Security Directory

P

Plasma Protein Therapeutics Association

pptaglobal.org

65

The Plasma Protein Therapeutics Association (PPTA) website serves as the digital presence for a global industry association representing manufacturers of plasma-derived and recombinant analog therapies. The site provides information about the association's role, advocacy, and industry representation. The content is professionally presented, targeting healthcare professionals, regulators, and industry stakeholders. The website is built on modern web technologies including Webflow CMS, Google Tag Manager, Cookiebot for consent management, and Google reCAPTCHA for form security. It integrates multiple third-party analytics and marketing tools, ensuring compliance with privacy regulations through explicit cookie consent mechanisms. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though additional security headers and published security policies could enhance protection. The absence of WHOIS data limits domain registration insights, but the website's professional content and technology use indicate legitimacy. Overall, the site is well-structured, secure, and compliant with privacy standards, suitable for its healthcare industry audience.

A

Adaptive Web Ltd

adaptive.co.uk

70

Adaptive Web Ltd is a specialized Drupal agency based in the Midlands, UK, focusing on Drupal website support, development, hosting, AI integration for Drupal, and performance and security optimization. The company positions itself as an experienced service provider catering to businesses seeking Drupal-related digital solutions. The website reflects a professional and modern technical infrastructure built on Drupal 10 with Commerce 2, enhanced by marketing and analytics tools such as HubSpot, Google Tag Manager, and Visual Website Optimizer. Cookie consent is managed via Cookiebot, indicating attention to privacy compliance. However, the absence of explicit privacy and terms of service policies on the homepage and the lack of visible contact information limit transparency. The WHOIS data is unavailable and shows an error indicating the domain cannot be registered due to naming rules, which is inconsistent with the website's live status and reduces trustworthiness. Security posture is moderate, with HTTPS implied but no explicit security headers detected. Overall, the website is functional and professional but would benefit from improved transparency and security practices.

C

CCA Group a.s.

cca.cz

49

CCA Group a.s. is a Czech-based software development company with over 30 years of experience specializing in custom software solutions, application development, customer support, and cybersecurity services. The company serves both public sector clients, including major government institutions, and commercial enterprises. Their website reflects a professional and mature digital presence with clear service offerings and client references. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with a cookie consent mechanism implemented, indicating awareness of privacy compliance requirements. However, the absence of a visible privacy policy and WHOIS data gaps reduce transparency. Security posture is moderate with some best practices observed but lacking explicit security headers and incident response information. Overall, the company appears credible and established, but improvements in transparency and security documentation are recommended.

D

Deerfield Group

deerfieldgroup.com

64

Deerfield Group is a well-established healthcare marketing and advertising agency founded in 2002, specializing in delivering comprehensive brand and marketing solutions to healthcare clients. The company positions itself as an extension of client teams, offering a unique Agency of Brand model that integrates marketing, communications, and technology services. Their market presence is supported by numerous industry awards and certifications, reflecting a strong reputation in the healthcare marketing sector. Technically, the website is built on modern frameworks such as React and Next.js, ensuring fast performance and excellent mobile optimization. The use of Google Tag Manager and Google Analytics indicates a mature approach to analytics and marketing measurement. Hosting appears to be managed via a reputable provider associated with the domain registrar. The site demonstrates good SEO and accessibility practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, supporting privacy compliance. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. The WHOIS data confirms a long-standing domain registration consistent with the company's history, enhancing trustworthiness. Overall, Deerfield Group's digital presence reflects a professional, secure, and privacy-conscious organization with room to enhance security transparency and formal policies to further strengthen its security posture.

B

BTL Industries

btlnet.com

59

BTL Industries is a well-established global manufacturer of medical equipment specializing in rehabilitation, cardiology, and aesthetic medicine. The company offers a broad portfolio of clinically proven devices and maintains a strong international presence with direct offices in over 90 countries. Their website reflects a professional and comprehensive digital presence, showcasing detailed product categories, educational resources, and event participation. The technical infrastructure leverages modern web technologies and integrates multiple analytics and marketing tools, ensuring good performance and user experience across devices. Security posture is generally strong with HTTPS enforcement and secure forms, though the absence of visible security headers and a published security policy indicates room for improvement. Privacy compliance is robust, featuring a comprehensive GDPR-aligned privacy and cookie policy with user consent mechanisms. However, the lack of WHOIS registration data for the domain introduces some uncertainty regarding domain legitimacy, which should be further investigated. Overall, BTL Industries presents a credible and professional online presence aligned with its business scope and market position.

