Security Directory

S

SmartAddons.Com

smartaddons.com

45

SmartAddons.Com is a well-established provider of Joomla templates, extensions, and themes for multiple CMS platforms including Joomla, OpenCart, Shopify, and WordPress. The company targets web developers and site owners seeking premium and free templates with a business model based on membership clubs and direct sales. Their market position is supported by over 10 years of experience and a large member base. Technically, the website is built on Joomla CMS with integration of popular libraries such as MooTools, jQuery, Bootstrap, and Font Awesome, and uses modern tools like Google Tag Manager and reCAPTCHA Enterprise. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The absence of WHOIS data is a notable concern, impacting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

F

Foire de Nice

foiredenice.com

58

Foire de Nice is a well-established event organizer hosting the International Fair of Nice, featuring over 350 brands and 300 exhibitors in a large venue in Nice, France. The website is professionally designed using WordPress with a focus on user experience and clear navigation. It provides detailed information about the event's universes and services, targeting a broad audience interested in lifestyle, home, and automotive products. The technical infrastructure leverages common WordPress plugins and libraries, including cookie consent management and advertising tools. Security posture is adequate with HTTPS and consent mechanisms, but lacks explicit security headers and detailed security policies. The absence of WHOIS registration data is a notable concern, potentially impacting domain trustworthiness. Overall, the website is functional, compliant with privacy regulations, and trustworthy from a content perspective, but domain legitimacy should be further verified.

L

Light Touch Studio

light-touch.fr

53

Light Touch Studio is a small creative agency based in Guadeloupe, France, specializing in graphic design, web development, and content strategy. With 15 years of experience, the company emphasizes collaborative and tailored communication solutions for brands seeking to enhance their visibility and identity. The website is professionally designed using WordPress and Elementor, showcasing a portfolio of client projects and clear contact options including a GDPR-compliant contact form. The technical infrastructure is modern and hosted by OVH, a reputable provider. Security posture is good with HTTPS and cookie consent implemented, though some security headers and policies could be improved. Overall, the website reflects a trustworthy and credible business with a focus on quality creative services.

C

clubsAREculture

clubsareculture.de

40

clubsAREculture is a German-based cultural advocacy platform dedicated to supporting music clubs as vital cultural spaces. The website provides news, studies, newsletters, and event information related to club culture and live music, targeting cultural activists, policymakers, and the general public interested in the preservation and promotion of club culture. The platform operates as a small non-profit entity within the media sector, focusing on advocacy and information dissemination. Technically, the website is built on WordPress 6.8.3, utilizing a modern tech stack including jQuery, Modern Events Calendar Lite, and the Ashe theme. The hosting appears to be managed by Your-Server.de, with a moderate performance profile and good mobile optimization. SEO and accessibility are basic to good, with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and updated software versions but lacks explicit security headers and a vulnerability disclosure policy. No cookie consent mechanism was detected, which is a compliance gap given GDPR relevance. Contact information is limited to a contact form, with no explicit emails or phone numbers found. Social media presence is active across major platforms. Overall, the website is functional, professional, and trustworthy within its niche but would benefit from enhanced security practices, privacy compliance improvements, and more transparent contact information to strengthen user trust and regulatory adherence.

S

Sveučilišni računski centar (Srce)

srce.hr

54

Sveučilišni računski centar (Srce) is a central academic infrastructure institution affiliated with the University of Zagreb, providing comprehensive computing, networking, identity management, data repository, and digital education services to the Croatian academic and research community. The website reflects a mature digital presence with a professional design, clear navigation, and extensive content tailored to its target audience of students, researchers, and academic institutions. Technically, the site is built on Drupal 9 with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS, cookie consent, and anti-bot measures, though explicit security headers could be enhanced. Privacy compliance is well addressed with detailed policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, despite the WHOIS data being privacy protected, which is justified for this type of institution.

JSB realitní is a small Czech Republic-based real estate company specializing in brokerage services for residential and commercial properties, including sales, rentals, and problematic property solutions such as debt and foreclosure management. The company also operates a related construction business for property renovations. The website is professionally designed with clear navigation and relevant content targeting local clients in Prague and surrounding areas. However, the absence of WHOIS data and security policies reduces trustworthiness. Technically, the site uses common web technologies like jQuery and Bootstrap but lacks visible HTTPS and security headers, which are critical for secure operations. No privacy or cookie policies are present, indicating compliance gaps. Overall, the business appears legitimate but would benefit from improved security and compliance measures.

L

Ličko-senjska županija

licko-senjska.hr

52

Ličko-senjska županija is the official regional government entity for the Ličko-senjska County in Croatia. The website serves as the primary digital platform for disseminating public administration information, news, official documents, tenders, and transparency reports. It targets residents, businesses, and stakeholders within the county, providing comprehensive access to government services and updates. The site reflects a medium-sized government organization with a focus on regional development, public services, and community engagement. Technically, the website employs a modern tech stack including jQuery, Modernizr, Owl Carousel, and Google Fonts, built on a CMS platform by VIT. It is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security is robust with HTTPS enforced and a Content-Security-Policy header, although some additional security headers could enhance protection. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. The security posture is strong, with no detected vulnerabilities or exposed sensitive data. The site lacks a security.txt file and explicit incident response contacts, which are recommended for improved security transparency. The domain registration is consistent with the official government entity, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-maintained, serving its public sector role effectively.

