Security Directory

Č

Čarovné-Slovensko.sk

carovne-slovensko.sk

58

Čarovné-Slovensko.sk operates a well-established e-commerce platform specializing in unique Slovak regional products including books, maps, and functional clothing. With over 23 years of experience, the company positions itself as a leading publisher and retailer in Slovakia, emphasizing Slovak production and fast delivery. The website is professionally designed with clear navigation and strong trust signals such as customer reviews, free shipping, and a 100-day return policy. Technically, the site leverages modern analytics and marketing tools including Google Analytics 4, Microsoft Clarity, Smartlook, and Tawk.to live chat, built on the Shoptet e-commerce platform. Security posture is solid with HTTPS enforced and CSRF protections on forms, though some security headers could be improved and a formal security policy is absent. Privacy compliance is robust with comprehensive cookie consent and privacy policies aligned with GDPR. Overall, the site is trustworthy and well-maintained, serving a general audience interested in Slovak cultural and regional products.

Z

ZeroSSL

zerossl.com

66

ZeroSSL is a technology company specializing in providing free and automated SSL certificates to website owners, developers, and enterprises. The company positions itself as a trusted certificate authority with a strong market presence, supported by notable industry clients such as Microsoft, Intel, and Hubspot. Their services include SSL certificate issuance, monitoring, one-step validation, quick installation, and ACME automation, catering to a broad audience seeking reliable and fast SSL solutions. Founded in 2016, ZeroSSL has established a medium-sized operation with consistent branding and a professional online presence. Technically, the website leverages a modern technology stack including jQuery, Google Tag Manager, Google Analytics, and Cookiebot for cookie consent management. Hosting and DNS services are provided via Cloudflare, enhancing performance and security. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features, though there is room for improvement in accessibility and security headers. From a security perspective, ZeroSSL enforces HTTPS and employs domain registration protections such as clientDeleteProhibited and clientTransferProhibited statuses. Cookie consent is managed comprehensively with granular user controls, reflecting good privacy compliance. However, DNSSEC is not enabled, and explicit security policies or incident response contacts are not publicly available, representing areas for enhancement. Overall, the website is professional, trustworthy, and secure, with no indications of malicious content or vulnerabilities. The domain registration details align well with the business claims, supporting legitimacy. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, enhancing HTTP security headers, and providing clearer contact information for security incidents.

C

Chráněné dílny Charity Opava

kramekprotebe.cz

55

Chráněné dílny Charity Opava operates an e-commerce platform selling handcrafted ceramic and sewn products made by employees of protected workshops affiliated with Charity Opava. The website targets general consumers interested in unique, socially responsible products and offers additional services such as gift set customization and baptism-related items. The business model focuses on retail sales supporting a charitable cause, positioning itself in a niche market within the Czech Republic. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though the absence of explicit security headers is noted. Privacy compliance is strong, with clear GDPR-aligned policies and cookie consent mechanisms. However, the lack of WHOIS data for the domain reduces trustworthiness from a domain registration perspective. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security headers and domain transparency.

M

MORAVEC Kvalitní ponožky s.r.o.

moravec-cz.com

55

MORAVEC Kvalitní ponožky s.r.o. operates a professional e-commerce website specializing in high-quality socks and seamless underwear, targeting Czech consumers. The company emphasizes its 25 years of experience, Czech manufacturing, and product quality, positioning itself as a trusted local brand in the retail sector. The website is built on the Shoptet platform, leveraging modern e-commerce technologies and integrating marketing and analytics tools such as Google Analytics and Facebook SDK. Security measures include HTTPS enforcement and cookie consent mechanisms, although some improvements in security headers and library updates are recommended. Overall, the site is accessible, well-structured, and compliant with GDPR requirements, reflecting a mature digital presence for a small-sized retail business.

L

Landkreis Ludwigslust-Parchim

kreis-lup.de

60

The Landkreis Ludwigslust-Parchim website serves as the official digital portal for the regional government of the Ludwigslust-Parchim district in Germany. It provides comprehensive administrative information, citizen services, political updates, and regional news. The site targets residents, local businesses, and visitors seeking governmental resources and services. The business model is that of a public sector entity focused on regional governance and community support. Technically, the website employs a traditional tech stack centered around jQuery and the ikiss CMS framework, supplemented by accessibility tools such as Eye-Able and ReadSpeaker. The site is mobile-optimized and offers good navigation and content structure, although some technologies are somewhat dated. Performance is moderate, with no significant technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and incident response policies are not publicly evident, and no vulnerability disclosure mechanisms are present. The WHOIS data is minimal but does not raise suspicion, supporting the site's legitimacy as a governmental domain. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could benefit from enhanced security policies and transparency. The risk profile is low, with recommendations focusing on improving security headers, incident response visibility, and vulnerability disclosure to strengthen trust and resilience.

apimedi GmbH is a small Swiss company specializing in beekeeping products, honey sales, and beekeeping training services. The company operates a commercial beekeeping business and complements it with an educational offering through its Imkerschule. The website targets local and regional customers interested in bee products and beekeeping education. Technically, the website uses a custom CMS with older but functional JavaScript libraries such as jQuery and Bootstrap. It is mobile optimized and includes basic SEO and accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy and cookie banner present. Overall, the website is professional, trustworthy, and suitable for its business purpose.

