Security Directory

I

Istra Inspirit

istrainspirit.hr

64

Istra Inspirit is a cultural tourism project based in Croatia that offers interactive storytelling tours and experiences focused on the rich history and legends of the Istrian peninsula. The website presents a professional and engaging digital presence with a clear focus on cultural heritage tourism. The company appears to be a small-sized business with a niche market position targeting tourists interested in immersive historical experiences. Technically, the website is built on WordPress using Elementor, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Privacy compliance is basic with no explicit privacy policy or terms of service detected, but cookie consent is present. Overall, the website is trustworthy and professionally maintained, with active social media channels supporting its business model.

V

Ventia s.r.o.

ventia.cz

56

Ventia s.r.o. is a Czech-based company specializing in technical building equipment with a focus on renewable energy solutions. Founded in 2019, the company offers comprehensive project design, consulting, and subsidy services to a diverse clientele including municipalities, developers, and industrial clients. Their market position is supported by a portfolio of over 500 projects and significant contract values, reflecting a solid presence in the local energy sector. The website presents a professional image with consistent branding and detailed service descriptions.

N

NEPRO stavební a.s.

neprostavebni.cz

50

NEPRO stavební a.s. is a Czech construction company specializing in residential and commercial building projects, including modernization of apartment houses and infrastructure such as bus terminals. The company targets clients in the Czech Republic seeking professional construction services. The website is built on WordPress using the Divi theme and includes modern web technologies such as jQuery and Slider Revolution. It features a professional design with good mobile optimization and clear navigation. Security measures include HTTPS and reCAPTCHA integration, along with a cookie consent mechanism indicating GDPR awareness. However, the absence of explicit privacy policies, terms of service, and WHOIS transparency limits the overall trust assessment. No security headers were detected, suggesting room for improvement in security hardening.

S

Solar Action Alliance

solaractionalliance.org

42

Solar Action Alliance is a small environmental advocacy group focused on promoting solar energy as a clean, reliable, and abundant renewable energy source. The website provides comprehensive information on solar panel costs, financing options, and state-specific installation guides, targeting homeowners and environmentally conscious individuals in the US. The business model centers on education and advocacy, supported by donations and informational content. Technically, the site is built on WordPress with Bootstrap for responsive design, leveraging common plugins and tracking tools such as Google Analytics and Facebook Pixel. Hosting is provided by SiteGround, and the domain is registered since 2015, indicating a stable presence. Security posture is moderate with HTTPS enforced and some security best practices observed, but lacks advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from improved compliance and security transparency.

G

Gift of the Givers Foundation

giftofthegivers.org

64

Gift of the Givers Foundation is a well-established South African non-profit organization specializing in disaster response and humanitarian aid across Africa and beyond. With over 30 years of experience and operations in 45 countries, it holds a leading position as the largest African-origin disaster response NGO. The organization focuses on key services including disaster relief, hunger alleviation, water provision, healthcare, education, and human development, relying primarily on donations and partnerships to fund its activities. The website reflects a professional and consistent brand image, targeting donors, volunteers, and partners globally. Technically, the website is built on WordPress using modern plugins such as GiveWP for donations and WooCommerce components, supported by Google Analytics and Tag Manager for tracking. The site is mobile-optimized with good SEO practices and moderate performance. However, some accessibility features are basic, and there is room for improvement in security headers and DNSSEC implementation. From a security perspective, the site uses HTTPS with a valid SSL certificate and employs reCAPTCHA to protect forms. The domain is registered transparently with consistent WHOIS data matching the organization's identity and history. However, the absence of certain HTTP security headers and DNSSEC reduces the overall security posture. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is trustworthy, professionally maintained, and serves its mission effectively. Strategic improvements in security headers, DNSSEC, and privacy consent mechanisms would enhance its security and compliance standing.

I

Info-Zenter Demenz

demence.lu

37

Info-Zenter Demenz is a national information and consultation center based in Luxembourg, specializing in dementia and memory disorders. It serves affected individuals, their families, healthcare professionals, and the general public by providing free consultation services, educational events, and resources. The organization positions itself as a trusted authority in dementia care and information within Luxembourg, supported by government and community partnerships. The website is professionally designed, multilingual, and accessible, reflecting a strong commitment to user experience and inclusivity. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and Consent Magic for privacy compliance. Hosting is managed via EuroDNS nameservers, and the site employs HTTPS with reCAPTCHA for security. Accessibility features such as an accessibility toolbar are implemented, and SEO best practices are evident through structured data and meta tags. Security posture is solid with HTTPS and privacy consent mechanisms, though explicit security headers and a formal security policy are absent. No vulnerabilities or suspicious activities were detected. Privacy compliance is robust, with clear cookie and privacy policies and user consent management. Contact information is comprehensive and clearly presented. Overall, the website demonstrates a high level of professionalism, security awareness, and compliance, making it a trustworthy resource for its target audience. Strategic improvements could include adding explicit security headers and publishing a security incident response policy to further enhance trust and resilience.