B

BTL

btl-kariera.cz

57

BTL is a Czech-based company specializing in the development and manufacturing of advanced medical technologies, including devices for cardiology, physiotherapy, and aesthetic medicine. The company operates globally with over 80 branches worldwide and positions itself as a leader in physiotherapy device manufacturing. Their website focuses on career opportunities, showcasing innovation and a strong presence in the healthcare technology sector. Technically, the website uses modern web technologies such as Ruby on Rails, Google Tag Manager, and YouTube integrations, hosted on Wedos.net infrastructure. The site is well-optimized for SEO, mobile-friendly, and includes comprehensive privacy and cookie consent mechanisms, reflecting good digital maturity. Security posture is solid with HTTPS enforcement and CSRF protections, although explicit security headers are not confirmed. No critical vulnerabilities or blocking mechanisms were detected, and contact information is clearly provided. Overall, the website demonstrates a professional and trustworthy online presence aligned with the company's business goals.

L

Léčebné lázně Bohdaneč a.s.

llb-kariera.cz

10

Léčebné lázně Bohdaneč a.s. operates a professional career website focused on recruitment for their spa and healthcare services. The company specializes in rehabilitation and treatment of musculoskeletal conditions, with a long-standing history since 1897. The website targets job seekers interested in healthcare, hospitality, and administrative roles within the spa industry. Technically, the site is built on WordPress with Elementor, uses modern web technologies, and includes standard privacy and cookie compliance mechanisms. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some security headers and has an expired domain registration status which poses a risk. Overall, the website is professional, trustworthy, and compliant with GDPR, serving as a credible recruitment platform for the spa company.

S

Stichting MS Research

msresearch.nl

69

Stichting MS Research is a well-established Dutch non-profit organization dedicated to financing and stimulating scientific research into Multiple Sclerosis (MS). Founded in 1996, it holds recognized certifications such as ANBI and CBF, reinforcing its credibility and trustworthiness. The organization targets people affected by MS, healthcare professionals, donors, and the general public, providing information, funding research, and organizing events to raise awareness and support. The website reflects a professional and consistent brand image with excellent content quality and user experience.

The Multiple Sclerosis Society of India (MSSI) is a non-profit organization dedicated to supporting individuals affected by Multiple Sclerosis across India. The website serves as a comprehensive platform for awareness, advocacy, and community engagement, featuring multiple regional chapters, events, campaigns, and educational resources. The organization positions itself as a key player in the healthcare non-profit sector in India, with a focus on enhancing quality of life for MS patients. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and content management capabilities. The site is mobile-optimized and integrates social media channels effectively, although some accessibility features could be improved. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks some security headers and explicit privacy and cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy-protected, which is common for non-profits, but limits direct verification of registrant details. Overall, the website is trustworthy and professional, with strong community engagement and positive user feedback. However, it should enhance privacy compliance and security best practices to improve its risk posture and user confidence.

A

ABEM

abem.org.br

41

ABEM is a Brazilian non-profit association dedicated to supporting people affected by Multiple Sclerosis through emotional support, information, and awareness campaigns. The organization has a strong presence in Brazil with over 41 years of activity and serves more than 12,000 people directly. Their website reflects a professional and consistent brand image, targeting patients, families, and donors. Technically, the site is built on WordPress using the Astra theme and Ultimate Addons for Gutenberg, hosted by HostGator Brazil, and integrates Google Analytics and Tag Manager for tracking. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks published security policies and incident response contacts. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is trustworthy and well-positioned in its niche but could improve compliance and security transparency.

W

WEBHOUSE, s.r.o.

visitroznov.cz

46

The website visitroznov.cz serves as a comprehensive tourism portal for Rožnov pod Radhoštěm, a town in the Czech Republic. It provides visitors with information on accommodation, cultural events, sports activities, and local attractions, positioning itself as a key regional resource for tourists and locals alike. The site is operated by WEBHOUSE, s.r.o., a Czech company specializing in web design and content management systems. The business model focuses on promoting local tourism and hospitality services through curated content and event calendars. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations for Google Analytics, Google Tag Manager, and Google Translate for multilingual support. It uses the VISMO CMS platform, which is tailored for municipal and tourism websites. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the website's purpose and location, indicating legitimacy. Overall, visitroznov.cz is a trustworthy and professionally maintained tourism information portal with solid business credibility and adequate technical implementation. Strategic enhancements in security policies and transparency could further strengthen its compliance and user trust.

S

Sofokus

sofokus.com

65

Sofokus is a Finnish digital business design and software development agency specializing in creating modern business concepts for ambitious clients. The company positions itself as a partner in digital business development, targeting businesses seeking innovative digital transformation and software solutions. The website is professionally designed, leveraging WordPress CMS and modern web technologies such as jQuery, AOS, and Google Tag Manager, indicating a mature digital infrastructure. Analytics tools like Google Analytics and Hotjar are used for user behavior insights, complemented by a comprehensive cookie consent mechanism powered by Cookiebot, reflecting attention to privacy compliance. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and lack of published security policies suggest room for improvement. The WHOIS data is notably missing or inaccessible, which raises questions about domain registration legitimacy despite the professional web presence. Overall, the website is trustworthy and well-maintained but would benefit from enhanced transparency in privacy and security policies and verification of domain registration details.

