Security Directory

W

WP App Studio

wpappstudio.com

63

WP App Studio is a specialized WordPress development platform offering a Platform-as-a-Service (PaaS) solution that enables users to build and maintain WordPress web applications efficiently without coding. The company targets WordPress developers and makers, providing tools for app design, code generation, and plugin creation. The business operates under eMarket Design LLC, with a domain registered since 2012, indicating established market presence. The website is professionally designed with clear navigation and relevant content, supporting a good user experience and trustworthiness. Technically, the site leverages WordPress CMS, various plugins, and third-party libraries, hosted on infrastructure involving Amazon Registrar and Cloudflare DNS services. Security posture is solid with HTTPS and domain protection statuses, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site demonstrates a mature digital presence with room for enhanced security and privacy practices.

B

BISON project

bison-transport.eu

53

The BISON project website serves as an informational and research dissemination platform focused on biodiversity and infrastructure synergies within European transport networks. The site targets stakeholders in the transport and environmental sectors, providing project updates, research outputs, and engagement opportunities. The business model is primarily research and knowledge sharing, positioning itself as a niche player in the European transport research community. Technically, the website is built on WordPress using the Divi theme, enhanced with SEO and analytics plugins such as Yoast SEO and MonsterInsights. The infrastructure is hosted by OVH SAS, a reputable hosting provider. The site demonstrates moderate performance and good mobile optimization, with structured data and meta tags implemented for SEO. From a security perspective, the site enforces HTTPS, includes standard security headers, and does not expose sensitive data. However, it lacks explicit security policies, vulnerability disclosure, and incident response information, which are recommended for enhanced trust and compliance. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website presents a professional and trustworthy front for the BISON project, with good content quality and technical implementation. Strategic recommendations include adding explicit security and incident response policies, improving accessibility features, and maintaining regular updates to plugins and themes to mitigate potential vulnerabilities.

E

ERTRAC

ertrac.org

74

ERTRAC is a European advisory council focused on road transport research and innovation, aiming to coordinate and promote sustainable, safe, and efficient mobility solutions. The website reflects a mature and professional organization targeting policymakers, researchers, and industry stakeholders in the transportation sector. The digital infrastructure is built on WordPress with modern plugins and themes, providing a good user experience with mobile optimization and SEO best practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy and well-maintained, supporting ERTRAC's role as a key player in European transport research.

S

SYMBIOSIS

symbiosis-transport.eu

67

SYMBIOSIS is a specialized research project focusing on systemic mobilisation for joint biodiversity and infrastructure, primarily in the transportation and energy sectors. The website serves as an informational platform targeting researchers, policymakers, and environmental stakeholders interested in sustainable infrastructure development. The digital infrastructure is built on WordPress using the Divi theme, with Matomo analytics integrated for user tracking. SEO is enhanced via the Yoast SEO plugin, indicating a moderate level of digital maturity. From a security perspective, the website employs HTTPS and is hosted by a reputable provider (OVH SAS). However, there is a lack of visible security headers and formal security policies, which suggests room for improvement in security posture. Privacy compliance is partially addressed through a cookie consent mechanism, but the absence of a clear privacy policy and terms of service reduces compliance confidence. Overall, the website is professionally designed with good content relevance and user experience. The absence of direct contact information and formal policies slightly impacts business credibility. The risk level is moderate, with recommendations focusing on enhancing security headers, publishing privacy and security policies, and improving contact transparency.

W

Wiz Team

wiz-team.com

66

Wiz Team operates a website offering event management software solutions under the brand Event Works. The company appears to be a small technology business founded in 2012, focusing on providing software tools for event organizers and related businesses. The website is built on WordPress using Elementor, indicating a modern but standard CMS infrastructure. The technical setup includes performance optimization plugins like WPRocket and anti-spam measures via CleanTalk, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and some security plugins, but lacks advanced security headers and formal policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and functional but would benefit from enhanced security and compliance documentation.

A

Apex Timing - Solutions logicielles pour les loisirs multiactivités et sports mécaniques

apex-timing.com

59

Apex Timing is a specialized software company providing comprehensive management solutions for leisure centers and karting activities, including leisure karting and competitive karting. The company offers integrated tools such as certified cash registers, online booking, timing systems, and customer management, serving a global clientele across 53 countries with over 800 clients. Their business model focuses on SaaS subscriptions and partnerships with other leisure and sports technology providers. Technically, the website is built on WordPress with Elementor and related plugins, delivering a professional and responsive user experience. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and incident response documentation are recommended. Overall, the company presents a trustworthy and mature digital presence, though the lack of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy.

