Security Directory

M

Muzeum map Zlín

muzeummap.cz

50

Muzeum map Zlín is a specialized experiential museum located in the Czech Republic focusing on the history and technology of cartography. The museum offers interactive exhibits, including a unique sand model and a professional flight simulator, alongside a retail shop selling maps and related products. The website is professionally designed using WordPress with modern plugins and themes, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enabled, but lacks security headers and visible privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces domain trust slightly, but the clear contact information and active social media presence support business credibility. Overall, the site is suitable for general audiences interested in educational and cultural content.

C

CivicPlus LLC

civicplus.com

68

CivicPlus LLC operates a comprehensive software platform designed to empower local governments and public sector organizations by streamlining operations, enhancing resident engagement, and improving public trust. The company offers a wide range of integrated technology solutions including municipal websites, agenda and meeting management, public records request management, web accessibility, recreation management, and more. With over 10,000 local government customers and 25 years of experience, CivicPlus positions itself as a leader in the government technology sector. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO Premium, Google Analytics, Google Tag Manager, and HubSpot integrations. The site is mobile-optimized, accessible, and well-structured, reflecting a mature digital presence. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS and employs privacy and cookie policies with consent mechanisms, indicating a good privacy posture. However, explicit security headers were not detected, and no public incident response or vulnerability disclosure information is available, suggesting areas for improvement in transparency and security maturity. Overall, the website and business presence indicate a reputable and professional organization serving government clients. The absence of WHOIS data reduces domain registration trust but does not detract significantly from the business credibility established through content and trust signals. Strategic recommendations include enhancing security header implementation, publishing a security.txt file, and providing clear incident response contacts to strengthen security posture and trust.

N

Napovíme.cz

myx.cz

50

Napovíme.cz is a Czech technology-focused educational portal specializing in artificial intelligence, automation, and robotics. Founded in 2019 and operated by Petr Malec, it provides readers with accessible articles, tutorials, and reviews to help them navigate the evolving digital landscape. The website targets tech enthusiasts and businesses interested in AI and web optimization, offering content primarily in Czech. Its business model centers on content publishing combined with affiliate marketing and advertising revenue. Technically, the site is built on WordPress 6.8.3, leveraging multiple plugins for SEO, social sharing, and content management. It uses Google Analytics and Adsense for tracking and monetization. Hosting is provided by a Czech registrar and hosting provider (REG-WEDOS), ensuring regional consistency. The site demonstrates moderate performance and good mobile optimization, with a clean and professional design. From a security perspective, the website enforces HTTPS and uses Akismet for spam protection. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. No vulnerabilities or exposed sensitive data were detected. Privacy policy is present and GDPR compliance appears basic but adequate. Overall, Napovíme.cz presents a trustworthy and professional online presence with solid content quality and technical implementation. Strategic improvements in privacy compliance and security headers would further strengthen its posture. There are no indications of blocking or WAF interference, allowing full content accessibility and analysis.

E

Estetica Magazine

estetica.it

38

Estetica.it is a well-established digital magazine focused on the Italian hairdressing industry, providing news, trends, product information, and educational content. It serves a professional audience of hairdressers and industry stakeholders, positioning itself as a leading media outlet in this niche. The website is part of a broader international media network with sister sites targeting multiple countries. Technically, the site is built on WordPress with modern plugins and SEO tools, ensuring good performance and search visibility. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie management. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and secure digital presence. Overall, Estetica.it demonstrates a professional, trustworthy, and user-friendly platform with effective business and technical implementations.

V

Vrecenze.cz

seniorrevue.cz

47

Vrecenze.cz is a Czech-language online portal providing product reviews, shopping tips, and discount information primarily targeting Czech consumers interested in making informed purchasing decisions. The website operates on WordPress CMS with common SEO and optimization plugins and monetizes through Google Adsense and affiliate marketing. The technical infrastructure is modern and mobile-optimized, though some minor PHP warnings and missing security headers were noted. The security posture is adequate with HTTPS enforced but could be improved with additional headers and code fixes. Privacy policies are present but lack explicit consent mechanisms. WHOIS data is missing, which reduces domain trust but the website content and design appear professional and relevant. Overall, the site is functional and trustworthy for its niche audience but would benefit from enhanced security and compliance measures.

TOP REPORT is a Czech cultural and social magazine website established in 2008, providing news and articles on celebrities, music, health, theater, film, exhibitions, and local events. The website targets a general Czech-speaking audience interested in cultural and social topics. The business model is primarily content publishing supported by advertising and partnerships with cultural organizations. Technically, the site runs on WordPress 6.8.3 with common plugins and libraries such as jQuery, CanvasJS, and Owl Carousel, hosted on a Czech hosting provider. The website demonstrates good content quality, consistent branding, and moderate performance with mobile optimization. Security posture is basic with HTTPS usage but lacks advanced security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is legitimate and stable but would benefit from improved compliance and security practices.

