Security Directory

M

Merantix AG

merantix.com

69

Merantix AG is a leading European AI group focused on investing, building, and connecting AI-driven businesses and communities. Their market position is strong within the European AI ecosystem, offering investment services, AI solutions, and community engagement through multiple subsidiaries and partner platforms. The website reflects a professional and consistent brand image targeting businesses and AI professionals in Europe. Technically, the site is built on Webflow with modern tracking and analytics tools integrated, showing a moderate to good level of digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit security policies and headers could be improved. The absence of WHOIS data is a notable gap in transparency but does not detract significantly from the overall legitimacy given the professional web presence. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility features.

D

DV

dv.is

56

DV is a well-established Icelandic online news media platform offering a wide range of content including news, sports, lifestyle, and cultural articles. The website targets the Icelandic-speaking general public and operates under the parent company Fjölmiðlatorgið ehf. It maintains a professional online presence with consistent branding and a good quality content offering. The business model primarily relies on advertising revenue and possibly subscriptions. Technically, the site is built on WordPress CMS and uses common web technologies such as jQuery, Slick Carousel, and integrates multiple third-party analytics and advertising services. The site is mobile optimized and SEO friendly, providing a good user experience.

F

F TRUCKS a.s.

fordtrucks.cz

44

F TRUCKS a.s. operates the official Czech website for Ford Trucks, providing comprehensive information and services related to new and used commercial trucks, servicing, financing, and after-sales support. The company targets commercial truck buyers and fleet operators within the Czech Republic, positioning itself as a key regional distributor and service provider for Ford Trucks. The website is professionally designed, localized in Czech, and integrates multiple social media channels to engage its audience. Technically, the website employs a modern technology stack including jQuery, Foundation framework, and various JavaScript libraries for UI and analytics. It uses multiple analytics and tracking services such as Piwik PRO, Microsoft Clarity, Google Tag Manager, and Facebook Pixel, indicating a mature digital marketing infrastructure. The site is hosted likely by REG-TELE3, consistent with the domain's Czech registration and nameservers. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and security headers. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, showing consistency and legitimacy. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security policy transparency and security header implementation would enhance its security posture and compliance maturity.

S

SCONTO Nábytok s. r. o.

sconto.sk

65

SCONTO Nábytok s. r. o. is a well-established furniture retailer in Slovakia, operating both physical stores and an online e-commerce platform. As part of the German Hoffner group, it benefits from a strong market position and brand recognition since its founding in 1990. The website offers a broad range of furniture and home accessories targeting general consumers seeking quality home furnishings. Technically, the site employs modern web technologies including Google Tag Manager, Facebook SDK, and advanced analytics tools like Exponea, ensuring a mature digital presence. Security posture is strong with HTTPS enforced and multiple security headers present, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is good with clear privacy and cookie policies and GDPR adherence. Overall, the site is professional, trustworthy, and well-optimized for user experience and marketing effectiveness.

Z

Zlatky.sk

zlatky.sk

46

Zlatky.sk is a Slovak-based e-commerce platform specializing in the sale of investment-grade gold and silver products, including coins and bars. The website targets investors and collectors interested in precious metals as a hedge against inflation and a store of value. The business operates primarily in the retail sector with a focus on precious metals investment. The site offers a user-friendly shopping experience with updated pricing and product listings, supported by modern JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel. Cookie consent mechanisms are implemented to comply with privacy regulations, although a dedicated privacy policy page was not found in the provided content. Security posture is moderate with HTTPS enabled but lacks advanced security headers and published security policies. Overall, the website is professional, trustworthy, and suitable for general audiences interested in precious metals investment.

I

Instytut Przemysłów Kreatywnych

crpk.pl

48

Instytut Przemysłów Kreatywnych is a Polish government institution dedicated to supporting and developing the creative industries sector. It offers programs such as the Program Wsparcia Gier Wideo and Rozwój Sektorów Kreatywnych, publishes research reports, and promotes Polish creative industries domestically and internationally. The website is professionally designed, uses Joomla CMS, and integrates multiple analytics and tracking tools to monitor user engagement. The institution maintains a clear online presence with official social media channels and comprehensive contact information. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements are recommended in DNSSEC deployment and security headers. WHOIS data shows inconsistencies in domain creation date, which may be a data error but should be monitored. Overall, the website is trustworthy, compliant with GDPR, and serves its government mandate effectively.

