Security Directory

I

Interventions Numériques

interventions-numeriques.fr

46

Interventions Numériques is a French-based small educational and mediation service focused on digital autonomy, offering a variety of training courses and mediation services to individuals and organizations. The business operates under the cooperative Oxalis, which is Qualiopi certified, indicating recognized quality in training services. The website is professionally designed using WordPress with a modern tech stack and SEO optimizations, providing good user experience and mobile responsiveness. Security posture is solid with HTTPS and no evident vulnerabilities, though some improvements in privacy compliance and security policy transparency are recommended. Overall, the domain registration and website content are consistent and trustworthy, supporting a positive legitimacy assessment.

V

Visit Plzeň

visitpilsen.eu

67

Visit Plzeň operates as the official tourism guide for the Plzeň region in the Czech Republic, providing comprehensive information on local attractions, events, gastronomy, and visitor tips. The website serves tourists and visitors with a well-structured, content-rich platform supported by local government funding, positioning itself as a trusted regional tourism resource. The business model focuses on tourism promotion and engagement through digital content and an e-shop for branded merchandise. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Mailchimp integration, ensuring good SEO and marketing capabilities. The site is mobile-optimized, accessible, and uses HTTPS with a valid SSL certificate. Performance is moderate, with a clean and professional design that enhances user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating GDPR compliance. However, it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, but the website's professional appearance and government association support its legitimacy. Overall, Visit Plzeň presents a secure, trustworthy, and user-friendly platform for regional tourism promotion. Strategic improvements in security headers, incident response documentation, and vulnerability disclosure could further enhance its security posture and compliance.

V

Visit Plzeň

visitplzen.eu

67

Visit Plzeň operates as the official tourism guide for the Plzeň region in the Czech Republic, providing comprehensive information on local attractions, events, gastronomy, and travel tips. The website serves tourists and visitors with multilingual content and an integrated e-shop for merchandise. Supported by local government and the Ministry for Regional Development, it holds a strong market position as a trusted regional tourism portal. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Mailchimp integration, ensuring good SEO and marketing capabilities. The site is mobile-optimized and offers a smooth user experience with clear navigation and rich content. Security-wise, the website enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and publicly available security policies. The domain WHOIS data is privacy protected, which is common for European domains, but the website's official nature and government backing support its legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

G

GIENGER spol. s r.o.

brotje.sk

56

The website www.brotje.sk represents GIENGER spol. s r.o., the official reseller and service provider for BRÖTJE gas condensing boilers in Slovakia. The company offers modern, efficient heating solutions primarily targeting residential, commercial, and industrial customers. BRÖTJE is a well-established European brand with a strong market position in heating technology. The website provides comprehensive product information, service details, and customer support resources, reflecting a mature business model focused on sales and after-sales service. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR for compliance and SEO optimization. It integrates Google Analytics and Google reCAPTCHA for analytics and security. The site is mobile-optimized and features good navigation and content structure, though some accessibility features could be enhanced. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms. While some security headers are not explicitly detected, no exposed sensitive data or vulnerabilities are apparent. The absence of a published security policy or incident response contact suggests room for improvement in transparency and preparedness. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports the business goals of GIENGER and BRÖTJE in the Slovak market. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility to further strengthen the site's security posture and user trust.

W

Weblider s.c.

strefakalendarzy.pl

43

Weblider s.c. operates the website strefakalendarzy.pl, a specialized printing company focused on producing a wide range of advertising calendars for businesses and individual customers primarily in Poland. The company offers various calendar types including wall, desk, book, poster, and planner calendars, complemented by custom graphic design services. The website is well-structured, professionally designed, and provides comprehensive product information and ordering options, including phone, email, and online forms. Technically, the site is built on WordPress with SEO optimization via Yoast and uses Google Analytics and Google Ads for marketing and tracking. Security measures include HTTPS and reCAPTCHA on forms, but lack security headers and a privacy policy page, which are areas for improvement. The domain is registered with OVH SAS since 2010, consistent with the business's operational history. Overall, the website presents a trustworthy and professional image with moderate technical maturity and good business credibility.

N

NETSTR s.r.o.

netstr.cz

44

NETSTR s.r.o. is a Czech Republic based small IT services company specializing in IT outsourcing, data network design and implementation, and security camera systems. The company targets businesses seeking comprehensive IT infrastructure management and security solutions. Their website is professionally designed using WordPress with modern plugins and libraries, providing clear service descriptions and contact information. The technical infrastructure is modern and performant, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks some security headers and formal security policies. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the website presents a trustworthy and professional image suitable for its market segment.

