Security Directory

H

Husitské muzeum v Táboře

husitskemuzeum.cz

57

Husitské muzeum v Táboře is a cultural institution focused on presenting historical and educational content related to the Hussite movement and medieval history in the Czech Republic. The website serves as an information portal for museum exhibitions, educational programs, and cultural events, targeting general visitors and history enthusiasts. The site is multilingual, primarily in Czech with English support, and provides detailed event information and partner references. Technically, the website is built on WordPress with a variety of plugins for multilingual support, GDPR compliance, and user engagement. It uses standard web technologies including jQuery, Google Fonts, Google Analytics, and Facebook SDK. The site is served over HTTPS, ensuring secure communication, but uses an outdated jQuery version which may pose security risks. The site has moderate performance and basic mobile optimization. From a security perspective, the site implements GDPR-compliant cookie consent mechanisms and uses HTTPS. However, it lacks advanced security headers and uses an outdated JavaScript library version. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are found. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the website is professionally maintained with good content quality and user experience. The main risks relate to outdated libraries and lack of visible security policies. Strategic improvements in security headers, library updates, and enhanced contact transparency would strengthen the site's security posture and trustworthiness.

E

Enki o.p.s.

enki.cz

46

Enki o.p.s. is a Czech non-profit research organization specializing in applied environmental research and laboratory services, operating since 1999. Their website reflects a professional presence with a focus on environmental balance and scientific expertise. The organization offers a range of services including accredited laboratory testing, educational programs, and mobile laboratory services. The site is built on WordPress using the Divi theme, indicating a modern and maintainable technical infrastructure. Security posture is strong with HTTPS and security headers implemented, though privacy compliance could be improved by adding cookie consent mechanisms and clearer contact information. Overall, the website supports the organization's credibility and mission effectively.

L

LUMI consortium

lumi-supercomputer.eu

70

The LUMI website represents a large-scale European supercomputing consortium providing high-performance computing resources and AI services to researchers and industry. The site is well-structured, professionally designed, and targets a technical audience involved in HPC and AI innovation. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and privacy page. The absence of terms of service and security policy pages is noted but does not critically impact trust. Overall, the website reflects a credible and mature digital presence aligned with its business goals.

F

fadegrad Podcast

fadegrad-podcast.ch

56

Fadegrad Podcast is a small, regionally focused podcast initiative presented by the Roman Catholic and Evangelical Reformed churches of the St.Gallen and Appenzell cantons in Switzerland. The website serves as a platform for sharing inspiring life stories and faith-related content, targeting a general audience interested in personal narratives and religious topics. The business model centers on content creation and distribution through podcasts, videos, and social media engagement. Technically, the site is built on WordPress with modern web technologies and integrates multimedia content effectively. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates good digital maturity and compliance with privacy regulations, supporting its credibility and trustworthiness.

V

Visuelle Fabrik

visuellefabrik.ch

60

Visuelle Fabrik is a small, professional branding and graphic design agency based in Basel, Switzerland. The company specializes in corporate branding, design, marketing, and consulting services aimed at businesses seeking to enhance their brand identity and market presence. Their website reflects a strong market position with a clear focus on quality and client engagement. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and SEO tools such as Rank Math and Google Tag Manager. The site is well-optimized for mobile devices and provides a good user experience. Security-wise, the website uses HTTPS and implements a comprehensive cookie consent mechanism, but lacks explicit privacy and security policy pages and security headers, which are recommended for enhanced compliance and protection. Overall, the domain registration details are consistent with the business claims, supporting the legitimacy of the site.

W

World YWCA

worldywca.org

58

World YWCA is a globally recognized non-profit organization dedicated to empowering women, young women, and girls through grassroots leadership and advocacy. It holds a strong market position as the largest organization of its kind, engaging millions annually. The website reflects a mature digital presence with comprehensive content, clear navigation, and multiple engagement channels including donations, membership, and events. Technically, the site is built on WordPress with modern frameworks and integrates analytics and translation services, indicating a well-maintained infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates high professionalism and trustworthiness, supported by certifications and clear contact information.

C

Cevi Region Basel

duranna.ch

47

Duranna is a non-profit organization operating an environmentally friendly holiday house in the Basel region of Switzerland, targeting families and youth groups for various camps and retreats. The website is built on WordPress using modern plugins and themes, demonstrating moderate digital maturity with good mobile optimization and user experience. Security posture is adequate with HTTPS and privacy mechanisms in place, though additional security headers and explicit policies could enhance protection. Overall, the site is trustworthy, professionally presented, and compliant with GDPR requirements.