Childhood Education International is a well-established international non-profit organization focused on advancing education and child development globally since 1892. The organization operates a professional website that highlights its global network, educational services, publications, and partnership opportunities. The site targets educators, donors, and partners interested in international development and education innovation. The business model centers on collaboration, professional learning, and advocacy to improve educational outcomes worldwide. The organization maintains a reputable market position with certifications and trust indicators supporting its credibility. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and multiple analytics and marketing tools. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Hosting and DNS are managed via reputable providers, with Cloudflare DNS and GoDaddy registrar. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks DNSSEC and explicit security headers. No critical vulnerabilities or exposed sensitive data were found. Privacy policies and terms of service are present and GDPR compliant. However, no explicit security policy or incident response contacts were identified, suggesting room for improvement in security governance. Overall, the website presents a professional, trustworthy, and content-rich platform for its audience. The risk profile is low with minor security enhancements recommended. Strategic focus on publishing security policies and enabling DNSSEC would strengthen the security posture and trust further.

C

Conselho Empresarial Para O Desenvolvimento Sustentavel

bcsdportugal.org

57

BCSD Portugal is a well-established business council focused on sustainability, representing over 190 Portuguese companies committed to sustainable transition. The organization operates as a non-profit entity, providing advocacy, networking, and support services to its members. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders interested in sustainability. Technically, the site is built on WordPress using the Divi theme, with integrations such as Google Analytics and Tag Manager for tracking. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring a secure connection. Security posture is generally good, though improvements can be made by enabling DNSSEC and implementing comprehensive security headers. Privacy compliance is lacking, with no visible privacy or cookie policies, which is a notable gap given the GDPR context. Overall, the domain registration data aligns well with the website's business claims, supporting its legitimacy.

Á

Área Metropolitana de Lisboa

aml.pt

47

Área Metropolitana de Lisboa (AML) is a regional government organization coordinating development policies across 18 municipalities in the Lisbon metropolitan area. The website serves as an official portal providing information on regional initiatives, cultural events, social development, and transport authority functions. AML holds a key position as a metropolitan authority facilitating economic, social, and environmental strategies in coordination with local governments. The site targets residents, local authorities, and stakeholders interested in regional development and public services. Technically, the website is built on WordPress with Bootstrap and jQuery, optimized for performance using WP Rocket, and supports multilingual content via Weglot. It employs modern web standards, including HTTPS, CSP, and cookie consent mechanisms, ensuring a secure and privacy-compliant user experience. Security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence for a government entity.

N

Národní divadlo Brno

ndbrno-onlinearchiv.cz

47

The website 'Archiv NDB – Online archiv' serves as an online archive for the National Theatre Brno, providing detailed historical information about theatre premieres, roles, and persons from 1884 to the present. It targets theatre enthusiasts, artists, students, and researchers interested in the cultural heritage of the National Theatre Brno. The site is professionally designed with consistent branding and links to official partner sites, establishing a trustworthy presence in its niche cultural sector. Technically, the site is built on WordPress with common plugins and a custom theme, hosted by Wedos, a known Czech hosting provider. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS usage but missing key security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is functional, safe, and credible but would benefit from enhanced security and compliance measures.

N

Národní divadlo Brno, p. o.

janacek-brno.cz

58

Janáček Brno is an internationally recognized opera and music festival organized by Národní divadlo Brno, a reputable cultural institution in the Czech Republic. The festival celebrates the legacy of composer Leoš Janáček and holds a strong position in the European cultural landscape, evidenced by its International Opera Awards recognition. The website is professionally designed, multilingual, and provides comprehensive information about the festival, partners, and media resources. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and GDPR compliance mechanisms, though some security headers could be improved. Overall, the site reflects a mature and trustworthy cultural event with strong business credibility.

M

MATERI’ACT

materiact.fr

65

MATERI’ACT is a sustainability-focused subsidiary of FORVIA, specializing in developing innovative materials that reduce CO₂ emissions and replace virgin plastics in automotive applications. The website presents a professional and modern digital presence, leveraging WordPress CMS with advanced SEO and privacy tools such as Yoast SEO and Matomo Analytics. The site is well-structured, mobile-optimized, and provides comprehensive information about the company's mission, challenges, and solutions in the sustainable materials sector. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS registrant data is a concern but likely due to privacy protection or recent domain registration. Overall, the site reflects a credible and professional business entity with a clear focus on environmental innovation.

D

DUOSEG

duoseg.com

48

DUOSEG is a Portuguese insurance consultancy specializing in a broad range of personal and business insurance products, including niche offerings such as motorsport insurance and affinity partnerships. The company positions itself as a trusted partner for both individuals and enterprises, supported by client testimonials and partnerships with major insurance providers. The website is built on a modern WordPress platform using the Avada theme and several popular plugins, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and provides clear contact channels, enhancing user experience and business credibility. Security posture is generally good with HTTPS enforced and secure forms, but lacks advanced security headers and visible privacy compliance documentation. The absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, though the website content and external references support its authenticity. Strategic improvements in privacy compliance, security headers, and domain registration transparency would strengthen overall trust and compliance.