G

Groupe BPCE

groupebpce.com

77

Groupe BPCE is a major French banking and insurance group, operating through well-known brands such as Banque Populaire, Caisse d'Epargne, and Natixis. It holds the position of the second largest banking group in France, financing a significant portion of the national economy. The website reflects a mature digital presence with comprehensive content targeting customers, investors, journalists, and partners. The business model focuses on retail banking, insurance, investment management, and corporate banking services. The site is professionally designed, mobile-optimized, and SEO-friendly, indicating a high level of digital maturity. Technically, the website is built on WordPress, leveraging modern JavaScript libraries, SEO plugins, and tag management tools like Tealium. Security measures include HTTPS enforcement and bot protection via hCaptcha. Cookie consent and privacy policies are implemented in compliance with GDPR, demonstrating attention to privacy and regulatory requirements. However, explicit security policies and incident response contacts are not prominently available, which could be improved. The security posture is strong with no evident vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly but does not detract from the overall legitimacy given the extensive corporate branding and content. The site does not contain any adult or questionable content, making it safe for general audiences. Overall, Groupe BPCE's website is a robust, professional platform supporting its business operations and stakeholder communications. Strategic improvements could focus on enhancing transparency around security policies and incident response to further strengthen trust and compliance.

A

Alliance Digitale

iabfrance.com

63

Alliance Digitale is a French non-profit industry association dedicated to structuring and defending the digital marketing sector in France. It brings together experts, advertisers, agencies, and technology providers to promote innovative and responsible solutions, ensuring a reliable and high-performing industry. The organization offers certifications such as the Privacy Protection Pact and Drive to Trust, publishes reports and guides, and hosts events and webinars to foster collaboration and knowledge sharing. The website reflects a mature digital presence with professional design, comprehensive content, and active engagement with its members and the broader industry. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use. Security posture is good with HTTPS and no obvious vulnerabilities, though some security headers and incident response policies are not explicitly published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, though improvements in transparency and compliance would enhance its security and privacy posture.

E

ECAL/Ecole cantonale d’art de Lausanne

ecal-typefaces.ch

55

ECAL Typefaces is a digital platform operated by the Ecole cantonale d’art de Lausanne (ECAL), showcasing typefaces created by students and alumni. The website serves as a resource for designers and educators, offering previews, licensing information, and stories related to typography. The platform leverages WordPress with WooCommerce for e-commerce functionality, supported by SEO and performance optimization plugins. The site is well-structured, mobile-optimized, and uses HTTPS with a cookie consent mechanism, reflecting a mature digital presence. Security measures include Google reCAPTCHA and Matomo analytics, though some improvements in security headers and plugin dependencies are recommended. Overall, the website is trustworthy, professionally maintained, and aligned with the educational mission of ECAL.

A

Alianza por el Autoconsumo

alianzaautoconsumo.org

48

Alianza por el Autoconsumo is a Spanish non-profit alliance formed by over 60 organizations advocating for renewable energy self-consumption, primarily solar photovoltaic but also including wind, biomass, and mini-hydraulic sources. The alliance focuses on political advocacy, public awareness, documentation, events, and knowledge dissemination to accelerate Spain's energy transition and promote green economic recovery. The website is professionally designed using WordPress with modern plugins and technologies, optimized for SEO and mobile devices. Contact information and privacy compliance are clearly addressed, including GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and some security headers are missing. Overall, the site is trustworthy, well-maintained, and serves as a credible platform for energy advocacy in Spain.

Unlock Book Fair is a niche cultural event organizer specializing in graffiti books and zines, hosting international exhibitors and collaborating with cultural institutions in Germany. The website is built on WordPress with a modern tech stack including Yoast SEO and UIkit, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security practices.

C

campoint AG

campoint.net

29

Campoint AG is a technology company specializing in e-commerce and digital business process solutions. Positioned as a pioneer and expert in the value chain of online portals, the company offers a comprehensive range of services including software development, design, hosting, payment processing, and customer service. They also operate a training campus to nurture talent, emphasizing innovation and digital freshness. The website reflects a professional and consistent brand image targeting businesses and professionals seeking digital entertainment solutions and e-commerce support. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and GDPR cookie consent mechanisms, ensuring good SEO and privacy compliance. The site is mobile-optimized and uses HTTPS with valid SSL certificates, indicating a mature digital infrastructure. However, the absence of detailed hosting information and some advanced security headers suggests room for technical improvements. From a security perspective, the site enforces HTTPS and cookie consent but lacks visible security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected, but the missing WHOIS data raises concerns about domain legitimacy. The company demonstrates good privacy compliance with GDPR and provides clear contact information, enhancing trust. Overall, Campoint AG presents a solid business and technical profile with a professional web presence. The main risk lies in the lack of WHOIS transparency, which should be addressed to improve domain trustworthiness. Strategic recommendations include publishing security policies, implementing security headers, and establishing vulnerability disclosure channels to strengthen security posture and compliance.

