Security Directory

W

Whow Games GmbH

veravegas.com

68

VeraVegas is a free-to-play online social casino operated by Whow Games GmbH, targeting adult players primarily in Germany and other international markets. The platform offers a variety of slot games and casino entertainment without real money gambling, emphasizing daily free chips and social gaming experiences. The website is multilingual and supports mobile app access, enhancing user reach and engagement. Technically, the site employs modern JavaScript frameworks, social login integrations, and a robust cookie consent mechanism compliant with GDPR. Hosting and content delivery leverage a CDN, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and privacy policies in place, though explicit security headers and incident response information are absent. The lack of WHOIS registration data for the domain is a notable anomaly, potentially indicating privacy protection or recent registration, which slightly impacts business credibility. Overall, VeraVegas presents a professional and trustworthy social casino platform with room for improvement in transparency and security disclosures.

W

Whow Games GmbH

jackpot.de

66

Jackpot.de is a German-based free-to-play social casino platform operated by Whow Games GmbH. It offers a variety of slot games and casino-style entertainment without real money gambling, targeting adult users aged 18 and above. The platform is positioned as a popular online destination for casual casino gaming with a strong presence in Germany and other European countries, supported by multiple international partner domains. Technically, the website employs modern web technologies including Google Analytics, Facebook SDK, and OneTrust for cookie consent, hosted on AWS infrastructure. The site is mobile-optimized and provides social login options for user convenience. Security-wise, the site enforces HTTPS and uses secure forms but lacks explicit security policies or incident response contacts. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, Jackpot.de demonstrates a mature digital presence with good security posture and compliance, suitable for its business model and audience.

S

Sameinaða útgáfufélagið ehf.

stundin.is

57

Heimildin is an Icelandic independent media company founded in 2023, operating under Sameinaða útgáfufélagið ehf. The website serves as a platform for investigative journalism, news, interviews, and multimedia content targeting Icelandic readers interested in politics, society, and culture. The business model includes subscriptions and donations, supporting its independent stance. Technically, the site uses a modern JavaScript stack with libraries such as jQuery, Axios, and Moment.js, hosted on DigitalOcean. While the site is mobile optimized and SEO friendly, there is room for improvement in security practices, including enabling DNSSEC and implementing security headers. Privacy compliance is minimal with no explicit privacy or cookie policies detected. Overall, the site is professional, content-rich, and trustworthy, with moderate technical maturity and some security gaps.

S

Sameinaða útgáfufélagið ehf.

kjarninn.is

57

Heimildin is an Icelandic independent media company founded in 2023 by the merger of Stundin and Kjarninn. It operates as a digital news platform offering investigative journalism, news articles, multimedia content, and print newspaper issues. The website targets Icelandic readers interested in independent and investigative news coverage. The business model includes subscriptions and donations, positioning Heimildin as a trusted independent media outlet in Iceland.

S

Sameinaða útgáfufélagið ehf.

heimildin.is

57

Heimildin is an Icelandic independent media company founded in 2023 by Stundin and Kjarninn, focusing on investigative journalism and diverse news coverage. The website offers a broad range of news articles, interviews, opinion pieces, and multimedia content targeting Icelandic readers interested in politics, society, culture, and economics. The business model includes subscriptions and donations, supporting its independent editorial stance. Technically, the site is hosted on DigitalOcean and uses a modern JavaScript stack with various analytics and advertising integrations. The website is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced, but DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is limited as no privacy or cookie policies were found in the content. Overall, the domain registration is consistent and legitimate, supporting the business claims. The site is safe for general audiences with no adult content detected.

BIOK laboratorija is the largest cosmetics manufacturer in Lithuania, managing multiple well-known brands such as Margarita, Ecodenta, and Kilig. Founded in 1991, the company produces over 250 different cosmetic and personal care products, emphasizing natural ingredients and innovation. The website reflects a professional and consistent brand image, targeting general consumers interested in cosmetics and personal care products. Technically, the site uses a mix of legacy and modern web technologies including jQuery, Google Analytics, Facebook SDK, and reCAPTCHA for security. The site is mobile-optimized and includes privacy and cookie policies with consent mechanisms, indicating good compliance with GDPR requirements. Security posture is solid with HTTPS and form protections, but lacks some security headers and explicit security policies. WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and professional but could improve in security and compliance documentation.

H

HOSTINGER operations, UAB

auginulietuva.lt

42

Auginu Lietuvą is a Lithuanian national educational initiative providing a multimedia learning platform focused on pregnancy, childbirth, and newborn care. The platform offers scientifically based information and expert advice aimed at strengthening parenting skills. It targets parents and families in Lithuania and distributes content via a website and mobile applications on Android and iOS. The project is relatively new, founded in 2022, and hosted by HOSTINGER operations, UAB. Technically, the website uses modern web technologies including Vue.js, Google reCAPTCHA v3, and integrates social media SDKs for Facebook and Apple Sign-In. The platform is mobile-optimized and provides a good user experience with clear navigation and multimedia content. Hosting is stable and the domain registration is consistent with the business timeline. From a security perspective, HTTPS is enforced and bot protection via reCAPTCHA is implemented. However, the site lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. Contact information is clearly provided, but no formal security or incident response policies are published. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy compliance and security headers would enhance the platform's security posture and regulatory adherence.

