Security Directory

A

Annuaire Vert

annuairevert.com

64

Annuaire Vert is a French online directory and media platform specializing in organic (bio) products, services, and stores. It provides a comprehensive listing of bio-related businesses, news, events, and video content targeted at consumers and professionals interested in organic products in France. The website is well-structured with clear navigation and a professional design, supporting a medium-sized business model focused on retail and media sectors. Technically, the site employs modern JavaScript libraries and frameworks, including jQuery, Swiper, Leaflet, and Google reCAPTCHA, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and CAPTCHA protection on forms, but lacks explicit security headers and a vulnerability disclosure policy. Privacy compliance is addressed with a cookie consent banner and a privacy policy page in French, indicating GDPR awareness. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content itself appears professional and trustworthy.

F

Fondation pour la Nature et l’Homme

fondation-nature-homme.org

69

Fondation pour la Nature et l’Homme is a well-established French non-profit organization dedicated to environmental awareness and ecological solutions. The foundation operates multiple programs focused on biodiversity preservation, sustainable agriculture, responsible food consumption, and decarbonized mobility. It engages a broad audience including volunteers, donors, and citizens, leveraging digital platforms and partnerships to amplify its impact. The website reflects a mature digital presence with modern technologies and comprehensive content supporting its mission. Technically, the website is built on WordPress with advanced JavaScript frameworks like Alpine.js and HTMX, and integrates analytics tools such as Microsoft Clarity, Google Tag Manager, and Matomo. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Security posture is good with HTTPS enforced and consent management implemented, though some security headers could be explicitly added for enhanced protection. The absence of WHOIS data limits domain registration trust verification, but the website's branding, certifications, and external references strongly support its legitimacy. No blocking or WAF mechanisms were detected, allowing full content access. Overall, the foundation demonstrates a strong commitment to transparency, privacy compliance, and user engagement. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response information, and maintaining vigilance on third-party scripts. These steps will further strengthen trust and security posture.

Q

QNAP Systems, Inc.

qnap.com

79

QNAP Systems, Inc. is a recognized enterprise in the technology sector specializing in network-attached storage (NAS), direct-attached storage (DAS), networking hardware, and intelligent video surveillance solutions. Their offerings also include cloud storage services such as myQNAPcloud Storage and Cloud NAS, targeting both individual consumers and business customers. The company positions itself as an expert in storage, performance, security, and scalability solutions. The website reflects a professional and consistent brand image with a focus on technology products and services. From a technical perspective, the website employs modern web technologies including Google Tag Manager, Google Analytics, Bootstrap Icons, Font Awesome, SweetAlert, and Swiper.js for UI components. The site is mobile-optimized with good SEO practices such as canonical and hreflang tags. Performance is moderate with room for improvement in accessibility features. The SSL configuration is excellent, ensuring secure HTTPS connections. Security posture is generally strong with HTTPS enforced and no visible exposed sensitive data or vulnerable libraries. However, the absence of explicit security headers and lack of published privacy, cookie, and terms of service policies indicate areas for compliance and security enhancement. No incident response or vulnerability disclosure information is provided, which could be improved to increase trust and readiness. Overall, the website is trustworthy and professional but suffers from missing WHOIS data, which reduces domain registration transparency. The lack of privacy and cookie policies and explicit contact information also impacts privacy compliance scores. Strategic improvements in these areas would enhance the security posture and business credibility of the site.

E

ESET

eset.cz

74

ESET is a globally recognized cybersecurity company providing advanced antivirus and internet security solutions for both personal and business use. The website targets Czech-speaking customers, offering localized content and support. The company positions itself as a trusted leader with over 30 years of experience, emphasizing reliable protection and local customer service. Technically, the website is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google Tag Manager and Bing tracking for analytics and marketing. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit incident response contacts and security.txt are not found. Overall, the site is professional, secure, and compliant with GDPR, reflecting a mature digital presence.

C

Creatim d.o.o.

creatim.com

70

Creatim d.o.o. is a well-established Slovenian digital solutions company with over 25 years of experience, specializing in web applications, portals, e-commerce, AI, and user experience design. The company targets businesses seeking digital transformation and offers comprehensive services from strategy to long-term support. Their market position is strong, supported by multiple industry awards and certifications including ISO 27001. Technically, the website is built on a modern stack with advanced accessibility features and good SEO practices, reflecting a mature digital infrastructure. Security posture is robust with HTTPS, security certifications, and regular audits, though explicit security headers and incident response contacts could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though the lack of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy.