C

Confederação do Desporto de Portugal

cdp.pt

46

Confederação do Desporto de Portugal is a Portuguese sports confederation representing various sports organizations and promoting sports activities nationally. The website is built on WordPress using the Divi theme and incorporates SEO enhancements via Rank Math. It demonstrates a moderate level of digital maturity with good design, mobile optimization, and SEO practices. Security posture is adequate with HTTPS enabled and SSL well configured; however, the absence of security headers and vulnerability disclosure mechanisms indicates room for improvement. Privacy compliance is minimal due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance documentation.

REGBU.COM is a Czech-based online media website launched in 2021, offering articles across various lifestyle and technology categories. The site uses WordPress CMS with multilingual support via TranslatePress and monetizes through Google AdSense advertising. The technical infrastructure includes Cloudflare DNS and standard web technologies such as jQuery and Google Fonts. While the site is accessible and uses HTTPS, it lacks critical compliance documents such as privacy policy and terms of service, and does not provide explicit contact information. Security posture is moderate with no advanced security headers or DNSSEC enabled. Overall, the site appears to be a small-scale media outlet with basic digital maturity and moderate security controls.

A

ASITIS

asitis.cz

59

ASITIS is a specialized consultancy focused on climate change adaptation and mitigation, offering services primarily in energy, sustainability, water management, regional development, and urban greenery. The company targets municipalities, public sector entities, and private firms, positioning itself as a trusted partner in the Czech Republic for climate-related strategic planning and reporting. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, it is built on WordPress with modern performance and analytics tools integrated, including Google Tag Manager and Usermaven. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and explicit incident response contacts are missing. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and adding incident response contacts to further strengthen compliance and trust.

A

Autonómia Alapítvány

autonomia.hu

41

Autonómia Alapítvány is a well-established Hungarian non-profit organization focused on strengthening civil society and supporting marginalized groups, particularly Roma integration. Operating since 1990, it delivers community development programs, advocacy, and international cooperation. The website reflects a professional and consistent brand presence with clear contact information and social media integration. Technically, the site is built on WordPress with modern libraries such as jQuery and Bootstrap, and integrates Google Maps and analytics tools. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though it lacks some security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and serves its audience effectively.

Közösségfejlesztők Egyesülete is a Hungarian non-profit organization dedicated to community development, social programs, and professional support within civil society and local development sectors. The website serves as an informational and resource platform for community developers and related stakeholders, offering training, publications, and event information. The organization has an established presence since 2014, reflected in the domain age and content maturity. Technically, the website is built on WordPress with a modern tech stack including jQuery and standard JavaScript libraries. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit incident response information. Privacy compliance is partially met with privacy and cookie policies present, though a cookie consent mechanism is missing. Overall, the website is professional and trustworthy, serving its niche audience effectively.

E

European Transport Safety Council

etsc.eu

46

The European Transport Safety Council (ETSC) operates as a Brussels-based independent non-profit organization dedicated to reducing deaths and injuries in European transport. The website serves as a comprehensive platform for advocacy, research dissemination, policy recommendations, and public engagement on road safety issues. It targets policymakers, transport safety professionals, media, and the general public interested in transport safety. ETSC holds a recognized position in the European transport safety sector, offering key services including research publications, policy advocacy, and organizing safety-related projects and events. Technically, the website is built on WordPress with a modern tech stack including JavaScript, PHP, and various plugins for SEO, caching, and analytics. It demonstrates good performance, mobile optimization, and accessibility. The site uses HTTPS with a good SSL configuration and employs security best practices such as CAPTCHA on forms and cookie consent mechanisms. However, some security headers are not explicitly detected and could be improved. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent, and GDPR adherence. Contact information is clearly provided, enhancing trust and credibility. No incident response or vulnerability disclosure policies are found, which could be areas for future enhancement. Overall, ETSC's website is professional, trustworthy, and well-aligned with its mission. It effectively balances content quality, technical implementation, security, and privacy compliance, resulting in a high AI score of 87. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular security audits to sustain and improve its security posture.

The website 'Magazín Cyklostrategie.cz' is a Slovak language content blog providing informational articles across a broad range of topics including energy, home, business, sports, and construction. It targets a general audience interested in products and services on the internet. The site operates on a WordPress platform with common web technologies such as Bootstrap, jQuery, and Font Awesome, indicating a moderate level of technical maturity. The design and user experience are good with clear navigation and mobile optimization. However, the site lacks critical business contact information, privacy policies, and terms of service, which impacts its credibility and compliance posture. Security-wise, HTTPS is enabled but security headers are missing, and no incident response or vulnerability disclosure mechanisms are present. The absence of WHOIS data reduces trust in domain legitimacy. Overall, the site is functional and informative but requires improvements in compliance, security, and business transparency to enhance trust and professionalism.

