Security Directory

F

Flying Revue

flying-revue.cz

55

Flying Revue is a Czech aviation-focused media company providing news, articles, and multimedia content for aviation enthusiasts and professionals. The website serves as a digital platform for their magazine, educational courses, e-commerce, and community engagement. The company has an established presence since 2008 and targets a niche audience interested in aviation history, sport, and industry news. Technically, the site uses Fonio CMS with a mix of legacy and modern JavaScript libraries, Google Analytics, and advertising via Google Adsense. The site is well-structured, mobile-optimized, and uses HTTPS, but relies on an outdated jQuery version which poses security risks. Privacy and cookie policies are not explicitly found, indicating room for compliance improvement. The WHOIS data is missing, which reduces domain trust from a registration perspective, though the website content and social media presence support legitimacy. Overall, the site is professional and trustworthy but should address technical and compliance gaps to enhance security and privacy posture.

LPS Letecké práce a služby s.r.o. is a Czech Republic-based aviation company specializing in helicopter pilot training, helicopter maintenance, aerial surveying, and monitoring services. Established in 1996, the company holds multiple certifications and operates primarily in the transportation and energy sectors. Their website presents a professional image with clear service offerings and contact information, targeting individuals and businesses interested in helicopter-related services. Technically, the website uses modern front-end technologies including Bootstrap, Swiper.js, and Google Analytics, with responsive design and moderate performance. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks explicit security headers and privacy compliance mechanisms such as privacy and cookie policies. The domain WHOIS data is consistent with the business claims, indicating legitimacy and long-term operation. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices.

VÁPENKA VITOŠOV s.r.o. is a well-established lime production company based in Northern Moravia, Czech Republic, with a history dating back to 1872. The company is among the top three lime producers in the country, offering a range of lime and limestone products for various industrial sectors including metallurgy, chemical, energy, agriculture, and ecology. Their flagship branded product line is the SALITH® system, which includes mortars, plasters, and paints designed for broad construction applications. The company operates under the SigmaRoc group, indicating a solid market position and industrial backing. Technically, the website employs legacy technologies such as jQuery 1.7.2 alongside modern integrations like Google Maps API and Google Analytics. The site shows moderate performance and basic mobile optimization, with a custom or unknown CMS platform. SEO and accessibility are basic but functional. Cookie consent mechanisms are implemented, reflecting awareness of GDPR compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS (implied by Google services usage), but lacks explicit security headers and uses outdated JavaScript libraries, which could expose it to vulnerabilities. No incident response or vulnerability disclosure information is published, indicating room for improvement in security transparency and readiness. Overall, the site is professional and trustworthy but would benefit from modernization and enhanced security practices. The overall risk is moderate with no critical issues detected. Strategic improvements in security headers, library updates, and formal privacy documentation would enhance compliance and reduce risk exposure.

V

Via Medica Sp. z o.o. sp. k.

viamedica.pl

10

Via Medica Sp. z o.o. sp. k. is a well-established Polish medical publishing company founded in 2000. The company offers a broad range of services including medical journals, books, conferences, educational portals, and multimedia platforms targeted primarily at medical professionals and educators. Their website reflects a professional and consistent brand presence with a focus on delivering medical knowledge and education. Technically, the site is built on Drupal 8 with Bootstrap and jQuery, providing a modern but somewhat dated tech stack. The site is mobile optimized and includes good SEO and accessibility basics. Security posture is solid with HTTPS and a robust cookie consent mechanism, though it lacks advanced security headers and published security policies. The domain age and WHOIS data support the legitimacy of the business. Overall, the website is trustworthy, professional, and compliant with GDPR requirements.

V

VM Media Group sp. z o.o.

ikamed.pl

9

Ikamed.pl is an established Polish online medical bookstore operated by VM Media Group sp. z o.o., offering a wide selection of medical, health, and psychology publications targeted at patients, medical professionals, and students. The website demonstrates a professional e-commerce model with clear navigation, legal compliance, and a cookie consent mechanism aligned with GDPR requirements. Technically, the site uses legacy JavaScript libraries such as jQuery 1.7.1 alongside modern analytics and tracking tools like Google Analytics, Google Tag Manager, and Hotjar. While the site is accessible and functional, the use of outdated libraries and lack of security headers present potential security risks. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, although the business information and contact details are clearly presented and consistent with a legitimate medical publishing entity. Overall, the site scores well on content quality and privacy compliance but should address technical and security improvements to enhance its posture.

I

Innovation Ads Croatia

iac.hr

54

Innovation Ads Croatia is a small, established digital agency based in Rijeka, Croatia, specializing in web design, graphic design, video production, and visual identity services. With over 25 years of experience, the company positions itself as a reliable partner offering professional and creative digital solutions to local businesses and individuals. The website is built on WordPress with Elementor, indicating a modern and maintainable technical infrastructure. The presence of Google Analytics and Cloudflare DNS shows a standard digital maturity level. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

The website mhk.hr serves as the official platform for the annual cultural event 'Mjesec hrvatske knjige' (Month of Croatian Books), organized by Knjižnice grada Zagreba and supported by the Croatian Ministry of Culture and Media. It provides comprehensive information about the event, including program schedules, registration forms, promotional materials, and news updates. The target audience includes Croatian libraries, educators, students, and the general reading public. The site emphasizes cultural promotion and education through reading initiatives and contests.

