Security Directory

D

D.A.S. právní ochrana

das.cz

70

D.A.S. právní ochrana is a Czech-based legal protection insurance provider with over 20 years of market presence, offering a range of legal insurance products tailored for private individuals, employees, families, and drivers. The company operates under the ERGO Versicherung Aktiengesellschaft pro ČR umbrella, providing comprehensive legal services and insurance packages with clear pricing and accessible customer support. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Alpine.js, Swiper.js, and various analytics and marketing tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, the absence of a publicly accessible privacy policy and WHOIS data transparency slightly reduce trust levels. Overall, the site demonstrates a mature digital presence suitable for its industry and audience.

Y

Yedoo

yedoo.eu

56

Yedoo is a European-based company specializing in the design, manufacture, and sale of adult and children's scooters, balance bikes, and children's bicycles. The company targets families and outdoor enthusiasts, offering a range of products with a focus on quality, durability, and design. Their market position is that of a niche manufacturer and retailer with a strong brand presence in the EU, supported by professional customer care and a 5-year frame warranty. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR, but lacks some advanced security headers and explicit incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve by adding security.txt and enhancing security headers.

MyCat.cz is a Czech-based company operated by HN Consulting Brno s.r.o., providing a specialized information system designed to simplify administrative tasks for language schools. The platform offers comprehensive management tools including course scheduling, invoicing, library and publication management, translation tracking, and communication via email and SMS. The system targets language school management, teachers, students, and HR personnel, serving over 95 schools across Central Europe. The website is professionally designed, multilingual, and includes client testimonials that reinforce its market credibility. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, Google Fonts, and popular JavaScript libraries like Swiper.js and Owl Carousel. It is mobile-optimized and structured for good SEO performance. However, there is no evidence of a CMS or hosting provider disclosed. The site includes cookie consent mechanisms and GDPR-related pages, indicating a baseline compliance with privacy regulations. From a security perspective, the site uses HTTPS and includes cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or malicious content were detected in the analysis. The absence of WHOIS data for the domain is a concern and reduces the overall trust score, though the website content and contact information appear legitimate. Overall, MyCat.cz presents a solid business offering with a professional web presence and moderate technical maturity. To enhance trust and security posture, the company should address the missing WHOIS data, publish security policies, and implement recommended HTTP security headers.

G

GMAC – Graduate Management Admission Council

gmac.com

63

GMAC (Graduate Management Admission Council) is a globally recognized nonprofit association that serves as the owner and administrator of the GMAT exam, connecting millions of candidates with graduate business schools worldwide. The organization provides a comprehensive platform offering exams, market intelligence, professional development, and recruitment solutions tailored for both learners and educators in graduate management education. Their market position is strong, supported by partnerships with mba.com and BusinessBecause, and a clear focus on advancing business education globally. Technically, the website employs modern frameworks like Bootstrap and Swiper.js, with good mobile optimization and SEO practices, supported by Google Tag Manager for analytics and tracking. Security posture is robust with HTTPS, security headers, and secure forms, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-aligned with its business mission, though WHOIS data is unavailable, which slightly impacts domain transparency.

R

Robustel

robustel.net

61

Robustel is a globally recognized manufacturer specializing in industrial IoT and M2M solutions, offering a broad portfolio including cellular routers, gateways, edge computing devices, and cloud-based device management platforms. Their market position is strong within industrial sectors such as energy, transportation, smart cities, and marine applications. The website demonstrates a mature digital presence with comprehensive product information, partner networks, and active news and event updates. Technically, the site is built on WordPress with modern plugins and scripts, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and Content-Security-Policy headers, though additional headers could enhance protection. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Robustel presents a trustworthy and professional online presence aligned with its business objectives.

O

Office de tourisme Nice Côte d'Azur

nicecotedazur-greeters.com

56

The website www.nicecotedazur-greeters.com represents the official platform for the Nice Côte d'Azur Greeters, a volunteer-based cultural tourism initiative affiliated with the local tourism office. It offers visitors the opportunity to meet local volunteers ('Greeters') who provide free guided walks sharing their passion and knowledge of Nice and the surrounding Côte d'Azur region. The site is well-branded, professionally designed, and targets tourists seeking authentic local experiences. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WP Rocket, ensuring good SEO and performance. The presence of Google Tag Manager and Cookiebot indicates a moderate level of user tracking balanced with GDPR-compliant consent mechanisms. Security posture is generally good with HTTPS enforced, though explicit security headers are not detected in the provided data. The absence of WHOIS registration data is a notable anomaly, reducing transparency and trust in domain registration details. Overall, the site is safe, professional, and serves a niche non-profit hospitality sector effectively.