S

SAS NAAIA

naaia.ai

53

Naaia is a French-based SaaS company specializing in AI compliance, risk management, and governance solutions. Founded in 2022, it positions itself as a European leader and the first AIMS® provider, offering a platform to operationalize AI governance and compliance with global regulations. The company holds ISO 27001 and ISO 42001 certifications, reinforcing its commitment to security and AI management standards. The website is professionally designed, content-rich, and targets organizations deploying AI systems that require regulatory compliance and risk oversight. Technically, the website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as HubSpot, Google Analytics, and Matomo. The hosting provider is Gandi SAS, and the domain registration details align well with the business identity. The site is mobile-optimized, accessible, and SEO-friendly, with a good performance profile. From a security perspective, the site enforces HTTPS, uses security headers, and demonstrates best practices through certifications and cookie consent mechanisms. However, DNSSEC is not enabled, and no explicit vulnerability disclosure or incident response contacts are provided. The absence of direct company emails or phone numbers on the site suggests reliance on contact forms for communication. Overall, Naaia presents a strong security posture and business credibility with minor areas for improvement in DNS security and transparency of incident response. The site content is safe for general audiences, with no adult or questionable material detected.

F

Fathers Coffee Roastery

fathers.cz

47

Fathers Coffee Roastery is a small Czech Republic-based e-commerce business specializing in coffee roasting and sales. The website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, though it lacks explicit privacy and terms of service documentation. Security posture is adequate with HTTPS enabled, but could be improved by adding security headers and formal policies. No signs of malicious content or blocking mechanisms were detected, and the domain registration details align well with the business profile, supporting legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and clearer contact information.

G

Galerie výtvarného umění v Ostravě, p. o.

gvuo.cz

49

Galerie výtvarného umění v Ostravě, p. o. is the oldest regional art gallery in Ostrava, Czech Republic, established in 1952. It operates as a non-profit cultural institution under the Moravskoslezský kraj (Moravian-Silesian Region) and offers art exhibitions, educational programs, virtual tours, and an e-shop. The website reflects a well-established institution with a clear focus on art and culture, targeting the general public and educational sectors. The business model is centered on cultural enrichment and public engagement rather than commercial profit. Technically, the website employs a modern technology stack including HTML5, CSS3, JavaScript libraries such as jQuery, Leaflet.js for maps, and Google Analytics for tracking. It uses the Shopnero CMS platform and is hosted by Active24. The site is mobile-optimized with good SEO practices and structured data enhancing search engine visibility. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy and GDPR adherence. Overall, the website is professional, trustworthy, and well-maintained, with a strong cultural and educational focus. Strategic improvements in security policies and accessibility could further enhance its posture and user trust.

O

Ostravské vodárny a kanalizace a. s.

hledejpramenvody.cz

55

The website www.hledejpramenvody.cz represents Ostravské vodárny a kanalizace a.s., a regional company focused on water supply and ecological education in Ostrava, Czech Republic. The site promotes an educational ecological project targeting 4th and 5th grade students in local schools, emphasizing environmental awareness and water knowledge. The project is supported by the city of Ostrava and offers awards and recognition to participants. Technically, the website uses modern web technologies including HTML5, CSS, JavaScript, and Swiper.js for interactive content. The site is well-structured, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is moderate with HTTPS usage but lacks explicit security headers and published security policies. Privacy compliance is limited, with no dedicated privacy or terms pages and minimal cookie consent mechanisms. WHOIS data is unavailable, which reduces trustworthiness but the website content and contact information indicate a legitimate educational initiative. Overall, the site is professional and trustworthy for its target audience but could improve in privacy and security transparency.

C

CYMEDICA – partner pro veterinární profesionály

cymedica.cz

62

CYMEDICA is a well-established veterinary partner operating since 1995, serving the Czech Republic and Central and Eastern Europe markets. The company specializes in veterinary product distribution, professional education, and expert consulting, positioning itself as a market leader with a strong regional presence. Their website reflects a mature digital infrastructure with multilingual support, e-commerce capabilities, and active engagement through social media and newsletters. Technically, the site is built on WordPress with WooCommerce and employs modern libraries and plugins, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be enhanced. The absence of WHOIS data is a transparency concern but does not detract from the overall legitimacy indicated by certifications and professional content. Strategic recommendations include improving security headers, publishing vulnerability disclosure information, and enhancing incident response contacts.

Yamaha Motorsports USA operates a professional and well-branded website focused on providing information about Yamaha motorsports products, dealer locations, pricing, and community engagement. The site targets motorsports enthusiasts and Yamaha product owners in the USA, positioning itself as a key player in the transportation sector with a long-established presence since 2001. The business model revolves around retail and brand experience enhancement through racing, training, and community programs. Technically, the website employs modern JavaScript libraries, video embedding, and accessibility tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain management best practices, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the site is trustworthy and professional, with extensive analytics and advertising integrations.

F

Fathers Coffee Roastery

fatherscoffee.cz

50

Fathers Coffee Roastery is a small specialty coffee roasting business based in the Czech Republic, established in 2017. The company operates an e-commerce website built on WordPress with Elementor and WooCommerce, targeting coffee enthusiasts and consumers interested in premium coffee products. The website presents a professional design with good mobile optimization and clear navigation, supporting a positive user experience. Technically, the site uses modern web technologies and is hosted by cesky-hosting.eu, with SSL properly configured and security headers in place, indicating a good security posture. However, the absence of a published privacy policy and contact information reduces privacy compliance and business transparency. No WAF or content blocking mechanisms were detected, and the site does not contain any adult or questionable content, making it safe for general audiences. Overall, the domain registration data aligns well with the website's business claims, supporting legitimacy and trustworthiness.