T

Technische Hochschule Ulm

hs-ulm.de

61

Technische Hochschule Ulm is a reputable German university of applied sciences focused on providing bachelor and master degree programs in technology, engineering, and energy sectors. The website serves as an information portal for prospective and current students, researchers, and staff, offering news, events, study programs, and support services. The university maintains a professional online presence with consistent branding and clear navigation. Technically, the site is built on Microsoft SharePoint with modern web technologies like Bootstrap and jQuery, ensuring good mobile responsiveness and accessibility. Security posture is solid with HTTPS and secure form handling, though explicit security policies and cookie consent mechanisms are lacking. Overall, the site is trustworthy and well-maintained, reflecting the institution's academic standing.

T

Technische Hochschule Ulm

thu.de

10

Technische Hochschule Ulm is a reputable German university of applied sciences specializing in technical and engineering education. The website provides comprehensive information about academic programs, research, and student services, targeting prospective and current students as well as academic staff. The institution maintains a solid regional presence with partnerships evident through linked domains and social media channels. Technically, the website is built on Microsoft SharePoint with modern front-end frameworks like Bootstrap and jQuery, offering good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and standard SharePoint security features, though explicit security headers and incident response contacts are not visible. Privacy compliance is adequate with a clear privacy and cookie policy, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained, suitable for its educational mission.

The Secession website represents a well-established Austrian non-profit cultural institution dedicated to contemporary art exhibitions and events. It holds a strong market position as one of the oldest independent art exhibition houses globally, with a rich history dating back to 1897. The site targets art enthusiasts, visitors, and the contemporary art community, offering detailed information about exhibitions, events, and the institution's mission. The business model is non-commercial, focusing on cultural promotion and education. The website content is rich, professionally designed, and consistent with the institution's branding and reputation. Technically, the website employs a mix of legacy and modern JavaScript libraries, including jQuery 1.11.3, GSAP, and Slick Carousel, with no explicit CMS detected, suggesting a custom-built platform. Performance is moderate with good mobile optimization and accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. Hosting details are not explicitly identified. From a security perspective, the site enforces HTTPS and uses Google Analytics with consent mechanisms denying ad and analytics storage by default, indicating good privacy awareness. However, the use of outdated jQuery versions and missing explicit security headers like Content Security Policy and X-Frame-Options present moderate risks. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. Overall, the website is trustworthy, professional, and safe for general audiences. It demonstrates a mature digital presence suitable for a cultural institution, with minor technical and security improvements recommended to enhance resilience and compliance.

S

Schweizerische Elektro-Einkaufs-Vereinigung (eev Genossenschaft)

e-tec.swiss

50

The website www.e-tec.swiss is a professionally designed online magazine focused on electrical and communication technology topics, primarily serving the Swiss market. It provides comprehensive content on intelligent living, building automation, security systems, solar energy, and related electrical engineering subjects. The site is affiliated with the Schweizerische Elektro-Einkaufs-Vereinigung (eev Genossenschaft), which adds credibility and industry relevance. The content is well-structured, regularly updated, and targets both professionals and consumers interested in these technologies. Technically, the website uses a modern but somewhat dated JavaScript library (jQuery 1.11.3) alongside Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile optimized with good SEO practices and uses HTTPS securely. However, no advanced security headers were detected, and no CMS or hosting provider information was found. The site performance is moderate, with good mobile responsiveness and accessibility at a basic level. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security policies or incident response contacts. No vulnerabilities or suspicious external links were found. WHOIS data is privacy protected, which is common for Swiss domains, and the domain appears legitimate and consistent with the website's professional nature. Overall, the website presents a low risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and updating JavaScript libraries to maintain security posture.

ASVÖ Tirol operates a dedicated online submission portal for associations registered in Tirol, Austria, facilitating official data reporting primarily via ZVR number verification. The website is a focused service platform with minimal content but clear purpose, targeting regional non-profit associations. The technical infrastructure relies on a classic web stack with Bootstrap and jQuery, though some libraries are outdated, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced and form validation implemented, but lacks modern security headers and cookie consent mechanisms, which are important for GDPR compliance. Overall, the site is trustworthy and legitimate but could benefit from enhanced security and privacy features to improve compliance and user trust.

ERISMANN AG Seengen is a well-established Swiss company specializing in the repair, sale, and trade of agricultural machinery and winter service equipment. With over 100 years of experience, the company serves primarily agricultural customers in Switzerland, offering hydraulic services, repairs, and a range of machinery products. The website reflects a solid regional market position with a focus on personalized customer service and quality. Technically, the website employs a moderate tech stack including jQuery, Bootstrap, and Google Analytics, indicating a reasonable level of digital maturity. However, the site lacks advanced security headers and a cookie consent mechanism, which are important for compliance and security. The security posture is adequate with HTTPS enabled but could be improved by implementing best practices such as security headers and privacy compliance features. Overall, the website is professional, trustworthy, and provides clear contact information, but should enhance privacy and security measures to align with modern standards.

