-sized businesses in the Czech Republic. The website presents a clear business model centered on tailored digital solutions and corporate identity services, supported by positive client testimonials and a professional online presence. Technically, the site leverages modern JavaScript libraries, Google Analytics, and reCAPTCHA, indicating a moderate level of digital maturity. However, some security best practices such as security headers and explicit privacy/cookie policies are missing, representing areas for improvement. Overall, the security posture is adequate but could be enhanced with better compliance and vulnerability disclosure mechanisms. The domain WHOIS data is privacy protected, which is typical for small businesses, and no suspicious patterns were detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and improving accessibility compliance to strengthen trust and regulatory adherence.

C

Campus France

campusfrance.org

59

Campus France is the official French government agency dedicated to promoting higher education and research opportunities in France to international students and researchers. The website serves as a comprehensive portal offering detailed information on study programs, research initiatives, scholarships, visa procedures, and student life in France. It targets international students, researchers, and institutional partners, positioning itself as a key facilitator of academic mobility and cooperation. Technically, the website is built on Drupal 10, leveraging modern web technologies such as jQuery UI and cookie consent management via tarteaucitron. The site is well-structured, mobile-optimized, and incorporates accessibility and SEO best practices. It integrates multimedia content including videos and interactive maps, enhancing user engagement. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and shows indications of standard security headers, although some headers could be explicitly verified or enhanced. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned policies and user consent management. Overall, Campus France's website demonstrates a high level of professionalism, trustworthiness, and technical maturity, supporting its mission as a government-backed educational promotion entity. The lack of WHOIS registrant details is typical for such domains and does not detract from its legitimacy. Strategic recommendations include enhancing explicit security headers and continuous monitoring of third-party scripts.

S

Střední odborná škola a Střední odborné učiliště, Kaplice

geukaplice.cz

48

The website represents Střední odborná škola a Střední odborné učiliště, Kaplice, a Czech secondary vocational school providing a variety of educational programs including maturitní obory and učební obory. It targets prospective and current students, offering detailed information about courses, events, and school services. The site is well-structured with clear navigation and a professional design, supporting its educational mission effectively. Technically, the site uses modern JavaScript libraries such as jQuery, Flatpickr, and Tippy.js, and is built on the Nette PHP framework. It employs HTTPS and Google reCAPTCHA for security, though some security headers are not visibly set in the HTML source. Privacy and cookie policies are present but lack an explicit consent mechanism. The absence of WHOIS data reduces domain trustworthiness, but the website content and social media presence support its legitimacy as an educational institution.

S

Storck Canada

toffifee.ca

63

The website www.toffifee.ca represents the Canadian online presence of the Toffifee confectionery brand, owned by Storck. It provides product information, brand history, and consumer engagement content targeted at Canadian customers. The site is built on TYPO3 CMS and uses modern JavaScript libraries and Piwik PRO for analytics. The website is well-designed, mobile-optimized, and provides clear navigation and relevant content. Privacy and cookie policies are present and GDPR compliant, with a cookie consent mechanism implemented. However, no direct company contact emails or phone numbers are found on the homepage, only a contact form. The WHOIS data for the domain is unavailable, which limits the ability to verify domain registration legitimacy and age, but the website content aligns with the known brand, mitigating some concerns. Security posture is good with HTTPS enforced and no exposed sensitive data, though additional security headers and explicit security policies could improve the security maturity.

D

DK Akord Ostrava

dk-akord.cz

48

DK Akord Ostrava is a cultural and community center located in Ostrava-Zábřeh, Czech Republic, offering a wide range of cultural events including concerts, theater performances, and educational courses. The organization serves the general public interested in cultural and educational activities and operates a venue rental service, restaurant, and ticket sales platform. The website reflects a medium-sized regional cultural hub with consistent branding and good content quality. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Yandex Metrika, and Facebook Pixel. The site is mobile-optimized and SEO-friendly, providing a good user experience.

M

Miska náramky

naramkymiska.cz

56

Náramky Miska is a Czech Republic based small e-commerce retailer specializing in handcrafted bracelets and gift jewelry. The website offers a variety of products including cord, bead, silver, gold, and steel bracelets, with a focus on symbolic and personalized designs. The business targets consumers looking for meaningful and quality jewelry gifts. Technically, the website is built on the Shoptet CMS platform and uses a range of modern web technologies and tracking tools such as Google Analytics, Facebook SDK, and Microsoft Clarity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though some improvements could be made by updating outdated libraries and adding explicit security headers. WHOIS data is not publicly available, likely due to privacy protection, which is common for small e-commerce businesses. Overall, the website appears legitimate and trustworthy with moderate risk and good compliance with privacy regulations.