N

Neuroliitto

avainlehti.fi

10

Avain-lehti is a Finnish neurological health magazine published by Neuroliitto, focusing on multiple sclerosis, rare neurological diseases, rehabilitation, and social security for patients. The website serves as a specialized information portal and membership benefit for Neuroliitto members, offering expert articles and research updates. The site is well-positioned in its niche, targeting patients, their families, and healthcare professionals in Finland. Technically, the site is built on WordPress with modern SEO and accessibility features, leveraging Google Analytics and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

N

Neuroliitto ry

kuntoutukseen.fi

55

Kuntoutukseen.fi is a Finnish non-profit website operated by Neuroliitto ry, focusing on providing rehabilitation services information. The website targets individuals seeking rehabilitation support in Finland, offering relevant courses and service details. The domain is well-established since 2017, with transparent WHOIS data matching the organization's identity and location. Technically, the site is built on WordPress with modern plugins and analytics tools, including Google Analytics, Google Tag Manager, and Cookiebot for cookie consent management. The site is hosted behind Cloudflare nameservers, ensuring reliable performance and security. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. No privacy policy page was explicitly found, which is a minor compliance gap. Overall, the site is professional, trustworthy, and safe for general audiences.

N

Neuroliitto ry

palvelutalo.fi

10

Palvelutalo.fi is a website operated by Neuroliitto ry, a Finnish non-profit organization focused on neurological support and assisted living services. The website serves as an information platform targeting individuals seeking assistance and support related to neurological conditions in Finland. The organization has a long-standing presence since 2003, reflected in the domain registration data and consistent business information. Technically, the site is built on WordPress with a modern plugin ecosystem including Cookiebot for cookie consent and Google Analytics for traffic analysis. The site is hosted behind Cloudflare DNS, ensuring reliable performance and security. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. Privacy compliance is supported by Cookiebot, but no explicit privacy policy or terms of service pages were detected in the provided HTML content. Overall, the website demonstrates a professional and trustworthy presence appropriate for a non-profit organization in the healthcare support sector.

F

France Sclérose en Plaques

france-sclerose-en-plaques.org

63

France Sclérose en Plaques is a well-established French non-profit foundation dedicated to supporting patients with multiple sclerosis, funding research, and raising public awareness. The organization operates a professional and content-rich website that effectively communicates its mission, services, and opportunities for public engagement such as donations and volunteering. The website demonstrates a mature digital presence with multiple social media channels and clear navigation tailored to its target audience of patients, caregivers, and healthcare professionals. Technically, the site employs modern JavaScript libraries, Google Analytics, and reCAPTCHA for security and user experience, with good mobile optimization and accessibility features. Security posture is strong with HTTPS and consent management, though some HTTP security headers could be improved. The absence of WHOIS data limits domain ownership verification but does not detract significantly from the site's legitimacy given the consistent branding and trust indicators. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource in the healthcare non-profit sector.

F

France Sclérose en Plaques

arsep.org

10

France Sclérose en Plaques is a well-established French non-profit foundation dedicated to supporting patients with multiple sclerosis, funding research, and raising public awareness. The website reflects a mature organization with a clear mission, strong branding, and comprehensive content aimed at patients, caregivers, researchers, and donors. The foundation leverages digital tools including donation platforms and social media to engage its audience effectively. Technically, the website employs modern JavaScript libraries, responsive design, and accessibility features, ensuring a good user experience across devices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be explicitly confirmed. The absence of detailed WHOIS data introduces some uncertainty, but the overall trust signals and certifications mitigate concerns. Strategic recommendations include enhancing security header implementation and publishing a vulnerability disclosure policy to further strengthen trust.

T

The Multiple Sclerosis International Federation

worldmsday.org

39

World MS Day is a globally recognized campaign coordinated by The Multiple Sclerosis International Federation, focusing on raising awareness, sharing stories, and advocating for people affected by multiple sclerosis. The website serves as a central hub for information, campaigns, and community engagement, targeting a broad audience including patients, healthcare professionals, and advocates worldwide. The organization holds a strong market position as a leading non-profit in MS awareness and advocacy. Technically, the website is built on WordPress with modern SEO and tracking tools, hosted behind Cloudflare for performance and security. The site demonstrates good digital maturity with mobile optimization, accessibility, and structured data implementation. Security posture is solid with HTTPS and domain locking, though improvements like DNSSEC and explicit security policies are recommended. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and effective in its mission.