R

Relimedia

relimedia.ch

54

Relimedia is a Swiss-based ecumenical media center specializing in providing physical, audiovisual, and print media focused on church, religions, ethics, and life education. The organization operates a media lending, sales, and digital download/streaming service primarily targeting religious and educational institutions. The website demonstrates a solid technical infrastructure built on WordPress with modern plugins and SEO optimizations, offering a good user experience with mobile responsiveness and accessibility. Security posture is adequate with HTTPS and anti-spam measures, though lacking explicit cookie consent and security policies. Overall, the domain registration and business information are consistent and trustworthy, supporting a positive legitimacy assessment.

H

HomoDigital

homodigital.pl

36

HomoDigital is a Polish technology-focused media outlet established in 2020, delivering news, analysis, and educational content on artificial intelligence, cybersecurity, e-commerce, and the IT labor market. The site targets Polish-speaking technology enthusiasts and professionals, positioning itself as a niche blog with a consistent brand and active social media presence. Technically, the website is built on WordPress, leveraging modern web technologies including Google Analytics, Google Tag Manager, reCAPTCHA, and OneSignal for push notifications. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced and anti-bot measures in place, but could be enhanced by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and safe for general audiences.

D

dailyweb

dailyweb.pl

42

Dailyweb.pl is a well-established Polish technology and entertainment news portal founded in 2014. It provides daily content focused on technology, mobile devices, entertainment, and related topics, targeting technology enthusiasts and general internet users interested in tech news and reviews. The website operates on WordPress CMS with performance optimizations such as WP Rocket and lazy loading of scripts, ensuring good user experience and mobile optimization. The business model primarily revolves around content publishing supported by advertising networks like Google Adsense and Advanced Ads. The site maintains a consistent brand presence with active social media channels and structured data for SEO enhancement. Technically, the site leverages modern web technologies including jQuery, WP Rocket, and integrates analytics services such as Plausible, Gemius, and Request Metrics. Hosting is provided by OVH SAS, a reputable provider, with the domain registered since 2014, indicating a stable and legitimate online presence. Performance is rated as fast with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and uses some security best practices but lacks DNSSEC and some recommended security headers like X-Frame-Options and Referrer-Policy. There is no visible incident response or vulnerability disclosure information, and no cookie consent mechanism is implemented, which could be improved for GDPR compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, Dailyweb.pl presents a trustworthy and professional online presence with good content quality and technical implementation. Strategic recommendations include enhancing security headers, enabling DNSSEC, and implementing a cookie consent mechanism to improve privacy compliance and security posture.

W

Web Design Company & Digital Marketing Agency, Bali

celax.de

42

Indonesia Digital Marketing & BiruDaun Web Studio is a small, established digital marketing and web design agency based in Bali, Indonesia, with over 25 years of experience. They specialize in ecommerce sales, performance marketing, SEO, web design, and analytics, targeting businesses seeking to improve their online presence and direct sales. The website is professionally designed using WordPress with Elementor and Astra theme, featuring good mobile optimization and SEO practices. Security posture is solid with HTTPS and privacy-focused analytics (Matomo), but lacks formal privacy and cookie policies, and no visible security or incident response policies. WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy. Overall, the site is trustworthy and professional but would benefit from improved compliance documentation and security headers.

UNIKO Písek, s.r.o. is a Czech construction company specializing in general contracting for industrial, engineering, agricultural, civil, and residential buildings. Founded in 1992, it operates with a small team of 25 employees and holds ISO 9001 certification, indicating a commitment to quality management. The company presents a professional website with detailed project references and clear contact information, targeting clients in the Czech Republic's construction sector. Technically, the website is built on WordPress 6.7.2 using the dt-presscore theme and includes modern technologies such as jQuery and Google reCAPTCHA v3 for bot protection. The site is moderately performant, mobile-optimized, and has basic SEO and accessibility features. Hosting and domain registration are consistent with the company's location and history. From a security perspective, the site enforces HTTPS and uses reCAPTCHA but lacks important HTTP security headers and does not publish a security policy or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which is a notable GDPR compliance gap. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and privacy compliance measures to improve its risk posture and user trust.

O

ON BOARD

on-board.cz

48

ON BOARD is a Czech Republic based small business founded in 2019 that specializes in helping companies present their services, products, and themselves more attractively, clearly, and profitably. Their key offerings include visual work, web development, marketing 360, sales strategies, organizational efficiency, LinkedIn consulting, and ESG services. The website is built on WordPress using the Astra theme and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The technical infrastructure is solid with HTTPS enforced and Cloudflare DNS, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks explicit privacy policy and terms of service pages. Overall, the website is professional and trustworthy with moderate security posture and good business credibility.

T

TOMEGAS s.r.o.

tomegas.cz

57

TOMEGAS s.r.o. is a Czech company specializing in the supply of liquefied gases, ecological heating solutions, and propane-butane gas bottles, serving both businesses and households. The company positions itself as a traditional and established player in the Czech energy market with over 25 years of history. Their key services include turnkey solutions for propane gas tanks, ecological heating installations, and a network of LPG autogas stations. The website reflects a mature digital presence with comprehensive content, certifications, and multiple contact channels. Technically, the site is built on WordPress with common industry-standard plugins and tracking tools, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks some advanced security headers and published incident response policies. Privacy compliance is strong with GDPR-aligned cookie consent mechanisms. The absence of WHOIS data is a notable gap, reducing domain registration trustworthiness, but the overall business credibility remains high based on website content and certifications.

