Security Directory

P

Pan Commonwealth Forum on Open Learning

pcf11.org

62

The website pcf11.org serves as the official platform for the Eleventh Pan-Commonwealth Forum on Open Learning (PCF11 2025), an educational event organized by the Commonwealth of Learning in partnership with Botswana's Ministry of Higher Education and Botswana Open University. It targets educators, policymakers, researchers, and stakeholders across Commonwealth countries, focusing on open and distance learning to foster inclusive and sustainable education. The site provides detailed event information, speaker profiles, and partner acknowledgments, reflecting a well-structured and professional presence. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and CoBlocks, ensuring good SEO and user experience. Hosting is managed by GoDaddy, with HTTPS enabled and basic performance optimizations. However, DNSSEC is not enabled, and security headers are absent, indicating room for security enhancements. Privacy compliance is partial, with privacy and terms policies linked from the parent organization but lacking a cookie consent mechanism. Security posture is moderate; the domain is protected with registrar locks, and SSL is properly configured. No forms or sensitive data collection points are present on the homepage, reducing attack surface. However, the absence of explicit security policies and incident response contacts limits transparency. Overall, the site is trustworthy and professional but would benefit from improved security and privacy practices. Strategically, the site supports a significant educational event with a clear mission and reputable partnerships. It effectively communicates its purpose and maintains consistent branding. The lack of direct contact information and cookie consent are minor drawbacks that can be addressed to enhance user trust and compliance.

M

MarkUp Inc.

markup.io

70

MarkUp.io is a SaaS platform specializing in digital content collaboration, enabling teams to leave feedback on over 30 file types including websites, images, PDFs, and videos. The company offers a Chrome extension to enhance browser-based markup and supports team collaboration with guest access. The website is professionally designed, well-branded, and targets teams and professionals seeking streamlined review workflows. The parent company is Ceros, indicating a solid backing and integration within a broader digital content ecosystem. Technically, the site runs on WordPress with modern JavaScript libraries and analytics tools, ensuring a good user experience and SEO optimization. Security posture is strong with HTTPS enforced, though some security headers and explicit cookie consent mechanisms are missing. WHOIS data is privacy protected, which is typical for SaaS businesses, and no suspicious patterns were detected. Overall, the site is trustworthy and professionally maintained.

O

Orchard Therapeutics plc

orchard-tx.eu

59

Orchard Therapeutics plc is a specialized biopharmaceutical company focused on developing ex vivo autologous gene therapies for rare inherited diseases. Founded in 2015 and headquartered in London, UK, the company positions itself as a pioneer in gene therapy research and clinical development. The website targets patients, families, and healthcare professionals, providing information about their approach, pipeline, and patient stories. The business model centers on innovative gene therapy solutions with a medium-sized market presence in the healthcare sector. Technically, the website is built on WordPress CMS with modern technologies including jQuery, Google Analytics, and Yoast SEO for optimization. The site is mobile-optimized with good navigation and accessibility features, although some accessibility improvements could be made. Performance is moderate, and SEO practices are well implemented with proper metadata and structured data. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. However, explicit security headers are missing, and no public security policy or incident response information is provided. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, registered through a reputable registrar without privacy protection, enhancing trust. Overall, the website demonstrates a strong professional presence with good privacy compliance and security posture. Recommendations include adding security headers, publishing a security policy, and improving accessibility to further enhance trust and compliance.

O

Orchard Therapeutics plc

orchard-tx.com

56

Orchard Therapeutics plc is a biotechnology company specializing in hematopoietic stem cell gene therapies aimed at treating severe genetic diseases. The company positions itself as a pioneer in gene therapy with a focus on transforming patient lives through innovative medical solutions. Their website targets patients, families, healthcare professionals, and investors, providing educational resources, corporate information, and investor relations content. The business model centers on research, development, and commercialization of gene therapies within the healthcare sector, primarily in the UK and international markets. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized and demonstrates good performance and accessibility standards, though some improvements in accessibility and security headers could be made. The presence of privacy and cookie policies with consent mechanisms indicates a commitment to privacy compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, the lack of visible security headers and absence of explicit incident response contacts or vulnerability disclosure mechanisms suggest areas for enhancement. The missing WHOIS data for the domain raises concerns about domain legitimacy, though the website content and external references support the company's authenticity. Overall, the website is professional, informative, and trustworthy, but improvements in domain registration transparency and security posture would strengthen its credibility and resilience against threats.