N

Nářadí Šátek

naradisatek.cz

55

Nářadí Šátek is a Czech Republic-based professional e-commerce retailer specializing in high-quality tools and equipment for professionals, craftsmen, and home DIY enthusiasts. The company offers a wide range of products including battery-powered and electric tools, garden and forest machinery, welders, and accessories from renowned brands such as Milwaukee, Husqvarna, Stihl, and Seco. They provide both warranty and post-warranty service, supported by a physical store and regular promotional events. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site leverages the Shoptet e-commerce platform, integrates modern tracking and marketing tools like Google Analytics, Microsoft Clarity, and Facebook SDK, and employs cookie consent mechanisms to comply with privacy regulations. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers could be improved. No WHOIS data is available, likely due to privacy protection, which is typical for retail businesses. Overall, the site is trustworthy, compliant, and professionally maintained.

I

iocel.sk

iocel.sk

58

iocel.sk is a Slovak-based e-commerce retailer specializing in silver, surgical steel, and costume jewelry. The website offers a wide range of products including earrings, necklaces, bracelets, rings, and personalized jewelry items. The business targets general consumers interested in stylish and affordable jewelry with added services such as gift packaging and express delivery. The site is well-positioned in the Slovak market with a professional online presence and clear customer support channels. Technically, the website leverages the Shoptet e-commerce platform, integrates modern analytics and marketing tools, and maintains good performance and mobile optimization. Security posture is strong with HTTPS, cookie consent, and secure form handling, although a dedicated security policy and incident response contacts are not published. Overall, the website is trustworthy, compliant with GDPR, and safe for general audiences.

P

PlenkyLevně.cz

plenkylevne.cz

58

PlenkyLevně.cz is a Czech Republic-based e-commerce retailer specializing in baby diapers, particularly the Dada brand, along with related baby care products such as wet wipes and monthly diaper packs. The website targets parents and caregivers seeking affordable and convenient baby care solutions. The business operates a niche online retail model with a clear focus on product variety by size and type, supported by a professional and user-friendly website. The site demonstrates compliance with GDPR and includes standard e-commerce features such as customer support contacts and cookie consent mechanisms. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, Facebook SDK, and other marketing and tracking tools. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and CSRF protections on forms, but could benefit from additional HTTP security headers. Overall, the website presents a trustworthy and professional online retail presence with no signs of blocking or WAF interference. The lack of WHOIS data due to privacy protection is common and does not detract from the site's legitimacy. Strategic recommendations include improving security headers and accessibility compliance to further strengthen the site's security and user experience.

2

2din.cz s.r.o.

2din.cz

50

2din.cz s.r.o. is a Czech Republic-based company specializing in professional car audio upgrades and vehicle soundproofing services. The company operates an e-commerce platform offering a wide range of automotive audio products including speakers, subwoofers, amplifiers, and accessories, complemented by professional installation and diagnostic coding services. The website targets car owners and automotive enthusiasts primarily in the Czech market, positioning itself as a trusted local specialist with over a decade of experience and thousands of installations. Technically, the website is built on the Shoptet e-commerce platform and utilizes modern web technologies such as jQuery, Bootstrap Icons, Slick Carousel, and integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. The presence of cookie consent mechanisms and a comprehensive privacy policy indicates a good level of GDPR compliance. From a security perspective, the site enforces HTTPS and implements standard security best practices such as CSRF tokens in forms and cookie consent. However, it lacks a publicly available security policy or incident response information, and no vulnerability disclosure or security.txt file was found. The absence of WHOIS data for the domain is a notable gap, slightly reducing trustworthiness, although the website content and business information appear legitimate and professional. Overall, 2din.cz presents a solid business and technical profile with good security hygiene and privacy compliance. The main risk areas include the missing WHOIS data and lack of explicit security policies. Strategic recommendations include publishing security and incident response policies, implementing vulnerability disclosure mechanisms, enhancing accessibility, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

H

Haky

haky.sk

50

Haky is a Slovak-based e-commerce retailer specializing in packaging materials and office supplies. The website offers a broad catalog of products including boxes, films, tapes, bags, envelopes, and labels, targeting businesses and individuals in Slovakia and the Czech Republic. The company emphasizes fast shipping and custom production services, positioning itself as a convenient one-stop shop for packaging needs. Technically, the website is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates a professional and trustworthy online presence with moderate tracking and advertising integrations.