Nitehog USA LLC is a small technology company specializing in the development, manufacturing, and distribution of advanced thermal imaging devices. Their product portfolio includes compact and high-performance thermal sights designed for outdoor, tactical, and precision shooting applications. The company maintains a professional online presence with clear contact information and active social media channels, positioning itself as a trusted provider in the thermal imaging market. Technically, the website is built on WordPress using the Twenty Seventeen theme and leverages common plugins such as Everest Forms. The site is moderately optimized for performance and mobile responsiveness, with good SEO and accessibility features. However, there is room for improvement in security practices, particularly the implementation of security headers and enhanced privacy compliance. From a security perspective, the site uses HTTPS and secure forms but lacks important security headers and privacy/cookie policies, which are critical for GDPR compliance and user trust. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and contact details suggest a legitimate business operation. Overall, the website presents a professional and functional digital front for Nitehog USA but should address privacy, security headers, and domain registration transparency to strengthen its security posture and compliance standing.

A

AproapeAcasă

aproapeacasa.ro

48

AproapeAcasă is a Romanian real estate platform launched recently in 2024, offering property listings, free evaluations, and professional consultancy to facilitate buying, selling, and renting homes. The website is built on WordPress with modern SEO and marketing tools, targeting individuals and businesses in Romania seeking real estate solutions. The platform positions itself as a trusted intermediary with premium promotion services and dedicated support. Technically, the site uses a solid WordPress infrastructure with Elementor and various plugins, hosted under a Romanian registrar with DNS via Cloudflare. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and functional but would benefit from enhanced privacy and security measures.

H

Hrdí na rodinu

hrdinarodinu.sk

43

Hrdí na rodinu is a Slovak non-profit organization focused on promoting traditional family values through events such as the National March 'Hrdí na rodinu'. The website serves as an informational and promotional platform for their annual event, providing program details, partner information, and ways to get involved. The organization targets individuals and families who support the traditional family model in Slovakia. Technically, the website is built on WordPress using Elementor, with standard web technologies and moderate performance. Security posture is adequate with HTTPS and some security plugin presence, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

F

FMP - Federação de Motociclismo de Portugal

fmp.pt

41

FMP - Federação de Motociclismo de Portugal is the national governing body for motorcycling sports in Portugal, providing licensing, event organization, and news dissemination to motorcycling enthusiasts and members. The website serves as an information hub with news, multimedia content, and member services, positioning itself as a trusted federation in the Portuguese motorsport sector. Technically, the site is built on WordPress with a modern theme and SEO optimizations, integrating social media and multimedia platforms effectively. Security posture is solid with HTTPS and some security best practices, though it lacks advanced security headers and explicit incident response contacts. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in privacy and security disclosures.

E

Epic Eventos

epiceventos.pt

43

Epic Eventos is a Portuguese event services company specializing in both virtual and real event experiences, including branded campaigns such as those for Toyota. The website is built on WordPress using modern plugins like WPBakery Page Builder and Slider Revolution, with integration of Google reCAPTCHA and CookieYes for privacy compliance. The technical infrastructure reflects a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and anti-bot measures, though lacks advanced security headers and published security policies. Privacy compliance is partially met with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

O

Objectivos Desenvolvimento Sustentável

ods.pt

52

The website ods.pt is a Portuguese non-profit platform dedicated to promoting the United Nations Sustainable Development Goals (ODS) and the 2030 Agenda. It serves as an educational and advocacy resource primarily targeting Portuguese-speaking businesses and organizations interested in sustainability. The site is affiliated with BCSD Portugal and offers masterclasses, case studies, and resources to integrate sustainability into corporate strategies. The market position is niche, focusing on sustainability awareness and corporate engagement within Portugal. Technically, the website is built on WordPress using the Elementor page builder, enhanced with SEO plugins like Rank Math and tracking via Google Analytics. The site demonstrates moderate performance and good mobile optimization, with a clean and professional design. However, some accessibility features are basic, and there is room for improvement in SEO and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and does not expose sensitive data or vulnerable libraries. However, it lacks important security headers and does not provide a security.txt or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Business credibility is strong with clear organizational information and trust signals such as official UN imagery and structured data. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security practices to improve its risk posture and user trust.