A

ALSENTA s.r.o.

seeky.cz

36

Seeky.cz is a Czech-based B2B service operated by ALSENTA s.r.o. that specializes in identifying and converting website visitors into potential customers. The company targets businesses seeking to enhance their lead generation and sales conversion through visitor monitoring, targeted offers, and direct customer engagement. The website demonstrates a professional presence with a clear value proposition, client testimonials, and a multi-country reach across 40 countries with over 2000 users. Technically, the site employs modern web technologies including Bootstrap, jQuery, and multiple analytics tools such as Google Analytics and Matomo, alongside live chat support for customer engagement. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, indicating room for compliance improvement. WHOIS data is unavailable, which slightly impacts trust but does not detract from the overall professional presentation. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and regulatory adherence.

H

Hrvatski košarkaški savez

hks-cbf.hr

45

The Hrvatski košarkaški savez (Croatian Basketball Federation) operates as the national governing body for basketball in Croatia, providing official news, league information, team rosters, and historical data related to Croatian basketball. The website serves basketball fans, players, clubs, and the broader sports community in Croatia. It maintains a strong digital presence with official social media channels and regularly updated content. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Google Analytics, and various UI libraries such as Owl Carousel and Font Awesome. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate with asynchronous loading of scripts. From a security perspective, the site enforces HTTPS and uses Google Analytics for tracking. However, it lacks several important security headers like Content-Security-Policy and X-Frame-Options, which could be improved to enhance security posture. No WAF or blocking mechanisms were detected, and no exposed sensitive data was found. Overall, the website is legitimate and professional, though WHOIS data is unavailable due to GDPR privacy protections. The absence of a cookie consent mechanism may represent a compliance gap. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, and maintaining regular updates to WordPress and plugins to mitigate vulnerabilities.

ALSENTA s.r.o. is a Czech Republic based technology company founded in 2008, specializing in providing digital tools and services to enhance business efficiency. Their offerings include B2B identification tools (Seeky.cz), supplier engagement and reverse auction platforms (Alsenta.com), comprehensive business data services (LightData.cz), and outsourcing of procurement activities. The company also manages several related projects such as B2Bpoptavka.CZ and iFirmy.cz, positioning itself as a multifaceted service provider in the B2B and business intelligence space. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence.

B

British Medical Ultrasound Society

bmus.org

59

The British Medical Ultrasound Society (BMUS) is a UK-based non-profit professional organization dedicated to promoting ultrasound technology and education among healthcare professionals. The society serves a multidisciplinary audience including medical practitioners, sonographers, physicists, and students. BMUS offers membership benefits, organizes scientific meetings and study days, publishes professional journals, and provides clinical guidance and educational resources. The website reflects a well-established entity with a clear focus on healthcare ultrasound advancement and professional development. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Analytics, and Typekit fonts, delivering a responsive and user-friendly experience. The site is moderately optimized for performance and accessibility, with clear navigation and professional design. However, some improvements could be made in accessibility and explicit CMS identification. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, indicating basic security hygiene. However, no explicit security headers were detected, and there is no published security or incident response policy. Privacy compliance is partially addressed with a privacy policy present, but cookie consent mechanisms are absent. No WHOIS registrant data is available, likely due to privacy protection, but the site’s legitimacy is supported by charity registration and professional content. Overall, BMUS presents a credible and professional online presence with moderate technical maturity and a solid business foundation. Security and privacy practices could be enhanced to align with best practices and regulatory requirements.

U

Urząd Miasta Zielona Góra

zielonagora.pl

60

The website www.zielona-gora.pl is the official online portal for the City Office of Zielona Góra, Poland. It serves as a government information hub providing residents, visitors, and businesses with access to city authorities, departments, local districts, public services, cultural events, and tourism information. The site is positioned as a trusted municipal government resource with clear branding and official social media presence. The business model is public service oriented, focusing on transparency and accessibility for the local community. Technically, the website is built on WordPress using the Avada theme, incorporating common plugins such as Contact Form 7, Cookie Notice, and WP Accessibility Helper. The site demonstrates moderate performance and good mobile optimization, with accessibility features implemented to support diverse users. SEO is basic but functional, and the site uses HTTPS with a valid SSL certificate ensuring secure communications. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks advanced security headers and a dedicated security policy page. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is basic with a privacy policy present and GDPR considerations addressed. Contact information is clearly provided, enhancing trust and credibility. Overall, the website is a safe, legitimate government portal with a solid foundation but could benefit from enhanced security policies and technical hardening. The risk level is low, with recommendations focusing on improving security headers, incident response transparency, and privacy documentation to strengthen compliance and user trust.

S

Domov | Sparklond

sparklond.sk

42

Sparklond.sk is a Slovak-based educational website specializing in professional welding training and certification. The business offers a variety of welding courses, including beginner to expert levels, with a focus on practical skills and coaching. The website features testimonials and video references to build trust and demonstrate effectiveness. The domain is relatively new, created in 2022, and uses DNSSEC with a valid registrar and hosting provider, indicating legitimacy. Technically, the site uses modern front-end libraries such as Bootstrap, Owl Carousel, and integrates third-party services like Google Tag Manager and Smartsupp Live Chat. Security measures include HTTPS and a Content-Security-Policy header, though the CSP is permissive and could be hardened. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap. Overall, the website is professionally designed, mobile-optimized, and provides clear contact information, but should improve privacy disclosures and tighten security headers.

