Security Directory

S

Skygate

skygate.io

51

Skygate is a custom software development company founded in 2016, serving Bay Area founders and Fortune 500 companies. Recently, it joined the Mindpal family, indicating a strategic partnership or acquisition. The company offers a broad range of services including product design, web development, blockchain and Web3 solutions, and mobile development across multiple platforms. The website is professionally designed using WordPress and Elementor, reflecting a medium-sized technology service provider with a consistent brand image and reputable client base. Technically, the site uses modern web technologies and frameworks, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks some advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is privacy protected but consistent with the business claims, and no blocking or WAF interference was detected.

F

Forendors

forendors.cz

64

Forendors is a Czech-based digital platform that connects content creators with their audiences, providing tools for community building and content monetization. The platform supports creators through a web interface and mobile applications available on iOS and Android, enhancing user engagement with notifications and offline content access. The business positions itself as a niche player in the media sector, focusing on creator empowerment and audience interaction. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted likely on DigitalOcean infrastructure, and integrates Google Tag Manager for analytics and marketing. Security measures include HTTPS enforcement and standard security headers, though no explicit security policy or vulnerability disclosure mechanisms are present. Privacy compliance is well addressed with comprehensive GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data is a notable anomaly, suggesting privacy protection or registration issues, but the professional site content and social media presence support legitimacy. Overall, Forendors demonstrates a solid digital maturity with room for improvement in transparency and security disclosures.

I

Istropolitana Ogilvy

istropolitana.sk

56

Istropolitana Ogilvy is a Slovak marketing and advertising agency providing creative and strategic marketing services. The website presents a professional digital presence with a modern tech stack including Vue.js and Nuxt.js frameworks. The site is well-optimized for mobile and includes standard tracking tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS and security headers properly configured, though explicit security and privacy policies are absent. The absence of contact information and formal policies slightly reduces privacy compliance and business credibility scores. Overall, the website is trustworthy and professionally maintained, serving a business audience in the marketing sector.

P

PODA

poda.cz

60

PODA is a Czech Republic-based internet service provider specializing in high-speed internet connections up to 2 Gb/s and TV services with over 160 channels. The company targets residential and business customers, offering both optical fiber and wireless internet solutions, alongside IPTV and VoIP calling services. The website reflects a medium-sized, established ISP with a professional online presence and consistent branding. Technically, the site is built on WordPress and leverages modern web technologies including Vue.js, Google Tag Manager, and various analytics and tracking tools. Security posture is strong with HTTPS, security headers, and CAPTCHA integration, though public security policies and incident response contacts are not found. Privacy compliance is indicated by the presence of privacy and cookie policies with consent mechanisms, though GDPR-specific details are basic. Overall, the website is well-structured, mobile-optimized, and trustworthy, with no signs of malicious activity or content blocking.

E

Endevel s. r. o.

endevel.cz

55

Endevel s. r. o. is a Czech-based small technology company specializing in custom development of web applications, websites, and e-shops. Founded in 2018, the company emphasizes modern technology and agile management processes to deliver quality software products efficiently. Their market position is that of a niche provider focusing on tailored software solutions for businesses requiring robust and user-friendly online systems. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the website employs a modern technology stack including Django, Python, Vue.js, and Angular frameworks, hosted on DigitalOcean infrastructure. It integrates Google services such as reCAPTCHA for bot protection, Google Tag Manager for analytics, and Google Maps API for location display. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with strong SSL configuration and implements Google reCAPTCHA on its contact form to prevent spam. Cookie consent is managed with granular user controls and Google Consent Mode is configured to restrict ad personalization and analytics by default, indicating a privacy-aware approach. However, the absence of explicit security headers and published security or privacy policies suggests room for enhancement in security posture and compliance transparency. Overall, the website is safe, professional, and trustworthy with no signs of malicious content or blocking mechanisms. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include publishing privacy and security policies, adding security headers, and considering a vulnerability disclosure mechanism to further strengthen trust and compliance.