Scènes de Pays is a regional cultural event platform operated as a service of Mauges Communauté in France. It focuses on programming theatrical and cultural events for the general public, families, and schools, positioning itself as a key regional promoter of cultural activities. The website provides comprehensive event information, ticketing links, and practical guides, supporting community engagement and cultural participation. Technically, the site is built on WordPress using the Divi theme, enhanced with accessibility features, SEO optimizations, and a cookie consent mechanism compliant with GDPR. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though the site lacks a dedicated security policy or incident response contact. WHOIS data is privacy protected, typical for French domains, and the domain appears legitimate and consistent with the business. Overall, the website is professional, user-friendly, and trustworthy, serving its community-oriented mission effectively.

F

Fondation Terre Solidaire

fondation-terresolidaire.org

56

Fondation Terre Solidaire is a French non-profit organization founded in 2016, dedicated to accelerating ecological and solidarity transitions by funding and supporting concrete projects. The foundation targets individuals, associations, and companies interested in contributing to ecological causes, leveraging donations and partnerships to finance impactful initiatives. The website is professionally designed, well-structured, and provides clear information about the foundation's mission, projects, and ways to engage. Technically, the site is built on WordPress with Elementor and Yoast SEO, hosted by OVH sas, and uses modern analytics and marketing tools with a cookie consent mechanism. Security posture is good with HTTPS enabled and domain registration protections, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are published. Overall, the website is trustworthy, compliant with GDPR, and effectively communicates its mission and services.

R

Réseau Canopé / eTwinning France

etwinning.fr

62

eTwinning.fr is a professionally maintained educational support website operated under the auspices of Réseau Canopé and linked to the French Ministry of Education and Erasmus+. It serves as a community and resource hub for European schools and teachers to collaborate on educational projects. The site offers training, project management tools, and recognition programs to enhance educational collaboration across Europe. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain registration trust verification, but the site’s official affiliations and professional presentation indicate legitimacy. Overall, the site is a high-quality, trustworthy resource for its target audience.

Shopťák.cz, operated by techka s.r.o. and Tomáš Hlad, is a specialized service provider focused on creating and customizing Shoptet e-commerce templates tailored for the Czech and Slovak markets. The company positions itself as a gold partner of Shoptet, boasting a significant client base utilizing their designs and add-ons. Their services emphasize UX/UI improvements and bespoke solutions beyond standard Shoptet offerings. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and AOS for animations, alongside Google Tag Manager and Facebook Pixel for analytics and marketing. The site is well-structured, mobile-optimized, and uses HTTPS, but lacks some security headers and formal privacy documentation. Security posture is moderate with room for improvement in headers and policy transparency. The absence of WHOIS data reduces domain trust, though the business information and client testimonials strongly support legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security disclosures.

M

Mister Mix Dog

mistermixdog.cz

58

Mister Mix Dog is a Czech-based e-commerce business specializing in premium cold-pressed dog food and natural supplements. The company targets dog owners seeking high-quality nutrition products tailored to various dog life stages and health needs. The website demonstrates a professional and consistent brand presence with clear navigation and comprehensive product offerings. Technically, the site leverages modern web technologies and the Shoptet e-commerce platform, providing a responsive and user-friendly experience. Security posture is solid with HTTPS, security headers, and consent mechanisms, though the absence of a published security policy and incident response details suggests room for improvement. The lack of WHOIS data for the domain is a notable concern for domain legitimacy verification but does not detract from the apparent business authenticity. Overall, the site is well-positioned in its niche with good privacy compliance and marketing integration.

B

BROKER VISION s.r.o.

pojistenata.cz

9

POJIŠTĚŇATA.cz is a Czech Republic-based insurance brokerage specializing in health insurance for domestic pets, primarily dogs. The company operates under BROKER VISION s.r.o., providing tailored insurance products with flexible options such as choice of veterinarian and travel insurance for pets. The website demonstrates a solid market position within the niche pet insurance sector, leveraging partnerships with established insurers like Generali Česká pojišťovna and Česká podnikatelská pojišťovna. The business targets pet owners seeking comprehensive health coverage for their animals, emphasizing ease of claims and customer service.

P

PsiTrenink.cz – Robert Zlocha

psitrenink.cz

56

PsiTrenink.cz, led by Robert Zlocha, is a professional dog training service based in Prague, Czech Republic, offering both in-person and online training courses. The business emphasizes modern, ethical training methods without physical punishment, targeting dog owners who want to improve communication and obedience with their pets. The website demonstrates a strong market position supported by extensive experience, media presence, and a comprehensive service offering including individual lessons, puppy training, and dog sports.