O

Owasco RV Rentals

owascorvrentals.com

59

Owasco RV Rentals is a small Canadian business specializing in recreational vehicle rentals, including vans, motorhomes, and trailers. The company targets both Canadian and international customers, offering various rental options, specials, and loyalty programs. The website is professionally designed with clear navigation and comprehensive service information, supporting a positive user experience. Technically, the site uses a combination of legacy and modern web technologies, including jQuery, Bootstrap, and multiple analytics and tag management tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms. The absence of WHOIS registration data is a notable concern, reducing domain trustworthiness. Overall, the website presents a credible business front with room for security and transparency improvements.

F

Federació de Municipis de Catalunya

fmc.cat

59

Federació de Municipis de Catalunya is a well-established non-profit association founded in 2006, representing municipalities and local entities in Catalonia, Spain. The organization focuses on defending and promoting local autonomy, providing training, information, and various services to its members. The website reflects a professional and consistent brand image with clear contact information and active social media presence, positioning it as a trusted regional federation in the government sector. Technically, the website is built on ASP.NET with modern front-end technologies including Bootstrap 5 and jQuery. It uses Google Analytics for visitor tracking and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and demonstrates good SEO and accessibility basics, although some improvements in security headers and accessibility could be made. From a security perspective, the site uses HTTPS with a good SSL configuration and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contact information. The WHOIS data confirms the domain's legitimacy and consistency with the organization's claims, enhancing trustworthiness. Overall, the website is secure, compliant, and professionally maintained, suitable for its target audience of local government entities. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen its security posture and user experience.

M

MGS Motor Gruppe Sticht GmbH & Co. KG

auto-hensel.de

60

MGS Motor Gruppe Sticht GmbH & Co. KG is a well-established automotive dealership group operating nine locations in Bavaria, Germany. The company offers a wide range of vehicles including new and used cars, commercial vehicles, and campers, representing multiple well-known brands such as Ford, Fiat, Mazda, and Jaguar. Their business model focuses on vehicle sales, leasing, servicing, and customer support, targeting both private and commercial customers in the region. The website reflects a professional and comprehensive digital presence with clear navigation and detailed service offerings. Technically, the website employs modern web technologies including jQuery, Owl Carousel, and a proprietary CMS platform by Audaris. It is mobile-optimized, accessible, and SEO-friendly, with appropriate meta tags and structured content. Google Analytics is used with consent management configured to deny tracking by default, indicating privacy awareness. From a security perspective, the site uses HTTPS with secure cookie flags and basic security best practices. However, it lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with GDPR requirements, providing a trustworthy platform for customers. Strategic improvements could include enhanced security headers and published security policies to further strengthen trust and compliance.

Z

Za branou, z. s.

zabranou.cz

49

Za branou, z. s. is a Czech non-profit organization founded in 2010 dedicated to supporting families and children of incarcerated individuals. The organization offers counseling, family support, social rehabilitation, educational training, and literary competitions. Their website reflects a focused mission with clear navigation and relevant content tailored to their target audience. Technically, the site is built on the Ghost CMS platform, uses modern web technologies including jQuery and Google Analytics, and is hosted with DNS services via Cloudflare and registrar WEDOS. The website is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the organization's claims, supporting legitimacy and trustworthiness.

Č

Český tenisový svaz

cztenis.cz

46

Český tenisový svaz operates as the official national tennis federation of the Czech Republic, providing comprehensive services including player registration, tournament organization, rankings, and training for players, coaches, and referees. The website serves as a central hub for tennis-related information, official documents, and communication with the tennis community. It targets tennis players of all ages, clubs, and officials within the Czech Republic, positioning itself as the authoritative body in Czech tennis. Technically, the website uses a traditional tech stack with Bootstrap and jQuery, alongside Google Analytics for user tracking. While the site is functional and well-structured, it uses an outdated jQuery version which may expose it to security vulnerabilities. The site lacks visible cookie consent mechanisms and security headers, which are important for compliance and security best practices. From a security perspective, the site benefits from HTTPS and secure login forms but should update its JavaScript libraries and implement modern security headers. The WHOIS data confirms the domain's legitimacy and long-standing presence, reinforcing trust in the organization. Overall, the site is professional and trustworthy but could improve its security posture and privacy compliance. Recommendations include updating JavaScript libraries, implementing cookie consent banners, adding security headers, and enhancing privacy disclosures to align with GDPR requirements. These steps will improve user trust, security, and regulatory compliance.