U

Unicancer

unicancer.fr

56

Unicancer is a prominent French healthcare federation specializing exclusively in oncology, uniting 18 cancer treatment centers and affiliated establishments. The organization focuses on delivering comprehensive cancer care, patient support, and advancing clinical and translational research. Their market position is strong as the unique dedicated hospital network in France for cancer treatment, supported by a large workforce of over 25,600 professionals. The website reflects a mature digital presence with extensive content targeting patients, healthcare professionals, and researchers, emphasizing innovation and excellence in care. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, jQuery, and various JavaScript libraries for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which slightly impacts trust but is likely due to privacy protection. The website maintains comprehensive privacy and cookie policies compliant with GDPR. Social media presence on major platforms supports engagement and transparency. Overall, the site is professional, trustworthy, and well-aligned with its healthcare mission.

C

Centre Hospitalier Universitaire de Nîmes

chu-nimes.fr

56

The Centre Hospitalier Universitaire de Nîmes (CHU de Nîmes) is a major public university hospital serving the Gard region and neighboring departments in France. It provides comprehensive healthcare services including emergency care, consultations, hospitalizations, medical research, and professional training. The institution is large, with nearly 7,400 staff including medical and non-medical personnel, and operates across multiple sites. The website reflects a mature digital presence with a professional design, clear navigation, and accessibility features, targeting patients, healthcare professionals, researchers, and students. Technically, the website is built on the Drupal CMS platform, hosted by OVH, and incorporates modern web technologies such as Bootstrap and Swiper.js. It includes a cookie consent mechanism compliant with GDPR and uses Google Analytics for audience measurement. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data confirms the domain's legitimacy with a long registration history and consistent registration details. Overall, the website demonstrates a strong security posture and compliance with privacy regulations, supporting the trustworthiness of the institution. Recommendations include enhancing security headers, publishing security policies, and adding a vulnerability disclosure mechanism to further improve security transparency.

P

Planetárium Ostrava

planetko.cz

57

Planetárium Ostrava is an educational and cultural institution affiliated with the Mining-Geological Faculty of the Technical University of Ostrava. It provides a wide range of astronomy and natural science educational programs, cultural events, and interactive exhibits targeting visitors of all ages, including schools and the general public. The website reflects a professional and consistent brand image with clear navigation and rich content focused on its mission. Technically, the website is built on the MySUITU CMS platform and leverages modern web technologies such as YouTube IFrame API, jQuery, Swiper.js, and Google Tag Manager. The site is hosted likely by Active24, with good mobile optimization and moderate performance. SEO and accessibility are adequately addressed, though accessibility could be improved. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating legitimacy and consistency. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy standards, though it would benefit from enhanced security policies and accessibility improvements.

A

Agora CE, o.p.s.

participativni-rozpocet.cz

53

Agora CE, o.p.s. operates the website participativni-rozpocet.cz, providing expert assistance and methodological support for participatory budgeting in Czech municipalities. The organization targets local governments, politicians, and active citizens, offering practical tools and consultancy to foster community involvement in budget decisions. The website is well-structured, professionally designed, and supported by the Czech Ministry of Regional Development, indicating a strong market position within the non-profit government sector. Technically, the site is built on WordPress with Elementor and Yoast SEO, ensuring modern infrastructure and good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies could be enhanced. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information, supporting its credibility and user trust.

G

Genial

wearegenial.com

9

Genial is a French AI-focused company providing comprehensive AI solutions, including training, project development, customizable AI products, and platform management. The company targets businesses seeking to integrate AI into their operations and improve productivity and customer satisfaction. The website demonstrates a professional digital presence with modern technologies such as Google Tag Manager, reCAPTCHA, and Cloudflare Turnstile, hosted on Webflow. Security measures include HTTPS and bot protection, but lack explicit security headers and published privacy or cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and branding are consistent and professional. Overall, the site is well-designed and functional but would benefit from enhanced privacy compliance and domain legitimacy transparency.

O

Obec Nová Ves pod Pleší

novavespodplesi.cz

46

Obec Nová Ves pod Pleší operates an official municipal website serving the local community in the Czech Republic. The site provides residents and visitors with essential information such as official announcements, contact details, local clubs, and municipal services. The website is well-structured, with clear navigation and up-to-date content, reflecting a professional municipal communication channel. Technically, the site employs a variety of modern JavaScript libraries including jQuery, Bootstrap, Swiper.js, and Leaflet for mapping, indicating a moderate level of digital maturity and mobile optimization. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible advanced security headers and explicit incident response or security policies. The absence of WHOIS data limits domain trust assessment, but the presence of official contact information and consistent branding supports legitimacy. Overall, the website is a reliable and safe resource for its intended audience, with room for improvement in security posture and transparency.