M

M. G. C. Trade, s. r. o.

mountain-gorilla.cz

53

Mountain Gorilla Coffee is a Czech-based specialty coffee and chocolate e-commerce retailer focused on high-quality products sourced from East Africa, particularly Uganda. The company integrates social responsibility by contributing a portion of sales to mountain gorilla conservation efforts. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and comprehensive product information. The business targets coffee enthusiasts who value quality and social impact. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and integrates multiple analytics and marketing tools with user consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA usage, though it lacks some advanced security headers and explicit incident response contacts. The absence of WHOIS data reduces domain transparency but does not detract significantly from the overall trustworthiness given the professional presentation and business legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving accessibility compliance.

S

Storck Nederland B.V.

werthers-original.nl

66

Werther's Original is a well-established confectionery brand specializing in caramel products such as creamy caramels, soft toffees, caramel popcorn, and sugar-free variants. The website serves as a brand and product showcase with recipe ideas and company history, targeting general consumers interested in caramel sweets. The brand is part of Storck, a recognized confectionery company, and maintains consistent branding and professional content presentation. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is moderate with HTTPS usage and cookie consent but lacks explicit security policies or incident response information. Overall, the site is trustworthy, well-structured, and provides a positive user experience.

P

Paris&Co

parisdelinnovation.fr

38

Le Paris de l'Innovation is an annual innovation event organized by Paris&Co and the City of Paris, held at the Hôtel de Ville. It serves as a major networking and business development platform for startups, investors, public institutions, and large companies focused on ecological, environmental, and social transition. The event offers startup meetups, demo spaces, conferences, workshops, and incubator networking opportunities. The website is professionally designed using WordPress with modern technologies and SEO best practices, providing good user experience and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly reduces domain trust, but the official partnerships and event details support legitimacy. Overall, the website is a credible and well-maintained platform for innovation stakeholders in Paris.

S

Storck Nederland B.V.

toffifee.nl

64

The website www.toffifee.nl is the official Dutch site for the Toffifee confectionery brand, owned by Storck Nederland B.V. It serves as a marketing and consumer engagement platform showcasing product information, recipes, and brand history. The site targets general consumers in the Netherlands with a focus on retail confectionery products. Technically, the site is built on TYPO3 CMS and uses modern JavaScript libraries such as RequireJS, jQuery, and Lodash, with a moderate performance profile and good mobile optimization. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the site is professional, trustworthy, and well-branded, with no signs of malicious or suspicious activity.

F

Festival des Pains

festivaldespains.com

49

Festival des Pains is a French artisan bakery brand that offers a wide range of bakery products including breads, baguettes, and specialty items. The company supports professional bakers through training programs, commercial opportunities, and partnerships with regional mills. The website is professionally designed, mobile-optimized, and provides rich content including multimedia and testimonials, targeting both professional bakers and general consumers interested in artisan bread. The business operates primarily in the retail and manufacturing sectors within France, positioning itself as a regional leader with a network of 26 mills.

Gastronome Professionnels is a French cooperative-backed brand specializing in poultry products and solutions for professionals in the food service and agro-food industries. Established in 2011, it offers a broad range of multi-species poultry products tailored to various professional needs, including ready-to-cook and custom-developed solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting B2B customers. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain raises concerns about domain registration transparency, slightly impacting trustworthiness. Overall, the site is professional and trustworthy from a content and technical perspective but would benefit from enhanced security disclosures and direct contact information.

M

Mooj ! Le réseau Mobilités de Mauges Communauté

mooj.fr

51

Mooj ! Le réseau Mobilités de Mauges Communauté is a regional public transportation service operated by the local community of Mauges Communauté in France. The website serves as an information portal for residents and commuters, offering details on regular bus lines, school transport, transport on demand, train connections, carpooling, and electric bike rental and purchase aid. The service is positioned as a key regional mobility provider, supporting sustainable and accessible transportation options for the community. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins such as Yoast SEO, Matomo Analytics, and MailPoet for marketing. The site demonstrates good digital maturity with responsive design, accessibility features, and SEO optimization. Performance is moderate, with common libraries like jQuery and Slick Carousel used for UI components. From a security perspective, the site enforces HTTPS, implements standard security headers, and includes a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy page, vulnerability disclosure, and incident response contact information, which are recommended for enhanced trust and compliance. Overall, the website is professional, trustworthy, and well-aligned with its public service mission. The absence of WHOIS data due to privacy protection is not unusual for such entities and does not detract from the site's legitimacy. Strategic recommendations include publishing security policies and improving transparency around incident response to further strengthen security posture and user trust.