Č

Český svaz ochránců přírody

uklidmesvet.cz

51

Ukliďme svět is a well-established non-profit environmental campaign operated by Český svaz ochránců přírody, focusing on organizing community clean-up events across the Czech Republic since 1993. The website serves as a hub for news, event registration, educational content, and volunteer coordination, supported by governmental and municipal bodies. The platform demonstrates a strong market position within the environmental non-profit sector, leveraging partnerships with logistics and local organizations to enhance its outreach and impact. Technically, the site is built on WordPress with modern plugins for SEO, privacy compliance, and user engagement, hosted on a Czech hosting provider. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security-wise, the site uses HTTPS and privacy-respecting analytics (Matomo), but lacks some advanced security headers and explicit incident response policies. Privacy compliance is robust with clear cookie consent and privacy policies in Czech language. Overall, the website is trustworthy, professional, and aligned with its mission, with minor technical improvements recommended to enhance security and accessibility.

Vpeniaze.sk is a Slovak financial portal offering a wide range of high-quality articles and guides on personal finance, investments, loans, career development, and travel. The site targets Slovak-speaking individuals seeking accessible and practical financial advice. It operates primarily as a content publishing platform monetized through advertising and affiliate marketing, particularly broker referrals. The website is well-positioned in the Slovak market as a trusted source for financial education and product comparisons. Technically, the site is built on WordPress with common plugins such as Yoast SEO, and uses modern web technologies including Google Fonts, FontAwesome, and jQuery. It integrates Google Analytics and Adsense for tracking and monetization. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and technical optimizations. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR principles. However, explicit privacy and terms of service pages are not detected in the provided content, which is a compliance gap. Security headers like Content-Security-Policy and X-Frame-Options are not explicitly present, suggesting potential areas for enhancement. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, Vpeniaze.sk presents a professional and trustworthy online presence with good content quality and business credibility. Strategic improvements in privacy documentation and security hardening would further strengthen its compliance and security posture.

S

SCR interactive

scrinteractive.sk

57

SCR interactive is a Slovak digital marketing agency specializing in PPC, SEO, social media marketing, content marketing, and creative graphic services. With over 13 years of market presence and a portfolio of 138 satisfied customers, the company positions itself as a boutique agency focused on delivering integrated digital marketing solutions to businesses and e-shops. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site is built on WordPress with modern marketing and analytics tools such as Google Analytics, Google Tag Manager, and Yoast SEO. The site is mobile optimized and provides a good user experience with clear navigation. Security posture is adequate with HTTPS enforced and some security best practices observed, though security headers and explicit policies are limited. Privacy compliance is basic, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

CitySys - SmartCity

oms-is.eu

57

CitySys - SmartCity operates as a specialized community platform dedicated to Smart City solutions, offering a comprehensive range of resources including forums, presentations, videos, and tutorials. The platform targets consultants, city representatives, partners, technicians, and enthusiasts interested in urban innovation and sustainable city development. Founded in 2022, it positions itself as a niche knowledge hub within the technology sector focused on urban transformation. Technically, the website is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO optimization and mobile responsiveness. The use of HTTPS and standard security practices is evident, though some security headers are missing and no explicit privacy or cookie policies are published, indicating room for compliance improvement. The security posture is moderate with no visible vulnerabilities or exposed sensitive data. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