L

La Belle Bobine

labellebobine.com

42

La Belle Bobine is a small artisan business based in Finistère, Bretagne, France, specializing in handmade clothing and accessories since 2011. The company also offers sewing workshops for beginners and advanced learners, targeting local customers and sewing enthusiasts. The website is built on WordPress with a professional design and clear navigation, supporting the business's artisanal retail and educational services. Technically, the site uses common WordPress plugins and libraries, including Yoast SEO and jQuery, and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, which reduces domain trustworthiness, though the website content and contact information appear legitimate. Overall, the site is functional and professional but would benefit from improved privacy compliance and security hardening.

S

Salford Social Value

salfordsocialvalue.org.uk

65

Salford Social Value is a community-focused non-profit organization aiming to foster a cultural shift in Salford by encouraging local organizations to contribute positively to social, environmental, and economic wellbeing. The website serves as a platform to showcase their initiatives, case studies, and ways to get involved, targeting local stakeholders and organizations. The digital infrastructure is built on WordPress with modern SEO and GDPR compliance plugins, ensuring a professional and accessible user experience. Security measures include HTTPS and Google reCAPTCHA integration, though explicit security policies and headers could be improved. The WHOIS data is unavailable due to domain naming rules issues, which raises some concerns about domain registration legitimacy, but the website content and design indicate a legitimate and trustworthy operation. Overall, the site is well-structured, informative, and compliant with privacy regulations, serving its community-oriented mission effectively.

M

Manni Group

mannigroup.com

70

Manni Group is a well-established Italian industrial company specializing in steel processing, sandwich panels, energy efficiency, and off-site construction technologies. The company has a strong market position in Europe with multiple subsidiaries and a focus on innovation and sustainability. The website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, it uses WordPress with modern integrations such as HubSpot and Google Analytics, and implements good security practices including HTTPS and cookie consent mechanisms. However, there is room for improvement in DNS security and publishing explicit security policies. Overall, the security posture is strong with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, enhancing trustworthiness.

R

Realitní a hypoteční centrum s.r.o.

rh-centrum.cz

43

Realitní a hypoteční centrum s.r.o. is a Czech-based company specializing in mortgage and real estate financing services. The company offers tailored mortgage solutions, free property valuation, and no fees for loan processing, targeting individuals seeking financing for apartments, family houses, or land. The website reflects a professional and consistent brand image with a focus on client trust and service quality. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Slider Revolution, and it uses Google Analytics for visitor tracking. The site is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. The absence of WHOIS data reduces domain trustworthiness, but the business content and certifications support legitimacy. Overall, the site is professional and trustworthy with room for technical and security enhancements.

L

Loopi

loopi-velo.fr

60

Loopi is a French company specializing in sustainable and innovative tourism solutions. Their website positions them as a partner for accelerating the transition to sustainable tourism by offering unique circuits and enhancing user experience. The company targets tourism professionals and eco-conscious travelers, emphasizing heritage valorization and environmental responsibility. Technically, the website is built on WordPress using the Divi theme, with integrations such as Yoast SEO, Contact Form 7, Matomo analytics, and Google reCAPTCHA, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS and anti-bot measures, but lacks explicit security headers and formal privacy or cookie policies. The absence of public WHOIS data suggests privacy protection, which is common for small businesses but slightly reduces trust. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security transparency.

P

PAN Foundation

panfoundation.org

61

PAN Foundation is a well-established non-profit organization dedicated to providing financial assistance, advocacy, and education to patients with life-threatening, chronic, and rare diseases. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The organization leverages modern web technologies including WordPress CMS, Google Tag Manager, Facebook Pixel, and Fundraise Up for fundraising, indicating a robust technical infrastructure. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be enhanced for improved protection. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR considerations. Overall, the website demonstrates high professionalism and trustworthiness, supporting the organization's mission effectively.

M

Mircem

mircem.fr

45

Mircem is a French national reference center specializing in rare inflammatory diseases of the brain and spinal cord. The organization focuses on data registry, public and professional education, and therapeutic guidance, positioning itself as a key healthcare resource within France and Europe through affiliations with Brain Team and the European Reference Network. The website reflects a professional healthcare entity targeting patients, families, and medical professionals, with content primarily in French and an English language option. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and various plugins for SEO, multilingual support, and forms. Hosting is provided by Infomaniak Network SA, a reputable provider. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security policies and vulnerability disclosure mechanisms. Overall, the site is trustworthy, well-branded, and serves its niche effectively.