B

Bureau des Congrès de Nice Côte d’Azur

meet-in-nicecotedazur.com

59

The website 'Meet in Nice : bureau des congrès de Nice Côte d'Azur' serves as the official platform for the Bureau des Congrès de Nice Côte d’Azur, providing comprehensive support and information for organizing professional events in the Nice region. It targets event organizers, corporate clients, and tourism professionals, positioning itself as a regional leader in destination marketing and event facilitation. The site offers services including event planning assistance, venue and accommodation information, and local expertise, emphasizing sustainability and eco-responsibility. The business model focuses on promoting Nice Côte d'Azur as a premier MICE (Meetings, Incentives, Conferences, Exhibitions) destination.

L

Les Arcs Reservation

lesarcs-reservation.com

51

Les Arcs Reservation operates as the official online booking platform for accommodations and ski packages in the Les Arcs ski resort area in France. The website offers a variety of lodging options including apartments, hotels, chalets, and all-inclusive ski packages, targeting tourists and vacationers seeking a seamless reservation experience. The business positions itself as a trusted local expert with a focus on customer service and comprehensive offerings for winter and summer stays. Technically, the website is built on the Drupal CMS platform and leverages modern JavaScript libraries such as jQuery, Swiper.js, and Air Datepicker to provide an interactive and responsive user experience. The site is mobile-optimized and includes SEO best practices, although performance is moderate. Security is implemented with HTTPS and secure form handling, but lacks some advanced security headers and explicit privacy and cookie policies. From a security perspective, the site shows a good baseline with HTTPS and no visible vulnerabilities in the HTML content. However, the absence of WHOIS registration data and domain transparency is a concern, reducing overall trustworthiness. No incident response or vulnerability disclosure information is provided, and privacy compliance indicators are minimal. Overall, the website is professional and functional with strong business credibility but would benefit from improved transparency in domain registration, enhanced privacy compliance, and stronger security header implementation to increase trust and security posture.

M

Ministério da Gestão e Inovação em Serviços Públicos

vlibras.gov.br

69

The website represents an official Brazilian government digital service focused on accessibility, specifically the VLibras suite which provides automatic translation of digital content into Brazilian Sign Language (Libras). It is a collaborative initiative involving multiple government ministries and a federal university, positioning it as a key public service for digital inclusion of deaf individuals. The site is well-structured, professionally designed, and leverages modern web technologies and accessibility standards to deliver its content effectively. Technically, it uses Plone CMS and integrates common libraries such as jQuery and Font Awesome, hosted likely on government infrastructure with strong SSL and security headers in place. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though incident response contacts and vulnerability disclosure mechanisms could be improved. Privacy and cookie policies are present and appear comprehensive, aligning with GDPR and Brazilian LGPD requirements. Overall, the site is trustworthy, professional, and serves a critical government function in digital accessibility.

G

Gerresheimer

gerresheimer.com

68

Gerresheimer is a global leader in manufacturing pharmaceutical primary packaging and drug delivery systems, serving the pharma, biotech, cosmetics, diagnostics, and medical device industries. The company operates over 40 production sites worldwide and emphasizes sustainability, quality, and innovation. Their website reflects a mature digital presence built on TYPO3 CMS, with modern design and good mobile optimization. The site includes investor relations and compliance information, indicating a transparent corporate posture. Security-wise, the site enforces HTTPS and uses a consent management platform for GDPR compliance, but lacks explicit security headers and a public security policy. The absence of WHOIS data is unusual but the website content and branding strongly support legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, though improvements in security transparency and WHOIS clarity are recommended.

R

Robustel

robustel.com

61

Robustel is a globally recognized manufacturer and provider of industrial IoT and M2M solutions, specializing in cellular routers, gateways, and edge computing devices. Their product portfolio includes 4G/LTE/5G routers, LoRaWAN gateways, and cloud-based device management platforms, targeting industrial sectors such as energy, transportation, and manufacturing. The website demonstrates a mature digital presence with comprehensive product information, multilingual support, and active news and event updates, reflecting ongoing business operations and market engagement. Technically, the site is built on WordPress with modern plugins and libraries, optimized for mobile and SEO, and employs security best practices including HTTPS and Content-Security-Policy headers. However, some security headers could be enhanced for improved protection. The absence of WHOIS registration data is a notable anomaly, though the website content and certifications suggest a legitimate and established business. Overall, Robustel's online presence is professional, secure, and business-focused, supporting their market position as a leading industrial IoT solutions provider.

R

RATP Dev Australia

ratpdevaustralia.com.au

66

RATP Dev Australia is a regional branch of the global RATP Dev group, specializing in the operation and maintenance of urban and intercity transportation systems. The company leverages the extensive experience of its parent, RATP Group, a major public transport operator with over a century of history. The website presents a professional image with detailed references to global operations, emphasizing expertise in automated metro systems and various transit modes. Technically, the site is built on Drupal 10 and integrates modern analytics tools with privacy-conscious configurations. Security posture is generally good with HTTPS and cookie consent implemented, though there is room for improvement in security headers and transparency of policies. WHOIS data is incomplete, which slightly impacts trust but does not detract from the overall legitimacy indicated by the website content and branding.

