Security Directory

A

ATMO GrandEst

atmo-grandest.eu

59

ATMO GrandEst operates as a regional environmental monitoring organization focused on air quality and pollen indices for the Grand Est region in France. The website provides detailed geographic and environmental data for numerous communes, serving residents and local authorities. The business model aligns with public service and environmental data dissemination, positioning ATMO GrandEst as a key regional authority in environmental monitoring. Technically, the website is built on Drupal 9 CMS, utilizing modern web fonts, icon libraries, and analytics tools such as Microsoft Clarity and Google Analytics. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security practices include HTTPS usage and asynchronous loading of tracking scripts, though security headers and explicit privacy mechanisms are not evident. The security posture is moderate with no detected vulnerabilities or WAF blocking. However, the absence of visible privacy and cookie policies, as well as contact information, reduces privacy compliance and user trust. The WHOIS data is unavailable due to EURid privacy restrictions, which is typical for .eu domains, and does not raise immediate legitimacy concerns. Overall, the website is functional and serves its informational purpose but would benefit from enhanced privacy compliance, clearer contact channels, and improved security headers to strengthen trust and regulatory adherence.

S

Splio

splio.com

77

Splio is a French-based SaaS company specializing in CRM marketing solutions tailored for the retail sector. Their platform centralizes customer data, automates marketing campaigns, and supports loyalty programs, positioning them as a key player in retail marketing technology. The website reflects a mature digital presence with professional design and consistent branding, targeting retail businesses seeking advanced CRM and loyalty solutions. Technically, the site is built on WordPress with modern performance optimizations such as lazy loading and uses reputable third-party services for fonts, analytics, and consent management. Security posture is solid with HTTPS enabled and domain registration consistent with the business age, though there is room for improvement in security headers and explicit security policies. Privacy compliance is partially addressed via Cookiebot consent management, but lacks visible privacy and terms of service pages. Overall, the website is trustworthy and professional, supporting the company's market position in retail CRM SaaS.

F

Fotokino

fotokino.org

49

Fotokino is a well-established cultural arts organization based in Marseille, France, specializing in visual arts exhibitions, workshops, conferences, and publishing. The organization operates a physical venue and an online presence that includes an e-shop and a rich events calendar. Their market position is niche, focusing on contemporary design and visual arts with a strong local and regional cultural impact. The website reflects a professional and consistent brand image with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and libraries, hosted by Infomaniak, and optimized for mobile users. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced DNS security and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professionally maintained, serving a general audience interested in arts and culture.

A

Ag Art cz s.r.o.

webmeeting.cz

54

WebMeeting, operated by Ag Art cz s.r.o., is a Czech-based online communication platform offering solutions for meetings, webinars, training, and conferences. It targets both business and private users within the Czech Republic, providing a localized and installation-free environment. The platform offers two main products: WebMeeting kavárna for quick, small meetings, and WebMeeting PRO for larger, professional online events. The company maintains a professional web presence with detailed contact information, client references, and social media engagement. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates analytics and marketing tools such as Matomo and Facebook Pixel. Security practices include HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly available. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the transparent business information and active customer support channels.

H

Happy Robots s.r.o.

chytrecallcentrum.cz

43

ChytreCallcentrum.cz is a Czech Republic based small technology company specializing in voicebot automation solutions for call centers. Their core offering includes AI-driven conversational robots that automate telephone interactions, replacing traditional IVR systems and improving customer experience. The company targets small to medium businesses seeking to reduce operational costs and improve call handling efficiency. The website presents a professional and consistent brand image with clear contact information and demo scenarios illustrating GDPR compliance in voicebot interactions. Technically, the site uses modern frontend frameworks such as Bootstrap and jQuery, with good mobile optimization and moderate performance. However, the site lacks explicit privacy and cookie policies, and security headers are not detected, indicating room for improvement in security posture and compliance. Analytics tracking is present but commented out, suggesting privacy considerations or incomplete implementation. Overall, the domain registration data aligns well with the business profile, supporting legitimacy. The website is safe for general audiences and does not contain any adult or questionable content.

I

Ijoomla Demo

ijoomlademo.com

65

Ijoomla Demo is a small media-focused lifestyle blog providing content on makeup, politics, music, clothes, and general lifestyle topics. The website targets a general audience interested in lifestyle improvements and cultural insights. It operates on a WordPress platform with a professional design and consistent branding. The technical infrastructure includes common WordPress plugins such as Yoast SEO Premium and jQuery, hosted likely via GoDaddy given the registrar data. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is limited, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. The site includes affiliate links to gambling-related domains but does not directly offer gambling services. Overall, the domain age and WHOIS data support legitimacy and consistent business operation.

L

LOCASTE s. r. o.

palacvina.cz

63

Palác vína, operated by LOCASTE s. r. o., is a specialized retailer focused on offering high-quality wines and delicacies primarily from small family wineries and farms across Europe and Chile. The company also supports charitable causes such as foster families through partnerships with non-profit organizations. The website presents a professional and well-structured digital presence with clear business information, contact details, and e-commerce capabilities. Technically, the site is built on the ByznysWeb.cz CMS platform, uses modern web technologies, and enforces HTTPS with basic security measures including captcha protection on forms and cookie consent mechanisms. However, the absence of WHOIS data for the domain reduces transparency and slightly impacts trust. Privacy policies and cookie consent are well implemented and GDPR compliant. The site targets mature audiences due to alcohol sales but contains no explicit adult content.