P

Perfect Planet

plnt.cz

61

Perfect Planet is a Czech-based creative agency specializing in brand design, visual identity development, and web application development. Established in 2015, the company has a solid market position with notable projects including university branding and a presidential campaign. The website reflects a professional and modern digital presence built on Vue.js and Nuxt.js frameworks, hosted with Cloudflare DNS services. The site is well-designed, mobile-optimized, and provides clear navigation and content relevant to its target audience of clients seeking branding and web development services. However, the site lacks explicit privacy, cookie, and terms of service policies, which impacts its compliance posture. Security-wise, the site uses HTTPS and Cloudflare DNS but does not present security headers or incident response information, indicating room for improvement in security best practices. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

Č

Česká komora architektů

diplom.ky

54

The website diplom.ky represents the official platform for the 26th edition of the 'Diplomky' competition, organized by the Czech Chamber of Architects (Česká komora architektů). It serves as a professional showcase and competition for diploma theses of architects, landscape architects, and urban planners from accredited Czech faculties. The site targets recent graduates, academic professionals, and the broader public interested in architectural education and development. The business model focuses on organizing and promoting this competition to foster professional growth and public awareness in the architectural sector. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, ensuring a responsive and user-friendly experience with moderate performance. Google Analytics is used for visitor tracking, although privacy compliance measures like cookie consent and privacy policies are missing. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal security policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and security compliance.

Č

Česká komora architektů

cka.cz

63

Česká komora architektů is a legally established self-governing professional organization in the Czech Republic that unites authorized architects, landscape architects, and urban planners. The website serves as a comprehensive portal offering information about membership, professional services, architectural competitions, education, and legislative matters relevant to the architectural profession. It targets professionals in architecture and related fields, as well as public administration and clients seeking architectural services. The organization holds a strong national position as the official chamber for architects in the Czech Republic. Technically, the website is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, providing a responsive and accessible user experience. The site is well-structured with good SEO practices and mobile optimization. Performance is moderate with no significant technical debt observed. However, there is no detected CMS or hosting provider information. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks several recommended security headers and explicit privacy and cookie policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trustworthiness, and no incident response or vulnerability disclosure information is published, which are areas for improvement. Overall, the website is professional, trustworthy, and content-rich, but would benefit from enhanced transparency in domain registration, improved privacy compliance, and stronger security header implementation to elevate its security posture and user trust.

B

Boutiq Development s.r.o.

lario.cz

42

LARIO is a real estate development project by Boutiq Development s.r.o., focused on creating a new residential and commercial center in Dolní Měcholupy, Prague. The project includes apartments, row houses, and commercial spaces aimed at revitalizing the local community with essential services such as grocery stores, bakery, butcher, pharmacy, and municipal offices. The website presents a professional and well-structured digital presence, leveraging modern web technologies including Vue.js and Nuxt.js, with responsive design and clear navigation. Security posture is adequate with HTTPS usage and GDPR consent mechanisms in forms, though improvements are recommended in security headers and cookie consent implementation. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website reflects a credible and professional real estate business with room for enhanced privacy and security compliance.

B

Boutiq Group s.r.o

boutiq.group

46

Boutiq Group s.r.o is a Czech real estate company specializing in residential property development, investment, sales, and construction primarily in Prague and the Czech Republic. The company is relatively new, founded in 2022, and operates with a clear focus on niche residential real estate projects. Their website reflects a professional and modern digital presence using Vue.js and integrates Google Tag Manager for analytics. Hosting is provided by a Czech hosting provider, aligning with their local business focus. Security posture is adequate with HTTPS and cookie consent mechanisms implemented, though some security headers and policies are missing. No blocking or WAF interference was detected, allowing full content access. Overall, the site is trustworthy and compliant with GDPR, though contact details and terms of service are not explicitly provided.

M

M&M Reality

mmreality.cz

57

M&M Reality is a leading real estate agency in the Czech Republic, offering a comprehensive range of services including property sales, rentals, financing, insurance, and property development. With over 20 years of experience and a large network of branches, it holds a strong market position and is recognized as the most trusted real estate agency in the country. The website is professionally designed, mobile-optimized, and rich in content, providing a seamless user experience for its target audience of property buyers, sellers, and investors. Technically, the site leverages modern JavaScript frameworks like Vue.js and integrates Google Tag Manager and CookieHub for analytics and privacy compliance. Security posture is moderate with cookie consent implemented but lacks visible security headers in the provided data. The absence of WHOIS data limits domain trust analysis but the overall business credibility and online presence support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving domain registration transparency.

NAVER Cloud Corporation operates the NAVER CLOUD PLATFORM, a leading cloud computing service provider in South Korea offering IaaS, PaaS, and SaaS solutions with global reach and strong security certifications. The website is professionally designed, mobile-optimized, and provides comprehensive information targeting corporate clients and enterprises. The technical infrastructure leverages modern web technologies including Vue.js and Google Tag Manager, ensuring fast performance and good SEO. Security posture is robust with HTTPS enforcement, multiple security headers, and recognized certifications such as ISO 27001 and CSA STAR. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact and incident response channels. WHOIS data is not publicly available, likely due to privacy protection, but the domain and website content align with a legitimate enterprise cloud service. Overall, the site demonstrates high professionalism, security maturity, and business credibility.