B

BTL zdravotnická technika, a.s.

btl-shop.cz

49

BTL zdravotnická technika, a.s. operates an e-commerce platform (BTL-shop.cz) specializing in rehabilitation, physiotherapy, and medical consumables and equipment. The website targets healthcare professionals and wellness providers primarily in the Czech Republic. It offers branded products, a loyalty program, and expert advice, positioning itself as a specialized supplier in the healthcare sector. The site is built on Magento CMS and uses modern web technologies including jQuery and RequireJS, with social login integrations for user convenience. The website is well-structured, mobile-optimized, and provides clear navigation and professional content. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, no explicit security policies or incident response contacts are published, and WHOIS data is unavailable, which limits transparency. Overall, the site presents a professional and trustworthy online presence for its niche market.

B

BiObernai by Alsace Bio

biobernai.com

60

BiObernai by Alsace Bio operates a professional and content-rich website dedicated to promoting organic agriculture events and community engagement in the Alsace region of France. The site serves as an information portal for the annual BiObernai organic agriculture fair, the BiObernai Bier organic beer, and the Association SABA volunteer organization. The business targets consumers and stakeholders interested in sustainable and organic farming practices, positioning itself as a regional leader in this niche. The website demonstrates good branding consistency and content quality, with clear navigation and multimedia integration such as videos and social media links. Technically, the website employs a modern but somewhat dated technology stack including jQuery 1.12, Bootstrap, Owl Carousel, and cookie consent management via tarteaucitron.js. It integrates Google Analytics and Facebook SDK for analytics and social media functionality. The site is mobile optimized with good SEO practices but lacks explicit CMS identification and detailed hosting information. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and has implemented cookie consent and reCAPTCHA on forms, indicating awareness of privacy and security best practices. However, no explicit security headers were detected, and no published security or incident response policies are available. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and structure appear professional and trustworthy. Overall, the website presents a low-risk profile with good privacy compliance and user experience but would benefit from enhanced security measures and clearer domain registration transparency. Strategic recommendations include improving security headers, verifying domain registration status, and publishing security policies to strengthen trust and compliance.

G

Guadeloupe Formation

guadeloupeformation.com

45

Guadeloupe Formation is a regional public administrative institution dedicated to professional training, orientation, and insertion services in Guadeloupe. Established in 2007, it offers a broad range of training programs targeting employees, job seekers, and the general public. The institution emphasizes pre-qualification, qualification, and support throughout the training journey. The website reflects a well-structured, professional presence with clear navigation and relevant content tailored to its audience. It maintains an active social media presence and displays recognized certifications such as Qualiopi, enhancing its credibility. Technically, the website is built on Joomla CMS using modern libraries like jQuery and Bootstrap, hosted by OVH sas. It employs HTTPS with good SSL configuration and integrates Google Analytics, Facebook SDK, and OneSignal for push notifications. Cookie consent mechanisms are implemented, though a dedicated privacy policy page is not found. The site is mobile-optimized and performs moderately well. From a security perspective, the site uses HTTPS and reCAPTCHA for forms but lacks DNSSEC and explicit security headers. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business profile, showing a long-established domain without privacy protection, indicating transparency. Overall, the security posture is adequate but could be improved with additional headers and published security policies. The overall risk is low, with no signs of malicious activity or suspicious content. Strategic recommendations include enhancing DNS security, publishing privacy and security policies, and implementing security headers to strengthen protection and compliance.

G

Golfshop4you

golfshop4you.cz

54

Golfshop4you.cz is a specialized retail business focused on golf equipment and accessories, operating both an e-commerce platform and a physical store in Prague, Czech Republic. The company offers a wide range of products including golf clubs, bags, balls, clothing, shoes, and related accessories, complemented by services such as fitting and equipment servicing. Their market position is that of a niche, trusted golf retailer serving golf enthusiasts in the Czech market. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and outdated libraries updated. Privacy compliance is strong, with clear GDPR policies and cookie consent banners. Overall, the site is professional, trustworthy, and well-structured, though domain WHOIS data is unavailable, which slightly limits trust verification. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

O

Organikk

organikk.cz

55

Organikk.cz is a Czech Republic based e-commerce platform specializing in sustainable lifestyle products including household items, personal care, kitchenware, dental care, and fashion accessories. The company emphasizes eco-friendly, chemical-free, and plastic-free products, supporting small producers and environmental causes. The website is professionally designed with clear navigation, comprehensive product information, and customer testimonials, positioning Organikk as a niche leader in sustainable retail within its market. Technically, the site runs on the Shoptet platform, uses modern analytics and marketing tools with GDPR-compliant cookie consent, and maintains a good security posture with HTTPS and CSRF protections. However, the WHOIS data is unavailable, limiting domain trust assessment. Overall, Organikk demonstrates a mature digital presence with room for security header enhancements and updated libraries.

C

CHASING

chasing.com

47

CHASING operates as a technology company specializing in the design and sale of innovative underwater drones targeting both consumer and light-industrial markets. Their website presents a professional and modern digital presence, leveraging advanced JavaScript frameworks and multiple analytics and marketing tools to engage users globally. Despite the lack of WHOIS registration data, the site demonstrates a credible e-commerce platform with clear product offerings and a consistent brand image. The technical infrastructure is robust with HTTPS and content security policies in place, though additional security headers could enhance protection. Privacy compliance is limited, with no explicit privacy or cookie policies detected, which may pose compliance risks. Overall, the business appears legitimate but would benefit from improved transparency and security practices.