R

RATP Dev

ratpdev.it

53

RATP Dev Italy is a subsidiary of the global RATP Dev group, specializing in operating and maintaining urban and intercity transportation systems across multiple continents. The company offers a wide range of transportation services including bus, tramway, rail, metro, sightseeing, mobility on demand, paratransit, and cable car operations. The website reflects a mature enterprise with a consistent brand and professional content targeting transportation authorities and the general public. Technically, the site is built on Drupal 10 with integration of Google Analytics, Matomo, and Google Maps API, indicating a modern digital infrastructure with moderate performance and good mobile optimization. Security posture is moderate with some privacy-conscious configurations in analytics but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

Smartbrain

smartbrain.com.br

63

Smartbrain is a Brazilian technology company specializing in portfolio consolidation and management solutions tailored for financial professionals such as wealth managers, family offices, and financial consultants. The company offers a suite of products including Advisor Enterprise, Advisor PRO, AppConnect, Prospect, and API/Open Finance integrations, positioning itself as a key player in the Brazilian financial technology sector. Their website reflects a professional and consistent brand image with a clear focus on B2B SaaS solutions for investment management. Technically, the site is built on WordPress with Elementor and Yoast SEO, hosted on AWS infrastructure, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is adequate with clear privacy and cookie policies, though explicit consent mechanisms could be enhanced. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

R

RATP Dev

ratpdev.com

66

RATP Dev is a global operator specializing in the operation and maintenance of urban and interurban transportation networks across five continents. The company offers a wide range of services including metro, tramway, bus, train, sightseeing, demand-responsive transport, and specialized services for persons with reduced mobility. The website reflects a mature enterprise with a strong international presence and multiple subsidiaries. Technically, the site is built on Drupal 10, uses modern analytics and mapping technologies, and implements cookie consent mechanisms, indicating a reasonable level of digital maturity. Security posture is good with HTTPS and some privacy measures, but lacks explicit security policies and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and branding align with the known RATP Group. Overall, the site is professional and trustworthy but would benefit from enhanced transparency in privacy and security disclosures.

E

Encavis

encavis.com

67

Encavis is a large European renewable energy company specializing in solar parks and wind farms, with over 3.8 GW installed capacity. The company targets institutional investors, energy-intensive companies, and partners such as landowners and project developers. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and recent business activities. Technically, the site uses modern web technologies including JavaScript libraries, consent management, and self-hosted analytics, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in publishing dedicated security policies and incident response contacts. WHOIS data is unavailable, which slightly reduces trust but does not outweigh the professional presentation and business legitimacy. Overall, the site is safe, trustworthy, and well-positioned in the renewable energy sector.

E

Exasol

exastaging.com

69

Exasol is a technology company specializing in a high-performance analytics engine designed to modernize data warehouses, accelerate analytics, optimize cloud costs, and enable governed AI/ML workloads. The company targets data professionals including database masters, data scientists, and analytics accelerators, positioning itself as a scalable and cost-effective solution provider in the analytics and AI space. The website reflects a mature digital presence with comprehensive content, customer stories, and industry-specific solutions, indicating a medium-sized enterprise with a strong market position. Technically, the website is built on WordPress hosted on AWS infrastructure, utilizing modern web technologies such as Google Tag Manager, Cookiebot for consent management, and Plyr for video playback. The site is well-optimized for performance, mobile responsiveness, accessibility, and SEO, with structured data enhancing search visibility. Security practices include HTTPS enforcement and cookie consent mechanisms, though some security headers and vulnerability disclosure information could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Business credibility is supported by professional content, customer testimonials, and consistent branding. WHOIS data confirms domain legitimacy and appropriate registration history. Overall, Exasol's website demonstrates a strong digital maturity and security posture suitable for its business model. Strategic recommendations include enabling DNSSEC, adding security headers, publishing vulnerability disclosure policies, and providing incident response contacts to further enhance trust and security readiness.

M

Mural

mural.co

65

Mural is an established enterprise-level technology company specializing in AI-powered visual collaboration workspaces designed to enhance team productivity and innovation. The company offers a SaaS platform that integrates AI capabilities to facilitate ideation, alignment, and project execution for business teams. Their market position is strong, supported by partnerships such as with Microsoft and a comprehensive suite of collaboration tools including templates, integrations, and developer APIs. Technically, the website is built on modern frameworks like Webflow and leverages advanced analytics and marketing tools such as Segment, Google Analytics, Hotjar, and Optimizely, indicating a mature digital infrastructure with good performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit incident response and vulnerability disclosure information are not publicly detailed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations including GDPR. Strategic recommendations include publishing explicit incident response contacts and vulnerability disclosure policies to further enhance security transparency and trust.

