Security Directory

C

Casino Zonder IDIN | Speel bij de mooiste casino's zonder iDin!

casinozonderidin.net

64

Casino Zonder IDIN is a Dutch-language online platform specializing in providing information, reviews, and affiliate links for online casinos that do not require iDIN identification. The website targets Dutch players seeking anonymous or alternative gambling options outside the standard iDIN verification process. It offers detailed guides, bonus information, and payment method overviews, positioning itself as a niche leader in the Dutch iDIN-free gambling market. Technically, the site is built on WordPress with modern SEO and performance optimizations, including lazy loading and mobile responsiveness. Security posture is adequate with HTTPS and domain transfer protections, though explicit security policies and headers could be improved. The site maintains transparency with affiliate disclosures and contact email, but lacks phone contact and formal incident response information. Overall, the website is professional, trustworthy, and well-optimized for its target audience, with a good balance of content quality and technical implementation.

F

FreeWear.org

freewear.org

55

FreeWear.org is a niche e-commerce website specializing in merchandise related to open source and free software projects. The business model includes selling T-shirts, hoodies, stickers, mugs, and other items, with a portion of sales donated back to the respective open source projects. The site targets open source enthusiasts and community supporters, positioning itself as a community-focused retailer with transparent donation practices. Technically, the website uses older JavaScript libraries such as MooTools 1.2.4 and Font Awesome 4.7.0, with Google Analytics for tracking. The site is served over HTTPS with a cookie consent banner indicating GDPR compliance. However, some modern security headers are missing, and the WHOIS data is unavailable due to a malformed query, limiting domain registration transparency. Overall, the site is functional, moderately optimized, and trustworthy for its niche audience.

C

Contact Privacy Inc. Customer 0139170451

photojoseph.com

53

PhotoJoseph.com is a specialized media website providing photography, video, and YouTube tips, tutorials, and training, with a focus on LUMIX cameras and related software tools. The site targets photographers and content creators seeking expert guidance and resources. The business operates a content publishing model supplemented by a store offering training materials and affiliate marketing. Technically, the site is built on Drupal 7 with modern front-end frameworks and integrates social media and analytics tools. While the site uses HTTPS and domain transfer protections, it lacks DNSSEC and uses an older CMS version, which may pose security risks if not properly maintained. Privacy compliance is basic with a privacy policy and cookie consent but no explicit GDPR statements. Contact is primarily via forms and social logins, with no direct emails or phone numbers published. Overall, the site is professional, trustworthy, and content-rich, but could improve security and compliance transparency.

S

Scouternas folkhögskola

scouternasfolkhogskola.se

41

Scouternas folkhögskola is a Swedish folk high school affiliated with the national scouting organization, offering leadership and scout-related education primarily through digital and distance learning formats. The institution targets individuals interested in personal development, leadership skills, and scouting education, positioning itself as a specialized non-profit educational provider within Sweden. The website reflects a professional and consistent brand image with clear communication of courses, contact information, and social media engagement. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and structured content. Security posture is solid with HTTPS and privacy compliance measures such as cookie consent and a detailed privacy policy, though explicit security headers and incident response information are not publicly disclosed. The WHOIS data for the exact www subdomain is unavailable, likely due to querying the full subdomain rather than the base domain, but the overall legitimacy is supported by consistent branding and partner domain relationships. Overall, the site demonstrates a mature digital presence suitable for its educational mission, with room for enhanced security transparency and technical improvements.

W

World YMCA

ymca.int

55

World YMCA is a globally recognized non-profit organization dedicated to empowering young people and communities to lead positive change. The website reflects a mature digital presence with a focus on youth-led initiatives, community wellbeing, and global partnerships. The organization leverages modern web technologies including WordPress, Yoast SEO, and GiveWP for donations, indicating a well-maintained infrastructure. Social media integration and multilingual support enhance its outreach capabilities. Security posture is solid with HTTPS and reCAPTCHA usage, though explicit security policies and headers could be improved. Privacy compliance is limited due to absence of visible privacy and cookie policies. Overall, the site is professional, trustworthy, and aligned with the organization's mission.

C

cath.ch

cath.ch

58

cath.ch is a well-established Swiss Catholic news portal serving the French-speaking Catholic community with news, commentary, multimedia, and community services. The site is professionally designed and offers a broad range of content including news from Switzerland, Vatican, and international Catholic affairs. It operates on a WordPress CMS with a modern tech stack including Bootstrap and various analytics and marketing tools. The website demonstrates a good level of digital maturity with mobile optimization and clear navigation. Security posture is adequate with HTTPS and some security best practices, though improvements are recommended such as implementing a Content-Security-Policy and publishing incident response contacts. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and credible, with clear contact information and social media presence.