O

Offline Online

offline-online.ch

50

Offline Online is a niche online journal affiliated with ECAL, focusing on art, design, and cultural content. The website offers interviews, portfolios, workshops, exhibitions, and travel reports primarily in French, targeting a general audience interested in creative fields. The business model centers on content publishing and cultural journalism with a small-scale operation linked to an educational institution. Technically, the site is built on WordPress with a modern tech stack including jQuery, FullPage.js, Bootstrap, and performance optimizations via WP Rocket. It is mobile-optimized and SEO-friendly but lacks some accessibility features. Security posture is solid with HTTPS and local Matomo analytics, but missing security headers and explicit policies reduce compliance maturity. No privacy or cookie policies are found, and contact information is not clearly provided, which impacts trust and privacy compliance scores. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

E

ECAL/Ecole cantonale d’art de Lausanne

ecal-shop.ch

47

ECAL Shop is the official e-commerce platform of the Ecole cantonale d’art de Lausanne (ECAL), specializing in selling art and design publications, limited edition art prints, objects, and collaborations created by students, graduates, and affiliated designers. The website targets art enthusiasts, collectors, and the general public interested in contemporary art and design products. It operates as a niche educational retail platform with a clear focus on quality and exclusivity. The platform supports multilingual access (French and English) and integrates modern e-commerce functionalities via WooCommerce. Technically, the website is built on WordPress with WooCommerce, enhanced by Bootstrap for responsive design, and uses several modern libraries such as jQuery, Slick Carousel, and FontAwesome. SEO is managed through Yoast SEO, and multilingual support is provided by WPML. Performance is moderate with caching via WP Rocket. The site is mobile-optimized and accessible with a clear navigation structure. From a security perspective, the site enforces HTTPS and uses Matomo analytics with privacy considerations. Cookie consent is implemented, and no sensitive data is exposed in the HTML. However, explicit security headers are not detected, and no formal security or incident response policies are published. There are no detected vulnerabilities or suspicious elements, indicating a generally secure posture suitable for its business model. Overall, ECAL Shop presents a professional, trustworthy, and well-maintained online presence aligned with its educational and artistic mission. Strategic improvements could include enhancing security headers, publishing a security policy, and adding incident response contacts to strengthen trust and compliance further.

F

Freie Universität Berlin

fu-berlin.de

50

Freie Universität Berlin is a leading German excellence university established in 1948, offering over 150 academic programs across twelve faculties and three central institutes. The website serves a diverse audience including students, researchers, staff, and international partners, providing comprehensive information on study programs, research, international cooperation, and campus services. The site is well-structured, professionally designed, and supports accessibility and mobile optimization. Technically, it is built on a Ruby on Rails framework with Infopark CMS Fiona, leveraging modern web standards and security best practices such as HTTPS and security headers. However, it lacks a visible cookie consent mechanism and explicit security or incident response policies, which are areas for improvement. Overall, the website demonstrates a strong security posture with no detected vulnerabilities or suspicious content, reflecting the institution's credibility and trustworthiness.

E

Eqvista

eqvista.com

70

Eqvista is a specialized equity management and valuation service provider founded in 2018, targeting startups and private companies. The company offers a SaaS platform combined with expert advisory services, including cap table management, 409A valuations, financial modeling, and various valuation services such as software, IP, gift and estate tax, and portfolio valuations. Eqvista has established a strong market position with over 20,000 customers and significant assets under administration, supported by professional certifications and a robust digital presence. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and Cloudflare DNS. The site demonstrates good SEO practices, mobile optimization, and a professional design that supports a positive user experience. Analytics and marketing tools are extensively used, indicating a mature digital marketing strategy. From a security perspective, the site uses HTTPS with a good SSL configuration and Cloudflare DNS but lacks DNSSEC and some advanced security headers like Content Security Policy. There is no visible security policy or incident response contact, which could be improved. No critical vulnerabilities or blocking mechanisms were detected, and no sensitive data exposure was found. Overall, Eqvista presents a trustworthy and professional online presence with strong business credibility and a good security posture. Strategic improvements in DNS security and formal security policies would enhance their security maturity and compliance posture.

A

Atmo France

atmo-france.org

62

Atmo France operates as the national federation coordinating regional associations responsible for monitoring air quality across France and its overseas territories. The organization provides comprehensive data, alerts, and educational resources to the general public, local authorities, businesses, and educational institutions. Their market position is that of an authoritative, government-aligned non-profit entity focused on environmental health and air quality surveillance. Technically, the website is built on Drupal 9, leveraging modern web technologies such as Bootstrap, Google Fonts, and FontAwesome for styling and responsiveness. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. The site is mobile-optimized and accessible, with clear navigation and interactive features such as maps and indices for air quality and pollen. From a security perspective, the site uses HTTPS and includes some anti-bot measures, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic, with no visible privacy or cookie policies, which is an area for improvement. Overall, the website presents a trustworthy and professional front for a public-interest environmental organization. The lack of WHOIS data due to privacy protection is typical for such entities and does not detract from legitimacy. Strategic recommendations include enhancing privacy disclosures, implementing security headers, and publishing clear contact and incident response information to strengthen trust and compliance.