K

KBE Energy

kbe-energy.com

67

KBE Energy is a French company specializing in the installation, maintenance, and expertise of photovoltaic solar power plants. Established since 2006, it serves a broad range of clients including farmers, industrial investors, local authorities, and large retail and tertiary sectors. The company offers comprehensive photovoltaic solutions including large roof installations, floating parks, agrivoltaics, self-consumption systems, turnkey buildings, and project management assistance. It also provides financing options such as third-party investment and crowdfunding. The company is certified with ISO 14001, ISO 9001, Qualifelec RGE, and AQPV, reflecting its commitment to quality and environmental standards. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as Google reCAPTCHA, Yoast SEO, GSAP animations, and WP Rocket for performance optimization. The site is well-optimized for SEO, mobile-friendly, and provides a good user experience with clear navigation and professional design. Security measures include HTTPS enforcement, cookie consent management, and CAPTCHA integration, although explicit security headers and a published security policy are absent. The security posture is solid but could be improved by adding explicit security headers and publishing incident response information. The WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency, although the website content and certifications support legitimacy. Overall, the site demonstrates a mature digital presence with good compliance to privacy regulations and a strong focus on renewable energy services. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, verifying domain registration details, and maintaining regular security audits to ensure ongoing protection and trustworthiness.

S

So Watt

sowatt-energy.fr

61

So Watt is a specialized local company operating in the renewable energy sector, focusing on photovoltaic solar power plant installation and operation for professional clients in the French Antilles-Guyane region. The company benefits from strong local roots as part of the Athéna group and holds recognized certifications such as ISO 9001 and ISO 14001, reinforcing its commitment to quality and environmental standards. The website reflects a professional and trustworthy business with clear service offerings and contact channels. Technically, the site is built on a modern WordPress platform with Elementor, hosted by OVH, and includes essential privacy and cookie compliance mechanisms. Security posture is adequate with HTTPS and anti-spam measures but could be enhanced by adding missing security headers and publishing a formal security policy. Overall, the website and domain registration data support a legitimate and credible business presence.

B

Blabla Linux

blablalinux.be

53

Blabla Linux is a small, technology-focused entity operating a French-language blog dedicated to Linux, open source software, and data sovereignty. The website promotes free software and reuse initiatives, notably through the Emmabuntüs collective. It offers rich content and self-hosted services, demonstrating technical proficiency and community engagement. The domain is registered with OVH since 2020, consistent with the website's content timeline. Technically, the site is built on WordPress with modern plugins and integrations such as Jetpack, Google Site Kit, and OnlyOffice. The hosting provider is OVH, a reputable company. The website is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security is adequate with HTTPS enforced and some security plugins, but lacks advanced HTTP security headers and explicit security policies. Privacy compliance is partial; a privacy policy and terms of service are present, but no cookie consent mechanism is detected, representing a GDPR compliance gap. Contact information is limited to a contact form, with no direct emails or phone numbers published. Analytics usage includes Google Analytics and Jetpack Stats, with moderate user tracking. Overall, the website is trustworthy, professionally maintained, and safe for general audiences. Strategic improvements in privacy compliance and security posture would enhance its credibility and reduce risk.

N

National Eczema Association

nationaleczema.org

11

The National Eczema Association is a well-established non-profit organization founded in 2002, dedicated to providing education, support, advocacy, and research funding for individuals affected by eczema. The website serves a broad audience including patients, caregivers, healthcare providers, and researchers, positioning itself as a leading resource in the eczema healthcare sector in the United States. The organization demonstrates strong market presence through comprehensive services such as educational resources, community stories, advocacy campaigns, and digital tools like the EczemaWise app. Technically, the website is built on a modern WordPress platform with integrations including Gravity Forms for data collection, Yoast SEO for search optimization, and Google Tag Manager for analytics. Hosting is managed via Amazon AWS infrastructure, ensuring reliable performance and scalability. The site exhibits excellent mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with domain status locks to prevent unauthorized changes. While no advanced security headers were detected, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted as an area for improvement. Privacy compliance is strong, with clear privacy and cookie policies and GDPR considerations. The organization displays multiple trust certifications and maintains transparent contact information, enhancing credibility. Overall, the website is professional, trustworthy, and well-maintained, with a strong focus on user engagement and community support. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture and trust.

