Security Directory

F

Federació de Municipis de Catalunya

fmc.cat

59

Federació de Municipis de Catalunya is a well-established non-profit association founded in 2006, representing municipalities and local entities in Catalonia, Spain. The organization focuses on defending and promoting local autonomy, providing training, information, and various services to its members. The website reflects a professional and consistent brand image with clear contact information and active social media presence, positioning it as a trusted regional federation in the government sector. Technically, the website is built on ASP.NET with modern front-end technologies including Bootstrap 5 and jQuery. It uses Google Analytics for visitor tracking and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and demonstrates good SEO and accessibility basics, although some improvements in security headers and accessibility could be made. From a security perspective, the site uses HTTPS with a good SSL configuration and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contact information. The WHOIS data confirms the domain's legitimacy and consistency with the organization's claims, enhancing trustworthiness. Overall, the website is secure, compliant, and professionally maintained, suitable for its target audience of local government entities. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen its security posture and user experience.

Č

Český hokej

ceskyhokej.cz

48

Český hokej is the official national ice hockey federation of the Czech Republic, providing comprehensive information, news, and services related to Czech ice hockey. The website serves a broad audience including fans, players, coaches, referees, and other stakeholders, offering news updates, team details, ticket sales, fan engagement zones, and an official merchandise shop. The domain is well-established since 2001, reflecting a mature and authoritative presence in the sports sector. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates analytics tools like Google Tag Manager and Facebook Pixel, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit privacy and security policies are not found in the provided content. Overall, the site demonstrates high professionalism, consistent branding, and trustworthy digital presence, with room for improvement in explicit privacy disclosures and contact information visibility.

M

Metrostav Development a.s.

palmovkaopenpark.cz

56

Metrostav Development a.s. is a well-established real estate developer operating primarily in Prague and other locations in the Czech Republic. The company focuses on residential and commercial projects, emphasizing modern architecture, quality materials, and environmental responsibility. Their website reflects a mature digital presence with clear business information, multiple ongoing and completed projects, and a professional design. Technically, the site uses a modern tech stack including jQuery UI, Bootstrap, Font Awesome, and integrates Google Analytics and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the site is trustworthy, professional, and well-maintained, supporting the company's market position as a reputable real estate developer.

S

stkprochlapy – Web pacientské organizace STK pro chlapy pro muže s urologickým nádorovým onemocněním

stkprochlapy.cz

43

The website stkprochlapy.cz represents a patient organization dedicated to supporting men with urological cancers in the Czech Republic. It provides information on prevention, diagnosis, treatment, and patient support, positioning itself as a specialized non-profit entity in the healthcare sector. The site targets Czech-speaking men affected by urological tumors and their families, offering guidance and updates relevant to their health journey. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Colibri Page Builder Pro, Swiper.js, and Fancybox, with Google Analytics integrated for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enabled, and a cookie consent mechanism is implemented, indicating GDPR awareness. However, no explicit privacy policy or terms of service pages were found, and no security headers were detected, which are areas for improvement. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is understandable for a patient support organization. Overall, the website is functional, informative, and moderately secure, serving its niche audience effectively.

S

Studentská Akademie

studentska-akademie.cz

52

Studentská Akademie is an educational organization based in the Czech Republic offering a variety of artistic and extracurricular workshops targeted primarily at high school students. Their services include academies in music, film animation, theater, DJing, radio, and sports such as running and biking. The website positions itself as a community-focused educational provider with some workshops free and others paid. The site demonstrates a moderate level of digital maturity with integration of common web technologies and social media platforms but lacks modern security and privacy compliance features. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the presence of partner logos and active social media accounts supports its credibility. Security posture is moderate with HTTPS enabled but outdated JavaScript libraries and missing security headers present risks. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is functional and content-rich but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

D

Dieter Moch GmbH

dietermoch.de

45

Dieter Moch GmbH is a regional German company specializing in heating, sanitary, and electrical services, with over 25 years of experience serving the Pinneberg and Hamburg areas. Their business model focuses on installation, maintenance, and renovation services tailored to residential and commercial customers. The website reflects a professional and consistent brand image, providing clear contact information and job opportunities, indicating active operations. Technically, the site is built on WordPress using a commercial theme and common plugins, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is trustworthy and compliant with GDPR requirements.

A

Archinfo

archinfo.sk

58

Archinfo.sk is a professional Slovak architectural portal providing comprehensive information, news, events, and resources for architects, designers, and related professionals in Slovakia. The site offers a variety of content including articles, discussions, competitions, and a database of firms and products, positioning itself as a key information hub in the Slovak architectural sector. Technically, the website uses a custom CMS with a technology stack including jQuery, Google Fonts, Font Awesome, and various JavaScript plugins. It implements HTTPS with good SSL configuration and integrates Google Analytics, Google Tag Manager, and Facebook SDK for analytics and marketing. Security posture is moderate with HTTPS and reCAPTCHA in place, but the use of an outdated jQuery version and lack of security headers are notable vulnerabilities. Privacy compliance is good with cookie consent and a privacy policy present, though no explicit security or incident response policies are published. Overall, the website is professional, content-rich, and trustworthy, with room for technical and security improvements.