G

GreenTable

greentablelounge.cz

46

GreenTable is a newly established fine dining restaurant and event venue located in Prague, Czech Republic. The business focuses on offering a private and intimate dining experience with a capacity of 30 seats and a garden area. Their culinary offerings emphasize French and Mediterranean cuisine with seasonal ingredients, complemented by a curated wine selection. The restaurant also caters to corporate clients by providing event hosting services including wine tastings, private meetings, and corporate breakfasts. The website is professionally designed using WordPress with modern technologies such as Bootstrap and Splide.js, and it is hosted on AWS infrastructure. SEO and mobile optimization are well implemented, and the site includes structured data for enhanced search engine visibility. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Privacy compliance is partially addressed with a privacy policy present but lacking a cookie consent mechanism. Overall, the website reflects a credible and professional hospitality business with clear contact channels and social media presence.

I

INOVATO

inova.to

65

INOVATO is an innovation network based in Slovakia, focused on connecting successful entrepreneurs, experts, and young talents to share knowledge and resources in innovation. The company offers services including trend analysis, prototyping, business modeling, marketing development, project financing, and networking. The website reflects a mature digital presence built on WordPress with modern SEO and security practices. Security posture is strong with HTTPS, reCAPTCHA, and GDPR-compliant cookie management, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-structured, supporting INOVATO's position as a medium-sized innovation network in the technology sector.

U

UNIMEV

unimev.fr

54

UNIMEV is a French professional association representing the event industry, uniquely positioned as the collective voice for over 400 members including venues, organizers, and service providers. The website reflects a mature organization with a clear focus on industry development, research, training, and public action. The site is well-structured, professionally designed, and optimized for SEO and mobile use, leveraging WordPress with modern plugins and Google Analytics for insights. Security posture is adequate with HTTPS and reCAPTCHA implemented, though improvements in security headers and direct contact information are recommended. The absence of WHOIS data limits domain trust verification but does not detract significantly from the overall legitimacy given the professional presentation and consistent branding. Strategic recommendations include enhancing security headers, publishing a security policy, and improving direct contact transparency.

C

Commission communautaire française

ccf.brussels

49

The Commission communautaire française (COCOF) is a governmental organization serving the French-speaking community in the Brussels-Capital Region, providing regulatory and public services to approximately 900,000 francophone residents. The website is professionally designed using WordPress with the Divi theme and includes SEO optimizations and structured data to enhance search visibility. The technical infrastructure is modern and leverages common WordPress plugins, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks visible advanced security headers and explicit incident response policies. Privacy compliance is weak due to the absence of clear privacy and cookie policies. Overall, the website is trustworthy and credible, reflecting its official status, but could improve transparency and security practices.

C

CytoSorbents Corporation

cytosorbents.com

74

CytoSorbents Corporation is a publicly traded medical technology company specializing in blood purification therapies designed to treat life-threatening conditions in critical care and cardiac surgery. The company operates globally with a presence in over 75 countries and offers a portfolio of solutions including CytoSorb, PuriFi, ECOS, and VetResQ. Their website targets healthcare professionals, patients, families, and investors, providing comprehensive information about their products, innovations, and corporate team. The business is well-established with a domain age consistent with its market history and NASDAQ listing. Technically, the website is built on WordPress with modern technologies such as Yoast SEO, Google Tag Manager, and Cloudflare DNS. It demonstrates excellent performance, mobile optimization, accessibility, and SEO practices. The site uses multiple tracking and marketing tools with a clear cookie consent mechanism, reflecting good privacy compliance. However, explicit security policies and incident response information are not publicly available. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and employs Cloudflare DNS, indicating a solid baseline security posture. Some improvements are recommended, including enabling DNSSEC and adding explicit security headers and a vulnerability disclosure policy. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a credible digital presence for CytoSorbents Corporation. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and compliance.