D

Dominik Martini

dmartini.cz

58

Dominik Martini operates a specialized e-commerce service business focused on the Shoptet platform, offering custom e-shop modifications, add-ons, and performance improvements. The company holds a certified partnership with Shoptet and maintains a strong reputation supported by over 346 verified customer reviews with perfect ratings. The website is professionally designed, mobile-optimized, and provides clear contact information, reinforcing its credibility in the Czech e-commerce market. Technically, the site employs modern web technologies including jQuery, Slick Carousel, AOS animations, and integrates analytics tools such as Microsoft Clarity and Google Analytics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are absent, representing areas for improvement. Overall, the business demonstrates a mature digital presence with a focus on customer satisfaction and technical excellence.

D

Dolní oblast VÍTKOVICE, z.s.

dolnivitkovice.cz

53

Dolní oblast VÍTKOVICE, z.s. operates a unique industrial heritage site in the Czech Republic, transformed into a cultural, educational, and social center with international reach. The website offers extensive information about events, tours, educational programs, and venue rentals, targeting tourists, schools, and cultural visitors. The business model is non-profit and focuses on preserving and promoting industrial heritage through diverse services including e-commerce for tickets and gift vouchers. Technically, the website is built on WordPress with modern plugins and technologies, ensuring good SEO, mobile responsiveness, and user experience. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern but does not detract from the site's legitimacy given its active content and social presence. Overall, the site is professional, trustworthy, and compliant with GDPR regulations.

D

DK Poklad Ostrava

dkpoklad.cz

49

DK Poklad Ostrava is a well-established cultural and social center located in Ostrava-Poruba, Czech Republic, founded in 2004. The organization offers a diverse range of services including cultural performances, congresses, seminars, workshops, cinema, venue rentals, and restaurant services. It targets a broad audience interested in cultural and social events, positioning itself as a key regional player in the hospitality and media sectors. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is good with HTTPS and secure forms, though some security headers could be improved. Privacy compliance is strong, featuring GDPR-compliant policies and cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and serves its community effectively.

S

Storck

werthers-original.es

62

Werther’s Original España is a regional brand website operated under the parent company Storck, focusing on marketing and presenting their caramel confectionery products to the Spanish market. The site offers product information, brand history, and recipe ideas, targeting general consumers interested in quality caramel sweets. The website is built on TYPO3 CMS with modern JavaScript libraries and includes internationalization support via hreflang tags for multiple countries. Privacy compliance is well addressed with a cookie consent banner and a comprehensive privacy policy. However, direct contact information and explicit security policies are not published, which could be improved. The WHOIS data is unavailable due to query restrictions, but the domain and website content align with the brand's legitimacy. Overall, the site demonstrates good technical maturity and business credibility with moderate security posture.

I

Institut Agro Alumni

institut-agro-alumni.fr

46

Institut Agro Alumni operates as a dedicated alumni community platform for graduates of Institut Agro schools in France. The website offers a range of services including networking, career support, event organization, and publication of a magazine. It targets alumni and professionals connected to the agricultural and educational sectors, positioning itself as a niche but important community resource. The platform integrates modern web technologies and provides a mobile-friendly experience, including a dedicated mobile app. Security measures such as HTTPS, CSRF tokens, and hCaptcha are implemented, alongside GDPR-compliant cookie consent mechanisms. Contact information and social media presence enhance trust and accessibility.

A

Aptalumni

aptalumni.org

48

Aptalumni is a well-established alumni association serving graduates of AgroParisTech, a prestigious French engineering school. The website provides a comprehensive platform for alumni networking, career services, events, solidarity initiatives, and publications. It targets AgroParisTech alumni and professionals connected to the institution, offering membership benefits and community engagement. The site is professionally designed with consistent branding and clear navigation, supporting a medium-sized organization in the education and non-profit sectors based in France. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, SweetAlert, and hCaptcha for security. It uses a specialized CMS likely based on NetAssoc. The site is mobile-optimized and includes accessibility and SEO best practices. Privacy and cookie policies are well implemented with GDPR compliance, including a consent banner managed by tarteaucitron. Analytics and error tracking are handled via Google Analytics and Raygun. Security posture is strong with HTTPS enforced, CSRF protection on forms, and bot mitigation via hCaptcha. However, security headers are not visibly configured, and no explicit security or incident response policies are published. WHOIS data is unavailable due to a malformed response, but the website's professionalism and content quality indicate legitimacy. No suspicious or malicious indicators were found. Overall, the site presents a low-risk profile with good privacy and security hygiene, serving an important educational community. Strategic improvements include adding security headers, publishing a security policy, and enhancing incident response transparency.