A

Abfallwirtschaft Schleswig-Flensburg GmbH

asf-online.de

57

Abfallwirtschaft Schleswig-Flensburg GmbH operates as a regional public waste management service provider in Germany, focusing on waste collection, recycling, and environmental education for residents and businesses in the Schleswig-Flensburg area. The website serves as an information hub offering schedules, service details, and contact options, positioning the company as a trusted regional authority in waste management. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, providing a responsive and accessible user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credibility and public service mission.

K

KLISAB

klisab.com

45

KLISAB is a Croatian fashion brand specializing in modern clothing and accessories for men and women, founded in 2020 by designers Tomislav Kliškinić and Marko Šabarić. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting fashion-conscious consumers primarily in Croatia. The website presents a professional and consistent brand image with clear navigation and good mobile optimization. Technical infrastructure leverages popular WordPress plugins and themes, including GDPR-compliant cookie consent mechanisms and analytics integrations such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enabled and domain registration transparency, though improvements in DNSSEC and security headers are recommended. Overall, the site is trustworthy and compliant with privacy regulations, supporting a positive user experience.

P

Provident Photography

providentphotos.com

45

Provident Photography is a small, locally focused photography business based in Hastings, Nebraska, specializing in business headshots, senior portraits, family and children photography, sports, and school photos. The website presents a professional image with clear service offerings and customer testimonials, positioning the company as a trusted local provider. The technical infrastructure is built on WordPress with modern plugins and libraries such as jQuery, Font Awesome, and Owl Carousel, supporting a good user experience and SEO optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information support legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

C

Centar unutarnjeg tržišta EU

cut.hr

57

The website www.cut.hr represents the Centar unutarnjeg tržišta EU, a Croatian government-related portal focused on providing centralized information and coordination for the EU internal market within Croatia. It serves citizens, entrepreneurs, and competent authorities by offering contact points, guidance on EU rights and regulations, and access to EU-related programs and funds. The site is well-structured, professionally designed, and includes relevant content such as news, publications, and contact forms. It leverages modern web technologies including jQuery, WOW.js, and Google Analytics, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit policies are missing. Privacy compliance is partial, with a cookie policy present but no explicit privacy policy or consent mechanism. Overall, the site is trustworthy and authoritative, consistent with its government affiliation.

W

WERK3 Werbeagentur GmbH & Co. KG

werk3.de

54

WERK3 Werbeagentur GmbH & Co. KG is a small, full-service advertising agency based in Rostock, Germany. The company specializes in marketing strategies, corporate design, campaign conception, and website development, positioning itself as a creative and award-winning agency within the regional media sector. The website reflects a professional and consistent brand image, targeting businesses and organizations seeking comprehensive marketing solutions. Technically, the website is built on TYPO3 CMS and leverages a modern technology stack including jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience and interactivity. Analytics and marketing tools such as Matomo, Google Tag Manager, and Facebook Pixel are integrated, with a clear cookie consent mechanism ensuring GDPR compliance. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. From a security perspective, the website enforces HTTPS and employs cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the website's claims, indicating a legitimate and trustworthy online presence. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, with recommendations to enhance security headers, publish formal security policies, and improve accessibility to further strengthen its security posture and user trust.

M

Ministarstvo gospodarstva

mingo.hr

55

The website represents the official online presence of the Ministry of Economy of the Republic of Croatia, serving as a central hub for disseminating information related to economic policies, energy approvals, public procurement, and consumer protection. It targets citizens, businesses, and government officials, providing access to news, documents, e-services, and public calls. The site is well-branded with consistent government identity and links to related official portals, reinforcing its authoritative position within the Croatian government ecosystem. From a technical perspective, the website employs a traditional tech stack including jQuery, Modernizr, and various UI libraries, alongside Google Analytics for visitor tracking. The site is mobile-optimized and accessible, with a cookie consent mechanism that aligns with GDPR requirements. However, some JavaScript libraries are outdated, which could pose security risks if not regularly updated. Security-wise, the site enforces HTTPS and implements cookie consent, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms the domain's legitimacy as a government entity with consistent registration details. Overall, the website is a trustworthy and professional government portal with good content quality and privacy compliance. Strategic improvements include enhancing security headers, updating legacy scripts, and publishing explicit security and incident response policies to strengthen the security posture and user trust.