C

CLIKT.com

clikt.com

64

CLIKT.com is a small business technology service provider specializing in digital marketing, social media, web design, AI, content management, and e-learning solutions. The company targets small businesses and technology users, leveraging open-source tools to keep costs down and adhering to industry standards. The website presents a professional image with a clear portfolio of client projects and a range of marketing and business tools integrated into its offerings. The domain is mature, registered since 2006, and hosted via GoDaddy, indicating a stable online presence. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, with integrations for Google Analytics and Google Tag Manager for tracking and marketing insights. The site demonstrates good mobile optimization and basic accessibility features, though there is room for improvement in performance and security hardening. The technical stack includes modern web technologies and third-party marketing tools, reflecting a moderate level of digital maturity. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and explicit security or incident response policies. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. The WHOIS data is consistent and trustworthy, with no privacy protection masking the registrant information. Overall, the security posture is moderate but could be enhanced with better policy disclosures and technical controls. The overall risk assessment suggests a generally trustworthy and professional website with minor compliance and security gaps. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing incident response information to improve trust and compliance.

G

Green NCAP

greenncap.com

55

Green NCAP is a consortium-driven platform providing independent and official environmental assessments of new vehicles, focusing on how green cars are through star ratings and life cycle assessments. The website serves consumers, automotive industry stakeholders, and environmental organizations by offering detailed vehicle ratings, award recognitions, and educational content. Technically, the site is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, and uses Matomo for analytics and Google reCAPTCHA v3 for form security. The site is well-structured, mobile-optimized, and SEO-friendly, with comprehensive privacy and cookie policies indicating GDPR compliance. Security posture is good with HTTPS and anti-bot measures, though explicit security policies and incident response information are absent. The WHOIS data for the domain is missing, which raises some concerns about domain registration transparency, but the professional content and consistent branding support legitimacy. Overall, the site is a reliable resource for green vehicle information with moderate technical maturity and a solid security baseline.

T

The Sigrid Rausing Trust

sigrid-rausing-trust.org

62

The Sigrid Rausing Trust is a well-established philanthropic grant-making foundation based in London, founded in 1995. It focuses on supporting human rights, open societies, and environmental causes globally. The website reflects a professional and consistent brand image, targeting non-profit organizations and social causes. The Trust operates with a significant endowment and a clear mission to fund impactful programs. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and cookie consent tools, ensuring a good user experience and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response policies are absent. WHOIS data is privacy protected, which is typical and justified for this type of organization. Overall, the website is trustworthy, compliant with privacy regulations, and professionally maintained.

A

Asitis

asitisready.com

56

Asitis is a newly established consulting company specializing in climate change adaptation and mitigation, targeting firms, municipalities, and other entities primarily in the energy sector. The company leverages a team of experienced experts and modern technologies to prepare clients for climate change impacts. The website is professionally designed using WordPress with modern tools and demonstrates good digital maturity with SEO and analytics integrations. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and DNSSEC are missing. No critical vulnerabilities or exposed sensitive data were found. Overall, the site reflects a trustworthy and professional business presence with room for enhanced security policies and incident response information.

I

Ing. Karel Melecký

karelmelecky.cz

44

Ing. Karel Melecký operates a professional website offering senior UX/UI design, SEO copywriting, and consultation services primarily targeting businesses and teams in need of content and design expertise. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. The technical infrastructure is based on WordPress with common plugins such as Yoast SEO and Contact Form 7, hosted likely via Czech providers consistent with the domain registrar data. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates a high level of professionalism and trustworthiness with clear contact information and client testimonials. No critical security or compliance issues were detected.

P

Pardini USA LLC

pardiniguns.com

55

Pardini USA LLC operates as the US importer and supporter of Pardini Armi, a manufacturer specializing in high-quality sports firearms used in international competitions such as ISSF World Championships and the Olympics. The company targets competitive shooters and firearm enthusiasts, offering a range of pistols, rifles, accessories, and training services. The website is professionally designed using WordPress, featuring detailed product information, technical articles, and customer testimonials, supporting a niche market position in competitive shooting sports. Technically, the website employs a standard WordPress CMS with the Twenty Seventeen theme and uses jQuery and Everest Forms for functionality. Google Tag Manager is integrated for analytics. The site is HTTPS secured, though it lacks some advanced security headers and cookie consent mechanisms. Performance and mobile optimization are adequate, with good SEO and accessibility basics. Security posture is moderate with HTTPS enforced and no visible vulnerabilities, but improvements are recommended in security headers and privacy compliance. The absence of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness, despite the professional appearance and clear contact information. No incident response or vulnerability disclosure information is provided. Overall, the website presents a credible business front with solid content and technical implementation but should address domain registration transparency and enhance security and privacy compliance to improve trust and reduce risk.

zeroheight is a mature SaaS company founded in 2015 that provides a centralized platform for design system documentation and collaboration, targeting design, engineering, product, and marketing teams. The company is well-positioned in the technology sector with a strong market presence, evidenced by trusted clients such as Adobe, Uber, and Guardian. Their platform integrates with popular design and development tools, offering automation, governance, and community engagement features. Technically, the website is built on WordPress hosted on AWS, leveraging modern analytics and marketing technologies with proper consent mechanisms. The site is fast, mobile-optimized, and SEO-friendly, reflecting a high level of digital maturity. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be enhanced. Privacy compliance is strong with clear policies and cookie consent. Overall, zeroheight demonstrates a professional, trustworthy online presence with extensive resources and community support.