R

RunCzech Store

runczechstore.com

60

RunCzech Store is a Czech Republic-based e-commerce retailer specializing in running shoes, apparel, and official race merchandise, primarily featuring the adidas brand. The website targets runners and sports enthusiasts, offering a comprehensive product catalog with a professional and consistent brand presentation. The business operates on the Shoptet e-commerce platform, leveraging modern web technologies and marketing tools such as Google Analytics and Facebook Pixel. The site is well-optimized for mobile devices and provides clear navigation and user experience. Security measures include HTTPS enforcement and CSRF protection on forms, though some outdated libraries present potential risks. Privacy compliance is robust with visible cookie consent and a comprehensive privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site demonstrates a solid digital presence with moderate security posture and good privacy practices.

KATES Tennisanlagenbau Kamer & Kujtim Kabashi GbR is a small, family-run business specializing in tennis court construction and maintenance services in Hamburg, Germany. The company offers a comprehensive range of services including new construction, renovation, seasonal preparation, winter services, and training seminars. Their market position is that of a niche regional specialist with decades of experience in the industry. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options, including a contact form with CAPTCHA to prevent spam. Technically, the website is built on the Contao Open Source CMS platform and uses legacy jQuery 1.11.3 along with modern UI components like Slick Slider and FontAwesome. While the site performs moderately well and is mobile-friendly, the use of outdated JavaScript libraries and absence of security headers indicate areas for improvement. No analytics or tracking scripts were detected, suggesting minimal user tracking and a privacy-conscious approach, although no cookie consent mechanism was found. From a security perspective, the site uses HTTPS (assumed from base href), but lacks explicit security headers and uses an outdated jQuery version, which could expose it to vulnerabilities. The contact form includes CAPTCHA, which is a positive security measure. No incident response or security policies are publicly available. WHOIS data is minimal but does not raise immediate concerns, though registrant details do not fully match the business name, slightly reducing trust. Overall, the website is safe, professional, and trustworthy for its target audience, but could benefit from technical and compliance enhancements to improve security posture and GDPR adherence.

S

Sputnik Bikeshop Zweisimmen

sputnik-bikeshop.ch

42

Sputnik Bikeshop Zweisimmen is a specialized local retail business focused on bicycles, e-bikes, and related accessories, offering sales, rental, repair, and personalized consultation services primarily in the Zweisimmen and Gstaad regions of Switzerland. The website reflects a well-structured and content-rich platform that supports the business model with clear product categories, service descriptions, and contact information. Technically, the site uses a combination of Bootstrap 3, jQuery, and various sliders to deliver a responsive and user-friendly experience, though some technologies are slightly dated. Security posture is solid with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and explicit incident response information. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though no terms of service or vulnerability disclosure policies are present. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

V

Vogt

vogt-la.com

10

Vogt is a professional landscape architecture firm presenting a well-structured website featuring their projects, case studies, publications, and news. The firm appears to have an international presence with awards and recognitions highlighted. The website targets professionals and clients interested in landscape architecture services. Technically, the site uses a range of JavaScript libraries including jQuery, Select2, and Slick Carousel, indicating a moderately modern tech stack. The site is mobile optimized and includes cookie consent mechanisms, reflecting awareness of privacy compliance. Security posture is solid with HTTPS enforced, though security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. WHOIS data is unavailable, which reduces trust slightly but the professional presentation and social media presence support legitimacy. Overall, the site is well-maintained, secure, and compliant with basic privacy standards.

G

Gasthof zum Ochsen

ochsen.ch

48

Gasthof zum Ochsen is a well-established family-run hospitality business located in Arlesheim, Switzerland, offering hotel accommodations, restaurant dining, event hosting, and seminar facilities. The company emphasizes tradition, quality, and sustainability, supported by recognized certifications such as Gault & Millau and ibex fairstay platinum. The website is professionally designed, multilingual, and provides clear contact information and booking options. Technically, the site uses a custom CMS with a legacy jQuery version and standard web technologies, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though some security headers and updated libraries could improve resilience. Overall, the domain registration and business information are consistent and trustworthy, reflecting a legitimate and credible hospitality provider.

CampusVital is a health and fitness initiative focused on supporting employees and members of the Campus Berlin-Buch community in Germany. The website offers a range of onsite and digital health promotion services including fitness courses, wellness programs, and a membership card. The organization collaborates with prominent research institutions and the Techniker Krankenkasse insurance provider, positioning itself as a trusted regional health partner. Technically, the website uses a moderately modern stack with Bootstrap and jQuery, integrates Matomo for analytics, and employs Klaro for cookie consent management, reflecting a reasonable level of digital maturity. Security posture is moderate with no visible security headers and unknown SSL configuration, suggesting room for improvement. Privacy compliance is supported by the presence of a privacy policy and cookie consent mechanism. Overall, the website is professional, well-branded, and trustworthy with no signs of malicious content or blocking mechanisms.

