Security Directory

I

International Distribution Services plc

royalmailgroup.com

55

International Distribution Services plc is a large UK-based holding company primarily managing Royal Mail and GLS, two major players in the postal and parcel delivery industry. The company focuses on providing mail and parcel distribution services across the UK and Europe, targeting businesses, investors, and customers requiring reliable logistics solutions. The website reflects a professional corporate presence with consistent branding and clear navigation, supporting its market position as a key logistics provider. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, uses Google Tag Manager for analytics, and implements Cookiebot for cookie consent management. The CMS identified is Umbraco, indicating a mature content management approach. Performance and mobile optimization are good, with accessibility and SEO features well implemented. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data reduces trust slightly, but the presence of official company registration details and consistent branding mitigates concerns. Overall, the website is secure, professional, and compliant with privacy regulations, though improvements in transparency around security policies and incident response are recommended to enhance trust and compliance.

I

International Distribution Services plc

internationaldistributionservices.com

58

International Distribution Services plc is a large UK-based holding company specializing in parcel and mail distribution services, owning major subsidiaries such as Royal Mail and GLS. The company operates in the transportation sector with a focus on logistics and multi-channel parcel delivery solutions. The website reflects a professional corporate presence targeting investors, customers, and regulatory bodies. Technically, the site uses modern JavaScript libraries, Google Tag Manager for analytics, and Cookiebot for cookie consent, built on the Umbraco CMS platform. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, well-branded, and provides comprehensive business information aligned with WHOIS data.

D

dTest, o.p.s.

spotrebaprozivot.cz

51

The website 'Spotřeba pro život' is an educational platform operated by dTest, o.p.s., a Czech non-profit organization focused on consumer rights and awareness. It hosts a student competition aimed at secondary and vocational school students to create consumer magazines, promoting consumer education and digital literacy. The site is well-positioned within the Czech educational and non-profit sector, leveraging partnerships with recognized consumer organizations and public figures. Technically, the site is built on WordPress with common plugins for SEO and cookie management, providing a moderate performance and good mobile experience. Security posture is solid with HTTPS and minimal cookie usage, though additional security headers and policies could enhance trust. The absence of WHOIS data is a concern but is mitigated by the site's association with a reputable organization. Overall, the site is professional, trustworthy, and serves its educational mission effectively.

5

50skills

50skills.com

67

50skills is a technology company specializing in no-code AI workflow automation solutions designed to streamline and optimize business processes across departments such as HR, IT, finance, and operations. Their platform offers a visual workflow builder, AI agent designer, form builder, and integration studio, targeting businesses seeking to automate repetitive tasks and scale operations efficiently. The website presents a professional and consistent brand image with clear product offerings and a focus on ease of use and AI-driven automation. Technically, the site is built on Webflow with modern libraries and integrates Google Analytics and CookieHub for analytics and compliance. Security posture is solid with HTTPS and cookie consent, though explicit privacy and terms policies are missing. WHOIS data is unavailable, which slightly reduces trust but the overall digital presence supports legitimacy. Recommendations include adding comprehensive privacy and security policies, improving accessibility, and publishing vulnerability disclosure information.

F

Findomestic

findomestic.it

71

Findomestic is a well-established Italian financial services company specializing in personal loans, mortgages, credit cards, and other banking products. The website presents a professional and user-friendly interface powered by Adobe Experience Manager, with strong mobile optimization and accessibility features. The company provides clear contact information and social media presence, enhancing trust and customer engagement. The cookie consent mechanism is robust, leveraging OneTrust to ensure GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the website reflects a mature digital infrastructure suitable for a large financial institution.

K

Kaiser Permanente

kaiserpermanente.org

11

Kaiser Permanente is a leading integrated healthcare organization providing customized care and coverage to consumers primarily in the United States. The website serves as a portal for health plans, medical services, wellness resources, and member support, reflecting a mature and enterprise-level digital presence. The company is well positioned in the healthcare sector with a strong brand and comprehensive service offerings. Technically, the site leverages Adobe Experience Manager and integrates multiple advanced analytics and marketing tools, ensuring a modern, performant, and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information could be enhanced. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

I

Isopan

isopan.com

67

Isopan is a well-established Italian manufacturer specializing in insulating sandwich panels for roofs and walls, operating under the Manni Group umbrella. The company offers innovative and sustainable building solutions, targeting construction professionals such as architects, engineers, and contractors. Their product portfolio includes premium systems like FORTELIA and ADDMIRA, supported by certifications such as LEED and FM APPROVED, indicating a strong commitment to quality and sustainability. The website is professionally designed, mobile-optimized, and incorporates modern technologies including WordPress CMS, Google Tag Manager, and Iubenda for cookie consent management. Security measures include HTTPS enforcement and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is supported by a cookie consent mechanism, but no explicit privacy policy or terms of service were detected in the provided content. WHOIS data confirms a long-standing domain registered in Italy with privacy protection, consistent with the business profile. Overall, the digital presence reflects a mature and credible industrial manufacturer with room for enhanced transparency and security documentation.