V

VINCI Construction CS a.s.

vinci-construction.cz

68

VINCI Construction CS a.s. is the largest construction group operating in the Czech Republic and Slovakia, specializing in transport engineering, bridge construction, water management, and building construction. The company operates through a network of 21 subsidiary brands, serving a broad range of infrastructure and construction needs across the region. The website presents a professional and comprehensive overview of the business, targeting corporate and public sector clients. Technically, the website is built on the Solidpixels CMS platform, utilizing modern web technologies including Google Tag Manager and Google Analytics for tracking. It is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit incident response policies are absent. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding, contact transparency, and social media presence. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

C

COLAS CZ, a.s.

colas.cz

45

COLAS CZ, a.s. is a well-established Czech company specializing in road construction and infrastructure projects, including roads, bridges, railways, and tramways. It operates as part of the global Colas Group and offers a broad range of services from construction to material supply and laboratory testing. The company targets public infrastructure clients and construction partners within the Czech Republic, maintaining a strong market position supported by a history dating back to 1994 and multiple regional subsidiaries. The website reflects a professional and comprehensive digital presence with clear navigation, detailed service descriptions, and multiple contact options. Technically, the site uses modern JavaScript frameworks and Google Analytics with a consent mechanism, hosted on Czech infrastructure providers. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent banner. Overall, the website is trustworthy, professional, and aligned with the company's business model and market presence.

G

Golf Europe s.r.o.

golfovehry.cz

55

Golf Europe s.r.o. operates the website GolfovéHry.cz, a specialized platform offering golf travel packages, golf courses, lessons, and gift vouchers primarily targeting golf enthusiasts in the Czech Republic and neighboring countries. The business model focuses on providing curated golf travel experiences and personalized offers. The website demonstrates a professional and consistent brand presence with clear contact information and social media integration. Technically, the site uses modern web technologies including jQuery, Bootstrap 4, and tracking tools like Google Analytics and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and formal privacy policies are missing. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and well-maintained.

E

Expodum.cz

expodum.cz

58

Expodum.cz is a Czech Republic-based e-commerce retailer specializing in quick-setup party tents and related accessories. The company offers a variety of tent sizes and constructions, including steel and aluminum frames, with a focus on quality and customer satisfaction, evidenced by a 5-year warranty and positive customer reviews. Their business model targets both individual consumers and professional users needing reliable event shelter solutions. The website is well-branded and provides clear contact information, enhancing trust and customer engagement. Technically, the website leverages modern web technologies including Google Tag Manager, Google Analytics, Smartsupp chat, and the Sylius e-commerce platform. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and employs cookie consent for privacy compliance. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy of the business. Overall, Expodum.cz presents a professional and trustworthy online presence with a solid business focus. Strategic improvements in security policy transparency, WHOIS data availability, and enhanced accessibility would further strengthen their digital maturity and customer confidence.

S

stkprochlapy – Web pacientské organizace STK pro chlapy pro muže s urologickým nádorovým onemocněním

stkprochlapy.cz

43

The website stkprochlapy.cz represents a patient organization dedicated to supporting men with urological cancers in the Czech Republic. It provides information on prevention, diagnosis, treatment, and patient support, positioning itself as a specialized non-profit entity in the healthcare sector. The site targets Czech-speaking men affected by urological tumors and their families, offering guidance and updates relevant to their health journey. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Colibri Page Builder Pro, Swiper.js, and Fancybox, with Google Analytics integrated for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enabled, and a cookie consent mechanism is implemented, indicating GDPR awareness. However, no explicit privacy policy or terms of service pages were found, and no security headers were detected, which are areas for improvement. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is understandable for a patient support organization. Overall, the website is functional, informative, and moderately secure, serving its niche audience effectively.

F

FINEPACK

finepack.com

62

FINEPACK is a medium-sized company specializing in customized packaging production, graphic design, and global logistics services, targeting local and international brands primarily in the retail sector. The company positions itself as an experienced provider with a decade of global packaging expertise, serving over 1000 projects annually across Europe. Their website reflects a professional and consistent brand image, with comprehensive service offerings and strong client trust indicators such as reputable client logos and customer reviews. Technically, the website is built on the Webflow platform, leveraging modern technologies including Google Tag Manager, Facebook Pixel, Hotjar, and Cloudflare Turnstile CAPTCHA for security and analytics. The site is mobile-optimized, accessible, and performs moderately well, with good SEO practices and privacy compliance mechanisms in place. From a security perspective, the site enforces HTTPS, uses CAPTCHA on forms, and manages cookie consent effectively. However, explicit security headers are not confirmed, and the absence of WHOIS registration data raises concerns about domain legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low to moderate risk profile with strong business credibility but requires verification of domain registration and enhanced security header implementation to improve trustworthiness and compliance.

Univerzalni-Pujcka.cz is an informational website operated by Infinea Finance, s.r.o., providing comprehensive consumer information about various types of loans including bank and non-bank loans, quick online loans, and loans without income verification or registry checks. The site serves primarily Czech consumers seeking financial education and loan product comparisons, without directly offering financial products. Technically, the site uses modern JavaScript libraries such as jQuery 3.7.1, Google Analytics for tracking, and Seznam SSP for advertising. It is served over HTTPS with cookie consent mechanisms implemented, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response disclosures. WHOIS data is unavailable, which reduces domain trustworthiness, but the site compensates with clear company information and disclaimers. Overall, the site is professional, content-rich, and user-friendly, targeting general audiences interested in financial products in the Czech Republic.