T

TESTIMA, spol. s r.o.

testima.cz

44

Testima, spol. s r.o. is a Czech company specializing in nondestructive testing equipment and services, including sales, training, calibration, and servicing. With over 30 years of experience and ISO 9001 certification, it holds a stable market position serving industrial clients. The website is professionally designed, mobile-optimized, and provides clear contact and GDPR compliance information. Technically, it uses modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA to secure user interactions. Security posture is good with HTTPS and CSRF protections, though some security headers and policies could be improved. Overall, the site is trustworthy, compliant, and well-maintained.

G

Growio

growio.sk

52

Growio is a professional services company specializing in leadership development, business coaching, and organizational growth programs. Founded in 2021 and headquartered in Slovakia with an Asia-Pacific office in India, Growio targets leaders and organizations seeking to navigate disruption and build resilient, high-performing teams. The company emphasizes future-ready workforce development and offers tailored executive coaching and development programs. Their market position is supported by partnerships with recognized companies and membership in the International Coaching Federation (ICF). Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Websupport infrastructure with DNSSEC enabled. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though terms of service and explicit security policies are absent. Security posture is solid with HTTPS enforced and DNSSEC enabled, but could be improved by adding security headers and publishing incident response contacts or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional digital presence aligned with the company's business goals. Strategically, Growio should enhance its security transparency and compliance documentation to strengthen trust and meet evolving regulatory requirements. Continued monitoring of third-party libraries and performance optimization will support sustained digital maturity.

T

Travego Tour

travegotour.sk

43

Travego Tour is a Slovak-based travel company specializing in guided sightseeing tours primarily to Asia, Eastern Europe, and the Middle East. The company emphasizes a slow travel philosophy, offering authentic cultural experiences and group tours. The website reflects a niche market positioning with a focus on experiential travel, supported by clear contact information and comprehensive legal documentation. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and tracking pixels, hosted likely by WebHouse with DNSSEC enabled, indicating good infrastructure maturity. Security posture is solid with HTTPS and DNSSEC, though some advanced HTTP security headers and a security.txt file are missing. Privacy compliance is well addressed with GDPR and cookie policies including consent mechanisms. Overall, the site is professional, trustworthy, and well-structured, with no signs of malicious activity or content safety concerns.

I

Izzy Trading, s.r.o.

sprava-servisov.sk

41

FOXii is a Slovak-based software company specializing in cloud-based service management solutions tailored for field service companies. Their platform enables digitalization of service processes including scheduling, protocol creation, and technician monitoring, targeting small to medium-sized service firms. The website reflects a professional and consistent brand presence with clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is solid with HTTPS and DNSSEC enabled, use of Google reCAPTCHA, and a cookie consent mechanism, though it lacks explicit security headers and a published security policy. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website www.barlifeevents.cz operates as an online magazine primarily targeting Slovak-speaking audiences with content focused on household topics, energy, gardening, investment, and related services. The site uses WordPress CMS with a standard set of plugins and themes, providing a moderate level of technical sophistication and a generally good user experience. SEO metadata and structured data are implemented, enhancing search engine visibility. However, the absence of contact information, privacy policies, and cookie consent mechanisms indicates gaps in compliance and user trust facilitation. The WHOIS data for the domain is unavailable, which raises concerns about the domain's registration legitimacy and reduces overall trustworthiness. Security posture is basic, with no advanced security headers detected, though HTTPS is implied by canonical URLs. Overall, the site is functional and content-rich but requires improvements in privacy compliance, security best practices, and transparency to enhance credibility and user trust.

E

EDTNA/ERCA

edtnaerca.org

51

EDTNA/ERCA is a well-established European non-profit association focused on renal care professionals, primarily nurses. The organization provides education, accreditation, conferences, publications, and fosters collaboration across the renal care community. Their website reflects a mature digital presence with comprehensive content targeting healthcare professionals in nephrology. Technically, the site employs modern web technologies including Material Design Lite, Google reCAPTCHA, and tracking via Google Tag Manager and Facebook Pixel, indicating a balanced approach to user experience and analytics. Security posture is strong with HTTPS, CSRF protection, and bot mitigation, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional, trustworthy, and serves its audience effectively.