The website www.sp.gov.br is the official digital portal for the Government of the State of São Paulo, Brazil, managed by the Companhia de Processamento de Dados do Estado de São Paulo (Prodesp). It serves as a comprehensive platform providing institutional information, public services, news updates, and communication channels to residents, government employees, and visitors. The site demonstrates a mature digital presence with consistent branding and a clear focus on accessibility and transparency. Technically, the site leverages modern web technologies including jQuery, Bootstrap, FontAwesome, and Slick Carousel, integrated within an IBM WebSphere Portal framework. It employs Google Tag Manager and Microsoft Clarity for analytics and user behavior tracking. The site is mobile-optimized and includes accessibility features such as VLibras for sign language support, reflecting a commitment to inclusive design. From a security perspective, the website enforces HTTPS and provides clear incident response contacts including a CSIRT email. While explicit security headers were not fully visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerable libraries detected. Privacy and cookie policies are comprehensive and GDPR-compliant, supporting user data protection and transparency. Overall, the website is trustworthy, professionally maintained, and aligned with the expectations for a government portal. It effectively balances user experience, accessibility, and security, making it a reliable resource for its audience.

V

VšĮ „OSFL PROJEKTAI“

osfl.lt

39

OSFL Projektai is a Lithuanian non-profit organization focused on delivering community programs, projects, and professional services such as accounting, consulting, and administrative support. The organization maintains a clear presence in Lithuania with a physical office in Vilnius and actively engages with partners and stakeholders through various projects and initiatives. Their website reflects a professional and consistent brand image targeted at non-profit entities and civic groups within Lithuania. Technically, the website is built on WordPress, leveraging common JavaScript libraries like jQuery and Slick Carousel, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and secure form inputs; however, the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data transparency slightly reduces trustworthiness, but the visible business information and contact details support credibility. Overall, the website is a reliable digital presence for a small non-profit organization with a focus on community engagement and service provision.

V

Valstybės įmonė "Registrų centras"

esveikata.lt

63

The website www.esveikata.lt serves as the official Lithuanian government e-health portal, operated by the State Enterprise Registrų centras. It provides a comprehensive suite of digital health services including electronic prescriptions, patient registration, health certificate viewing, and cross-border health services. The portal targets Lithuanian residents and healthcare professionals, positioning itself as the primary national platform for electronic health services. The content is professionally presented in Lithuanian, with clear navigation and mobile optimization. Technically, the site employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Cloudflare Turnstile captcha for form security, and enforces Content Security Policy headers. The site is served over HTTPS with strong SSL configuration, ensuring secure data transmission. Privacy and cookie policies are prominently presented with user consent mechanisms, reflecting good compliance with GDPR requirements. However, no explicit terms of service or published security policies were found. From a security perspective, the portal demonstrates a mature posture with secure forms, no exposed sensitive data, and appropriate security headers. The use of Cloudflare Turnstile captcha helps mitigate automated abuse. The absence of a published incident response or vulnerability disclosure policy is a minor gap. WHOIS data for the domain is unavailable due to registry query issues, but the official government affiliation and contact details strongly support the site's legitimacy. Overall, the website is a trustworthy, well-maintained government digital service platform with good security and privacy practices. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving accessibility features to further strengthen compliance and user trust.

B

Parik24 — офіційні ставки на бокс онлайн з вигідними коефіцієнтами

bepolite.eu

53

The website 'Parik24' is an online platform specializing in boxing betting, targeting boxing fans primarily in Ukraine and internationally. It offers a variety of betting markets including live betting and detailed odds, positioning itself as a niche sports betting media site. The site is built on WordPress with common front-end libraries such as jQuery and Bootstrap, indicating a moderate level of technical maturity. The design is professional and content is relevant and well-structured, though accessibility features are basic. Security posture is limited with no visible security headers or privacy policies, and no contact information is provided, which may impact user trust and compliance with regulations. Overall, the site is functional and content-rich but requires improvements in security and privacy compliance to enhance credibility and user trust.

E

EXPRES MENU, s.r.o.

expresmenu.com

56

EXPRES MENU, s.r.o. is a Czech family-owned business specializing in the production and e-commerce sale of high-quality, healthy ready meals using a patented continuous thermal process (CTP) that ensures long shelf life without preservatives. The company targets consumers seeking convenient, nutritious food options and maintains a strong regional presence with media coverage and a dedicated blog. Technically, the website is built on the Shoptet CMS platform, leveraging common web technologies and analytics tools with GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS and CSRF protections, though some outdated libraries and missing security headers present moderate risks. The absence of WHOIS data reduces domain transparency but does not negate the evident legitimacy of the business. Overall, the site is professional, user-friendly, and trustworthy, with room for technical and security improvements.

E

EXPRES MENU, s.r.o.

expresmenu.cz

10

EXPRES MENU, s.r.o. is a Czech family-owned business specializing in the production and online retail of high-quality ready meals and food products. The company leverages a patented continuous thermal process (CTP) to produce meals with long shelf life without preservatives, targeting health-conscious consumers and outdoor enthusiasts. The website reflects a mature e-commerce platform with a clear brand identity and regional supplier partnerships. Technically, the site uses the Shoptet CMS platform with integrations for Google Analytics, Facebook SDK, and Pinterest tracking, providing a modern but moderately performing infrastructure. Security posture is adequate with HTTPS and CSRF protections, though improvements in security headers and library updates are recommended. Privacy compliance is strong with comprehensive cookie consent and privacy policies in Czech language. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Positive Groupe France

sarbacane.com

66

Sarbacane, a brand under Positive Groupe France, is a well-established French company founded in 2007 specializing in digital marketing communication solutions. Their flagship offering, Sarbacane Suite, provides a comprehensive set of tools including email marketing, SMS campaigns, marketing automation, CRM, landing pages, chatbots, and transactional messaging APIs. The company targets businesses and organizations seeking to optimize their marketing efforts with a SaaS subscription model complemented by personalized consulting and support services. Sarbacane holds a strong market position as a leading French provider with recognized certifications and a consistent brand presence.