1

100Shoppers

100shoppers.com

50

100Shoppers is a technology company specializing in B2B2C solutions designed to convert website visitors into shoppers through their 'Where To Buy' widget and sales analysis tools. The company operates a professional WordPress-based website with a focus on marketing and analytics integration, targeting brands and retailers seeking to enhance sales conversion. The technical infrastructure includes modern marketing and analytics technologies such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Cookiebot for cookie consent management. Hosting is provided by OVH sas, a reputable provider, and the domain is registered since 2018, consistent with the company's business timeline. Security posture is moderate with HTTPS enabled and domain protection statuses set, but lacks advanced security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service policies. Overall, the website is professionally designed and functional but would benefit from enhanced security practices and clearer compliance documentation.

P

Platforma BUY.BOX

getbuybox.com

53

Platforma BUY.BOX is a Polish affiliate marketing platform established in 2015, offering tools to monetize internet traffic. The website is professionally designed using WordPress and Elementor, with good SEO optimization and integration of marketing and analytics tools such as Google Tag Manager, Heap Analytics, and Visual Website Optimizer. The platform targets internet users interested in affiliate marketing and online monetization. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service. Contact information and incident response details are not found, which may impact user trust. Overall, the website is functional and credible but could improve transparency and security practices.

O

Open Access Scholarly Publishing Association (OASPA)

oaspa.org

62

The Open Access Scholarly Publishing Association (OASPA) operates a professional and well-structured website focused on supporting open scholarship through membership services, advocacy, and resources. The organization targets institutions and individuals involved in open access publishing, positioning itself as a key non-profit entity in the education sector. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and privacy-conscious analytics, ensuring good performance, accessibility, and SEO. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site presents a low-risk profile with strong business credibility and compliance with privacy regulations.

F

Free Journal Network

freejournals.org

43

Free Journal Network (FJN) is a small nonprofit organization based in the United States, founded in 2018, dedicated to promoting scholarly journals that adhere to the Fair Open Access model. The organization supports academic journals by facilitating coordination, funding, quality assurance, promotion, and advocacy for open access publishing without author fees. The website serves as an informational and organizational hub for members and interested parties in the scholarly publishing community. Technically, the website is built on WordPress, hosted by Bluehost, and uses common plugins and scripts such as Contact Form 7 and jQuery. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced security and privacy practices.

S

Suomen Ympäristökeskus

itameri.fi

65

The website itameri.fi is an official Finnish government environmental portal managed by Suomen Ympäristökeskus (Finnish Environment Institute). It provides educational and informational content about the Baltic Sea, targeting the general public interested in environmental data, nature, and maritime conditions. The site offers multilingual support in Finnish, Swedish, and English, enhancing accessibility for a broader audience. The business model is informational and service-oriented, focusing on environmental awareness and data dissemination. Technically, the website is built on WordPress and employs modern web technologies including Google Tag Manager for analytics and CookieHub for cookie consent management. The site is mobile-optimized, accessible, and performs moderately well. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not implemented and some security headers could be improved. From a security and compliance perspective, the site lacks explicit privacy and terms of service pages, which slightly reduces privacy compliance scores. No contact emails or phone numbers are directly visible, which may impact user trust and support accessibility. The WHOIS data confirms the domain is legitimately registered to the Finnish Environment Institute with consistent registration details and a long domain age, indicating high legitimacy. Overall, the website is trustworthy, professionally maintained, and serves an important governmental informational role. Strategic improvements include publishing clear privacy and terms policies, enhancing DNS security with DNSSEC, and adding explicit security headers to strengthen the security posture further.

S

Suomen ympäristökeskus

luonnontila.fi

67

Luonnontila.fi is a Finnish government-backed environmental information platform managed by Suomen ympäristökeskus (Finnish Environment Institute). It provides authoritative, research-based data on biodiversity and environmental indicators across various Finnish habitats. The platform targets researchers, policymakers, and the public interested in Finland's natural environment. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly documented. Overall, the site is trustworthy, professional, and compliant with GDPR and cookie regulations.

C

Crocontrol

crocontrol.hr

61

Crocontrol is the Croatian air traffic control authority providing comprehensive air navigation services to ensure safe and efficient air traffic over Croatia and Europe. The website reflects a mature organization with a clear focus on safety, technical services, meteorology, and career opportunities in the aviation sector. The company is well-established, with a domain registered since 1998, consistent with its operational history. Technically, the website is built on WordPress with modern plugins for analytics, accessibility, and GDPR compliance, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, accessible, and trustworthy, serving its target audience effectively.