K

KAFKA TRANSPORT a.s.

kafkatransport.cz

49

KAFKA TRANSPORT a.s. is a Czech transportation company with over three decades of experience, providing a broad range of logistics and transport services including international and domestic freight, parcel delivery, storage, vehicle repair, washing, and rental services. The company targets businesses and individuals requiring reliable transport solutions and maintains an active presence on social media platforms to engage with its audience. The website is professionally designed, mobile-optimized, and includes essential business information and GDPR-compliant privacy and cookie policies. Technically, the website leverages modern web technologies such as Google Analytics, Bootstrap, FontAwesome, and Google Fonts, and is built on the Pagebuilder CMS platform. It employs HTTPS for secure communication and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. However, some security best practices like explicit security headers are missing, and no incident response or security policy information is publicly available. From a security perspective, the site shows good baseline protections but lacks advanced security disclosures and headers. The absence of WHOIS data for the domain is a notable concern, as it limits the ability to verify domain legitimacy and registration details. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, the site presents a moderate security posture with room for improvement in transparency and technical security hardening. The overall risk assessment is moderate; the business appears legitimate and professional, but the missing WHOIS data and lack of explicit security policies reduce trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving domain registration transparency to strengthen trust and compliance.

M

Medienportal Kirchenbote

kirchenbote-sg.ch

61

The website kirchenbote-sg.ch serves as a regional news portal focused on church-related news and cultural topics for the canton of St. Gallen, Switzerland. It provides a variety of articles, thematic sections, and community resources, targeting residents and church community members. The site maintains partnerships with other cantonal church news portals, enhancing its regional media presence. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and a cookie consent mechanism with opt-in compliance. Security posture is good with HTTPS enforced and basic security best practices, though additional HTTP security headers could improve protection. Privacy compliance is strong with a clear privacy policy and cookie consent. Contact information is transparent and includes physical addresses, phone numbers, and emails. Overall, the site is professional, trustworthy, and well-positioned in its niche regional media market.

G

Gas Inside Information Platform (GIIP)

gasinsideinformationplatform.pl

71

Gas Inside Information Platform (GIIP) operates as a specialized platform dedicated to wholesale energy market participants, facilitating compliance with the REMIT regulation (EU) No 1227/2011 by providing a channel for disclosure of inside information. The platform is recognized and listed by the Agency for the Cooperation of Energy Regulators (ACER), positioning it as a trusted service provider within the European energy regulatory ecosystem. The website content clearly targets energy market participants requiring regulatory compliance services, offering key services such as publishing Urgent Market Messages and client onboarding. Technically, the website employs a standard modern web stack including HTML5, CSS, JavaScript, jQuery, and Bootstrap 3.3.7. It integrates Google Analytics for visitor tracking and implements a cookie consent mechanism compliant with EU regulations. Hosting is provided by OVH SAS, a reputable registrar and hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site enforces HTTPS and uses CSRF tokens in meta tags, indicating attention to secure form handling. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web threats. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Privacy compliance is basic but present, with clear privacy and cookie policies and a consent banner. Overall, the website is legitimate, professional, and trustworthy with no signs of malicious or adult content. The domain registration data aligns well with the business timeline and sector. Recommendations include enabling DNSSEC, adding security headers, publishing security policies, and enhancing accessibility and SEO for improved user experience and security posture.

H

Headliner

headliner.cz

53

Headliner is a Czech music magazine and media platform providing news, interviews, podcasts, and cultural content primarily targeting Czech-speaking music enthusiasts. The website offers a digital magazine, podcasts, newsletters, and music news articles, positioning itself as a niche media outlet in the Czech Republic. The presence of official logos such as the Ministry of Culture and OSA indicates recognized legitimacy within the cultural sector. Technically, the website employs modern web technologies including responsive images, JavaScript ES modules, and analytics tools like Matomo and Google Analytics. The site is mobile-optimized with good SEO and basic accessibility features. However, some security headers are missing, and no explicit security or incident response policies are published. Security posture is generally good with HTTPS enforced and cookie consent implemented, but improvements are recommended in security headers and vulnerability disclosure mechanisms. The absence of WHOIS data limits domain registration trust verification, though the website content and external trust signals support its legitimacy. Overall, the website is professionally designed, content-rich, and compliant with privacy regulations, making it a trustworthy source for music and cultural content in its market segment.

MGM spol. s r.o. is a well-established Czech manufacturer specializing in thermal cutting machines and welding aggregates, with a strong presence across Eastern and Central Europe. The company offers proprietary CNC control systems and a range of products including plasma and autogenous cutting machines. Their website reflects a mature business with detailed product showcases, video demonstrations, and comprehensive contact information. Technically, the site uses a modern front-end stack including Bootstrap and jQuery, though some libraries are outdated. Security posture is moderate with cookie consent implemented but lacking explicit privacy policies and security headers. WHOIS data is unavailable due to EURid privacy restrictions, which is typical for .eu domains, but the business legitimacy is supported by consistent contact and company information. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

E

EGE Power System, s.r.o.

egepowersystem.cz

50

EGE Power System, s.r.o. is a Czech-based company specializing in sustainable energy solutions including solar carports, heat pumps, photovoltaics, and industrial lighting. Founded in 2023, the company targets businesses and individuals seeking tailored turnkey energy systems. Their market position is that of a niche regional provider emphasizing customized and sustainable energy solutions. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on their core services. Technically, the website employs modern web technologies such as Google Fonts, jQuery, and Slick Carousel, hosted by Webglobe. It uses Google Analytics with privacy-conscious default settings denying ad and analytics storage until consent is given. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. No CMS other than Pagebuilder is detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR. However, no explicit security headers or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent with the business information, supporting legitimacy. Overall, the security posture is good but could be enhanced with additional headers and published policies. The overall risk assessment is low with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, and auditing third-party scripts regularly to maintain security and compliance. The website is trustworthy, professional, and compliant with privacy regulations, making it suitable for its target audience.