T

Twin Medical

twin-medical.com

57

Twin Medical is a specialized company founded in 2012 in France, focusing on providing high-quality medical simulation equipment and educational tools for healthcare professionals. The company has established itself as a key player in the French-speaking medical simulation market, offering a broad range of products and services including sales, training, installation, maintenance, and leasing options. Their website reflects a professional and consistent brand image, supported by partnerships with notable clients such as AstraZeneca and Medtronic. Technically, the website is built on WordPress with modern SEO and analytics tools like Yoast SEO and Google Analytics integrated. The site is mobile-optimized, accessible, and performs moderately well. Security measures include HTTPS and hCaptcha for form protection, though explicit security headers and incident response policies are not evident. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is supported by a comprehensive privacy policy and terms of service, though a cookie consent mechanism is not clearly implemented. The absence of WHOIS data for the domain is a concern, suggesting either privacy protection or registration inconsistencies, which slightly impacts trustworthiness. Overall, Twin Medical presents a credible and professional online presence with strong business credibility and technical maturity. Strategic improvements in security transparency and domain registration verification are recommended to enhance trust and compliance.

Z

ZONER a.s.

inshop.cz

56

ZONER inShop is a Czech-based e-commerce platform provider offering modern, scalable solutions for creating and managing online stores. With over 20 years of experience, the company positions itself as a leading provider in the Czech market, offering tiered licensing plans tailored to various business sizes and needs. Their platform supports advanced features such as live editing, multi-language and currency support, and integration with popular accounting systems. Technically, the website is built on WordPress with modern plugins and analytics tools, hosted by a reputable Czech provider, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, SSL certificates, and GDPR-compliant cookie consent mechanisms, although formal security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a professional and trustworthy business with a strong market presence in e-commerce solutions.

Č

Česká lékárnická komora

lekarnici.cz

56

Česká lékárnická komora (ČLnK) is a self-governing, non-political professional organization representing pharmacists across the Czech Republic. It serves as a regulatory and professional body ensuring the competence and rights of its members, providing education, legal support, and public expert advice on pharmaceuticals and healthcare. The organization maintains a strong national presence with a well-structured website offering multilingual support and comprehensive resources for both professionals and the public. Technically, the website is built on WordPress with modern plugins and SEO tools, hosted by a reputable provider, and demonstrates good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and formal policies could be improved. Overall, the domain registration and WHOIS data confirm the legitimacy and long-standing operation of the organization.

Z

ZLIN.CZ

zlin.cz

60

ZLIN.CZ is a regional news and information portal serving the Zlín region in the Czech Republic. It provides up-to-date news, cultural events, sports coverage, and local information for residents and visitors. The website operates on a WordPress CMS platform, leveraging modern web technologies such as Bootstrap for responsive design and integrates advertising networks like Google AdSense and DoubleClick for revenue generation. The site employs cookie consent mechanisms to comply with privacy regulations, although explicit privacy and terms of service pages are not detected in the scanned content. Security posture is solid with HTTPS enforced and basic security best practices observed, but could be improved with additional security headers and published policies. Overall, the website is professional, content-rich, and well-positioned as a local media outlet.

I

International Bureau for Epilepsy

ibe-epilepsy.org

61

The International Bureau for Epilepsy (IBE) is a non-profit organization dedicated to epilepsy awareness, education, and support for both laypersons and professionals. The website presents a professional and consistent brand image, with a focus on non-medical aspects of epilepsy. The organization appears to have a medium-sized presence with a history dating back to at least 2016. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and GiveWP for donations, integrating Stripe for payment processing. The site is secured with HTTPS and includes cookie consent mechanisms, although a privacy policy page is not detected. Security posture is generally good, but the absence of security headers and WHOIS transparency are areas for improvement. Overall, the site is safe, well-structured, and serves its target audience effectively.