A

adfocus GmbH

getback.app

35

Getback, operated by adfocus GmbH, is a Swiss-based technology company specializing in conversion optimization and web-push notification solutions tailored for e-commerce businesses. Their platform leverages onsite behavioral analytics to increase conversion rates through targeted campaigns, lead generation, upselling, and gamification. The company serves a range of clients including prominent retail brands, positioning itself as a trusted partner in performance marketing. Technically, the website is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. The site is well-structured, mobile-optimized, and provides multilingual support. Security-wise, HTTPS is enforced and forms include anti-spam measures, but the absence of explicit security headers and cookie consent mechanisms indicates room for improvement. Overall, the website reflects a professional and credible business with a solid digital presence.

C

ConnectAd Realtime Inc

connectadrealtime.com

61

ConnectAd Realtime Inc operates a supply-side platform (SSP) focused on empowering digital publishers and advertisers with advanced optimization, global demand access, and sustainability initiatives. The company is positioned as a technology-driven SSP with a strong emphasis on transparency, brand safety, and environmental responsibility. Their website reflects a professional and consistent brand image, targeting publishers, advertisers, and environmentally conscious businesses. The domain age and registrant information align well with the company's business claims, indicating legitimacy and maturity in the market. Technically, the website is built on WordPress using WPBakery Page Builder, leveraging modern web technologies such as Google reCAPTCHA v3 and Usercentrics for consent management. Hosting and DNS services are provided by Cloudflare, ensuring reliable performance and security. The site demonstrates good mobile optimization and basic accessibility features, with room for improvement in security headers and explicit security policies. From a security perspective, the website enforces HTTPS and uses bot protection and consent management tools. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is transparent and consistent, with no suspicious patterns detected. Overall, the security posture is solid but could be enhanced by implementing additional security headers and publishing formal security documentation. The website content is safe for general audiences, with no adult or questionable content detected. Contact information is primarily via web forms, with a verified company email for demo bookings. No phone numbers or physical addresses are explicitly provided. The site integrates external partners for careers and support but does not expose affiliate or ad network details publicly. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure program to enhance trust and compliance. These steps will strengthen the security posture and business credibility, supporting ConnectAd's growth and market position.

S

ScaleUp:AI

scaleup.events

57

ScaleUp:AI is a well-established AI conference organized and powered by Insight Partners, targeting AI professionals, executives, and innovators globally. The website presents a professional and polished digital presence, leveraging WordPress with Elementor and multiple marketing and analytics tools to engage attendees both virtually and in-person. The event is positioned as a leading industry gathering with a strong network of speakers and partners. Technically, the site is modern and performs well with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies are lacking. Privacy compliance is a notable gap due to missing privacy and cookie policies. Overall, the site is credible and trustworthy but would benefit from enhanced compliance and security transparency.

F

Founders4Founders is under construction

founders4founders.cz

48

Founders4Founders.cz is a website currently under construction, targeting investors and startups in the Czech Republic. The site appears to be a small-scale project or startup founded in 2021, with minimal public-facing content and no active business services visible. The website uses WordPress with an under construction plugin and basic frontend technologies such as Bootstrap and Font Awesome. Hosting is likely provided by Forpsi, a Czech hosting provider, as inferred from the nameservers. The technical infrastructure is basic, with no advanced frameworks or analytics detected. Security posture is weak, with no visible HTTPS confirmation, security headers, or privacy policies. There is no contact information or forms, limiting user engagement and trust. Overall, the site is not yet operational and lacks critical compliance and security features.

D

Digitální a Inovační Hub Ostrava

edihostrava.cz

49

EDIH Ostrava is a European Digital Innovation Hub focused on supporting the adoption and utilization of digital technologies primarily by small and medium-sized enterprises (SMEs) and public organizations in the Czech Republic. The organization offers services such as high-tech technology testing, improving digital readiness and skills, and assistance in finding investments and partners. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, jQuery, and Google reCAPTCHA for security. SEO and privacy compliance are well implemented, with clear cookie consent mechanisms and GDPR adherence. However, explicit contact information and security policies are not prominently published, which could be improved to enhance trust and transparency.