G

GOV.BR

gov.br

69

The website www.gov.br is the official Brazilian federal government portal designed to centralize access to public services and government information. It serves a broad audience including citizens, businesses, public entities, and other social segments. The portal offers a comprehensive range of digital services, information dissemination, and citizen engagement tools, positioning itself as a critical digital infrastructure for government-citizen interaction in Brazil. The site is well-branded, professionally designed, and consistently maintained, reflecting its authoritative status. Technically, the site leverages the Plone CMS platform, integrates modern JavaScript libraries such as jQuery and Swiper.js, and employs Google Tag Manager for analytics and tracking. Hosting is managed by SERPRO, a trusted Brazilian government IT service provider. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring broad usability and reach. From a security perspective, the portal enforces HTTPS, includes cookie consent mechanisms, and avoids exposing sensitive data. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly detected and could be improved. No dedicated security policy or incident response contacts are published, and no vulnerability disclosure program or security.txt file is found, indicating areas for enhancement in transparency and security maturity. Overall, the portal is highly trustworthy and professionally managed, with strong alignment between domain registration data and official government infrastructure. It poses minimal risk and serves as a reliable digital gateway for Brazilian government services.

S

Solodoor.cz

solodoor.cz

52

Solodoor.cz is a Czech-based company specializing in the manufacturing and retail of interior and entrance doors, including steel and fire-resistant doors. The company operates a broad network of branded stores and contractual dealers across the Czech Republic and Slovakia, targeting residential customers and developers. Their website is professionally designed, mobile-optimized, and provides comprehensive product information and inspiration for customers. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, supported by cookie consent mechanisms and GDPR-compliant privacy policies. Security posture is good with HTTPS and standard best practices, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for commercial entities. Overall, the website presents a trustworthy and professional digital presence.

L

Les Arcs Office de Tourisme

lesarcs.com

63

Les Arcs Office de Tourisme operates a comprehensive and professionally designed website promoting the Les Arcs ski resort and mountain destination in the French Alps. The site targets families and tourists interested in skiing, mountain activities, and year-round vacation options. It offers services such as accommodation booking, activity reservations, and detailed tourism information. The website is built on TYPO3 CMS and integrates modern web technologies including jQuery, Swiper.js, and Matomo analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though some security headers and explicit security policies are absent. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. WHOIS data is unavailable or protected, which slightly reduces transparency but does not detract from the site's professional appearance and trustworthiness. Overall, the website is a high-quality, trustworthy digital presence for a medium-sized tourism entity in France.

M

Megève Mont-Blanc

megeve-montblanc.com

55

Megève Mont-Blanc is a well-established cycling event organizer specializing in a unique mountain cyclosportive held annually in the French Alps. The website promotes the 2025 edition with detailed information on routes, registration, volunteering, and partnerships. The business targets cycling enthusiasts and mountain sports lovers, offering multiple race distances and live tracking features. Technically, the site is built on WordPress with Elementor and several plugins, hosted by OVH, and shows good SEO and mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is partial with a privacy policy present but no visible cookie consent mechanism. Contact information is clearly provided, including emails, phone, and physical address. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

F

FANSHOP BOHEMIANS PRAHA 1905

fanshopbohemians.cz

50

FANSHOP BOHEMIANS PRAHA 1905 operates an e-commerce platform dedicated to selling official merchandise for the Bohemians Praha 1905 football club. The website targets fans and sports enthusiasts primarily in the Czech Republic, offering a range of products including clothing, accessories, and collectibles. The business model is focused on retail e-commerce with a niche market position serving club supporters. Technically, the site uses a K2 e-shop CMS, integrates common web technologies such as jQuery and Swiper.js, and employs Cloudflare DNS services. The site is mobile optimized and provides a good user experience with clear navigation and product categorization. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks advanced security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration data is consistent with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing detailed security policies, and improving contact information transparency.

O

Obec Pržno

prznouvsetina.cz

17

Obec Pržno operates an official municipal website serving the local community of Pržno in the Czech Republic. The site provides comprehensive information about local government services, news, events, and community organizations. It targets residents and visitors seeking official information and services such as contact details, electronic filing, event calendars, and reservation systems. The business model is public service with a focus on transparency and community engagement. The website is well-branded and consistent with trust indicators such as official contact information and EU co-financed project disclosures. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Swiper.js, and Nette Framework components. It uses Cloudflare for DNS and hosting infrastructure, ensuring reliable performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers could be improved. The security posture is solid with no detected vulnerabilities or exposed sensitive data. However, the site lacks explicit privacy and cookie policies, GDPR compliance indicators, and incident response contacts, which are areas for improvement. The domain WHOIS data is consistent and indicates a legitimate, long-standing municipal presence. Overall, the website is a trustworthy, well-maintained municipal portal with good technical and security foundations but could enhance privacy compliance and security transparency to better align with modern standards.