N

National Infusion Center Association

infusioncenter.org

63

The National Infusion Center Association (NICA) is a well-established nonprofit trade association founded in 2007, dedicated to representing non-hospital infusion providers and outpatient care settings. The organization focuses on advocacy, standards development, education, and membership services to support community-based infusion centers across the United States. Their website reflects a professional and comprehensive digital presence with detailed information about their mission, team, and services, positioning them as a leading voice in infusion therapy advocacy. Technically, the website is built on WordPress using the Betheme theme, incorporating modern technologies such as Google Tag Manager, HubSpot, and various analytics and marketing tools. The site is mobile-optimized and SEO-friendly, with good performance and accessibility features. Hosting appears to be managed via GoDaddy, consistent with the domain registrar information. From a security perspective, the site enforces HTTPS and employs domain locking statuses to protect domain integrity. However, it lacks DNSSEC, advanced security headers, and a published security.txt file, which are areas for improvement. Privacy compliance is basic, with no explicit privacy or cookie policies detected, and no consent mechanisms for cookies, which could pose compliance risks. Overall, the website is trustworthy, professional, and serves its target audience effectively. Strategic improvements in privacy compliance and security hardening would enhance its risk posture and user trust.

X

xaveris

xaveris.cz

49

The website www.xaveris.cz presents a minimalistic landing page with limited content and no clear business description or contact information. The domain WHOIS data is unavailable, indicating either privacy protection or an unregistered domain, which raises concerns about legitimacy. The technical infrastructure relies on basic web technologies such as FontAwesome and Bootstrap 3.3.7, with no advanced frameworks or CMS detected. Security posture is weak due to lack of HTTPS information, security headers, and privacy policies. Overall, the site appears to be in an early or placeholder stage, lacking essential business and security elements.

The Ultomiris Pregnancy Registry Study website serves as a clinical research platform focused on enrolling and informing pregnant or breastfeeding women who have been prescribed ULTOMIRIS for autoimmune conditions. The site is professionally designed and targets both patients and healthcare providers in the United States. It provides detailed information about the study, medication, and participation methods, supported by links to official prescribing information and medication guides. The parent company IQVIA is prominently referenced, lending credibility to the site. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Vue.js, and Google Tag Manager, with Sitecore CMS inferred from cookie names. The site is mobile-optimized and includes accessibility features, though some improvements could be made. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism. However, explicit security headers are not detected, and no incident response or security policy pages are present. From a security and compliance perspective, the site demonstrates good privacy compliance with clear privacy and cookie policies and user consent mechanisms. The absence of WHOIS data for the domain is a notable anomaly, reducing trust slightly, but the professional content and association with IQVIA mitigate concerns. No vulnerabilities or exposed sensitive data were detected. Overall, the website is a credible and professionally maintained clinical research registry with moderate to good technical and security posture. Strategic improvements in security headers, incident response transparency, and domain registration clarity would enhance trust and compliance.

The website compromisoreal.com represents Aqualia, a large water management company focused on sustainability and corporate social responsibility aligned with the United Nations Sustainable Development Goals. The site serves as a platform to communicate Aqualia's commitments to social, environmental, and innovation goals, targeting a general audience interested in sustainability. Technically, the site uses a standard stack including jQuery, Bootstrap, FontAwesome, and Google Analytics, hosted by Dinahosting s.l. The website is accessible, mobile-optimized, and professionally designed, though it lacks some advanced SEO and accessibility features. Security posture is moderate with domain protection flags but lacks DNSSEC and security headers. Privacy compliance is incomplete due to missing privacy policy and cookie consent mechanisms. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is trustworthy but could improve compliance and security transparency.

A

Alcalie

alcalie.fr

45

Alcalie is a French editorial communication agency specializing in bespoke content creation and editorial strategy services. The company offers a comprehensive range of services including editorial strategy, content creation, magazines, annual reports, and corporate brochures. The website is professionally designed using WordPress with modern plugins and SEO optimizations, targeting businesses and organizations seeking high-quality editorial communication. The technical infrastructure is solid with good mobile optimization and performance, though some security best practices such as security headers and privacy policies could be improved. The security posture is generally good with HTTPS enforced, but lacks explicit incident response and vulnerability disclosure information. Overall, the website presents a trustworthy and professional image but would benefit from enhanced privacy compliance and domain registration transparency.

Boula IPK s.r.o. is a Czech engineering and project office specializing in the preparation of project documentation for transport constructions, engineering networks, and urban planning solutions. The company also provides technical supervision and construction realization services, positioning itself as a regional service provider in Plzeň. The website reflects a professional business with clear service offerings and contact information, targeting clients in the transportation and construction sectors. Technically, the website uses a moderately modern stack including jQuery, jQuery UI, and Matomo analytics with cookie consent mechanisms, indicating a reasonable level of digital maturity and privacy awareness. The site is mobile responsive and well-structured, though some accessibility features could be improved. The CMS used is IPO by ANTEE s.r.o., a Czech content management system. From a security perspective, the site lacks visible security headers and publicly available security policies or incident response contacts. The SSL configuration could not be verified from the data provided. The use of Matomo with disabled cookies is a positive privacy practice. The absence of WHOIS data reduces transparency and trustworthiness, which is a concern for domain legitimacy. Overall, the website is functional, professional, and safe for general audiences. However, improvements in transparency, security headers, and privacy documentation are recommended to enhance trust and compliance.