T

TIMAC AGRO Lietuva

timacagro.lt

46

TIMAC AGRO Lietuva is a well-established agricultural company specializing in innovative fertilizers and biostimulants, serving Lithuanian farmers with advanced and sustainable solutions. The company is part of the global Groupe Roullier, positioning itself as a leader in soil, crop, and livestock nutrition. The website reflects a mature digital presence with professional design, structured data, and multilingual support, indicating a strong commitment to user experience and SEO. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern JavaScript libraries and Cloudflare for DNS and CDN services. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the site demonstrates high business credibility and trustworthiness.

B

Babalác

babalac.sk

58

Babalác is a Slovak e-commerce retailer specializing in high-quality children's toys including Montessori, wooden toys, and magnetic building sets. The website targets parents and caregivers seeking educational and safe toys for young children. It maintains a niche market position with a focus on quality and customer satisfaction, supported by product reviews and bestseller indicators. The business model is primarily online retail with additional content such as a blog to engage customers. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries and integrations with Google Analytics, Facebook Pixel, Hotjar, and other marketing tools. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate with CDN usage and asynchronous script loading. Security posture is strong with HTTPS enforced, standard security headers, CSRF protection on forms, and no exposed sensitive data. Cookie consent mechanisms comply with GDPR, and privacy policies are comprehensive and accessible. However, the site lacks a dedicated security policy or incident response contact information, which could enhance trust and compliance. Overall, the website presents a low-risk profile with good business credibility and technical maturity. Strategic recommendations include publishing a security policy, establishing incident response contacts, enhancing accessibility, and maintaining up-to-date third-party libraries to mitigate potential vulnerabilities.

A

ArtMoment Events s.r.o.

artmoment.cz

59

ArtMoment Events s.r.o. operates a professional experiential art workshop platform in the Czech Republic, offering creative painting events, gift vouchers, and corporate event services. The company targets a broad audience interested in leisure and creative activities, with multiple city locations enhancing market reach. The website is built on the Shoptet e-commerce platform, integrating modern tracking and marketing technologies such as Google Analytics GA4, Facebook Pixel, TikTok Pixel, and Microsoft Clarity, with a strong emphasis on user consent and privacy compliance. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the website's professional design, content quality, and business transparency support a high trust level. Overall, the site provides a seamless user experience with clear navigation, rich content, and effective marketing integration.

T

TicketingBox

ticketingbox.com

67

TicketingBox operates a professional, turnkey theater ticketing platform designed to boost ticket sales, simplify audience management, and maximize revenue for theaters and venues. The website demonstrates a solid market position with notable clients such as Shen Yun, showcasing its capability to handle large-scale events across multiple theaters annually. The platform offers comprehensive services including marketing tools, custom branding, reporting, and secure ticketing technology. Technically, the website is built on a modern WordPress CMS with Elementor and integrates Google Analytics and AdSense for tracking and monetization. The site is mobile-optimized and SEO-friendly, providing a good user experience. However, the absence of privacy and cookie policies and missing WHOIS registration data raise concerns about compliance and domain legitimacy. Security posture is moderate with HTTPS enabled but lacks explicit security headers and published security policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and domain registration transparency.

R

RAISE

raise.co

68

RAISE is a French investment and innovation group pioneering engaged finance with a unique success-sharing model emphasizing parity and sustainability. The company supports startups, growing enterprises, real estate investments, and philanthropic initiatives, positioning itself as a responsible and innovative market player. The website is professionally designed, mobile-optimized, and uses modern web technologies including Webflow, Didomi for consent management, and Plausible for analytics. Security posture is good with HTTPS and security headers in place, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is partially met with a cookie consent banner but lacks a clear privacy policy and terms of service. Overall, the site reflects a credible and trustworthy business with room for improvement in transparency and direct contact information.

L

LesMobiles

lesmobiles.com

10

LesMobiles.com is a well-established French media website specializing in mobile phone news, reviews, buying guides, and promotions. It operates under the Bemove group and targets French-speaking consumers interested in smartphones and related technology. The site offers comprehensive content including independent tests, detailed guides, and reconditioned phone offers, positioning itself as a trusted resource in the mobile phone market. Technically, the website uses modern web technologies such as Google Tag Manager, Swiper.js, and web fonts, with excellent mobile optimization and good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and a published security policy. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. However, the WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy. Overall, the website is professional, trustworthy, and user-friendly, but domain registration details should be verified for full trust assurance.