H

Havas Media Network

havasmedianetwork.com

70

Havas Media Network is a global media experience network focused on connecting brands and consumers through meaningful media, leveraging data, content, and technology. Founded in 2023, it operates as part of the larger Havas Group, with a presence in over 140 countries and a workforce exceeding 10,000 people. The company offers a range of services including media buying and planning, e-commerce solutions, data technology, and entertainment activation, serving a diverse portfolio of high-profile clients worldwide. Technically, the website is built on WordPress and employs modern web technologies such as Google Tag Manager and Swiper.js for enhanced user experience and analytics. The site is well-optimized for mobile devices, features fast loading times, and includes comprehensive SEO and accessibility features. Hosting and DNS are managed by Gandi SAS, a reputable provider, with HTTPS enforced ensuring secure communications. From a security perspective, the site demonstrates good practices including HTTPS, clientTransferProhibited domain status, and no detected vulnerabilities or exposed sensitive data. However, there is room for improvement by enabling DNSSEC, adding security headers, and publishing formal security policies or incident response information. Privacy compliance is strong with clear privacy and cookie policies, GDPR adherence, and consent mechanisms in place. Overall, the website presents a professional, trustworthy, and secure digital presence aligned with its business objectives. Strategic recommendations include enhancing DNS security, formalizing security policies, and continuous monitoring to maintain high security and compliance standards.

K

KULTURA ČESKÁ LÍPA, příspěvková organizace

cl-kultura.cz

43

Kultura Česká Lípa is a public cultural organization affiliated with the city of Česká Lípa, Czech Republic. It provides a variety of cultural services including theater performances, concerts, workshops, and venue rentals. The website serves as an information portal for upcoming events, ticket sales, and organizational details, targeting the general public interested in cultural activities. The organization is positioned as a key local cultural institution with official city backing, enhancing its credibility and trustworthiness. Technically, the website is built on WordPress using the Divi theme and several plugins such as Complianz for GDPR compliance and Supreme Modules Pro for enhanced UI components. The site demonstrates good mobile optimization, moderate performance, and basic accessibility features. It integrates external services for ticketing and event promotion, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent management, but lacks explicit advanced security headers. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is well addressed with clear GDPR documentation and cookie policies. Contact information is comprehensive, including phone, email, and physical address, supporting business credibility. Overall, the website presents a professional and trustworthy digital presence for a government-affiliated cultural organization. The main risk factor is the absence of WHOIS data, which limits domain registration transparency. Strategic recommendations include enhancing security headers, maintaining plugin updates, and verifying domain registration status to strengthen trust and security posture.

N

NEWTON Yacht Club

newtonyachtclub.cz

41

NEWTON Yacht Club is a university-affiliated sailing club that fosters community engagement and competitive sailing events, notably the annual NEWTON CUP regatta. The club targets students, alumni, and sailing enthusiasts, positioning itself as a niche community within the educational and sports sectors. The website reflects a professional and consistent brand image aligned with its parent organization, NEWTON University Group. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for security and analytics. While the site uses HTTPS and standard security practices, it lacks explicit security headers and privacy policies, indicating areas for compliance improvement. Overall, the security posture is moderate, with no critical vulnerabilities detected. The domain registration data aligns well with the business history, supporting legitimacy and trustworthiness.

V

Vysoká škola Sting, o.p.s.

sting.cz

57

Vysoká škola Sting, o.p.s. is a private higher education institution based in the Czech Republic specializing in accounting, taxation, and financial management education. The website presents a professional and comprehensive digital presence with detailed program offerings, news, testimonials, and partner collaborations. The institution targets students and professionals seeking practical and career-oriented education in finance and economics. The site is built on Drupal 11, employs modern web technologies, and is mobile-optimized with good accessibility and SEO practices. Privacy and cookie policies are implemented with GDPR compliance, and the site uses Google Tag Manager for analytics with user consent mechanisms in place. However, the WHOIS data for the domain is missing, which raises concerns about domain registration transparency and legitimacy. Despite this, the website content and branding are consistent and trustworthy, supported by certifications and regional awards.

A

ADRA International

adra.org

50

ADRA International is a well-established global non-profit organization focused on humanitarian aid, development, and disaster relief across more than 120 countries. The organization operates through local offices and partners to fight poverty and create sustainable change. Their website reflects a professional and consistent brand image, with comprehensive content targeting donors, volunteers, and partners. The business model is centered on charitable donations, volunteer engagement, and strategic partnerships, positioning ADRA as a leading humanitarian agency with strong trust indicators including multiple certifications and transparent financial disclosures. Technically, the website is built on WordPress using Elementor, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, TikTok Pixel, and RudderLabs. The site is mobile optimized with good SEO practices and moderate performance. Hosting and domain registration are stable and consistent with the organization's profile. From a security perspective, the site uses HTTPS with good SSL configuration and some security headers, though DNSSEC is not enabled and there is no visible security.txt or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and indicate GDPR compliance, supporting responsible data protection practices. Overall, ADRA International's website demonstrates a mature digital presence with strong business credibility and good security posture. Minor improvements in DNS security and formal vulnerability disclosure could further enhance trust and resilience.