M

Mauges Communauté

maugescommunaute.fr

48

Mauges Communauté is a French local government community of agglomeration providing a broad range of public services and information to residents and stakeholders within the Mauges territory. The website serves as an official portal offering details on governance, environmental initiatives, economic development, cultural activities, and citizen participation. It targets local residents and public sector stakeholders, positioning itself as a key regional authority. Technically, the site is built on WordPress using the Divi theme, incorporating modern JavaScript libraries and Matomo analytics for user tracking. The site demonstrates good mobile optimization and SEO practices, though some accessibility features are basic. Security posture is solid with HTTPS enforced and use of security plugins, but lacks visible security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain appears legitimate despite missing WHOIS data, consistent with privacy protection norms for government domains. Strategic improvements in security headers, privacy mechanisms, and transparency would enhance trust and compliance.

S

Shift4Shop

3dcart.com

72

Shift4Shop is a comprehensive SaaS eCommerce platform offering a turnkey solution for businesses to build and grow online stores. The platform provides a rich set of features including a website builder, product and order management, marketing tools, integrated payment processing with PCI compliance, and fraud protection. It targets a broad audience of eCommerce businesses seeking a premium yet affordable solution. Technically, the website employs modern analytics and marketing technologies such as Google Analytics, Facebook Pixel, and OneTrust for privacy management, and is optimized for mobile and SEO. Security posture is strong with PCI certification and fraud protection, though explicit security headers and public security policies are not evident. The WHOIS data is missing or unavailable, which slightly reduces domain trustworthiness. Overall, the website is professional, secure, and well-positioned in the eCommerce market.

H

Hudební divadlo Karlín

hdk.cz

55

Hudební divadlo Karlín is a musical theater company based in Prague, Czech Republic, offering a variety of theatrical performances and cultural events. The website serves as a platform for event information, ticket sales, and e-commerce related to the theater's offerings. It targets a general audience interested in musical theater and cultural activities. The business model revolves around ticket sales, merchandise, and educational programs. The site is well-branded and consistent, reflecting a medium-sized cultural institution with a solid local presence. Technically, the website employs modern web technologies including Bootstrap, jQuery, and various third-party libraries for UI components and tracking. It uses HTTPS and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and event listings. From a security perspective, the site uses HTTPS but lacks explicit security headers and a published security policy or incident response contacts. The absence of WHOIS data for the domain reduces trust and raises questions about domain registration legitimacy. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the security posture is moderate but could be improved with better transparency and technical controls. The overall risk is moderate; the site appears legitimate and functional but would benefit from enhanced privacy disclosures, security headers, and verified domain registration information to increase trust and compliance.

F

Frisör Klier správní s.r.o.

klier.cz

62

Frisör Klier správní s.r.o. operates the largest network of hair salons in the Czech Republic, catering to both men and women with professional hairdressing services and premium hair care products. The company maintains a strong market position as a leading retail service provider in the hair care industry, supported by an e-commerce platform for product sales. Their website reflects a professional and consistent brand image, targeting a broad audience seeking quality hair care solutions. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and the Nette Framework, ensuring a robust digital presence with moderate performance and good mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and an active cookie consent mechanism, demonstrating adherence to GDPR requirements. However, the absence of WHOIS registration data and visible security headers slightly detracts from the overall trustworthiness. No direct contact phone numbers or physical addresses were found on the homepage, though a professional contact email is provided. Overall, the website is secure, user-friendly, and business credible, with room for improvement in transparency and security hardening.

S

Storck

toffifee.hu

62

The website www.toffifee.hu is a professionally designed brand marketing site for Toffifee confectionery products targeted at the Hungarian market. It is owned and operated by Storck, a well-established confectionery company. The site provides product information, brand storytelling, and consumer engagement features, with clear navigation and mobile optimization. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries, ensuring a moderate to good performance and SEO optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers are not explicitly detected. Privacy compliance is good, with accessible privacy and cookie policies in Hungarian. No direct contact emails or phone numbers are visible on the homepage, but a contact form is available on a dedicated page. WHOIS data confirms domain legitimacy and consistency with the brand identity. Overall, the site is trustworthy, safe, and professionally maintained.