S

Stadtwerke Halle GmbH

energieinitiative-halle.de

57

The Energie-Initiative Halle (Saale) website represents a regional energy and climate protection initiative operated by Stadtwerke Halle GmbH. It serves as an information hub for local citizens, businesses, and partners interested in sustainable energy projects, climate policies, and transformation initiatives in Halle (Saale). The site reflects a medium-sized municipal energy provider with a strong local presence and a network of subsidiaries and partners. Technically, the website uses a traditional but stable tech stack including jQuery, jQuery UI, and Matomo analytics, with a CMS identified as SixCMS. The site is mobile optimized and includes modern privacy compliance tools such as Usercentrics for cookie consent. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some improvements like updated libraries and enhanced security headers are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR, but lacks explicit published security policies and incident response contacts.

W

W+H Wasser- und Haustechnik GmbH

wuh-halle.de

60

W+H Wasser- und Haustechnik GmbH is a regional service provider specializing in water and sanitary technology services in Halle (Saale), Germany. The company offers comprehensive solutions including water meter testing, standpipe rental for water extraction, and sanitary installations. It operates as part of the larger Stadtwerke Halle GmbH (SWH) group, which encompasses multiple subsidiaries in energy, water, transportation, and related sectors. The website reflects a professional and consistent brand image aligned with its parent group, targeting local businesses and residents requiring water and heating services. Technically, the website is built on a CMS platform (likely SixCMS) and employs common JavaScript libraries such as jQuery and Modernizr, along with the Slick carousel for UI elements. It integrates Usercentrics for cookie consent management and Matomo for analytics, indicating a moderate level of digital maturity and privacy awareness. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers and explicit security policies. From a security perspective, the site demonstrates good baseline practices including HTTPS enforcement and consent management. However, it does not publish a security.txt file or detailed security policies, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent with the website's branding and hosting, reinforcing legitimacy. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing explicit security policies, and considering a vulnerability disclosure policy to improve security posture and stakeholder trust.

C

Container Terminal Halle (Saale) GmbH

ct-hs.de

57

Container Terminal Halle (Saale) GmbH operates as a regional logistics and transportation service provider specializing in container terminal operations, rail services, and combined transport solutions. The company is part of the larger Stadtwerke Halle GmbH (SWH) group, which encompasses multiple energy and infrastructure-related subsidiaries. The website reflects a professional business presence targeting logistics customers primarily in Germany, with a focus on the Halle (Saale) region. Technically, the website employs a traditional tech stack including jQuery, jQuery UI, Modernizr, and Slick Carousel, managed via the SixCMS platform. It integrates modern consent management through Usercentrics and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content, although some libraries are outdated. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting legitimacy and trustworthiness. Overall, the website presents a solid business and technical foundation with room for improvement in security transparency and modernization. The risk profile is low, with recommendations focusing on enhancing security policies, updating libraries, and improving accessibility.

I

IT-Consult Halle GmbH

itc-halle.de

62

IT-Consult Halle GmbH is a medium-sized IT service provider based in Halle (Saale), Germany, specializing in comprehensive IT solutions for the public sector and medium-sized enterprises. The company operates under the umbrella of Stadtwerke Halle GmbH, offering services including IT consulting, SAP system management, document management systems, GIS solutions, and data center services. Their market position is solid within the regional public and private sectors, supported by certifications such as ISO 27001 and a professional online presence. Technically, the website employs a modern technology stack including jQuery, Modernizr, Slick Carousel, and FontAwesome, alongside a CMS likely based on SixCMS. The site is mobile-optimized, uses HTTPS with strong SSL configuration, and integrates a consent management platform (Usercentrics) and Matomo analytics for privacy-conscious tracking. Performance is moderate with good SEO and basic accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies and incident response contacts, which could be improved to enhance trust and compliance. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives. The risk profile is low, with recommendations focusing on enhancing security transparency and accessibility compliance.

A

Abfallwirtschaft GmbH Halle-Lochau

aw-halle.de

60

Abfallwirtschaft GmbH Halle-Lochau is a regional waste management company operating in Halle (Saale), Germany. It provides landfill management, recycling, and waste disposal services and is part of the larger SWH group, which includes energy, water, and transportation services. The website reflects a professional and consistent brand presence with clear service offerings and contact information. Technically, the site uses a mix of legacy and modern web technologies, including jQuery, FontAwesome, and a consent management platform, hosted likely by EVH. Security posture is adequate with HTTPS and consent mechanisms but lacks some security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy and well-positioned in its market segment.

W3Counter is a web analytics and marketing widget provider operated by Awio Web Services LLC. The company offers free and paid plans to help website owners track visitor data, increase engagement, and boost sales through customizable widgets such as popups, contact forms, and promotion bars. The website is professionally designed with clear navigation and a focus on usability for bloggers and small businesses. Technically, the site uses a modern but somewhat dated tech stack including Bootstrap 3 and jQuery 1.11.3, with integration of third-party tracking tools like Improvely. Security posture is moderate with HTTPS enforced but lacking important security headers and cookie consent mechanisms. The absence of WHOIS registration data is a notable concern, reducing domain trustworthiness despite the legitimate business presence. Overall, W3Counter presents a functional and useful service with room for improvement in privacy compliance and security hardening.