T

Technologické inovační centrum s.r.o.

ticzlin.cz

48

Technologické inovační centrum s.r.o. (TIC) is a regional innovation and business development center based in Zlín, Czech Republic. The company focuses on supporting entrepreneurs, schools, and regional development through various programs including education, business incubation, financing facilitation, and smart regional initiatives. TIC positions itself as a key innovation hub in the Zlín region, leveraging partnerships with local government and educational institutions. The website is professionally designed, multilingual, and provides comprehensive information about services, events, and projects. Technically, the site runs on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the overall digital presence and business information support legitimacy. Strategic recommendations include enhancing security policies, publishing incident response information, and verifying domain registration details.

K

Korálkárna Rooya

rooya.cz

57

Korálkárna Rooya is a Czech Republic based e-commerce retailer specializing in materials for beadwork, wirework, and jewelry crafting. Established since 2005, it serves hobbyists and crafters with a wide range of products including beads, jewelry components, crafting tools, and instructional content. The website is professionally designed with good navigation and mobile optimization, leveraging the Shoptet e-commerce platform and integrating multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook SDK. Security posture is adequate with HTTPS enforced and secure login forms, though improvements can be made by adding explicit security headers and updating legacy libraries. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data reduces domain trustworthiness, warranting further investigation. Overall, the site presents a trustworthy and professional online presence in its niche market.

C

Clinton Health Access Initiative

clintonhealthaccess.org

11

The Clinton Health Access Initiative (CHAI) is a well-established nonprofit global health organization dedicated to improving healthcare access and outcomes worldwide. The website reflects a mature digital presence with comprehensive program information, a clear mission, and extensive resources targeting governments, donors, and health partners. The organization operates in multiple health sectors including infectious diseases, women and children's health, non-communicable diseases, and health systems strengthening, positioning itself as a key player in global health initiatives. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as Google Tag Manager, Facebook Pixel, and SEO optimization tools like Yoast SEO. The site demonstrates good performance, mobile optimization, and accessibility features, supporting a positive user experience and effective outreach. From a security perspective, the site enforces HTTPS, includes essential security headers, and employs GDPR-compliant recaptcha mechanisms. While no critical vulnerabilities or exposed sensitive data were detected, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and preparedness. Overall, the website presents a trustworthy and professional image consistent with a large nonprofit organization. The lack of publicly available WHOIS data is attributed to privacy protection, which is justified for this entity type. Strategic recommendations include enhancing security policy disclosures, incident response information, and vulnerability disclosure mechanisms to further strengthen trust and compliance.

I

Integrate

integrate.com

70

Integrate is a technology company specializing in lead management and data governance solutions for enterprise B2B marketers. Their platform focuses on ensuring lead data is clean, compliant, and actionable, enabling marketers to optimize revenue generation. The website demonstrates a mature digital presence with comprehensive content, customer success stories, and a clear value proposition. Technically, the site is built on WordPress with modern JavaScript libraries and integrates analytics and marketing tools such as HubSpot and Google Tag Manager. Security posture is strong with HTTPS enforced and privacy mechanisms in place, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and trust signals support legitimacy. Overall, Integrate presents a robust, enterprise-grade SaaS offering with a well-optimized web presence.

C

CURSOR.cz

cursor.cz

53

CURSOR.cz is a small Czech Republic-based company specializing in web design and graphic services primarily for business clients. The company has been operating since 2004, offering services such as website creation, SEO optimization, domain registration, hosting, and various graphic design works including logos and print advertising. The website is professionally designed with good navigation and content relevance, targeting local businesses seeking digital presence and branding solutions. Technically, the site uses modern JavaScript libraries like jQuery and Slippry slider, integrates Google Tag Manager and Google Analytics for tracking, and is hosted likely by Active24. The site is mobile optimized and implements a comprehensive cookie consent mechanism in compliance with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. No contact emails or phone numbers are directly visible, and no terms of service or incident response policies are published, which could be improved for better trust and compliance. Overall, the website is safe, professional, and trustworthy with room for enhancements in security documentation and contact transparency.

T

Tropical Health and Education Trust (THET)

thet.org

70

The Tropical Health and Education Trust (THET) operates as a non-profit organization focused on supporting health workers globally through partnerships, capacity building, and policy work. The website positions THET as an established entity with a clear mission and vision to improve healthcare access worldwide. Their key services include grant management, volunteer programs, and digital transformation initiatives, targeting health workers, donors, and global health stakeholders. The organization is UK-based with a charity registration number, reinforcing its legitimacy. Technically, the website is built on WordPress with modern JavaScript libraries and integrations such as Google Tag Manager, Hotjar, and Google reCAPTCHA to enhance user experience and security. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and employs reCAPTCHA on forms, indicating a baseline security posture. However, the absence of visible security headers and a cookie consent mechanism suggests areas for improvement in compliance and defense-in-depth strategies. The WHOIS data is unavailable due to privacy protection or query issues, but the website's content and trust signals mitigate concerns about legitimacy. Overall, the website presents a professional, trustworthy, and content-rich platform for THET's mission. Strategic recommendations include enhancing security headers, implementing explicit cookie consent, publishing incident response policies, and improving WHOIS transparency where possible.