A

ASEALEN

asealen.es

46

ASEALEN is a Spanish association representing over 40 companies focused on promoting the use of energy storage technologies. Positioned as a key sector advocate, ASEALEN provides technical and legal advisory, disseminates sector news, and fosters collaboration among stakeholders. The website reflects a professional and well-structured digital presence, leveraging WordPress with Elementor and SEO best practices to engage its target audience effectively. The association maintains active social media channels on Twitter and LinkedIn, enhancing its outreach and credibility. Technically, the site uses modern web technologies and includes GDPR-compliant privacy and cookie policies with consent mechanisms. Security posture is solid with HTTPS enforced, though some security headers could be improved. WHOIS data is unavailable due to registry restrictions, but the website content and presentation support legitimacy. Overall, ASEALEN demonstrates a mature digital footprint suitable for its role as a sector leader in energy storage in Spain.

G

GECV: Grupo Español para el Crecimiento Verde

grupocrecimientoverde.org

50

The Grupo Español para el Crecimiento Verde (GECV) is a Spanish non-profit association established in 2016, dedicated to fostering public-private collaboration to address environmental challenges and promote sustainable, circular, and efficient economic growth. The website serves as a platform to share news, documents, working groups, and member information, targeting stakeholders interested in green growth and sustainability in Spain. The organization holds a solid market position as a recognized environmental non-profit with a medium-sized membership base. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted by Webempresa, and integrates modern web technologies including jQuery, Swiper.js, and GDPR compliance plugins. The site demonstrates good mobile optimization, SEO practices, and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and advanced security headers are not explicitly detected, representing areas for enhancement. No critical vulnerabilities or exposed sensitive data were found. Privacy policies and cookie policies are comprehensive and clearly accessible, supporting strong privacy compliance. Overall, the website is professional, trustworthy, and well-maintained, with no signs of adult or questionable content. The domain registration is consistent with the business history and shows legitimacy. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security headers to further strengthen the security posture.

F

Fundación Conama

fundacionconama.org

51

Fundación Conama is a Spanish non-profit foundation dedicated to promoting sustainable development through knowledge exchange, events, reports, and collaborative projects. It holds a leading position in Spain and Iberoamerica as an organizer of major environmental congresses and networking platforms. The website is professionally designed using WordPress and Elementor, with strong SEO and accessibility features. It integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, while providing clear privacy and cookie policies with consent management. Security posture is good with HTTPS and no evident vulnerabilities, though some security headers could be improved. WHOIS data is privacy protected, which is justified for this type of organization. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

A

Asociación Empresarial Hotelera de Madrid

aehm.es

55

The Asociación Empresarial Hotelera de Madrid (AEHM) is a prominent industry association representing over 300 hospitality establishments in the Madrid region, encompassing hotels, hostels, and apartments with more than 75,000 accommodation places. The organization serves as a key advocate and promoter of the hotel sector, providing services such as employment facilitation, event management, and sector representation. Their website is professionally designed using WordPress and Elementor, featuring comprehensive content and clear navigation tailored to industry stakeholders and professionals. Technically, the site employs modern web technologies and plugins, including Yoast SEO for search optimization and Complianz for GDPR cookie compliance. The presence of Google Analytics and Metricool tracking indicates moderate user behavior tracking, balanced with visible cookie consent mechanisms ensuring privacy compliance. Mobile optimization and accessibility are adequately addressed, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes cookie consent banners, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to registry restrictions limits domain trust verification, though the website's professional presentation and consistent branding support its legitimacy. Overall, AEHM's digital presence reflects a mature and credible organization within the hospitality sector, with room for improvement in security transparency and WHOIS data availability to enhance trust and compliance posture.

G

Group Mediterra a.s.

mediterra.cz

49

Group Mediterra a.s. is a Czech healthcare group operating multiple hospitals, clinics, and a medical secondary school, providing comprehensive healthcare services including preventive, acute, and follow-up care. The group serves both domestic patients under public health insurance and international patients seeking specialized medical procedures. The website is professionally designed using WordPress CMS with modern technologies and offers multilingual support. It implements GDPR-compliant privacy and cookie policies with user consent mechanisms. Security posture is good with HTTPS and reCAPTCHA but lacks some advanced security headers and explicit security policies. WHOIS data is unavailable, which reduces domain transparency but the website content and business information appear legitimate and trustworthy.

E

EVENT Media a ontheSPOT

run-arena.cz

43

RUNaréna.cz is a Czech media website focused on running sports, providing a television magazine broadcast and an online archive of episodes and articles. The site targets running enthusiasts of all levels and operates as a niche media outlet under the parent company EVENT Media a ontheSPOT. The website is built on WordPress with modern front-end libraries and plugins, offering a good user experience and mobile optimization. However, it lacks key privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. WHOIS data is suspicious due to a future domain creation date and lack of registrant details, reducing trustworthiness. Overall, the site is professional and content-rich but requires improvements in privacy compliance and security transparency.