S

Schools United s.r.o.

kraloveskoly.cz

58

Schools United s.r.o. operates a professional e-commerce platform specializing in custom clothing and supplies for schools, sports teams, and interest groups primarily in the Czech Republic. The company offers tailored apparel collections and school equipment through a user-friendly online shop, supported by strong customer testimonials and a clear brand identity. The website is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies, reflecting a mature digital presence. Technically, the site leverages the Shoptet e-commerce platform with integrations for analytics and marketing tools such as Google Analytics, Facebook SDK, and Poptin. Security posture is solid with HTTPS enforcement and CSRF protections, though explicit security headers could be improved. The absence of WHOIS data indicates privacy protection, common for such businesses, but reduces transparency. Overall, the site demonstrates a trustworthy and professional business with good compliance and technical standards.

Z

Zavičajni muzej Ogulin

zavicajni-muzej-ogulin.hr

47

Zavičajni muzej Ogulin is a Croatian cultural heritage museum focused on preserving and presenting the history and culture of the Ogulin region. The museum offers diverse collections including archaeological, ethnographic, and artistic exhibits, alongside educational programs and virtual tours. It serves a broad audience including local residents, tourists, and students, positioning itself as a key regional cultural institution. The website reflects a small-sized non-profit organization with a clear mission and consistent branding. Technically, the website is built on WordPress using the Enfold theme, hosted by Hostinger. It employs modern web technologies such as jQuery and integrates Facebook SDK for social media features. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. The presence of cookie consent and privacy policy pages indicates good digital maturity and compliance with GDPR. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks visible security headers which could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. The absence of a security policy or incident response contact suggests room for improvement in security governance. The WHOIS data aligns well with the website's Croatian identity and business type, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its cultural and educational purpose. Strategic improvements in security headers and incident response readiness would further strengthen its security posture.

P

Plus Hosting Grupa d.o.o.

opencity.hr

44

openCity Hrvatska is a Croatian public sector project aimed at promoting the opening of public sector data in line with EU standards. The website provides interactive visualizations to make public information easily understandable for citizens. The project targets Croatian government entities and the general public interested in transparent data access. The business model focuses on government data transparency and public engagement through digital tools. The website is relatively small in scale, founded in 2018, and hosted by Plus Hosting Grupa d.o.o. The content is primarily in Croatian and is professionally presented with good navigation and mobile optimization. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, jQuery, CartoDB, and Leaflet for mapping. It integrates Google Analytics and Facebook SDK for analytics and social media engagement. Hosting is provided by a Croatian registrar consistent with the domain registration data. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and formal security policies such as incident response or vulnerability disclosure. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. The WHOIS data is consistent and indicates a legitimate registration aligned with the website's purpose. Overall, the website is functional and trustworthy for its niche but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

Semaco Real Estate is a specialized real estate advisory and sales company operating primarily in Kraków, Poland. With over two decades of experience and a portfolio of more than 30 investments and approximately 1500 sold apartments, the company positions itself as a trusted local expert in both primary and secondary real estate markets. Their services encompass guiding clients through the entire property transaction process, including financing assistance and new development projects. The website reflects a professional and customer-focused approach, emphasizing quality housing and client satisfaction. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Owl Carousel, and Google reCAPTCHA, hosted likely by home.pl S.A. The site is mobile optimized and uses EstiCRM as its content management system. Performance is moderate with good SEO and accessibility basics. Tracking and marketing tools such as Google Analytics and Facebook SDK are integrated, indicating a moderate level of digital maturity. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms. However, DNSSEC is not enabled and security headers are not detected, suggesting room for improvement in hardening the website. No critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy regulations. Strategic improvements in security configurations and transparency around security policies would enhance the company’s risk posture and customer trust.

The Oley Foundation is a well-established non-profit organization focused on supporting individuals living with home IV nutrition and tube feeding. Their website serves as a comprehensive resource offering advocacy, education, community engagement, and events tailored to patients, caregivers, clinicians, and industry partners. The organization has a strong market position as a trusted leader in this niche healthcare sector, supported by a long domain history and recognized certifications such as the Candid Platinum Seal. Technically, the website is built on the YourMembership CMS platform and leverages a variety of modern web technologies including jQuery, YUI, Google Analytics, New Relic for performance monitoring, and DataDome for bot protection. The site demonstrates good mobile optimization and user experience, though there is room for improvement in accessibility and SEO practices. From a security perspective, the site enforces HTTPS and employs bot mitigation tools, but lacks some advanced security headers and a public vulnerability disclosure policy. The WHOIS data aligns well with the organization's identity and history, reinforcing legitimacy. Privacy compliance is basic with a visible cookie consent mechanism and a privacy policy, but GDPR compliance is not explicitly indicated. Overall, the website presents a professional and trustworthy digital presence with moderate technical sophistication and a solid security baseline. Strategic enhancements in security headers, incident response transparency, and privacy compliance would further strengthen their posture and user trust.

C

Cukrářství Pudová

cukrarstvipudova.cz

58

Cukrářství Pudová is a small retail confectionery business based in the Czech Republic, specializing in cakes, pastries, and confectionery products for various occasions. The company emphasizes its 18+ years of experience and offers both online ordering and physical pickup options in Opava and Dolní Benešov. The website is built on the Shoptet e-commerce platform, leveraging standard web technologies including jQuery and Google Analytics for tracking. The site is well-structured, mobile-optimized, and includes essential business information and social media presence, enhancing customer trust and engagement. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements can be made by adding security headers and formal security policies. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the overall website professionalism and content quality support a positive business credibility. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and verifying domain registration details to improve trust and compliance.