O

Obec Veliká Ves

velikaves.eu

53

The website www.velikaves.eu serves as the official online presence for the municipality of Veliká Ves near Prague, Czech Republic. It provides residents and visitors with local news, municipal office information, community projects, and public services. The site is targeted primarily at local citizens and stakeholders interested in municipal affairs. The business model is that of a government entity providing information and services to its community. The website is well-branded, consistent, and contains relevant content reflecting the municipality's identity and activities. Technically, the site uses standard web technologies including jQuery, Owl Carousel, and Fancybox for interactive elements. The site is mobile-optimized with good navigation and SEO practices. However, no advanced CMS or hosting provider details are evident. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and includes a contact form with basic spam protection. However, no explicit security headers were detected, and no incident response or vulnerability disclosure information is provided. Privacy and cookie policies exist, indicating GDPR awareness, but no active cookie consent mechanism is implemented. The WHOIS data is unavailable due to privacy protection, which is typical for small municipal domains and does not raise immediate concerns. Overall, the website presents a trustworthy and professional image suitable for a small government entity. Strategic recommendations include enhancing security headers, implementing cookie consent, and improving accessibility to strengthen compliance and user trust.

P

Provident Promotions

providentpro.com

53

Provident Promotions is a small, regionally focused creative agency based in Hastings, Nebraska, specializing in digital media marketing services including website design, logo creation, photography, video production, and SEO. The company targets local businesses and non-profits seeking professional marketing tools to build and grow their brands. Their website demonstrates a good level of technical maturity, leveraging WordPress CMS with modern plugins and libraries to deliver a responsive and SEO-optimized user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data for the domain raises concerns about domain registration transparency, which could impact trustworthiness despite the professional presentation and client testimonials. Overall, the website is well-designed and functional but would benefit from enhanced privacy compliance and clearer domain legitimacy.

R

Retrotainment Games LLC

retrotainmentgames.com

61

Retrotainment Games LLC operates a professionally designed e-commerce website focused on retro cartridge-based video games. The company targets retro gaming enthusiasts and collectors, offering game development, manufacturing, publishing, and retail services. The website is built on the Shopify platform, leveraging modern web technologies and providing a good user experience with mobile optimization and clear navigation. However, the absence of WHOIS data raises concerns about domain registration legitimacy, although the active and professional online presence suggests a legitimate business. Security posture is strong with HTTPS and secure Shopify checkout, but privacy and cookie policies are missing, which impacts compliance. Overall, the site is safe and trustworthy for general audiences but would benefit from enhanced privacy disclosures and domain registration transparency.

E

EDF Renewables North America

edf-re.mx

53

EDF Renewables North America operates a dedicated Mexico division focused on renewable energy projects including solar and wind power generation. The company has been active in Mexico since 2000, with a large employee base and offices in Mexico City and Oaxaca. Their market position is strong as a leading independent power producer and service provider in the renewable energy sector, offering a broad portfolio of clean energy technologies and services. The website reflects a mature digital presence with modern technologies, SEO optimization, and multi-language support. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. WHOIS data is missing, which slightly impacts trust but the overall professional presentation and corporate affiliations support legitimacy.

S

Stadtmuseum Siegburg

stadtmuseum-siegburg.de

10

Stadtmuseum Siegburg is a local cultural institution in Germany providing museum exhibitions, events, guided tours, and educational programs. The website serves as an information portal for visitors and community members interested in local history and art. The technical infrastructure is based on the ionas4 CMS with modern web technologies including JavaScript modules and Matomo analytics, indicating a moderate level of digital maturity. Security posture is strong with HTTPS and script integrity checks, though explicit security policies and incident response contacts are not published. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is professional, well-structured, and trustworthy, serving its target audience effectively.

E

Energieküste

energiekueste.de

49

Energieküste is a regional platform and network based in Schleswig-Holstein, Germany, focused on advancing renewable energy initiatives and the energy transition. The website serves as a hub for connecting stakeholders including businesses, research institutions, policymakers, and the public. It offers project information, event announcements, newsletters, and news updates, positioning itself as a leading regional player in the renewable energy sector. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices, accessible, and SEO-friendly. It employs HTTPS and a cookie consent mechanism, demonstrating good digital maturity. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the business claims, indicating a trustworthy domain registration. Overall, the website presents a professional, secure, and privacy-compliant digital presence suitable for its business goals. Strategic improvements could include publishing a security policy and enhancing HTTP security headers to further strengthen its security posture.

T

TAURIS

tauris.sk

50

TAURIS is a Slovak manufacturer specializing in meat and meat products, offering a broad range of items such as hams, sausages, salamis, and specialty products. The company targets Slovak consumers and business partners within the food manufacturing and retail sectors. The website reflects a medium-sized enterprise with a consistent brand presence and trust indicators including certifications and testimonials. Technically, the site employs a modern tech stack with Bootstrap, jQuery, and integrates multiple analytics and tracking tools controlled by a cookie consent mechanism. Security posture is solid with HTTPS and no exposed sensitive data, though security headers are absent and incident response information is not provided. Overall, the website is professional, user-friendly, and compliant with GDPR requirements for privacy and cookie policies.