S

Santé Services

santeservices.lu

59

Santé Services is a Luxembourg-based healthcare service provider founded in 2001, specializing in project management and logistics solutions tailored for the healthcare sector. Their key services include catering (MedHospitality), logistics (MedLogistics), and innovation promotion (MedConsulting). The company serves healthcare institutions such as the Hôpitaux Robert Schuman and has diversified its offerings in response to healthcare needs, including during the COVID-19 pandemic. The website reflects a professional and consistent brand presence with clear service descriptions and active social media engagement. Technically, the website is built on WordPress with modern plugins like Yoast SEO and integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized and demonstrates good SEO practices. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, indicating GDPR compliance. The absence of WHOIS data limits domain trust analysis, but the website content and external partnerships suggest legitimacy. Overall, the site is safe, professional, and well-maintained, targeting healthcare professionals and institutions. Recommendations include enhancing security headers, publishing explicit security policies and incident response contacts, and improving transparency around data retention and vulnerability disclosures to strengthen trust and compliance.

S

Sciencesconf

sciencesconf.org

60

Sciencesconf is a French academic platform dedicated to the management of scientific conferences, workshops, and colloquia. It offers a free, comprehensive toolset for organizers to create event websites, manage communications, organize peer reviews, and track registrations. The platform is well integrated with the HAL open archive, enhancing its utility for the research community. The website is professionally designed, multilingual, and targets academic organizers and researchers primarily in France. Technically, Sciencesconf is built on WordPress with modern SEO and analytics tools like Matomo, ensuring good digital maturity and privacy respect. Security posture is solid with HTTPS and secure forms, though some security headers and incident response details could be improved. Overall, the platform demonstrates high trustworthiness and professionalism, supported by its affiliation with the reputable CCSD and HAL organizations.

I

International Gynecologic Cancer Society

igcs.org

45

The International Gynecologic Cancer Society (IGCS) operates a professional and content-rich website dedicated to advancing gynecologic cancer care worldwide. The organization serves a global audience of clinicians, researchers, and healthcare professionals, offering membership benefits, educational resources, and hosting annual global meetings. The website reflects a mature digital presence with a consistent brand and professional design, supporting its position as a leading multidisciplinary society in the healthcare sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Visual Composer, and it leverages Cloudflare for DNS services. The site is mobile-optimized and employs SEO best practices, though performance is moderate. Security measures include HTTPS and domain transfer protection, but DNSSEC is not enabled, and security headers are not evident in the provided data. From a security perspective, the site demonstrates a good baseline posture with HTTPS and reputable domain registration. However, the absence of explicit privacy policies, terms of service, security policies, and incident response contacts indicates gaps in compliance and transparency. No WAF or blocking mechanisms were detected, and no adult or explicit content is present, making the site safe for general audiences. Overall, the website scores well in business credibility and technical implementation but should improve privacy compliance and security transparency to enhance trust and regulatory adherence.

I

ISGyP

isgyp.ca

53

ISGyP is a specialized non-profit professional society dedicated to gynecological pathology education and professional development. The organization offers a range of educational services including monthly live virtual events, webinars, case presentations, journal clubs, and podcasts targeted at medical professionals and trainees in the field. The website serves as a hub for membership management, event registration, and educational content dissemination. Technically, the site is built on WordPress using well-known plugins such as Yoast SEO, The Events Calendar, and Gravity Forms, indicating a mature digital infrastructure. The site is mobile optimized and uses HTTPS with Google Analytics and Tag Manager for analytics tracking. Security posture is moderate with HTTPS enabled and nonce-protected login forms, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy but could improve in security and privacy compliance.

P

Pražské Příkopy

prazskeprikopy.cz

52

PražskéPříkopy.cz is a local media and lifestyle website focused on the Prague city center, providing news, shopping tips, event information, podcasts, and cultural content. The site targets residents and visitors interested in Prague's shopping and cultural scene. Technically, it is built on WordPress with popular plugins such as Yoast SEO and MonsterInsights for analytics, and uses Elementor for page building. The site is hosted with WEDOS and uses HTTPS with a valid SSL certificate. Security posture is moderate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Business credibility is supported by consistent branding, structured data, and active social media presence. Overall, the website is functional, well-designed, and content-rich but needs improvements in privacy and security disclosures.