I

Institut du monde arabe

imarabe.org

63

Institut du monde arabe is a well-established cultural and educational institution based in France, dedicated to promoting the knowledge and understanding of the Arab world through exhibitions, language courses, library services, and cultural events. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support focused on French. Technically, the site is built on Drupal 10, uses modern multimedia elements, and integrates cookie consent and analytics tools responsibly. Security posture is good with HTTPS and cookie consent mechanisms, though some HTTP security headers and incident response contacts are missing. The WHOIS data is unavailable due to malformed query output, which limits domain trust verification but the website content and external links strongly indicate legitimacy. Overall, the site is professional, trustworthy, and serves a broad audience including families, professionals, educators, and researchers.

F

FIDUCIAL

fiducial.fr

57

FIDUCIAL is a well-established French company providing a wide range of business services including accounting, legal advice, payroll management, auditing, IT solutions, and office equipment. The website targets business professionals and SMEs in France, offering comprehensive solutions to support business growth and operational efficiency. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, the site uses modern web technologies and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy policies are lacking. WHOIS data is not publicly available, likely due to privacy protection, but the website's professional appearance and domain usage suggest legitimacy. Overall, the site presents a trustworthy and credible business front with room for improvement in security and compliance documentation.

L

La Mutuelle Générale

lamutuellegenerale.fr

64

La Mutuelle Générale is a prominent French mutual insurance company specializing in health insurance, mutual coverage, and social protection services for individuals, professionals, and enterprises. It operates in partnership with CNP Assurances through a joint venture, positioning itself as a key player in the French social protection market. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its diverse audience segments. Technically, the site is built on Drupal CMS, employs modern JavaScript frameworks, and integrates Google Tag Manager and New Relic for analytics and performance monitoring. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly available. Privacy compliance is well addressed with visible cookie consent mechanisms and a comprehensive privacy policy. However, the absence of WHOIS data limits domain registration trust verification. Overall, the website demonstrates a high level of professionalism and trustworthiness, supporting the company's market position.

I

Interreg Caraïbes

interreg-caraibes.com

61

Interreg Caraïbes is a European Territorial Cooperation program focused on fostering regional cooperation projects among Caribbean territories including Guadeloupe, Guyane, Martinique, and Saint-Martin. The website serves as an information portal for approved projects, calls for tenders, news, and practical information related to the program. It targets operators and organizations involved in regional development and cooperation in the Caribbean region. The program is government-backed and funded by the European Union, positioning it as a key regional cooperation initiative.

C

Comité Tourisme des Iles de Guadeloupe

lesilesdeguadeloupe.com

63

The website www.lesilesdeguadeloupe.com serves as the official tourism portal for the Guadeloupe islands, operated by the Comité Tourisme des Iles de Guadeloupe. It provides comprehensive information on activities, beaches, accommodations, cultural events, and travel planning resources targeted at tourists and visitors. The site is multilingual, supporting French, English, and German, and is well-structured with rich media and SEO optimizations. Technically, it is built on WordPress with modern plugins and tracking tools, offering good mobile responsiveness and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published privacy or terms policies. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy for tourism purposes but would benefit from enhanced transparency and security documentation.

P

Prisjakt Sverige AB

prisjakt.nu

64

Prisjakt Sverige AB operates a leading price comparison and product review platform targeting consumers in Sweden. The website aggregates product prices, expert and user reviews, and price history to assist users in making informed purchasing decisions. The platform is well-established with a strong market position in the Swedish retail and e-commerce sector. Technically, the site employs modern web technologies including React and Next.js, supported by robust hosting and CDN services likely via Cloudflare. The site is optimized for performance, mobile responsiveness, and accessibility, providing an excellent user experience. Security measures such as HTTPS and security headers are properly implemented, though explicit privacy and cookie policies are not evident in the provided content. WHOIS data for the domain queried is missing, which limits full verification of domain legitimacy. Overall, the site presents a professional and trustworthy front with room for improvement in privacy transparency and contact information.

P

Prisjakt Sverige AB

pji.nu

64

Prisjakt Sverige AB operates a well-established price comparison and shopping advice platform primarily serving the Swedish market. The company provides consumers with tools to compare product prices, access expert guides, and discover deals and campaigns. The website demonstrates a mature digital presence with modern technologies such as React and Next.js, supported by robust analytics and advertising integrations. Privacy compliance is well addressed with clear policies and consent management mechanisms. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly available. Overall, Prisjakt presents a professional and trustworthy online service with a focus on consumer empowerment in e-commerce.

L

LivXp

livxp.com

59

LivXp operates as an AI-driven sports experience marketplace designed to connect fans with unique sports-related experiences. Founded in 2020, the company positions itself as a niche technology platform focused on enhancing fan engagement through automated and AI-based services. The website reflects a modern, well-structured digital presence with a clear focus on sports fans and organizations as its primary audience. The platform offers services such as experience provider listings and a marketplace for fan experiences, leveraging AI to automate and personalize offerings. Technically, LivXp employs a contemporary web stack including React and Next.js frameworks, supplemented by Google Tag Manager for analytics and UserWay for accessibility enhancements. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Hosting details are not explicitly disclosed but the infrastructure appears stable and performant with moderate loading speeds. From a security perspective, the website enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not detected, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data confirms a legitimate domain registration consistent with the company's founding timeline, enhancing trustworthiness. Overall, LivXp presents a credible and professional online presence with a solid foundation in technology and privacy compliance. Strategic improvements in security policy transparency and enhanced contact information could further strengthen its security posture and business credibility.