M

Mikulovská rozvojová, s. r. o.

zpravodajmikulov.cz

44

The website zpravodajmikulov.cz serves as the official local news portal for the city of Mikulov, Czech Republic. It is published by Mikulovská rozvojová, s. r. o., a small-sized company focused on disseminating municipal news, cultural events, school updates, and other community information. The site targets residents and visitors interested in local affairs and cultural happenings. The business model revolves around providing timely and relevant local news content, supported by municipal backing and community engagement. Technically, the website is built on the Joomla CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and UIkit for responsive design and user interface components. It integrates social media widgets from Facebook and Google, enhancing community interaction. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO optimizations are basic. Hosting and domain registration are consistent with Czech providers, reinforcing local presence. From a security perspective, the site uses HTTPS (assumed from base href and external scripts), but lacks explicit security headers in the HTML content. A cookie consent banner is implemented, indicating awareness of privacy compliance, though no dedicated privacy or terms of service pages were found. No vulnerabilities or exposed sensitive data were detected in the content. The security posture is moderate but could be improved with enhanced headers and clearer policies. Overall, the website is trustworthy, professionally maintained, and serves its community purpose effectively. Strategic recommendations include adding comprehensive privacy and terms policies, implementing security headers, and enhancing SEO and accessibility features to improve compliance and user experience.

J

JIROUT REKLAMNÍ AGENTURA s.r.o.

jirout.com

49

JIROUT REKLAMNÍ AGENTURA s.r.o. is a Czech Republic based advertising agency positioned as the largest in the Pardubice region. The company offers a comprehensive suite of advertising services including graphic design, vehicle wraps, outdoor and indoor advertising, promotional products, textiles, printing services, and online marketing. Their business model focuses on end-to-end advertising solutions from concept to installation, targeting local businesses and organizations. The website reflects a professional and consistent brand image with clear service offerings and customer testimonials, supporting their market position. Technically, the website employs modern web technologies such as Google Fonts, Facebook SDK for marketing, and a responsive design framework. The presence of a detailed cookie consent mechanism indicates a good level of digital maturity and privacy awareness. However, the absence of visible security headers and incomplete WHOIS data suggests areas for improvement in security and transparency. From a security perspective, the site uses HTTPS and implements cookie consent with opt-in/out controls, but lacks explicit security policies and incident response contacts. No critical vulnerabilities or adult content were detected. The domain WHOIS data is missing, which raises concerns about domain legitimacy and registration transparency, though the website content and business information appear credible. Overall, the website presents a trustworthy and professional business front with moderate technical and security maturity. Strategic improvements in security headers, domain registration transparency, and explicit security policies would enhance trust and compliance.

MetroTwit is a software application developed by Pixel Tucker Pty Ltd, designed as a Twitter client for Windows platforms including Windows 7, Vista, and Windows 8 tablets. The product embraced Microsoft's Metro design language and offered features such as multiple account support, undo tweet functionality, and real-time Twitter streaming. The website clearly communicates that the product has been discontinued and the download is no longer available. The target audience was Windows users seeking a modern Twitter client experience. The company is a small Australian technology firm founded around 2010. Technically, the website is built on WordPress with standard web technologies and integrates social media widgets and Google Analytics for tracking. The site is hosted behind Cloudflare, ensuring good availability and performance. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Business credibility is supported by clear company information, testimonials, and a privacy policy. Overall, the website is functional, safe, and professional but could improve in security and privacy compliance.

C

Cyklus Trails

cyklustrails.com

42

Cyklus Trails is a small, specialized travel agency offering self-guided and guided cycling tours primarily in the Czech Republic and neighboring countries. Established in 2002, it targets active travelers seeking authentic outdoor adventure experiences along well-known bike paths and cultural sites. The website is built on Drupal 7 and incorporates common web technologies such as jQuery, Google Analytics, and Facebook SDK for social integration and tracking. While the site is accessible and professionally presented, it lacks critical privacy and cookie policies, which impacts compliance with GDPR and other privacy regulations. Security measures include the use of Google reCAPTCHA on contact forms, but the absence of security headers and use of outdated libraries present potential vulnerabilities. The WHOIS data for the domain is missing, raising concerns about domain registration legitimacy, although the website content and contact details appear genuine. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

Z

Záhrada.sk

zahrada.sk

62

Záhrada.sk is a Slovak media platform dedicated to gardening enthusiasts, offering a rich collection of articles, a user forum, a marketplace, photoblogs, and a directory of garden professionals. The website targets Slovak gardeners and hobbyists, positioning itself as a community-driven resource with active user engagement. Technically, the site is built on WordPress with modern integrations such as Google Analytics, Facebook SDK, and consent management platforms to comply with GDPR. The site demonstrates good SEO practices and mobile optimization, although accessibility could be improved. Security posture is strong with HTTPS and security headers in place, but the absence of explicit privacy and terms of service pages is a notable compliance gap. Overall, the site is trustworthy, professional, and well-maintained, serving a medium-sized audience in the Slovak gardening niche.