PANA is a French non-profit organization operating a national digital support network for associations, providing digital accompaniment, training, and individual support. The website is built on WordPress using Themify Ultra theme and integrates Google Maps API for location-based services. The technical infrastructure is modern and includes Bootstrap and jQuery, hosted by OVH sas. Security posture is adequate with HTTPS and domain protections but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. The website is professional, well-branded, and trustworthy with multiple contact points and structured data. Overall, the site serves its target audience effectively but should improve privacy and security disclosures.

F

Finby

finby.eu

61

Finby is a European-focused payment solutions provider specializing in secure, scalable cross-border payment services tailored for e-commerce businesses. The company offers a comprehensive suite of services including card payments, local payment methods, business accounts, and an innovative merchant portal. Their market position is that of a trusted partner enabling international growth for merchants through reliable technology and expert guidance. The website demonstrates a high level of digital maturity, leveraging WordPress CMS with modern plugins for SEO, performance, and GDPR compliance. The technical infrastructure is robust, hosted on Microsoft Azure DNS, and optimized for fast performance and mobile responsiveness. Security posture is strong with HTTPS enforced, PCI DSS certification displayed, and cookie consent mechanisms in place, though DNSSEC is not enabled and security headers are not explicitly detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit contact information and a published security policy or incident response details. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding vulnerability disclosure information to enhance trust and security transparency.

M

M A R L O T E C H s.r.o

finby.cz

52

Finby, operated by M A R L O T E C H s.r.o, is a modern payment solutions provider focused on delivering local payment methods for European e-commerce merchants. Founded in 2024, the company offers a broad range of services including card payments, instant bank transfers, subscription billing, and retail payment solutions. Their platform supports multiple currencies and integrates advanced tokenization for secure transactions. The website is professionally designed, multilingual, and optimized for mobile devices, reflecting a mature digital presence for a young company. Technically, the site runs on WordPress with SEO and GDPR compliance plugins, hosted on Azure DNS infrastructure. Security posture is strong with HTTPS enforced and PCI DSS certification displayed, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, Finby presents a credible and trustworthy brand in the European payment gateway market.

F

Finby

finby.sk

52

Finby is a Slovak-based payment gateway provider specializing in local payment methods for European e-commerce businesses. The company offers secure, modern, and tailored payment solutions including card payments, instant bank transfers, and a merchant portal for transaction management. The website is professionally designed, multilingual, and optimized for performance and mobile devices. It demonstrates strong GDPR compliance with a comprehensive cookie consent mechanism and privacy policy. Security posture is robust with HTTPS enforced and PCI DSS certification displayed, although explicit security policies and incident response contacts are not published. Overall, Finby presents a credible and trustworthy business with a clear market focus on European e-commerce payment solutions.

A

Admin

pornsnippet.com

53

PornSnippet.com is a niche adult content aggregator website specializing in free OnlyFans snippet porn videos. The site operates on a WordPress platform with Yoast SEO plugin integration, offering a curated collection of adult video snippets targeting an adult-only audience. The business model centers on content aggregation and distribution without direct subscription or sales on the site. Technically, the site uses modern web technologies including HTTPS, jQuery, and structured data for SEO, but lacks advanced security headers and privacy policies. The domain is very recently registered, indicating a new entrant in the adult content market. Security posture is basic with room for improvement in DNSSEC, security headers, and privacy compliance. Overall, the site provides functional adult content services but lacks transparency and formal compliance documentation.

A

Alcalie

alcalie.fr

45

Alcalie is a French editorial communication agency specializing in bespoke content creation and editorial strategy services. The company offers a comprehensive range of services including editorial strategy, content creation, magazines, annual reports, and corporate brochures. The website is professionally designed using WordPress with modern plugins and SEO optimizations, targeting businesses and organizations seeking high-quality editorial communication. The technical infrastructure is solid with good mobile optimization and performance, though some security best practices such as security headers and privacy policies could be improved. The security posture is generally good with HTTPS enforced, but lacks explicit incident response and vulnerability disclosure information. Overall, the website presents a trustworthy and professional image but would benefit from enhanced privacy compliance and domain registration transparency.

G

GC SKUPINA

trinnity-zmekcovace-vody.cz

54

The website www.trinnity-zmekcovace-vody.cz represents GC SKUPINA's TRINNITY brand, specializing in water softeners and filtration systems. The company positions itself as a major European manufacturer with patented American technology, offering a range of products designed to improve water quality, reduce heating costs, and protect household appliances. The site is well-structured, professionally designed, and targets residential and commercial customers primarily in the Czech Republic and Europe. Technically, the site is built on WordPress with modern plugins for SEO, cookie compliance, and user interaction, including Google Tag Manager and reCAPTCHA for security. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and incident response details are absent. The lack of WHOIS data is a concern for domain legitimacy but does not detract from the professional presentation and compliance observed on the site. Overall, the site demonstrates a mature digital presence with room for improvement in transparency and security documentation.