A

Appenzellerland Tourismus AI

appenzell.ch

51

Appenzellerland Tourismus AI operates the official tourism portal for the Appenzell region in Switzerland, providing comprehensive information on accommodations, gastronomy, events, cultural activities, and regional products. The website serves as a key resource for tourists and visitors, offering detailed event listings, booking options, and regional insights. The organization positions itself as the authoritative source for tourism in the Appenzell area, supported by consistent branding and professional content. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery, Slick Carousel, and Google Maps API. It integrates marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Sendinblue for newsletter management. The site is mobile-optimized with good SEO practices and moderate performance, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and implements Google reCAPTCHA on forms to mitigate spam and abuse. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. However, there is room for improvement by adding a security.txt file and publishing incident response contacts. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable platform for regional tourism promotion. Strategic recommendations include enhancing security headers, formalizing vulnerability disclosure, and improving accessibility features to further strengthen the site's security posture and user experience.

W

Wissenschaftsverbund Vierländerregion Bodensee EVTZmbH

wissenschaftsverbund.org

61

The Wissenschaftsverbund Vierländerregion Bodensee EVTZmbH is a collaborative consortium of 25 universities and higher education institutions across the Bodensee four-country region. It focuses on fostering research, teaching, university development, and knowledge transfer to address regional and cross-border challenges. The organization positions itself as the largest cross-university network in Europe for this region, targeting academics, researchers, students, and regional stakeholders. Their business model is non-profit, emphasizing cooperation and regional development through thematic programs and project support. Technically, the website is built on the Webflow CMS platform, utilizing modern JavaScript libraries such as jQuery, Fancybox, and Tippy.js for enhanced user experience. Hosting is likely provided by Webflow's CDN infrastructure, ensuring fast performance and excellent mobile optimization. The site implements GDPR-compliant cookie consent with an opt-in mechanism and uses Google Analytics for visitor insights. From a security perspective, the site enforces HTTPS and employs secure third-party libraries. However, it lacks explicit security headers and published security or incident response policies, which could be improved. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is incomplete, lacking registrar and registrant details, which slightly reduces trust but is not uncommon for privacy reasons. Overall, the website is professional, trustworthy, and well-structured, serving its educational and collaborative mission effectively. Strategic recommendations include enhancing security headers, publishing security policies, and improving WHOIS transparency to further strengthen trust and compliance.

F

Froda Embedded

frodaembedded.com

59

Froda Embedded is a Swedish fintech company specializing in embedded SME financing solutions. Their platform enables partners such as banks, fintechs, neobanks, payment providers, and e-commerce platforms to integrate white-label SME financing products directly into their own platforms. The company operates across multiple European markets, leveraging regulatory licenses and partnerships with entities like Visa and the European Investment Fund. Their key offerings include business loans, installment financing, and funding solutions tailored to SME needs. Technically, the website is built on modern web technologies including Webflow CMS, Google Tag Manager, and Cloudflare Turnstile for bot protection, delivering a fast, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS domain registration data is a notable concern, slightly impacting trustworthiness. Overall, Froda Embedded presents a professional, trustworthy, and technically mature digital presence aligned with its business objectives.

The website vzp.sk operates as a Slovak health-focused e-commerce platform and informational catalog, specializing in nutritional supplements, natural cosmetics, and health-related products. It targets the general Slovak population interested in health and wellness. The business has been established since 2007, supported by domain registration data, and maintains a consistent brand presence online. The site leverages WordPress CMS with WooCommerce for e-commerce capabilities, enhanced by Astra theme and Elementor page builder, indicating a modern and flexible technical infrastructure. Analytics and advertising are managed via Google Tag Manager, Google Analytics, and Google AdSense, reflecting standard digital marketing practices. Security posture is adequate with HTTPS enforced and some security best practices observed, though explicit security headers and formal security policies are absent. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service pages in the analyzed content. Overall, the site is professional, functional, and trustworthy but would benefit from enhanced privacy disclosures and security documentation.

P

Planeo Elektro

planeo.sk

10

Planeo.sk is a specialized electronics retailer operating primarily in Slovakia, offering a wide range of electronic products through its e-commerce platform. The website presents a professional and consistent brand image, targeting Slovak consumers interested in electronics with services such as discounts, premium delivery, gift vouchers, and installment purchases. The business appears well-established with a strong market position in the retail sector. Technically, the website employs modern analytics and marketing technologies including Google Tag Manager, Google Analytics, Cookiebot for consent management, and Luigis Box for user behavior tracking. The site is well-optimized for mobile devices and includes essential security headers and HTTPS enforcement, reflecting a mature digital infrastructure. Security posture is strong with no evident vulnerabilities or exposed sensitive data, though explicit security policies and incident response information are not publicly available. Privacy compliance is robust, leveraging Cookiebot for GDPR consent management, but the absence of visible contact information and terms of service pages suggests areas for improvement. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations, making it a reliable platform for consumers.