S

SCHIOCCO LTD

board.support

48

Support Board is a technology company specializing in AI-driven chatbots and live chat support solutions primarily for WordPress and PHP platforms. The company offers products that automate customer communication, enhance marketing workflows, and improve customer service efficiency. With over 10,000 global clients and positive expert reviews, Support Board holds a strong position in the customer support software market. The website reflects a professional and modern digital presence with clear navigation and comprehensive content about their offerings. Technically, the site uses a modern tech stack including PHP, WordPress, Bootstrap, and jQuery, hosted on Google Cloud DNS infrastructure, delivering fast and mobile-optimized performance. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is evident with clear privacy and terms of service pages, though cookie consent mechanisms are absent. Overall, the website and business demonstrate high credibility and trustworthiness with no critical security or content safety concerns.

SPARC is a well-established non-profit organization dedicated to advancing open access, open data, and open education globally. The website reflects a mature digital presence with comprehensive content targeting researchers, educators, and policy makers. It serves as a resource hub and advocacy platform, promoting open knowledge sharing as a human right. The organization maintains a consistent brand identity and offers key services including policy advocacy, educational resources, and community engagement. Technically, the site is built on WordPress with Bootstrap and jQuery, hosted behind Cloudflare DNS, and uses HTTPS with a valid SSL certificate. While performance and mobile optimization are good, some technical improvements are recommended such as updating outdated libraries and enabling DNSSEC. Security posture is solid but could be enhanced by adding security headers and formal security policies. Privacy compliance is mostly addressed with a clear privacy policy and terms of use, though cookie consent mechanisms are absent. Overall, the site is professional, trustworthy, and aligned with its mission.

C

cOAlition S

coalition-s.org

54

cOAlition S operates as an international consortium promoting Plan S, an initiative to accelerate full and immediate Open Access to scientific publications. The organization targets research funders, academic institutions, and publishers to ensure publicly funded research is openly accessible. The website reflects a professional and authoritative presence with clear information about their mission, principles, and tools supporting Open Access. Technically, the website is built on WordPress, leveraging modern web technologies such as jQuery, Font Awesome, Google Analytics, and reCAPTCHA for security and analytics. The site is well-structured, mobile-optimized, and uses HTTPS, indicating a mature digital infrastructure. However, some security headers are missing, which could be improved to enhance security posture. Security-wise, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are present and indicate GDPR compliance, supporting user privacy and regulatory adherence. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. The main limitation is the absence of WHOIS data, which restricts domain registration trust analysis. Strategic improvements in security headers and explicit security policies would further strengthen the site's security posture.

A

ASYF - Združenie mladých farmárov Slovenska

asyf.sk

53

ASYF - Združenie mladých farmárov Slovenska is a Slovak non-profit association dedicated to protecting and coordinating the interests of young farmers. The website serves as an information hub for the agricultural sector in Slovakia, providing news, events, and membership details. The organization targets young farmers and stakeholders within the agricultural community, positioning itself as a national representative body. The business model is focused on advocacy, information dissemination, and community engagement within the farming sector.

C

Casa dell'Aviatore

casaviatore.it

43

Casa dell'Aviatore is the official officers' club of the Italian Air Force, providing hospitality, event hosting, and accommodation services primarily targeting military officers and their guests. The website presents a professional image with detailed service offerings including restaurant, bar, congress hall, and hotel facilities. It also features event information and member services, positioning itself as a niche hospitality provider within the military community in Italy. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and various plugins for galleries, booking, and multilingual support. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is moderate with HTTPS enforced but lacking explicit security headers and running an outdated WordPress version, which could pose risks. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced security and privacy measures.

O

Opera Nazionale per i Figli degli Aviatori

onfa.org

44

ONFA (Opera Nazionale per i Figli degli Aviatori) is an Italian non-profit organization dedicated to providing social assistance and support to the children of aviators. The website serves as an informational and community platform targeting families connected to the aviation sector in Italy. The organization operates with a focused mission in the government and non-profit sectors, maintaining a small organizational size and a niche market position. The website is built on WordPress using the Divi theme, with integration of Iubenda for cookie consent management, reflecting a moderate level of digital maturity and compliance with privacy regulations such as GDPR. Technically, the website is hosted on a provider using Host Anycast DNS servers, secured with HTTPS, and employs modern web fonts and cookie consent scripts. Performance and mobile optimization are rated as moderate to good, with basic accessibility features. SEO practices appear adequate with proper meta tags and structured data. Security posture is decent with HTTPS enforced and domain transfer protections enabled, but could be improved by enabling DNSSEC and adding more comprehensive security headers and vulnerability disclosure mechanisms. Overall, the security posture is solid for a small non-profit, with no critical vulnerabilities detected. Privacy compliance is strong, supported by a comprehensive privacy and cookie policy with explicit consent mechanisms. However, the absence of terms of service, security policy, and incident response contact details indicates areas for improvement. The website content is safe and appropriate for a general audience, with no adult or questionable content. Strategically, ONFA should focus on enhancing security headers, publishing a security.txt file, and providing clearer contact information to improve trust and compliance. These steps will strengthen their security culture and better protect their community members.