G

GIENGER spol. s r.o.

cosmo-info.cz

58

COSMO, operated by GIENGER spol. s r.o. under the parent company GC SKUPINA, is a Czech-based supplier specializing in heating technology products including radiators, underfloor heating, solar collectors, water heaters, and thermostatic valves. The company targets installation and plumbing firms as well as end customers seeking modern and reliable heating solutions. The website is professionally designed using WordPress with modern plugins and provides comprehensive product information and contact details. Technical infrastructure is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms in place. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Security posture is generally good but could be improved by adding security headers and publishing formal security policies. Overall, the site is trustworthy and functional with moderate technical maturity and good privacy compliance.

G

GIENGER spol. s r.o.

broetje-topeni.cz

60

The website www.broetje-topeni.cz represents a Czech distributor and service provider for BRÖTJE gas condensing boilers, a leading European brand in heating technology. The business is positioned as a medium-sized essential entity in the energy sector, targeting residential, commercial, and industrial customers in the Czech Republic. The site offers detailed product information, service contacts, and documentation, supported by the wholesale distributor GC SKUPINA. The company emphasizes modern, efficient, and ecological heating solutions with a strong focus on quality and customer support. Technically, the website is built on WordPress with a modern theme and plugins including Yoast SEO, Complianz GDPR compliance, and Google reCAPTCHA for security. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate, with room for improvement in accessibility and advanced security headers. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks some recommended HTTP security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR consent management. Business credibility is supported by clear contact information and professional content, though the absence of WHOIS data reduces domain transparency and trust somewhat. Overall, the website is a professional and trustworthy platform for BRÖTJE heating products in the Czech market. Strategic improvements in domain transparency and security headers would enhance trust and security posture further.

G

GIENGER spol. s r.o.

gienger.sk

10

GIENGER spol. s r.o. operates as a professional wholesale distributor specializing in technical building services (TZB) including heating, sanitary, and installation products primarily serving Slovakia. The company is part of the larger European GC skupina group, which has a strong market presence across multiple EU countries. Their business model focuses on B2B sales to installation firms and trade partners, supported by digital tools such as a mobile app and e-shop platform. The website reflects a mature digital presence with good content quality, clear navigation, and regional targeting. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for marketing insights. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent, indicating a trustworthy and legitimate operation.

G

GIENGER spol. s r.o.

gcskupina.cz

58

GC SKUPINA is a prominent European trading group specializing in wholesale activities within the Technical Building Equipment (TZB) sector. The company operates multiple subsidiaries across the Czech Republic and Slovakia, offering a broad portfolio of products and services including heating, sanitary, installation, and energy solutions. Their business model integrates wholesale distribution with retail e-shops and bonus programs, targeting B2B customers and professional craftsmen. The website reflects a well-established market position with consistent branding and comprehensive service offerings.

L

Loxxess AG

loxxess.com

53

Loxxess AG operates as a contract logistics provider specializing in solutions for E-Commerce, Omnichannel, Pharma, and Healthcare sectors. The company positions itself as reliable, efficient, scalable, and transparent, targeting business clients requiring dedicated logistics services. The website is professionally designed, primarily in German, and reflects a mature digital presence with SEO optimization and cookie consent mechanisms in place. Technically, the site runs on WordPress with modern plugins such as Yoast SEO and Cookiebot, and integrates Google Tag Manager and hCaptcha for analytics and security respectively. Security posture is good with HTTPS enforced and consent management implemented, though explicit security headers and incident response information are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and structure suggest a legitimate and established business. Overall, the site is well-maintained, with moderate to good technical and security maturity, but could improve transparency and security best practices.

A

Ag Art cz s.r.o.

ipcc.cz

61

Ag Art cz s.r.o. is a Czech-based digital agency specializing in creating custom websites, e-commerce platforms, and tailored online marketing strategies. Established in 2013, the company serves businesses seeking to enhance their online presence with professional web solutions and ongoing maintenance services. Their market position is supported by a portfolio of diverse clients and a consistent brand image. Technically, the website is built on WordPress with modern plugins and tools, including GDPR compliance mechanisms and analytics integrations. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be improved. Overall, the site reflects a mature digital infrastructure with good user experience and compliance standards.