O

OLMA Messen St. Gallen

tierundtechnik.ch

67

Tier&Technik is a well-established international trade fair focused on livestock farming, agricultural production, specialty crops, and agricultural technology, held in St. Gallen, Switzerland. The event targets agricultural professionals, exhibitors, and industry stakeholders primarily from Switzerland and neighboring countries. The website reflects a professional and consistent brand presence, providing comprehensive information about the event, exhibitors, and related news. It leverages modern web technologies including Bootstrap, Usercentrics for privacy compliance, and Google Analytics for visitor insights. Multimedia content such as videos and images enhance user engagement. Security posture is solid with HTTPS enforced and privacy mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a mature digital presence aligned with its business objectives.

G

Gastia

gastia.ch

66

Gastia is a specialized trade fair and experiential event organizer focused on the hospitality industry in Switzerland, particularly targeting hoteliers, restaurateurs, and catering professionals. The website promotes the upcoming event scheduled for March 2026, highlighting its role as a regional leader in hospitality trade fairs with a strong emphasis on quality, regionality, and knowledge transfer. The business operates under the parent company OLMA Messen St. Gallen, which lends credibility and stability to its operations. The site provides rich multimedia content, including videos, photo galleries, and news articles, to engage its professional audience. Technically, the website employs modern web technologies such as ES modules, Bootstrap for UI components, Splide.js for carousels, and Usercentrics for GDPR-compliant cookie consent management. Google Analytics is used for visitor tracking, and the site is served over HTTPS with good SSL configuration. The site is mobile-optimized with a clear navigation structure and good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses a reputable cookie consent platform, but lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No security headers were detected in the HTML content, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. WHOIS data confirms the domain's legitimacy with consistent registrant information matching the business profile. Overall, Gastia's website is professional, trustworthy, and well-suited for its target audience. It demonstrates a solid digital presence with moderate tracking and compliance measures. Strategic improvements in security transparency and accessibility could further enhance its posture and user trust.

M

Městská knihovna Tábor

knihovnatabor.cz

50

Městská knihovna Tábor is a municipal library serving the community of Tábor, Czech Republic, offering a wide range of services including physical and electronic book lending, cultural events, educational programs, and community engagement activities. The website reflects a well-structured public service platform targeting a broad audience including children, adults, seniors, and foreigners. The business model is consistent with a government-funded institution focused on public access to knowledge and culture. Technically, the website employs modern JavaScript libraries, including jQuery and Google Analytics, and integrates a third-party payment widget for ticket sales. The site is mobile-optimized with a moderate performance profile. However, some technical improvements are recommended, such as implementing security headers and a cookie consent mechanism to enhance privacy compliance. From a security perspective, the site uses HTTPS and restricts Google Analytics data collection by default, indicating a privacy-conscious approach. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and structure suggest a trustworthy municipal entity. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a solid digital presence for a public library with room for technical and privacy enhancements. Strategic recommendations include improving security headers, adding cookie consent, and enhancing transparency around data protection to strengthen user trust and compliance.

Sanatorium plastické a estetické chirurgie Chotoviny is a specialized healthcare provider focused on plastic and aesthetic surgery, serving a primarily Czech and international clientele. The company offers a broad range of surgical and laser procedures, rejuvenation treatments, and hand and vascular surgeries, supported by a professional team with over 30 years of experience. Their business model includes direct patient consultations, surgical services, and an e-commerce platform for gift vouchers and related products. The website is professionally designed, mobile-optimized, and includes client testimonials and external review integrations, enhancing trust and credibility. Technically, the website employs modern web technologies such as Bootstrap 5, jQuery, FontAwesome, and integrates third-party services including Google Analytics, Facebook Customer Chat, and Packeta shipping widgets. The site is hosted on a Czech hosting provider and demonstrates good performance and SEO practices. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy and terms of service pages. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent aligned with GDPR. However, no explicit security headers were detected, and no security.txt or incident response information is published, which are areas for improvement. The absence of WHOIS data for the domain is a notable concern, reducing trust from a domain registration standpoint, though the website content and external reviews support legitimacy. Overall, the website presents a professional and trustworthy front for the business, with moderate technical and security maturity. Strategic improvements in domain registration transparency and security policy publication would enhance trust and compliance.

B

Bzuco

bzuco.cz

52

Bzuco is a Czech-based technology company specializing in modern ticketing and event management solutions. Their platform enables event organizers to sell tickets directly, manage entry control via mobile apps, integrate e-shops, and implement cashless payment systems. The company positions itself as a cost-saving alternative to traditional ticketing providers, emphasizing data ownership and reduced commission fees. The website reflects a professional and consistent brand image with clear contact channels and client trust indicators. Technically, the site uses modern web technologies including Google Analytics, Typekit fonts, and AJAX powered by the Nette PHP framework. The site is mobile-optimized and provides a cookie consent mechanism aligned with GDPR requirements. Security posture is adequate with HTTPS enforced and form validation, but lacks visible security headers and dedicated security policies. WHOIS data is unavailable, which reduces transparency and trustworthiness, but the website content and contact information suggest a legitimate business. Overall, the site scores well on content quality, business credibility, and privacy compliance, with room for improvement in security best practices and WHOIS transparency.