D

DISH Digital Solutions GmbH

metro.bar

10

DISH Digital Solutions GmbH operates a specialized SaaS platform focused on providing website building services tailored for hospitality businesses such as restaurants, cafes, bars, bakeries, and delivery services. The platform emphasizes ease of use, enabling customers to create websites without coding knowledge. The company positions itself as a niche digital solutions provider within the hospitality sector, supported by a multilingual website and integration with a broader digital club ecosystem at dish.co. Technically, the website employs modern web technologies including Bootstrap, Google Tag Manager, Adobe DTM, and Usercentrics for consent management, reflecting a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, though explicit security headers and incident response policies are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve transparency around security and contact information.

W

Home | Warcraft III Stats

wc3stats.com

47

The website wc3stats.com operates as a niche online platform dedicated to parsing and analyzing Warcraft III custom game replays. It provides users with detailed game and player statistics, including APM, ratings, and custom map metadata. The platform targets the Warcraft III gaming community, offering specialized analytics services that position it uniquely within the gaming statistics market. The business appears to be small and focused, founded in 2018, with no evident parent or subsidiary companies. Technically, the website employs modern web technologies such as Vue.js, Google Analytics, and Google Tag Manager, hosted on infrastructure associated with Amazon Registrar, Inc. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, and the site uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and no security headers were detected, indicating room for security enhancements. From a security perspective, the site benefits from domain status locks that prevent unauthorized transfers or deletions, contributing to domain stability. No privacy or cookie policies are present, and no contact or incident response information is provided, which limits compliance with GDPR and general privacy best practices. No forms or data collection mechanisms are visible on the homepage, reducing immediate data exposure risks. The absence of a vulnerability disclosure policy or security.txt file suggests limited formal security communication channels. Overall, the website is functional, professionally designed, and trustworthy within its niche but lacks comprehensive privacy and security documentation. Strategic improvements in privacy compliance, security headers, and user contact transparency would enhance its security posture and user trust.

M

Morekontor

morekontor.se

10

Morekontor is a Swedish e-commerce retailer specializing in office furniture and related services such as delivery, assembly, and office interior design. The company has been operating online since 2004 and targets business customers primarily in Sweden. The website presents a professional and comprehensive catalog of products with clear navigation and customer service information. Technically, the site is built on ASP.NET WebForms with modern JavaScript libraries and integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and InMobi advertising. Security posture is strong with HTTPS, security headers, and reCAPTCHA usage, although no explicit security or incident response policies are published. The absence of WHOIS data for the domain www.morekontor.se raises questions about domain registration legitimacy, but the website content and business information appear consistent and trustworthy. Overall, the site demonstrates good digital maturity and business credibility with room for improvement in transparency and domain registration verification.

R

RICOM secure s.r.o.

oxepower.si

42

Oxepower.si is an e-commerce website operated by RICOM secure s.r.o., specializing in the sale of electronic products such as hunting cameras, inspection cameras, power stations, GPS locators, and security systems. The company targets the Slovenian market and is part of a broader regional network with sister sites in multiple European countries. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, hosted by Websupport. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing. Privacy compliance is supported by visible cookie and privacy policies, and contact information is clearly provided. WHOIS data confirms the legitimacy of the domain and company, with consistent registration details and no privacy protection masking ownership. Overall, the site presents a trustworthy and professional online retail presence.

R

RICOM secure s.r.o.

oxe.hu

44

OXE.hu is an e-commerce platform specializing in electronic products such as hunting cameras, GPS locators, power stations, and security systems. The company operates primarily in Hungary and is part of the RICOM secure s.r.o. group, which has a regional presence across multiple Central and Eastern European countries. The website targets general consumers and business clients interested in specialized electronic and security products. The business model focuses on retail sales through an online shop with additional physical pickup points in Hungary. The company maintains a consistent brand presence and offers a wide range of products catering to hunting, security, and electronic needs. Technically, the website employs a modern front-end stack including jQuery, Bootstrap, Font Awesome, and Google Analytics for tracking. It uses HTTPS with an excellent SSL configuration and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, no CMS or hosting provider details were explicitly detected. From a security perspective, the site enforces HTTPS and uses cookie consent banners to manage user privacy preferences. There are no visible security headers or explicit security policies published on the site, and no incident response contacts were found. The site does not expose sensitive data and uses reputable third-party scripts. Overall, the security posture is good but could be improved by adding dedicated security documentation and enhancing HTTP security headers. Overall, OXE.hu presents a trustworthy and professional online retail presence with moderate technical maturity and good privacy compliance. Strategic improvements in security transparency and incident response readiness would further enhance its risk profile and customer trust.