P

Pustevny

pustevny.cz

47

Pustevny.cz is a well-established regional tourism and transportation website focused on the Pustevny mountain area in the Czech Republic. It provides comprehensive information about cable car services, scooter and e-bike rentals, local activities, weather updates, webcams, and events. The website targets tourists and outdoor enthusiasts visiting the region, offering online ticketing and rental booking services to enhance visitor convenience. The domain has been registered since 2000, indicating a stable and credible presence in the market. Technically, the website is built on WordPress using popular plugins such as Yoast SEO and Elementor, ensuring good SEO optimization and a modern user experience. The site uses HTTPS with a good SSL configuration and includes cookie consent mechanisms compliant with GDPR requirements. However, explicit privacy policies and security policies are not published, which is a gap in compliance and transparency. From a security perspective, the site employs HTTPS and reCAPTCHA for form protection but lacks visible security headers and incident response information. No vulnerabilities or suspicious content were detected. The website demonstrates a moderate to good security posture but would benefit from enhanced security practices and clearer privacy disclosures. Overall, Pustevny.cz is a professional, trustworthy, and user-friendly website serving its niche effectively. Strategic improvements in privacy policy publication, security headers, and incident response transparency would further strengthen its compliance and security posture.

The website sfpi.cz represents the Státní fond podpory investic (SFPI), a Czech government fund focused on providing loans and grants for housing, regeneration of public spaces, and construction of rental housing. It serves public sector entities and legal persons in the Czech Republic, offering financial support and consulting services. The site is professionally designed, with clear navigation and relevant content in Czech language, targeting municipalities and public investors. Technically, the site is built on WordPress with modern plugins for SEO, accessibility, and cookie compliance, hosted by a Czech registrar. Security posture is good with HTTPS and cookie consent, though explicit security headers and vulnerability disclosure mechanisms are absent. The domain registration data is consistent with the business profile, indicating legitimacy. Overall, the site is trustworthy and well-maintained, supporting government housing initiatives.

ONF Energie Bois is a French network specializing in the sale and distribution of wood energy products including firewood, wood pellets, and forest wood chips. It is developed and associated with the Office national des forêts (ONF), a reputable public forestry organization in France. The website serves as a portal for consumers and professionals to find distributors, estimate consumption, and learn about sustainable wood energy. Technically, the site is built on WordPress with common plugins for SEO, forms, and marketing integrations such as Google Analytics and Brevo. Security measures include HTTPS and Google reCAPTCHA, with visible user warnings about phishing attempts, indicating a proactive security stance. However, the absence of WHOIS registration data and lack of explicit privacy and cookie policies represent compliance and trust gaps. Overall, the site is professional, content-rich, and well-branded but would benefit from enhanced transparency and security headers.

F

Fresh Services, s.r.o.

freshservices.cz

53

Fresh Services, s.r.o. is a Czech digital marketing agency established in 2007, specializing in digital marketing and web development services. The company maintains a professional online presence with active social media profiles and a website optimized for SEO and user experience. Their business model focuses on providing marketing and web solutions to businesses primarily in the Czech Republic. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Cookiebot for compliance and analytics. The site is mobile-optimized and uses Google Tag Manager for marketing and tracking purposes. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though additional security headers could improve protection. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Z

Zserver s.r.o.

zserver.cz

49

Zserver s.r.o. is a Czech-based small business specializing in webhosting, managed server administration, and web development services, particularly for popular CMS and e-commerce platforms such as WordPress, PrestaShop, and ZenCart. The company has been operating since 2001 and positions itself as a trusted provider for small to medium-sized businesses seeking optimized hosting solutions and related IT services. Their website reflects a professional and consistent brand image with clear service offerings and customer references. Technically, the website is built on WordPress with common plugins like Yoast SEO and Complianz GDPR for privacy compliance. It uses jQuery and Cufon for font rendering and includes Google Analytics and Facebook SDK for tracking and marketing purposes. The site is moderately optimized for performance and mobile use, with good SEO practices but basic accessibility features. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, no advanced security headers were detected, and there is no publicly available security or incident response policy. The WHOIS data for the domain is unavailable, likely due to privacy protection, but the website content and contact information suggest legitimacy. Overall, the security posture is adequate but could be improved with additional headers and published policies. The overall risk assessment indicates a trustworthy and professional small business website with moderate technical maturity and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and continuous monitoring of third-party scripts to maintain a strong security posture.

tigreblanc® is a French creative branding agency specializing in branding, print, digital, and image services. With over 30 years of experience led by founder Guillaume, the agency serves clients primarily in France and Belgium, focusing on strategic brand development and communication. The website reflects a professional and consistent brand image, targeting businesses seeking comprehensive branding and communication solutions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Tag Manager and Axeptio for analytics and cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent but lacks explicit security policies or incident response information. The absence of WHOIS data is a concern for domain transparency but does not detract significantly from the overall professionalism and trustworthiness of the site. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms.