S

STYRAX Consulting, a.s.

styraxconsulting.cz

47

STYRAX Consulting, a.s. is a Czech-based consulting and IT company specializing in healthcare sector solutions, including AI implementations, virtual assistants, data analysis, and healthcare management tools. The company has a strong market position in the Czech healthcare IT niche, offering a range of products and services tailored to healthcare providers and insurers. Their website reflects a professional and consistent brand image with clear descriptions of their offerings and active participation in industry conferences. Technically, the website uses modern frameworks such as Bootstrap and jQuery, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS usage and secure form handling, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain WHOIS data supports the legitimacy and maturity of the business. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

M

MFP paper s.r.o.

mfp.cz

57

MFP paper s.r.o. is a Czech Republic-based wholesale distributor and publisher specializing in paper goods, school, and office supplies. Established since 1997, the company operates a warehouse in Přerov and offers a wide range of products with a focus on quality and competitive pricing. Their website targets business customers, particularly those with Czech business identification numbers (IČO), offering B2B wholesale services. The site features product catalogs, customer testimonials, and a blog to engage its audience. Technically, the website employs a mix of legacy and modern JavaScript libraries including jQuery, Dojo, and i18next for localization. It integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and retargeting services. The site is mobile-optimized with responsive design elements and uses HTTPS for secure communication. However, some libraries are outdated, and security headers are not explicitly set, indicating room for improvement. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks explicit security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the detailed contact information and business presence. Overall, MFP paper s.r.o. presents a professional and trustworthy online presence suitable for its wholesale business model. Strategic improvements in security headers, updating libraries, and publishing explicit security policies would enhance its security posture and compliance standing.

A

Aktyvių piliečių fondas

apf.lt

39

Aktyvių piliečių fondas (APF) is a Lithuanian non-profit organization focused on strengthening civil society by providing funding and support to civil society organizations and projects. Supported by the EEA and Norway Grants, APF operates as a grant fund with a clear mission to empower vulnerable groups and promote active citizenship in Lithuania. The website is professionally designed using WordPress, featuring multilingual support and comprehensive content about funding opportunities, project results, and training events. The technical infrastructure includes modern web technologies and analytics tools, ensuring good performance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though improvements in security headers and incident response transparency are recommended. Overall, APF presents a trustworthy and credible online presence aligned with its non-profit mission.

X

xpecto AG

xpecto.de

71

xpecto AG is a German software company specializing in digital solutions for managing real assets and financial products such as bonds, subordinated loans, ELTIFs, AIFs, tokenized securities, and derivatives. Established since 1982, the company positions itself as a leading provider in the niche market of real asset management software, serving over 150 client companies with 40 years of market experience. Their offerings include modules for investor and sales management, controlling, reporting, risk management, asset and portfolio management, and digital portals for investors and sales partners. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence.

EFNNMA is a European non-profit forum dedicated to nursing and midwifery associations, collaborating closely with WHO Europe to support healthcare workers and promote sector progress. The website serves as an information hub featuring news, webinars, and policy messages targeted at healthcare professionals and stakeholders. Technically, the site is built on WordPress with common plugins and frameworks such as Bootstrap and jQuery, hosted via Register SpA. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers, and no explicit privacy or cookie policies, indicating compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

B

BTL zdravotnická technika, a.s.

btl-shop.cz

49

BTL zdravotnická technika, a.s. operates an e-commerce platform (BTL-shop.cz) specializing in rehabilitation, physiotherapy, and medical consumables and equipment. The website targets healthcare professionals and wellness providers primarily in the Czech Republic. It offers branded products, a loyalty program, and expert advice, positioning itself as a specialized supplier in the healthcare sector. The site is built on Magento CMS and uses modern web technologies including jQuery and RequireJS, with social login integrations for user convenience. The website is well-structured, mobile-optimized, and provides clear navigation and professional content. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, no explicit security policies or incident response contacts are published, and WHOIS data is unavailable, which limits transparency. Overall, the site presents a professional and trustworthy online presence for its niche market.

B

BiObernai by Alsace Bio

biobernai.com

60

BiObernai by Alsace Bio operates a professional and content-rich website dedicated to promoting organic agriculture events and community engagement in the Alsace region of France. The site serves as an information portal for the annual BiObernai organic agriculture fair, the BiObernai Bier organic beer, and the Association SABA volunteer organization. The business targets consumers and stakeholders interested in sustainable and organic farming practices, positioning itself as a regional leader in this niche. The website demonstrates good branding consistency and content quality, with clear navigation and multimedia integration such as videos and social media links. Technically, the website employs a modern but somewhat dated technology stack including jQuery 1.12, Bootstrap, Owl Carousel, and cookie consent management via tarteaucitron.js. It integrates Google Analytics and Facebook SDK for analytics and social media functionality. The site is mobile optimized with good SEO practices but lacks explicit CMS identification and detailed hosting information. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and has implemented cookie consent and reCAPTCHA on forms, indicating awareness of privacy and security best practices. However, no explicit security headers were detected, and no published security or incident response policies are available. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and structure appear professional and trustworthy. Overall, the website presents a low-risk profile with good privacy compliance and user experience but would benefit from enhanced security measures and clearer domain registration transparency. Strategic recommendations include improving security headers, verifying domain registration status, and publishing security policies to strengthen trust and compliance.

F

Foires de France

foiresdefrance.com

51

Foires de France operates as a collective brand under Unimev, promoting and organizing a network of fairs and exhibitions across France. The website provides detailed information about upcoming fairs, socio-economic impact reports, and links to partner event sites. The business targets the general public interested in regional and national fairs, positioning itself as an important player in the French exhibition sector. Technically, the site is built on WordPress with common plugins and libraries, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and explicit security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, which should be addressed to improve trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance measures.