D

Dualoo

dualoo.com

53

Dualoo is a Swiss-based company specializing in applicant management software tailored for small and medium-sized enterprises (KMUs). Their platform offers intuitive e-recruiting solutions that simplify the hiring process, focusing on features such as job posting creation, applicant tracking, analytics, and integrations. Positioned as a leading solution for training companies in Switzerland, Dualoo targets businesses seeking efficient and GDPR-compliant recruitment tools. The website is professionally designed, multilingual, and optimized for performance and mobile use, reflecting a mature digital presence. Technically, the website is built on WordPress using Elementor and WPML for multilingual support, enhanced by NitroPack for performance optimization. It integrates marketing and analytics tools such as Google Tag Manager, Salesforce CRM, and Intercom chat, indicating a well-rounded digital marketing and customer engagement strategy. The site employs HTTPS with strong SSL configuration, though explicit security headers could be improved. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent management, and no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact, which could enhance trust and preparedness. The absence of WHOIS data from the .com registry suggests privacy protection or alternative registration, but the professional site and compliance measures support legitimacy. Overall, Dualoo presents a secure, compliant, and user-friendly platform for applicant management, with strong business credibility and technical infrastructure. Strategic improvements in security transparency and explicit header implementation would further strengthen their posture.

J

Jaga Media

receptyprimanapadu.cz

58

Recepty prima nápadů is a Czech online media platform operated by Jaga Media, focusing on content related to home, garden, cooking, and lifestyle. The site offers articles, video tutorials, and advice targeting homeowners and hobbyists in the Czech Republic. It maintains an active presence on social media and provides clear contact information, indicating a professional media operation. Technically, the website is built on WordPress with common SEO and advertising plugins, including Yoast SEO, Google Analytics, and Advanced Ads. The site is mobile-optimized and uses HTTPS, with a GDPR-compliant cookie consent mechanism in place. Security posture is adequate but could be improved by adding security headers and publishing explicit security policies. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and business information appear legitimate and consistent with a medium-sized media company. Overall, the site is well-maintained, user-friendly, and compliant with privacy regulations.

A

ASB

asb-portal.cz

59

ASB-portal.cz is a specialized Czech online portal dedicated to architecture, construction, and real estate business sectors. It provides expert articles, industry news, event calendars, newsletters, and magazine publications targeting professionals and stakeholders in these fields. The website demonstrates a consistent and professional brand presence with good content quality and clear navigation. Technically, it is built on WordPress with modern plugins such as Yoast SEO and uses Google Tag Manager and InMobi for analytics and consent management. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy policy documentation. The absence of WHOIS domain registration data is a concern for domain legitimacy but does not detract significantly from the website's professional appearance and content. Overall, the site is a credible and valuable resource for its target audience.

V

Vectron Systems AG

vectron-systems.com

42

Vectron Systems AG operates as a provider of cash register hardware, software, and digital solutions primarily targeting sectors such as bakery, gastronomy, and hospitality. The company positions itself as a reliable partner offering comprehensive POS solutions with a focus on compliance and customer engagement. The website reflects a professional business presence with clear branding and relevant content tailored to its target audience. Technically, the site is built on TYPO3 CMS and integrates modern marketing and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, alongside a robust cookie consent mechanism via Cookiebot. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and explicit security policies suggests room for improvement. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and reduces overall trust. No direct contact information or privacy policy was found in the provided content, which impacts privacy compliance and business credibility scores. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

The Bayerischer Handwerkstag e. V. is a well-established non-profit umbrella organization representing the interests of the Bavarian handwork sector. The website serves as an information hub for members, press, and the general public, offering news, educational resources, and service information. It holds a strong regional market position as a key advocate for handwork in Bavaria. Technically, the site is built on the ODAV CMS platform, leveraging modern web technologies such as jQuery and Bootstrap, and integrates multiple analytics tools including Google Analytics and Matomo, with a clear focus on privacy compliance. Security posture is solid with HTTPS enforced and bot protection via Friendly Captcha, though some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with comprehensive cookie consent mechanisms and clear contact information. No critical vulnerabilities or suspicious content were detected.