Č

ČESKÝ INTERNET s.r.o.

ceskereality.cz

54

ČESKÉREALITY.cz is a prominent Czech real estate portal operated by ČESKÝ INTERNET s.r.o., aggregating over 65,000 property listings from more than 1,000 real estate agencies. The platform offers comprehensive services including property sales, rentals, auctions, developer projects, and detailed profiles of real estate agents. It targets property buyers, sellers, renters, and real estate professionals within the Czech Republic, positioning itself as a leading marketplace in the local real estate sector. The website features a modern, responsive design with good navigation and content relevance, supported by a robust technical stack including Vue.js and Symfony frameworks.

O

Ownest

ownest.cz

57

Ownest is a Czech-based innovative startup offering a rent-to-own housing solution that enables customers to live in a purchased apartment while saving for a mortgage. Supported by major partners such as ČSOB and Bezrealitky, Ownest positions itself as a bridge for individuals who lack immediate mortgage financing. The website is professionally designed, mobile-optimized, and rich in content including testimonials and press mentions, enhancing trust and credibility. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, with integrated analytics and user behavior tracking via Google Tag Manager and Smartlook. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. WHOIS data is unavailable, which reduces transparency but does not negate the legitimacy indicated by business partnerships and content quality. Overall, the website presents a trustworthy and professional digital presence with room for security improvements.

VELUXshop.at is the official Austrian e-commerce platform for VELUX, a well-established brand specializing in roof window blinds, shutters, insect screens, and related accessories. The website offers a comprehensive product catalog with detailed descriptions, pricing, and warranty information, targeting homeowners and installers in Austria. The platform demonstrates a mature digital infrastructure built on modern technologies such as Nuxt.js and Vue.js, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and compliant with GDPR, providing clear contact information and customer support channels.

V

VELUX Österreich GmbH

velux.at

56

VELUX Österreich GmbH operates as a key distributor and manufacturer within the international VELUX Group, specializing in roof windows and related daylight and sun protection products. The company holds a strong market position as the world's largest roof window manufacturer, serving both end consumers and professional customers in Austria. Their website reflects a mature digital presence with comprehensive product information, project support tools, and customer service options. Technically, the site leverages modern frameworks such as Vue.js, integrates advanced search via Algolia, and employs Bloomreach CMS, indicating a robust and scalable infrastructure. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

D

Dornbracht

dornbracht.com

66

Dornbracht is a premium manufacturer specializing in luxury showers, faucets, and sinks for bathrooms and kitchens. The company targets both consumers and professionals seeking high-end design and wellness products. Their market position is strong within the luxury segment, supported by a well-designed, content-rich website that showcases their product range and brand identity effectively. Technically, the website leverages modern frameworks such as Nuxt.js and Vue.js, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. Overall, Dornbracht presents a trustworthy and professional digital presence with minor gaps in security transparency.

K

Kammer der ZiviltechnikerInnen Arch+Ing | Tirol und Vorarlberg

kammerwest.at

58

The website www.kammerwest.at represents the Kammer der ZiviltechnikerInnen Arch+Ing for the regions of Tirol and Vorarlberg in Austria. It serves as a professional chamber and service organization for architects and civil engineers, providing member services, continuing education, contract information, job postings, and event announcements. The site targets professionals in civil engineering and architecture as well as clients and stakeholders in the region. Technically, the site is built on a modern Nuxt.js and Vue.js framework, featuring responsive design and moderate performance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

B

Bundeskammer der Ziviltechniker:innen

zt.at

58

The website https://zt.at represents the Bundeskammer der Ziviltechniker:innen, the official Austrian chamber for civil engineers and architects. It serves as a professional platform providing information, member services, and resources for Ziviltechniker:innen across Austria. The site is well-structured, modern, and targets professionals and public entities involved in engineering and architecture. The presence of regional subdomains and comprehensive content indicates a mature and established organization with a long history dating back to 1860. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, employs privacy-conscious analytics via Matomo, and is optimized for mobile and accessibility. Security posture is strong with HTTPS and security headers, though it lacks explicit cookie consent and published security policies. Overall, the site is trustworthy, professional, and compliant with GDPR, serving its audience effectively.