S

Sperky Frank

sperkyfrank.sk

51

Sperky Frank operates a well-established online and physical retail jewelry business in Slovakia, specializing in gold, silver, and diamond jewelry. The website demonstrates a mature e-commerce platform with a broad product catalog, clear navigation, and multiple customer engagement channels. Technically, the site employs modern web technologies, including Google Analytics, Facebook Pixel, Microsoft Clarity, and reCAPTCHA, ensuring both marketing effectiveness and security. The security posture is strong with HTTPS, secure login forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly available. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, reflecting a medium-sized retail business with a solid market position.

N

NEUWOBA - Neubrandenburger Wohnungsbaugenossenschaft eG

neuwoba.de

48

NEUWOBA - Neubrandenburger Wohnungsbaugenossenschaft eG is a large housing cooperative based in Neubrandenburg, Germany, providing modern, affordable, and community-oriented housing solutions. The organization operates multiple subsidiaries offering social care services, property management, and new construction projects. Their market position is strong within Mecklenburg-Vorpommern, supported by over 9,000 apartments and active community engagement. The website reflects a professional and comprehensive digital presence with clear navigation and relevant content targeting local residents and cooperative members. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and jQuery. It incorporates various UI libraries and ensures mobile responsiveness and good SEO practices. Cookie consent and privacy policies are implemented in compliance with GDPR. Analytics usage is moderate, primarily via Google Analytics, with user tracking controlled by consent mechanisms. From a security perspective, the site enforces HTTPS and uses secure forms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence. Overall, NEUWOBA's website demonstrates a mature digital infrastructure suitable for its business needs, with room for improvement in security policy transparency and accessibility features. The risk profile is low, and the site is safe for general audiences.

N

Nutricia Limited

volvic.co.uk

70

Volvic UK is a consumer retail brand specializing in natural mineral water and flavored water products sourced from volcanic filtration in France. The company operates under Nutricia Limited and targets UK consumers with a focus on sustainability and sports sponsorship, notably the Women’s Rugby World Cup 2025. The website is built on TYPO3 CMS and integrates modern web technologies including Google Tag Manager and TrustCommander for privacy management. The site is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Security posture is strong with HTTPS enforced, though security headers could be improved and incident response contacts are not publicly listed. WHOIS data for the exact domain is unavailable due to domain naming rules, indicating the domain is a subdomain rather than a registered domain, but the website content and branding strongly support legitimacy. Overall, the site demonstrates good digital maturity and business credibility with minor areas for security enhancement.

V

Volvic

volvic.com

10

Volvic operates as a prominent international beverage brand specializing in volcanic natural mineral water and a range of healthy beverages. The company emphasizes sustainability, source protection, and transparency in its product offerings, positioning itself as a responsible and environmentally conscious player in the retail beverage market. The website content reflects a mature brand with a consistent message and a broad target audience of health-conscious consumers. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks visible security headers and explicit security policies, which could be improved. The absence of WHOIS registration data is a notable anomaly that slightly reduces trustworthiness, though the overall professionalism and trust signals on the site mitigate this concern. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen credibility and compliance.

V

Volvic

volvic.be

64

Volvic Belgium operates a professionally designed website targeting French-speaking consumers in Belgium, offering a range of natural mineral water and flavored water products with a strong emphasis on sustainability and environmental protection. The website is built on TYPO3 CMS and integrates modern JavaScript libraries and tracking tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The lack of WHOIS transparency is mitigated by the professional presentation and presence of privacy policies, trusted retail partners, and social media channels. Overall, the website demonstrates a credible and trustworthy business presence in the retail beverage sector.

E

EDF Renewables North America

edf-re.ca

40

EDF Renewables North America operates as a leading independent power producer and service provider specializing in renewable energy projects across Canada and the U.S. Their portfolio includes wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging solutions. With over 200 employees and offices in major Canadian cities, they have developed nearly 2,000 MW of renewable energy capacity and continue to expand their pipeline. The company emphasizes environmental stewardship and community engagement, aligning with the broader EDF Group's sustainability goals. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a professional and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a minor concern but is offset by strong branding and external trust signals. Overall, the company presents a credible and mature digital presence in the renewable energy sector.

DECLIMA s.r.o. is a Czech company specializing in smart building technologies and energy management solutions, primarily serving private and commercial customers in the Litomyšl region. Their services include energy measurement and control, project design, coordination of trades, financing assistance, automation with Loxone systems, installation, training, and servicing. The company positions itself as a comprehensive provider from project inception to ongoing monitoring and support. Technically, the website is built on WordPress with modern SEO and analytics tools, showing a good level of digital maturity. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some advanced security headers are missing. The absence of WHOIS data limits domain trust assessment, but the professional web presence and clear contact information support legitimacy. Overall, the site is well-structured, user-friendly, and compliant with GDPR requirements.