C

Charleston Hub

charleston-hub.com

65

Charleston Hub is a niche media outlet providing news and updates focused on libraries, publishers, book jobbers, and subscription agents. The website serves a specialized audience within the publishing and library sectors, delivering industry news and insights. Technically, the site is built on WordPress using the Divi theme and incorporates common plugins such as MonsterInsights for analytics and Advanced Ads for advertising management. The site is well-structured with good SEO practices and mobile optimization. Security-wise, the site uses HTTPS and has implemented some best practices, but lacks certain security headers and a vulnerability disclosure mechanism. The absence of WHOIS registrant data raises concerns about domain legitimacy, although the site appears professionally maintained and active. Overall, the site presents moderate risk but would benefit from improved transparency and security enhancements.

M

Mezinárodní vězeňské společenství z.s.

mvs.cz

61

Mezinárodní vězeňské společenství z.s. is a Czech non-profit organization established in 1998, dedicated to providing social support to victims of crime, prisoners, their families, and released individuals. The organization operates a professional website with a clear mission, active content updates, and multiple programs targeting various affected groups. The website is built on WordPress with modern plugins for SEO, events, and social media integration, hosted by Websupport. Security posture is good with HTTPS enabled and GDPR compliance evident through cookie consent mechanisms and privacy policies. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a mature digital presence suitable for its non-profit mission.

N

Národní divadlo Brno

ndbrno.cz

56

Národní divadlo Brno is a prominent cultural institution in the Czech Republic, offering a wide range of performing arts including opera, ballet, drama, and concerts. It operates multiple venues such as Mahenovo divadlo, Janáčkovo divadlo, and divadlo Reduta, targeting a broad audience from general public to young and mature theatergoers. The website reflects a well-established organization with a strong market position in the cultural sector, providing ticket sales, educational programs, and outreach activities. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Google Tag Manager, and various plugins for SEO, multilingual support, and cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a valid SSL certificate and employs cookie consent mechanisms compliant with GDPR. However, explicit security headers are not detected, and no public security policy or incident response information is available. The WHOIS data is unavailable, likely due to privacy protection, but the domain and website content show no suspicious indicators. Overall, the website presents a professional, trustworthy, and user-friendly platform for the national theatre, with good privacy compliance and moderate security posture. Strategic improvements in security headers and incident response transparency are recommended to enhance trust and resilience.

M

MATERI’ACT

materiact.com

65

MATERI’ACT is a subsidiary of FORVIA focused on developing sustainable materials that tackle the plastic crisis by innovating with recycled plastics and biomass alternatives for automotive applications. The company positions itself as a forward-thinking innovator aiming to reduce CO₂ emissions significantly in vehicle interiors. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting automotive industry stakeholders and sustainability advocates. Technically, the site uses WordPress with modern plugins and privacy-respecting analytics (Matomo), and implements a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers could be improved. The lack of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Contact information is limited to a contact form, with no direct emails or phone numbers published. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in domain registration and contact details.

S

Studio Kolárka

studiokolarka.cz

43

Studio Kolárka is a small cultural and educational theatre studio based in the Czech Republic, offering theatre courses, performances, and creative week events primarily targeting adults and theatre enthusiasts. The website is built on WordPress using modern plugins such as Elementor, Yoast SEO, and Revolution Slider, indicating a moderate level of digital maturity. The site is well-structured with good content quality and consistent branding, supported by active social media integration. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance documentation. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for small organizations. Overall, the site is professional and trustworthy with room for improvement in privacy and security practices.

M

Mateřské centrum Veselý Paleček, z.s.

veselypalecek.cz

53

Mateřské centrum Veselý Paleček, z.s. is a Czech non-profit community center focused on providing educational and recreational activities for parents, especially mothers on maternity leave, and their children. The organization operates locally in the Blansko and Boskovice regions, offering services such as children's creative workshops, Montessori educational approaches, parent-child exercise classes, and social/legal counseling. The website reflects a small-sized, community-oriented entity with a clear mission to support families and children. Technically, the website is built on WordPress using the Mesmerize theme and several plugins including Yoast SEO, Contact Form 7, and Cookie Law Info. It integrates Google Analytics and Google Maps API for tracking and location services. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. Hosting and domain registration are consistent with the Czech location, provided by Wedos. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers in the HTML source. Cookie consent mechanisms are implemented, supporting GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the Google Analytics plugin is not fully configured, and security headers like Content-Security-Policy and X-Frame-Options are not explicitly present, which could be improved. Overall, the website presents a trustworthy and professional online presence for a local non-profit organization. The risk profile is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, completing analytics configuration, and maintaining regular security updates to strengthen the security posture further.