B

Bodenseezentrum Innovation 4.0

bodensee-summit.com

23

Bodenseezentrum Innovation 4.0 operates a professional digital platform focused on the Bodensee Summit Digital 2025, a conference for digital innovation and resilience in the Bodensee region. The website targets entrepreneurs, leaders, innovators, and digital experts, providing detailed event information, speaker profiles, and interactive session descriptions. The business model centers on event organization and fostering digital transformation within a regional ecosystem. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices, including structured data and a cookie consent mechanism. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is strong with GDPR-aligned policies and consent management. Overall, the site is professional, trustworthy, and well-optimized for its audience and purpose.

B

Bodenseezentrum Innovation 4.0

bzi-netzwerk.com

10

Bodenseezentrum Innovation 4.0 operates a professional digital platform focused on digital transformation events and services in the Bodensee region. The website serves as a hub for event listings, expert connections, and regional innovation networking, targeting professionals and organizations interested in digital innovation. The business is newly founded in 2024, consistent with the domain registration date, and positions itself as a regional innovation facilitator. Technically, the website is built on WordPress with Elementor and uses modern plugins for SEO, GDPR compliance, and user experience enhancements. The site is mobile optimized and includes structured data for improved search visibility. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers are missing. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. Overall, the website is trustworthy, professional, and well-maintained, with room for improvement in security headers and incident response transparency.

Č

Český rozhlas

irozhlas.cz

64

iROZHLAS is the official news portal of Český rozhlas, the Czech public radio broadcaster. It provides reliable and fast news coverage from the Czech Republic and worldwide, including audio content and live broadcasts. The website is professionally designed, mobile-optimized, and rich in content, targeting the general public interested in news and current affairs. Technically, it uses a modern tech stack including Google Tag Manager, Chartbeat, and Gemius for analytics, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, but the site’s branding and content quality indicate high legitimacy. Overall, the site is a trusted and authoritative media source in the Czech Republic.

P

psn media GmbH & Co. KG

psnmedia.de

10

psn media GmbH & Co. KG is a well-established digital agency based in Rostock, Germany, operating since 2003. The company offers a comprehensive portfolio of digital services including web design, web development, app development for iOS and Android, individual software solutions, corporate design, and cross-media marketing campaigns. Their client base spans from medium-sized enterprises to large corporations and public institutions, positioning them as a versatile and reliable partner in the digital transformation space. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to business clients seeking digital innovation. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and slick carousel for UI components, alongside analytics and tracking tools including Google Analytics, Facebook Pixel, and Mouseflow. The site uses HTTPS with good SSL configuration and integrates a consent management platform to comply with GDPR requirements. While the site lacks explicit security headers and a public security policy, it demonstrates a solid baseline security posture with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site benefits from encrypted communications and user consent mechanisms for tracking. However, it could improve by implementing additional HTTP security headers and publishing incident response contacts or security policies. The WHOIS data aligns well with the website's claims, showing consistent domain registration and no suspicious patterns, supporting the legitimacy of the business. Overall, psn media presents a trustworthy and professional digital presence with strong business credibility and good privacy compliance. The site is well-optimized for user experience and mobile devices, making it suitable for its target audience of businesses seeking digital agency services.

M

Muzej Sveti Ivan Zelina

muzej-zelina.hr

47

Muzej Sveti Ivan Zelina is a small, government-affiliated cultural institution dedicated to preserving and showcasing the heritage of Sveti Ivan Zelina, Croatia. The website provides detailed information about the museum's history, collections, events, and projects, targeting local visitors, tourists, and cultural enthusiasts. The digital presence is supported by a moderate technology stack including jQuery, Bootstrap, and various UI libraries, with Google Analytics for visitor tracking. The site is mobile responsive and includes accessibility features, enhancing user experience. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and a formal privacy policy, indicating room for compliance improvement. WHOIS data confirms domain legitimacy and consistency with the museum's identity. Overall, the website is professional and trustworthy but could benefit from enhanced privacy and security practices.

C

Colloredo-Mannsfeld spol. s r. o.

zamekdobris.cz

49

The website www.zamekdobris.cz represents the official online presence of the Colloredo-Mannsfeld Castle in Dobříš, Czech Republic. It serves as a cultural and tourism portal providing information about the castle, its events, and visitor services. The business operates in the hospitality sector, targeting tourists and cultural enthusiasts. The site is built on a modern WordPress platform using the Divi theme and integrates SEO best practices through the Yoast plugin. Google Analytics is employed for visitor tracking, indicating a moderate level of digital maturity. Security-wise, the site enforces HTTPS and uses updated libraries, but lacks explicit security headers and formal security policies. The absence of WHOIS data limits domain trust verification, though the website content and social media presence support its legitimacy. Privacy and cookie policies are not clearly found, suggesting room for compliance improvement. Overall, the site is professional and functional but would benefit from enhanced security and privacy transparency.