S

Storck

werthers-original.pl

62

Werther's Original Poland website represents a well-established confectionery brand under the parent company Storck. The site offers product information and brand storytelling focused on caramel sweets, targeting a general audience in Poland. The business model is retail-oriented, emphasizing product promotion and brand engagement. The website is professionally designed with consistent branding and good content quality, supporting a positive market position within the confectionery sector. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries such as RequireJS, jQuery, and Lodash. It includes responsive design elements and SEO-friendly metadata. The site performance is moderate, with good mobile optimization but basic accessibility features. Analytics are implemented via Piwik PRO with a cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site uses HTTPS (implied by canonical URLs) and has implemented cookie consent banners. However, explicit security headers and policies are not evident, and no incident response or vulnerability disclosure information is published. WHOIS data is not publicly available, indicating privacy protection, which is reasonable for this business type but slightly reduces transparency. Overall, the website presents a trustworthy and professional digital presence with moderate security posture and good privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could enhance the site's security and user trust further.

S

Storck

toffifee.pl

61

The website www.toffifee.pl is a professionally designed brand site for Toffifee confectionery products in Poland, operated under the parent company Storck. It provides product information, promotional content, and brand engagement primarily targeting Polish consumers interested in sweets. The site uses TYPO3 CMS and modern JavaScript libraries, ensuring a good user experience with mobile optimization and clear navigation. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented via a cookie notice. Security posture is moderate, with no visible security headers and no explicit incident response contacts, but no critical vulnerabilities or exposed sensitive data were found. The domain WHOIS data is not publicly available, typical for .pl domains, but the website's professional presentation and linkage to Storck indicate legitimacy. Overall, the site scores well on content quality, business credibility, and privacy compliance, with room for improvement in security best practices and transparency.

T

TotalEnergies

totalenergies.be

60

TotalEnergies Belgium operates a professional and comprehensive website offering electricity and natural gas supply services to individuals, SMEs, and large enterprises. The company positions itself as a major energy supplier with a focus on competitive pricing, renewable energy options, and customer-centric services including mobile app management and expert support. The website is well-structured, multilingual, and integrates modern web technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident through detailed policies and cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected, indicating a trustworthy and reliable online presence.

M

My Somfy Showroom

mysomfyshowroom.co.uk

48

My Somfy Showroom is a specialized digital platform showcasing Somfy motorized window treatment products and smart home integration solutions. The website targets Somfy customers, home automation enthusiasts, and Somfy experts, providing interactive product galleries, educational content, and resource downloads. The business operates primarily in the UK market and was established in 2022, reflecting a focused niche showroom model. Technically, the site employs AngularJS, jQuery, Bootstrap, and modern JavaScript libraries to deliver an interactive and mobile-optimized user experience. While the site uses HTTPS and DNSSEC for domain security, it lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The login and password reset forms indicate controlled access for Somfy experts, but no explicit contact information or incident response channels are provided. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security best practices.

A

Alterna énergie

alterna-energie.fr

65

Alterna énergie is a French energy company specializing in the supply and production of green, local, and low-carbon electricity and biogas for both residential and professional customers. The company emphasizes local renewable energy production through a network of over 330 farms and offers transparent, fixed-price contracts with certifications such as VertVolt and Service France Garanti. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools, reflecting a mature digital presence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment but does not detract significantly from the company's credibility given the strong business indicators and certifications.

M

moulin-de-la-bree

moulin-de-la-bree.fr

37

The Moulin de La Brée is a recently established cultural museum located on the Ile d'Oléron, France, dedicated to preserving and showcasing the island's cereal traditions and historic windmills. The museum offers interactive exhibits, guided visits, workshops, and an on-site restaurant, targeting families, school groups, and tourists including those with disabilities. The website reflects a professional and consistent brand presence, supported by certifications such as 'Tourisme et Handicap' and 'Famille Plus', and positive customer reviews. Technically, the site is built on WordPress with modern plugins and frameworks, hosted by OVH, and incorporates privacy-respecting analytics and cookie consent mechanisms. Security posture is good with HTTPS and reCAPTCHA, though explicit security headers and a formal security policy are absent. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

M

maison-eco-paysanne

maison-eco-paysanne.fr

41

La Maison éco-paysanne is a cultural and educational establishment located on the Île d'Oléron, France, managed by the local community of communes. It focuses on traditional architecture, sustainable habitat, and eco-citizenship, offering guided visits, workshops, events, and eco-construction training to a broad audience including families, schools, and groups. The website reflects a well-maintained digital presence with clear branding and comprehensive content that supports its mission. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and consent management, though some security headers could be improved. Privacy compliance is well addressed with visible policies and consent mechanisms. The absence of WHOIS data limits domain trust assessment but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular updates to plugins and CMS.