P

Památník Tomáše Bati

pamatnikbata.eu

46

Památník Tomáše Bati is a cultural heritage and museum website dedicated to the memorial of Tomáš Baťa, a prominent figure in Zlín's history and architecture. The site targets visitors interested in architecture, history, and cultural tourism, offering guided tours, ticket sales, and event hosting. The website is professionally designed with clear navigation, multilingual support, and strong branding consistency. Technically, it is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The domain registration is consistent with the business's Czech origin, enhancing trustworthiness. Overall, the site presents a secure, compliant, and user-friendly platform for cultural engagement.

S

Statutární město Zlín

zlin.eu

66

The website https://zlin.eu/ serves as the official online presence of the statutory city of Zlín in the Czech Republic. It provides comprehensive information about the city's administration, culture, events, public services, and citizen engagement platforms. The site targets residents, local businesses, and visitors, offering services such as an official citizen portal, public notices, event calendars, and contact information for municipal departments. The business model is that of a government entity providing transparent and accessible information and services to its constituents. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Google Tag Manager, Google reCAPTCHA, OneSignal push notifications, and various UI libraries such as Slick Carousel and SweetAlert2. It is hosted by Media4web, s.r.o., a Czech hosting provider. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured navigation. Cookie consent and privacy policies are implemented with high confidence in GDPR compliance. From a security perspective, the site enforces HTTPS with a Content Security Policy header and uses Google reCAPTCHA to protect forms. While no critical vulnerabilities or exposed sensitive data were detected, additional security headers could enhance protection. There is no explicit security incident response or vulnerability disclosure information published, which could be improved to strengthen trust and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively serves its role as a municipal information hub with a strong digital presence. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clear incident response contacts to further improve security posture and stakeholder confidence.

The website visitzlin.eu serves as the official tourist information portal for the city of Zlín, Czech Republic. It provides comprehensive information about the city, including cultural events, historical background, practical visitor information, and local attractions. The portal targets tourists, local residents, and visitors interested in exploring Zlín and its surroundings. The business model is a government-operated informational service aimed at promoting tourism and local culture. Technically, the site employs a custom CMS with a modern JavaScript technology stack including jQuery and various UI libraries such as Slick Carousel and FullCalendar. It integrates Google services like Maps API, Analytics, Tag Manager, and reCAPTCHA for security and tracking. The site is hosted by Media4web, s.r.o., a Czech hosting provider, and uses HTTPS with a Content-Security-Policy header, indicating a good security baseline. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CAPTCHA protection on forms. However, it lacks some additional security headers and a visible cookie consent mechanism, which are important for GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is transparent and consistent with the website's official city affiliation, supporting its legitimacy. Overall, the website is a well-maintained, regionally focused government portal with good content quality and technical implementation. It could improve privacy compliance and security posture by adding cookie consent, security policies, and additional headers. The risk level is low, with no critical issues detected.

N

Nadační fond Zikmundova vila

zikmundovavila.cz

45

Zikmundova vila is a cultural heritage site located in Zlín, Czech Republic, managed by the Nadační fond Zikmundova vila, a non-profit organization founded in 2020. The website provides rich historical and cultural information about the villa, its notable past residents, and ongoing cultural programs. It targets a broad audience including tourists, cultural enthusiasts, and the general public interested in history and architecture. The organization positions itself as a key cultural institution in the region, offering guided tours, educational events, and long-term projects supported by regional and international partners.

The website visitzlin.eu serves as the official tourist information portal for the city of Zlín, Czech Republic. It provides comprehensive information about the city, including cultural events, historical background, practical visitor information, and local attractions. The portal is operated by the city's magistrate and targets tourists, local residents, and cultural enthusiasts. It holds a strong market position as the authoritative source for tourism-related content in the region. Technically, the website employs a modern JavaScript-based tech stack including jQuery, FullCalendar, Slick Carousel, and Google Maps API. It uses HTTPS with a Content-Security-Policy header and integrates Google Analytics and reCAPTCHA for analytics and bot protection. The site is mobile-optimized with good navigation and content structure, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses CSP headers, but lacks several other recommended security headers. The subscription form is protected by Google reCAPTCHA. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a cookie consent mechanism and explicit security or incident response policies indicates room for improvement in privacy compliance. Overall, the website is trustworthy, professionally maintained, and aligned with its municipal purpose. Strategic recommendations include enhancing security headers, implementing cookie consent for GDPR compliance, publishing security policies, and maintaining regular security audits to ensure ongoing protection.

T

Tropical Health and Education Trust (THET)

globalhealthpartnerships.org

70

The Tropical Health and Education Trust (THET) operates as a UK-based non-profit organization dedicated to supporting health workers globally through partnerships, grant management, policy work, and volunteer programs. The website positions THET as an established entity with a clear mission and vision focused on universal health coverage and quality healthcare access worldwide. The organization targets health professionals, donors, volunteers, and policy makers, leveraging partnerships and digital transformation to advance its goals. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Hotjar, and Google reCAPTCHA for security and analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers and cookie consent mechanisms could enhance compliance and security posture. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security headers and incident response information suggests room for improvement. WHOIS data is unavailable due to privacy protection, which is common and justified for non-profits, but it slightly reduces trust signals. Overall, the website is professional, trustworthy, and well-maintained, with strong content quality and business credibility. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security policies to further strengthen compliance and user trust.