H

HarperCollins

harpercollins.com

71

HarperCollins is a globally recognized book publisher with a rich history dating back to 1817. The company operates a professional e-commerce website built on the Shopify platform, offering a wide range of books and author-related content. The site targets a general audience including readers, educators, and book clubs, positioning itself as a world-leading publisher with a strong market presence. The website features comprehensive content, clear navigation, and consistent branding, reflecting a mature digital presence. Technically, the website leverages modern web technologies including Vue.js, jQuery, Algolia for search, and integrates multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Visual Website Optimizer. Hosting and content delivery are managed via Shopify's CDN, ensuring fast performance and mobile optimization. Accessibility and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and employs secure authentication via Auth0. While explicit security policies and incident response contacts are not published, the site uses CAPTCHA protections and avoids exposing sensitive data. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR and related regulations. However, the absence of WHOIS data transparency for the domain is a concern, potentially due to privacy protection services. Overall, HarperCollins.com demonstrates a strong business and technical foundation with good security hygiene. The main risk lies in the lack of domain registration transparency and absence of published security policies. Strategic recommendations include enhancing security disclosures, publishing incident response contacts, and improving WHOIS transparency to bolster trust and compliance.

H

Holba

holba.cz

50

Holba.cz is the official website of Holba, a Czech brewery with a long-standing history dating back to 1997. The company produces beer and offers brewery tours, museum visits, and an online shop for their products. The website is professionally designed using modern web technologies such as Vue.js and Nuxt.js, supporting multiple languages to cater to a broad audience. The site integrates several third-party marketing and tracking tools including Google Tag Manager and Facebook Pixel, indicating a moderate level of digital marketing maturity. Security posture is adequate with HTTPS enforced, but lacks visible security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the domain registration data supports the legitimacy and trustworthiness of the business.

D

Datlab institut z.s.

politickefinance.cz

51

PolitickeFinance.cz is a Czech Republic-based non-profit transparency platform operated by Datlab institut z.s. The website monitors and publishes data on political party financing, donations, and sponsors, providing financial health indices for political parties. It serves the Czech public interested in political finance transparency and is supported by recognized civic organizations. The platform uses modern web technologies including Vue.js and Bootstrap, hosted by Wedos, and integrates Google Tag Manager for analytics. While the website is well-structured, mobile-optimized, and professionally designed, it lacks published privacy and cookie policies, and security headers are not detected, indicating room for improvement in compliance and security posture. The WHOIS data confirms the domain's legitimacy and consistent registration with the operator organization. Overall, the site is trustworthy, safe, and serves a clear public interest mission.

C

CADdetails

caddetails.com

64

CADdetails is a professional platform offering free access to thousands of CAD drawings, BIM Revit models, 3D SketchUp files, and technical specifications primarily targeting architects, engineers, and design professionals in North America. The website positions itself as a key resource for building product information and design resources, supporting the construction and design industry with high-quality content. Technically, the site employs modern web technologies including Vue.js, jQuery, and integrates multiple analytics and marketing tools such as Google Analytics, HubSpot, and Microsoft Application Insights, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses secure analytics scripts but lacks some advanced security headers and explicit privacy policies, which could be improved. The absence of WHOIS registration data reduces domain trustworthiness, but the professional presentation and extensive content suggest a legitimate business. Overall, CADdetails presents a robust online presence with room for enhanced privacy and security compliance.

D

Datlab s.r.o.

tenderman.cz

54

Datlab s.r.o. operates the Tenderman platform, a Czech Republic-focused SaaS tool designed to assist public sector entities and contracting authorities in managing suppliers and tender documentation. The company leverages its expertise in economic data and public procurement to provide a specialized service with a clear market niche and reputable client base including government institutions. The website is professionally designed, mobile-optimized, and uses modern web technologies including Vue.js and Bootstrap, supported by multiple analytics and marketing tools. Security posture is solid with HTTPS and CSRF protections, though lacks published security policies and headers. Privacy compliance is partial, with no explicit privacy or cookie policies found despite cookie consent mechanisms. Overall, the domain registration and business information are consistent and legitimate, supporting a trustworthy online presence.