M

Moravskoslezské inovační centrum Ostrava, a.s.

innoverse.cz

49

InnoVerse is a Czech-based conference platform organized by Moravskoslezské inovační centrum Ostrava, a.s., focusing on innovation, business, and technology sectors including startups, mobility, health, and digitalization. The platform serves as a nexus for business professionals, researchers, and innovators to collaborate and explore emerging trends. The website is professionally designed, mobile-optimized, and provides comprehensive event information, speaker profiles, and partner details. Technically, it leverages WordPress CMS with modern JavaScript frameworks and integrates analytics and marketing tools such as Google Tag Manager and LinkedIn Insight. Security posture is strong with HTTPS enforced and GDPR compliance evident through cookie consent mechanisms and a detailed privacy policy. However, explicit security policies and incident response contacts are not present. Overall, the site demonstrates a mature digital presence with good privacy and security practices, supporting its role as a reputable event organizer in the Czech innovation ecosystem.

S

Schweizerische Gesellschaft für Ernährung SGE

sge-ssn.ch

80

The Schweizerische Gesellschaft für Ernährung SGE is a well-established Swiss non-profit organization focused on nutrition education, advocacy, and public health promotion. With a history spanning over 60 years, the organization provides comprehensive nutrition information, educational resources, events, and membership services targeting the general public and professionals interested in healthy eating. The website reflects a mature digital presence with multilingual support and a clear focus on user engagement through newsletters, publications, and an online shop. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, leveraging modern frameworks like Bootstrap and jQuery. It integrates Mapbox for mapping and Matomo (Piwik) alongside Facebook Pixel for analytics and marketing tracking. The site is well-optimized for mobile devices and SEO, with proper meta tags and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements essential security headers. It employs a cookie consent mechanism compliant with GDPR, ensuring user privacy and transparency. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not present, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It serves its non-profit mission effectively while maintaining a secure and user-friendly online environment.

L

Lesy České republiky, s. p.

lesy-cr.cz

66

Lesy České republiky, s. p. is a large state-owned forestry enterprise in the Czech Republic responsible for managing over 1.2 million hectares of state forest land and extensive watercourses. The organization provides forestry management, timber sales, watercourse maintenance, public education, and hunting lease services. It operates under the Ministry of Agriculture and maintains a strong presence through multiple digital channels and public outreach programs. The website reflects a professional and comprehensive digital presence with clear navigation and relevant content for both the general public and professional stakeholders. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel. Hosting is supported by Microsoft Azure DNS infrastructure, ensuring reliable performance and availability. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms compliant with GDPR. It integrates security monitoring tools but lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the organization's identity and history, supporting high legitimacy and trust. Overall, Lesy České republiky, s. p. maintains a secure, compliant, and user-friendly online presence appropriate for a government entity. Strategic improvements could focus on enhancing security headers, publishing incident response contacts, and formalizing vulnerability disclosure to further strengthen trust and resilience.

Insight Partners is a global investment firm specializing in software and technology companies, focusing on partnering with high-growth startups and scaleups to accelerate their growth. The company positions itself as a leader in the venture capital and private equity space, providing capital and strategic support to ambitious technology businesses worldwide. Their website reflects a mature, enterprise-grade digital presence with comprehensive content, strong branding, and a clear value proposition targeting technology entrepreneurs and investors. Technically, the website is built on WordPress, leveraging modern web technologies including jQuery, Vimeo for video content, and multiple marketing and analytics tools such as Google Tag Manager, Marketo, Hotjar, and OneTrust for cookie consent. The site is well-optimized for mobile devices, SEO, and accessibility, indicating a high level of digital maturity and investment in user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes security headers like Content Security Policy and HSTS. Cookie consent mechanisms are implemented, and privacy policies are comprehensive and GDPR compliant. However, the absence of a dedicated security policy or incident response contact information is a gap. Additionally, the WHOIS data for the domain is missing, which raises questions about domain registration transparency but does not necessarily indicate malicious intent given the professional nature of the site. Overall, Insight Partners' website demonstrates a strong business and technical foundation with good security practices, though improvements in transparency around security policies and domain registration details would enhance trustworthiness. The risk level is moderate due to the WHOIS data gap, but the site is otherwise professional and secure.

M

Moravskoslezské inovační centrum (MSIC)

msic.cz

54

Moravskoslezské inovační centrum (MSIC) is a regional innovation support organization based in the Czech Republic, founded in 2017. It focuses on fostering business development and innovation within the Moravian-Silesian region by providing services such as financing, know-how, matchmaking, and infrastructure support. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and multiple analytics and tracking tools. The organization maintains strong partnerships with regional government bodies and universities, enhancing its market position as a key regional innovation hub. Security posture is solid with HTTPS and reCAPTCHA implemented, though some security headers and explicit policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website and domain registration data indicate a legitimate and trustworthy business with a strong digital presence.