F

Framasoft

framalibre.org

55

Framalibre is a French-language directory website operated by the non-profit association Framasoft, dedicated to promoting free and libre software, tools, and hardware. The platform serves a niche audience interested in digital emancipation, privacy, and open-source alternatives. It offers categorized listings, mini-sites for specific user needs, and community engagement features. The website is well-branded and consistent with the parent organization's mission and values. Technically, the site uses modern frontend technologies including Vue.js and Bootstrap, hosted under the Gandi SAS registrar. The site is mobile-optimized with good design and navigation clarity, though some SEO and accessibility features could be improved. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with privacy and terms pages available on the parent domain but no explicit cookie consent mechanism. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements are recommended in DNS security and security policy transparency. The site exhibits minimal user tracking and no advertising, aligning with its non-profit ethos. The domain registration is consistent and trustworthy, supporting the legitimacy of the site. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a vulnerability disclosure policy, and implementing a cookie consent mechanism to enhance privacy compliance and user trust.

F

Framasoft

framacloud.org

54

Framacloud is a non-profit cloud service platform operated by the Framasoft association, focused on providing open-source, privacy-respecting digital tools and cloud services. The website serves primarily as documentation and informational resource for users interested in privacy-conscious cloud alternatives. The organization targets privacy-aware individuals and communities seeking decentralized digital services. The business model is community-supported and non-commercial, emphasizing digital freedom and open-source principles. The domain is well-established since 2011, reflecting a mature and stable presence in the niche market of privacy-focused cloud services. Technically, the website is built using HonKit, a static site generator, with modern web technologies such as FontAwesome and Lunr.js for search functionality. Hosting is provided by OVH sas, a reputable European provider. The site demonstrates good mobile optimization and basic accessibility features, though SEO and performance could be further enhanced. Analytics are minimal and privacy-conscious, using a self-hosted tracking pixel. From a security perspective, the site uses HTTPS and domain registration protections but lacks DNSSEC and explicit security headers. There is no visible security policy or vulnerability disclosure mechanism, which could be improved to enhance trust and compliance. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism detected. Contact information is limited to forms on related Framasoft domains, with no direct emails or phone numbers on the site. Overall, Framacloud presents a trustworthy, well-maintained platform aligned with its non-profit mission. Strategic improvements in security headers, DNSSEC, privacy compliance, and vulnerability disclosure would strengthen its security posture and user trust.

W

Weblider - agencja interaktywna

weblider.pl

44

Weblider is a well-established digital marketing agency based in Poznań, Poland, specializing in SEO, Google Ads, web design, and premium marketing services. With over 10 years of experience and certifications such as Google Partner and Google Analytics, they position themselves as a trusted local leader in the marketing technology sector. Their website reflects a professional and comprehensive service offering targeting businesses seeking to improve their online presence. Technically, the site is built on WordPress with modern integrations including Google Analytics and Facebook SDK, providing a solid digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website is user-friendly, mobile-optimized, and compliant with GDPR, supporting a high level of business credibility.

P

Pivovar Neratov

pivovarneratov.cz

56

Pivovar Neratov is a small brewery based in the Czech Republic specializing in the production and sale of beer and other alcoholic beverages. The website clearly targets adult consumers and includes an age verification gate to restrict access to users over 18 years old. The business appears to be locally focused with direct contact information and a straightforward business model centered on manufacturing and sales. The domain age and WHOIS data support the legitimacy and operational timeline of the business. Technically, the website is built on WordPress using WooCommerce for e-commerce functionality and Elementor for page building. It leverages common web technologies such as jQuery, Bootstrap, and FontAwesome. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. However, there is room for improvement in security headers and privacy compliance. From a security perspective, the site uses HTTPS and implements an age gate for compliance with alcohol sales regulations. However, it lacks advanced security headers and does not provide visible privacy or cookie policies, which are important for GDPR compliance. No vulnerability disclosure or incident response information is present, indicating a potential gap in security transparency. Overall, the website is functional and professional for a small brewery business but would benefit from enhanced privacy compliance, security best practices, and clearer policies to improve trust and regulatory adherence.

A

ATEX

atexsport.cz

59

ATEX is a Czech-based manufacturer specializing in high-quality sportswear for professional and hobby athletes. With over 30 years of experience, the company produces custom and standard sports clothing including jerseys, vests, pants, and suits, primarily serving the Czech and Slovak markets with growing presence in other European countries. The website reflects a mature business with professional branding and a clear focus on quality and customer engagement through an e-shop and custom design services. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Microsoft Clarity, indicating a data-driven approach to user experience and marketing. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking, representing areas for improvement. Overall, the site is well-designed, mobile-optimized, and trustworthy, but the absence of WHOIS data and privacy documentation slightly reduces compliance confidence.