E

ENERKOM Slovácko, z.s.

enerkomslovacko.cz

58

ENERKOM Slovácko, z.s. is a small non-profit association focused on promoting community energy and sustainable development in the Slovácko region of the Czech Republic. The organization advocates for renewable energy sources, decentralization of energy production, and active member collaboration to improve quality of life and environmental conditions. Their key services include community energy initiatives, consulting, and partnerships. The website reflects a professional and regionally focused entity with clear contact information and GDPR-compliant privacy and cookie policies. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Owl Carousel, Google reCAPTCHA v3, and the Nette PHP framework. The site is mobile-optimized with good SEO practices and uses Google Fonts for typography. Hosting is managed through a Czech registrar with appropriate DNS configuration. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and integrates Google reCAPTCHA to protect forms. Cookie consent is implemented with granular user controls and detailed disclosures. However, security headers such as CSP, HSTS, and X-Frame-Options are not detected, and no explicit security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website is trustworthy and professionally maintained, with strong privacy compliance and a clear business purpose. Recommendations include enhancing HTTP security headers, publishing incident response contacts, and improving accessibility features to further strengthen security posture and user trust.

A

Aurelia Stiftung

aurelia-stiftung.de

64

Aurelia Stiftung is a German non-profit foundation dedicated to the protection of bees and biodiversity. The organization advocates for sustainable agricultural practices, educates the public, and supports targeted projects to prevent ecosystem collapse. Their website reflects a professional and consistent brand image, targeting environmentally conscious individuals and stakeholders interested in biodiversity conservation. The foundation operates primarily through donations and public engagement. Technically, the website is built on WordPress with modern SEO and cookie management plugins, ensuring good performance and mobile responsiveness. The use of HTTPS and a cookie consent mechanism demonstrates a commitment to security and privacy compliance. However, some security headers are missing, and no explicit security or incident response policies are published. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy policies are comprehensive and GDPR compliant, with clear cookie consent management. Contact is primarily via web forms, with no direct email or phone contacts publicly listed. WHOIS data is minimal but consistent with the foundation's profile and domain age. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include adding explicit security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.

S

Sjómaq

sjomaq.org

64

Sjómaq is a non-profit youth project aimed at fostering connections and mutual understanding among young people across Denmark, the Faroe Islands, and Greenland. The initiative is a collaboration among youth organizations in these regions, emphasizing values such as respect, curiosity, equality, and openness to build friendships and cultural understanding. The website serves as an informational and engagement platform for this community-building effort. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Fancybox, and is hosted via AWS Cloudfront CDN, ensuring moderate performance and good mobile optimization. The site includes minimal tracking via Simple Analytics, with no visible cookie consent mechanism, which is a minor privacy compliance gap. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended improvements. No incident response or vulnerability disclosure information is publicly available. The WHOIS data is transparent and consistent with the organization's profile, supporting the site's legitimacy. Overall, the website is professional, trustworthy, and well-aligned with its non-profit mission, though it could benefit from enhanced security practices and privacy compliance measures.

S

Sturm, Ruger & Co., Inc.

ruger.com

68

Sturm, Ruger & Co., Inc. is a leading American firearms manufacturer with a broad portfolio of products including pistols, revolvers, rifles, and accessories. The company has a strong market position supported by a well-structured website that provides detailed product information, customer service, and investor relations. The website targets firearm consumers, law enforcement, and military sectors, emphasizing responsible firearm ownership. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Analytics, with good mobile optimization and navigation clarity. Security posture is moderate with HTTPS usage and anonymized analytics but lacks explicit security headers and a cookie consent mechanism. The domain registration is consistent with the company's long history and public business presence, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with basic privacy policies, though improvements in cookie consent and security headers are recommended.

K

Kúpele Bojnice, a.s.

kupele-bojnice.sk

48

Kúpele Bojnice, a.s. is an established spa and wellness service provider based in Slovakia, offering accommodation, therapeutic procedures, and leisure activities. The company has a strong regional presence supported by a domain registered since 2003 and certifications such as EUROPESPA. Their website reflects a professional and consistent brand image targeting general consumers seeking health and relaxation services. Technically, the website uses a modern tech stack including Bootstrap and jQuery, with mobile responsiveness and good SEO practices. Security posture is adequate with HTTPS and DNSSEC enabled, though improvements in security headers and incident response transparency are recommended. Privacy compliance is well addressed with GDPR-aligned policies and a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with moderate user tracking via Google Analytics.

K

KOMFOS Prešov, s.r.o.

komfos.sk

48

KOMFOS Prešov, s.r.o. operates as a Slovakian retail and wholesale food business, affiliated with the international CBA franchise. The company offers a broad range of food products including meat, dairy, confectionery, beverages, and spices, targeting both households and business customers. Their market position is solid within Slovakia as a medium-sized enterprise with a clear focus on food retail and wholesale services, supported by an e-shop and loyalty programs. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates social media and marketing tools, and provides a responsive user experience. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a credible business presence.