P

PSModuly.cz

psmoduly.cz

55

PSModuly.cz is a specialized e-commerce business focused on developing and selling PrestaShop modules, serving primarily PrestaShop e-shop owners and developers. The company has a strong market position in the Czech Republic with over 170 modules available, backed by long experience since 2012 and official recognition as a member of the PrestaShop Committers team. Their business model revolves around direct sales of modules with support and updates, complemented by partnerships for hosting and newsletter services. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies such as JavaScript libraries, Google Fonts, and analytics tools. The hosting is provided by a known Czech hosting partner, OpenServis, ensuring reliable infrastructure. Security posture is solid with HTTPS enforced, security headers present, and GDPR-compliant cookie consent mechanisms. However, there is no explicit security policy or incident response information published, which could be improved. Overall, the website is professional, trustworthy, and well-optimized for its target audience, with moderate user tracking and good privacy compliance.

T

Tričkař.cz - nejenom ručně kreslená trička

trickar.cz

43

Tričkař.cz is a small Czech Republic based e-commerce retailer specializing in original hand-drawn designs and digital textile printing, primarily on T-shirts and related apparel. The website showcases a niche market focus with custom and personalized products, targeting customers interested in unique, artistic clothing. The technical infrastructure uses a mix of legacy and modern JavaScript libraries, with integration of external services such as Mapy.cz for mapping and Google Fonts for typography. The site is accessible, uses HTTPS, and includes cookie consent mechanisms, but lacks explicit privacy and terms of service documentation. Security posture is moderate with secure forms and HTTPS but missing security headers and vulnerability disclosures. Overall, the website is functional and professional but could improve compliance and security transparency.

M

Maddyness

maddyness.com

66

Maddyness is a prominent French media company specializing in entrepreneurship and innovation news, analysis, and resources. It targets entrepreneurs, startups, investors, and the innovation ecosystem primarily in France. The company operates a subscription-based premium content model (Maddy+), alongside advertising, newsletters, and event partnerships, positioning itself as a leading media outlet in its niche since at least 2018. Technically, the website is built on WordPress with WooCommerce, leveraging modern JavaScript libraries and third-party services for analytics, advertising, and consent management. The site is mobile-optimized and SEO-friendly, offering a rich user experience with clear navigation and professional design. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data is a notable transparency gap but does not detract significantly from the site's legitimacy given its professional content and active presence. Overall, Maddyness presents a mature digital presence with strong business credibility and a solid security foundation.

L

L214

politique-animaux.fr

59

The website 'Politique & animaux' is an advocacy and informational platform operated by the French non-profit organization L214, focusing on political actions related to animal welfare in France. It provides evaluations of political personalities, campaigns at municipal, national, and European levels, and public opinion polling data. The platform targets French citizens interested in animal rights and political accountability. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates Google Tag Manager for analytics. It is mobile-optimized and uses HTTPS for secure communications. Security posture is good with no evident vulnerabilities, though explicit security headers could be improved. Privacy compliance is moderate, with consent mechanisms present but no explicit privacy or cookie policy pages found. WHOIS data is unavailable, which slightly impacts trust but the association with L214 and the professional content support legitimacy. Overall, the site is well-designed, content-rich, and trustworthy for its audience.

S

Smile

elasticsuite.io

64

ElasticSuite, operated by Smile, is a specialized technology company providing an advanced ecommerce searchandising toolbox designed to enhance product discovery and merchandising for online retailers. The company has established a strong market presence with over 5,000 retailers adopting its open source solution, positioning itself as a key player in the ecommerce technology sector. Their offerings focus on AI-powered personalization and optimization to boost conversion rates and customer experience. Technically, the website is built on a modern WordPress CMS with Elementor Pro, integrating advanced SEO tools and analytics platforms such as Google Analytics and HubSpot. The infrastructure is hosted on AWS, ensuring reliable performance and scalability. Security posture is robust with HTTPS enforced, reCAPTCHA protection on forms, and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity, supporting the company's credibility and business goals.

C

Chiesi Farmaceutici S.p.A

chiesi.com

70

Chiesi Farmaceutici S.p.A is a large, globally recognized pharmaceutical company based in Italy, with over 80 years of experience specializing in respiratory, neonatology, and rare diseases. The company operates a professional corporate website primarily in Italian, offering detailed information about its therapeutic areas, research and development, partnering opportunities, and sustainability initiatives. The website demonstrates a mature digital presence with modern technologies such as Bootstrap, jQuery, Swiper.js, and Matomo analytics, alongside a robust cookie consent mechanism via OneTrust. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are not evident. WHOIS data is unavailable, which is unusual but the website content and branding strongly indicate legitimacy. Overall, the site is well-structured, accessible, and trustworthy, targeting healthcare professionals, partners, and patients.

T

TAS Holešov, s.r.o.

tsholesov.cz

60

TAS Holešov, s.r.o. is a municipal services company formed in 2024 by merging two local entities, providing energy, waste management, property management, and recreational services primarily for the Holešov region in the Czech Republic. The website reflects a well-structured local government service portal with clear navigation and relevant content for residents and businesses. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper.js, and Google Maps API, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and incident response contact details. Overall, the site is trustworthy and professionally maintained, though WHOIS data is unavailable, likely due to privacy protection.