P

Pneu Drnec

pneudrnec.cz

7

Pneu Drnec is a local automotive service provider specializing in tire and auto repair services in Plzeň, Czech Republic. The business focuses on servicing personal vehicle tires, motorcycle tires, off-road tires, and light truck tires, with a specialization in high-speed large-dimension tires. The website presents a professional and consistent brand image targeting vehicle owners in the local area. However, the absence of WHOIS data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Technically, the site uses modern JavaScript and CSS technologies, integrates Facebook SDK and Google Tag Manager, but lacks proper analytics setup and security headers. The security posture is moderate but could be improved with better SSL configuration and security best practices. Overall, the site is functional and informative but requires enhancements in privacy compliance and security to improve trustworthiness.

M

Můj Caravan

mujcaravan.cz

53

Můj Caravan is a Czech Republic-based e-commerce retailer specializing in accessories and equipment for caravans, motorhomes, camping, and outdoor activities. The website offers a wide range of products including awnings, furniture, grills, kitchenware, toilets, and outdoor gear, targeting caravan and camping enthusiasts primarily in the Czech market. The business positions itself as a niche market leader with a comprehensive product catalog and customer trust signals such as the Heuréka certification and active social media presence. Technically, the website is built on a proprietary e-commerce platform (Golemos) and leverages modern web technologies including JavaScript frameworks, Google Tag Manager, Facebook SDK, and Matomo analytics. The site is mobile-optimized with good SEO and accessibility basics, providing a professional user experience. The presence of multiple tracking and marketing tools is managed with user consent, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses secure login forms. While some security headers are not explicitly detected, the overall posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website demonstrates a high level of professionalism and trustworthiness, with no signs of content blocking or WAF interference. The lack of public WHOIS data due to privacy protection is common for retail businesses and does not detract from the legitimacy of the site. Strategic recommendations include enhancing security headers and continuing regular audits of third-party scripts to maintain security and compliance.

A

Adresář Farmářů

adresarfarmaru.cz

60

Adresář Farmářů operates as an online directory and map-based platform focused on connecting consumers with farmers and related shopping and services primarily in the Czech Republic. The website leverages modern web technologies including Angular and integrates third-party analytics and social media SDKs to enhance user engagement and tracking. The platform appears to serve a niche market, providing localized listings and user contributed content to facilitate discovery of farming-related services. Despite the lack of WHOIS registration data, the website presents a professional and consistent brand image with a clear target audience of consumers seeking local farm products and services. Technical infrastructure is modern but could benefit from enhanced security headers and explicit privacy and terms of service documentation. The security posture is moderate with HTTPS in use but missing some best practice headers and policies. Overall, the site is accessible, safe, and functional, but improvements in compliance and transparency would strengthen trust and credibility.

M

MeetFactory o. p. s.

meetfactory.cz

49

MeetFactory o. p. s. is a well-established non-profit cultural organization based in Prague, Czech Republic, founded in 2000. The organization provides a vibrant space for live art, including music, theater, residencies, galleries, and workshops. Supported by a significant grant from the city of Prague, MeetFactory serves a general audience interested in contemporary art and culture. The website reflects this mission with detailed event listings and structured data to enhance user experience and search engine visibility. Technically, the site uses a combination of older JavaScript libraries and Bootstrap framework, hosted on WEDOS infrastructure, with moderate performance and basic mobile optimization. Security posture is moderate, with HTTPS implied but lacking visible security headers and modern security practices. Privacy compliance is limited, with no explicit cookie consent or comprehensive privacy policy clearly accessible. Business credibility is high due to consistent domain registration data, clear physical address, and active social media presence. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

P

PAMAX

pamax.cz

50

PAMAX is a traditional Czech family-owned business specializing in the custom manufacture and retail of beds, mattresses, and furniture with a focus on health-certified products. Established in 1997, the company leverages its long-standing expertise to serve customers seeking high-quality, tailor-made sleep and home comfort solutions. The website reflects a professional e-commerce platform built on PrestaShop, integrating modern tracking and marketing tools such as Google Analytics and Facebook SDK. Contact information and social media presence are clearly provided, enhancing customer trust and engagement. Security posture is solid with HTTPS and secure forms, though improvements are recommended in security headers and privacy consent mechanisms. Overall, PAMAX demonstrates a credible and mature digital presence aligned with its business history and market positioning.

G

Golf Europe s.r.o.

golfoveslevy.cz

9

Golf Europe s.r.o. operates the Golfové slevy platform, specializing in offering discounted golf packages, green fees, and related services primarily in the Czech Republic. The website features offers such as a 2-day stay with unlimited golf at PilsnerGolf Resort Hořehledy, targeting golf enthusiasts seeking affordable golf experiences. The business model revolves around aggregating and promoting golf-related discounts and packages, supported by partnerships with golf resorts, equipment shops, and membership providers. Technically, the website uses legacy technologies including jQuery 1.7.1, Google Analytics, and Facebook SDK for social integration. The site is served over HTTPS with no visible WAF or blocking mechanisms, but lacks modern security headers and uses outdated libraries, which may pose security risks. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and secures form submissions but lacks published privacy, cookie, or security policies, indicating compliance gaps with GDPR and other regulations. WHOIS data is unavailable, reducing domain trust verification, though contact information and payment processing via PayU add legitimacy. No vulnerabilities or malware indicators were detected. Overall, the site is functional and professional but would benefit from enhanced privacy compliance, updated technical stack, and improved security practices to strengthen trust and reduce risk.