MotoPress is a specialized WordPress plugin and theme developer focusing on booking solutions for hotels, appointments, and rental properties. Their product portfolio includes premium and free plugins such as Hotel Booking, Appointment Booking, and Gutenberg blocks, alongside Elementor addons and WordPress themes tailored for hospitality and service industries. The company targets small to midsize businesses and WordPress users seeking robust booking and website solutions. Their market position is that of a niche provider with a strong reputation evidenced by user reviews and active product demos. Technically, the website is built on WordPress with modern plugins like Easy Digital Downloads and Yoast SEO, supported by Cloudflare DNS and enhanced with Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good mobile optimization, SEO practices, and a consistent, professional design. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC, security headers, and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected, but improvements are recommended in security headers and transparency. Overall, MotoPress presents a trustworthy and professional online presence with strong business credibility and technical maturity. The absence of explicit privacy and cookie policies is a notable gap in compliance. Strategic improvements in security transparency and privacy compliance would enhance their risk posture and user trust.

M

Mubea Carbo Tech GmbH

carbotech.at

10

Mubea Carbo Tech GmbH is a medium-sized Austrian manufacturing company specializing in the design, development, and production of fiber composite components for automotive series, motorsport, aeronautics, and industrial applications. As part of the global Mubea Group, it holds a leading market position as a pioneer in lightweight technology since its founding in 1993. The company offers full-service solutions from prototype to series production, targeting B2B clients in automotive and aerospace sectors. Technically, the website is built on a modern WordPress CMS with Elementor, leveraging common web technologies such as jQuery, Slick Carousel, and FontAwesome. It demonstrates good performance, mobile optimization, and SEO practices. The site employs GDPR-compliant cookie consent mechanisms via Cookiebot and integrates TrustCaptcha for form security. From a security perspective, the site uses HTTPS with good SSL configuration and employs privacy and cookie policies aligned with GDPR. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy digital presence for Mubea Carbo Tech. The absence of WHOIS data limits domain trust assessment, but the business information and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and adding incident response information to strengthen security posture and compliance.

F

Foire de Metz

foiredemetz.com

61

Foire de Metz is a regional event organizer hosting a prominent fair in Metz, France, providing exhibition spaces and entertainment to a broad public audience. The website is professionally designed using Drupal 10, integrating modern analytics and marketing tools such as Matomo and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, supporting a positive user experience. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. The WHOIS data is notably absent or unregistered in the queried database, which raises concerns about domain legitimacy despite the professional appearance and content of the website. Overall, the site is safe, trustworthy, and compliant with GDPR, but the domain registration inconsistency warrants further verification.

C

Caen Événements

caen-evenements.com

55

Caen Événements operates as the manager of the Centre de Congrès and Parc des Expositions in Caen, Normandy, producing both professional and public events such as congresses, gala evenings, and festivals. The website positions the company as a regional leader in event management within Normandy, targeting event organizers and attendees. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses various JavaScript libraries to enhance user experience. SEO and mobile optimization are well implemented, though accessibility could be improved. Security posture is solid with HTTPS and security headers in place, but lacks explicit privacy and terms of service documentation. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration status, which impacts overall trustworthiness. Strategic recommendations include adding comprehensive privacy and terms policies, improving contact transparency, and verifying domain registration details to enhance credibility and compliance.

F

Accueil | Foire St-Etienne

foiredesaintetienne.com

56

The website www.foiredesaintetienne.com represents the Foire de Saint-Etienne, an event held at Parc Expo from September 19 to 29, 2025. The site is built on Drupal 10 and uses modern web technologies including FontAwesome, Leaflet for maps, Slick Carousel for UI elements, and Matomo for analytics. It is targeted primarily at a French-speaking audience interested in attending the event. The website is professionally designed with good mobile optimization and accessibility features, providing a positive user experience. However, the absence of WHOIS data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks comprehensive security headers and published security policies. Privacy compliance is basic, with no explicit privacy or terms of service pages found. Overall, the site is functional and informative but would benefit from enhanced transparency and security documentation.