E

Exekutorská komora České republiky

ceecr.cz

64

The website www.ceecr.cz serves as the official Central Evidence of Executions for the Czech Republic, operated by the Exekutorská komora České republiky. It provides a public registry of legally enforceable execution proceedings, offering both basic and detailed reports for a fee. The platform targets Czech citizens and legal entities seeking authoritative information on execution cases. The business model is a government-affiliated public service with monetized access to detailed data. Technically, the site employs modern frontend technologies such as Vue.js and Vuetify, ensuring a responsive and user-friendly experience. Google Analytics is used for visitor tracking, and HTTPS with CSRF protection is implemented, indicating a reasonable security posture. However, some security headers are missing, and no explicit cookie consent mechanism was detected, which could be improved for better privacy compliance. The absence of WHOIS data limits domain registration transparency, but the official nature and content quality support legitimacy. Overall, the site is professionally designed, trustworthy, and functional, serving an essential government function.

B

Baumit.com

baumitlife.com

60

Baumit.com is an international building materials company specializing in facade renders, paints, insulation, and innovative construction technologies such as 3D concrete printing. The company emphasizes sustainability and healthy living environments, targeting private customers and construction professionals across Europe and beyond. The website demonstrates a mature digital presence with modern technologies like Vue.js and integrates analytics and tracking tools for user behavior insights. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The WHOIS data for the subdomain is not available, which is typical, and the main domain is well-established, supporting the site's legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

Teemill is a UK-based company specializing in sustainable print on demand services, offering a platform for startups, creators, and businesses to build e-commerce websites, place custom orders, and integrate via API. The company emphasizes sustainability and circular economy principles, positioning itself as an award-winning and trusted provider in the e-commerce print on demand market. Technically, the website uses modern frameworks such as Vue.js, is hosted on AWS infrastructure, and employs Google reCAPTCHA for form security. However, it lacks visible privacy and cookie policies, and no security headers were detected, indicating room for improvement in privacy compliance and security posture. The domain registration is consistent with the business claims, with a domain age appropriate for the company's maturity. Overall, the website is professional, well-designed, and trustworthy, but should enhance privacy and security disclosures to improve compliance and user trust.

S

Suomalainen Energiaosuuskunta (SEO)

seo.fi

66

SEO.fi represents Suomalainen Energiaosuuskunta (SEO), a Finnish fuel station network owned by independent fuel retailers. The company operates over 240 stations across Finland, emphasizing local entrepreneurship, renewable values, and customer service. Their business model focuses on providing fuel and related services through a network of independent operators, supported by digital tools such as the SEONappi mobile app. The website reflects a mature digital presence with modern technologies like Nuxt.js and Storyblok CMS, delivering a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly detailed. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

L

Les Journées Dermatologiques de Paris 2024

lesjdp.fr

62

The website www.lesjdp.fr serves as the official platform for Les Journées Dermatologiques de Paris 2024, a dermatology conference held in Paris, France. It provides event-related information, schedules, and interactive features targeting dermatology professionals and attendees. The site is built using modern frontend technologies such as Vue.js and Google Fonts, offering a good user experience with responsive design and clear navigation. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR requirements. Security posture is moderate with no detected security headers or incident response information. Overall, the site appears professional and safe for general audiences but would benefit from enhanced security and privacy compliance measures.

C

Cruelty Free International

crueltyfreeinternationalstore.com

66

Cruelty Free International Store operates as an e-commerce platform selling organic cotton clothing and accessories that promote the end of animal testing. The business is positioned as a niche ethical brand targeting consumers interested in cruelty-free and sustainable fashion. The website is built on modern technologies including Vue.js and the Teemill platform, providing a good user experience with responsive design and clear navigation. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices to enhance its risk profile.

H

Hollywoodbets

hollywoodbets.com

66

Hollywoodbets is a well-established online sports betting platform founded in 2016, offering a broad range of sports betting markets with a focus on football and horse racing. The platform targets sports bettors primarily in the UK and related markets, providing promotions and loyalty rewards to enhance user engagement. Technically, the website leverages modern web technologies including Vue.js, Google Tag Manager, and Cookiebot for consent management, supported by CDN hosting for performance. The site demonstrates good mobile optimization and basic accessibility features. Security-wise, the platform enforces HTTPS, employs standard security headers, and integrates responsible gambling links, though it lacks explicit security policy and incident response pages. Overall, the site is professional, trustworthy, and compliant with GDPR through cookie consent mechanisms, but could improve transparency by publishing terms of service and security policies.

V

Vello

vello.fi

67

Vello is a Finnish online platform specializing in booking health and wellbeing services, including massage therapy, physiotherapy, psychotherapy, and complementary treatments. Established in 2015, it serves both consumers seeking professional care and health professionals needing management tools. The platform offers comprehensive booking, patient data processing, and payment features, positioning itself as a key player in the Finnish health service marketplace. Technically, Vello employs modern web technologies such as Vue.js, Nuxt.js, and Tailwind CSS, hosted on AWS infrastructure, ensuring a responsive and performant user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though explicit security headers and incident response contacts are not publicly detailed. Overall, Vello demonstrates a mature digital presence with good privacy compliance and a trustworthy business model.