H

Health Orientation Kft.

managedoc.com

55

ManageDoc is a Hungarian-based healthcare technology company offering an online medical appointment scheduling system tailored for individual practitioners and medical institutions. The platform facilitates efficient appointment management through a web-based interface and integrates with partner sites such as MeetDoc.com to enhance patient acquisition. The website is built on WordPress with Bootstrap and includes modern UI elements and tracking via Google Analytics and Tag Manager. Security posture is moderate with SSL encryption but lacks some security headers and cookie consent mechanisms. WHOIS data for the subdomain is unavailable, which is expected, but the main domain appears legitimate with consistent business information. Overall, the platform presents a professional and trustworthy service for healthcare providers in Hungary.

The Instituto de Mayores y Servicios Sociales (Imserso) is a Spanish government agency dedicated to providing social services and support to elderly and disabled populations. The website serves as an official portal offering information on programs such as tourism, termalism, autonomy, dependency, pensions, and social benefits. It targets pensioners, elderly citizens, and persons with disabilities in Spain. The site is well-branded, consistent, and professionally maintained, reflecting its status as a public institution. Technically, the website is built on the Liferay platform, utilizing modern web technologies including jQuery, React, and Bootstrap. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with appropriate security headers, indicating a strong security posture. However, some areas such as explicit security policies and incident response contacts could be improved. Security-wise, the site shows no signs of vulnerabilities or malicious content. Privacy and cookie policies are present and appear GDPR compliant. No direct contact emails or phone numbers are visible, which is common for government portals but could be enhanced for user support. The WHOIS data is unavailable due to query restrictions, but the domain is a .es official domain consistent with Spanish government use. Overall, the website is trustworthy, secure, and serves its public service mission effectively. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing security policy visibility, and improving contact information accessibility to further strengthen trust and compliance.

G

GE Vernova

gevernova.com

72

GE Vernova is a leading energy technology company focused on electrification and decarbonization solutions. The website presents a professional and comprehensive digital presence, showcasing a broad portfolio of energy services including power generation, wind, nuclear, and advanced research. The technical infrastructure is modern, leveraging Drupal 10 CMS, Google Analytics, and reCAPTCHA for security. Privacy and cookie policies are well implemented with user consent mechanisms. Security posture is strong with HTTPS and secure forms, though explicit security policies and incident response contacts are absent. The WHOIS data is missing or inconsistent, which raises some legitimacy concerns despite the professional branding and content. Overall, the website is well designed, accessible, and trustworthy from a content and technical perspective but would benefit from improved transparency on domain registration and security policies.

A

Advertising Engineers

advertising-engineers.com

46

Advertising Engineers is a small Czech advertising agency based in Zlín, specializing in honest and straightforward advertising services. Their website reflects a professional but modest digital presence built on WordPress, with a focus on regional identity and client trust. The technical infrastructure uses common web technologies such as jQuery, Bootstrap, and Google Analytics, with SEO optimized by Yoast. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and DNSSEC. No direct contact information or detailed security policies are published, which limits transparency. Overall, the site is functional and compliant with GDPR cookie requirements but could improve in security and contact accessibility.

R

Reklamní Inženýři

reklamni-inzinieri.sk

36

Reklamní Inženýři is a small Slovak advertising agency established in 2015, specializing in honest and effective marketing campaigns. The company emphasizes regional pride and a straightforward approach to client service. Their website is built on WordPress with a modern tech stack including Bootstrap and jQuery, optimized for mobile and SEO with Yoast SEO and Complianz GDPR compliance plugins. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security headers and detailed security policies. No direct contact emails or phone numbers are present on the homepage, which slightly impacts business credibility. Overall, the website is professional and trustworthy with moderate user tracking via Google Analytics.

C

Continental Tires

continental-me.com

53

Continental Tires Middle East operates as a regional landing platform for the established global tire manufacturer Continental AG, targeting consumers and businesses in the Middle East and North Africa (MENA) region. The website facilitates language and country selection to direct users to localized content and services, including tire dealer location and vehicle-specific tire information. The business model focuses on B2C and B2B tire sales and distribution, leveraging Continental's strong brand recognition and market presence. The site positions itself as a reliable regional resource for Continental Tires products and services.

P

Philippe Tytgat

philippetytgat.fr

42

Philippe Tytgat's website serves as a personal portfolio showcasing graphic design services including identity, event, illustration, edition, signage, and typography. The site targets a general audience interested in creative design work, positioning itself as a niche individual designer portfolio. The business appears to be a small-scale operation founded in 2020, with a consistent and professional branding approach. Technically, the website uses standard web technologies such as HTML5, CSS3, JavaScript, jQuery, and Slick Carousel, hosted by OVH. The site is moderately optimized for mobile devices and has a good user experience with clear navigation and relevant content. Security posture is basic, with no advanced security headers or policies detected, and no privacy or cookie policies present, indicating room for improvement in compliance and security best practices. No contact information or social media links are explicitly provided, which may limit user engagement and trust. Overall, the website is functional and professional but would benefit from enhanced security measures, privacy compliance, and clearer contact channels.