C

Curry House

curryhouse.cz

41

Curry House is a well-established Indian and Bangladeshi restaurant located in Prague, Czech Republic, founded in 2009. It holds a strong market position as the only 5-star halal restaurant in Prague, offering dine-in, takeaway, and delivery services. The website reflects a medium-sized hospitality business with a focus on authentic cuisine and customer satisfaction, supported by multiple certifications and positive customer testimonials. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Slider Revolution, and various plugins for reservations and e-commerce. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks visible security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

S

Studentská Akademie

studentska-akademie.cz

52

Studentská Akademie is an educational organization based in the Czech Republic offering a variety of artistic and extracurricular workshops targeted primarily at high school students. Their services include academies in music, film animation, theater, DJing, radio, and sports such as running and biking. The website positions itself as a community-focused educational provider with some workshops free and others paid. The site demonstrates a moderate level of digital maturity with integration of common web technologies and social media platforms but lacks modern security and privacy compliance features. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the presence of partner logos and active social media accounts supports its credibility. Security posture is moderate with HTTPS enabled but outdated JavaScript libraries and missing security headers present risks. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is functional and content-rich but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

Č

Česká golfová federace

bavsegolfem.cz

41

Bav se golfem is a Czech Republic-based golf information platform operated in association with the Czech Golf Federation. It serves as a comprehensive resource for golf enthusiasts, providing location-based golf course listings, beginner guides, event information, and blog content. The platform targets a broad audience ranging from beginners to advanced players, promoting golf as a healthy and enjoyable leisure activity. The website is well-positioned nationally as a trusted source for golf-related information in the Czech Republic. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, Facebook SDK, Google reCAPTCHA, and Mapy.cz API for mapping services. The site is hosted on Czech infrastructure with Active24 as the inferred hosting provider. The website demonstrates good mobile optimization, SEO practices, and user experience, although accessibility features are basic. From a security perspective, the site uses HTTPS and implements CAPTCHA on forms to prevent automated abuse. However, explicit security headers are not evident, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a cookie consent banner present but no explicit privacy policy or terms of service pages found. Overall, the website presents a professional and trustworthy front for its business purpose. Strategic improvements in privacy documentation and security headers would enhance compliance and security posture. The domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

N

NordNews

nordnews.de

43

NordNews.de is a regional news media website focused on delivering the latest news and updates from northern Germany. The site provides news articles, police reports, local event coverage, and job listings, targeting the general public interested in regional information. The website uses WordPress CMS with popular plugins such as Yoast SEO and Perfecty Push Notifications, indicating a moderate level of digital maturity. The technical infrastructure supports mobile optimization and SEO best practices, although some accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit privacy or cookie policies. Overall, the site is functional and professional but could improve in privacy compliance and security transparency.

A

Archinfo

archinfo.sk

58

Archinfo.sk is a professional Slovak architectural portal providing comprehensive information, news, events, and resources for architects, designers, and related professionals in Slovakia. The site offers a variety of content including articles, discussions, competitions, and a database of firms and products, positioning itself as a key information hub in the Slovak architectural sector. Technically, the website uses a custom CMS with a technology stack including jQuery, Google Fonts, Font Awesome, and various JavaScript plugins. It implements HTTPS with good SSL configuration and integrates Google Analytics, Google Tag Manager, and Facebook SDK for analytics and marketing. Security posture is moderate with HTTPS and reCAPTCHA in place, but the use of an outdated jQuery version and lack of security headers are notable vulnerabilities. Privacy compliance is good with cookie consent and a privacy policy present, though no explicit security or incident response policies are published. Overall, the website is professional, content-rich, and trustworthy, with room for technical and security improvements.

B

BMWeshop.sk

bmweshop.sk

53

BMWeshop.sk is an e-commerce website specializing in BMW lifestyle products such as clothing, accessories, toys, and collectibles targeted primarily at BMW enthusiasts in Slovakia. The website is built on the Shoptet platform and uses common web technologies including jQuery, Google Analytics, and Facebook SDK for tracking and marketing purposes. The site presents a professional design with consistent branding and clear navigation, offering a good user experience. However, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security-wise, the site enforces HTTPS and uses CSRF tokens but relies on an outdated jQuery version and lacks visible security headers, which could expose it to vulnerabilities. The WHOIS data is privacy protected, which is common for small e-commerce businesses but reduces transparency. Overall, the site is functional and trustworthy but would benefit from improved security practices and privacy compliance.

W

Wildwechsel

wildwechsel.de

63

Wildwechsel is a regional German media platform specializing in event listings and cultural information for areas including Kassel, Paderborn, Marburg, Nordhessen, and OWL. The website offers comprehensive event data such as concerts, parties, theater, and local activities, targeting a general audience interested in regional happenings. Technically, the site is built on WordPress and integrates various modern web technologies including Google Fonts, FontAwesome, and multiple analytics and advertising scripts. Hosting is provided via GoDaddy, and the site uses HTTPS with a good SSL configuration. Security measures include anti-spam and bot detection services, but explicit security headers are lacking, and no formal privacy or cookie policies are detected, indicating room for compliance improvement. Overall, the site presents a professional and trustworthy front with moderate technical performance and good content quality.