I

Interreg Caraïbes

interreg-caraibes.com

61

Interreg Caraïbes is a European Territorial Cooperation program focused on fostering regional cooperation projects among Caribbean territories including Guadeloupe, Guyane, Martinique, and Saint-Martin. The website serves as an information portal for approved projects, calls for tenders, news, and practical information related to the program. It targets operators and organizations involved in regional development and cooperation in the Caribbean region. The program is government-backed and funded by the European Union, positioning it as a key regional cooperation initiative.

G

Guadeloupe Énergie

guadeloupe-energie.gp

57

Guadeloupe Énergie operates as the official regional energy policy platform for Guadeloupe, focusing on the energy transition towards renewable sources and energy independence. The website serves as a comprehensive resource for legislation, renewable energy data, and public initiatives aligned with the regional Multi-Year Energy Program (PPE). The target audience includes residents, policymakers, and energy stakeholders in the Caribbean region. Technically, the site is built on WordPress with modern plugins and analytics integrations, offering good SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks explicit security policies and incident response information. Overall, the site is trustworthy and professional but could improve privacy compliance and security transparency.

S

Střední odborná škola Říčany s.r.o.

sosricany.cz

41

Střední odborná škola Říčany s.r.o. is a small, family-character educational institution in the Czech Republic focused on vocational secondary education. The school emphasizes close cooperation with parents and practical training workplaces, offering various specialized programs including culinary arts, food technology, and a new economic lyceum program integrating AI and project work. The website is professionally designed with good navigation and mobile responsiveness, leveraging modern JavaScript libraries and privacy-conscious analytics (Matomo). Security posture is solid with HTTPS and reCAPTCHA, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data reduces domain trust but the website content and contact information are consistent with a legitimate educational entity.

M

Ministarstvo rada, mirovinskog sustava, obitelji i socijalne politike

mrms.hr

54

The website represents the official online presence of the Croatian Ministry of Labour, Pension System, Family and Social Policy. It serves as a comprehensive information portal for Croatian citizens and stakeholders regarding labor laws, social welfare programs, pension regulations, and family policies. The site is well-positioned as a government resource, providing authoritative content and official communications. The target audience includes citizens, social service users, and public sector employees. Technically, the website employs a traditional web stack with jQuery, Modernizr, and various UI libraries such as Fancybox and Owl Carousel. It uses HTTPS with Google Analytics for visitor tracking, and includes cookie consent mechanisms compliant with GDPR. The site demonstrates good mobile optimization and accessibility features, though some libraries like jQuery are outdated, which could pose security risks. From a security perspective, the site enforces HTTPS and has implemented cookie consent, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is unavailable due to GDPR privacy restrictions, but the domain is a government .gov.hr domain, indicating high legitimacy. Overall, the website is a trustworthy and professional government portal with good content quality and privacy compliance. Strategic improvements include updating technical libraries, enhancing security headers, and publishing security policies to strengthen trust and resilience.

The website www.gsbz-buchholz.de represents the Gesundheitsfachschule und Bildungszentrum Buchholz, affiliated with the Krankenhäuser Buchholz und Winsen gemeinnützige GmbH. It serves as a portal for healthcare education, training, and employment opportunities in the Buchholz and Winsen region of Germany. The site targets prospective students and job seekers interested in healthcare professions, providing detailed information about training programs, career paths, and affiliated hospitals. The business operates as a non-profit healthcare and educational institution, positioning itself as the largest employer in the region with a strong community focus. Technically, the website is built on TYPO3 CMS, utilizing modern frontend libraries such as jQuery and Owl Carousel. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, and the site is served over HTTPS with no visible security vulnerabilities or exposed sensitive data. However, there is no cookie consent mechanism or explicit security and incident response policies published, which are areas for improvement. From a security perspective, the site maintains a good posture with HTTPS and no detected vulnerabilities. The absence of security headers and incident response information slightly reduces the security maturity. Privacy compliance is adequate with a clear privacy policy and terms of service, but the lack of cookie consent and data protection officer contact details indicates partial GDPR compliance. Overall, the website is professional, trustworthy, and well-aligned with its business goals. Strategic recommendations include implementing cookie consent, publishing security policies, enhancing accessibility, and adding security headers to improve compliance and security posture further.

A

audaris GmbH

audaris.de

60

audaris GmbH is a German-based technology company specializing in digital marketing and cloud solutions tailored for the automotive dealership sector. As part of the betzemeier group, audaris offers a comprehensive suite of services including vehicle management software, digital marketing, image and video solutions, dealership websites with integrated online trade, and B2B sales platforms. The company positions itself as a digital full-service provider for automotive dealers, leveraging cloud technologies and innovative marketing tools to enhance lead generation and operational efficiency. Technically, the website employs modern web technologies such as jQuery, Foundation CSS framework, Google Tag Manager, and Google reCAPTCHA Enterprise, indicating a mature digital infrastructure. The site is hosted on Schlundtech servers, uses HTTPS with strong SSL configuration, and implements a detailed cookie consent mechanism compliant with GDPR. The website is mobile-optimized, accessible, and SEO-friendly, supporting a positive user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement, use of reCAPTCHA to prevent abuse, and granular cookie consent. However, it lacks explicit security policies, incident response contacts, and security.txt files, which are recommended for enhanced transparency and vulnerability management. No critical vulnerabilities or exposed sensitive data were detected. Overall, audaris GmbH presents a credible, professional online presence with strong business and technical foundations. The company’s integration within the betzemeier group and visible trust indicators such as awards and Google Partner status further reinforce its market position. Strategic improvements in security transparency and incident response readiness would enhance its security posture and stakeholder trust.