A

Aquitem & Aliénor.net

aquitem.fr

50

Aquitem & Aliénor.net is a French technology and retail-focused group with over 35 years of expertise in data services, digital marketing, and hosting solutions. The company operates under the parent Groupe FIDUCIAL and offers a range of services including data hosting, data visualization, loyalty program management, web digital strategy, and AI-powered marketing solutions. Their market position is that of an established medium-sized B2B service provider targeting retailers and businesses seeking advanced data and digital solutions. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Tag Manager, and Matomo. The site is mobile-optimized and uses hCaptcha for form security. Security posture is good with HTTPS and some best practices, but lacks explicit security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, which is reasonable for this business type. Overall, the website is professional and trustworthy, though it could improve compliance by publishing privacy and terms of service pages explicitly.

A

Aquitem & Aliénor.net

groupe-aquitem.fr

50

Aquitem & Aliénor.net is a French technology company specializing in data services, retail marketing, loyalty program management, AI-driven customer targeting, and digital agency services. With over 35 years of expertise and a medium-sized business profile, it serves retail and e-commerce clients primarily in France. The company is part of the FIDUCIAL Group and operates several subsidiaries and partner brands such as ZeFid’ and MyDataviz’. The website reflects a mature digital presence with professional content, consistent branding, and a clear focus on data-driven business solutions. Technically, the site is built on WordPress with modern plugins and analytics tools, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the domain WHOIS data is privacy protected but consistent with a legitimate business entity. The website is safe, professional, and trustworthy, with no signs of malicious activity or content blocking.

A

Agence de la transition écologique (ADEME)

ademe.fr

61

ADEME (Agence de la transition écologique) is a prominent French government agency dedicated to accelerating ecological transition and combating climate change. The agency provides expert advice, financial aid, data, and research support to a broad audience including citizens, businesses, local authorities, researchers, and associations. ADEME positions itself as a key player in France's environmental and energy sectors, with a strong focus on sustainability and public service. The website reflects this mission with comprehensive content, official branding, and multiple service portals. Technically, the website is built on WordPress with modern optimization tools such as WP Rocket and Yoast SEO, ensuring fast performance, mobile responsiveness, and good accessibility. The use of Google Tag Manager and Eulerian Analytics indicates moderate user tracking with consent management via Tarteaucitron, supporting privacy compliance. The site employs HTTPS with good SSL configuration and some security best practices, though explicit security headers are not fully confirmed. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly accessible security policies or incident response contacts, which could be improved to enhance transparency and readiness. WHOIS data is not publicly available due to AFNIC privacy norms, but the domain and content strongly align with official French government entities, supporting legitimacy. Overall, ADEME's website is professional, trustworthy, and well-structured, serving as a reliable resource for ecological transition stakeholders. Strategic recommendations include enhancing security header implementation, publishing security policies, and providing clear incident response contacts to further strengthen trust and compliance.

S

Syndicat des énergies renouvelables

enr.fr

10

The Syndicat des énergies renouvelables is a professional trade association focused on the renewable energy sector in France. It serves over 530 members including global energy actors and local stakeholders, with a strong emphasis on supporting the energy transition. The website offers a variety of services such as event organization, publications, professional training, and member networking. It positions itself as a key player in the French renewable energy market, providing reliable information and fostering collaboration among industry professionals. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several plugins for SEO, sliders, and cookie consent management. The site is mobile-optimized and uses HTTPS with a cookie consent mechanism, reflecting a good level of digital maturity. However, some security headers are missing, and there is room for improvement in accessibility and security best practices. From a security perspective, the site uses HTTPS and has implemented cookie consent compliant with GDPR. The login form includes security tokens, but no advanced security headers like CSP or HSTS were detected in the HTML source. The WHOIS data is unavailable, which limits domain trust assessment, but the professional presentation and content quality support legitimacy. Overall, the website is professional, content-rich, and serves its target audience well. The main risks relate to missing WHOIS transparency and some security header omissions. Strategic recommendations include enhancing security headers, improving accessibility, and verifying domain registration details to strengthen trust.

O

OnQueue

onqueue.io

9

OnQueue is a healthcare-focused SaaS company providing clinical workflow management software designed to optimize patient journeys for pharmacies and clinics. The platform is web-based and built by clinicians, emphasizing operational efficiency and personalized patient care. The company positions itself as a niche player in healthcare technology with a focus on workflow management, customized journeys, and integrations. Technically, the website is built on WordPress with modern plugins and Google Analytics integration, showing a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides clear navigation and professional branding. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet regulatory requirements. WHOIS data is unavailable due to privacy protection, which is common but slightly reduces trust. Overall, the website and business appear legitimate and professional with room for improvement in privacy and security transparency.