V

VSIA "Latvijas Vēstnesis"

lv.lv

57

VSIA "Latvijas Vēstnesis" operates as the official publisher of the Republic of Latvia, providing authoritative access to official publications and legal acts. The organization supports legal awareness and development of legal thought through its multiple portals and the "Jurista Vārds" journal. The website serves a broad audience including Latvian citizens, legal professionals, and government entities, positioning itself as a trusted and official source of legal information in Latvia. The business model revolves around official publication services, legal information dissemination, subscription services, and advertising within its legal journal and portals. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party libraries such as Google Analytics for tracking, Swiper.js for sliders, and Flatpickr for date inputs. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Privacy and cookie policies are implemented with GDPR compliance in mind. From a security perspective, the site enforces HTTPS and uses CSRF tokens, but lacks some advanced security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain WHOIS data aligns with the official nature of the entity, showing consistent registration and no privacy protection, enhancing trustworthiness. Overall, the website is a high-quality, professional, and secure platform serving an essential government function. Strategic improvements in security headers and transparency around incident response could further enhance its security posture and trust.

F

Fallsview Casino Resort

fallsviewcasinoresort.com

61

Fallsview Casino Resort is a large, well-established casino and hospitality business located in Niagara Falls, Canada. It operates a comprehensive resort including a casino with thousands of slot machines and gaming tables, hotel accommodations, dining, entertainment venues, and shopping. The website reflects a mature digital presence with professional design, clear navigation, and extensive content targeting adult customers interested in gaming and entertainment. Technically, the site uses Adobe Experience Manager CMS, modern JavaScript libraries, and integrates multiple analytics and marketing tools. Security posture is good with HTTPS and domain protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, lacking cookie consent mechanisms despite tracking scripts. Overall, the domain registration data supports the legitimacy and long-standing operation of the business.

E

Experimental Aircraft Association, Inc.

eaabuilderslog.org

46

EAABuildersLog.org is a niche online platform provided by the Experimental Aircraft Association, Inc. (EAA) to support its members in logging and sharing their experimental aircraft building projects. The website offers project tracking, search, and mapping features tailored to the aviation enthusiast community. It operates as a non-profit service with a focus on community engagement and project documentation. The platform is designed with Bootstrap and jQuery, providing a responsive and user-friendly experience, although some technologies are dated. The site is hosted on JustHost and secured with HTTPS, but lacks advanced security headers and DNSSEC, indicating room for security improvements. Privacy compliance is basic, with a privacy policy page but no cookie consent mechanism. Contact is primarily via a login popup and contact form, with no explicit emails or phone numbers listed. Overall, the website is functional, trustworthy, and serves its target audience well, but could enhance security and privacy features to align with best practices.

A

AUTOJOB s.r.o.

autojob.cz

41

AUTOJOB s.r.o. operates AUTOJOB.cz, a specialized online job portal focused on the automotive and transport industries primarily in the Czech Republic and Slovakia. The platform offers job listings, candidate databases, employer services, and industry-related content including an automotive magazine and a competition called Autoopravář Junior. The site targets job seekers and employers within the automotive sector, providing a niche service that supports recruitment and industry engagement. Technically, the website uses legacy JavaScript libraries such as jQuery 1.3.2 and jQuery UI 1.7.3, alongside modern analytics tools like Google Analytics and Facebook SDK. While the site is functional and moderately optimized, it shows signs of technical debt and could benefit from modernization, especially in updating libraries and improving mobile responsiveness and accessibility. From a security perspective, the site uses HTTPS but lacks visible security headers and employs outdated JavaScript libraries that may expose it to vulnerabilities. Privacy compliance is partially addressed with a privacy policy and terms of service, but the absence of a cookie consent mechanism and security.txt reduces compliance maturity. No WAF or blocking mechanisms were detected, and the site content is safe for general audiences. Overall, the site is a credible and professional niche job portal with room for technical and security improvements. The lack of WHOIS data reduces domain trust slightly, but the presence of partner logos and clear contact information supports legitimacy. Strategic enhancements in security headers, library updates, and privacy compliance would strengthen the platform's risk posture and user trust.

O

OSR Label

osr-label.ch

46

OSR Label is a Swiss non-profit organization focused on promoting social responsibility and ethical business practices through its certification label. The website serves as an informational and promotional platform for the OSR Label, targeting businesses and organizations interested in demonstrating their commitment to social responsibility. The site uses modern frontend technologies such as UIkit and jQuery and integrates Google Analytics for visitor tracking. While the website is professionally designed with good navigation and mobile optimization, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security-wise, the site uses HTTPS and a cookie consent mechanism but does not display advanced security headers or incident response information. Overall, the site is legitimate, well-branded, and serves its niche effectively but could improve in privacy and security transparency.