CCTV News Content Co., Ltd. operates www.cctvplus.com as a global international video agency specializing in news video content, live streaming, archives, and special video services. The company targets media professionals, broadcasters, and international audiences interested in comprehensive news coverage, particularly related to China and global affairs. Their business model revolves around content provision and distribution with subscription and service offerings such as AI speech translation and virtual studio services. The website reflects a medium-sized media entity with consistent branding and professional content quality.

S

Smart Building Expo

smartbuildingexpo.it

60

Smart Building Expo is a well-established European event focused on the twin transition of digital and energy transformation in buildings and cities. The event, held annually in Milan, Italy, attracts a professional audience interested in digitalization, energy efficiency, electrification, and building automation. The website serves as a platform for exhibitors, visitors, and partners to access event information, purchase tickets, and engage with the community. Technically, the site is built on WordPress with common plugins and libraries, providing a modern and responsive user experience. Security posture is adequate with HTTPS and reCAPTCHA usage, though improvements in security headers and DNSSEC are recommended. Privacy compliance is basic with a cookie consent mechanism but lacks a clearly accessible privacy policy or terms of service. Overall, the website is professional, trustworthy, and safe for general audiences.

A

Alfred Wegener Museum Zechlinerhütte

alfred-wegener-museum.de

46

The Alfred Wegener Museum website serves as an educational and cultural platform dedicated to the life and scientific achievements of Alfred Wegener, focusing on meteorology, geophysics, and polar research. The museum targets a general audience including science enthusiasts, students, and researchers, providing exhibits and educational content related to climate change and natural sciences. The website is built on TYPO3 CMS and uses standard web technologies such as jQuery and Lightbox, reflecting a moderate level of digital maturity. The site is accessible, with a cookie consent mechanism and a privacy policy linked externally, but lacks explicit contact information and security policies publicly available. Security posture is adequate with HTTPS implied, but could be improved by adding security headers and incident response information. Overall, the website is trustworthy and professionally presented, though there is room for enhancement in mobile optimization and accessibility.

Universität zu Lübeck is a medium-sized public university in Germany specializing in medicine, computer science, and biomedical engineering. It offers academic programs, conducts research, and facilitates technology transfer. The university maintains a strong regional and academic presence with multiple partnerships and certifications. The website is professionally designed, content-rich, and well-structured, targeting students, researchers, and academic partners. Technically, the site uses TYPO3 CMS with standard web technologies and moderate performance. Security posture is adequate with HTTPS and secure form handling but lacks explicit security headers and vulnerability disclosure policies. Privacy compliance is mostly met with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the site is trustworthy and safe for general audiences.

A

ATLANTIC Hotels

atlantic-hotels.de

59

ATLANTIC Hotels operates a regional chain of conference and wellness hotels primarily in Germany and Austria, targeting business travelers and wellness tourists. Their website is built on TYPO3 CMS and integrates modern consent management via Cookiebot and analytics through Google Analytics with opt-out capabilities. The site presents a professional design with good navigation and mobile optimization, supporting a medium-sized hospitality business model. However, the absence of explicit privacy policy and terms of service pages limits full compliance transparency. Technically, the site uses some outdated libraries such as jQuery 1.11.3, which may pose security risks if not updated. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, but lacks visible security headers and published security policies. Overall, the website is accessible without WAF or blocking, linking to multiple external domains related to analytics and booking services.

M

MANIK – obuv, s.r.o.

manikobuv.sk

60

Manik – obuv, s.r.o. is a Slovak family-owned company specializing in the manufacture and direct sale of domestic footwear since 1992. The company has a strong market presence in Slovakia with a recognized brand and a focus on quality and customer satisfaction. Their e-commerce website is built on the Shoptet platform, integrating modern tracking and marketing tools such as Google Analytics and Facebook SDK, while maintaining GDPR compliance through cookie consent and privacy policies. The website offers clear contact channels and product information, targeting Slovak customers seeking comfortable home footwear. Technically, the site is well-structured with good mobile optimization and moderate performance, though some legacy libraries like jQuery 1.11.3 could be updated for security. Security posture is solid with HTTPS and CSRF protections, but could be enhanced by adding security headers and explicit incident response policies. Overall, the website reflects a professional and trustworthy retail business with room for minor technical and security improvements.

B

Best4Run Běžecká speciálka

best4run.cz

54

Best4Run is a Czech Republic based specialty retailer focused on running shoes, apparel, and equipment. Established in 2015, it operates both an e-commerce platform and a physical store in Přerov, serving customers from surrounding regions. The website offers a comprehensive product catalog, educational content, and diagnostic services for runners. Technically, the site is built on the Shoptet e-commerce platform, leveraging modern web technologies and multiple analytics and marketing tools with user consent mechanisms. Security posture is good with HTTPS and CSRF protections, though some security headers could be improved. The absence of WHOIS data reduces domain trust but the website content and business presence appear professional and legitimate. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations.