The website www.eeagrants.ro serves as the official Romanian governmental portal for the EEA and Norwegian Grants 2014-2021, managed by the Ministry of Investments and European Projects. It provides comprehensive information about grant programs, project calls, results, and bilateral relations, targeting Romanian governmental bodies, NGOs, and the general public interested in European funding opportunities. The site is well-branded with consistent use of official logos and government references, establishing high trustworthiness and credibility. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, Google Fonts, Google Analytics, Facebook SDK, and Google Charts. It is mobile responsive with good SEO and accessibility basics, though accessibility could be improved. Performance is moderate, and the site uses HTTPS with a good SSL configuration. However, security headers are missing, and privacy and cookie policies are not explicitly present, indicating areas for compliance improvement. From a security perspective, the site shows good practices such as HTTPS enforcement and use of reCAPTCHA for forms, with no visible vulnerabilities or exposed sensitive data. The lack of security headers and formal incident response or vulnerability disclosure information are notable gaps. WHOIS data is privacy protected as per Romanian ROTLD policy, which is standard and justified for this governmental domain. Overall, the site is a professional, trustworthy government resource with solid technical foundations but could enhance privacy compliance and security posture by adding explicit policies and security headers. The risk level is low, but improvements in transparency and security best practices are recommended.

B

BAVARIA Bratislava s.r.o.

bavariabratislava.sk

10

BAVARIA Bratislava s.r.o. operates as an authorized BMW dealership and service center located in Bratislava, Slovakia. The company offers a comprehensive range of BMW vehicles including new and used cars, alongside financial services, servicing, and original accessories. Positioned as the largest and most modern BMW showroom in Slovakia, it targets BMW customers seeking premium automotive products and services. The website reflects a professional and consistent brand image aligned with BMW standards. Technically, the website is built on the siteLAB CMS platform and incorporates modern JavaScript libraries such as Swiper.js and Owl Carousel for UI components, along with Google reCAPTCHA for form security and Facebook SDK for customer chat integration. The site is mobile-optimized and includes SEO best practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and integrates anti-bot measures via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced trust and compliance. Privacy and cookie policies are well implemented with clear consent mechanisms, supporting GDPR compliance. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers and incident response transparency would further strengthen its posture.

The website drohnenführerschein.eu represents seabirds.de GmbH, a German company specializing in drone pilot training and certification recognized by the Luftfahrt-Bundesamt. The company offers a range of educational services including theoretical and practical courses, official EU drone pilot license preparation, and consulting for drone operations. The site is professionally designed with clear navigation and relevant content targeting both private individuals and businesses interested in drone operation compliance and training. Technically, the site uses established libraries such as jQuery, Bootstrap, and integrates Google Analytics and Facebook SDK for tracking. Security posture is moderate with HTTPS implied but lacks explicit security headers and advanced form protections. Privacy compliance is basic with cookie consent and privacy policy present but no detailed security or incident response policies are found. Overall, the site is trustworthy and legitimate with clear business contact information and official certifications.

S

seabirds.de GmbH

seabirds.de

46

seabirds.de GmbH operates a specialized flight school and charter service based at Flugplatz Oldenburg-Hatten, Germany. The company offers pilot training including PPL and LAPL licenses, sightseeing flights, and aircraft chartering. The website is professionally designed with clear navigation and relevant content targeting aviation students and enthusiasts. Technically, the site uses Bootstrap and jQuery with integrations for Google Analytics and Facebook SDK, though it employs an outdated jQuery version which poses some security risks. Security posture is moderate with HTTPS implied but lacking explicit security headers and incident response information. Privacy compliance is addressed with a cookie consent banner and a privacy policy linked in the imprint. Overall, the site is trustworthy and well-positioned locally but could improve technical security and transparency.

G

Gradska knjižnica Sveti Ivan Zelina

knjiznica-zelina.hr

10

Gradska knjižnica Sveti Ivan Zelina is a public library serving as a cultural, educational, and social hub for the local community in Sveti Ivan Zelina, Croatia. The website provides information about library services, events, special collections, and access to an online catalog. The target audience includes children, youth, and adults interested in literature and cultural activities. The library operates as a non-profit public institution with a focus on community engagement and education. Technically, the website is built on Joomla CMS and utilizes common frontend technologies such as jQuery, Bootstrap, UIkit, and Smart Slider 3. It integrates Facebook SDK for social media and includes an accessibility widget (UserWay). The site is hosted under a Croatian academic registrar (CARNET), indicating a stable and appropriate hosting environment. The website is moderately performant and well-optimized for mobile devices with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic, with no dedicated privacy policy page found, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, serving its public service mission effectively. Strategic recommendations include adding a comprehensive privacy policy, implementing security headers, and publishing incident response contacts to enhance security posture and compliance.

D

Dimedia internet tehnologije d.o.o.

dimedia.hr

43

Dimedia internet tehnologije d.o.o. is a Croatian technology company specializing in custom software development, mobile applications, web design, and internet marketing services. Established in 2010, the company targets businesses seeking comprehensive digital solutions to enhance their online presence and operational efficiency. Their market position is supported by a portfolio of clients across real estate, tourism, and corporate sectors, demonstrating a solid foothold in the regional IT services market. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Facebook SDK, and Google reCAPTCHA, ensuring basic security and user engagement features. The site is mobile-optimized with good SEO practices, though some accessibility features could be improved. Hosting and domain registration are consistent with the company's Croatian location, enhancing trust. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic with presence of privacy and cookie policies, but no explicit GDPR compliance statements or data retention policies were found. Overall, the website is trustworthy and professionally maintained, with moderate technical sophistication and a solid business credibility profile. Strategic improvements in security policy transparency and accessibility would further enhance their posture.