N

NOVÁ ŠKOLA, s.r.o.

english-nns.cz

42

The website www.english-nns.cz/blog is an educational portal operated by NOVÁ ŠKOLA, s.r.o., focused on providing comprehensive English language teaching materials for primary schools and kindergartens in the Czech Republic. It offers textbooks, workbooks, multimedia interactive content, video demonstrations, and downloadable resources aligned with Czech educational standards. The site targets educators and teachers of young learners, supporting effective and engaging English language instruction. Technically, the site is built on WordPress with a moderate modern tech stack including Google Analytics and Tag Manager for tracking, and uses Google reCAPTCHA for form security. The site is mobile optimized and has good navigation and content quality. Security posture is solid with HTTPS and reCAPTCHA, but lacks security headers and explicit privacy and cookie policies, which are compliance gaps. WHOIS data is missing, which reduces trustworthiness and calls for further verification. Overall, the site is functional, professional, and safe for its audience but could improve privacy compliance and security best practices.

Autond.cz is an established Czech online marketplace specializing in the listing and sale of automotive spare parts. Operated by Teas spol. s r. o., the platform offers a large inventory of over 218,000 parts from more than 215 sellers, primarily targeting the Czech and Slovak markets. The website provides search functionality by part code or vehicle brand, facilitating efficient parts sourcing for businesses and individuals. The company has a solid market presence with a domain age dating back to 2008, reflecting stability and trustworthiness in the automotive spare parts sector. Technically, the website employs a traditional web stack including jQuery 1.7.1, custom JavaScript, CSS, and integrates Google Analytics for user behavior tracking. Cookie consent is managed via CookieFirst scripts, indicating some level of privacy compliance. However, the site lacks modern frameworks or CMS indications and uses an outdated jQuery version, which may pose security risks. Mobile optimization and accessibility are basic, and SEO practices are minimal but functional. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but no advanced security headers were detected. There is no published privacy policy, terms of service, or incident response information, representing compliance and transparency gaps. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent from the provided data. The domain registration data aligns well with the business information, supporting legitimacy. Overall, autond.cz presents a moderately professional and trustworthy platform with room for improvement in privacy compliance, security hardening, and technical modernization. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

A

ACCESS Newswire

accessnewswire.com

65

ACCESS Newswire operates as a leading global press release distribution and PR platform, offering a comprehensive suite of services including media database access, media pitching, monitoring, and investor relations tools. The company targets businesses, PR professionals, investors, and agencies, providing subscription and non-subscription models to meet diverse client needs. The website demonstrates a strong market position with professional branding and clear service offerings. Technically, the website leverages a modern technology stack including Google Analytics, Microsoft Clarity, Marketo, Facebook Pixel, and service workers for offline support. It is built on the MultiScreenSite CMS platform, optimized for mobile and accessibility, and integrates multiple marketing and analytics tools to support business growth and user engagement. From a security perspective, the site enforces HTTPS, uses reCAPTCHA v3, and includes accessibility compliance features. While explicit security headers are not fully confirmed, no exposed sensitive data or vulnerabilities were detected in the HTML content. The absence of a public vulnerability disclosure policy and WHOIS data transparency are areas for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. However, the missing WHOIS data and lack of explicit security policies slightly reduce trustworthiness. Strategic recommendations include enhancing WHOIS transparency, publishing a security policy, and ensuring all security headers are implemented and maintained.

N

NOVÁ ŠKOLA, s.r.o.

nns.cz

54

NOVÁ ŠKOLA, s.r.o. is a Czech educational publisher specializing in textbooks, interactive learning materials, and educational software primarily targeting primary and secondary schools. The company operates an e-commerce platform offering these products and provides support and downloads for their interactive tools. The website is built on WordPress and uses modern web technologies including Google Tag Manager and Google Analytics with privacy-conscious consent settings. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its audience. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. WHOIS data for the domain is unavailable, which slightly reduces trustworthiness but does not negate the legitimacy indicated by the website content and business presence. Overall, the site is professional, secure, and compliant with GDPR requirements, serving its educational market effectively.

S

Sprintty for Sports - Enhance Your Sports Streaming

sprintty.com

65

Sprintty.com is a technology platform specializing in sports streaming services, offering high-quality live sports event streaming with advanced monetization and customization features. The website targets sports content providers and distributors seeking a robust platform to deliver and monetize sports video content. The platform appears to be relatively new, founded in 2022, and uses the Tilda CMS platform with integrations for analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The technical infrastructure includes Akamai DNS and CDN services, indicating a focus on performance and reliability. Security posture is moderate; while HTTPS is implied and domain registration is secured with EPP status locks, there is no DNSSEC enabled and no security headers detected in the HTML content. The website lacks explicit privacy, cookie, and terms of service policies, which impacts privacy compliance scores. No contact emails or phone numbers are explicitly provided on the site, limiting direct communication channels. Overall, the site is professionally designed with good user experience and content relevance but would benefit from enhanced security and privacy compliance measures.

I

Institution of Mechanical Engineers

imeche.org

66

The Institution of Mechanical Engineers (IMechE) operates a comprehensive and professionally designed website serving a large global membership base of over 115,000 members across 140 countries. The organization focuses on advancing mechanical engineering through membership services, professional registration, training, events, and industry challenges. The website reflects a mature digital presence with modern technologies including Telerik Sitefinity CMS, Bootstrap, and integrated analytics and consent management tools. Security posture is strong with HTTPS enforcement and cookie consent aligned with GDPR, though explicit security headers and incident response information are not publicly detailed. The absence of WHOIS data due to privacy protection is typical for professional institutions and does not detract from the site's legitimacy. Overall, the website demonstrates high professionalism, trustworthiness, and effective user engagement for its target audience of engineering professionals and students.