FUJIFILM KYOWA KIRIN BIOLOGICS Co., Ltd. is a medium-sized healthcare company specializing in biosimilar pharmaceuticals. The website serves as a corporate portal providing information about biosimilars, product pipelines, corporate data, and solutions. The company is positioned as a reputable player in the biosimilar market with established partnerships and product approvals in Japan and Europe. The website targets healthcare professionals, industry stakeholders, and potential partners. Technically, the website uses a traditional tech stack including jQuery, Slick Carousel, and marketing/analytics tools such as Marketo and Google Analytics. While the site is moderately optimized for performance and accessibility, some technical debt is evident, such as the use of an outdated jQuery version and lack of DNSSEC. The site is hosted securely with HTTPS but lacks advanced security headers. From a security perspective, the website demonstrates a basic but solid posture with HTTPS enforcement and domain transfer protections. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of cookie consent mechanisms despite having a cookie policy indicates partial privacy compliance. No direct contact emails or phone numbers are provided, with contact limited to an external form. Overall, the website is professional, trustworthy, and safe for general audiences. The AI score reflects good content quality and business credibility but highlights areas for security and privacy improvements. Strategic recommendations include upgrading outdated libraries, enabling DNSSEC, implementing security headers, and enhancing privacy compliance mechanisms.

K

Continue

knesl.com

56

The website knesl.com appears to be a small business or personal site built on WordPress, with a focus on providing contact via a form. The domain is well-established, registered since 2006, and hosted on Wedos servers. The site uses common WordPress technologies and plugins such as Jetpack and Slick Carousel. However, the website lacks critical privacy and cookie policies, terms of service, and explicit contact information such as emails or phone numbers, which limits its compliance and trustworthiness. Security posture is basic, with no DNSSEC enabled and no security headers detected. The site is accessible without WAF or blocking mechanisms, but the content is minimal and lacks comprehensive business or security information.

N

Nidec Global Appliance (Embraco)

embraco.com

68

Embraco, a brand under Nidec Global Appliance, is a large manufacturing company specializing in refrigeration compressors and cooling solutions for household and commercial applications. The website presents a professional and comprehensive portfolio of products and services targeting refrigeration professionals and businesses globally. The site is multilingual and well-structured, reflecting a mature digital presence. Technically, the website is built on WordPress with Elementor and uses modern JavaScript libraries and tracking technologies, indicating a moderate to high level of digital maturity. Security posture is good with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies. However, the absence of WHOIS registration data and explicit security headers suggests areas for improvement. Overall, the website is trustworthy and professionally maintained, though domain registration transparency should be verified further.

A

Amref Health Africa UK

amrefuk.org

56

Amref Health Africa UK is a well-established non-profit organization focused on improving health outcomes across 35 African countries. The website clearly communicates their mission, impact, and key services including health worker training, community partnerships, and advocacy. Their market position as a leading African health NGO is supported by detailed impact statistics and a professional online presence. Technically, the website uses modern JavaScript libraries, is mobile optimized, and employs a reputable CMS (Umbraco). Security posture is good with HTTPS and domain status protections, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and well maintained.

T

Type Department

type-department.com

70

Type Department is a small UK-based e-commerce business specializing in selling fonts and mockups targeted at creatives and designers. The website operates on the Shopify platform, leveraging a modern tech stack including jQuery, Slick Carousel, and FontAwesome, with integrations for marketing and analytics such as Mailchimp and Facebook Pixel. The site demonstrates good digital maturity with fast performance, mobile optimization, and clear navigation. Security posture is solid with HTTPS enforced and domain lock statuses, though improvements such as enabling DNSSEC and adding security headers could enhance protection. Privacy compliance is addressed with a cookie consent banner and a privacy policy aligned with GDPR. Overall, the business presents a professional and trustworthy online presence with a niche market focus.

T

Thomas Bouville

thomasbouville.fr

45

Thomas Bouville is an independent graphic designer based in Lille, France, specializing in typography, visual identity, website design, and edition. The website serves as a professional portfolio showcasing various projects primarily in graphic design and typeface creation. The target audience includes design professionals and clients seeking specialized graphic design services. The business operates as a small independent entity with a niche focus on typography and visual identity. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, Adobe Typekit fonts, and the Slick Carousel library. The site is mobile optimized and well-structured, providing a good user experience and professional design quality. However, there is a lack of detected security headers and no visible privacy or cookie policies, which are compliance gaps. The WHOIS data for the domain is not available, which raises concerns about domain registration legitimacy and trustworthiness. Overall, the website is professional and trustworthy in content but would benefit from improved security and privacy compliance measures.

A

Atelier Jérôme Knebusch

jeromeknebusch.net

48

Atelier Jérôme Knebusch is a Franco-German graphic, editorial, and type design practice based in Frankfurt am Main, Germany. The website showcases a professional portfolio of custom typefaces, visual identities, and editorial projects primarily serving educational and cultural institutions. The business operates as a small specialized design studio with a focus on bespoke creative services and type design. The domain age and WHOIS data align well with the business history, indicating a stable and legitimate presence since 2006. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Slick Carousel for galleries. It is hosted by Scaleway SAS and uses HTTPS, ensuring secure communication. However, the site lacks DNSSEC and important security headers, which are recommended to enhance security posture. The website is mobile-optimized with good navigation and professional design quality, though SEO and accessibility features are basic. From a security perspective, the site has a good baseline with HTTPS and domain transfer protection but lacks explicit security policies, incident response contacts, and privacy/cookie policies, which are critical for GDPR compliance and user trust. No analytics or tracking scripts were detected, indicating minimal user tracking. The absence of privacy and cookie policies is a compliance gap that should be addressed. Overall, the website is a trustworthy and professional representation of a niche design practice with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and publishing incident response information to enhance trust and compliance.