P

Praha Bike

prahabike.cz

56

Praha Bike is a small, established tourism business based in Prague, specializing in guided bike tours and bike rentals including city, mountain, and electric bikes. The company has been operating since 2002 and targets tourists and visitors seeking active sightseeing and outdoor experiences in Prague. The website is built on the Tilda CMS platform, leveraging modern web technologies such as jQuery and Google Fonts, and integrates Google Analytics for visitor tracking. The site is well-structured with clear navigation and multiple language options, supporting a good user experience and mobile responsiveness. Security-wise, the website enforces HTTPS and implements standard security headers, though it lacks a visible cookie consent mechanism and dedicated security or incident response policies. WHOIS data is unavailable or privacy protected, which limits domain registration trust analysis but is likely justified for this business type. Overall, the website presents a professional and trustworthy online presence suitable for its market niche.

C

Captify Technologies

captifytechnologies.com

10

Captify Technologies operates a leading Search Intelligence platform that leverages real-time search data from over 2 billion devices to empower brands with actionable consumer insights. Their platform supports cookieless marketing strategies, enabling advertisers and publishers to optimize targeting and campaign measurement without relying on third-party cookies. The company positions itself as a mature and trusted player in the technology marketing sector, serving over 800 major global brands. Technically, the website is built on WordPress and integrates multiple modern marketing and analytics tools such as Google Analytics, HubSpot, Pardot, and OneTrust for cookie consent management. The site is well-optimized for SEO and mobile devices, with good content quality and clear navigation. Security-wise, HTTPS is enforced, and domain registration is consistent and legitimate, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service were found in the provided content. Overall, the website demonstrates a solid digital presence with room for improvement in formal privacy and security disclosures.

CHALUPA GGS s.r.o. is a Czech company specializing in engineering geology, hydrogeology, and geophysics services, operating primarily in Prague and the Central Bohemian region since 1990. The company targets businesses and entities requiring geological and environmental consulting services, positioning itself as an established local service provider with a solid customer base and references available upon request. The website reflects a professional and consistent brand image with clear contact information and service descriptions. Technically, the website is built on the MySUITU CMS platform, utilizing jQuery 1.11.0, ResponsiveSlides.js, and Google Analytics for tracking. The site is mobile-optimized with a cookie consent mechanism in place, although it uses an older JavaScript library version which may pose security risks. Performance is moderate, and SEO and accessibility are basic but functional. From a security perspective, the site enforces HTTPS and implements cookie consent with granular user control. However, it lacks important security headers and a privacy policy, which are critical for GDPR compliance and overall security posture. No vulnerabilities or exposed sensitive data were detected, but updating libraries and adding security headers are recommended. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to reduce risk and improve user trust.

B

BIG EVIL CORPORATION

bigevilcorporation.co.uk

58

BIG EVIL CORPORATION is a small UK-based independent videogame studio specializing in creating new games for retro consoles, particularly the SEGA Mega Drive and Genesis. Their business model focuses on niche market segments of retro gaming enthusiasts, offering original games developed using authentic 1990s SEGA development tools. The company maintains an active online presence with social media channels and a dedicated development blog, supporting community engagement and marketing efforts. Technically, the website is built on the 123-reg Website Builder platform, leveraging common web technologies such as JavaScript, jQuery, and Google Analytics for tracking. The site is hosted securely with HTTPS and uses CDN services for content delivery, though mobile optimization and accessibility are basic and could be improved.

B

Bike Garage Milan Kohout

bikegarage.cz

41

Bike Garage Milan Kohout is a small local bicycle service business based in Březová near Beroun, Czech Republic. The company specializes in professional bicycle repair and maintenance services for all types of bikes including electric bicycles. They also facilitate bicycle sales through partnerships with local bike retailers. The website is well designed, mobile optimized, and provides clear contact information and customer testimonials, indicating a trustworthy local service provider. However, the absence of WHOIS registration data and privacy/cookie policies indicates gaps in domain transparency and compliance. Technically, the site uses common frameworks like Bootstrap and jQuery, with Google Analytics and a third-party review widget integrated. Security headers and incident response information are missing, which could be improved to enhance security posture. Overall, the site is functional and professional but would benefit from improved privacy compliance and domain registration transparency.

E

EDUin

eduin.cz

10

EDUin is a Czech non-profit organization dedicated to informing the public about education through news articles, analyses, podcasts, and event listings. The website serves educators, policymakers, media professionals, and the general public interested in education topics. It holds a reputable position in the Czech educational media landscape, offering comprehensive and up-to-date content. Technically, the site is built on WordPress with modern optimizations including WP Rocket and uses Matomo and Google Analytics for tracking, balancing performance and privacy. The security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data and explicit privacy policy pages slightly reduce trust but do not undermine the overall legitimacy. The site is well-designed, mobile-optimized, and accessible, providing a professional user experience.