R

Robustel ANZ

robustelanz.com.au

51

Robustel ANZ operates as the master distributor for Robustel Industrial IoT Routers, Gateways, and Modems within the Australia and New Zealand markets. The company focuses on providing industrial-grade IoT connectivity solutions to businesses and enterprises in these regions. The website reflects a professional business presence with a clear focus on technology products related to IoT infrastructure. The market position is that of a specialized distributor serving a niche industrial technology sector. Technically, the website is built on WordPress using the Divi theme and WooCommerce plugin, indicating a modern and flexible digital infrastructure. The site is hosted on Australian servers, aligning with its regional market focus. Security posture is adequate with HTTPS enabled and domain registration protections in place; however, there is room for improvement in security headers and compliance documentation. Privacy and cookie policies are notably absent, which impacts compliance and user trust. Overall, the website is functional and professional but would benefit from enhanced privacy, security, and compliance features to strengthen its risk posture and trustworthiness.

C

Centre des Congrès Océanice

oceanice-congres.com

65

The website www.oceanice-congres.com represents the Centre des Congrès Océanice, a modern congress and event center located in Nice, France. It offers modular event spaces, accessibility features, and an eco-responsible approach to hosting events. The site targets event organizers, businesses, associations, and public entities seeking professional venues in the region. The business model focuses on venue rental and associated event services, positioning itself as a new and environmentally conscious player in the hospitality sector of Nice. Technically, the website is built on WordPress 6.6.2 with a variety of plugins including Yoast SEO for optimization, Iris Map for mapping features, and Sentry for error tracking. It uses modern web technologies such as jQuery and MapLibre GL JS. The site is well-optimized for SEO and mobile devices, with good accessibility features. Performance is moderate, with room for improvement in loading speed and technical enhancements. From a security perspective, the site uses HTTPS with a good SSL configuration and employs Sentry for monitoring. However, it lacks explicit security headers and formal privacy and cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, although the website content itself appears professional and legitimate. Overall, the website presents a solid business presence with good technical implementation and security posture but requires improvements in privacy compliance and domain registration transparency to enhance trust and regulatory adherence.

R

R' La Radiostation

laradiostation.fr

39

R' La Radiostation is a regional French radio station focused on serving mountain vacationers in the Tarentaise area. The website provides radio broadcasting content, news updates in French and English, and weather information relevant to its audience. The business appears to be a small, local media entity with a domain registered since 2004, consistent with its described history. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by OVH, and uses HTTPS for secure connections. However, it lacks explicit privacy and cookie policies, contact information, and security headers, which are important for compliance and security best practices. Overall, the site is functional and professionally designed but could improve in privacy compliance and security hardening.

O

ONdrugDelivery

ondrugdelivery.com

67

ONdrugDelivery is a well-established B2B publication specializing in the global drug delivery industry, providing high-quality, focused content including expert views, interviews, and industry news. The website targets pharma and biopharma professionals worldwide and maintains a strong market position as a trusted source of industry intelligence. Technically, the site is built on WordPress with a moderate performance profile, leveraging common plugins for SEO, advertising, and cookie compliance. The infrastructure includes Cloudflare DNS and GoDaddy as registrar, with SSL properly configured. Security posture is solid with HTTPS enforced and domain locking, though DNSSEC is not enabled and some advanced security headers are missing. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place. No direct contact information or incident response details are publicly available, which could be improved. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Mark Cuban Companies

mybox.com

59

Mark Cuban Companies is a diversified investment and business management entity led by entrepreneur Mark Cuban, headquartered in Dallas, Texas. The company operates across multiple sectors including sports franchises, healthcare, blockchain, media, consumer products, and technology ventures. The website serves as a portfolio showcase of these companies and initiatives, targeting entrepreneurs, investors, and business partners. Technically, the site is built on WordPress with modern SEO and web font technologies, hosted with Cloudflare DNS and registered via GoDaddy. The site is mobile optimized and provides a good user experience with clear navigation and professional branding. Security posture is adequate with HTTPS and domain protection but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

W

WPDreams

ajaxsearchpro.com

65

Ajax Search Pro is a specialized WordPress plugin developed by WPDreams, offering a customizable and efficient live search engine replacement for WordPress websites. The company positions itself as a niche leader in the WordPress plugin market, targeting website developers and administrators seeking enhanced search functionality. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Smart Slider 3, and is hosted behind Cloudflare DNS services, indicating a modern and scalable technical infrastructure. The site demonstrates good SEO practices and mobile optimization, providing a positive user experience. Security-wise, the site uses HTTPS with a good SSL configuration and domain status protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