G

Generali G24

g24.si

60

Generali G24 is an established Slovenian online insurance platform offering a wide range of insurance products including vehicle, health, accident, travel, and pet insurance. The website is part of the Generali Slovenia group, positioning itself as a modern and reliable partner for customers seeking fast and easy insurance solutions online. The business model focuses on direct-to-consumer sales with an emphasis on digital convenience and customer trust. The site is well-branded and consistent with the parent company's identity. Technically, the website uses a mature technology stack including Liferay CMS, jQuery, Google Tag Manager, and analytics tools. Hosting is supported by Google Cloud DNS infrastructure, ensuring reliable performance and availability. The site is mobile optimized and accessible, with good SEO practices and structured navigation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements could include enhancing security headers, publishing security policies, and adding vulnerability disclosure channels to further strengthen trust and compliance.

G

GENERALI zavarovalnica d.d.

generali-zame.si

56

Generali ZAME is a loyalty and benefits program operated by GENERALI zavarovalnica d.d., a major insurance provider in Slovenia and part of the Generali Group. The website offers a comprehensive platform promoting health, wellness, and lifestyle benefits alongside insurance-related discounts. The program targets Slovenian residents interested in insurance and healthy living, providing a mobile app and various partner discounts. Technically, the site is built on Liferay CMS with modern JavaScript libraries and frameworks, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS, cookie consent, and secure authentication via the REKONO system, though some security headers could be explicitly enhanced. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations.

R

RIDGID

ridgid.eu

67

RIDGID is a well-established manufacturer of rugged, professional-grade tools primarily serving tradespeople such as plumbers and contractors. The website reflects a strong market position supported by its parent company, Emerson Electric Co., and offers a comprehensive product catalog including diagnostics, pressing, drain cleaning, and pipe fabrication tools. The site is professionally designed with excellent content quality, clear navigation, and mobile optimization, targeting a broad European audience with multiple language and country versions. Technically, the site employs modern web technologies including AngularJS, jQuery, and various analytics and marketing tools, hosted likely behind Cloudflare for performance and security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, indicating good privacy compliance. Overall, the website demonstrates high business credibility and trustworthiness, with no signs of malicious or suspicious activity.

S

Sportway

sportway.com

49

Sportway is a Sweden-based media technology company specializing in AI-automated sports video production, data services, and media rights acquisition. The company targets sports federations, clubs, and fans by providing end-to-end automated live sports video production solutions, focusing on lower tier leagues and youth divisions. Their market position is strong as one of Europe's fastest growing broadcast solutions with thousands of live broadcasts and installations worldwide. The website reflects a professional and modern digital presence with good content quality and clear business messaging. Technically, the site is built on WordPress with Elementor and uses modern web technologies including SEO plugins and tracking tools like Hotjar. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and publishing security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms of service pages. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and well-maintained, supporting the company's professional image.

E

Event Schedule

eventschedule.com

60

Event Schedule is a specialized SaaS platform focused on enabling talent, vendors, venues, and event curators to create, promote, and share custom event calendars. The platform integrates features such as ticket sales, QR check-ins, AI-powered tools, translations, and team collaboration, positioning itself as a niche player in the event management technology space. The website demonstrates a professional and consistent brand presence with clear messaging targeting event organizers and participants. Technically, the site is built on WordPress with Elementor and related plugins, leveraging modern web technologies and SEO best practices. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and cookie consent mechanisms. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall trust. Social media presence and privacy policies are well established, but incident response and security policies are not publicly disclosed. Overall, the site is functional and professional but would benefit from enhanced security practices and domain registration transparency.

A

Authentica

authentica.cz

52

Authentica is a Czech Republic-based company specializing in creating memorable retail experiences through in-store design, POS systems, packaging decoration, and fulfillment services. Established in 2003, it positions itself as a premium B2B service provider targeting businesses seeking to enhance customer engagement and product presentation. The website reflects a mature digital presence with professional design and clear service offerings, supported by modern web technologies including WordPress, Bootstrap, and Google Tag Manager. Security posture is solid with HTTPS and cookie consent mechanisms in place, though improvements are recommended in security headers and formal privacy and terms documentation. Overall, the site is trustworthy and well-aligned with the company's business claims.

F

Fastest Solution s.r.o.

kvetinkatrinec.cz

10

Květinka Třinec is a local Czech Republic-based e-commerce business specializing in flower delivery services across Třinec and surrounding areas. The website offers a variety of fresh flowers, bouquets, flower boxes, and seasonal arrangements with convenient online ordering and timely delivery. The business targets consumers seeking fresh floral gifts and arrangements with a focus on regional delivery. Technically, the website is hosted likely on AWS infrastructure, uses modern JavaScript libraries, and integrates Google Analytics and Facebook Pixel for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and some security headers present, though the Content-Security-Policy header is commented out and no explicit security or incident response policies are published. Privacy compliance is well addressed with GDPR documentation and cookie consent mechanisms. However, the WHOIS data for the domain is unavailable, limiting domain trust assessment. Overall, the site is professional and trustworthy but could improve transparency on security policies and domain registration details.