G

Golfshop4you

golfshop4you.cz

54

Golfshop4you.cz is a specialized retail business focused on golf equipment and accessories, operating both an e-commerce platform and a physical store in Prague, Czech Republic. The company offers a wide range of products including golf clubs, bags, balls, clothing, shoes, and related accessories, complemented by services such as fitting and equipment servicing. Their market position is that of a niche, trusted golf retailer serving golf enthusiasts in the Czech market. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and outdated libraries updated. Privacy compliance is strong, with clear GDPR policies and cookie consent banners. Overall, the site is professional, trustworthy, and well-structured, though domain WHOIS data is unavailable, which slightly limits trust verification. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

I

Italieonline s.r.o

wlochyonline.pl

36

Italieonline s.r.o operates a professional online travel agency website focused on vacations in Italy, offering a wide range of accommodations including apartments, hotels, and camping sites. The company targets Polish-speaking travelers and has a strong presence in multiple European markets through related language sites. The business is well-established since 1997 and is a certified member of several travel associations, enhancing its market credibility. Technically, the website uses modern web technologies, responsive design, and integrates Google Analytics for tracking. Security posture is good with HTTPS enabled and cookie consent implemented, though security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

I

Italieonline s.r.o

italieonline.cz

11

Italieonline s.r.o is a well-established Czech travel agency specializing exclusively in holidays in Italy, offering a wide range of accommodations including apartments, hotels, and campsites. The company has been operating since 1997 and holds multiple certifications from national travel associations, reinforcing its market credibility. The website targets Czech and Slovak tourists and provides multilingual support through partner domains for other European markets. Technically, the website employs modern web standards, uses Google Analytics and Tag Manager for tracking, and is hosted on a Czech hosting provider. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Overall, the site is professional, user-friendly, and trustworthy, with no signs of malicious or adult content.

L

Logista d.o.o.

logista.hr

10

Logista d.o.o. is a medium-sized Croatian company specializing in distribution and telecommunications services, including tobacco product distribution, mobile technology, and B2B telecommunications support. The company has a strong market position in Croatia, recognized among the top 400 companies and listed by the London Stock Exchange as an inspiring European business. Their key services include JTI tobacco distribution, A1 telecommunications support, and e-distribution services. The website is professionally designed, mobile-optimized, and uses modern tracking and analytics tools. Hosting is provided via Oracle Cloud, and the site employs HTTPS with reCAPTCHA for security. However, there is no publicly available security policy or incident response information, which could be improved. Overall, the website is trustworthy and well-maintained, with clear contact information and GDPR-compliant cookie consent.

T

Tower Center Rijeka

tower-center-rijeka.hr

10

Tower Center Rijeka is a well-established retail shopping center located in Rijeka, Croatia, founded in 2007. The website presents a comprehensive overview of the center's offerings, including over 135 stores, megastores, a multiplex cinema, restaurants, and extensive parking facilities. The business targets general consumers, families, and shoppers seeking retail and leisure experiences. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages and providing up-to-date news and promotional content. Technically, the site employs modern web technologies such as Google reCAPTCHA v3, Google Tag Manager, Facebook Pixel, and is hosted on DigitalOcean, ensuring reliable performance and security. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and GDPR-aligned consent management. Overall, the site reflects a credible and trustworthy business with a good digital presence.

Grad Rijeka operates as the official city government portal for the city of Rijeka, Croatia, providing comprehensive information and services to its citizens and stakeholders. The website serves as a central hub for city administration news, public service announcements, community engagement, and access to e-services. It maintains a strong market position as the authoritative source of municipal information, targeting residents, businesses, and visitors. The business model is focused on government transparency, citizen engagement, and service delivery.

T

Trophy Monster

trophymonster.com

56

Trophy Monster is a UK-based e-commerce retailer specializing in trophies, medals, plaques, cups, and awards with custom printing services. Established in 2016, the company targets sports clubs, schools, corporate clients, and individuals seeking quality awards. The website demonstrates a professional design with clear navigation and multiple language support, indicating an international market presence. Technically, the site uses modern JavaScript features, Google Analytics, and Google Ads for marketing and tracking, hosted on AWS infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security policies are not explicitly published. Overall, the domain registration aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Pokale Bauer

pokale-bauer.at

70

Pokale Bauer is a regional e-commerce and retail business specializing in the production and sale of sports trophies, medals, plaques, and custom awards. The company operates multiple physical stores across Austria, Czech Republic, Germany, and serves customers online with multilingual support. Their business model focuses on custom printing starting from a single piece, targeting sports clubs, event organizers, and individual customers. The website demonstrates a solid market position with trust signals such as verified Trustpilot reviews and active social media presence. Technically, the website uses modern web technologies including lazy loading, IntersectionObserver API, Google Tag Manager, and Google Analytics for tracking. The site is mobile optimized with good SEO practices and structured data implementation. Performance is moderate with room for improvement in accessibility and security headers. Security posture is good with HTTPS enforced and nonce usage in scripts, but lacks explicit security headers and a cookie consent mechanism. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a privacy policy present but no visible cookie consent banner. Business credibility is high due to clear contact information, physical store locations, and trust indicators. Overall, the website is professional, trustworthy, and functional with recommendations to enhance security headers, implement cookie consent, and publish incident response policies to improve compliance and security maturity.