Z

Zaclys

zaclys.com

66

Zaclys is a French-based provider of open-source, privacy-respecting web and cloud services targeting individuals, families, small organizations, and professionals. With over 42,000 users and a subscription-supported business model, Zaclys offers a broad portfolio of services including cloud storage, email, social networking (Mastodon), collaborative tools, and video conferencing. The website is professionally designed using WordPress and Divi, with a focus on accessibility and user experience. Technically, the site employs modern web technologies and plugins to support user management and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and vulnerability disclosures are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and service offerings appear legitimate and trustworthy. Overall, Zaclys presents a mature, privacy-conscious service provider with a strong community and partnership ecosystem.

C

Coffra Group

coffra.de

64

Coffra Group is a specialized Franco-German consulting firm offering services in auditing, taxation, accounting, labor law, and strategic business expansion. The company targets international businesses, particularly those operating between France and Germany, providing integrated and multilingual expertise. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and SEO best practices to reach its audience effectively. However, the absence of WHOIS registration data raises questions about domain registration transparency, although the website content and branding strongly indicate a legitimate business operation. Security measures such as HTTPS and Google reCAPTCHA are implemented, but the lack of published security policies and incident response contacts suggests room for improvement in security transparency and readiness.

C

CHE gemeinnütziges Centrum für Hochschulentwicklung

che.de

52

CHE gemeinnütziges Centrum für Hochschulentwicklung is a well-established German non-profit think tank specializing in higher education research and policy. With over 30 years of experience, it provides studies, project work, and recommendations to stakeholders in the academic and education sectors. The website is professionally designed, primarily in German with English alternatives, and offers comprehensive content relevant to its target audience of academics, policymakers, and students. Technically, the site runs on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. Security measures include HTTPS, Google reCAPTCHA, and GDPR-compliant cookie consent, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site demonstrates a mature digital presence aligned with its business goals.

K

komplexx-figurentheater.de

komplexx-figurentheater.de

35

Bündnis KompleXX Figurentheater is a small cultural alliance based in Germany that promotes puppet, figure, and object theater through events, symposiums, podcasts, and collaborative projects. The website is built on WordPress using the Astra theme and several plugins, indicating a moderate level of digital maturity. The site is mobile-optimized and provides relevant content for its niche audience of artists, researchers, and cultural practitioners. Security posture is basic with HTTPS enabled but lacking important security headers and privacy compliance mechanisms such as cookie consent. No direct contact information or incident response channels are visible, which may impact user trust and compliance. Overall, the site is functional and professional but could improve in security and privacy compliance to better serve its audience and meet regulatory requirements.

O

opper

opper.io

65

opper is a French-based company specializing in software, data, and services tailored for the media industry. With over 30 years of experience and a client base exceeding 1500, it offers integrated solutions to optimize content management, audience monetization, subscription handling, and commercial prospecting. The company is part of the TBS group and holds the Qualiopi certification, underscoring its commitment to quality training services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions targeting media companies and related sectors. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. It employs Google reCAPTCHA v3 for form security and Axeptio for cookie consent management, demonstrating adherence to privacy regulations. Analytics are handled via Piwik PRO, indicating a preference for privacy-conscious tracking. From a security perspective, the site uses HTTPS with strong SSL configuration and implements best practices like secure forms and privacy opt-in. However, it lacks a publicly disclosed security policy, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. No vulnerabilities or suspicious content were detected. Overall, opper presents a trustworthy and professional digital footprint with strong business credibility and compliance posture. Strategic improvements in security transparency and incident response readiness would further strengthen its security posture and stakeholder confidence.

B

Baleen

cshield.io

68

Baleen is a French cybersecurity SaaS provider specializing in sovereign web protection solutions including WAF, Anti-DDoS, AI-based antibot, and CDN services. Founded in 2020, the company targets e-commerce, institutional websites, and web applications/APIs, positioning itself as a trusted partner for critical online services with a strong emphasis on data sovereignty and compliance with European regulations. The website demonstrates a mature digital presence built on WordPress with modern SEO and accessibility practices. Security posture is solid with HTTPS, domain transfer locks, and no detected vulnerabilities, though DNSSEC and explicit security policies could be improved. The company showcases credible certifications and client testimonials from notable French organizations, enhancing trust and market positioning.

D

Deutsche Film- und Fernsehakademie Berlin GmbH

dffb.de

43

The Deutsche Film- und Fernsehakademie Berlin GmbH (DFFB) is a well-established educational institution specializing in film and television training. The website presents a professional and comprehensive digital presence, targeting aspiring filmmakers and media professionals globally. It offers detailed information about its academic programs, events, and film projects, positioning itself as a leading film academy in Germany with international outreach. Technically, the site is built on WordPress with modern SEO and cookie compliance tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and a public security policy. Overall, the site is trustworthy, compliant with GDPR, and safe for general audiences.