T

Turistička Zajednica Varaždinske Županije

turizam-vzz.hr

52

The website turizam-vzz.hr serves as the official tourism portal for Varaždin County in Croatia, managed by the regional tourism board Turistička Zajednica Varaždinske Županije. It provides comprehensive information about local destinations, cultural heritage, accommodation options, events, and tourism offers, targeting tourists and visitors interested in exploring the region. The site is positioned as a regional governmental/non-profit entity focused on tourism promotion. Technically, the website is built on Joomla CMS using Bootstrap, jQuery, and other common web technologies. It features responsive design and moderate performance, with good SEO and basic accessibility features. The site employs HTTPS and includes a cookie consent mechanism, demonstrating awareness of GDPR requirements, though it lacks a clearly published privacy policy and terms of service. From a security perspective, the site uses HTTPS but lacks important security headers and does not publish security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness. Overall, the site is professional and trustworthy but could improve its security posture and privacy compliance documentation.

U

Urząd Miasta Zielona Góra

zielona-gora.pl

9

The website www.zielona-gora.pl serves as the official municipal portal for the city of Zielona Góra in Poland. It provides residents, visitors, and businesses with access to city government information, including details about city authorities, departments, local districts, public services, cultural institutions, and tourism. The site is positioned as a government public service portal with a medium-sized audience primarily composed of local citizens and stakeholders. Technically, the site is built on WordPress using the Avada theme and incorporates common web technologies such as jQuery, FontAwesome, and accessibility plugins. The site demonstrates moderate performance and good mobile optimization with basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are absent. WHOIS data is unavailable from the registry, but the site’s branding and content strongly indicate legitimacy as an official government resource. Overall, the site is safe, professional, and trustworthy, serving its public service role effectively.

S

Saito Media

saitomedia.eu

47

Saito Media is a small technology-focused creative solutions company specializing in brand development, content marketing, graphic design, web and app development, UX design, and creative advertising. The company targets businesses seeking to meet digital transformation goals with innovative and tailored digital strategies. The website demonstrates a professional market position with over 5 years of experience and a high client satisfaction rate, supported by a portfolio of recent projects. Technically, the site is built on WordPress using Elementor and the Porto theme, leveraging modern web technologies such as jQuery and Bootstrap. Performance and mobile optimization are good, though accessibility is basic. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but could be improved by implementing additional security headers and publishing security policies. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanism, and GDPR indicators. Overall, the website is trustworthy, professional, and well-structured, supporting the company’s business credibility effectively.

Z

Základní škola a gymnázium Navis

msratolest.cz

54

Základní škola a gymnázium Navis is a private educational institution in the Czech Republic offering preschool, primary, and gymnasium level education. The school emphasizes values-based education founded by families, aiming to develop children and students intellectually, personally, and spiritually. Their website reflects a professional and modern digital presence with clear navigation and comprehensive information about their educational offerings and community activities. The institution targets students, parents, and prospective families seeking quality education in a nurturing environment. Technically, the website is built on the Dmp.Cms.Core platform, utilizing modern web technologies such as jQuery, Bootstrap, and Owl Carousel. Media assets are hosted on Microsoft Azure Blob Storage, indicating a reliable hosting infrastructure. The site is mobile-optimized and includes SEO best practices, cookie consent management, and analytics integration via Google Analytics and Google Tag Manager. From a security perspective, the site enforces HTTPS and uses anti-forgery tokens in forms, demonstrating good baseline security hygiene. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious content were detected, and the site is free from adult or questionable material. Overall, the website presents a trustworthy and professional front for the educational institution, though the absence of WHOIS data limits full domain legitimacy assessment. Strategic recommendations include adding security headers, publishing security policies, and enhancing incident response transparency to strengthen security posture and stakeholder confidence.

SIRO-Poland Sp. z o. o. operates as the exclusive distributor in Poland for decorative furniture accessories, including handles, knobs, LED lighting, and decorative mats. The company targets furniture manufacturers, wholesalers, retailers, and interior designers, positioning itself as a key player in the Polish furniture accessory market. The website reflects a professional business presence with clear product offerings and partner relationships. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks some security headers and formal privacy/cookie policies, which are areas for improvement. Overall, the site is trustworthy and well-maintained, supporting the company's market position.

Semaco Real Estate is a specialized real estate advisory and sales company operating primarily in Kraków, Poland. With over two decades of experience and a portfolio of more than 30 investments and approximately 1500 sold apartments, the company positions itself as a trusted local expert in both primary and secondary real estate markets. Their services encompass guiding clients through the entire property transaction process, including financing assistance and new development projects. The website reflects a professional and customer-focused approach, emphasizing quality housing and client satisfaction. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Owl Carousel, and Google reCAPTCHA, hosted likely by home.pl S.A. The site is mobile optimized and uses EstiCRM as its content management system. Performance is moderate with good SEO and accessibility basics. Tracking and marketing tools such as Google Analytics and Facebook SDK are integrated, indicating a moderate level of digital maturity. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms. However, DNSSEC is not enabled and security headers are not detected, suggesting room for improvement in hardening the website. No critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy regulations. Strategic improvements in security configurations and transparency around security policies would enhance the company’s risk posture and customer trust.