K

Krampolinka

krampolinka.cz

57

Krampolinka is a small Czech-based online platform dedicated to crochet enthusiasts, offering free tutorials, video guides, and crafting inspiration. The website is built on WordPress and leverages popular plugins and Google services for analytics and advertising, with a strong emphasis on user privacy and consent management. While the WHOIS data is unavailable, the site maintains a professional appearance with consistent branding and active social media engagement. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. Overall, the site serves a niche crafting community effectively but could improve transparency and security documentation.

A

American Academy of Family Physicians

familydoctor.org

63

familydoctor.org is a well-established, authoritative health education website operated by the American Academy of Family Physicians. It provides comprehensive, clear, and accurate health information targeted at families and the general public. The site offers a variety of health tools including symptom checkers and community resource navigators, positioning itself as a trusted resource in the healthcare education sector. Technically, the website is built on WordPress with modern SEO and search technologies like Yoast SEO and Algolia, hosted behind Cloudflare DNS services. The site is mobile-optimized and accessible, with good performance and SEO practices. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements such as enabling DNSSEC and adding a Content-Security-Policy header are recommended. Privacy compliance is basic, with a clear privacy policy but lacking cookie consent mechanisms and incident response transparency. Overall, the website scores highly for business credibility and content quality, making it a reliable and professional resource for health education.

D

DEKO Med Tech

dekomedtech.de

49

DEKO Med Tech is a Finnish-based company specializing in manufacturing and supplying washing and disinfection equipment for healthcare, dental, and laboratory sectors. Established in 1976, the company has a strong global presence with over 40,000 devices delivered to more than 40 countries. Their product portfolio includes innovative solutions such as patented fresh water circulation washing technology, emphasizing infection prevention and control. The website is professionally designed, multilingual, and provides comprehensive product and company information, including a virtual showroom and newsletter subscription. Technically, the website is built on WordPress using the GeneratePress theme and Yoast SEO plugin, integrating Google Analytics and Mailchimp for marketing and analytics. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though it lacks some advanced security headers and cookie consent mechanisms. Overall, the security posture is good but could be improved by implementing security headers, cookie consent, and publishing incident response policies. The domain WHOIS data aligns well with the company’s Finnish origin and business claims, indicating legitimacy. The site does not exhibit any adult or questionable content and targets healthcare professionals and institutions. Strategic recommendations include enhancing privacy compliance with cookie consent, adding security headers, and publishing vulnerability disclosure and incident response information to strengthen trust and compliance.

D

DEKO Med Tech

dekomedtech.fi

50

DEKO Med Tech is a Finnish healthcare technology company specializing in manufacturing and servicing washing and disinfection equipment for healthcare, dental, and laboratory sectors. Established in 1976, the company has a strong market presence with over 40,000 devices delivered globally. Their offerings include innovative recirculation washing technology and comprehensive maintenance and validation services for medical devices. The website reflects a professional and consistent brand image with clear business information and multiple contact channels. Technically, the site is built on WordPress using modern SEO and marketing tools, providing good mobile optimization and user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

M

Merck Sharp & Dohme s.r.o.

ockovaniprotihpv.cz

62

The website ockovaniprotihpv.cz is a professionally designed healthcare information portal focused on HPV infection and vaccination awareness, operated by Merck Sharp & Dohme s.r.o., a subsidiary of Merck & Co., Inc. It targets a broad audience including parents, women, men, and children eligible for vaccination, providing educational content and promoting the Gardasil®9 vaccine. The site maintains consistent branding and offers clear navigation with good content relevance and quality. Technically, it is built on WordPress VIP with modern technologies such as React and integrates Google Tag Manager and OneTrust for analytics and cookie consent, respectively. Hosting is supported by AWS DNS infrastructure, ensuring reliability. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. Privacy compliance is strong, linking to a comprehensive privacy policy hosted on a dedicated domain. Contact information is clearly provided, including company email, phone, and physical address. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy source for HPV vaccination information.