B

Blackfish

blackfish.co

57

Blackfish is a well-established 360° software development and design studio based in the Czech Republic, founded in 2017. The company positions itself as an industry leader in Denmark and the Czech Republic, offering a comprehensive range of services including brand identity, UX/UI design, front-end and back-end development, 3D visuals, motion design, and marketing strategy. Their clientele includes notable companies, supported by strong trust indicators such as Clutch awards and Deloitte recognition. Technically, the website is built on WordPress with modern analytics and tracking tools integrated, demonstrating a mature digital infrastructure. Security posture is good with HTTPS and domain protection, though improvements like enabling DNSSEC and adding security headers are recommended. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service on the homepage. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

Č

Časopis Motorbike

motorbike-czech.cz

52

Časopis Motorbike is a Czech independent motorcycle magazine targeting motorcycle enthusiasts and motorsport fans. The website serves as a digital platform for publishing articles, offering magazine subscriptions, and providing advertising opportunities. The business operates primarily in the media and transportation sectors within the Czech Republic, with a small-sized organizational footprint and a founding date around 2021. The website demonstrates a professional and consistent brand presence with good content quality and user experience.

S

smart field s.r.o.

bohemiarider.cz

39

Bohemia Rider is a Czech Republic-based driving school operated by smart field s.r.o., specializing in personalized driving education for motorcycles and cars. The business emphasizes practical skills, individual attention, and community engagement through programs like the Buddy program. The website is professionally designed using WordPress and Elementor, featuring comprehensive service descriptions, instructor profiles, and transparent pricing. Social media integration and customer review widgets enhance trust and engagement. Technically, the site uses modern web technologies and enforces HTTPS, but lacks some security headers and privacy policies, which are recommended for compliance and security enhancement. WHOIS data is unavailable, which slightly impacts domain trust but does not detract from the professional presentation and legitimacy of the business.

W

Wojta Foto

wojta-foto.cz

46

Wojta Foto is a niche photography website specializing in speedway sports event photography, primarily serving audiences in the Czech Republic and Poland. The site showcases galleries of speedway races and related events, targeting speedway fans and photography enthusiasts. The business operates as a small entity founded in 2010, with a focus on content publishing and portfolio showcasing. Technically, the website is built on WordPress using common plugins such as NextGEN Gallery and Jetpack, hosted by Wedos, a Czech hosting provider. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but it lacks security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is safe for general audiences and maintains a moderate level of professionalism and trustworthiness.

A

Autoklub České republiky

autoklub.cz

66

Autoklub České republiky is a well-established national automobile club in the Czech Republic, providing a broad range of services including motorsport event organization, membership management, driver training, insurance, and road safety advocacy. The organization is affiliated with major international automotive bodies such as FIA, FIM, and FIVA, reinforcing its authoritative position in the automotive and motorsport sectors within the country. The website serves as a comprehensive portal for members and the public, offering detailed information on disciplines, commissions, and various automotive activities. Technically, the website is built on WordPress CMS, enhanced with performance optimization tools like WP Rocket, and integrates Google Analytics and Google Tag Manager for visitor tracking and marketing insights. The site demonstrates good mobile optimization and SEO practices, with structured navigation and consistent branding. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. From a security and compliance perspective, the site implements cookie consent mechanisms aligned with GDPR requirements, though a formal privacy policy page is not clearly identified. WHOIS data for the domain is unavailable, likely due to registry policies or privacy protection, which slightly impacts trust signals but is mitigated by the professional presentation and affiliations. No critical vulnerabilities or security issues were detected in the accessible content. Overall, Autoklub České republiky presents a credible and professional online presence suitable for its audience. Strategic recommendations include publishing a clear privacy policy, incident response contacts, and vulnerability disclosure information to enhance transparency and trust. Continued attention to security best practices and compliance will support the organization's reputation and operational resilience.

S

Study in Prague Consortium

studyinprague.cz

47

Study in Prague is an educational information portal dedicated to providing comprehensive resources for international students interested in studying in Prague, Czech Republic. The website aggregates detailed information about Prague's universities, study programmes, admission requirements, visa processes, scholarships, and student life. It serves as a centralized platform supported by the Study in Prague Consortium and partners such as the Prague city government and tourism organizations. The target audience is international students seeking higher education opportunities in Prague. The business model focuses on information dissemination and promotion of Prague as a study destination.