F

Accueil | Foire Européenne de Strasbourg

foireurop.com

59

The website www.foireurop.com represents the Foire Européenne de Strasbourg, a European fair event held in Strasbourg, France. The site provides information about the event, targeting visitors and exhibitors interested in attending. The business model revolves around event organization and promotion, catering primarily to the general public and regional visitors. The website is built on Drupal 10, leveraging modern web technologies such as FontAwesome, Leaflet.js for maps, and Slick Carousel for UI components. Analytics are handled via Matomo and Google Tag Manager, with cookie consent managed through tarteaucitron.io, indicating some level of GDPR compliance awareness. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit privacy or terms of service pages in the provided content. No contact information or incident response channels are clearly presented, which may hinder user trust and compliance. The WHOIS data is unavailable, raising concerns about domain registration legitimacy and reducing overall trustworthiness. No WAF or blocking mechanisms were detected, and the site content is accessible and safe for general audiences. Overall, the website demonstrates moderate digital maturity with good technical implementation and content quality but requires improvements in transparency, security best practices, and business credibility to enhance trust and compliance. Strategic recommendations include publishing clear privacy and terms policies, adding contact and security incident information, and improving security headers and monitoring of third-party scripts.

M

Mégacité Amiens

megacite.fr

57

Mégacité Amiens is a regional event venue in France specializing in exhibitions, congresses, and various events. The website presents a professional image with clear branding and relevant content targeting event organizers and attendees. The business model revolves around venue rental and event hosting services, positioning itself as an important player in the hospitality sector within the Amiens region. The site is built on Drupal 10 and incorporates modern web technologies and analytics tools such as Google Tag Manager and Matomo, indicating a moderate level of digital maturity. Privacy compliance is addressed through cookie consent mechanisms and a privacy policy, reflecting awareness of GDPR requirements. Security posture is generally good with HTTPS enforced and some security best practices observed, though explicit security headers and incident response information are lacking. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and technical setup suggest a legitimate and trustworthy business. Overall, the site scores well in content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and contact information availability.

F

Foire de Toulouse

foiredetoulouse.com

60

Foire de Toulouse is a regional event organizer focused on the International Fair of Toulouse, providing event information and services to visitors and exhibitors. The website is built on Drupal 10 and integrates modern web technologies such as Matomo analytics, Google Tag Manager, and accessibility tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks visible security headers and formal privacy or incident response policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and branding appear professional and consistent with a legitimate event. Strategic improvements in security headers, privacy disclosures, and domain registration transparency are recommended to enhance trust and compliance.

G

Gilston Digital SA

miru.digital

49

Miru.digital is a Swiss-based SaaS platform operated by Gilston Digital SA, specializing in PDF document archiving, consultation, and distribution with advanced full-text search capabilities. The company positions itself as a Swiss-made, secure, and easy-to-use solution targeting businesses and organizations requiring efficient document management. The website reflects a professional and consistent brand image with clear pricing tiers and client references, indicating an established niche presence in the document management technology sector. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes essential security features such as HTTPS and cookie consent management. However, it lacks explicit privacy and terms of service documentation, which are critical for compliance and user trust. Security posture is generally good, with use of Google reCAPTCHA and no visible vulnerabilities, but could be improved by adding security headers and incident response information. Overall, the website is trustworthy and professionally maintained, though it would benefit from enhanced privacy and security disclosures to align with best practices.

B

Bundesstiftung Baukultur

bundesstiftung-baukultur.de

49

Bundesstiftung Baukultur is a German independent foundation dedicated to promoting architectural culture and quality in the built environment. Established in 2007, it operates as a non-profit entity offering publications, events, competitions, and networking opportunities to professionals, students, and the public. The website is well-structured, professionally designed, and provides comprehensive information about its mission, activities, and contact details. Technically, the site runs on TYPO3 CMS, uses Matomo analytics with privacy-conscious settings, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the domain and website appear legitimate and trustworthy, serving a government-related non-profit sector in Germany.

V

Verband Schweizer Plastic Recycler (VSPR)

plasticrecycler.ch

51

The Verband Schweizer Plastic Recycler (VSPR) is a Swiss non-profit association serving as the competence center for plastic recycling in Switzerland. It connects municipalities, collection systems, and recycling companies to promote sustainable, high-quality plastic recycling and circular economy principles. The website reflects a strong commitment to sustainability, quality assurance, and transparency, supported by a monitoring and licensing system that awards a quality label to certified collection systems. The target audience includes municipalities, industry partners, and the general public interested in environmental sustainability within Switzerland. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery, Slick Carousel, LazyLoad, and Fancybox. It employs multilingual support via Weglot and integrates Google reCAPTCHA for form security. Cookie consent is managed through the Complianz GDPR plugin, ensuring compliance with European privacy regulations. The site is well-optimized for mobile devices and demonstrates good SEO practices. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. Email addresses are obfuscated to prevent scraping. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional, trustworthy, and compliant digital presence for the VSPR. It effectively communicates its mission and services while maintaining good technical and security standards. Strategic recommendations include enhancing security headers, fixing minor image loading issues, and publishing a formal security policy or incident response contact to further strengthen trust and compliance.