E

EKLEKTIK design & shop

eklekticky.cz

55

EKLEKTIK design & shop is a small Czech Republic based business specializing in interior design services and retail of unique home decorations and vintage furniture. The company operates both a physical store in Šumperk and an online e-shop, targeting customers interested in personalized interior design and stylish home accessories. The website is professionally designed, consistent in branding, and provides clear contact information and customer testimonials, indicating a trustworthy local boutique business. Technically, the website is built on the Shoptet CMS platform, utilizing common JavaScript libraries such as jQuery and Slick Carousel, and integrates Google Analytics and Facebook SDK for marketing and tracking purposes. The site is served over HTTPS with valid SSL, but lacks some security headers and up-to-date libraries, which could be improved to enhance security posture. Privacy and cookie policies are not explicitly present, representing a compliance gap with GDPR requirements. Overall, the website is accessible, functional, and presents a positive user experience with moderate technical maturity and a good security baseline.

F

FOTBALservis.cz

fotbalservis.cz

54

FOTBALservis.cz is a Czech Republic-based e-commerce retailer specializing in football equipment including balls, boots, clothing, and accessories. The website targets football players, teams, referees, and coaches, offering a comprehensive product catalog and club-specific e-shop services. The business operates on the Shoptet platform, leveraging modern web technologies and marketing tools such as Facebook Pixel and Google Tag Manager. The site demonstrates good content quality, clear navigation, and GDPR-compliant privacy and cookie policies. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Technically, the site uses HTTPS and secure login forms but lacks explicit security headers and a published security policy or vulnerability disclosure mechanism.

K

Kafrárna

porubskakafrarna.cz

58

Kafrárna operates a local café and bakery in Ostrava Poruba, Czech Republic, specializing in fresh cakes, desserts, and custom bakery products. The business emphasizes freshness by producing all items on-site and targets local families and visitors seeking a social coffee experience. The website is built on the Shoptet e-commerce platform and integrates standard web technologies including jQuery and Google Analytics. Privacy and cookie policies are implemented with GDPR compliance in mind. Security posture is solid with HTTPS and CSRF protections, though some improvements in security headers and library updates are recommended. The absence of WHOIS data is a notable trust concern but the website content and contact information indicate a legitimate small business. Overall, the site is professional, user-friendly, and safe for general audiences.

K

Kafrárna

pkfservis.cz

57

Kafrárna is a Czech-based social enterprise operating a café and sweets manufacturing business specializing in cakes, desserts, and custom orders. The website presents a professional e-commerce platform built on Shoptet, featuring a variety of products with clear navigation and good user experience. The technical infrastructure includes standard web technologies such as jQuery and Google Analytics, with HTTPS enforced and cookie consent mechanisms in place. However, the use of an outdated jQuery version and minimal security headers suggest room for improvement in security posture. The absence of WHOIS data limits domain trust verification, but the website content and contact information indicate a legitimate business. Overall, the site is well-structured, GDPR compliant, and safe for general audiences.

S

Sollus s.r.o.

sollus-sro.cz

57

Sollus s.r.o. operates as a specialized retailer and distributor of wines from Moldova and Georgia, targeting customers primarily in the Czech Republic and Slovakia. The company maintains a professional online presence through an e-commerce platform powered by Shoptet, offering a variety of wine products including gift collections. Their market position is that of a regional wine supplier with distribution in major retail chains and wholesale outlets. Technically, the website employs standard web technologies including jQuery, Google Analytics, and Facebook Pixel, with a good level of mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the use of an outdated jQuery version and lack of advanced security headers present areas for improvement. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear credible and professional. Overall, the site is suitable for mature audiences due to alcohol sales and includes an age verification prompt. Strategic recommendations include updating libraries, enhancing security headers, and improving domain registration transparency.

A

Akinu.cz

akinu.cz

57

Akinu.cz is a Czech Republic-based e-commerce retailer specializing in pet supplies and premium pet food, serving pet owners primarily in the Czech market. The website offers a broad range of products for dogs, cats, rodents, birds, and aquatic pets, supported by a loyalty program and customer support channels. The business positions itself as an experienced player with 30 years in the industry, focusing on quality and customer satisfaction. Technically, the website is built on the Shoptet e-commerce platform, utilizing a variety of modern marketing and analytics tools including Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site is mobile-optimized with good SEO and accessibility basics, though some technical debt is noted with the use of an outdated jQuery version. Performance is moderate, with a well-structured navigation system. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR. However, explicit security headers are not fully implemented, and some JavaScript libraries are outdated, which could pose risks. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain raises concerns about domain registration transparency and legitimacy, though the website content and business indicators suggest a legitimate operation. Overall, Akinu.cz presents a professional and trustworthy online retail presence with room for improvement in security hardening and domain registration transparency. Strategic recommendations include updating technical components, enhancing security headers, and publishing clear incident response and vulnerability disclosure policies.