O

Olive pizza restaurant

pizzaolive.sk

48

Olive Pizza is a Slovak hospitality business operating multiple restaurant locations specializing in Italian and Slovak cuisine, including pizza, cafe, and brunch services. The website presents a professional and consistent brand image targeting local customers in Slovakia. Technically, the site uses a Bootstrap-based responsive design with common JavaScript libraries and Google reCAPTCHA for form protection. Security posture is moderate with HTTPS enabled and privacy compliance evident through cookie consent and GDPR policies, but the use of an outdated jQuery version and lack of security headers present areas for improvement. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

O

ODU - trade, s.r.o.

odutrade.com

48

ODU - trade, s.r.o. is a Slovak construction and engineering company specializing in residential, industrial, and administrative building projects. Founded in 2020, it offers comprehensive construction services including new builds, reconstructions, and project engineering. The company maintains a professional online presence with clear contact information, certifications, and social media engagement, positioning itself as a reliable regional player in the construction sector. The website is well designed, mobile-optimized, and provides relevant content for its target audience. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and Google Analytics, hosted under a Slovak registrar with DNS servers in Slovakia. Performance and SEO are adequate, though accessibility could be improved. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks DNSSEC and security headers, and no published security or incident response policies are found. Overall, the website is safe with no adult or questionable content, and no WAF or blocking mechanisms detected. The domain registration data aligns well with the business claims, supporting legitimacy. However, the absence of a privacy policy and security headers are notable compliance and security gaps. Strategic recommendations include publishing a privacy policy, enabling DNSSEC, adding security headers, and improving accessibility to enhance compliance, security, and user trust.

M

MUNIO, s.r.o.

munio.sk

49

MUNIO, s.r.o. is a Slovak construction company specializing in dry construction techniques such as drywall (sadrokartóny) and insulation (zatepľovanie) systems. The company targets administrative, industrial, commercial, and residential building projects across Slovakia, positioning itself as a reliable partner in the construction sector. Their website reflects a small-sized business with a focus on quality workmanship and client satisfaction. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Google reCAPTCHA v3, ensuring a responsive and user-friendly experience. The presence of GDPR-compliant cookie consent and a privacy policy indicates attention to privacy regulations. Security-wise, the site uses HTTPS and implements spam protection on forms but lacks visible HTTP security headers and a published security policy or incident response contacts. Overall, the website is professional and trustworthy with moderate security maturity.

C

Cubex

cubexcentrum.cz

46

Cubex Centrum Praha is a leading multifunctional conference center located in Prague, distinguished by its LEED Platinum certification and award-winning event spaces. The venue offers advanced technological capabilities, sustainable design, and premium catering services, positioning itself as a top choice for corporate events, conferences, gala dinners, and exhibitions in the Czech Republic. The website reflects a mature digital presence with professional design, rich multimedia content, and strong SEO optimization. Technically, the site leverages WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the domain shows privacy protection in WHOIS data but maintains legitimacy through consistent branding, certifications, and client testimonials.

S

Steko s.r.o.

stekovranov.sk

43

Steko s.r.o. is a Slovakian company specializing in vehicle technical inspections, emission controls, originality checks, and car wash services primarily serving motorists in the Vranov nad Topľou region. The company has been operational since 2010, positioning itself as a trusted regional provider with a focus on quality and customer satisfaction. The website reflects this with clear service offerings, contact information, and relevant business documentation such as pricing and certifications. Technically, the website employs modern web technologies including Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS and DNSSEC enabled, complemented by a GDPR-compliant cookie consent mechanism and privacy policy. However, there is room for improvement in implementing additional security headers and formal incident response disclosures. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

SAD Humenné, a.s.

sadhe.sk

41

SAD Humenné a.s. is a regional transportation company based in Slovakia, providing a range of passenger transport services including urban, suburban, long-distance domestic, international, and occasional charter transportation. The company targets the general public and passengers in Eastern Slovakia and neighboring regions, operating with a medium-sized business model focused on public transport and ticket sales. Their website reflects a consistent brand presence and offers clear contact information and partner affiliations. Technically, the website employs common and reliable web technologies such as jQuery, Bootstrap, and Font Awesome, ensuring a responsive and user-friendly experience. The site includes a cookie consent mechanism compliant with GDPR, uses Google Analytics with IP anonymization, and maintains good SEO and mobile optimization standards. However, no CMS or hosting provider details are explicitly identified. From a security perspective, the website uses HTTPS and implements cookie consent but lacks visible advanced security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected, but improvements in security headers and formal policies are recommended to enhance the security posture. Overall, the website is professional, safe, and trustworthy with moderate user tracking and good privacy compliance. The domain registration aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and auditing third-party scripts to maintain and improve security and compliance.