S

Star Casino Group

cecpraha.cz

64

Star Casino Group is a prominent operator of casino and gaming venues in the Czech Republic, boasting over 50 physical locations and an online casino platform. The company emphasizes fair play and has a long operational history exceeding 25 years. Their target audience is adults interested in gambling and casino entertainment. The website is professionally designed with good navigation and mobile optimization, leveraging modern JavaScript libraries and Google Maps integration for location services. Security-wise, the site enforces HTTPS, includes age verification, and manages cookie consent in compliance with GDPR. However, the absence of explicit privacy policy and terms of service pages, as well as missing WHOIS registration data, slightly detracts from overall trustworthiness. The company provides clear contact information and an ethical whistleblower program, indicating a commitment to compliance and corporate governance.

Ö

Öserix

oeserix.ch

47

Öserix is a regional Swiss initiative focused on producing and promoting local agricultural food products from Appenzell Innerrhoden. The website serves as a platform to showcase the regional value chain, including producers, product information, and an online shop. The business targets consumers interested in sustainable, regional, and seasonal food products, emphasizing quality and local economic support. Technically, the site is built on WordPress with modern plugins and tracking tools such as Google Analytics and Tag Manager, showing moderate digital maturity. Security posture is adequate with HTTPS and IP anonymization but lacks advanced security headers and explicit incident response information. Privacy compliance is partial with a privacy policy present but missing cookie consent mechanisms. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

C

CEC Praha a.s.

starcasinoteplice.cz

9

Star Casino Teplice operates as a modern casino located in Teplice, Czech Republic, offering a variety of live casino games including American Roulette, Black Jack, and Poker, alongside Video Lottery Terminals (VLT) from multiple providers. The business targets adult customers seeking gambling entertainment with additional food and beverage services enhancing the experience. The website is professionally designed with clear navigation and mobile optimization, reflecting a medium-sized hospitality business with a local/regional market focus. Technically, the site uses modern JavaScript libraries and Google services, with HTTPS enforced and a GDPR-compliant cookie consent mechanism. However, the absence of a privacy policy page and security headers indicates room for improvement in compliance and security posture. The WHOIS data is missing, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the consistent business information and active social media presence. Overall, the site is functional, trustworthy, and suitable for its target audience but would benefit from enhanced security and compliance documentation.

C

CEC Praha a.s.

casinopalace.cz

9

Palace Casino, operated by CEC Praha a.s., is a regional casino located in Svatý Kříž, Czech Republic, offering a variety of live casino games including roulette, blackjack, and Texas Hold'em, alongside modern VLT slot machines and a bar serving drinks. The casino targets adult customers seeking entertainment and gambling experiences near the border crossing. The website is professionally designed with multimedia content, responsive layout, and clear navigation, reflecting a medium-sized hospitality business with a solid market position within a group of related casinos. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Slick carousel, and GSAP, with Google Fonts integration and cookie consent mechanisms. Security posture is good with HTTPS enforced and CSRF tokens present, but lacks explicit security headers and a dedicated privacy policy page. The WHOIS data is missing, which slightly reduces transparency and trustworthiness, but the presence of a valid Czech Ministry of Finance license and clear company information supports legitimacy. Overall, the site is compliant with GDPR cookie consent requirements and includes age verification to restrict access to adults only.

C

CEC Praha a.s.

starcasinogroup.cz

10

Star Casino Group is a well-established casino operator in the Czech Republic, managing over 50 physical casino locations and an online casino platform. The company emphasizes fair play and responsible gambling, supported by age verification and ethical whistleblowing channels. Their market position is strong regionally with a broad footprint across multiple cities. Technically, the website uses modern JavaScript libraries and Google services, providing a responsive and user-friendly experience. Security posture is generally good with HTTPS and cookie consent mechanisms, though explicit security headers are not detected and WHOIS transparency is lacking. Overall, the business appears legitimate and compliant with GDPR, but domain registration details should be verified for full trust.

C

CEC Praha a.s.

starcasinoplzen.cz

10

Star Casino Plzeň operates as a local casino in Plzeň, Czech Republic, offering live casino games and a variety of VLT machines with jackpots and bonuses. The business is part of the larger Star Casino Group managed by CEC Praha a.s., a registered company in Prague. The website targets adult customers with clear age verification and legal disclaimers about gambling risks. Technically, the site uses modern JavaScript libraries and fonts, with a responsive design and good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. WHOIS data is unavailable, likely due to privacy protection, which is common in the gambling industry. Overall, the site presents a professional and trustworthy front for its business operations.

C

CEC Praha a.s.

starcasinopetrovice.cz

9

Star Casino Petrovice is a regional casino operator in the Czech Republic, offering live table games such as poker, blackjack, and roulette, alongside a wide selection of modern VLT slot machines. The casino operates 24/7 with free entry and is located conveniently next to a shopping center with parking. The business is operated by CEC Praha a.s., a registered company with licensing from the Czech Ministry of Finance. The website demonstrates a moderate level of digital maturity, using modern JavaScript libraries and multimedia content to engage visitors. Security measures include HTTPS, CSRF tokens, and age verification, but lack some advanced security headers and explicit privacy policy pages. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance documentation.