Ś

Śląska Organizacja Turystyczna

silesia-sot.pl

39

The website www.silesia-sot.pl represents the Śląska Organizacja Turystyczna, a regional tourism organization focused on promoting the Silesia region in Poland. The site provides information likely aimed at tourists and visitors interested in regional attractions and events. The business model appears to be non-profit or governmental, focusing on tourism promotion rather than commercial sales. The website uses WordPress with the Divi theme, indicating a standard CMS-based infrastructure suitable for small to medium organizations. Technical maturity is moderate with basic mobile optimization and SEO, but lacks advanced security headers and privacy compliance features. Security posture is limited due to missing security headers and lack of visible incident response or security policies. WHOIS data is unavailable, likely due to privacy protection, which reduces trust signals but is common for such organizations. Overall, the site is safe with no adult or questionable content detected, but improvements in privacy, security, and contact transparency are recommended.

W

Web Design Company & Digital Marketing Agency, Bali

indonesiadigitalmarketing.id

42

Indonesia Digital Marketing & BiruDaun Web Studio is a small, established digital marketing and web design agency based in Bali, Indonesia, with over 25 years of experience. They specialize in ecommerce sales, performance marketing, SEO, web design, and analytics, targeting businesses seeking to improve their online presence and direct bookings. The website is professionally designed using WordPress and Elementor, with good mobile optimization and SEO practices. However, the absence of privacy and cookie policies and missing WHOIS domain registration data raise compliance and legitimacy concerns. The security posture is generally good with HTTPS and no exposed sensitive data, but security headers and incident response information are lacking.

B

BiruDaun Web Studio

indonesia-digital-marketing.com

42

BiruDaun Web Studio, operating under the brand Indonesia Digital Marketing, is a Bali-based digital marketing and web design agency with a strong focus on ecommerce sales, performance marketing, and SEO services. Established since 1994, the company positions itself as a leader in website performance and digital marketing solutions in Indonesia, targeting SMEs, brands, and hospitality sectors. Their service portfolio includes web design, apps, analytics, booking engines, and loyalty program engines, supported by a professional and content-rich website. Technically, the site is built on WordPress with Elementor and Astra theme, leveraging Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS enabled, though additional security headers and policies could enhance protection. The absence of privacy and cookie policies and missing WHOIS data are notable gaps that impact trust and compliance. Overall, the website is professional, well-structured, and safe for general audiences, but the domain registration inconsistency warrants further verification.

E

EuropaCable

europacable.eu

72

EuropaCable is a prominent European industry association representing leading wire, cable, and cable accessories manufacturers. The organization advocates for sustainable electrification and digitalization across Europe, serving as a key voice for both large and specialized small- to medium-sized businesses in the cable manufacturing sector. Their website reflects a professional and well-structured digital presence, targeting industry stakeholders and policymakers. The business model centers on policy advocacy, industry representation, and promoting sustainability within the energy and telecommunications sectors. Technically, the website is built on WordPress using Elementor, with integrations such as Matomo for analytics and Rapidmail for newsletter management. The site is hosted by OVH SAS, a reputable European hosting provider. Performance and mobile optimization are good, with modern web technologies employed. Privacy and cookie policies are comprehensive and GDPR compliant, supported by a consent mechanism. However, no explicit security policy or incident response information is publicly available. From a security perspective, the site enforces HTTPS, employs security headers, and uses cookie consent tools, indicating a solid security posture. No vulnerabilities or exposed sensitive data were detected. The absence of a vulnerability disclosure policy or security.txt file is noted as an area for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, with minor recommendations to enhance security transparency and accessibility.

O

OP Cable, s. r. o.

opcable.cz

41

OP Cable, s. r. o. is a Czech manufacturing company specializing in the production of metallic cables primarily for automation, telecommunication systems, and security devices. Founded in 2014, the company has established itself as a significant partner across Europe, serving B2B clients in industrial and telecommunications sectors. The website reflects a professional and consistent brand presence with clear business information and contact details. Technically, the site is built on WordPress with modern frontend technologies such as jQuery, Slick Carousel, and Tailwind CSS, hosted by Active24, a reputable Czech hosting provider. The site is mobile-optimized and performs moderately well with good SEO practices.

F

FBC Došwich Milevsko z.s.

doswich.cz

56

FBC Došwich Milevsko is a Czech floorball sports club established in 2012, serving over 200 active members across various age groups. The club is well-positioned regionally within South Bohemia and actively participates in national and regional floorball leagues. Their website provides comprehensive information about teams, training, events, and club history, targeting local sports enthusiasts and community members. Technically, the site is built on WordPress using popular plugins for sports and event management, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and Google Analytics tracking implemented with opt-out options; however, the absence of security headers and privacy/cookie policies indicates room for improvement. The missing WHOIS data for the domain raises concerns about domain registration transparency but does not detract from the apparent legitimacy of the club's online presence. Overall, the website is professional, content-rich, and trustworthy for its intended audience.