P

Purple Lamp Studios

purplelamp.com

52

Purple Lamp Studios is a Vienna-based game development company founded by industry veterans in 2020. The company focuses on creating games and related services, targeting gamers and industry partners. The website is professionally designed using WordPress with the Salient theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and SEO-friendly, though some technical improvements are possible. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data raises concerns about domain registration legitimacy, impacting trust. Overall, the site presents a credible business but would benefit from enhanced transparency and security practices.

D

diagnose:media

diagnose-media.org

9

diagnose:media is a German non-profit initiative focused on promoting competent and self-determined use of digital media by children and adolescents. The organization supports parents, schools, and affected individuals while networking experts and specialized institutions. Their core mission is to highlight the negative side effects of digital media and recommend measures to avoid or mitigate risks, especially concerning psychosocial aspects, communication behavior, addiction potential, privacy protection, and health impacts from mobile radiation. The website offers educational articles, publications, events, and expert lectures targeted primarily at families and educational institutions. Technically, the website employs a range of JavaScript libraries including jQuery, Slick Slider, Fancybox, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with a responsive design and clear navigation. However, some technologies like jQuery are outdated, and no explicit CMS or hosting provider information is available. Performance is moderate, and SEO and accessibility are basic but functional. From a security perspective, the site uses HTTPS (assumed but not explicitly confirmed), but lacks visible security headers and cookie consent mechanisms despite using tracking scripts. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is unavailable or protected, which limits domain trust verification and reduces the overall legitimacy score. The site does not publish security policies or incident response information. Overall, diagnose:media presents a professional and trustworthy educational resource with good content quality and user experience. The main risks relate to incomplete WHOIS transparency and minor security best practice gaps. Strategic improvements in security headers, updated libraries, and privacy compliance would enhance trust and resilience.

M

Startseite Besucher - mcg.at

mcg.at

65

The website mcg.at serves as a local event information portal focused on Graz, Austria, providing details about concerts, fairs, shows, business, and sports events. The site targets a general audience interested in live entertainment and community happenings. The business appears to be a small local entity founded around 2019, with a clear focus on event promotion and information dissemination. Technically, the website is built on WordPress, utilizing common plugins such as Yoast SEO and Instagram Feed Pro, and integrates Google Tag Manager for analytics and WonderPush for marketing and retargeting. The site demonstrates moderate performance and good mobile optimization, with a generally professional design and clear navigation. From a security perspective, the site uses HTTPS and some security best practices like nonce attributes in scripts. However, it lacks comprehensive security headers and does not provide visible privacy, cookie, or incident response policies, which are critical for GDPR compliance and user trust. No security.txt or vulnerability disclosure mechanisms are present, indicating room for improvement in security posture. Overall, the website is legitimate and trustworthy based on domain registration data and content alignment. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance user trust and regulatory adherence.

A

ATOZ Marketing Services, spol. s r.o.

volba-spotrebitelov.sk

40

The website volba-spotrebitelov.sk represents a well-established Slovak marketing program focused on promoting and awarding new and innovative fast-moving consumer goods and dietary supplements. Operated by ATOZ Marketing Services, spol. s r.o., the program has been active for over 14 years, positioning itself as a recognized sales accelerator in the Slovak retail market. The site provides product registration, consumer research, marketing support, and organizes an annual gala event to honor winners. The target audience includes manufacturers and distributors in Slovakia and internationally. The website content is professionally presented, with consistent branding and clear navigation, supporting a positive user experience.

L

Lietuvos kultūros taryba

ltkt.lt

44

Lietuvos kultūros taryba is the official Lithuanian Culture Council responsible for providing funding, guidelines, and support to cultural organizations, creators, and regional cultural development initiatives within Lithuania. The organization operates as a governmental or non-profit entity, serving a broad audience including NGOs, private and public cultural institutions, and individual creators. Their website offers comprehensive information on funding competitions, project financing, stipends, and cultural research, positioning them as a key national cultural funding body. Technically, the website employs modern web technologies such as jQuery, Select2, Fancybox, and integrates Google Tag Manager and Google Analytics for analytics and marketing purposes. Accessibility is a strong focus, with the implementation of the Readabler tool providing multiple accessibility modes and features. The site is mobile-optimized and demonstrates good SEO practices, although some security headers are missing. From a security perspective, the site uses HTTPS and has a robust cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS data limits domain registration trust verification, and no explicit security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and well-structured, serving its governmental cultural funding role effectively. Strategic improvements include adding security headers, publishing terms of service and security policies, and verifying domain registration details to enhance trustworthiness.