Q

Quattro Creative Studio

wearequattro.com

52

Quattro Creative Studio is a small creative agency specializing in ethical and sustainable design solutions, offering services ranging from brand strategy to print and digital design. The company targets businesses seeking to expand their brands with a focus on sustainability and ethical passion. The website reflects a modern and professional design, built using contemporary technologies such as Nuxt.js and Tailwind CSS, hosted by OVH sas. The technical infrastructure is moderately optimized for performance and mobile responsiveness, with basic accessibility features. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website is trustworthy and professional but could improve transparency and security practices.

E

eSputnik

esputnik.com

73

eSputnik is a well-established Ukrainian SaaS company specializing in omnichannel Customer Data Platform (CDP) and marketing automation solutions. The company targets enterprise and small to large businesses seeking advanced marketing tools to unify customer data and automate communications across multiple channels including email, SMS, Viber, push notifications, and more. Their market position is supported by a decade-long presence and a client base of thousands daily. Technically, the website leverages modern JavaScript frameworks such as Vue.js and Vuetify, integrates multiple analytics and tracking tools, and is hosted on AWS infrastructure, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and domain transfer protections, but lacks DNSSEC and visible security headers. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich, but could improve in privacy transparency and security best practices.

A

Aminess d.d.

aminess.com

73

Aminess d.d. operates a professional hospitality website offering hotels, resorts, campsites, and holiday homes primarily located along the Croatian Adriatic coast. The company targets tourists seeking quality accommodation and leisure experiences, supported by a loyalty program and themed holiday types. The website is built on modern JavaScript frameworks (Nuxt.js and Vue.js) and integrates analytics and advertising tools such as Google Tag Manager and Bing Ads. It demonstrates good digital maturity with responsive design, SEO optimization, and accessibility features. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the absence of a published security policy and incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The lack of WHOIS data for the domain is a concern but does not detract significantly from the overall legitimacy given the professional presentation and contact transparency. Strategic recommendations include publishing security and incident response policies and considering a vulnerability disclosure program to enhance trust.

M

monobank

monobank.ua

61

Monobank.ua is a leading Ukrainian mobile-only bank offering a comprehensive suite of banking services through a modern smartphone application. The website presents a professional and well-structured digital banking platform targeting private individuals and businesses in Ukraine. Key services include various card offerings, credit products, deposits, payments, and additional financial products. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js and integrates multiple analytics and tracking tools for marketing and user behavior insights. Security posture is strong with HTTPS enforced and use of nonce for scripts, though explicit security headers and formal policies are not evident in the provided content. Privacy compliance is limited due to the absence of visible privacy and cookie policies. Overall, the website demonstrates high professionalism and trustworthiness but would benefit from enhanced transparency in privacy and security documentation.

I

Ilmatieteen laitos

weatherproof.fi

64

Ilmatieteen laitos is the Finnish Meteorological Institute, a government agency providing authoritative weather forecasts, meteorological data, and related services primarily for Finland. The website serves a broad audience including the general public, meteorological professionals, and government agencies. It offers comprehensive weather information, mobile applications, warnings, and meteorological news, positioning itself as the national leader in meteorological services. The digital infrastructure is modern, leveraging Nuxt.js and Vue.js frameworks, with mobile-optimized responsive design and integration with official app stores. Security posture is strong with HTTPS, security headers, and privacy-compliant cookie consent mechanisms, although explicit security and incident response policies are not publicly detailed. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's authoritative status.

I

Ilmatieteen laitos

climateguide.fi

53

Climateguide.fi is a Finnish government-backed platform providing comprehensive climate change information, including research, adaptation strategies, and sector-specific data. It is maintained by the Finnish Meteorological Institute and collaborates with multiple Finnish research and governmental organizations, positioning itself as an authoritative source in the climate information domain. The website leverages modern web technologies such as Nuxt.js and Vue.js, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and privacy-conscious analytics (Matomo), though there is room for improvement in security headers and explicit incident response disclosures. Overall, the site is trustworthy, professional, and well-aligned with its stated mission.