W

WEX Inc.

wexdrive.com

11

WEX Inc. operates as a global fintech company specializing in fuel cards, fleet management, employee benefits administration, and business payment solutions. The company targets businesses of various sizes seeking to optimize fuel expenses, streamline employee benefits, and digitize payment processes. WEX holds a strong market position as a leader in these sectors, supported by a comprehensive product portfolio and global reach. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, integrated with Google Tag Manager and Sentry for analytics and error tracking. The site demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs multiple security headers, and avoids exposing sensitive data. However, it lacks a publicly accessible security policy and incident response information, which are recommended for enterprise trust and compliance. The absence of WHOIS registration data is a notable anomaly, warranting further investigation to confirm domain legitimacy. Overall, WEX presents a professional and trustworthy online presence with strong business credibility and technical maturity. Strategic improvements in transparency around security policies and domain registration would enhance trust and compliance posture.

N

Nadace AGROFERT

nadace-agrofert.cz

47

Nadace AGROFERT is a well-established non-profit foundation based in the Czech Republic, focused on providing social support, grants, and scholarships primarily for children, youth, handicapped individuals, and single parents. The foundation has been operational since 2012 and is affiliated with the Agrofert group. Their website reflects a professional and consistent brand image, offering clear information about their projects, grant programs, and contact details. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring a responsive and accessible user experience. Security measures such as HTTPS, reCAPTCHA, and cookie consent are implemented, although some security headers could be improved. Overall, the site demonstrates a good security posture and compliance with GDPR requirements. The domain registration data aligns well with the business claims, supporting the legitimacy of the foundation.

V

VITÆ - Arts Martiaux / Fitness Centre privé Arts Martiaux - Fitness - Remise en forme

vitaeartsmartiaux.fr

45

VITÆ - Arts Martiaux / Fitness is a newly established private martial arts and fitness center located in the Yvelines region of France, specifically serving Le Vésinet and Le Pecq. The business offers a range of martial arts disciplines including Brazilian Jiu Jitsu, MMA, boxing, cross training, and self-defense courses for adults and children. Positioned as a local specialist in martial arts and fitness, the center targets individuals seeking both beginner and advanced training in these disciplines. The website reflects a professional and consistent brand image with good content quality and clear service offerings.

Psykbase is a Norwegian healthcare SaaS company specializing in journal systems for psychologists and psychiatrists. With over 30 years of experience in the field and a customer base exceeding 2000 users, Psykbase offers an integrated platform for appointment scheduling, billing, patient management, and key integrations with Norwegian health and accounting systems. The company is positioned as the most chosen journal system in its niche, supported by a professional website and strong branding. Technically, the website is built on WordPress with modern marketing and analytics tools such as HubSpot and Google Tag Manager, ensuring good SEO and user experience. Security posture is solid with HTTPS, reCAPTCHA Enterprise, and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, Psykbase demonstrates a mature digital presence with compliance to GDPR and a trustworthy business profile.

H

Havas Media Network

havasmedia.com

11

Havas Media Network is a global media experience network focused on connecting brands and consumers through meaningful media, leveraging data, content, and technology. With over 10,000 employees across more than 140 countries, it positions itself as one of the fastest-growing global media networks. The website showcases a professional and comprehensive digital presence, including detailed case studies, client logos, and service offerings that emphasize media buying, planning, data solutions, and entertainment activation. The technical infrastructure is modern, built on WordPress, and incorporates Google Tag Manager and consent management tools, indicating a mature digital marketing setup. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy and cookie policies are present and GDPR compliant, but no explicit security policy or incident response contacts were found. Overall, the website is trustworthy, professional, and well-optimized for user experience and SEO.

C

Controladoria-Geral da União

cgu.gov.br

69

The Controladoria-Geral da União (CGU) website serves as the official portal for Brazil's federal government agency responsible for public asset protection, transparency, and anti-corruption efforts. The site offers a broad range of services including auditing, citizen education, access to information, and social participation. It targets citizens, businesses, and public entities, positioning itself as a key government transparency and oversight institution. The website is well-branded, consistent, and provides comprehensive content relevant to its mission.