M

Město Borovany

borovany-cb.cz

49

Město Borovany operates an official municipal website serving the residents and visitors of Borovany, Czech Republic. The site provides comprehensive local government information including news, official notices, contact details, event calendars, and public services. The target audience is primarily local citizens and stakeholders interested in municipal affairs. The business model is a government service portal with no commercial intent. The website maintains a consistent brand identity and good content quality, supporting its role as a trusted local government resource. Technically, the website uses a modern technology stack including jQuery, Bootstrap, Swiper.js, and Leaflet.js for mapping. It is built on the Ocelot CMS platform and demonstrates good mobile optimization and accessibility compliance, including an accessibility certification. Performance is moderate, with no major technical issues detected. However, some security best practices such as security headers are missing. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks a published privacy policy and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain trustworthiness, but the official nature of the content and contact information supports legitimacy. Overall, the website is a well-maintained municipal portal with good usability and security posture, though improvements in privacy compliance and domain transparency are recommended to enhance trust and regulatory adherence.

A

AGConsult

agconsult.com

63

AGConsult is a well-established usability, CRO, and UX design agency operating primarily in Belgium and the Netherlands. With over 20 years of experience since 2001, the company specializes in user research, AB testing, UX design, conversion optimization, and training/coaching services. The agency serves businesses, governments, and non-profits, positioning itself as an independent and internationally recognized expert in its field. The website reflects a professional and consistent brand image, showcasing notable clients and testimonials that reinforce its market credibility. Technically, the site is built on WordPress with WooCommerce and leverages modern tools such as Google Tag Manager and GDPR-compliant cookie management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data limits domain registration trust verification but does not detract significantly from the overall legitimacy given the professional content and client references. Overall, AGConsult presents a strong business and technical profile with good privacy compliance and user experience.

M

Muzeum Říčany

muzeumricany.cz

43

Muzeum Říčany is a small, non-profit cultural and educational institution based in the Czech Republic, focused on providing modern educational experiences for families, children, students, and educators. The website highlights their key services including exhibitions, educational programs, a Geopark, and public events. Their market position is that of a local community museum with a strong emphasis on education and family engagement. Technically, the website is built on WordPress using Elementor and Yoast SEO, with integration of Google Analytics for visitor tracking. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and serves its target audience effectively.

X

Xantipa Agency s.r.o.

xantipa.eu

41

Xantipa Agency s.r.o. is a Czech Republic based marketing and advertising agency specializing in strategic and creative marketing solutions. The company offers services including marketing strategy, creative campaigns, branding, and advertising, targeting businesses seeking effective marketing communications. The website is built on WordPress and integrates common marketing technologies such as Google Tag Manager, Google Analytics, and Facebook Pixel, indicating a moderate level of digital maturity. The site is well designed, mobile optimized, and provides clear contact information and social media presence, supporting business credibility. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is not publicly available due to EURid privacy policies, but no suspicious indicators were found. Overall, the website presents a professional marketing agency with moderate risk and good operational transparency.

U

Univerza Alma Mater Europaea

almamater.si

44

Univerza Alma Mater Europaea is a Slovenian international university established in 2012, offering a wide range of academic programs including undergraduate, graduate, doctoral, specialist, and lifelong learning courses. The institution targets students and academic professionals seeking career-oriented education aligned with future job market demands. The website reflects a mature digital presence with multilingual support and comprehensive academic and institutional information. Technically, the site employs modern web technologies such as Google Tag Manager, Hotjar, Facebook Pixel, and Swiper.js, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced and privacy-conscious analytics configurations, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and well-aligned with the university's mission and audience.

Q

QS ImpACT

qsimpact.org

67

QS ImpACT is a youth-led non-profit organization dedicated to empowering young people globally to create social impact aligned with the United Nations Sustainable Development Goals (UN SDGs). The platform offers scholarships, awards, youth summits, and community leadership programs to recognize and support youth contributions to sustainable development. The website presents a professional and consistent brand image with clear navigation and relevant content targeting youth interested in social change and education opportunities. Technically, the website is built using modern web technologies including Next.js and React, hosted likely on AWS infrastructure with DNS managed via AWS nameservers. It integrates analytics tools such as Microsoft Clarity and Google Analytics via Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no visible privacy policy, cookie consent mechanism, or security incident contact information, which are gaps in compliance and user trust. No WAF or blocking mechanisms were detected, and the domain registration is consistent with the business age and profile. Overall, QS ImpACT presents a trustworthy and professional platform with room for improvement in privacy compliance and security best practices. Strategic enhancements in policy transparency, security headers, and user data protection would strengthen the organization's digital trust and compliance posture.