S

Stoneweg Asset Management SA

stoneweg.com

57

Stoneweg Asset Management SA is a global alternative investment group specializing in Real Assets, established in 2015 and headquartered in Geneva, Switzerland. The company operates 23 offices worldwide across Europe, the US, and Singapore, and is part of the SWI Group. Stoneweg offers investment product structuring, mandate management, and experiential ventures in sectors such as sport, culture, entertainment, and gastronomy. The website reflects a professional and comprehensive digital presence with strong branding and trust indicators such as INREV membership and PRI signatory status. Technically, the website is built on WordPress using modern technologies including Bootstrap, jQuery, and Mapbox GL JS for interactive maps. SEO is enhanced by Yoast SEO plugin, and privacy compliance is robust with GDPR cookie consent mechanisms and privacy policies clearly presented. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced, anti-spam measures, and email obfuscation, though HTTP security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS domain registration data is a concern for domain trust but does not detract from the overall legitimacy of the business presence. Overall, Stoneweg's website demonstrates a mature digital infrastructure supporting its business model, with recommendations to enhance security headers and incident response disclosures to further strengthen trust and compliance.

L

Louvre-Lens

louvrelens.fr

60

Louvre-Lens is an official French museum branch presenting cultural exhibitions, events, and visitor services. The website serves as a comprehensive portal for museum information, programming, and ticketing, targeting a broad public audience including families, tourists, and cultural enthusiasts. The site is built on WordPress with modern plugins and analytics tools, demonstrating a mature digital infrastructure. Security posture is good with HTTPS, cookie consent, and anonymized analytics, though explicit security headers and incident response contacts are not published. The absence of WHOIS data reduces domain registration trust but the website content and branding strongly indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR requirements.

D

Diecéze ostravsko-opavská

doo.cz

57

Diecéze ostravsko-opavská operates as the official diocesan organization for the Ostravsko-Opavská region in the Czech Republic, providing religious, pastoral, educational, and community services. The website serves as a comprehensive information portal for parishioners, clergy, and the general public interested in diocesan activities, events, and organizational structure. It maintains a consistent brand presence and offers multiple communication channels including social media and direct contact information. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WPBakery Page Builder, and several plugins enhancing user experience and content management. Hosting is provided by cesky-hosting.eu, and the site is optimized for mobile devices with good SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX requests, indicating a baseline security posture. However, it lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy, professional, and well-maintained, suitable for its non-profit religious mission. Strategic improvements in privacy compliance and security hardening would enhance its risk posture and user trust.

N

Nadace Jedličkova ústavu

kolickovyden.cz

51

Kolíčkový den is a charitable fundraising campaign organized by Nadace Jedličkova ústavu, focused on supporting children and young people with disabilities in the Czech Republic. The campaign engages schools and organizations nationwide to raise funds and awareness for better communication and support for people with handicaps. The website is professionally designed using WordPress CMS with SEO optimization and includes multimedia content such as embedded videos and testimonials to enhance engagement. Technically, the site uses modern tools like Google Tag Manager and CookieScript for analytics and privacy compliance, hosted by a reputable Czech provider. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could improve defenses. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements, serving as an effective platform for its non-profit mission.

The website www.succhiyoga.it represents Conserve Italia Soc. Coop. Agricola, a well-established Italian company specializing in the production and retail of fruit juices under the Yoga brand. The company has a long history of over 70 years and positions itself as a quality-focused manufacturer with a strong emphasis on natural ingredients and sustainability. The website targets general consumers interested in natural fruit beverages and offers detailed product lines for both home and bar consumption. The brand maintains a consistent and professional online presence with active social media channels and clear business messaging. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses jQuery and Slick Carousel for interactive elements. The site is mobile-optimized and demonstrates good SEO practices. Performance is moderate, with room for improvement in accessibility features. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, with a solid business credibility and compliance posture. However, it would benefit from enhanced security documentation and incident response information to improve transparency and resilience. The absence of direct contact emails or phone numbers on the homepage suggests reliance on contact forms for communication. No WAF or blocking mechanisms were detected, allowing full content accessibility.

E

E. Gutzwiller & Cie, Banquiers

gutzwiller.ch

50

E. Gutzwiller & Cie, Banquiers is a well-established Swiss private bank specializing in wealth management services for private clients and third-party asset managers. Founded in 1886, the bank operates offices in Basel, Geneva, and Zurich, offering discretionary, advisory, and execution-only mandates alongside trading and custodial services. The website reflects a professional and consistent brand image, supported by regulatory compliance and membership in reputable Swiss banking associations. Technically, the site is built on WordPress with modern plugins and analytics tools, delivering good performance and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and policies could be enhanced. Overall, the site demonstrates high business credibility and trustworthiness, with no signs of suspicious activity or content.