G

Glamour Guardian s.r.o.

hezke-vlasy.cz

58

Glamour Guardian s.r.o. operates the website www.hezke-vlasy.cz, a specialized e-commerce platform focused on professional hair cosmetics, hairdressing supplies, and salon equipment primarily serving the Czech market. The company offers a broad product range including hair colors, shampoos, conditioners, styling products, and salon furniture, targeting both professional hairdressers and general consumers. The website is well-structured, with clear navigation and comprehensive product categorization, supporting a positive user experience. The presence of privacy policies, terms of service, and contact information reflects a commitment to regulatory compliance and customer service. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, Google Tag Manager, and Google reCAPTCHA to enhance marketing, analytics, and security. The site is built on the FastCentrik e-commerce platform, indicating a managed hosting and CMS environment. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and form protections in place, but the absence of explicit security headers suggests room for improvement. From a security and compliance perspective, the site demonstrates GDPR compliance with a clear privacy policy and cookie consent mechanisms. However, the lack of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve security readiness. Overall, the site is professional and trustworthy but would benefit from improved domain registration transparency and enhanced security headers. Strategically, the company should focus on strengthening its security posture by implementing recommended HTTP security headers, publishing incident response contacts, and clarifying domain registration details. These steps will enhance customer trust and reduce potential risks. The technical infrastructure is modern and supports business operations effectively, but continuous monitoring and updates are advised to maintain security and performance standards.

The website www.b2bpoptavka.cz operates as a B2B marketplace platform specializing in connecting businesses with tenders and public contracts primarily in the Czech Republic. Managed by ALSENTA s.r.o., the platform has a strong market presence with over 540,000 inquiries and a broad category coverage. The business model focuses on facilitating procurement and supplier matching, targeting companies seeking new customers and contract opportunities. The site is professionally designed with clear navigation and a responsive layout, supporting a positive user experience for its target audience. Technically, the website leverages modern frontend technologies including Bootstrap, jQuery, and Google services such as Analytics and Adsense. The infrastructure supports moderate performance and good mobile optimization. However, no CMS or hosting provider details were identified. The site implements cookie consent mechanisms aligned with GDPR requirements, enhancing privacy compliance. From a security perspective, the site enforces HTTPS and uses consent banners for cookies, but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to privacy protection limits domain trust verification, though the website content and business information appear legitimate and professional. Overall, the website presents a solid business platform with good technical and privacy compliance maturity. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

D

Dematis

e-facteur.com

9

E-facteur is a professional service website operated by Dematis, a French company specializing in secure electronic mail and document dematerialization solutions. The website targets enterprises and local authorities, offering services such as certified email with tracking, timestamping, and archiving. The company has a strong market presence with hundreds of thousands of users and a portfolio of related digital services. Technically, the website uses modern JavaScript libraries and frameworks, including jQuery, Owl Carousel, and Swiper Slider, and integrates a live chat service (Tawk.to) for customer support. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is implied, but explicit HTTP security headers are not detected in the provided data. No forms with sensitive inputs are present on the homepage, reducing immediate risk exposure. Privacy and cookie policies are comprehensive and GDPR compliant, linked to the parent company’s main site. However, the WHOIS data for the domain www.e-facteur.com is missing, which raises concerns about domain registration legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy from a content and business perspective but would benefit from improved transparency on domain registration and enhanced security headers.

R

Rittler & Co Werbeagentur Graz

werbe-agentur-graz.at

68

Rittler & Co Werbeagentur Graz is a well-established full-service marketing and advertising agency based in Graz, Austria, with over 20 years of experience. They specialize in brand positioning, branding, corporate websites, online shops, and digital marketing strategies. The agency serves businesses seeking comprehensive marketing solutions with a focus on clear strategy, strong creative execution, and measurable results. Their market position is reinforced by multiple industry awards and a strong portfolio of clients. Technically, the website is built on the Contao CMS platform, uses modern JavaScript libraries like jQuery and Owl Carousel, and implements cookie consent mechanisms. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is solid with HTTPS and no exposed sensitive data, but lacks explicit security policies or incident response information. Overall, the website reflects a professional and credible business with a high level of trustworthiness.

F

Fitek

fitek.com

49

Fitek is a medium-sized technology company specializing in digital invoice management and bookkeeping automation solutions for finance professionals. Established in 2003, the company offers a comprehensive B2B SaaS platform that streamlines purchase, expense, and approval workflows, integrating with leading accounting systems. Their multilingual website and customer testimonials indicate a strong market presence in multiple European countries. Technically, the website is built on WordPress with Elementor and employs modern tools such as Google Tag Manager and WPML for multilingual support. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements like enabling DNSSEC and security headers are recommended. No critical vulnerabilities or privacy policy were detected, but cookie compliance is well implemented. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