H

Hotel Rudolf s.r.o.

hotelrudolf.cz

9

Hotel Rudolf s.r.o. operates a hospitality business providing accommodation, wellness, event hosting, and dining services in Havířov, Czech Republic. The website presents a professional and consistent brand image targeting travelers and guests seeking local hotel services with wellness and event facilities. The business appears to be a small-sized local hotel with a clear focus on customer experience and convenience. Technically, the website uses a traditional tech stack including jQuery 1.11.3, Bootstrap, and various UI libraries, managed via the AD-RS CMS platform. While the site is functional and moderately optimized for mobile, it uses outdated JavaScript libraries and lacks modern security headers, which could expose it to vulnerabilities. The website is accessible over HTTPS, but no explicit security policies or privacy notices are present. From a security perspective, the absence of WHOIS data limits domain legitimacy verification, and the lack of privacy and cookie policies indicates poor privacy compliance. The site uses Google Analytics for tracking but does not provide clear data protection information. Contact information is clearly provided, enhancing business credibility. Overall, the security posture is moderate but could be improved by updating libraries, adding security headers, and publishing privacy and cookie policies. The overall risk is moderate with recommendations to improve security best practices, privacy compliance, and technical modernization to enhance trust and protect customer data.

G

Gastonchilli

gastonchilli.cz

56

Gastonchilli.cz is a specialized e-commerce website focused on selling high-quality, handcrafted chilli products including sauces, mustards, pyres, pickled and dried peppers, and gift boxes. The company targets chilli enthusiasts primarily in the Czech Republic and Slovakia, offering unique and award-winning products such as those recognized by the Great Taste awards. The website is built on the Shoptet platform, leveraging modern marketing and analytics tools like Google Analytics 4 and Facebook SDK, with a clear cookie consent mechanism ensuring GDPR compliance. Despite the lack of publicly available WHOIS data, the site presents a professional and trustworthy front with good security practices including HTTPS and CSRF protection on forms.

K

Kafrárna

kafrarenskedorty.cz

55

Kafrárna is a small Czech social enterprise and retail bakery specializing in cakes, desserts, and café services. The company operates an e-commerce platform powered by Shoptet, offering a variety of products including custom and wedding cakes. The website is professionally designed with good navigation and mobile optimization, providing clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses standard web technologies including jQuery and Google Analytics, but the use of an outdated jQuery version presents a security risk. No WHOIS data is available, which reduces domain trustworthiness and warrants further verification. Overall, the site is accessible and functional with moderate security posture but could improve by updating libraries and enhancing security headers.

I

ITS Office Technology, spol. s.r.o.

itsoffice.cz

55

ITS Office Technology, spol. s.r.o. is a Czech-based small IT services company specializing in comprehensive IT management solutions tailored for small to medium-sized businesses. Their offerings include IT infrastructure optimization, monitoring, printing management, helpdesk support, virtualization, and cloud solutions. The company positions itself as a reliable partner providing cost-effective IT outsourcing and support services with SLA guarantees. The website content is professionally presented, targeting regional businesses seeking IT operational support. Technically, the website employs a traditional tech stack including jQuery, Bootstrap, and Font Awesome, running on a custom CMS (AD-RS). The site is HTTPS enabled and mobile responsive with moderate performance. However, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and security hardening. Google Analytics is used for user tracking, indicating moderate data collection practices. From a security perspective, the site shows basic good practices such as HTTPS and no visible sensitive data exposure. However, the absence of security headers and vulnerability disclosure policies suggests room for improvement. The WHOIS data is missing, which raises concerns about domain legitimacy and reduces trustworthiness, although the website content and contact information appear legitimate and consistent with a small regional IT service provider. Overall, the website is functional, professional, and relevant to its business purpose but would benefit from enhanced security measures, improved privacy compliance, and transparency in domain registration to strengthen trust and compliance posture.

E

Edumania

edumania.sk

58

Edumania is a Slovakian e-commerce retailer specializing in educational toys, kits, and games designed for curious children who enjoy learning through play. The website is professionally designed, leveraging the Shoptet e-commerce platform, and offers a well-structured catalog with clear navigation and product categorization by area, type, and age. The business targets parents and educators seeking quality educational products in Slovakia. Technically, the site uses modern web technologies including jQuery, Google Analytics, Facebook SDK, and slick carousel for UI components, hosted on Shoptet's CDN infrastructure. The site is mobile-optimized and includes accessibility features, though some improvements could be made.

G

Giovani.ie

giovani.ie

54

Giovani.ie is an e-commerce website specializing in perfumes and fragrances, offering a range of products categorized by gender and scent type. The site is built on the Shoptet platform and uses common web technologies such as jQuery and LightGallery for UI components. The website content is minimal and currently behind a protected access login form, limiting public visibility of business and contact information. Technical infrastructure appears standard for a small e-commerce site, with moderate performance and basic mobile optimization. Security posture is limited, with no visible security headers or privacy policies, and no WHOIS data available to verify domain legitimacy. Overall, the site presents a low trust profile due to lack of transparency and security best practices.

L

League of European Research Universities

leru.org

68

The League of European Research Universities (LERU) operates as a prominent non-profit network of 24 leading European research universities focused on advancing innovative research and influencing science policy. The website clearly communicates its mission, activities, and publications targeted at policymakers, researchers, and academic stakeholders. The organization maintains a professional online presence with active social media channels and regularly updated content, reinforcing its market position as a key advocate for research-intensive universities in Europe. Technically, the website employs a modern technology stack including Google Analytics, Google Tag Manager, jQuery, and asynchronous script loading to optimize performance. The site is mobile responsive with good SEO and accessibility basics, although there is room for improvement in accessibility and security headers. The website is hosted securely over HTTPS with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site demonstrates a solid baseline with HTTPS and no evident security flaws. However, it lacks explicit security headers, a cookie consent mechanism, and published security policies or incident response contacts, which are important for compliance and trust. The WHOIS data is unavailable due to privacy protection or query failure, but this is typical for organizations of this nature and does not raise immediate concerns. Overall, the website is trustworthy, professionally maintained, and serves its audience well. Strategic improvements in privacy compliance, security policy transparency, and contact information availability would enhance its security posture and user trust.