C

CESNET, zájmové sdružení právnických osob

e-infra.cz

49

e-INFRA CZ is a Czech Republic-based consortium providing unique e-infrastructure services for scientific research and development. The organization offers network infrastructure, high-performance computing, data storage, security, digital identity, and user collaboration services primarily targeting research institutions and scientific communities within the country. The website reflects a professional and consistent brand presence with clear navigation and relevant content focused on its mission. Technically, the website employs modern web technologies including jQuery, Google Analytics, and a cookie consent management system (KookieCheck.cz). It is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security headers are missing, and there is no explicit security policy or incident response information published. From a security perspective, the site demonstrates good practices such as encrypted connections and user consent for cookies, but lacks published vulnerability disclosure or security contact details. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration insights, but the website's professional appearance and association with CESNET suggest legitimacy. Overall, the website is safe, well-maintained, and compliant with GDPR requirements, serving its target audience effectively. Strategic improvements in security transparency and contact information would enhance trust and compliance further.

M

Melbourne Build Expo

melbournebuildexpo.com

64

Melbourne Build Expo is a newly established but rapidly growing trade show event focused on the construction and design industry in Victoria, Australia. It is officially supported by government officials and features a large number of speakers, exhibitors, and networking opportunities. The website is professionally designed using modern web technologies and a specialized CMS platform, providing a good user experience and mobile optimization. However, the site lacks some key compliance documents such as privacy policy and terms of service, which should be addressed to improve trust and legal compliance. Security posture is adequate with HTTPS and cookie consent implemented, but could be enhanced by adding security headers and publishing a security policy. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and consistency with the event's timeline.

E

Efko

efko.cz

62

Efko is a Czech-based manufacturer specializing in board games, toys, and custom carton packaging with over 20 years of industry experience. The company operates a professional website showcasing its product lines, including proprietary brands like Igráček and MultiGO, and offers an e-commerce platform for direct sales. The website is well-structured, multilingual, and integrates customer review widgets to enhance trust. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with a cookie consent mechanism that respects user privacy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the overall digital presence and certifications support legitimacy.

L

Lenz Products

lenzproducts.com

68

Lenz Products is a specialized retailer based in Austria, focusing on innovative heated clothing and functional textiles for sports, work, and leisure. Established in 2004, the company positions itself as a niche innovator with a clear vision to support customers with their Body Heat System technology. Their e-commerce platform is built on Shopify, leveraging modern web technologies and multiple third-party integrations for marketing, analytics, and GDPR compliance. The website demonstrates good content quality, professional design, and clear navigation tailored to their target audience. Security-wise, the site uses HTTPS and domain transfer protections but lacks advanced DNS security features like DNSSEC and a public vulnerability disclosure policy. Overall, the business appears legitimate, with consistent WHOIS data and a mature domain age.

H

Hartzell Engine Technologies

hartzell.aero

56

Hartzell Engine Technologies operates as a leading OEM supplier specializing in aircraft parts and engine technologies. The company targets aviation industry professionals and organizations requiring high-quality aircraft components. Their market position is strong within the transportation sector, focusing on OEM manufacturing and supply chain services. The website reflects a professional and consistent brand image with good content relevance and user experience. Technically, the site is built on WordPress with modern analytics and font technologies, indicating a moderate to good level of digital maturity. Security posture is adequate with HTTPS enabled and basic best practices observed, though there is room for improvement in publishing formal security and privacy policies. Overall, the site is trustworthy and well-maintained but lacks some compliance documentation and explicit contact details.

A

Alp Design – brand owned by Kong

alpdesign.it

53

Alp Design, a brand owned by Kong S.p.A., specializes in manufacturing high-quality equipment for speleology, canyoning, and rescue operations. Established in 1978, the company has a strong market position within its niche, offering a comprehensive product catalog including harnesses, bags, clothing, K9 harnesses, and rescue stretchers. The website reflects a professional and consistent brand image targeting professionals and enthusiasts in outdoor and rescue activities. Technically, the site is built on ASP.NET Web Forms with modern front-end libraries such as Bootstrap and Swiper.js, delivering a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements are recommended in security headers and explicit security policies. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the website and its operations.

F

Fourthwall, Inc.

fourthwall.com

67

Fourthwall, Inc. is a technology company providing an all-in-one creator business platform that enables digital creators to launch branded shops, memberships, and homepages. The platform targets a broad audience of creators including YouTubers, Twitch streamers, TikTokers, musicians, podcasters, comedians, and businesses, positioning itself as a comprehensive solution for creator monetization and brand building. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on Webflow CMS, uses Google Analytics, Google Tag Manager, reCAPTCHA, and AdRoll for marketing and tracking, and is hosted likely on Webflow infrastructure with DNS managed by Google Domains. The site is mobile optimized and performs moderately well. Security posture is good with HTTPS enforced and domain registration protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security disclosures.