I

Ideogen AG

ideogen.com

49

Ideogen AG is a Switzerland-based pharmaceutical partner specializing in specialty therapeutics, orphan and rare disease care, and medical concierge services. The company targets healthcare professionals, biotech and pharmaceutical companies, and patient advocacy groups primarily across Europe, CIS, and MENA regions. Their business model focuses on providing managed access programs, regulatory support, and lifecycle management for specialty medicines. The website reflects a medium-sized, well-established company with a clear market niche and professional branding. Technically, the website employs modern JavaScript libraries such as jQuery, Bootstrap, Slick Carousel, and animation frameworks like AOS and WOW.js, indicating a mature digital infrastructure. Hosting and DNS are managed via Cloudflare, ensuring reliable performance and security. The site is mobile optimized with good SEO and accessibility basics, though some improvements are possible. From a security perspective, HTTPS is enforced, and no sensitive data is exposed. However, the absence of security headers and explicit incident response policies suggests room for improvement. Privacy compliance is adequate with clear privacy and cookie policies, though a cookie consent mechanism is missing. Contact information is comprehensive, enhancing business credibility. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response details, and adding vulnerability disclosure information to strengthen security posture and compliance.

I

IMK Ltd.

imk.ch

54

IMK Ltd. is a Swiss-based company specializing in organizing congresses and facilitating communication within the healthcare sector. Established in 1993 and headquartered in Basel, it serves as an intermediary promoting exchange between doctors, patients, and industry stakeholders. The company maintains a professional online presence with detailed event listings and active engagement in healthcare-related activities. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries and ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response information are absent. Privacy policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Overall, the website and business demonstrate high credibility and trustworthiness within their niche.

M

Moosend

moosend.com

68

Moosend is a mature and reputable SaaS company specializing in email marketing and marketing automation solutions. Founded in 2009, it offers a comprehensive platform featuring email campaign management, marketing automation, landing pages, subscription forms, transactional emails, and AI-powered content generation. The company targets businesses and marketers seeking intuitive and effective digital marketing tools, positioning itself as a leading provider with a strong market presence and a consistent brand image. Technically, the website is built on WordPress and leverages modern web technologies including Google Tag Manager, Google Analytics, Microsoft Clarity, and various JavaScript libraries for enhanced user experience and analytics. Hosting is inferred to be on Amazon AWS infrastructure, ensuring reliable performance and scalability. The site is mobile-optimized, SEO-friendly, and demonstrates excellent design and navigation quality. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with domain registration details indicating strong legitimacy and protection against unauthorized domain changes. However, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. Privacy compliance is generally good with a comprehensive privacy policy and terms of service, though a cookie consent mechanism is absent. Overall, Moosend's website reflects a professional, trustworthy, and secure digital presence suitable for its business model. Strategic recommendations include enabling DNSSEC, implementing security headers, and adding explicit cookie consent to enhance privacy compliance and security posture.

C

CEC Praha a.s.

starcasinopruhonice.cz

65

Star Casino Průhonice is a well-established casino located near Prague, Czech Republic, operated by CEC Praha a.s. The casino offers a wide range of gaming options including over 120 modern slot machines, live card games, and American roulette with low minimum bets. Additional amenities include a fully stocked bar, private parking, and a VIP shuttle service. The business targets adult customers interested in gambling and entertainment, positioning itself as a regional leader with multiple sister casinos. Technically, the website uses modern JavaScript libraries and CSS frameworks, providing a responsive and visually appealing user experience. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though it lacks some advanced security headers and explicit privacy and terms of service pages. Overall, the site is professional and trustworthy, but the absence of WHOIS data reduces transparency. The content is adult-oriented due to gambling services and includes appropriate age verification and warnings.

C

Creative Heads

creativeheads.pl

9

Creative Heads is a small, Poland-based creative agency specializing in graphic design, web development, marketing, and multimedia services primarily serving the Trójmiasto region. The website presents a professional and visually appealing digital presence with a clear focus on creative solutions and client engagement. The technical infrastructure is built on WordPress with modern JavaScript libraries and tracking tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security measures.

S

Software House Webixa

webixa.pl

41

Software House Webixa is a Polish-based technology company specializing in web development, e-commerce solutions, SEO, and digital marketing services. Positioned as a local software house in Poznań, it offers a range of services including PrestaShop and WordPress store creation, SEO optimization, and paid advertising campaigns such as Google Ads and Meta Ads. The company targets businesses seeking to enhance their online presence and sales through modern, scalable digital solutions. Technically, the website is built on WordPress CMS with a modern tech stack including Yoast SEO, Google Tag Manager, Google Analytics, and CookieYes for consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting appears to be behind Cloudflare, providing additional security and performance benefits. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to mitigate spam and bot attacks, and implements a detailed cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and published security or incident response policies, which are recommended for enhanced security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations regarding cookies, though it could improve transparency by publishing privacy and terms of service documents. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include adding security headers, publishing security and privacy policies, and providing direct contact information for incident response.