M

Maso od Amose

masoamos.cz

52

Maso od Amose is a Czech Republic-based small retail business specializing in raw meat and complementary pet food products, primarily targeting dog owners seeking nutritionally balanced raw diets. The company operates an e-commerce platform built on the Shoptet system, offering regional delivery and parcel shipping options to customers. The website presents a professional and consistent brand image with clear product offerings and customer engagement features such as polls and contact forms. Technically, the site uses legacy jQuery libraries and standard Shoptet scripts, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and CSRF protections but lacks some security headers and explicit privacy and cookie policies, which are important for GDPR compliance. WHOIS data is unavailable, limiting domain trust assessment, but the site content and contact details appear legitimate. Overall, the site is functional and trustworthy for its business purpose but would benefit from enhanced privacy compliance and updated technical components.

O

Onlinezahradnictvi.cz

onlinezahradnictvi.cz

53

Onlinezahradnictvi.cz is a Czech Republic-based small e-commerce business specializing in the sale and delivery of plants and gardening supplies. The company emphasizes sustainable packaging and supports local Czech growers, positioning itself as a niche leader in online plant retail. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information. Technically, it leverages the Shoptet e-commerce platform with integrations for analytics and marketing, including Google Analytics, Microsoft Clarity, and Facebook SDK. Security posture is good with HTTPS and CSRF protections, though some legacy libraries like jQuery 1.11.3 could be updated to enhance security. Privacy compliance is strong with visible cookie consent and a comprehensive privacy policy in Czech language. No WHOIS data is available, likely due to privacy protection, which slightly reduces transparency but is common for small businesses. Overall, the website is trustworthy, safe, and well-positioned in its market niche.

M

Mister Mix Dog

mistermixdog.sk

57

Mister Mix Dog is a well-established family business specializing in premium cold-pressed dog food produced in Tuscany, Italy. With over 30 years of tradition and 40 years of experience in zootechnics, the company targets dog owners, breeders, and sports dog handlers primarily in Slovakia and neighboring countries. Their product range includes specialized dog foods tailored to various life stages and health needs, complemented by natural vitamins and supplements. The website is professionally designed, leveraging the Shoptet e-commerce platform, and provides clear contact information and social media presence.

M

MoniLu s.r.o.

monilu.cz

10

MoniLu s.r.o. operates a Czech-based e-commerce website specializing in ergonomic baby carriers and related baby clothing products, including Merino garments. The company targets parents and caregivers of newborns and young children, offering products in multiple size ranges and custom options. The website is professionally designed with clear navigation and product categorization, supporting a positive user experience. The business model is retail-focused with additional services such as product rental and customer guidance. Technically, the site uses the Shoptet e-commerce platform, integrates common analytics and marketing tools like Google Analytics and Facebook SDK, and employs standard web technologies including jQuery. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though security headers are not explicitly detected. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for small e-commerce businesses. Overall, the site presents a legitimate, well-maintained online retail presence with moderate technical maturity and good privacy practices.

K

KeZdraví.cz

kezdravi.cz

49

KeZdraví.cz is a Czech Republic-based e-commerce platform specializing in natural health products including Schüssler salts, homeopathic remedies, and Bach flower essences. The website offers a broad catalog of products alongside educational content such as a homeopathic manual, targeting consumers interested in alternative medicine and natural wellness. The business operates primarily in the healthcare retail sector with a small company size profile. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Fonts, and tracking tools such as Google Analytics and Facebook SDK. The site is mobile-optimized with good navigation and content quality. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks some advanced security headers and uses an outdated jQuery version. The absence of WHOIS registration data is a notable concern, impacting domain legitimacy trust. Overall, the site is professional and trustworthy from a user perspective but would benefit from enhanced security practices and domain registration transparency.

K

Klenoty Amber

klenotyamber.cz

10

Klenoty Amber operates an e-commerce platform specializing in the retail of silver and amber jewelry, including necklaces, bracelets, earrings, and gift items. The website targets a general audience interested in quality jewelry products, offering a broad catalog with detailed product categories and customer support. The company appears to be a small-sized retailer based in the Czech Republic, with a professional online presence and clear business information. Technically, the website is built on the Shoptet e-commerce platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook SDK for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Security-wise, the site enforces HTTPS, uses CSRF tokens in forms, and implements cookie consent mechanisms compliant with GDPR. However, the use of an outdated jQuery version and the absence of explicit security policies or incident response contacts are areas for improvement. The lack of WHOIS data reduces domain transparency and slightly impacts trustworthiness. Overall, the website is professional, secure, and compliant, with moderate risk due to missing domain registration details and minor technical updates needed.