K

key4events

key4events.com

70

Key4events is a French-based company specializing in IT solutions and services for event management, including physical, virtual, and hybrid events. Their flagship software suite, K4FUSION, integrates with third-party applications to streamline event operations, complemented by K4PROD event services and K4ACADEMY training initiatives. The company targets a diverse audience including scientific societies, PCOs, agencies, enterprises, associations, and institutional clients, positioning itself as an experienced player with over 20 years in the market. The website reflects a professional and consistent brand image with good content quality and clear navigation.

R

Reklamní Inženýři

reklamni-inzenyri.cz

46

Reklamní Inženýři is a Czech Republic based advertising agency founded in 2014, specializing in creative advertising services including graphic design and video production. The company positions itself as a local agency proud of its Zlín roots, emphasizing honest and high-quality work without overpromising. Their market presence is regional with a focus on media and advertising clients. Technically, the website is built on WordPress with common frontend libraries such as jQuery and Bootstrap, hosted on miniserver.cz. The site is mobile optimized and SEO friendly with good content quality and consistent branding. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a cookie policy and consent mechanism present, but no visible privacy policy page or incident response contacts. Overall, the website is professional and trustworthy with moderate risk and room for security and compliance improvements.

L

Lewest s.r.o.

lewest.cz

47

Lewest s.r.o. is a Czech Republic based digital marketing and web development agency specializing in creating websites, e-shops, online marketing campaigns, and training services. The company positions itself as a creative and professional partner for clients seeking modern web solutions and effective marketing strategies. Their website reflects a well-structured service offering with clear calls to action and client references, targeting businesses looking to enhance their online presence. Technically, the website employs a modern tech stack including Bootstrap 4, jQuery, Font Awesome, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Smartsupp Live Chat. The site is mobile optimized and demonstrates good SEO practices. However, some security headers are missing, and no explicit cookie consent mechanism is present, indicating room for improvement in privacy compliance. From a security perspective, the site uses HTTPS and includes GDPR consent on forms, but lacks published security policies or incident response contacts. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and professional. Overall, the site maintains a moderate to good security posture but should enhance transparency and security headers. Strategically, Lewest should focus on improving privacy and security disclosures, implementing cookie consent banners, and publishing incident response information to strengthen trust. Regular audits of third-party scripts and security headers will further enhance their security posture and compliance with evolving regulations.

Z

ZONER a.s.

zonerantivirus.cz

44

ZONER a.s. operates the website zonerantivirus.cz, offering modern antivirus solutions primarily targeting Windows 10/11 desktops and Android smartphones. The company has a strong market presence in the Czech Republic with millions of users, providing free antivirus software with optional paid upgrades. The website is professionally designed, multilingual, and provides clear product information and download options. The business model focuses on freeware distribution supplemented by premium features for mobile security. The company maintains a consistent brand image and provides comprehensive cookie and privacy policies, demonstrating compliance with GDPR regulations. Technically, the website is built on WordPress CMS with modern frameworks such as Bootstrap and uses popular libraries like jQuery and Font Awesome. It integrates Google reCAPTCHA for form security and employs SEO best practices including structured data (JSON-LD). Hosting is managed by RegZone, consistent with the domain's WHOIS data. The site is mobile-optimized and performs moderately well, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements cookie consent mechanisms. However, explicit security policies and incident response contacts are not found, and security headers are missing. No vulnerabilities or suspicious domains were detected. The WHOIS data aligns well with the website content, supporting legitimacy and trustworthiness. Overall, zonerantivirus.cz presents a trustworthy and professional online presence for ZONER a.s., with good privacy compliance and a solid technical foundation. Strategic improvements in security policy transparency and technical security headers would enhance the security posture further.

Z

ZONER a.s.

zonercloud.cz

71

ZonerCloud, operated by ZONER a.s., is a leading Czech cloud service provider offering a wide range of cloud computing solutions including VPS, managed servers, email hosting, AI/GPU servers, and cloud storage. The company emphasizes high performance, rapid server provisioning, and strong availability guarantees, positioning itself as a market leader in the Czech Republic. Their services cater primarily to businesses and professionals requiring reliable and scalable cloud infrastructure. Technically, the website is built on modern frameworks such as Bootstrap and jQuery, with integrations for analytics and marketing tools like Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The infrastructure leverages virtualization platforms including VMware, Hyper-V, and Proxmox VE, indicating a mature and robust technical environment. The site is well-optimized for performance, mobile responsiveness, and accessibility. From a security perspective, the site enforces HTTPS with DigiCert SSL certificates and implements security best practices such as DKIM/SPF for email, regular backups, and spam/antivirus protections. However, explicit incident response policies and security contact information are not publicly available, representing an area for improvement. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place. Overall, the website and business present a professional and trustworthy image with high-quality content and strong market positioning. The absence of WHOIS data is a notable anomaly but does not significantly detract from the overall credibility given the extensive trust signals and certifications displayed. Strategic recommendations include enhancing transparency around security incident handling and maintaining vigilance on third-party tracking scripts to uphold privacy standards.