D

Deutsch-Griechische Industrie- und Handelskammer

german-chamber.gr

48

The Deutsch-Griechische Industrie- und Handelskammer (German-Greek Chamber of Industry and Commerce) serves as a bilateral business network fostering trade and cooperation between Germany and Greece. With approximately 900 members, it offers a range of services including market entry consulting, legal and tax advice, delegation support, job portals, and translation services. The organization also hosts social events and networking opportunities to strengthen business ties. The website reflects a professional and consistent brand image aligned with its institutional partners such as BMWK, DIHK, and IHK. Technically, the site is built on the Ibexa DXP CMS with Vue.js and Swiper.js for frontend interactivity, delivering a good user experience with mobile optimization and accessibility considerations. Security posture is solid with HTTPS and no exposed sensitive data, though improvements could be made by adding security headers and explicit incident response information. Privacy compliance is partially met with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, serving a medium-sized organization focused on government and non-profit sectors.

A

Agreenium

agreenium.fr

63

Agreenium is a French non-profit alliance focused on education and research in agriculture, food, environment, and global health. The organization provides a comprehensive platform for educational resources, doctoral and international research training, and thematic research coordination. The website is built on Drupal 10 and uses modern frontend technologies including Alpine.js and Swiper.js, with Matomo analytics for privacy-conscious user tracking. The site is well-designed, mobile-optimized, and offers clear navigation and professional content targeted at students, researchers, and professionals in related fields. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is missing, which reduces domain trustworthiness, but the website content and social media presence support legitimacy. Overall, the site is a valuable resource in its sector but would benefit from enhanced transparency on privacy and security policies.

F

Fundación Bancaria Ibercaja

fundacionibercaja.es

59

Fundación Ibercaja is a well-established non-profit foundation based in Spain, dedicated to fostering social equality, cultural enrichment, educational development, and territorial economic growth. The organization operates multiple centers and offers diverse programs aimed at improving societal welfare and promoting sustainability aligned with the UN Agenda 2030. The website reflects a professional and consistent brand image, supported by comprehensive legal and privacy documentation, and active engagement through social media channels. Technically, the website employs modern web technologies including responsive design frameworks and JavaScript libraries such as Swiper.js and Google Analytics for user tracking and engagement analysis. The site is mobile-optimized and accessible, with good SEO practices evident in metadata and structured content. However, some security headers are not explicitly detected, and no incident response or vulnerability disclosure information is published, which could be improved. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, demonstrating compliance with GDPR requirements. No critical vulnerabilities or exposed sensitive data were found in the analysis. The absence of WHOIS data limits domain trust evaluation, but the overall digital footprint and certifications support legitimacy. Overall, Fundación Ibercaja presents a strong digital presence with a clear mission and trustworthy operations. Strategic enhancements in security transparency and WHOIS data availability would further strengthen its credibility and resilience.

R

Reportér Magazín

reportermagazin.cz

55

Reportér Magazín is a well-established Czech media outlet founded in 2013, offering high-quality journalistic content including articles, interviews, audio podcasts, and photo galleries. The website targets a general adult audience interested in investigative journalism and cultural topics, operating primarily on a subscription-based business model with additional e-shop services. The domain and WHOIS data confirm legitimacy and consistent registration details. Technically, the site uses modern web technologies such as Next.js, Google Tag Manager, and DoubleClick for advertising, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a high level of professionalism, trustworthiness, and user experience.

eMD Plugins, operated by eMarket Design LLC, offers enterprise-grade WordPress plugins designed to provide robust, reliable, and feature-rich solutions for businesses ranging from startups to large corporations. The company emphasizes ease of use, customization without coding, and exceptional support to empower customers in building successful online presences. The website reflects a mature business with a consistent brand and a clear focus on technology and software solutions for WordPress. Technically, the website leverages modern JavaScript frameworks such as Alpine.js, Swiper.js, and MeiliSearch for search functionality, hosted with Cloudflare DNS and registered via Amazon Registrar. The site is mobile-optimized, fast-loading, and SEO-friendly, with a professional design and clear navigation. Analytics are handled via Matomo, indicating a moderate level of user tracking with some privacy considerations. From a security perspective, the site uses HTTPS with good SSL configuration and domain status locks to prevent unauthorized changes. However, it lacks DNSSEC and explicit security headers, and no public security or incident response policies are found. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is present. No vulnerability disclosure or security.txt files are published. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, DNSSEC, cookie consent, and incident response transparency would enhance trust and compliance further.

P

ProfiBeauty s.r.o.

profibeauty.cz

58

ProfiBeauty s.r.o. operates a specialized e-commerce website focused on hair extensions, hair care products, wigs, and related accessories primarily targeting the Czech market. Established in 2009, the company has a stable online presence with a well-structured website offering a variety of products and clear contact information. The site integrates modern web technologies including PrestaShop CMS, Google Analytics, Facebook Pixel, and reCAPTCHA, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and basic security measures implemented, though there is room for improvement in security headers and published policies. Privacy compliance is partial, with cookie consent mechanisms present but no explicit privacy policy found. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

V

VELAE LEGAL GROUP

velaelegalgroup.com

10

VELAE LEGAL GROUP is an established international full-service law firm with offices in Spain and Latin America, providing comprehensive legal services to multinational and middle market clients. The firm leverages over 40 years of combined experience from predecessor firms and is recognized by leading legal directories. The website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site is built on WordPress with modern plugins and SEO tools, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy policies. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site demonstrates strong business credibility but would benefit from enhanced privacy compliance and security best practices.