A

Aquitem & Aliénor.net

alienor.net

50

Aquitem & Aliénor.net is a French technology and retail-focused group with over 35 years of expertise in data management, marketing, and digital solutions. They provide a broad range of services including data hosting in France, data visualization tools, AI-driven marketing solutions, and retail management software. The company positions itself as a trusted partner for large retail brands and independent merchants, supported by its affiliation with Groupe FIDUCIAL. Technically, the website is built on WordPress with modern SEO and analytics tools, showing good digital maturity. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks some security headers and formal security policies. Privacy compliance is partially implemented with cookie consent but no clear privacy policy page found. Overall, the site is professional and trustworthy, though WHOIS data absence raises some concerns about domain registration transparency.

B

Bcovery

bcovery.com

53

Bcovery is a French-based AdTech company specializing in sustainable and responsible media buying solutions for brands and agencies. Founded in 2019, it offers a unique technological suite including Ghost Recycling, Direct Green Path, Audience Sources, and Carbon Optimizer to improve campaign performance and reduce carbon footprint. The company is recognized with multiple industry awards and partners with major media publishers. Technically, the website is built on WordPress with Elementor and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and domain locking, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich but should improve privacy and security disclosures.

E

Eurométropole de Metz

metzletudiante.eu

56

Metz L'Étudiante is a French-language digital platform dedicated to providing students in Metz with comprehensive information about studying, working, living, and student life in the city. Supported by the Eurométropole de Metz and local government entities, it serves as an official resource hub for the student community. The website is built on WordPress with modern plugins for SEO, multilingual support, and privacy-compliant analytics via Matomo. It features a cookie consent mechanism that allows granular user control, aligning with GDPR requirements. The site is well-branded, professionally designed, and optimized for mobile devices, offering a good user experience with clear navigation and relevant content.

M

Magyar IO-Link Közösség

io-link.hu

49

The website io-link.hu represents the Hungarian IO-Link Community, focusing on organizing IO-Link User Workshops to educate industrial sector participants about IO-Link technology. The site positions itself as a niche community leader in Hungary, providing event organization and technology education services. The technical infrastructure is based on WordPress with modern plugins and a professional theme, offering a good user experience with mobile optimization and cookie consent mechanisms. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks published privacy policies, terms of service, and security headers. Overall, the site is legitimate and trustworthy but could improve compliance and security transparency.

S

Suomen Tuulivoimayhdistys ry

suomenuusiutuvat.fi

61

Suomen uusiutuvat ry is a Finnish non-profit association dedicated to promoting sustainable renewable energy across Finland, with a focus on wind and solar power. The organization provides educational content, advocacy, events, and membership services to a broad audience including industry stakeholders, municipalities, and students. The website is professionally designed using WordPress CMS, featuring modern technologies such as jQuery and Google Analytics, and is hosted with Cloudflare DNS services. The site includes a comprehensive cookie consent mechanism, supporting GDPR compliance, although explicit privacy and terms of service pages are not found. Security posture is good with HTTPS enforced and no visible vulnerabilities, but could be improved with additional security headers and published policies. WHOIS data is transparent and consistent with the business identity, enhancing trustworthiness. Overall, the website is a credible and professional platform for renewable energy advocacy in Finland.

I

Interventions Numériques

interventions-numeriques.fr

46

Interventions Numériques is a French-based small educational and mediation service focused on digital autonomy, offering a variety of training courses and mediation services to individuals and organizations. The business operates under the cooperative Oxalis, which is Qualiopi certified, indicating recognized quality in training services. The website is professionally designed using WordPress with a modern tech stack and SEO optimizations, providing good user experience and mobile responsiveness. Security posture is solid with HTTPS and no evident vulnerabilities, though some improvements in privacy compliance and security policy transparency are recommended. Overall, the domain registration and website content are consistent and trustworthy, supporting a positive legitimacy assessment.

C

Clic & Cetera

clicetcetera.fr

51

Clic & Cetera is a small local business based in France providing IT assistance and mediation services primarily in the Lorient region. The company targets both professionals and private individuals, offering on-site and business IT support. The website is built on WordPress and demonstrates a good level of technical maturity with modern CMS usage and responsive design. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks important security headers and formal privacy or cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and trustworthy for its business scope but would benefit from improved compliance and security practices.

A

Association Electrocycle

electrocycle.co

55

Association Electrocycle is a French non-profit organization dedicated to promoting the reuse of electronic devices, particularly smartphones, through workshops and advocacy for free software. The website serves as a platform to share news, events, and educational content related to digital empowerment and ecological technology practices. The organization targets individuals and groups interested in sustainable technology and digital rights. Technically, the website is built on WordPress 6.8.3, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enabled and no exposed sensitive data, though it lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained, reflecting a small but active community-focused entity.