A

Arthrex Knee Preservation

acltear.com

57

The website www.acltear.com serves as an informational and patient education platform focused on ACL injury treatment options, including minimally invasive surgical procedures such as ACL repair and reconstruction. It targets patients of all ages, including pediatric and adult populations, providing detailed treatment descriptions, patient stories, and resources to find doctors. The site is branded under Arthrex Knee Preservation, a recognized name in orthopedic medical devices and treatments, indicating a strong market position in specialized healthcare. Technically, the site is built on Webflow with modern web technologies, including Google Tag Manager and Hotjar for analytics, and OneTrust for cookie consent management. The design is professional, mobile-optimized, and content-rich, supporting a good user experience and SEO. Security posture is moderate; HTTPS is implied, and content sanitization is used, but no explicit security headers or vulnerability disclosures are present. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy or terms of service. WHOIS data is missing or unavailable, which raises concerns about domain registration transparency despite the legitimate business branding. Overall, the site is a credible healthcare resource but would benefit from improved transparency and security practices.

S

SOCOS IT s.r.o.

socosit.cz

55

SOCOS IT s.r.o. is a Czech software company specializing in the development of proprietary software solutions for efficient and secure electronic document management, including their flagship DOCU-X DMS and DOCU-X OCR products. The company targets businesses seeking to automate and streamline document processing, contract management, invoice handling, and ISO documentation workflows. Established since 2011, SOCOS IT positions itself as a trusted local provider with a solid client and partner ecosystem. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Snitcher Radar, and Leady, alongside integration with HubSpot and Atlassian for support and demos. The site is well-structured, mobile-optimized, and uses HTTPS with valid SSL certificates, though it lacks some security headers and explicit privacy and security policies. The WHOIS data is unavailable, which slightly impacts trust but does not negate the evident business legitimacy. Overall, the company demonstrates a mature digital presence with room for improvement in security transparency and compliance documentation.

A

ANGELINI PHARMA PORTUGAL UNIPESSOAL LDA.

harmoniamentis.pt

68

Harmonia Mentis Portugal is a professional healthcare platform operated by Angelini Pharma Portugal, focused on mental health content for healthcare professionals. The platform offers scientific articles, podcasts, and updates related to mental health, with access controlled via login and registration portals hosted on related Angelini Pharma domains. The website branding and content align closely with the parent company, indicating a strong market position in the pharmaceutical healthcare niche in Portugal. Technically, the website uses a modern JavaScript stack including jQuery, Mustache.js, and WaveSurfer.js, with Piwik PRO analytics for user tracking. The site is mobile optimized and uses HTTPS with good SSL configuration. However, some standard security headers are not visibly implemented, and no explicit security or incident response policies are published on the site. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and anonymized analytics tracking. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is supported by clear privacy and cookie policies with consent mechanisms, though GDPR-specific details could be more explicit. Business credibility is high due to consistent branding, professional content, and WHOIS data alignment. Overall, the website presents a low-risk profile with good technical and business maturity. Strategic improvements could include publishing a dedicated security policy, incident response contacts, and enhancing security headers to further strengthen the security posture.

A

Aula Angelini

aulaangelini.com

70

Aula Angelini is an online education platform focused on providing training and professional development for healthcare professionals in Spain. It operates under the Angelini Pharma group, offering a niche service in healthcare education. The website is well-branded and consistent, targeting healthcare professionals with relevant content and services. Technically, the site uses modern JavaScript libraries, a proprietary frontend framework, and integrates Piwik PRO for analytics and consent management. The platform employs secure authentication via Angelini ID, enhancing user security. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

Angelini Pharma Zug S.p.A., Rom - Zweigniederlassung Zug

harmoniamentis.ch

70

Harmoniamentis.ch is a healthcare-focused platform dedicated to brain health, particularly epilepsy, operated under Angelini Pharma Zug S.p.A. The website serves patients and healthcare professionals by providing educational content, resources, and updates on neurological diseases. It positions itself as a niche informational and support resource within the healthcare sector in Switzerland, leveraging the reputation and backing of Angelini Pharma. Technically, the site uses a modern JavaScript stack with libraries such as jQuery, Mustache, and WaveSurfer, and is built on the Umbraco CMS platform. The site is mobile-optimized and incorporates SEO best practices, though some accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policy and incident response information. Privacy compliance is good with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

K

Koordinátor veřejné dopravy Zlínského kraje, s.r.o.