D

DataLine Technology, a.s.

dataline.cz

47

DataLine Technology, a.s. is a specialized distributor and supplier of digital printing and finishing equipment primarily serving the Czech Republic's printing and packaging industries. Their product portfolio includes advanced digital printing machines such as HP Indigo (arch and roll formats), finishing equipment from Scodix, Highcon, ABG, and Kongsberg, as well as support for offset printing technologies. The company targets printing houses, digital centers, packaging manufacturers, graphic studios, designers, and industrial firms, positioning itself as a key player in the Czech polygrafical market segment. Technically, the website is built on WordPress with a modern theme (Avada) and utilizes popular plugins like Yoast SEO and Complianz GDPR for SEO and privacy compliance. The site is mobile-optimized, well-structured, and includes rich metadata and structured data for enhanced search engine visibility. The presence of cookie consent mechanisms and a comprehensive privacy policy indicates good GDPR compliance. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks visible advanced security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data is privacy-protected, which is typical for business domains, and no suspicious patterns were found. Overall, DataLine Technology presents a professional and trustworthy online presence with a strong focus on its niche market. Strategic improvements in security headers and transparency around security policies could further enhance trust and compliance.

H

Hôpitaux Robert Schuman

acteurdemasante.lu

56

Acteur de ma santé is a health information platform affiliated with the Hôpitaux Robert Schuman hospital group in Luxembourg. It provides a wide range of health-related educational content, including articles, live sessions, and interactive tools, targeting the general public, patients, and healthcare professionals. The website is well-branded, professionally designed, and offers multilingual support primarily in French and German. It leverages WordPress CMS with modern web technologies and SEO best practices to deliver content effectively. Technically, the website uses WordPress 6.8.1, jQuery, Google Tag Manager, and Yoast SEO plugin, hosted on infrastructure associated with EuroDNS. The site demonstrates good mobile optimization and accessibility features, ensuring a positive user experience. Performance is moderate, with asynchronous loading of scripts and optimized images. From a security perspective, the site enforces HTTPS and uses asynchronous tag management. However, it lacks visible security headers and explicit security or incident response policies on the site. Privacy and cookie policies are not found, indicating a gap in GDPR compliance. No contact emails or phone numbers are directly available, which may impact user trust and support accessibility. Overall, the website is a trustworthy and professional health information resource with strong business credibility and technical implementation. To enhance security posture and compliance, it should implement security headers, publish privacy and cookie policies with consent mechanisms, and provide clear contact information for data protection and incident response.

A

American Association for Respiratory Care

aarc.org

54

The American Association for Respiratory Care (AARC) operates a comprehensive professional association website focused on respiratory care professionals, students, and educators. The site provides membership services, educational resources, advocacy information, events, and career support, positioning itself as a key resource in the respiratory healthcare sector. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking technologies, including SAML SSO for authentication and multiple analytics and advertising integrations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is limited due to missing explicit privacy and cookie policies in the provided content. WHOIS data is unavailable or malformed, which slightly reduces domain trustworthiness, but the professional nature of the site and its content mitigate this concern. Overall, the site scores well in content quality, technical implementation, and security, with room for improvement in privacy compliance and transparency.

I

International Collaboration on Cancer Reporting (ICCR)

iccr-cancer.org

54

The International Collaboration on Cancer Reporting (ICCR) operates a professional website dedicated to standardizing pathology reporting for cancer worldwide. The organization is a non-profit collaboration founded by major pathology bodies and aims to improve cancer patient outcomes through internationally agreed datasets and publications. The website reflects a medium-sized healthcare entity based in Australia, with a clear focus on medical professionals and affiliated organizations globally. Technically, the site is built on WordPress, uses modern web technologies including jQuery and Google Fonts, and integrates Google Analytics for visitor insights. The site is mobile-optimized and SEO-friendly, with a professional design and clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic with a cookie consent banner and a disclaimer page, but lacks detailed privacy or security policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and well-maintained, serving a specialized healthcare audience effectively.