C

Conselho Nacional de Desenvolvimento Científico e Tecnológico

cnpq.br

69

The Conselho Nacional de Desenvolvimento Científico e Tecnológico (CNPq) is a Brazilian government agency dedicated to promoting scientific and technological development. The website serves as an official portal providing information on research funding, scholarships, scientific dissemination, and public access to government programs. It targets researchers, students, and the general public interested in science and technology within Brazil. The site is part of the gov.br ecosystem and is hosted on government infrastructure, ensuring authenticity and trustworthiness. Technically, the website employs modern web technologies including Plone CMS, jQuery, Swiper.js for carousels, and Font Awesome for icons. It integrates Google Tag Manager for analytics and uses security best practices such as HTTPS enforcement and security headers. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured data. From a security perspective, the site demonstrates a strong posture with HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not prominently available, which could be improved to enhance transparency and trust. Overall, the website is a professional, secure, and reliable government portal with comprehensive content relevant to its audience. It maintains high legitimacy and aligns well with Brazilian government digital standards.

R

RIDGID

ridgid.com

67

RIDGID is a well-established brand specializing in manufacturing rugged, professional-grade tools primarily for trades such as plumbing, electrical, and welding. The website reflects a mature digital presence with comprehensive product catalogs, support services, and a strong connection to its parent company, Emerson Electric Co. The technical infrastructure leverages modern JavaScript frameworks, analytics, and marketing tools, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforcement and standard security practices, though some enhancements in security headers and incident response visibility could improve resilience. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

B

Brandlift Kft.

brandlift.eu

44

Brandlift Kft. is a Hungarian-based full-service digital and social media agency specializing in web technologies, online marketing, web analytics, and social media tools to support client growth. The company serves a broad business audience, including over 100 clients with notable brands such as KFC, Starbucks, and Erste Bank, positioning itself as an established player in the digital marketing sector. The website content is professional, well-structured, and clearly communicates the agency's services and expertise. Technically, the website employs a modern JavaScript stack including jQuery, Swiper.js, WOW.js, and skrollr for animations and interactivity. It integrates multiple tracking and marketing tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO practices and moderate performance. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and formal security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected, but improvements are recommended in security header implementation and publishing a security policy. WHOIS data is privacy protected as per EURid policy, which is typical for .eu domains, and no suspicious registration patterns were found. Overall, Brandlift.eu presents a trustworthy and professional digital agency with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

I

Instruct-ERIC

aria.services

56

ARIA is a cloud-based access and facility management platform designed specifically for research infrastructures and national facilities, primarily in Europe. It is developed and operated by Instruct-ERIC, a reputable non-profit organization focused on supporting research infrastructures. The platform offers a comprehensive suite of tools including proposal management, GDPR-compliant messaging, moderation workflows, booking calendars, and integrated reporting, positioning itself as a key enabler for European Commission funded projects and research communities. The website reflects a professional and consistent brand image with clear contact information and strong trust signals such as testimonials from recognized research leaders.

T

Tops México

topsmejoresempresasdeconstruccionyvivienda.com

44

Tops México operates a specialized website focused on ranking and showcasing the top 200 brands and companies in the construction and housing sector in Mexico. The platform serves industry professionals and stakeholders by providing market research-based rankings, news, and blog content. The website is built on WordPress using Elementor and integrates SEO and analytics tools to enhance visibility and user engagement. The business is positioned as an important information source within the Mexican construction industry, founded in 2021, and maintains a consistent brand presence across multiple social media channels. Technically, the site demonstrates moderate performance and good mobile optimization but lacks advanced security headers and DNSSEC implementation. Privacy compliance is addressed with a comprehensive privacy policy, though cookie consent mechanisms are absent. Overall, the site is trustworthy, professional, and well-aligned with its business objectives.

L

Leuchtturm Gruppe

leuchtturmgruppe.com

57

Leuchtturm Gruppe is a large, family-owned premium brand house based in the Hamburg metropolitan region, Germany. It operates internationally with over 500 employees across 10 locations on 4 continents. The company manages a portfolio of eight premium brands specializing in products related to Collecting, Writing, Living, and Giving. The website reflects a strong brand identity with professional design and comprehensive content, targeting a general audience interested in high-quality, real-world products. Technically, the site is built on WordPress using Elementor and Yoast SEO, with modern JavaScript libraries like Swiper and jQuery, delivering a mobile-optimized and SEO-friendly experience. Security posture is good with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are absent. The absence of WHOIS data for the domain reduces transparency and trustworthiness somewhat, but the overall digital presence is professional and consistent with a legitimate business.

S

Shoffi App

shoffi.app

62

Shoffi is a specialized affiliate marketing platform designed to help Shopify app developers grow their apps through partnerships. The website positions itself as a niche player within the Shopify ecosystem, targeting app developers and affiliates. The business model revolves around providing affiliate marketing tools and a marketplace to facilitate growth. The site demonstrates a professional design with consistent branding and clear messaging tailored to its target audience. Technically, the site is built on WordPress using Elementor, integrating modern JavaScript libraries and analytics tools such as Google Analytics and Crisp chat for customer engagement. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is solid with HTTPS enabled and cookie consent implemented, but lacks some advanced security headers. Privacy compliance is partial, with a cookie banner present but no explicit privacy policy or terms of service found on the homepage. Overall, the site reflects a legitimate small technology business with room for improvement in privacy and security documentation.