L

La Vie Claire

lavieclaire.com

38

La Vie Claire is a well-established French retail company specializing in organic food and products, with a history dating back to 1948. It operates over 340 stores across France and offers a broad range of organic groceries, cosmetics, and household items. The company emphasizes sustainability, local sourcing, and environmental responsibility, positioning itself as the second largest specialized organic distribution chain in France. The website reflects a mature digital presence with comprehensive content, strong branding, and active social media engagement. Technically, the website is built on WordPress with modern libraries such as Gravity Forms, Swiper.js, and jQuery. It employs SEO best practices, accessibility features, and performance optimizations including WP Rocket. Cookie consent and privacy compliance mechanisms are implemented effectively. However, the WHOIS data for the domain is unavailable, which is unusual for a large retail brand and slightly reduces trust. Security posture is generally good with HTTPS enforced and CAPTCHA protections on forms, but lacks published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie management are comprehensive and GDPR compliant. Overall, the website is professional, secure, and user-friendly, serving its target audience well. Strategic improvements in transparency around domain registration and security policies would enhance trust and compliance further.

G

GroPulse

gropulse.com

36

GroPulse is a specialized provider of Shopify apps and custom themes aimed at simplifying and enhancing eCommerce success for Shopify store owners. The company emphasizes intuitive solutions and tailored services to streamline operations and support business growth. The website positions GroPulse as an experienced player with over 7 years in Shopify development, supported by strong customer reviews and a clear focus on Shopify platform integration. Technically, the website is built on WordPress using modern Gutenberg blocks and premium plugins, hosted with Cloudflare as registrar and DNS provider. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices including structured data and meta tags. Marketing and tracking are implemented primarily via Facebook Pixel. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There is no visible privacy policy, cookie consent mechanism, or incident response information, indicating gaps in compliance and security transparency. No critical vulnerabilities or malicious content were detected. Overall, GroPulse presents a credible and professional eCommerce technology business with room for improvement in privacy compliance and security best practices to enhance trust and regulatory adherence.

M

maerz architekten ag

maerz.ag

45

maerz architekten ag is a Swiss architecture firm specializing in architecture, development, spatial planning, and project realization. Operating as a subsidiary of RaumUnion AG, the company serves clients primarily within Switzerland, offering professional architectural services with a focus on quality and regional projects. The website presents a professional portfolio and clear contact information, reinforcing its market presence. Technically, the website is built on WordPress with modern technologies such as Alpine.js and jQuery, optimized for performance and mobile responsiveness. Hosting is provided by Hostpoint AG, inferred from DNS records. Google Analytics is integrated via Google Tag Manager, enabling moderate user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating potential compliance gaps with GDPR requirements. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security measures to strengthen its posture and user trust.

R

raumwerk ag

raumwerkag.ch

28

raumwerk ag is a Swiss-based company specializing in comprehensive and reliable construction processes, including project development, building permit procedures, realization phases, and project handover. As a total contractor and part of the RaumUnion AG group, raumwerk ag emphasizes responsible specialists, customer security, transparency, and quality execution. The company targets clients seeking trustworthy construction project management and related services in the real estate sector. The website reflects a professional and consistent brand image with clear contact information and a focus on service offerings. Technically, the website is built on WordPress with modern JavaScript libraries such as Alpine.js and jQuery. It uses WP Rocket for performance optimization and loads resources efficiently. The site is mobile-optimized and provides a good user experience with clear navigation. However, it lacks advanced SEO and accessibility features and does not implement security headers, which could be improved. From a security perspective, the site uses HTTPS with excellent SSL configuration, but no security headers were detected. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. No analytics or tracking scripts were found, indicating minimal user tracking. The WHOIS data is consistent with the business claims, showing legitimacy and domain age appropriate for the company's stated history. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident response to improve its security posture and regulatory adherence.

B

baumanager ag

baumanager.ag

48

baumanager ag is a Swiss-based architectural and construction project management company, operating as a small but specialized service provider. The company emphasizes holistic and innovative architectural solutions, coordinating project quality, costs, and timelines effectively. As a subsidiary of RaumUnion AG, it benefits from a reputable parent company association. The website is professionally designed using WordPress with modern frontend technologies, providing a good user experience and clear business information. However, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the website is trustworthy and serves its target audience well, but compliance and security enhancements are recommended.

M

MONTO, s.r.o.

monto.cz

52

MONTO, s.r.o. is a Czech company with an online presence via www.monto.cz. The website is primarily in Czech and appears to target local customers or business partners. The company is described as a successful purely Czech entity, but detailed business descriptions and services are not explicitly provided in the accessible content. Technically, the website is built on WordPress using the Divi theme and employs lazy loading scripts for performance optimization. However, the technical implementation is basic with moderate performance and limited mobile optimization. Security posture is weak due to lack of HTTPS verification in the provided data, absence of security headers, and no visible advanced security practices. Privacy compliance is minimal with no visible privacy or cookie policies, and no GDPR compliance indicators. Business credibility is moderate but hampered by missing contact information and lack of registrant transparency. Overall, the website is accessible and safe but requires improvements in security, privacy, and business transparency to enhance trust and compliance.