B

Blažek

blazek.sk

53

Blažek is a well-established Czech and Slovak menswear brand specializing in formal and casual men's clothing and accessories. The company operates a professional e-commerce platform complemented by physical stores and bespoke tailoring services. Their market position is strong within the regional retail sector, targeting fashion-conscious men seeking quality apparel and accessories. The website reflects a mature digital presence with modern technologies such as Google Analytics, Facebook Pixel, and various UI libraries enhancing user experience and marketing capabilities. Security posture is solid with HTTPS enforced and secure login forms, though some security headers and explicit incident response policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

I

International School Sport Federation

isfsports.org

57

The International School Sport Federation (ISF) operates as a global non-profit organization dedicated to promoting school sports and organizing international school sports events. The website reflects a professional and well-structured digital presence, leveraging Drupal 9 CMS and modern web technologies. The organization maintains active social media channels and provides event information and registration through partner domains. Technically, the website is well-implemented with HTTPS, standard security practices, and moderate performance. However, explicit privacy policies, terms of service, and contact information are not prominently available, which could be improved for better transparency and compliance. The WHOIS data is unavailable or protected, which is common for non-profit organizations but limits domain trust analysis. Overall, the website is trustworthy, safe, and serves its educational and sports community effectively.

I

IT4Innovations

it4i.cz

55

IT4Innovations is a prominent Czech research and innovation center specializing in high-performance computing and related advanced technologies. It operates the country's most powerful supercomputing infrastructure, serving academic and industrial research communities. The website reflects a mature digital presence with comprehensive content about their infrastructure, research activities, collaborations, and educational programs. Technically, the site uses standard web technologies including jQuery and Google Analytics, with a cookie consent mechanism in place. However, the absence of WHOIS data and explicit privacy and terms policies indicates areas for improvement in transparency and compliance. Security posture is moderate with HTTPS enabled but lacking visible security headers and incident response information. Overall, IT4Innovations presents as a credible and professional entity with room to enhance security and privacy practices.

D

DMO Lužické a Žitavské hory, z.s.

pivnistezka.cz

63

The website pivnistezka.cz represents the Lusatian Mountains Beer Trail, a regional tourism initiative promoting breweries and beer trails in northern Bohemia, Czech Republic. The organization behind the site is DMO Lužické a Žitavské hory, z.s., focusing on connecting visitors with local breweries, accommodations, and events. The site targets beer enthusiasts and tourists interested in cultural and culinary experiences related to craft beer. The business model revolves around tourism promotion and regional collaboration among breweries and hospitality providers. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS with SEO optimization. It integrates multiple third-party scripts including Google Analytics, Facebook Pixel, and Seznam Retargeting for marketing and analytics purposes. The site is mobile optimized and provides a good user experience with clear navigation and rich content including videos and image carousels. From a security perspective, the site uses HTTPS with a good SSL configuration and includes some security best practices. However, explicit security headers are not detected, and no formal security or incident response policies are published. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service on the analyzed page. No WHOIS data is publicly available, likely due to privacy protection, but the site shows legitimate trust signals such as consistent branding and social media presence. Overall, the website is a credible regional tourism platform with good content and technical implementation but could improve privacy transparency and security header implementation to enhance trust and compliance.

C

CIR Médical

cirmedical.fr

50

CIR Médical is a French manufacturer specializing in medical devices, including vacuum mattresses, splints, and contaminated patient cells. The company operates within the healthcare and manufacturing sectors, targeting healthcare professionals and emergency services. The website reflects a professional presence with clear branding and contact information, supported by a long-standing domain registered since 2007 and linked to Groupe Rivolier. Technically, the site is built on WordPress with Jetpack and Google Analytics integrations, hosted on WordPress.com infrastructure, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible privacy or cookie policies, indicating room for compliance improvements. Overall, the site is trustworthy and professional but should enhance privacy and security transparency to align with best practices.

L

Leman Sport

lemansport.cz

48

Leman Sport is a Czech Republic based specialist retailer focusing on sports equipment, particularly Molten brand balls and related accessories. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting sports clubs, schools, and individual athletes. The website demonstrates a consistent brand presence with good content quality and clear navigation tailored for its target audience. Technically, the site uses modern web technologies including Google Analytics and Facebook Pixel for marketing and tracking, and is hosted by a Czech registrar, REG-WEDOS, with a domain age consistent with an established business since 2012. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit privacy and terms documentation. Overall, the site is professional, safe, and trustworthy, but would benefit from enhanced compliance and security transparency.

G

Gumi-teszt.eu

gumi-teszt.eu

55

Gumi-teszt.eu is a Hungarian-language tire review and test aggregation website providing extensive user-generated and expert test data for summer, winter, and all-season tires. The platform targets vehicle owners and drivers seeking reliable tire information to make informed purchasing decisions. It aggregates official test results from reputable sources such as ADAC and AutoBild and supplements these with user reviews. Technically, the site uses standard web technologies including Google Analytics and Adsense for tracking and monetization, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks some advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie policy present but no detailed privacy or incident response policies. WHOIS data is unavailable due to EURid privacy restrictions, which is typical for EU domains and does not raise legitimacy concerns. Overall, the site is professional and trustworthy within its niche but could improve transparency and security practices.