Č

Český svaz moderního pětiboje, z.s.

pentathlon.cz

44

Český svaz moderního pětiboje, z.s. is the official Czech Modern Pentathlon Association, established in 2002, serving as the national governing body for modern pentathlon sports in the Czech Republic. The organization focuses on athlete development, competition organization, and promotion of the sport to youth and sports enthusiasts. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience of athletes, clubs, and fans. Technically, the site employs modern JavaScript libraries, lazy loading, and integrates social media and analytics tools, indicating a moderate to good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements are recommended in security headers and removal of potentially sensitive inline scripts. Privacy compliance is basic, lacking explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business, supporting high legitimacy and trustworthiness.

N

Nase Media a.s.

parlamentnilisty.cz

10

ParlamentniListy.cz is a well-established Czech political news and commentary website operated by Nase Media a.s. It offers a broad range of political news, interviews, opinion pieces, and profiles of politicians and institutions. The site targets Czech-speaking audiences interested in politics and current affairs, leveraging advertising and subscription models for revenue. Technically, the site employs modern web technologies including Google services for ads and analytics, Facebook SDK, and a consent management platform to ensure GDPR compliance. The website is mobile-optimized and structured for SEO with JSON-LD data. Security-wise, the site enforces HTTPS and uses reCAPTCHA to mitigate bots, but lacks explicit security headers and published security policies. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, likely due to privacy protection.

Tenisová škola Zýka Hořovice is a small, family-run tennis school based in the Czech Republic with over 20 years of experience. The business focuses on tennis training for children and competitive players, offering services such as racket stringing and court rentals. The website is built on the eStránky.cz platform and integrates basic technologies like jQuery and Facebook SDK for social media connectivity. However, the site lacks critical compliance documents such as privacy and cookie policies and does not provide contact emails, limiting its professional and compliance posture. The absence of WHOIS data raises concerns about domain legitimacy, although the site content appears genuine and targeted at local tennis enthusiasts.

B

Bezplatná právní poradna online zdarma pro všechny

bezplatnapravniporadna.cz

47

Bezplatná právní poradna online zdarma pro všechny is a Czech Republic-based free legal advice website offering extensive legal content authored by legal professionals. The site targets the general public seeking legal guidance without charge, positioning itself as a comprehensive resource for various legal topics including family law, civil law, labor law, and more. The business model revolves around providing free legal information and advice, supported by advertising revenue from Google Adsense and Czech Sklik networks. The website demonstrates consistent branding and good content quality with a professional and user-friendly design.

H

Hotel zámek Berchtold

zamekberchtold.cz

59

Hotel zámek Berchtold is a hospitality business located in the Czech Republic offering a range of services including corporate events, teambuilding, weddings, family vacations, wellness, sports, and restaurant facilities. The website presents a professional and consistent brand image with clear navigation and relevant content targeting corporate clients, families, and tourists. The business is small-sized and has been established since 2006, supported by a domain registration consistent with its history. Technically, the website is built on WordPress hosted on WordPress.com, leveraging Jetpack and other standard plugins. It uses HTTPS with good SSL configuration and includes integrations such as Facebook SDK and Google Translate. Performance and mobile optimization are moderate to good, though accessibility features could be improved. From a security perspective, the site benefits from WordPress.com hosting security but lacks explicit security policies, vulnerability disclosure, and advanced security headers. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy policy or terms of service pages. Contact information is comprehensive and trustworthy. Overall, the website is safe, professional, and credible with minor gaps in privacy and security documentation. Strategic improvements in privacy policy publication, security headers, and incident response information would enhance trust and compliance.

T

TREKY.CZ - Vít Sykáček

treky.cz

40

TREKY.CZ is a niche outdoor travel website focused on hiking, trekking, and cycling routes primarily in the Czech Republic but also covering international destinations. The site offers route guides, travel tips, and user-submitted content, targeting outdoor enthusiasts and tourists interested in hiking and cycling. The business model centers on content publishing and community engagement. Technically, the site runs on Drupal CMS with common web technologies including jQuery, Google Analytics, and Facebook SDK. The site is moderately optimized for performance and SEO but has basic mobile and accessibility features. Security posture is average with HTTPS usage implied but lacking important security headers and policies. No WHOIS data is available, which raises concerns about domain legitimacy and transparency. Contact is limited to web forms and social media presence. Overall, the site provides valuable content but needs improvements in security, privacy compliance, and domain transparency.

S

Spådam.se

spadam.se

45

Spådam.se is a Swedish website offering professional psychic and medium services including tarot readings, spiritual guidance, and coaching. The business targets adults interested in spiritual and psychic consultations, operating primarily through paid phone lines and online services. The website presents a professional and consistent brand image with clear navigation and multiple contact phone numbers for different service lines. Technically, the site uses a modern tech stack including Materialize CSS, jQuery, and Cookiebot for cookie consent management, with integrations for Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers are not clearly detected and no incident response or security policy pages are found. WHOIS data for the www.spadam.se subdomain is missing, which slightly reduces trustworthiness, but the main domain spadam.se is presumably registered. Overall, the website is compliant with GDPR cookie consent requirements and provides a good user experience with moderate tracking and advertising transparency.