L

Le Port des Salines

port-des-salines.fr

40

Le Port des Salines is a regional tourism and cultural heritage site located on the Île d'Oléron in France. It offers visitors a rich experience centered around the traditional salt marshes, including an ecomuseum, guided tours, boat rides, educational workshops, and group activities. The website is well-structured and provides clear contact information, social media presence, and detailed descriptions of services, targeting tourists, families, and educational groups. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user engagement, showing a moderate to good level of digital maturity. Security measures include HTTPS and Google reCAPTCHA, though some security headers are missing and no explicit incident response information is provided. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable source for visitors interested in the natural and cultural heritage of the region.

C

Centre aquatique Iléo

centreaquatiqueileo.com

61

Centre aquatique Iléo is a regional aquatic and wellness center located on Île d'Oléron, France, offering indoor pools, wellness spa facilities, fitness areas, and a seasonal outdoor aquatic park. Founded in 2021, it targets families, tourists, and fitness enthusiasts with a comprehensive range of aquatic and wellness services. The website is professionally designed, content-rich, and provides clear contact and business information, supporting a trustworthy online presence. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and reCAPTCHA v3, hosted by OVH sas, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and bot protection, but lacks DNSSEC and explicit security headers. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is reliable and well-positioned in its market niche.

S

Storck

dickmanns.de

10

Dickmann’s is a well-established German confectionery brand specializing in chocolate-coated marshmallow treats and related products. The website serves as a marketing and informational platform offering product details, recipes, promotions, and links to partner sites. It is part of the larger Storck group, indicating a strong market position in the retail confectionery sector. The site targets general consumers in Germany with family-friendly content and seasonal campaigns. Technically, the website employs modern JavaScript libraries such as RequireJS, jQuery, and Lodash, and integrates Piwik PRO for analytics. The site is mobile-optimized with good design and navigation, although accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates good business credibility and privacy compliance, though it could improve transparency around security and incident response. The domain appears legitimate and professionally managed, consistent with the brand’s reputation.

S

Storck

knoppers.com

63

Knoppers.com is the official website for the Knoppers brand, a confectionery product line under the Storck company. The site provides product information about their milk-hazelnut wafers and various bars, targeting general consumers seeking tasty snack options. The website is multilingual and links to country-specific domains, indicating a broad international presence. Technically, the site uses modern JavaScript libraries such as RequireJS, jQuery, and Bootstrap, and employs Piwik PRO for analytics, reflecting moderate digital maturity. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible security headers and explicit incident response or vulnerability disclosure information. The absence of WHOIS data for the domain is a notable anomaly, though the website content and branding align with the reputable Storck company, suggesting legitimacy. Overall, the site is professionally designed, user-friendly, and compliant with privacy regulations, but could improve security posture and transparency.

A

Akademie klasické homeopatie, spol. s r.o.

budtezdravi.cz

50

The website www.budtezdravi.cz represents Akademie klasické homeopatie, a small Czech healthcare and education entity specializing in classical homeopathy. The site offers homeopathic consultation, education, and product sales, targeting patients and students interested in natural health solutions. The business appears established with a professional online presence, including social media and newsletter engagement. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA, providing a responsive and user-friendly experience. However, the absence of WHOIS data and explicit privacy or terms of service pages slightly detracts from its trustworthiness. Security practices include cookie consent and CAPTCHA integration, but lack visible HTTP security headers and detailed security policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security hardening.

N

Nová Večerní Praha

sport19.cz

56

SPORT19 is a Czech-language online sports magazine operated by Nová Večerní Praha, focusing on a variety of sports including motorsport, jachting, cycling, and triathlon. The website provides news articles, event coverage, and features targeting Czech sports enthusiasts. The site is built on WordPress with modern web technologies such as Bootstrap and jQuery, and integrates Google Tag Manager and Facebook SDK for analytics and marketing. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and formal privacy and terms policies. WHOIS data is unavailable, which slightly reduces trustworthiness but the site content and structure appear legitimate for a small media outlet.