I

Ilmatieteen laitos

klimatguiden.fi

54

Klimatguiden.fi is a Finnish government-supported climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides comprehensive climate change data, infographics, and sector-specific information primarily targeting Finnish and Swedish speaking audiences. The website collaborates with multiple Finnish governmental and academic institutions, reinforcing its authoritative position in the national climate information ecosystem. The business model is informational and educational, funded by government resources, serving public, researchers, and policymakers. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and no exposed sensitive data, though cookie consent mechanisms and explicit security policies could be improved. Overall, the site is trustworthy, professional, and well-aligned with its stated mission.

S

Simple Bytes

simplebytes.at

51

Simple Bytes is a small Austrian technology company specializing in modern, customized web design and app development for web, iOS, and macOS platforms. The company offers a range of services including web design, CMS integration, webshop solutions, domain registration, hosting, email and productivity service setup, app development, and ongoing support. Their market position is that of a specialized local service provider with a professional and client-focused approach, supported by client testimonials and references. Technically, the website employs a modern technology stack including Craft CMS, React, Vue.js, SvelteKit, and backend technologies like PHP Yii2 and Elixir Phoenix, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and SSL certificates in use, but lacks some advanced security headers and explicit privacy and cookie policies, which are compliance gaps. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the website content and references support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

I

Ilmatieteen laitos

ilmasto-opas.fi

54

Ilmasto-opas.fi is a Finnish government-backed climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides authoritative, comprehensive climate change data, educational resources, and policy tracking tools aimed at the general public, policymakers, and researchers. The website is well-established with a domain age of over 14 years, reflecting its stable presence in the Finnish climate information ecosystem. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information could be enhanced. Privacy compliance is good with clear privacy and cookie policies, though consent mechanisms could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and alignment with government standards.

R

RONAL GROUP

ronal-wheels.com

59

RONAL GROUP operates an international website focused on manufacturing and supplying high-quality automotive wheels. The company offers a variety of wheel products including forged and winter wheels, targeting automotive dealers and vehicle owners globally. The website is professionally designed using Drupal 10 CMS, incorporating modern web technologies such as Vue.js and jQuery, and includes multimedia content and configurator tools to enhance user engagement. Privacy and cookie compliance are well implemented with a comprehensive privacy policy and an interactive cookie consent mechanism. However, the absence of WHOIS registration data for the domain www.ronal-wheels.com raises concerns about domain legitimacy, despite the professional appearance and active social media presence. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, but the lack of explicit security policies and incident response contacts suggests room for improvement. Overall, the website presents a credible business front but should address domain registration transparency to enhance trust.

M

Město Kostelec nad Orlicí

kostelecno.cz

59

The website www.kostelecno.cz serves as the official digital presence for the town of Kostelec nad Orlicí in the Czech Republic. It provides residents and visitors with comprehensive municipal information, including news, events, administrative contacts, public services, and official documents. The site is well-structured, professionally designed, and targets local citizens and stakeholders. The business model is that of a government entity providing public services and information. The website leverages modern web technologies including Vue.js, Mustache.js, and Google reCAPTCHA to enhance user experience and security. It is built on the Vismo CMS platform, which is specialized for municipal websites. Security posture is strong with HTTPS enforced and anti-bot measures in place, though some security headers could be improved. Privacy compliance is addressed with visible cookie and privacy policies, and GDPR considerations are evident. Overall, the site is trustworthy, professional, and serves its purpose effectively.

H

Heraeus Medevio

heraeus-medevio.com

64

Heraeus Medevio is a specialized contract design, development, and manufacturing company serving the medical device industry, particularly in areas such as cardiac rhythm management, neuromodulation, electrophysiology, and vascular access. The company leverages extensive expertise in materials science and advanced manufacturing technologies to support OEMs in bringing high-quality medical devices to market. The website reflects a mature digital presence with comprehensive content, clear navigation, and a professional design consistent with its healthcare industry focus. Technically, the site employs modern frameworks such as Vue.js and Nuxt.js, managed via Magnolia CMS, and integrates industry-standard analytics and consent management tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policy and incident response information are absent. WHOIS data is not publicly available, likely due to privacy protection, but the site’s linkage to the Heraeus Group parent company and professional presentation support its legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and authoritative resource in its sector.

A

ANASOFT APR, spol. s.r.o.

poschodoch.sk

59

ANASOFT APR, spol. s.r.o. operates the Poschodoch portal, a specialized platform providing tenants and owners of residential and non-residential properties in Slovakia with access to detailed financial and technical data about their apartments and buildings. The portal integrates with the DOMUS information system and requires property managers to provide registration codes for access. The company holds multiple ISO certifications, underscoring its commitment to quality and security. The website targets a niche market of property management and tenant services, offering features such as consumption graphs, repair fund details, event notices, and document access.