S

Snídaňuj

snidanuj.cz

43

Snídaňuj is a Czech Republic based hospitality business specializing in breakfast delivery services across Ostrava, operating a network of cafés offering luxury coffee and daily menus, and marketing a brand of homemade pasta. Founded in 2020, the company has expanded its offerings to include catering and tourism-related services, positioning itself as a diversified local food and lifestyle brand. The website reflects a professional and consistent brand image with clear business focus and active customer engagement channels including social media and live chat support. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices, though there is room for improvement in privacy compliance and security headers. The security posture is solid with HTTPS and no visible vulnerabilities, but lacks explicit privacy and cookie policies. Overall, the business appears credible and well-positioned in its regional market with a good digital presence.

T

TIC Trojanovice

trojanovice.info

37

TIC Trojanovice operates as a local tourist information center in the Czech Republic, providing visitors with essential information, souvenirs, and postal services. The website serves as a digital portal for tourists seeking event calendars, accommodation, and local attractions in the Beskydy region. The business model is community and government-supported, focusing on hospitality and tourism services. The site is well-branded and consistent, targeting tourists and visitors to the region. Technically, the website is built on WordPress using the Divi theme and several plugins for event management and galleries. The infrastructure is modern but lacks some advanced security headers and privacy compliance features. Performance and mobile optimization are adequate, providing a good user experience. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, which are important for GDPR compliance. No forms or user data collection mechanisms were detected on the homepage, reducing immediate privacy risks. The WHOIS data is privacy-protected, which is typical for small organizations, and no suspicious patterns were found. Overall, the website is legitimate, professional, and serves its purpose well, but it should improve privacy compliance and security best practices to enhance trust and regulatory adherence.

D

Destinační management turistické oblasti Beskydy-Valašsko o.p.s

beskydyportal.cz

54

The website www.beskydyportal.cz serves as a comprehensive tourism portal for the Beskydy and Valašsko regions in the Czech Republic. It offers extensive information on local attractions, accommodation options, events, cycling and hiking routes, and multimedia content to support tourism activities. The portal targets families, couples, and individual tourists seeking regional travel experiences. The business operates as a regional destination management organization, supported by Czech Ministry for Regional Development funding, and maintains partnerships with official tourism entities. Technically, the site employs a modern web stack including Bootstrap, jQuery, Google Maps API, Mapy.cz API, and Leaflet.js for interactive maps. It integrates social media SDKs and tracking pixels such as Facebook Pixel and uses Google reCAPTCHA for form security. The site is mobile-optimized with responsive design and includes cookie consent mechanisms, although it lacks explicit privacy and terms of service pages. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks visible security headers and does not publish a privacy policy or incident response contacts, which are important for GDPR compliance and user trust. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data limits domain legitimacy verification, but the presence of official logos and consistent branding supports trustworthiness. Overall, the site is a well-structured, content-rich tourism portal with good technical implementation and moderate security posture. To enhance trust and compliance, it should publish privacy and terms policies, implement security headers, and provide clearer contact information. Domain registration details should be verified to ensure legitimacy and reduce risk.

Z

ZX2C4

wireguard.com

61

WireGuard is a modern, high-performance VPN protocol and software project focused on simplicity, security, and speed. The project is led by Jason A. Donenfeld and hosted under the ZX2C4 organization, with strong emphasis on cryptographic soundness and minimal attack surface. The website provides comprehensive technical information, installation guides, and community resources, positioning WireGuard as a leading VPN solution in the technology sector. The digital infrastructure uses modern web technologies and analytics tools, delivering a fast and accessible user experience. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance documentation. The absence of WHOIS registration data is unusual but does not detract significantly from the overall trustworthiness given the project's transparency and community presence. Strategic recommendations include publishing privacy and cookie policies, enhancing security headers, and adding a security.txt file to improve vulnerability disclosure processes.

C

City Digital Media s.r.o

citydigital.cz

53

City Digital Media s.r.o operates a network of digital out-of-home (DOOH) advertising panels across shopping centers, fitness centers, healthcare facilities, and gas stations throughout the Czech Republic. The company offers integrated hardware and software solutions, including an intuitive online content management system and device monitoring, aimed at maximizing brand visibility and customer reach. Their website reflects a professional and consistent brand image, showcasing a broad client base and emphasizing GDPR compliance through privacy policies and consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy.

S

STOPNI TO s.r.o.

stopnito.cz

48

STOPNI TO s.r.o. operates the website www.stopnito.cz, providing specialized chip timing and GPS tracking services for various sports events primarily in the Czech Republic. Their offerings include race timing, online results publication, GPS tracking maps, start and finish line equipment, and race registration support. The company targets sports event organizers and participants, positioning itself as a niche service provider with a localized market focus. The website content is professionally presented, with clear navigation and relevant service descriptions, supporting a small business model.

O

ONF International

onfinternational.org

43

ONF International is a French-based consulting and expertise firm specializing in forestry management, sustainable forest practices, and climate change mitigation projects. Operating globally with subsidiaries in Latin America and Africa, it serves both public and private sector clients. The company is a subsidiary of the Office National des Forêts (ONF), leveraging French forestry expertise internationally. The website is professionally designed, multilingual, and provides comprehensive information about its services and projects. Technically, the website is built on WordPress with modern web technologies including Google Analytics, Tag Manager, and reCAPTCHA for security. It uses HTTPS with a valid SSL certificate and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and has good SEO and accessibility basics, though some security headers are missing. From a security perspective, the site shows good practices such as HTTPS enforcement and bot protection on forms. However, it lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. WHOIS data is unavailable due to privacy protection, but the domain and website content appear legitimate and consistent with the business claims. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security policy transparency and enhanced security headers would further strengthen its posture.