B

BALTRO GROUP, a.s.

baltro.cz

57

BALTRO GROUP, a.s. is a Czech Republic-based medium-sized manufacturing company specializing in surface treatments, robotics automation, and mechanical parts production. Established in 2011, the company serves industrial clients with tailored solutions including fluoroplastic coatings, robotized workstations, and machining services. The website reflects a professional and consistent brand image, highlighting key partnerships and certifications such as ISO 9001. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, hosted by WEDOS. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the company presents a trustworthy and credible digital presence aligned with its business operations.

Č

České houby a.s.

ceskehouby.cz

43

České houby a.s. operates a Czech-language website focused on the sale and promotion of Czech mushrooms and related products. The site includes an eShop, recipe content, and company information targeting consumers interested in culinary uses of mushrooms. The company appears to be a small retail business established in 2001, with a consistent domain registration history and a clear physical presence in the Czech Republic. Technically, the website is built on WordPress using the Divi theme and Slider Revolution plugin, hosted likely by WEDOS, and employs HTTPS with a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and some best practices, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is basic, with no clear privacy policy or terms of service pages found. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

A

Asociace výrobců kabelů a vodičů České republiky a Slovenské republiky

vyrobcikabelu.cz

53

The website represents the official association of cable and wire manufacturers in the Czech Republic and Slovakia, serving as a central information hub for industry members and customers. It provides updates on metal prices, quality standards, and industry news, positioning itself as a trusted regional industry association. The site is professionally designed with consistent branding and clear navigation, targeting both professional and lay audiences interested in cable manufacturing and related sectors. Technically, the site is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager. It employs multilingual support and cookie consent mechanisms, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and consent management but lacks some security headers and explicit policies. Security-wise, the site shows good practices in data protection and user consent but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data is a concern for domain transparency, though the site content and partner affiliations support legitimacy. Overall, the risk is moderate with recommendations to enhance security headers, privacy policies, and domain registration transparency. Strategically, the association should focus on improving compliance documentation and security posture to strengthen trust and regulatory adherence, while continuing to provide valuable industry content and maintain strong partner relationships.

M

Moravskoslezské Investice a Development, a.s.

poho2030.cz

54

POHO2030.cz is the official website for a regional transformational program focused on revitalizing the Pohornická landscape in the Karviná region of the Czech Republic. Coordinated by Moravskoslezské Investice a Development, a.s. (MSID), the program addresses the socio-economic transition following the closure of coal mines. The website provides detailed information about projects, events, and partners involved in this regional development initiative. The target audience includes local residents, investors, government entities, and cultural organizations. Technically, the site is built on WordPress with modern front-end libraries such as Swiper.js and Lottie animations, ensuring a visually engaging and mobile-optimized experience. However, it lacks visible privacy and cookie policies, which impacts compliance scores. Security posture is good with HTTPS enforced, but security headers are not evident. No forms or data collection mechanisms are present on the homepage, reducing immediate privacy risks. Overall, the site is professional, trustworthy, and serves as an effective communication platform for the regional development program.

The website marykaypromotion.de is a small German-language blog focused on philosophy topics. It is built on WordPress and hosted on German nameservers provided by netclusive.de. The site contains minimal content, primarily a single blog post and a contact button without a linked form or email address. There are no privacy, cookie, or terms of service policies present, and no explicit business or company information is provided. Technically, the site uses standard WordPress technologies and modern web fonts, with basic mobile optimization and accessibility features. Security posture is weak due to the absence of security headers, incident response contacts, and published security policies. No analytics or advertising tools are detected, indicating minimal user tracking. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for a general audience.

A

Apty

apty.io

67

Apty is an AI-powered digital adoption platform focused on accelerating business processes by reducing onboarding time, minimizing errors, and maximizing ROI. The company targets enterprise clients seeking to enhance digital adoption through advanced AI capabilities. The website is built on WordPress with modern plugins and technologies, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks published security policies and vulnerability disclosures. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site presents a professional and trustworthy business presence with room for improvement in privacy and security transparency.

R

Restaurant Falken

restaurant-falken.ch

55

Restaurant Falken is a small hospitality business based in Liestal, Switzerland, specializing in fresh lunch menus, including burgers, salads, and desserts. The restaurant emphasizes an alcohol-free environment and offers catering and take-away services. The website is built on WordPress using Elementor and Astra theme, reflecting a modern and responsive design with good SEO practices. The presence of a cookie consent banner and detailed cookie preference modal indicates compliance awareness with GDPR regulations, although no explicit privacy policy or terms of service pages were found. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response contact information. Overall, the website is professional and trustworthy, serving its local audience effectively.