P

Partnerství 2030

partnerstvi2030.cz

39

Partnerství pro vzdělávání 2030+ is a Czech non-profit partnership focused on improving children's learning outcomes and reducing educational inequalities within the Czech Republic. The organization collaborates with multiple partners, including educational institutions, governmental bodies, and expert organizations, to coordinate efforts in education and wellbeing. The website serves as an information hub, providing updates, resources, and access to working groups and consultations. Technically, the site is built on WordPress using the Divi theme, with modern web technologies such as WebP images and Google Fonts, and integrates Google Analytics for user tracking. Security posture is solid with HTTPS enforced and GDPR cookie consent implemented, though explicit security headers and detailed privacy policies are not detected. Overall, the site presents a professional and trustworthy image aligned with its educational mission.

B

BerlinerLuft do Brasil

berlinerluft.com.br

46

BerlinerLuft do Brasil is a medium-sized multinational manufacturing company specializing in ventilation, exhaust, air treatment, and acoustic systems. The company serves diverse industrial sectors including healthcare, pharmaceuticals, data centers, agribusiness, and construction. Their business model focuses on providing customized, high-technology products with technical support throughout the project lifecycle. The website reflects a consistent brand presence with detailed product and application information targeting industrial clients in Brazil. Technically, the website is built on TYPO3 CMS using Bootstrap 3.1.1 and jQuery 1.11.0, with integration of Google Analytics and Google Tag Manager for tracking. The site is mobile optimized with moderate performance and basic SEO and accessibility features. HTTPS is enforced, but security headers are missing, and the use of an outdated jQuery version presents a potential security risk. From a security perspective, the site lacks visible privacy and cookie policies, as well as incident response or security policy disclosures. No critical vulnerabilities or exposed sensitive data were detected, but improvements are needed in security headers and compliance documentation. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, the website is professional and trustworthy but requires enhancements in privacy compliance and security best practices to improve its security posture and regulatory adherence.

S

Sturm, Ruger & Co., Inc.

marlinfirearms.com

63

Marlin Firearms, a brand manufactured by Sturm, Ruger & Co., Inc., is a well-established American firearms manufacturer specializing in lever-action rifles. The website reflects a mature business with a strong market position and a focus on quality and tradition. The digital infrastructure is moderately modern, utilizing common JavaScript libraries and Google Analytics for tracking. The site is mobile optimized and provides clear navigation and relevant content for its target audience of firearm enthusiasts and customers. Security posture is adequate with HTTPS enforced and age verification implemented, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic with privacy and terms policies present but lacking cookie consent mechanisms. Overall, the site is professional and trustworthy with a good balance of business and technical maturity.

H

H&B Notfallsanitäter-Börse GmbH

nfsb.de

54

H&B Notfallsanitäter-Börse GmbH operates a specialized job board and personnel placement service for emergency medical services in Germany. The company focuses on providing flexible job opportunities and staffing solutions for notfallsanitäter (emergency paramedics) and related professionals. Their platform also offers certified training and emphasizes legal employment and flexible scheduling. The website is well-designed, mobile-optimized, and uses modern technologies including WordPress, Yoast SEO, and Google Analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The domain registration is consistent with the business claims and shows no suspicious indicators. Overall, the company presents a credible and professional online presence targeting healthcare professionals and emergency service employers.

KLINGER Fluid Control GmbH is a well-established manufacturer specializing in high-quality industrial valves with over 130 years of experience. The company operates globally with a strong network of distribution partners and is a subsidiary of the KLINGER Group. Their website reflects a professional and consistent brand image, targeting industrial clients primarily in the manufacturing and energy sectors. Technically, the website employs modern web standards and includes user tracking via Google Analytics, though it lacks explicit cookie consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, but could be improved by adding security headers and incident response information. Overall, the site is trustworthy and professionally maintained, supporting the company's market position.

G

GründerMV

gruender-mv.de

46

GründerMV is a regional online platform dedicated to providing comprehensive resources, guides, and community support for business founders and entrepreneurs in Mecklenburg-Vorpommern, Germany. The website offers a variety of content including startup guides, legal form overviews, business plan templates, and news updates relevant to the local entrepreneurial ecosystem. It targets aspiring founders, solo entrepreneurs, and those interested in business succession within the region. Technically, the site is built on WordPress with modern SEO and GDPR compliance plugins, integrating Google Analytics and lazy loading scripts to optimize performance. The site is mobile-friendly and well-structured, supporting a positive user experience. Security-wise, the site uses HTTPS and some security best practices but lacks explicit security headers and published security policies, which could be improved. Overall, GründerMV presents a trustworthy and professional digital presence with room for enhancement in privacy transparency and security documentation.

E

Ehrenamtsstiftung MV

ehrenamtsstiftung-mv.de

59

Ehrenamtsstiftung MV is a regional non-profit foundation dedicated to supporting volunteer engagement in Mecklenburg-Vorpommern, Germany. The organization focuses on recognizing, advising, funding, qualifying, and networking volunteers and related entities. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience of volunteers, NGOs, and civic organizations. Technically, the site employs modern JavaScript libraries, Cookiebot for consent management, and Google Analytics for visitor insights, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent dialog. Overall, the site is trustworthy and well-positioned within its niche, with no critical vulnerabilities or blocking mechanisms detected.