1

18 Street Design, LLC

18street.com

66

18 Street Design, LLC is a small, established web design and development company based in Columbia, South Carolina, with over 20 years of experience. The company specializes in custom and WordPress website design, maintenance, and client support services, targeting businesses and organizations primarily in South Carolina. The website presents a professional and consistent brand image with clear contact information and client testimonials, positioning itself as a trusted local service provider. Technically, the website is built on WordPress using the Breakdance plugin/theme, incorporating modern web technologies such as Google Fonts and GSAP for animations. The site is mobile-optimized, SEO-friendly, and performs moderately well. However, there is no detected cookie consent mechanism, and accessibility features are basic. No advertising or tracking scripts are present, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern, as it prevents verification of domain registration details and slightly reduces trustworthiness. Overall, the website is professional and trustworthy with good technical implementation but could improve privacy compliance and security posture. The missing WHOIS data and lack of cookie consent are notable gaps that should be addressed to enhance credibility and compliance.

N

Northwest Podiatric Laboratory

nwpodiatric.com

65

Northwest Podiatric Laboratory is a specialized healthcare company focused on the design and manufacture of premium custom orthotics. Established since 1964, it holds a strong market position as a leader in orthotic solutions, serving healthcare professionals and patients primarily in the United States. The website reflects a professional and consistent brand image with clear service offerings including custom orthotics, SmartCast® technology, and provider search functionalities. The target audience includes healthcare providers and patients seeking foot pain relief through custom orthotics. Technically, the website is built on WordPress, leveraging modern JavaScript libraries and analytics tools, hosted with Cloudflare for performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and domain registration transparency, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

Y

Young Survival Coalition

ysctourdepink.org

64

Young Survival Coalition (YSC) operates a dedicated wellness summit website targeting young adult breast cancer survivors and their support networks. The organization provides immersive wellness events blending physical, emotional, and social support activities. The website reflects a mature non-profit entity with a clear mission and community focus, supported by a consistent brand presence and multiple sponsorships. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting a medium-sized non-profit with a strong community orientation.

E

Eastern Sun Tours and Safaris

easternsuntours-safaris.com

47

Eastern Sun Tours and Safaris is a Tanzania-based tour operator specializing in safari and adventure travel services. Established in 2010, the company offers a range of services including wildlife safaris, Kilimanjaro climbing expeditions, Serengeti tours, and cultural experiences. The website positions the company as a premier operator with expert guides, targeting tourists interested in exploring Tanzania's natural and cultural treasures. Technically, the website is built on WordPress using Elementor, with integrations such as Google Site Kit for SEO and analytics. Hosting is provided by NameCheap, and the site uses HTTPS with a clientTransferProhibited domain status, indicating a stable and secure domain registration. However, DNSSEC is not enabled, and security headers are missing, which are areas for improvement. The security posture is moderate, with no visible vulnerabilities but lacking advanced security configurations. Privacy compliance is weak, as no privacy or cookie policies are found, and no consent mechanisms are implemented. Contact information is not explicitly presented, which may affect user trust and compliance. Overall, the website is professional and content-rich but would benefit from enhanced security and privacy practices to improve trust and compliance.

I

Infrastructure Services for Open Access C.I.C.

is4oa.org

59

Infrastructure Services for Open Access C.I.C. (IS4OA) is a small non-profit community interest company based in the United Kingdom, serving as the parent holding company for the Directory of Open Access Journals (DOAJ). The website primarily provides organizational information and transparent financial reporting for DOAJ, targeting the academic and open access publishing community. The business model focuses on supporting open access infrastructure through non-commercial means, positioning IS4OA as a trusted steward in the open access ecosystem. Technically, the website is built on the WordPress platform hosted on WordPress.com, utilizing Jetpack and Gutenberg technologies. It employs HTTPS for secure communication and embeds financial documents as PDFs for transparency. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. However, it lacks advanced security headers and DNSSEC, which could enhance its security posture. From a security perspective, the site benefits from HTTPS and domain registration protections but lacks published privacy, cookie, and security policies. No incident response or vulnerability disclosure information is provided, which are areas for improvement. The absence of privacy and cookie policies also impacts GDPR compliance. Overall, the security posture is adequate but could be strengthened with additional policies and technical controls. The overall risk assessment is low given the non-commercial nature and transparent operations, but strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing vulnerability disclosure and incident response contacts to enhance trust and compliance.

S

Suomen Ympäristökeskus

ostersjon.fi

65

The website itameri.fi is operated by Suomen Ympäristökeskus, a Finnish governmental environmental agency. It serves as an information and data dissemination platform focused on the Baltic Sea, providing environmental monitoring data, water quality information, and marine observations. The site targets researchers, environmental professionals, policymakers, and the general public interested in the Baltic Sea ecosystem. The business model is governmental and informational, with no commercial transactions. The domain has been registered since 2003, consistent with a mature governmental service. Technically, the website uses WordPress CMS with modern JavaScript libraries and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The site is mobile optimized, accessible, and SEO friendly. Hosting appears to be on Finnish academic or research infrastructure, indicated by the nameservers. Performance is moderate with good mobile and accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks DNSSEC and visible security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy and cookie policy in Swedish, aligned with GDPR requirements. No explicit incident response or security policy pages were found. Overall, the website is trustworthy and legitimate, with strong alignment between WHOIS registration data and website content. Recommendations include implementing DNSSEC, adding security headers, and publishing incident response information to enhance security posture and transparency.