E

EUREGNIA, s.r.o.

dotacniservis.cz

49

Dotační Servis, operated by EUREGNIA, s.r.o., is a Czech-based consulting service specializing in securing European and state funding for businesses and organizations. The website presents a professional and well-structured digital presence built on WordPress with Elementor, targeting Czech-speaking clients seeking grant advisory services. The site includes a comprehensive cookie consent mechanism and privacy policy, demonstrating good GDPR compliance. However, the absence of WHOIS data and explicit contact emails or phone numbers slightly diminishes business credibility. Technically, the site uses modern web technologies but lacks some security headers and incident response information, which could be improved to enhance security posture. Overall, the website is safe, professional, and suitable for its intended audience.

tigreblanc® is a French creative branding agency specializing in branding, print, digital, and image services. With over 30 years of experience led by founder Guillaume, the agency serves clients primarily in France and Belgium, focusing on strategic brand development and communication. The website reflects a professional and consistent brand image, targeting businesses seeking comprehensive branding and communication solutions. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Tag Manager and Axeptio for analytics and cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent but lacks explicit security policies or incident response information. The absence of WHOIS data is a concern for domain transparency but does not detract significantly from the overall professionalism and trustworthiness of the site. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms.

A

Advantech Co.

advantech.com

76

Advantech Co. is a globally recognized enterprise specializing in IoT intelligent systems, industrial automation, embedded computing, and healthcare IT solutions. The company positions itself as a leader in Industry 4.0 and edge computing, offering a broad portfolio of hardware and software products designed to enable industrial intelligence and digital transformation. Their market presence is supported by comprehensive product lines, certifications such as IEC 62443, and a strong ecosystem of business partners. The website reflects a mature digital infrastructure with modern technologies and active engagement through social media and educational platforms.

S

SVOL obchodní s.r.o.

svolobchodni.cz

45

SVOL obchodní s.r.o. is a Czech company specializing in the sale and purchase of wood, forestry consulting, and coordination of joint trade for members of the SVOL association, the largest private forest owners group in the Czech Republic. The company offers direct sales, public market trading, and educational services focused on sustainable forest management. The website reflects a professional and consistent brand image with clear communication of services and contact information. Technically, the site uses common web technologies such as Bootstrap and jQuery, providing a responsive and user-friendly experience. However, there is a lack of explicit privacy and cookie policies, and security headers are missing, which could pose compliance and security risks. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy compliance measures.

M

Marina Strážnice

marinastraznice.cz

57

Marina Strážnice is a specialized marine service provider based in the Czech Republic, offering comprehensive boat maintenance, repair, and accessory sales. Their services cover outboard and inboard motor repairs, boat trailer servicing, marine oils and parts sales, boat painting, upholstery, electrical repairs, and custom boat furniture manufacturing. The company targets boat owners and operators seeking professional care for their vessels. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a solid digital presence for a small local business. Technically, the site is built on WordPress with Elementor and related plugins, leveraging modern web technologies and Google Analytics for user tracking. Security posture is good with HTTPS enabled, though security headers and privacy compliance measures are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a trustworthy business. Strategic improvements include adding privacy and cookie policies, implementing security headers, and publishing vulnerability disclosure information to enhance compliance and trust.

I

Integsoft, Inc.

integrationeye.com

60

Integration Eye is a modular software product developed by Integsoft, Inc., focused on API monitoring, logging, and security. The product targets businesses and developers requiring robust API management and security solutions. The website presents detailed product features, modular architecture, and transparent pricing, positioning itself as a niche provider in the technology sector. The company emphasizes on-premise and private cloud deployment options, catering to customers with strict data privacy requirements. Technically, the website leverages a modern technology stack including Java, Mule Runtime, XML configurations, and popular web libraries such as jQuery and FontAwesome. It integrates analytics and marketing tools like Google Analytics and Hotjar, indicating a mature digital presence. The site is well-structured, mobile-optimized, and provides comprehensive documentation and demos, reflecting good digital maturity. From a security perspective, the site uses HTTPS and implements CSRF tokens and cookie consent mechanisms, demonstrating basic security hygiene. However, the absence of explicit security headers and a published security policy or incident response contact reduces its security posture. The missing WHOIS domain registration data is a significant concern, potentially impacting trust and legitimacy. Overall, the website is professional and content-rich but requires improvements in domain registration transparency and enhanced security practices to strengthen trust and compliance.

F

Framasoft

framaprout.org

56

Framaprout.org is a niche, playful web project operated by the French non-profit organization Framasoft, known for promoting free software and digital commons. The site offers an interactive 'Prout-o-mètre' application with humorous content and browser extensions to engage users in a lighthearted manner. The project targets a general audience interested in digital culture and community-driven initiatives. Technically, the site uses modern frontend technologies including Vue.js and Bootstrap, hosted by OVH sas, with good mobile optimization and privacy-respecting analytics. Security posture is adequate with HTTPS enforced and domain protections, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is partial, with privacy and terms policies available on the parent site but no cookie consent mechanism on this site. Overall, the site is trustworthy, professionally presented, and aligned with Framasoft's mission.