V

Vereniging Afvalbedrijven

verenigingafvalbedrijven.nl

60

Vereniging Afvalbedrijven is a well-established Dutch industry association focused on the waste management and circular economy sectors. Founded in 2002, it serves as a key partner in the transition towards sustainable resource use and environmental responsibility. The website provides information on their activities, news, thematic areas, and campaigns, targeting professionals and organizations involved in waste processing and recycling. The association maintains an active presence on major social media platforms and publishes annual reports to communicate its impact and initiatives. Technically, the website employs a moderate technology stack including jQuery and Google Analytics with IP anonymization, hosted by team.blue nl B.V. The site is mobile-optimized with a clear navigation structure and professional design. However, it lacks some advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and enhanced security posture. From a security perspective, the site uses HTTPS and DNSSEC, indicating good baseline security. No critical vulnerabilities or blocking mechanisms were detected. The WHOIS data confirms a long domain history consistent with the organization's legitimacy. Nonetheless, improvements in security headers, privacy compliance, and incident response disclosures are recommended to strengthen trust and regulatory adherence. Overall, Vereniging Afvalbedrijven presents a credible and professional online presence with room for enhancement in privacy and security practices to align with best practices and legal requirements.

R

RALU Logistika d.d.

ralulogistics.com

60

RALU Logistika d.d. is a well-established third-party logistics provider specializing in integrated cold chain services, including international and national transport, warehousing, and distribution across Croatia, Serbia, and Europe. The company has a strong market position supported by over 30 years of experience and a large fleet and infrastructure. Their website reflects a professional digital presence built on WordPress with Elementor, incorporating modern analytics and cookie consent mechanisms. Security posture is solid with HTTPS, domain transfer lock, and no detected vulnerabilities, though some security policies and disclosures could be improved. Overall, the company demonstrates transparency and compliance with GDPR, enhancing trustworthiness.

S

Steinbeis Beratungszentrum für Wirtschaftsmediation

steinbeis-mediation.com

56

Steinbeis Beratungszentrum für Wirtschaftsmediation is a leading German institution specializing in mediation, conflict management, organizational development, and citizen participation, particularly in infrastructure projects. The organization offers comprehensive training, consulting services, and publishes a prominent industry magazine. Their market position is strong within Germany, supported by professional branding, awards, and a clear focus on high-conflict resolution scenarios. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates GDPR-compliant cookie management via Usercentrics. The site is well-structured, mobile-optimized, and includes essential SEO and accessibility features, although some improvements in security headers and incident response transparency are recommended. Security posture is solid with HTTPS enforced and privacy-conscious analytics configuration. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which should be investigated further. No critical vulnerabilities or malicious content were detected. Overall, the website and business present a professional and trustworthy front with minor technical and compliance gaps. Strategic recommendations include enhancing security headers, publishing a security policy, and clarifying domain registration details to improve trust and compliance.

DECLIMA s.r.o. is a Czech company specializing in smart building technologies and energy management solutions, primarily serving private and commercial customers in the Litomyšl region. Their services include energy measurement and control, project design, coordination of trades, financing assistance, automation with Loxone systems, installation, training, and servicing. The company positions itself as a comprehensive provider from project inception to ongoing monitoring and support. Technically, the website is built on WordPress with modern SEO and analytics tools, showing a good level of digital maturity. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some advanced security headers are missing. The absence of WHOIS data limits domain trust assessment, but the professional web presence and clear contact information support legitimacy. Overall, the site is well-structured, user-friendly, and compliant with GDPR requirements.

C

Context Heroes s.r.o.

contextheroes.com

71

Context Heroes s.r.o. is a Czech-based company specializing in bespoke translation and localization services, primarily targeting video games, apps, software, and product markets. The company positions itself as a trusted partner with a focus on delivering contextually accurate translations to help clients expand internationally. Their website reflects a professional and modern digital presence, leveraging a custom CMS platform and modern web technologies to provide a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security best practices like security headers and incident response information are absent. The lack of WHOIS data for the domain is a notable concern, potentially impacting trust and legitimacy assessments. Overall, the company demonstrates strong business credibility and digital maturity, with room for improvement in transparency and security documentation.