F

FullAtelier.cz

fullatelier.cz

38

FullAtelier.cz is a professional Czech-based photography and videography service specializing in social events such as graduation balls, corporate events, weddings, and festivals. The company offers a comprehensive range of services including drone aerial filming by licensed pilots, video shooting and editing, and mobile photo studios. The website reflects a focused business model targeting event organizers and individuals seeking high-quality media coverage of their events. The domain age and registrar information align well with the business profile, indicating a legitimate and established presence since 2013. Technically, the website is built on WordPress with Elementor and Yoast SEO plugins, leveraging modern web technologies and Google Fonts. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA v3 for form security. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed through meta tags and structured data. Security posture is solid with HTTPS and form protection, but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Contact information is clearly presented, enhancing business credibility. No suspicious or malicious content was detected, and the site is fully accessible without WAF interference. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

S

Safetravel

safetravel.is

57

Safetravel is a reputable non-profit organization dedicated to providing official travel safety information and emergency support services in Iceland. Operated by ICE-SAR, the Icelandic Association for Search and Rescue, the website serves as a critical resource for travelers, offering real-time travel conditions, safety tips, travel plan submissions, and emergency alerts. The organization maintains a strong market position as the authoritative source for safe travel in Iceland, supported by a robust digital presence including a dedicated mobile app and multilingual content.

S

Svensk Bokkonst

svenskbokkonst.se

55

Svensk Bokkonst is a well-established Swedish non-profit association dedicated to promoting quality in printed book production through annual awards, exhibitions, and publications. The organization has a strong cultural presence and collaborates with notable partners such as the Royal Library of Sweden. The website is built on a modern WordPress platform with a clean, professional design and good mobile optimization. However, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is generally good with HTTPS and no exposed sensitive data, but could be improved by enabling DNSSEC and adding security headers. Overall, the site is trustworthy and serves its target audience effectively.

C

CBS Nakladatelství s.r.o.

ceskoznebe.cz

48

CBS Nakladatelství s.r.o. operates the website ceskoznebe.cz, specializing in aerial photography, publishing of aerial photo books, maps, and promoting the beauty of the Czech landscape. The company targets tourists, municipalities, and businesses interested in aerial imaging and related publications. Their market position is that of a niche media publisher with a unique product offering. Technically, the website is built on WordPress with Bootstrap and uses Google Analytics and Tag Manager for tracking. The site is mobile-optimized and has good SEO practices but lacks some accessibility features and security headers. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but the absence of security headers and incident response information is a gap. The missing WHOIS data reduces domain trust, though the website content and contact details appear professional and legitimate. Overall, the site scores well on business credibility and content quality but could improve privacy compliance and security practices.

N

NETSTR s.r.o.

netstr.cz

44

NETSTR s.r.o. is a Czech Republic based small IT services company specializing in IT outsourcing, data network design and implementation, and security camera systems. The company targets businesses seeking comprehensive IT infrastructure management and security solutions. Their website is professionally designed using WordPress with modern plugins and libraries, providing clear service descriptions and contact information. The technical infrastructure is modern and performant, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks some security headers and formal security policies. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the website presents a trustworthy and professional image suitable for its market segment.

C

CBS Nakladatelství s. r. o.

cbs-cesko.cz

48

CBS Nakladatelství s. r. o. is a Czech publishing company specializing in unique landscape-related products such as hand-painted maps, aerial photography books, and cartographic maps. The company serves a diverse audience including municipalities, educational institutions, and tourists, positioning itself as a niche regional leader in media and cartography. Their product portfolio is complemented by aerial photography and video services, enhancing their market offering. Technically, the website is built on a modern WordPress platform using the Bricks theme and several plugins, including Jet Engine and Automatic CSS. The site is well-optimized for mobile devices, uses HTTPS with a valid SSL certificate, and integrates Google Analytics for user tracking. However, some security best practices like security headers and cookie consent mechanisms are missing. From a security perspective, the site demonstrates a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear professional and legitimate. No security policy or incident response contacts are published, which could be improved. Overall, CBS Česko presents a professional and trustworthy online presence with strong content quality and business credibility. Strategic improvements in security headers, privacy compliance, and domain registration transparency would enhance their security posture and trust further.