V

Visma

visma.com

10

Visma is a leading enterprise software provider specializing in cloud-based business software solutions that simplify the work lives of entrepreneurs, businesses, and societies. The company operates primarily in the technology sector with a strong presence in Europe and recent expansion into Latin America through acquisitions such as Conta Azul. Visma offers a broad portfolio of services including cloud software, accounting, ERP, and public sector solutions, targeting small to large enterprises and partners. The website reflects a mature digital presence with excellent content quality, clear navigation, and professional branding. Technically, the site leverages modern web technologies such as Webflow CMS, Google Tag Manager, and reCAPTCHA, ensuring good performance, mobile optimization, and security best practices. Security posture is strong with HTTPS enforcement, security headers, and published security policies, although the absence of a security.txt file and incomplete WHOIS data slightly reduce transparency. Privacy compliance is robust with comprehensive policies and consent mechanisms aligned with GDPR. Overall, Visma demonstrates a high level of business credibility and digital maturity, though domain registration transparency should be improved to enhance trust further.

I

Izzy Trading, s.r.o.

sprava-servisov.sk

41

FOXii is a Slovak-based software company specializing in cloud-based service management solutions tailored for field service companies. Their platform enables digitalization of service processes including scheduling, protocol creation, and technician monitoring, targeting small to medium-sized service firms. The website reflects a professional and consistent brand presence with clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is solid with HTTPS and DNSSEC enabled, use of Google reCAPTCHA, and a cookie consent mechanism, though it lacks explicit security headers and a published security policy. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

NECHTENASBYT.CZ is a Slovak online magazine providing content focused on home renovation, finance, energy, business, and lifestyle topics. The website is built on WordPress and features a variety of blog posts authored primarily by 'Magazín Admin' and other contributors. The site targets Slovak-speaking homeowners, investors, and professionals interested in practical advice and industry insights. Technically, the site uses standard WordPress technologies including jQuery and FontAwesome, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and visible privacy or cookie policies. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for small media sites. Overall, the site is functional, content-rich, and moderately trustworthy but would benefit from enhanced privacy compliance and security best practices.

B

BRAGG Gaming Group

oryxgaming.com

67

Bragg Gaming Group Inc. is a publicly traded international B2B iGaming technology and content solutions provider, listed on NASDAQ and TSX under the ticker BRAG. The company offers a comprehensive suite of services including turnkey iGaming platforms, exclusive casino content, player account management, and player engagement tools. It operates globally with multiple regulated market licenses and offices in Canada, UK, Malta, USA, Brazil, Slovenia, and India. The website reflects a mature, professional business with strong branding and industry recognition. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for security and analytics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is privacy protected but consistent with the company’s public presence. Overall, the website is well-structured, compliant with GDPR, and provides clear contact and regulatory information, supporting a high trust level.

D

Digihood

digihood.cz

56

Digihood is a Czech Republic based digital agency specializing in custom web design, SEO optimization, web management, e-commerce development, online marketing, application development, and AI implementation. The company targets businesses seeking tailored digital solutions and maintains a professional online presence with a multilingual website. Technically, the site is built on WordPress with modern performance optimizations and uses Google Tag Manager for analytics. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security policies and privacy documentation are missing. Overall, Digihood presents a credible and professional digital agency with room for improvement in privacy and security transparency.

E

EUPATI

eupati.eu

63

EUPATI is a European non-profit organization focused on empowering patients through education and training in medicines research and development. The website serves as a comprehensive platform offering various educational programs such as the Patient Expert Training Programme, Open Classroom, and Learning Lab, targeting patients, patient representatives, and healthcare professionals. The organization maintains a strong market position in patient advocacy and education within Europe, supported by multiple national platforms and partnerships. Technically, the website is built on WordPress with a modern tech stack including jQuery, Slick Carousel, and Yoast SEO. It demonstrates good digital maturity with mobile optimization, accessibility features, and SEO best practices. Hosting and domain registration are legitimate and consistent with the organization's profile. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. While some advanced security headers are missing, no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the website presents a low-risk profile with high professionalism and trustworthiness. Strategic recommendations include enhancing security headers, publishing a formal security policy, and adding vulnerability disclosure information to further strengthen security posture and trust.