idzetka.cz

44

The website idzetka.cz serves as an e-commerce and informational platform for the Zetka public transport card in the Zlín Region of the Czech Republic. It offers services such as card registration, login, anonymous purchase options, and ordering new cards. The site targets residents and travelers using public transportation in the region, positioning itself as a regional transport service provider with a medium-sized operational scope. The business is relatively young, founded around 2020, and operates under the legal entity Koordinátor veřejné dopravy Zlínského kraje, s.r.o. Technically, the website employs a modern but standard technology stack including jQuery, Bootstrap, Font Awesome, and other JavaScript libraries to provide a responsive and user-friendly experience. Hosting is managed by WEDOS, a Czech hosting provider, consistent with the business location. The site demonstrates moderate performance and good mobile optimization but lacks some advanced SEO and accessibility features. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, it lacks explicit security headers such as Content-Security-Policy and does not provide a cookie consent mechanism, which may affect GDPR compliance. No incident response or security policy information is published, and no vulnerability disclosure or security.txt files are present. The WHOIS data is transparent and consistent with the business, supporting legitimacy. Overall, the website is professionally designed and trustworthy for its intended audience but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

H

Hokejový klub Tigers Zlín a.s.

tigerszlin.cz

45

Hokejový klub Tigers Zlín a.s. operates a professional and regionally focused hockey club website serving fans, players, and the local community in the Czech Republic. The site provides comprehensive information about the club's activities, youth teams, match reports, and merchandise offerings, positioning itself as a central hub for Tigers Zlín supporters and participants. The business model centers on sports club operations, youth training, and fan engagement through merchandise sales and event promotion. Technically, the website employs a modern but straightforward technology stack including jQuery, Slick Carousel, and LightGallery for interactive content presentation. Hosting is provided by a Czech hosting provider, and the site is mobile-optimized with good SEO practices. However, accessibility features are basic, and no major CMS or frameworks are detected. From a security perspective, the site uses HTTPS and implements a detailed cookie consent mechanism compliant with GDPR principles. However, it lacks explicit security headers and does not provide a dedicated privacy policy or incident response contact information, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is professionally designed and functional with moderate security and privacy compliance. Strategic enhancements in security headers, privacy documentation, and incident response readiness would strengthen its posture and trustworthiness.

W

Waberer Medical Center

robotsebeszem.hu

43

Robotsebészem.hu is a Hungarian private healthcare website specializing in robot-assisted surgeries, operated by Waberer Medical Center. The site positions itself as a pioneer in private robot-assisted surgeries in Hungary, offering services in urology, gynecology, and general surgery. The target audience is local patients seeking advanced surgical options. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Revolution Slider, and Gravity Forms for user engagement and data collection. Social media integration and a newsletter signup enhance user interaction. Security posture is solid with HTTPS and secure forms, though some improvements are recommended such as adding security headers and explicit cookie consent mechanisms. The domain registration is recent but consistent with the business launch, and no suspicious WHOIS data is present. Overall, the website demonstrates good business credibility and technical maturity with room for enhanced privacy compliance.

C

Caliber Healthcare Solutions

hclocumtenens.com

73

Caliber Healthcare Solutions operates as a specialized healthcare staffing agency focusing on locum tenens placements. The company emphasizes a provider-centric approach, offering autonomy, flexibility, and mobility to healthcare professionals while supporting healthcare facilities with reliable staffing solutions. Their market position is strong within the US healthcare staffing sector, supported by specialty-focused teams and a commitment to provider satisfaction and facility partnerships. Technically, the website is built on the Webflow platform, leveraging modern analytics and marketing tools such as Google Tag Manager, HubSpot, and Crazy Egg. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of visible security headers and a formal security policy page suggests room for improvement. The WHOIS data is missing, which raises some concerns about domain transparency, but the overall website professionalism and business information support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to strengthen trust and compliance.

M

Massachusetts General Hospital

protomag.com

57

Proto Magazine is a reputable medical journalism publication operated by Massachusetts General Hospital, providing in-depth articles, podcasts, and insights on medical research, clinical care, and health policy. The website targets healthcare professionals, researchers, and an informed public interested in medicine. Its market position is that of a niche authoritative media outlet affiliated with a prestigious healthcare institution. Technically, the site is built on WordPress with a modern tech stack including jQuery and various plugins for enhanced user experience. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is solid with HTTPS and no exposed sensitive data, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Business credibility is high due to transparent WHOIS data, consistent branding, and affiliation with a trusted hospital. Overall, the site is professional, trustworthy, and safe for general audiences.

O

Ostrava

zdravaova.cz

65

ZdraváOVA is the official environmental web portal of the statutory city of Ostrava, Czech Republic, providing comprehensive information on environmental protection activities, air quality monitoring, and public awareness campaigns. The website serves residents and stakeholders interested in ecological issues and municipal initiatives. It is well-positioned as a trusted government resource with a clear focus on environmental topics and sustainability. Technically, the site is built on WordPress with a modern tech stack including jQuery, Yoast SEO, Matomo analytics, and GDPR-compliant cookie management. The site demonstrates good mobile optimization, accessibility, and SEO practices, with interactive features such as air quality maps and event calendars enhancing user engagement. From a security perspective, the site enforces HTTPS and employs best practices such as DOMPurify for sanitization and cookie consent management. However, some security headers are not explicitly detected, and there is no visible security policy or incident response information. No vulnerabilities or exposed sensitive data were found. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable source of environmental information for the Ostrava community. Strategic improvements in security headers and incident response transparency could further enhance its security posture.