B

BAUMIT, spol. s r.o.

baumit.cz

55

Baumit, spol. s r.o. is a well-established Czech company specializing in manufacturing and distributing building materials, including facade plasters, paints, insulation systems, and renovation products. The company targets construction professionals and end consumers seeking quality building solutions. The website reflects a mature digital presence with modern technologies such as Vue.js, Google Tag Manager, and advanced tracking tools, supporting a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The domain's WHOIS data confirms legitimacy and long-term operation since 1998. Overall, Baumit presents a trustworthy and professional online presence aligned with its business objectives.

M

Mogo Latvia SIA

mogo.lv

67

Mogo Latvia SIA operates as a financial services provider specializing in auto loans and leasing solutions for both individuals and legal entities within Latvia. The company is part of the larger Mogo Finance Group and has established a solid market presence since its founding in 2013. Their website clearly targets Latvian customers seeking vehicle financing, offering a range of loan and leasing products. The business model focuses on accessible auto financing, leveraging digital channels for customer engagement. Technically, the website employs modern web technologies including Vue.js and Tailwind CSS, with integration of Google Analytics and Google Tag Manager for performance and marketing insights. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Hosting details are not explicitly disclosed, but the site uses HTTPS with strong security headers, indicating a secure infrastructure. From a security perspective, the website enforces HTTPS, uses reCAPTCHA on forms to prevent abuse, and implements several security headers to mitigate common web vulnerabilities. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure program or security.txt file was found. The overall security posture is good but could be enhanced by publishing formal security policies and disclosure mechanisms. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring clear privacy and cookie policies with consent mechanisms. The domain registration data aligns well with the business claims, supporting legitimacy. Recommendations include enhancing accessibility, publishing security policies, and establishing a vulnerability disclosure process to further strengthen trust and security maturity.

R

R-GOL Sp. z o. o. (dawniej R-GOL Marcin Radziwon Sp. Komandytowa)

r-gol.com

67

R-GOL.com is a leading Polish e-commerce retailer specializing in football shoes, equipment, and accessories. The company positions itself as the largest football store in Poland, offering a wide range of products including official fan merchandise for the Polish national team. The website is professionally designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. The business model focuses on online retail with additional services such as loyalty programs and gift cards. Technically, the site leverages modern JavaScript frameworks like Vue.js and integrates marketing and analytics tools such as Google Tag Manager and Salesmanago. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be explicitly verified. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR considerations. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, which slightly impacts the overall trust score. Contact information is limited to an email address, with no phone number or physical address explicitly provided on the site. Overall, R-GOL.com presents a trustworthy and professional online retail presence in the sports retail sector.

R

Rossmann

bobovitawrossmann.pl

57

The website bobovitawrossmann.pl serves as a promotional platform for a lottery campaign involving Bobovita baby food products at Rossmann retail stores in Poland. It targets consumers, particularly parents or guardians, interested in baby nutrition products. The site is professionally designed with consistent branding and provides clear information about the promotion, although direct contact details and terms of service are not explicitly provided. The technical infrastructure leverages modern web technologies including Vue.js, Google Tag Manager, and reCAPTCHA, indicating a mature digital presence. Security measures such as HTTPS and cookie consent mechanisms are properly implemented, supporting GDPR compliance. However, additional security headers and explicit security policies could enhance the security posture further. Overall, the site is trustworthy, safe, and well-optimized for its intended audience and purpose.

G

Ganttic

ganttic.com

71

Ganttic is a mature SaaS company specializing in resource planning software designed to optimize project portfolios and resource management across multiple industries. The company positions itself as a reliable and efficient solution provider with over 15 years of experience and a broad user base exceeding 100,000 users globally. Their platform offers features such as resource scheduling, capacity planning, and online Gantt charts, targeting managers and organizations seeking to improve operational efficiency. Technically, the website is built on WordPress with modern frontend technologies including Vue.js and GSAP, supported by analytics and marketing tools like Google Analytics, Google Tag Manager, and VWO. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a high level of digital maturity. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security headers and does not provide public vulnerability disclosure or incident response contacts, which are areas for improvement. The absence of WHOIS registration data raises some concerns about domain legitimacy, although the professional presentation and comprehensive policies mitigate this risk. Overall, Ganttic presents a trustworthy and professional online presence with strong business credibility and technical implementation. Strategic enhancements in security transparency and domain registration clarity would further strengthen their security posture and trustworthiness.