S

SPIRIT MEDICAL spol. s r.o.

spiritmedical.cz

54

SPIRIT MEDICAL spol. s r.o. is a specialized healthcare company focused on the distribution and servicing of micro-surgical medical products, primarily for ophthalmology. The company targets medical professionals and ophthalmology specialists, offering a niche portfolio of products and services. Their market position is that of a specialized supplier with a professional online presence and active social media engagement. The website is well-structured, professionally designed, and optimized for SEO, reflecting a mature digital presence. Technically, the website is built on WordPress with WooCommerce, leveraging modern libraries such as Bootstrap, jQuery, and various plugins for SEO, analytics, and GDPR compliance. The site is mobile-optimized and performs moderately well, with good accessibility and SEO features. Analytics are implemented via Google Analytics and MonsterInsights, with a cookie consent mechanism in place. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks visible security headers and a published privacy policy, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, though the website content and business information appear legitimate. Overall, the website presents a professional and trustworthy front for a small healthcare business, with room for improvement in privacy policy publication and security header implementation to enhance compliance and security posture.

C

CSL Plasma

cslplasma.hu

62

CSL Plasma is a healthcare-focused organization operating in Hungary that facilitates blood plasma donation to support patients with conditions treatable only by plasma-based therapies. The website serves as an informational and engagement platform for potential donors and the community, featuring patient stories, donation processes, and news updates. The organization positions itself as a trusted intermediary connecting donors and patients, emphasizing the life-saving impact of plasma donation. Technically, the website is built on Drupal CMS with modern front-end frameworks such as Bootstrap 5 and FontAwesome for icons. It integrates Google Tag Manager for analytics and OneTrust for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some performance optimizations could be considered. From a security perspective, the site uses HTTPS with a presumably strong SSL configuration. However, it lacks visible security headers and does not provide explicit security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partially addressed through cookie consent but lacks a formal privacy policy and terms of service. Overall, the website is professional, trustworthy, and well-structured, serving its purpose effectively. Strategic improvements in privacy documentation, security headers, and contact transparency would enhance its compliance and security posture.

M

MeDiLa spol. s r.o.

mojemedila.cz

60

MeDiLa spol. s r.o. operates a Czech network of clinical laboratories offering comprehensive laboratory diagnostic services primarily targeting individuals seeking premium health testing solutions. The company provides a variety of health screening packages, vitamin and hormone testing, and corporate health benefits, positioning itself as a reputable regional healthcare provider in the Czech Republic. The website is professionally designed with clear navigation, detailed product information, and multiple customer engagement points including social media and newsletter subscription. Technically, the site leverages modern web technologies such as Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a responsive and secure user experience. Security measures include HTTPS enforcement, anti-CSRF tokens, and CAPTCHA integration, although some security headers are not explicitly detected. Privacy and cookie policies are present and indicate GDPR compliance. However, WHOIS data is unavailable, which slightly impacts trustworthiness but does not detract from the professional presentation and business legitimacy. Overall, the website demonstrates a solid digital maturity with room for improvement in security transparency and incident response documentation.

E

EBITSCHenergietechnik GmbH

ebitsch-energietechnik.de

44

EBITSCHenergietechnik GmbH is a well-established German company specializing in renewable energy solutions, particularly photovoltaic systems, battery storage, and heat pumps. Founded in 1990, it has a strong regional presence with over 45 employees and more than 5000 completed solar projects. The company holds multiple industry certifications and awards, reinforcing its market credibility. The website reflects a professional digital presence built on WordPress with modern plugins and themes, providing a good user experience and clear navigation. Security posture is solid with HTTPS and some security headers, though improvements in cookie consent and vulnerability disclosure are recommended. Overall, the site is trustworthy and aligns well with the company's business claims.

S

Sport-Santé

sport-sante.lu

45

Sport-Santé is a Luxembourg-based non-profit federation focused on promoting therapeutic physical activities for patients with chronic diseases. Managed by the Fédération Luxembourgeoise des Associations de Sport de Santé (FLASS), it serves as a recognized label and resource hub offering information, events, and videos to support health through physical activity. The website is well-structured, multilingual, and optimized for SEO, targeting patients and healthcare professionals in Luxembourg. Technically, it is built on WordPress with modern plugins and libraries, providing a good user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published security policies. The absence of WHOIS data limits domain trust verification, but the presence of official partnerships and consistent branding supports legitimacy. Overall, the site is professional, informative, and trustworthy within its healthcare niche.

A

Appenzellerland Tourismus AI

appenzell.ch

51

Appenzellerland Tourismus AI operates the official tourism portal for the Appenzell region in Switzerland, providing comprehensive information on accommodations, gastronomy, events, cultural activities, and regional products. The website serves as a key resource for tourists and visitors, offering detailed event listings, booking options, and regional insights. The organization positions itself as the authoritative source for tourism in the Appenzell area, supported by consistent branding and professional content. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery, Slick Carousel, and Google Maps API. It integrates marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Sendinblue for newsletter management. The site is mobile-optimized with good SEO practices and moderate performance, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and implements Google reCAPTCHA on forms to mitigate spam and abuse. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. However, there is room for improvement by adding a security.txt file and publishing incident response contacts. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable platform for regional tourism promotion. Strategic recommendations include enhancing security headers, formalizing vulnerability disclosure, and improving accessibility features to further strengthen the site's security posture and user experience.