D

DRAXIS ENVIRONMENTAL S.A.

draxis.gr

53

DRAXIS Environmental is a medium-sized technology company based in Greece specializing in environmental engineering and digital transformation solutions. Their offerings include air pollution monitoring, climate intelligence, circular economy research, IoT data management, remote sensing, and AI-driven environmental simulations. The company targets organizations seeking innovative environmental and sustainability solutions. The website is built on WordPress using Elementor and integrates modern technologies such as Google Analytics and multilingual support. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks published privacy policies, terms of service, and security headers. Contact information is not explicitly provided on the site, which may impact user trust. Overall, the site is professional and content-rich, reflecting a credible business presence.

A

Auto klub Markéta

speedway-prague.cz

39

Speedway-prague.cz is the official website for Auto klub Markéta, a Czech organization dedicated to speedway motorcycle racing events, including the prestigious FIM Speedway Grand Prix held in Prague. The site serves as an information hub for fans, providing event schedules, ticketing information, rider details, historical results, and media resources. It targets motorsport enthusiasts primarily in the Czech Republic and surrounding regions. The business model revolves around event promotion, fan engagement, and collaboration with ticketing and local partners. Technically, the website is built on WordPress with a modern tech stack including Bootstrap for responsive design, jQuery for interactivity, and multiple plugins for SEO, performance, and user engagement. It integrates Google Analytics and Google Tag Manager for tracking, and uses Google reCAPTCHA to secure its contact forms. The site is moderately optimized for performance and mobile devices, with good SEO practices evident. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks visible security headers and a published privacy or cookie policy, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable or privacy protected, which is common for such organizations and does not raise immediate concerns given the site's professionalism and transparency. Overall, Speedway-prague.cz presents a trustworthy and professional online presence for a niche sports organization. Strategic recommendations include enhancing privacy compliance with clear policies, improving security headers, and publishing a vulnerability disclosure policy to strengthen trust and security posture.

V

VK Benátky nad Jizerou

vkbenatky.cz

42

VK Benátky nad Jizerou is a local volleyball sports club based in the Czech Republic, established since 2009. The website serves as a hub for club members, players, and fans, providing detailed information about various teams, schedules, news, and club management. The club targets youth and adult volleyball players and enthusiasts within the regional community. Technically, the website is built on WordPress using Elementor and integrates modern web technologies such as jQuery and Font Awesome, hosted by WEDOS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS with appropriate security headers, but lacks some privacy compliance features such as cookie consent mechanisms. Overall, the domain registration data aligns well with the website content, indicating a legitimate and trustworthy entity.

K

Kongresové centrum ILF a.s.

kcilf.cz

49

Kongresové centrum ILF a.s. operates multimodal logistics centers in the Czech Republic, specializing in strategic connections for road, rail, and water freight transport. Established in 1995, the company has a strong market presence with over 25 years of experience and a portfolio of subsidiaries offering complementary logistics, storage, and related services. The website reflects a professional business model focused on investment, development, and leasing of logistics centers, targeting business clients in transportation and real estate sectors. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and privacy controls, though some security headers and policies could be improved. Overall, the site is trustworthy and well-maintained, though WHOIS data is unavailable, limiting transparency.

L

Lietuvos hidrometeorologijos tarnyba prie Aplinkos ministerijos

meteo.lt

61

Meteo.lt is the official Lithuanian government meteorological service operated under the Ministry of Environment. It provides comprehensive weather forecasts, climate data, warnings, and meteorological monitoring services to the public and government agencies. The website is well-structured, professionally designed, and offers a wide range of meteorological information including real-time data, forecasts, and specialized services such as APIs and archival data access. The target audience includes general public users, businesses, and governmental bodies requiring accurate weather information. Technically, the website is built on WordPress and utilizes modern web technologies including jQuery and Google reCAPTCHA for form security. It implements GDPR-compliant cookie consent mechanisms with detailed user controls. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. However, it lacks visible security headers such as CSP or HSTS, which could enhance security posture. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the .lt domain is noted but likely due to registry restrictions rather than malicious intent. Overall, Meteo.lt presents a trustworthy and professional government service website with strong privacy compliance and good technical implementation. Strategic improvements in security headers and publishing a security policy would further strengthen its security posture.