C

CBS spol, s.r.o.

cbs.sk

53

CBS spol, s.r.o. is a Slovak publishing company specializing in unique landscape-related products such as artistic maps, aerial photography books, and interactive 360° photo banks. The company holds a niche market position in Slovakia, targeting cultural enthusiasts, tourists, and general audiences interested in Slovakian landscapes. Their business model combines publishing with e-commerce, supported by a portfolio of related domains and projects. Technically, the website is built on a modern WordPress platform with up-to-date plugins and themes, optimized for performance and mobile devices. The site employs comprehensive cookie consent mechanisms and adheres to GDPR requirements, reflecting a mature privacy posture. Security-wise, the site uses HTTPS and best practices but lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-maintained, with minor recommendations for enhanced security headers and published security policies.

E

ECAL/Ecole cantonale d’art de Lausanne

ecal-typefaces.ch

55

ECAL Typefaces is a digital platform operated by the Ecole cantonale d’art de Lausanne (ECAL), showcasing typefaces created by students and alumni. The website serves as a resource for designers and educators, offering previews, licensing information, and stories related to typography. The platform leverages WordPress with WooCommerce for e-commerce functionality, supported by SEO and performance optimization plugins. The site is well-structured, mobile-optimized, and uses HTTPS with a cookie consent mechanism, reflecting a mature digital presence. Security measures include Google reCAPTCHA and Matomo analytics, though some improvements in security headers and plugin dependencies are recommended. Overall, the website is trustworthy, professionally maintained, and aligned with the educational mission of ECAL.

S

Svobodná účetní - Seyfor, a. s.

svobodnaucetni.cz

41

Svobodná účetní - Seyfor, a. s. operates an online educational platform focused on training individuals to become independent accountants within three months. The business targets both beginners and experienced accountants seeking freelance opportunities. Their model combines video lessons, software training, expert consultations, and certification endorsed by the Czech accounting association Svaz účetních. The website is professionally designed, mobile-optimized, and integrates modern technologies such as WordPress, jQuery, and Google Tag Manager. Privacy and cookie consent mechanisms are implemented, reflecting GDPR compliance. Security posture is solid with HTTPS and secure forms, though some security headers could be improved. The absence of WHOIS data is a notable concern but does not detract from the overall legitimacy suggested by the website content and partnerships.

T

Transition Maladies Rares

transitionmaladiesrares.com

56

Transition Maladies Rares is a specialized healthcare resource website dedicated to supporting the transition of patients with rare and chronic diseases from pediatric to adult care. The site offers a comprehensive collection of information, tools, projects, and professional resources to facilitate this critical healthcare transition. It is supported by the NeuroSphinx initiative and associated with recognized healthcare institutions in France. The website targets patients, families, and healthcare professionals involved in rare disease management. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and FontAwesome, and integrates Google reCAPTCHA for form security. The site is well-structured, mobile-optimized, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and spam protection, though some security headers are missing and privacy compliance could be enhanced with explicit consent mechanisms. Overall, the domain registration and WHOIS data align well with the website's content and business history, indicating legitimacy and trustworthiness.

NMO Brasil is a Brazilian non-profit organization dedicated to supporting patients with Neuromyelitis Optica (NMO) and raising public awareness about this serious neurological condition. The website serves as a hub for patient stories, educational content, and advocacy efforts, positioning the organization as a key player in the Brazilian healthcare advocacy space for NMO. The site is built on WordPress using the Elementor page builder, hosted by Locaweb, and integrates multimedia content such as YouTube videos and augmented reality experiences to engage visitors. While the technical infrastructure is modern and the site is mobile-optimized, there are gaps in privacy and security compliance, including the absence of privacy and cookie policies and missing security headers. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security measures.

T

The Siegel Rare Neuroimmune Association

wearesrna.org

66

The Siegel Rare Neuroimmune Association (SRNA) is an international nonprofit organization dedicated to advocating for individuals affected by rare neuroimmune disorders such as ADEM, AFM, MOGAD, NMOSD, ON, and TM. The organization focuses on education, advocacy, and accelerating research to find cures. Their website reflects a professional and consistent brand presence with multilingual support and active social media engagement. The target audience includes patients, families, healthcare professionals, and researchers. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Hotjar, and New Relic for monitoring. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks some security headers and explicit incident response information. Privacy compliance is partial, with cookie consent mechanisms but no explicit privacy policy found in the provided content. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

Z

Zlatá koloběžka – města Plzni

zlatakolobezka.cz

44

Zlatá koloběžka is a well-established traditional scooter racing event based in Plzeň, Czech Republic, with roots dating back to 1996. The website serves as an informational portal for the event, providing schedules, partner information, and contact details. The event targets scooter enthusiasts and the local community, positioning itself as a niche but reputable sports event with a consistent brand presence. Technically, the site is built on WordPress using modern themes and plugins, hosted by a Czech hosting provider, and optimized for mobile devices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the site is professional, trustworthy, and safe for general audiences, though it would benefit from enhanced privacy and security practices to align with GDPR and modern web standards.