O

Oleje a maziva Total - Autorizovaný distributor | Oleje-Total.cz

oleje-total.cz

49

The website oleje-total.cz operates as an authorized distributor of Total brand lubricants and oils, targeting automotive and industrial customers primarily in the Czech Republic. It offers a broad range of products including motor oils, industrial oils, and lubricants for various vehicle types and machinery. The business model is e-commerce focused, providing direct sales through an online platform with clear categorization and product offerings. The site positions itself as a trusted distributor with consistent branding and a professional online presence. Technically, the website utilizes a BohemiaSoft CMS platform with a technology stack including jQuery, Google Tag Manager, Google Analytics, and other common JavaScript libraries. The site is mobile optimized with good SEO practices and a moderate performance profile. Accessibility features are basic but present. Security measures include HTTPS, cookie consent with granular preferences, and CSRF protection, though some security headers are missing and the jQuery version is outdated, which could pose risks. From a security standpoint, the site demonstrates a reasonable posture with encrypted connections and user consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. No direct contact emails or phone numbers were found, limiting direct communication channels. There is no evidence of formal security policies or incident response contacts, which could be improved to enhance trust and compliance. Overall, the website is functional, professional, and compliant with privacy regulations, but the lack of domain registration transparency and some technical security gaps suggest moderate risk. Strategic improvements in domain registration visibility, security header implementation, and updated libraries are recommended to strengthen the security posture and business credibility.

S

Sappex Aluminium s.r.o.

sappex-aluminium.cz

9

Sappex Aluminium s.r.o. is a Czech manufacturer and supplier specializing in high-quality aluminum windows, doors, sliding systems, facades, and fire protection systems. With over 10 years of tradition, the company offers comprehensive services including price calculation, precise measurement, professional installation, and after-sales service. Their market position is strong within the Czech Republic, targeting residential and commercial construction sectors. The website reflects a professional digital presence with clear navigation, good content quality, and GDPR-compliant privacy and cookie policies. Technically, the site uses modern JavaScript libraries and SEO best practices, though no CMS or hosting provider is explicitly identified. Security posture is good with HTTPS and cookie consent mechanisms, but lacks published security policies or incident response information. WHOIS data is missing, which reduces domain trustworthiness, but the website content and contact details appear legitimate and consistent with a small manufacturing business.

S

Studio Marta

studiomarta.cz

10

Studio Marta is a theatrical studio affiliated with the Janáček Academy of Music and Performing Arts (JAMU) in Brno, Czech Republic. It focuses on theatrical education, student performances, and cultural events, serving students, academics, and theatre enthusiasts. The website provides program schedules, student profiles, and ticketing links, positioning itself as a niche educational and cultural institution with a strong local presence. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses reputable plugins for enhanced user experience and content delivery. The site is mobile-optimized and has good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some advanced security headers and a formal security policy. Privacy compliance is adequate with cookie consent mechanisms and a privacy policy in place. Overall, the site is professional, trustworthy, and well-maintained, reflecting the institution's credibility and cultural mission.

A

Antir, s.r.o.

antir.cz

46

Antir, s.r.o. is a Czech Republic-based small manufacturing company specializing in custom stainless steel production, including railings, staircases, and winery equipment such as tanks and vinification vessels. Founded in 2007, the company offers end-to-end services from measurement and design to installation and delivery, targeting clients in construction, interior design, and the wine industry. The website reflects a professional presence with clear business information and a gallery of references, positioning the company as a specialist in its niche market. Technically, the website employs common and reliable web technologies such as jQuery, Bootstrap, and Owl Carousel, providing a responsive and user-friendly experience. However, the site lacks advanced security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security maturity. The contact form collects personal data but does not show explicit anti-spam or privacy compliance mechanisms. From a security perspective, the site uses HTTPS as implied by URLs but does not demonstrate implementation of security best practices such as Content Security Policy or HSTS headers. No incident response or vulnerability disclosure information is provided, which could be a gap in readiness. No suspicious or malicious content was detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website is functional and professional but would benefit from enhanced security measures, privacy compliance documentation, and incident response transparency to improve trust and reduce risk. Strategic improvements in these areas will strengthen the company’s digital maturity and customer confidence.

G

Glamour Guardian s.r.o.

vseprovlasy.cz

55

Glamour Guardian s.r.o., operating the website vseprovlasy.cz, is a well-established Czech retail business specializing in professional hair cosmetics and hairdressing equipment. With over 27 years of experience, the company serves both professional hairdressers and end customers, offering a wide range of products, expert seminars, and personalized services including free regional delivery and loyalty discounts. The website reflects a mature e-commerce platform with a clear focus on the hair care industry and a strong local market presence. Technically, the website is built on the FastCentrik e-shop platform using ASP.NET technologies, enhanced with modern JavaScript libraries such as Owl Carousel and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and incorporates SEO best practices, ensuring a good user experience. Privacy and cookie consent mechanisms are well implemented, demonstrating compliance with GDPR requirements. From a security perspective, the site uses HTTPS and includes anti-spam measures like Google reCAPTCHA. While explicit security headers are not fully confirmed, the site shows no signs of vulnerabilities or exposed sensitive data. However, the absence of a public WHOIS record suggests domain privacy protection, which is common and justified for this business type but limits domain age verification. Overall, the website presents a professional, trustworthy, and compliant online presence with moderate to good technical and security posture. Strategic recommendations include enhancing security headers, publishing a security.txt file for vulnerability disclosure, and providing incident response contact information to further strengthen trust and security readiness.