I

ILINČEV s.r.o.

ilincev.com

51

ILINČEV s.r.o. is a Czech-based small business specializing in UX design and conversion rate optimization (CRO) services. The website presents a professional image with extensive case studies, blog content, and clear contact information, positioning the company as a recognized expert in its field within the Czech market. The business model focuses on consulting, workshops, and long-term optimization services for web and app clients. Technically, the site is built on WordPress with modern optimization and tracking tools, delivering fast performance and excellent mobile responsiveness. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though security headers and formal policies are lacking. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is trustworthy and professional but could improve privacy compliance and security transparency.

S

Skypartners

skypartners.cz

42

Skypartners is a Czech-based company specializing in the design, construction, and maintenance of photovoltaic power plants, electromobility charging stations, and monitoring services. Established since 2011, they serve primarily business and public sector clients, leveraging partnerships with research institutions and a strategic merger with Energylink s.r.o. Their website reflects a professional business with clear service offerings and reputable client logos. Technically, the site is built on WordPress with the Divi theme, using standard plugins and scripts. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. WHOIS data is unavailable, which limits domain legitimacy verification. Overall, the company appears credible with room for improvement in compliance and security transparency.

T

Tiskárna GARMOND spol. s r.o.

garmond-tisk.cz

44

Tiskárna GARMOND spol. s r.o. is a small Czech printing company established in 1992, offering comprehensive printing services including prepress preparation, offset and digital printing, surface finishing, embellishments, bookbinding, and delivery. The company emphasizes in-house production capabilities and minimal external subcontracting, positioning itself as a reliable regional provider with specialized binding services. The website is professionally designed using WordPress with multilingual support, optimized for SEO and mobile devices, reflecting a mature digital presence. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal privacy/cookie policies, indicating areas for compliance improvement. Overall, the business demonstrates legitimacy and professionalism with clear contact information and client testimonials, but should enhance privacy compliance and security best practices to strengthen trust and regulatory adherence.

W

W&P - member of Euronova Group

wandp.cz

60

W&P, a member of the Euronova Group, is a leading outdoor advertising provider in the western Czech Republic, offering a broad portfolio of advertising spaces including billboards, public transport shelters, LED screens, and more. The company holds a significant market share in the Plzeň and Karlovy Vary regions and emphasizes community benefit alongside business growth. Technically, the website is built on WordPress using popular page builders and plugins, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks some security headers and explicit security policies. WHOIS data is missing, which reduces domain trustworthiness, but the website content and business information appear professional and credible. Overall, the site is well-structured and compliant with GDPR, with clear contact information and social media presence.

G

Glatt GmbH

technology-training-center.com

69

Technology Training Center (TTC), a division of Glatt GmbH, specializes in providing hands-on workshops and practical training focused on the latest processing technologies for pharmaceutical, chemical, food, and cosmetic industries. The center emphasizes objective evaluation of processing techniques and fosters industry networking. The website is built on a modern WordPress platform using Elementor and WooCommerce, featuring good mobile optimization and SEO practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though DNSSEC and additional security headers could enhance protection. Overall, TTC presents a professional and trustworthy online presence aligned with its business objectives.

Czecot.pl is a Polish-language tourism blog focused on travel and architectural attractions in the Czech Republic. The website provides informative articles and travel guides targeting general audiences interested in Czech tourism. The business operates as a small content-driven blog founded around 2019, with no evident commercial or e-commerce activities. Technically, the site is built on WordPress CMS with common plugins such as Yoast SEO, LayerSlider, and Contact Form 7, hosted by OVH SAS. The site is moderately optimized for mobile and SEO, with Google Analytics and Tag Manager integrated for visitor tracking. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is good with a privacy policy and cookie consent banner implemented. However, no contact information, terms of service, or incident response policies are present, limiting business credibility. Overall, the site is legitimate, safe, and functional but could improve security and transparency aspects.

T

TTC Technology Training Center

ttc-binzen.de

69

Technology Training Center (TTC) is a specialized provider of hands-on workshops and technology evaluation services primarily targeting the pharmaceutical, chemical, food, and cosmetic manufacturing industries. The company operates as a division of Glatt GmbH, based in Germany, and focuses on bridging the gap between theoretical knowledge and practical application through interactive training sessions. TTC positions itself as a niche leader offering objective assessments of processing technologies, enabling industry professionals to make informed decisions for their product development and manufacturing processes. The website reflects a professional and well-structured digital presence with clear branding and comprehensive content tailored to its target audience. From a technical perspective, the website is built on WordPress using Elementor and WooCommerce, supplemented by Gravity Forms for data collection and Brevo for marketing automation. The site demonstrates good SEO practices, mobile optimization, and accessibility features, although performance is moderate. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms, but could benefit from enhanced DNS security and additional HTTP security headers. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. However, the WHOIS data presents inconsistencies, notably a domain creation date in the future relative to the website content, which warrants further verification to confirm domain legitimacy. Overall, TTC's website is a trustworthy and professional platform supporting its business objectives, with recommendations to improve domain security and WHOIS data accuracy to enhance trustworthiness further.