R

Ranking-opon.eu

ranking-opon.eu

58

Ranking-opon.eu is a Polish-language niche content platform specializing in tire rankings and user reviews, aggregating thousands of tire evaluations and official test results such as ADAC and AutoBild. The website targets drivers and vehicle owners in Central Europe seeking detailed and transparent tire information to aid purchase decisions. The business model revolves around user-generated content combined with expert test data, supported by advertising revenue through Google Adsense and retargeting services. The site is small in scale but maintains consistent branding and good content quality.

T

Teas spol. s r.o.

skladovevozy.cz

51

Skladovevozy.cz is an established Czech online marketplace specializing in the sale of new, demo, and reference vehicles from authorized dealers across the Czech Republic. The platform offers a wide range of vehicle brands and models, targeting consumers and businesses seeking stock vehicles with minimal mileage. The business is operated by Teas spol. s r.o., a company founded in 2011, with a clear presence and legitimacy supported by consistent WHOIS data and company registration details. Technically, the website employs a custom-built platform using jQuery and other JavaScript libraries, integrates Google Analytics for tracking, and uses CookieFirst for GDPR-compliant cookie consent management. The site is served over HTTPS, ensuring secure data transmission. Security posture is moderate with room for improvement in security headers and updated libraries. Privacy compliance is supported by a cookie consent banner and a basic user rules PDF document. Overall, the website presents a professional and trustworthy front for its niche automotive market.

K

KRPA FORM, a.s.

krpa-form.cz

37

KRPA FORM, a.s. is a Czech manufacturer and distributor specializing in paper products such as business forms, cash register rolls, paper bags, and advertising prints. The company has over 25 years of experience and is part of the KRPA Holding CZ group, which has a 190-year tradition in paper manufacturing. The website targets wholesale customers, retail chains, and individual clients primarily in the Czech Republic and abroad. Their business model combines manufacturing with wholesale distribution and an e-commerce platform. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages (Czech, English, German).

C

CCAM

ccam.eu

51

CCAM is a European partnership focused on advancing Connected, Cooperative and Automated Mobility through coordinated research and innovation efforts. The organization acts as a platform for over 200 members from industry, research, and public sectors to collaborate on Horizon Europe projects and other initiatives. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and SEO best practices to communicate its mission and activities effectively. Technically, the site is built on WordPress with a robust tech stack including jQuery, Owl Carousel, and Google Analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to enhance user trust and regulatory adherence. Overall, the domain is privacy protected as per EURid policies, consistent with legitimate EU organizations. The site is safe for general audiences and does not contain any adult or questionable content.

C

Câmara Municipal de Baião

cm-baiao.pt

51

Câmara Municipal de Baião operates as the official municipal government website for the Baião region in Portugal, providing residents and visitors with municipal services, news, heritage information, and event details. The site positions itself as a local government authority with a focus on nature, tradition, and innovation, targeting the local community and visitors. The business model is public sector service provision with a medium-sized organizational footprint. Technically, the website is built on WordPress 6.5.5, leveraging popular plugins such as Modern Events Calendar Lite, Elementor, and Mailin for enhanced functionality. The site demonstrates good digital maturity with modern technologies, responsive design, and accessibility considerations. SEO is well implemented with proper metadata and structured data. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes multiple security headers. Cookie consent is implemented, but explicit privacy policies and terms of service are not found in the provided content, indicating room for compliance improvement. No WAF or blocking mechanisms are detected, and no vulnerabilities are apparent in the HTML content. Overall, the site is trustworthy and professional, with a strong business credibility score. Recommendations include publishing comprehensive privacy and security policies, adding clear contact information, and establishing a vulnerability disclosure process to enhance transparency and compliance.

APED is a Portuguese association representing distribution companies, providing a member login portal for access to reserved services. The website is primarily targeted at Portuguese distribution companies and their associates, offering account management and new member registration functionalities. The business model centers on membership services and industry representation within Portugal. Technically, the site uses Semantic UI and jQuery with Google Analytics for tracking, presenting a basic but functional user interface with moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced and password fields secured, but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. Overall, the site is legitimate, consistent with the association's identity, and free from malicious or adult content, but could improve in privacy compliance and security best practices.

C

Confederação do Comércio e Serviços de Portugal

ccp.pt

48

Confederação do Comércio e Serviços de Portugal (CCP) is a well-established Portuguese confederation representing the commerce and services sectors. The organization provides economic data, legal information, events, and member support services, positioning itself as a key player in promoting competitiveness and innovation within Portugal's commerce and service industries. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders in these sectors. Technically, the website is built on WordPress with modern libraries such as jQuery, Owl Carousel, and FancyBox. It employs Google Analytics for tracking and uses a cookie consent mechanism compliant with GDPR. The site is hosted likely on SiteGround, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

C

Conference of European Directors of Roads (CEDR)

cedr.eu

66

CEDR (Conference of European Directors of Roads) is a collaborative organization representing European national road administrations. It focuses on promoting excellence in road management through coordinated working groups, research initiatives, workshops, and policy development. The website serves as a hub for members and stakeholders to access information, publications, and events related to road infrastructure and transportation across Europe. Technically, the site uses a modern stack including AngularJS, Bootstrap, and jQuery, with good mobile optimization and moderate performance. Security posture is solid with HTTPS, reCAPTCHA integration, and no visible vulnerabilities, though additional security headers and incident response policies could enhance protection. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.