F

Framasoft

framalang.org

59

Framasoft is a reputable French non-profit organization dedicated to promoting free software, digital commons, and collaborative translation efforts through its Framalang project. The website serves as a portal for community members to participate in translating digital culture content, primarily from English to French, supporting the broader mission of open knowledge dissemination. The organization maintains a strong presence in the francophone free software ecosystem with multiple linked community platforms and projects. Technically, the site is built using modern static site generation tools (HonKit), ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and explicit cookie consent mechanisms. The WHOIS data is privacy protected, which is typical and justified for a non-profit entity, and does not detract from the domain's legitimacy. Overall, the site is trustworthy, well-maintained, and aligned with its community-driven mission.

F

Framasoft

framacarte.org

53

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical, free/libre software services. Framacarte is one of its flagship projects, offering a free online map customization tool based on OpenStreetMap and the uMap software. The organization is funded primarily by donations and emphasizes privacy, minimal data collection, and transparency. The website is professionally designed, mobile-optimized, and rich in content, targeting a broad audience interested in digital emancipation and open-source tools. Technically, the site uses modern web technologies including Vue.js and Bootstrap, hosted by OVH sas. It employs HTTPS with good SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. Analytics are handled via Matomo with minimal tracking, aligning with the organization's privacy ethos. Security posture is solid for a non-profit, with domain registration protections and no evident vulnerabilities, though improvements are suggested in DNS security and explicit security policies. Privacy compliance is good, with clear terms and privacy policies, though no cookie consent mechanism was detected. Overall, Framasoft and Framacarte present a trustworthy, well-managed digital service with strong community and ethical foundations. Strategic improvements in security and privacy transparency would further enhance trust and resilience.

F

Framasoft

framadate.org

59

Framadate is a free, open-source polling and scheduling tool operated by the French non-profit association Framasoft. The website offers collaborative event scheduling and opinion polling services with a strong emphasis on user privacy, data autonomy, and digital emancipation. The platform is donation-funded and positions itself as an ethical alternative to commercial services, targeting individuals and organizations seeking privacy-respecting tools. Technically, the site uses modern web technologies such as Vue.js and Bootstrap 4, is hosted by a reputable registrar (Gandi SAS), and is well-optimized for performance and mobile devices. Security posture is solid with HTTPS enforced and minimal data collection, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is good with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and aligns well with its stated mission and business model.

F

Framasoft

framatalk.org

60

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical and privacy-respecting online services. Their Framatalk platform offers free, ad-free videoconferencing based on the open-source Jitsi Meet software, targeting individuals and groups seeking secure and easy-to-use communication tools. The organization is funded primarily by donations and emphasizes transparency and community involvement. Technically, the website leverages modern web technologies including Vue.js and Bootstrap 4, hosted by OVH sas, a reputable provider. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. The use of open-source software and self-hosted analytics reflects a strong commitment to privacy and user control. Security-wise, the site enforces HTTPS and uses domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled and no explicit security policy or vulnerability disclosure mechanism is published. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by clear terms and policies, though no cookie consent mechanism was found. Overall, Framatalk presents a trustworthy, professional, and privacy-conscious service with a strong ethical foundation. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and adding cookie consent mechanisms to enhance compliance and user trust.

F

Framasoft

framasoft.org

61

Framasoft is a well-established French non-profit organization founded in 2004, dedicated to digital emancipation through free software, hosting ethical online services, and popular education. It operates a variety of community-driven projects and platforms such as PeerTube, Mobilizon, and Framablog, supported primarily by donations. The organization targets individuals and groups interested in liberating their digital practices and promoting social justice. Technically, the website uses modern frameworks like Vue.js and Bootstrap, is hosted by OVH, and demonstrates excellent mobile optimization and performance. Security posture is strong with HTTPS and domain protections, though DNSSEC is not enabled and security policies are not explicitly published. Privacy compliance is good with a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the website is professional, trustworthy, and transparent, with a high legitimacy score based on WHOIS data and content consistency.

M

Městské muzeum Dvůr Králové nad Labem

muzeumdk.cz

52

Městské muzeum Dvůr Králové nad Labem is a municipal cultural institution offering three permanent exhibitions focused on local history, textile printing, and Christmas ornaments. The museum targets general public visitors, including schools, and provides educational programs, workshops, and an online catalog. The website is built on WordPress with modern frontend technologies such as Bootstrap and jQuery, and integrates analytics tools like Matomo and Google Tag Manager. It is well-structured, mobile-optimized, and provides clear navigation and relevant content in Czech with English language support. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent implemented, though some security headers and explicit incident response contacts are missing. Overall, the site is trustworthy, professional, and aligned with the museum's public service mission.

G

GENAQ

genaq.com

57

GENAQ is a medium-sized Spanish company specializing in manufacturing atmospheric water generators that extract potable water from air. The company positions itself as an innovative and sustainable solution provider addressing global water scarcity challenges. Their website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. Technically, the site uses WordPress with modern frameworks and plugins, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though some enhancements like DNSSEC and security headers could improve it further. No critical vulnerabilities or suspicious content were detected. Overall, GENAQ demonstrates strong business credibility and trustworthiness with multiple certifications and customer testimonials.