F

FELBERMAYR SLOVAKIA, s.r.o.

felbermayr.sk

50

FELBERMAYR SLOVAKIA, s.r.o. is a large Slovakian business specializing in heavy lifting, crane services, special transport, and lifting platforms. The company operates a substantial fleet of equipment and serves industrial clients across Slovakia and Europe, positioning itself as a regional leader in transportation and lifting solutions. The website reflects a professional business presence with clear service offerings and multiple regional contact points. Technically, the site uses modern front-end technologies including Bootstrap, jQuery, and OwlCarousel, supported by analytics and tracking tools such as Google Analytics and Hotjar with proper cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and dedicated security policies published. Overall, the site is well-structured, mobile-optimized, and compliant with GDPR requirements. The domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

N

Norges Bilbransjeforbund

nbf.no

60

Norges Bilbransjeforbund (NBF) is a Norwegian national interest organization representing companies engaged in automotive and related businesses. Affiliated with the Confederation of Norwegian Enterprise (NHO), NBF provides its members with legal advice, industry guidance, digital tools, and organizes events and training. The website reflects a professional and consistent brand presence targeting Norwegian automotive businesses. Technically, the site uses modern analytics and marketing technologies including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Cookiebot for consent management. The CMS appears to be Episerver (Optimizely), supporting good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS and bot protection via reCAPTCHA Enterprise, though security headers are not visibly implemented, representing an area for improvement. WHOIS data is unavailable, limiting domain registration trust verification, but the website's professional content and affiliations support legitimacy. Overall, the site is well-structured, secure, and compliant with privacy regulations.

P

PANTHER REISEN e.K.

panther-reisen.de

46

PANTHER REISEN e.K. is a small, regional travel agency based in Augsburg, Germany, specializing in cruises, flights, sport-related travel, and group travel. The company emphasizes personalized customer service and expert consulting, positioning itself as a trusted local specialist. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to travelers interested in various international destinations and sports events. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates accessibility tools such as the BarriGo widget, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact information and social media presence, supporting strong business credibility.

K

KnowledgeOwl

knowledgeowl.com

67

KnowledgeOwl is a technology company specializing in knowledge base software designed to help teams create, organize, and deliver knowledge efficiently. The company positions itself as a trusted provider with advanced features such as AI authoring, semantic search, and SAML SSO authentication, targeting business teams and organizations seeking to improve customer support and internal knowledge management. The website demonstrates a mature digital presence with professional design and modern technology usage, including Framer for site building and integration of analytics and consent management tools. Security posture is generally good with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS registration data is a notable anomaly that impacts trustworthiness. Overall, the site is professional and functional, but the domain registration inconsistency warrants further investigation.

81 klima a.s., operating under the brand 81heat.cz, is a Czech Republic-based company specializing in energy-efficient heating solutions, including solar water heating and air-to-water heat pumps. The company targets homeowners seeking to reduce energy costs and leverage government subsidies such as the Nová zelená úsporám program. With multiple regional offices and strong customer reviews, 81heat.cz positions itself as a trusted local provider with comprehensive installation, maintenance, and customer support services. Technically, the website employs modern tracking and analytics tools such as Google Tag Manager, Facebook Pixel, Bing Ads, and Plausible Analytics, combined with a responsive and well-structured design optimized for mobile devices. The site enforces HTTPS and provides a detailed cookie consent mechanism aligned with GDPR requirements, reflecting a mature digital presence. From a security perspective, while HTTPS is properly implemented and no sensitive data is exposed, the absence of explicit security headers and vulnerability disclosure policies suggests room for improvement. The lack of publicly available WHOIS data due to privacy protection is common for this business type and does not detract from the site's legitimacy, supported by consistent branding and transparent contact information. Overall, 81heat.cz demonstrates a solid business and technical foundation with good privacy compliance and user trust indicators. Strategic enhancements in security headers and incident response transparency would further strengthen its security posture and customer confidence.

N

NODIG - TEC s.r.o.

nodig.cz

49

NODIG - TEC s.r.o. is a specialized Czech company operating since 1996, focusing on trenchless pipe laying and renovation services primarily for infrastructure projects. Their market position is that of a niche service provider with a strong local presence, offering a variety of advanced drilling and pipe installation technologies. The website reflects a professional business with clear service offerings and contact channels, targeting developers and businesses in the energy and transportation sectors. Technically, the website uses modern JavaScript libraries such as jQuery and Google services including Analytics and reCAPTCHA, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, although some accessibility features could be improved. Security posture is adequate with HTTPS and bot protection, but lacks some security headers and explicit incident response information. The absence of WHOIS data is a notable gap in domain legitimacy verification, which slightly lowers trust from a security perspective. Overall, the website is professional and trustworthy, but domain registration transparency should be improved.

W

WindEurope

windeurope.org

58

WindEurope is a well-established European industry association advocating for wind energy policies and representing over 450 member companies. It operates as a key voice in the European renewable energy sector, providing policy advocacy, organizing industry events, and offering data and career resources. The organization is headquartered in Brussels, Belgium, and has a domain age consistent with its founding date in 2014, reinforcing its legitimacy and market presence. The website is professionally designed with excellent content quality, targeting industry stakeholders, policymakers, and professionals in the wind energy sector. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses multiple analytics platforms including Google Analytics, Matomo, and Microsoft Clarity. It is hosted behind Cloudflare, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO Premium for enhanced search engine visibility. The technical infrastructure supports a positive user experience with fast loading and clear navigation. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism, aligned with GDPR requirements. Contact information is clearly provided, enhancing trust and transparency. Overall, WindEurope's website demonstrates a high level of professionalism, security, and compliance suitable for an essential industry association. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen security posture and stakeholder trust.