U

UFI The Global Association of the Exhibition Industry

ufi.org

51

UFI The Global Association of the Exhibition Industry is a professional membership organization that serves trade show organizers, venue owners, service providers, and industry associations worldwide. It offers key services including global events, education programs, industry resources, and awards to support and promote the exhibition industry. The website reflects a well-established global association with consistent branding and comprehensive content tailored to industry professionals. Technically, the website is built on WordPress and leverages common libraries such as jQuery, Google Analytics, and Yoast SEO for performance and search optimization. The site is mobile-optimized, accessible, and uses HTTPS to secure communications. Privacy and cookie policies are prominently presented with consent mechanisms, indicating good compliance with data protection regulations. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to privacy protection is typical for organizations of this nature and does not detract from the site's legitimacy. Overall, the website demonstrates a strong professional presence with good technical and privacy practices. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

M

Moffitt Cancer Center

moffitt.org

75

Moffitt Cancer Center is a leading healthcare institution specializing in cancer treatment and research, positioned as Florida’s top choice for cancer care with multiple dedicated hospitals and outpatient centers. The website reflects a mature digital presence with comprehensive content targeting patients, families, and healthcare professionals. It offers extensive resources including clinical trials, educational programs, and patient support services. The organization holds several prestigious certifications and awards, reinforcing its market position and trustworthiness. Technically, the website employs a modern technology stack including Google Tag Manager, Adobe Launch, and Microsoft Application Insights, integrated with multiple third-party marketing and analytics tools. The site is built on the Episerver CMS platform, optimized for mobile devices, and demonstrates good SEO and accessibility practices. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and uses multiple tracking and advertising pixels responsibly. While explicit security headers are not fully confirmed, no critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms and GDPR considerations. WHOIS data is privacy protected, which is typical for healthcare entities, and does not raise immediate trust concerns. Overall, Moffitt Cancer Center’s website is professional, secure, and compliant, supporting its business credibility and user trust. Strategic improvements in security header implementation and publishing a dedicated security policy could further enhance its security posture.

D

DevGAMM LLC

devgamm.com

60

DevGAMM LLC operates an established international game development conference platform, primarily targeting professionals in the gaming industry such as developers, publishers, media, and recruiters. Founded in 2008 and with a domain registered since 2013, the company has a strong market presence in Eastern Europe and beyond, offering events, networking, awards, and educational services. The website is professionally designed, content-rich, and optimized for user experience and SEO. Technically, it is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools, all managed with user consent mechanisms. Security posture is good with HTTPS enforced and reCAPTCHA protection on forms, though improvements like DNSSEC and enhanced security headers are recommended. Overall, the site is trustworthy, compliant with GDPR, and demonstrates a mature digital infrastructure.

K

KlimaPark Kysak

klimapark.sk

50

KlimaPark Kysak is a newly established environmental education center located in eastern Slovakia, offering immersive audiovisual experiences and educational tours focused on environmental awareness. The website serves as a digital portal for visitors and educational groups to learn about the center, view galleries, and make reservations. The business positions itself as a regional leader in environmental education with a focus on interactive and innovative learning experiences. Technically, the website is built on WordPress and leverages modern JavaScript libraries including ArcGIS for mapping, providing a functional and visually appealing user experience. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and formal privacy or cookie policies, which are important for GDPR compliance. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

C

Children's of Alabama

childrensalcareers.org

69

Children's of Alabama operates a dedicated career website focused on recruiting healthcare professionals for its pediatric hospital in Birmingham, Alabama. The site highlights the organization's long-standing commitment to pediatric care, emphasizing a compassionate culture and comprehensive employee benefits. The platform targets healthcare job seekers and professionals interested in pediatric healthcare careers, positioning itself as a regional leader with a legacy of over a century. Technically, the website leverages the TalentBrew career site platform, integrating modern JavaScript libraries such as jQuery, Slick Carousel, and Fancybox for enhanced user experience. It employs multiple third-party services for analytics, marketing automation, and accessibility improvements. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers are not explicitly present. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, reflecting compliance with privacy regulations such as GDPR. However, WHOIS data is unavailable due to privacy protection or malformed queries, limiting domain transparency. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security or incident response policy and security.txt file suggests areas for improvement. Overall, the website presents a professional, trustworthy, and secure platform for healthcare recruitment. Strategic enhancements in security header implementation and transparency could further strengthen its security posture and trustworthiness.

B

Barcelona Activa

barcelonactiva.cat

68

Barcelona Activa is the official local economic development agency of Barcelona, providing services to citizens, entrepreneurs, and businesses to promote employment, entrepreneurship, business growth, and training. The website is professionally designed, multilingual, and integrates well with the Barcelona city government branding. Technically, it uses a modern CMS (Liferay) and includes various JavaScript libraries and analytics tools with proper consent mechanisms. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and a published security policy are absent. WHOIS data is not publicly available due to the .cat domain registry policies, but the website content and branding strongly indicate legitimacy. Overall, the site is trustworthy, well-maintained, and serves as a comprehensive resource for economic development in Barcelona.