B

BlučinaNet s.r.o.

blucinanet.eu

41

BlučinaNet s.r.o. is a small Czech telecommunications company established in 1992, providing internet and television services primarily to residential and small business customers. The website presents a professional and consistent brand image with clear service offerings including internet connectivity, TV packages, and router hardware. The company targets customers in the Czech Republic, emphasizing affordable and reliable service. Technically, the website is built on a modern Nuxt.js and Vue.js stack, offering good mobile optimization and user experience, though SEO and accessibility could be improved. Security posture is solid with HTTPS enforced, but lacks important security headers and published privacy or cookie policies, which reduces compliance and trust. No blocking or WAF mechanisms were detected, and no suspicious content or tracking scripts are present, indicating a safe and straightforward online presence.

J

Juver Alimentación

juver.com

60

Juver Alimentación is a well-established Spanish company specializing in the manufacturing and retail of fruit juices, nectars, fruit beverages, and preserves. Founded in 1997, the company positions itself as a quality-focused brand emphasizing health and pleasure through fruit-based products. The website reflects a mature digital presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and structured data implementation. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as DNSSEC and explicit security policies are recommended. Privacy compliance is partial, with a cookie consent mechanism present but lacking a visible privacy policy or terms of service. Overall, the site demonstrates high business credibility and professionalism, with room for enhanced privacy and security transparency.

O

One Creator Lab

onecreatorlab.org

51

One Creator Lab is a niche educational platform launched in 2022, focusing on bridging emerging and seasoned creators through short-form video campaigns. The website is built on WordPress and leverages modern SEO and marketing tools such as Yoast SEO, HubSpot, and various social media tracking pixels. The technical infrastructure is solid with HTTPS enabled and domain transfer protections in place, although DNSSEC is not enabled, representing a minor security gap. The security posture is moderate with no critical vulnerabilities detected, but the absence of privacy and cookie policies indicates compliance gaps. Overall, the website presents a professional and trustworthy front for its target audience of creative professionals and learners.

C

Chachar catering s.r.o.

trinec-chachar.cz

45

Chachar catering s.r.o. operates a regional online food delivery service specializing in pizza, burgers, chicken wings, and other fast food items in the Czech Republic. The website supports online ordering and customer account management, targeting general consumers seeking quick and quality food delivery. The business is positioned as a local player with multiple branches, including the Třinec location analyzed here. The company was founded in 2019 and maintains a consistent brand presence across its digital platforms. Technically, the website is built on WordPress 4.9.8 with a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and reCAPTCHA for security and analytics. The site is mobile optimized with good navigation and user experience, though some technical debt is evident due to outdated WordPress core and missing security headers. Performance is moderate, and SEO is basic but functional. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on login forms, with a cookie consent mechanism aligned with GDPR requirements. However, the outdated WordPress version and lack of explicit security headers present potential vulnerabilities. No formal security policy or incident response information is publicly available. Privacy compliance is basic but present, with dedicated pages for GDPR and terms of service. Overall, the website is functional and professional with moderate risk. Strategic improvements in security patching, header implementation, and enhanced privacy disclosures would strengthen the security posture and trustworthiness. The business demonstrates credible online presence consistent with its regional food delivery model.

C

Chachar catering s.r.o.

studenka-chachar.cz

41

Chachar catering s.r.o. operates a regional online food delivery service specializing in pizza, chicken wings, burgers, and other fast food items in the Czech Republic. The website studenka-chachar.cz serves as a branch-specific portal for the Studénka location, providing customers with online ordering capabilities and contact information. The business targets general consumers seeking quick and quality food delivery with a focus on fresh ingredients and local service. The company is relatively new, founded in 2023, and maintains a consistent brand presence across its digital assets. Technically, the website is built on WordPress 4.9.8 with a modern frontend stack including jQuery, Bootstrap, FontAwesome, and Google Tag Manager for analytics and marketing. The site is mobile optimized and includes cookie consent mechanisms compliant with GDPR. However, the WordPress version is outdated, which may expose the site to security vulnerabilities. The site uses HTTPS with a good SSL configuration but lacks explicit security headers such as CSP or HSTS. From a security perspective, the site integrates Google reCAPTCHA on login forms and employs cookie consent banners, indicating awareness of privacy and security best practices. Nonetheless, the absence of a published security policy or incident response information and the outdated CMS version represent areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy front for a small regional food delivery business. Strategic improvements in CMS updates, security headers, and transparency around security policies would enhance the security posture and trustworthiness further.

C

Chachar catering s.r.o.

slezska-chachar.cz

45

Chachar catering s.r.o. operates a regional online food delivery service specializing in pizza, chicken wings, burgers, and other fast food items in the Ostrava area of the Czech Republic. The website slezska-chachar.cz serves as a localized branch portal for ordering and customer interaction, featuring online ordering, account login, and contact options. The business targets general consumers seeking quick and quality food delivery with a focus on fresh ingredients and local service. Technically, the website is built on WordPress 4.9.8 with a modern front-end stack including Bootstrap, jQuery, and various tracking tools such as Google Tag Manager and Microsoft Clarity. The site is mobile optimized and provides a cookie consent mechanism compliant with GDPR. Security posture is moderate, with HTTPS enforced and reCAPTCHA implemented, but the WordPress version is outdated and lacks some security headers. No explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and functional for its business purpose.