R

RULEMATCH AG

rulematch.com

66

RULEMATCH AG operates a specialized spot cryptocurrency trading venue based in Switzerland, leveraging Nasdaq technology to serve banks, securities firms, and institutional clients. The company positions itself as a market operator focused on interbank trading and settlement of digital assets, emphasizing market integrity, AML/CFT compliance, and ultra-low latency trading. The website reflects a professional and modern digital presence with comprehensive trading documentation and news insights, targeting a niche institutional audience. Technically, the site is built on WordPress with modern SEO and privacy compliance tools, including Iubenda for cookie and privacy management, and Google Tag Manager for analytics. Security posture is solid with HTTPS and obfuscated contact details, though explicit security policies and incident response contacts are not publicly disclosed. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the presence of regulatory identifiers and professional content. Overall, RULEMATCH demonstrates a mature digital infrastructure suitable for its specialized financial services market.

R

Reformierte Kirchgemeinde Gelterkinden-Rickenbach-Tecknau

ref-gelterkinden.ch

46

The Reformierte Kirchgemeinde Gelterkinden-Rickenbach-Tecknau is a small non-profit religious community organization serving the local Swiss communities of Gelterkinden, Rickenbach, and Tecknau. The website provides comprehensive information about religious services, community events, youth and family programs, and educational offerings. It targets local community members and church attendees, emphasizing spiritual engagement and social support. The organization maintains a clear and consistent brand presence with regular content updates and accessible contact information. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Event Organiser, with a custom theme likely based on the Genesis Framework. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. SEO practices are adequate with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses anti-spam measures on contact forms but lacks visible security headers such as CSP or HSTS. There is no cookie consent mechanism, which may pose compliance risks under GDPR. No analytics or tracking scripts are detected, indicating minimal user tracking. WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional and trustworthy but could improve its privacy compliance and security posture. Strategic enhancements in security headers and cookie consent would strengthen user trust and regulatory adherence.

F

FAKTOR VIER

faktorvier.ch

58

FAKTOR VIER is a small, professional web agency based in Luzern, Switzerland, specializing in WordPress and WooCommerce development for custom websites and online shops. The company positions itself as a local expert with a focus on delivering tailored digital solutions to businesses and individuals seeking e-commerce and website services. The website reflects a good level of digital maturity, leveraging modern technologies such as WordPress, WooCommerce, Yoast SEO, and Font Awesome Pro icons, alongside cookie consent mechanisms to comply with privacy regulations. The technical infrastructure is sound, with moderate performance and good mobile optimization, although hosting details are not explicitly disclosed. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and explicit security policies indicates room for improvement. Privacy compliance is partial due to the lack of a published privacy policy and terms of service, which are critical for GDPR adherence. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation to strengthen compliance and user trust.

H

HEAD DRINKS | water, sport and energy drinks

head-drinks.com

45

HEAD DRINKS is a small beverage company specializing in water, sport, and energy drinks, targeting active and health-conscious consumers. The website is built on WordPress using the Divi theme, reflecting a standard CMS infrastructure with moderate digital maturity. The site design is professional and mobile-optimized, though navigation clarity and SEO could be improved. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC, indicating room for improvement in security hardening. Privacy compliance is weak due to absence of privacy and cookie policies, and no contact or incident response information is provided, which may impact user trust and regulatory compliance. Overall, the website is functional and relevant to its industry but requires enhancements in security and compliance to strengthen its risk profile.

E

Excelsior

excelsiorwater.cz

44

Excelsior is a small Czech-based business specializing in the production and sale of classic mineral water with a balanced ratio of magnesium and calcium. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with good SEO practices and multilingual support. The technical infrastructure includes modern JavaScript libraries and third-party services such as Google Analytics and Tawk.to for analytics and customer engagement. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

The website rudolfuvpramen.cz represents BHMW a.s., a small hospitality business operating the Mariánskolazaňský Rudolfův pramen, a healing spring in Mariánské Lázně, Czech Republic. The site provides information about the spring's healing properties, targeting general audiences interested in wellness and spa treatments. The business appears to have a local/regional market position with a focus on health and wellness services. Technically, the website is built on WordPress using the Divi theme, incorporating common plugins such as Google Analytics for tracking and Tawk.to for live chat support. The site is moderately optimized for mobile and SEO, with good content quality and consistent branding. Security-wise, HTTPS is enabled and no sensitive data is exposed, but the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the site is professional and trustworthy but lacks some critical compliance documentation.

M

Moravskoslezské energetické centrum, příspěvková organizace

mskec.cz

54

Moravskoslezské energetické centrum, p. o., is a Czech regional public organization founded in 2014, specializing in energy consulting, management, and clean mobility development for the Moravskoslezský kraj region. The organization provides expert advisory services to regional public institutions and municipalities, focusing on energy savings, renewable sources, and strategic regional development. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response details. Overall, the site is trustworthy, compliant with GDPR, and well-positioned as a regional energy consultancy.