N

NOHO

cihlovka.cz

52

The website cihlovka.cz represents a real estate development project by NOHO focused on revitalizing the Kukleny district in Hradec Králové, Czech Republic. It highlights sustainable residential buildings, including the first passive house in the city, and offers modern living solutions with amenities such as carsharing and proximity to public transport. The site is professionally designed using WordPress and WPBakery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and Wordfence plugin presence, but lacks visible security headers and privacy policies, indicating room for improvement in compliance and security best practices. Overall, the domain registration is consistent with the business claims, supporting legitimacy and trustworthiness.

U

UrbanReport

urbanreport.ro

54

UrbanReport is an online Romanian media publication focused on urban life, providing news, articles, and analyses related to lifestyle, health, fitness, and general urban topics. The website targets a general audience interested in staying informed about urban living. The business operates primarily as a digital media outlet with a small-scale presence and consistent branding. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, indicating a moderate level of digital maturity. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and explicit privacy and terms of service pages. Security posture is adequate but could be improved with better header implementation and clearer compliance documentation. Overall, the site is professional and trustworthy with no signs of malicious content or adult material.

R

RichmondShare Blog | High quality content and interaction in the ELT world | RichmondShare is a free-access blog aimed at teachers and future teachers of English as a Foreign Language where ELT professionals (authors, editors, teachers educators, teachers etc) share their ideas, experiences and reflections.

richmondshare.com.br

68

RichmondShare is a niche educational blog focused on English Language Teaching (ELT) professionals and future teachers, primarily targeting the Brazilian market. The website serves as a free-access platform for sharing ideas, experiences, and reflections within the ELT community. It operates on a WordPress CMS with standard SEO optimizations and integrates Google Analytics and Tag Manager for visitor tracking. Hosting infrastructure appears to be on Amazon AWS, providing reliable performance and scalability. The site demonstrates good mobile optimization and accessibility basics, supporting a positive user experience for its audience. However, the absence of explicit privacy and terms of service pages, as well as contact information, limits its compliance and business transparency. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published policies. Overall, RichmondShare is a credible educational resource with room for improvement in privacy compliance and business information transparency.

S

Studio River

studioriver.fr

36

Studio River is a French award-winning motion design studio specializing in creative storytelling and video production. Their website showcases a professional portfolio of short films and motion design projects for notable clients in luxury and technology sectors. The company targets creative agencies, brands, and media professionals seeking high-quality motion design services. Technically, the website is built on WordPress using the Salient theme and employs modern web technologies including jQuery, Google Analytics, and Vimeo video integration. The site is mobile-optimized, fast-loading, and well-structured with clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are absent. Privacy and cookie policies are not explicitly found, indicating compliance gaps. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security disclosures.

A

Afipre - Fabrico de Ferramentas de Corte com Rigor e Precisão

afipre.pt

47

Afipre – Ferramentas de Corte, Lda is a Portuguese manufacturer specializing in precision cutting tools for the metalworking and metal-mechanical industries. With 25 years of experience, the company offers a range of services including consultancy, sharpening and repair, PVD coatings, and stock management, targeting industrial manufacturers seeking productivity improvements. The website is built on WordPress using modern plugins like Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is well-designed, mobile-optimized, and SEO-friendly, but lacks explicit privacy and cookie policies, as well as incident response or vulnerability disclosure information. Security posture is adequate with HTTPS enabled, but missing security headers and formal security policies reduce the overall security maturity. No blocking or WAF challenges were detected, allowing full content access and analysis.

V

VisionSpace

visionspace.com

57

VisionSpace is a specialized technology company focused on satellite operations, cybersecurity, and AI solutions primarily serving the space and defense sectors. The company offers end-to-end services including consultancy, product development, and ground segment AIV, positioning itself as a niche expert in these high-technology domains. The website reflects a professional and consistent brand image with comprehensive service descriptions and active social media engagement. Technically, the website is built on WordPress using Elementor and Slider Revolution, leveraging modern web technologies and fonts from Google and Adobe. The site is hosted with GoDaddy and employs HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is adequately addressed with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS and a cookie consent mechanism compliant with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a long-established domain with consistent registration details, enhancing trustworthiness. Overall, VisionSpace presents a secure, professional, and compliant online presence suitable for its target audience. Strategic improvements in security headers, incident response transparency, and accessibility could further strengthen its posture.