M

MĚSTO TŘEBÍČ

trebiczije.cz

47

The website trebiczije.cz serves as an official informational portal for the city of Třebíč, Czech Republic, targeting citizens, entrepreneurs, and tourists. It provides comprehensive information about living, business opportunities, tourism, and community events, supported by a dedicated incoming team. The site positions itself as a regional hub for local development and engagement, reflecting a medium-sized government entity with a focus on sustainable urban growth and community well-being. Technically, the site employs a modern JavaScript stack including jQuery, Swiper, Fancybox, and integrates analytics tools such as Google Analytics, Microsoft Clarity, and Google Tag Manager. It features responsive design and basic accessibility, with cookie consent mechanisms aligned with GDPR requirements. However, the absence of detected security headers and incomplete WHOIS data indicate areas for improvement in security and domain transparency. From a security perspective, the site benefits from HTTPS encryption and client-side form validation but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The missing WHOIS data raises concerns about domain registration legitimacy, although the website content and contact information strongly suggest it is an official municipal resource. Overall, the website is professionally designed and functional, with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and resolving WHOIS data visibility to improve trust and compliance. These steps will strengthen the site's security posture and business credibility while maintaining its role as a vital community resource.

U

Upian

upian.com

46

Upian is a French media company specializing in digital storytelling, offering studio services to media companies, institutions, and brands, as well as producing documentaries and magazines for web and television. The company positions itself as a creative and editorially focused production house with an international footprint. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal privacy and cookie policies, which could be improved to enhance compliance and trust. Overall, the website is professional and trustworthy, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic improvements in privacy compliance and security headers are recommended to strengthen the security posture and regulatory adherence.

V

VegOresto Pro

vegoresto.fr

10

VegOresto Pro is a French non-profit initiative under the animal defense association L214, dedicated to supporting professionals in the restaurant and agro-food sectors to develop plant-based offerings. The website is well-designed, professionally maintained, and leverages modern web technologies such as WordPress with Elementor, Google Tag Manager, and reCAPTCHA for security. The site demonstrates a strong market position with over 3,000 partners and a clear focus on sustainable gastronomy. Security posture is solid with HTTPS and form protections, though explicit security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, linked to the parent association's policies. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the site's credibility given the professional content and association backing.

V

Vegan Pratique

vegan-pratique.fr

51

Vegan Pratique is a French non-profit informational website dedicated to promoting veganism and plant-based nutrition. It offers educational content, recipes, and a 21-day Veggie Challenge subscription to help users transition to a vegan lifestyle. The website is affiliated with L214, a recognized animal rights organization, enhancing its credibility and trustworthiness. The platform targets individuals interested in veganism, health, and environmental sustainability, providing practical advice and community engagement. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and optimized for mobile devices. Security posture is good with HTTPS enforced and no exposed sensitive data, although some security headers and policies could be improved. Privacy compliance is basic, with a cookie consent mechanism present but lacking explicit privacy and terms of service pages. Overall, Vegan Pratique presents a professional, trustworthy, and content-rich platform with room for enhancements in privacy and security documentation.

Le Présage is a pioneering solar-powered restaurant based in Marseille, France, established in 2016. The business focuses on sustainable and regenerative food practices using solar cooking technology. The website showcases the restaurant, a solar cooking container called La Guinguette, and a research and development section dedicated to solar technology in catering. The company targets environmentally conscious consumers and the local community, positioning itself as an innovative leader in sustainable hospitality. Technically, the website is built on WordPress using Elementor and several modern plugins, hosted by OVH. It features good SEO optimization and mobile responsiveness but lacks some security headers and privacy compliance elements. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but improvements are recommended in security headers and privacy policies. Overall, the website is professional, trustworthy, and content-rich, supporting the business's credibility and market position.

L

Les tantines

les-tantines.com

65

Les Tantines is a French creative studio specializing in visual identity and showcase websites. The company offers accessible creativity through standard and custom packages, focusing on logos, branding, UX, web design, social media, pitch decks, and motion design videos. Their market position is that of a niche, client-focused creative agency emphasizing agility and personalized service. Technically, the website is built on Webflow with modern libraries such as Swiper.js and Finsweet Attributes, hosted on Webflow's platform, and optimized for mobile and SEO. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. The WHOIS data is unavailable, raising concerns about domain legitimacy, though the professional website and client testimonials provide trust signals. Contact is primarily via Typeform forms, with no direct emails or phone numbers found.