P

Pharmatronic AG

pharmatronic.ch

74

Pharmatronic AG is a Swiss-based company founded in 1985, specializing in project and lifecycle solutions for the pharmaceutical, biotech, medtech, food, and cosmetics industries. As part of the global Glatt Group, it benefits from a strong engineering network and offers services including qualification, validation, calibration, automation, consulting, and recruitment. The company targets regulated life science sectors requiring compliance with national and international standards. Technically, the website is built on WordPress with a modern theme and SEO plugins, featuring cookie consent mechanisms and integration with Google Analytics. Security posture is solid with HTTPS and cookie management, though some security headers could be improved. Contact information is transparent with multiple physical locations and professional email addresses. Overall, the website reflects a mature, trustworthy business with good digital maturity and compliance awareness.

A

ADD Technologies Ltd

ingredientpharm.com

68

Ingredientpharm, operated by ADD Technologies Ltd, is a Swiss-based company specializing in the development and marketing of niche pharmaceutical excipients, particularly for solid dosage forms with controlled release and taste masking capabilities. The company targets pharmaceutical and consumer health product developers, offering tailored solutions and supply agreements. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhancement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

H

hollomet GmbH

hollomet.com

73

hollomet GmbH is a specialized German company providing innovative cellular materials made from metallic and ceramic substances, focusing on sectors such as heat management, process technology, lightweight construction, energy absorption, and design. The company positions itself as a competent development and manufacturing partner offering tailored solutions for industrial clients, particularly in automotive and machinery sectors. The website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing and media content has minor loading issues. WHOIS data is unavailable or indicates a very new domain, which slightly reduces trust but does not contradict the professional business presentation. Overall, the site is trustworthy, GDPR compliant, and business credible.

A

Ateliér Renata

atelier-renata.cz

67

Ateliér Renata is a small local business based in Opočno, Czech Republic, specializing in decorative products, gift items, and a wine shop with accompanying cultural events such as tastings and workshops. The business emphasizes a welcoming, family-like atmosphere and offers services including interior decoration for homes and companies, gift wrapping, and seasonal decorations. The website is professionally designed using WordPress and integrates event management and GDPR compliance plugins, reflecting a moderate level of digital maturity. Social media presence on Facebook and Twitter supports community engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security policies and incident response information. The absence of WHOIS data limits domain legitimacy verification, but the website content and structure suggest a trustworthy local business. Overall, the site is well-optimized for SEO and user experience, targeting mature audiences interested in decorative arts and wine culture.

H

Hostinec U Hubálků

uhubalku.cz

49

Hostinec U Hubálků is a Czech hospitality business specializing in traditional Czech cuisine, accommodation, event hosting, and catering services. The website presents a professional and comprehensive digital presence, showcasing menus, events, booking options, and an e-shop for homemade products. The business targets local and regional customers seeking quality dining and event experiences. Technically, the site is built on WordPress with the Divi theme and WooCommerce, integrating modern tools like Google Tag Manager and Facebook SDK for analytics and marketing. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policies. The absence of WHOIS data reduces domain trust but the website content and certifications support legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy for its business domain.

G

Glatt - Pharma

glattpharma.cz

66

Glatt - Pharma is a Czech-based manufacturing company specializing in the production of components and equipment for the pharmaceutical and food industries. As a member of the established Glatt Group, which has operated since 1954, the company leverages decades of expertise in stainless steel processing and custom engineering solutions. Their website reflects a professional and consistent brand image, targeting industrial clients seeking high-quality manufacturing services. Technically, the site is built on WordPress with a modern theme and multilingual support, incorporating standard analytics and cookie consent mechanisms. Security posture is solid with HTTPS and cookie compliance, though some security headers and incident response contacts are absent. The absence of WHOIS data is a notable gap, slightly impacting trust but mitigated by the company's clear affiliation with Glatt Group and professional web presence. Overall, the website demonstrates good digital maturity and business credibility.

S

STYLBAU, s.r.o.

stylbau.cz

57

STYLBAU, s.r.o. is a Czech Republic-based general contractor specializing in construction of residential, industrial, and civic buildings. The company presents itself as a reliable and professional construction firm with a medium-sized operation and a focus on delivering comprehensive building services including design, engineering, and post-construction support. Their website is well-designed, SEO-optimized, and mobile-friendly, reflecting a mature digital presence. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data reduces domain trustworthiness, but the professional content and clear contact information support business credibility. Overall, the website is a strong digital asset for the company, with recommendations to enhance privacy policy visibility and security practices.