T

TRISOLARIS

trisolaris.com

55

TRISOLARIS is a technology company focused on advancing solutions and innovating technologies, as reflected in their website content and branding. The company appears to be small-sized, founded in 2015, with a professional web presence built on WordPress using Elementor and Astra theme. Their market positioning is technology-oriented, targeting clients interested in advanced technology solutions. The website demonstrates good digital maturity with SEO optimization, mobile responsiveness, and integration of analytics tools such as Google Analytics via MonsterInsights. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though there is room for improvement in implementing security headers and publishing explicit security policies. Overall, the website is professional and trustworthy with moderate risk and no critical vulnerabilities detected.

M

Meditor DAS

m-das.com

42

Meditor DAS is a specialized technical engineering company providing solutions in reliability and data systems primarily for the industrial, aerospace, and military sectors. Their offerings include integrated logistic support, technical publications, and training services such as ASD-STE100. The company operates a professional WordPress-based website with a consistent brand image and clear navigation, targeting B2B clients in niche technical markets. The domain registration and hosting details align well with the company's stated history and business focus, indicating legitimacy and stability. Technically, the website uses modern frameworks and plugins but lacks some advanced security configurations such as DNSSEC and security headers. Privacy and cookie policies are absent, representing compliance gaps. Overall, the website is professional and trustworthy but could improve in privacy and security posture.

K

KIT-AR

kit-ar.com

59

KIT-AR is a specialized technology company providing augmented reality solutions for quality assurance in manufacturing environments. Their platform aims to reduce costs and errors on the shopfloor by digitizing quality assurance processes and upskilling workers. The company targets manufacturing sectors such as automotive, aerospace, and electronics, positioning itself as a niche B2B provider with a focus on continuous improvement and digital transformation. The website presents professional branding, case studies with reputable clients, and clear calls to action, indicating a mature business presence. Technically, the website is built on WordPress using modern plugins and frameworks such as Genesis Framework, Slider Revolution, and Yoast SEO. It employs Google reCAPTCHA for form security and Matomo for privacy-conscious analytics. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements anti-bot measures but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, representing a compliance gap with GDPR and other privacy regulations. Contact information is clearly provided, but no formal security or incident response policies are published. Overall, KIT-AR's website reflects a credible and professional business with solid technical foundations but could improve its privacy compliance and security posture. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure process.

I

IBERMICRA

ibermicra.pt

48

IBERMICRA is a specialized technology and manufacturing company focused on providing high precision tooling and machining solutions primarily for the aerospace, defense, and aeronautics sectors. With over three decades of expertise, the company integrates advanced engineering and manufacturing technologies to deliver customized solutions tailored to client needs. Their key services include special moulds for composite parts, high precision machining of metals and composites, advanced metrology solutions, and custom tooling for assembly and cure fixtures. The company targets B2B clients in aerospace and automotive industries, positioning itself as a niche provider of sophisticated tooling and machining services. Technically, the website is built on WordPress using Elementor and Elementor Pro, leveraging modern web technologies and optimized for mobile devices. The site employs HTTPS with excellent SSL configuration and uses WP Rocket for performance optimization. The website demonstrates good accessibility and SEO practices, although no advanced analytics or tracking services are detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and shows no signs of exposed sensitive data or vulnerable libraries. However, it lacks security headers and explicit security or incident response policies, which are recommended for enhanced protection and compliance. Privacy compliance is partial, with a terms and conditions page present but no cookie consent mechanism or detailed privacy policy addressing GDPR requirements. Overall, the website and business appear legitimate and professionally managed, with a strong focus on quality and client-specific manufacturing solutions. Strategic improvements in privacy compliance and security policy transparency would further strengthen trust and regulatory adherence.

Iberica - Indústria de Componentes Metálicos S.A. is a medium-sized manufacturing company based in Portugal, specializing in steel and aluminum components for electric vehicles, automotive, and motorcycle industries, as well as producing bicycles for bike sharing services. Founded in 1964, Iberica has established itself as an internationally recognized supplier with a strong focus on quality and innovation. The website reflects a professional business presence with clear descriptions of its business areas, technology capabilities, and commitment to quality manufacturing. Technically, the website is built on WordPress using modern frameworks such as Bootstrap and Elementor, with integrations for Google Analytics and cookie consent mechanisms. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks advanced security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were found. Privacy compliance is basic, with a privacy policy and cookie consent but no explicit GDPR data retention details or data protection officer contact. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security headers, incident response transparency, and enhanced privacy compliance would further strengthen its posture.