T

The N50 Project

n50project.org

53

The N50 Project is a technology-focused non-profit initiative founded in 2020, dedicated to accelerating digital participation and community enrichment globally. Their mission targets enabling the next 3.9 billion people to access the digital world through innovative applications, network design, and new business models. The website is built on WordPress with modern technologies such as jQuery and the Showit engine, and it employs SEO best practices including Yoast SEO and structured data for enhanced search visibility. The site is mobile optimized and presents a professional design with consistent branding and clear navigation. Security posture is adequate with HTTPS enabled and domain status protections in place, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is limited as no privacy or cookie policies are found, and no explicit incident response or vulnerability disclosure information is published. Contact is primarily via a newsletter sign-up form embedded in the site. Overall, the website is safe, professional, and credible but would benefit from enhanced privacy and security disclosures to improve compliance and trust.

A

Africa Action Network

africactionetwork.com

50

Africa Action Network is a small, non-profit humanitarian organization focused on protecting African nurses and nurse-midwives by providing locally made reusable face masks and supporting nurse-led health projects such as vaccine advocacy. The organization operates primarily in Uganda and targets healthcare professionals and donors interested in supporting Covid-19 related healthcare initiatives. The website is built on WordPress with modern plugins including Yoast SEO and GiveWP for donations, indicating a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content. Security posture is good with HTTPS and secure payment integration, though improvements can be made by enabling DNSSEC and security headers. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

D

Digi-work

digi-work.com

62

Digi-work is an independent digital agency based in Brussels specializing in crafting unique websites and applications to drive digital transformation for businesses. Their portfolio includes diverse projects for European organizations and local clients, emphasizing AI-driven solutions, CMS, CRM, ERP, and eCommerce platforms. The company positions itself as a strategic partner for businesses seeking to leverage technology for growth and efficiency. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential tools such as Google Analytics and reCAPTCHA for analytics and security. The site demonstrates good mobile optimization, SEO practices, and user experience design, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, along with a cookie consent mechanism compliant with GDPR. However, explicit security headers and incident response policies are not evident, suggesting room for improvement in security posture. The absence of WHOIS data is notable but does not detract significantly from the site's legitimacy given the professional content and social proof. Overall, Digi-work presents a credible and professional digital agency with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen trust and compliance.

D

DEKO Med Tech

dekomedtech.com

57

DEKO Med Tech is a Finnish healthcare technology company specializing in washing and disinfection solutions for healthcare, dental, and laboratory sectors. Established in 1976, the company has a strong global presence with over 40,000 washer-disinfectors delivered to more than 40 countries. Their product portfolio includes bedpan washer-disinfectors, instrument washer-disinfectors, and drying cabinets, supported by a virtual showroom and comprehensive sales and service support. The website reflects a professional and consistent brand image targeting healthcare professionals and distributors. Technically, the website is built on WordPress using the GeneratePress theme and Yoast SEO plugin, integrating marketing tools such as Mailchimp and Google Tag Manager. The site is mobile-optimized with good accessibility and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhancement. From a security and compliance perspective, the site provides a comprehensive privacy policy indicating GDPR compliance but lacks a cookie consent mechanism and explicit security or incident response policies. The domain registration is recent, which is inconsistent with the company's founding year, suggesting a recent domain acquisition or rebranding. No WAF or blocking mechanisms were detected, and no adult or questionable content is present, making the site safe for general audiences. Overall, DEKO Med Tech's website demonstrates a solid business and technical foundation with room for security and privacy improvements. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security policies to enhance trust and compliance.

C

Czech Hotel Awards, s.r.o.

hotelawards.cz

43

Czech Hotel Awards, s.r.o. operates a niche hospitality awards platform in the Czech Republic, focusing on recognizing hotels through votes from industry professionals and satisfied guests. The website serves as a portal for applications, nominated hotels, results, and related content including a blog and gallery. The company maintains partnerships with regional and national tourism organizations, enhancing its credibility and market presence. Technically, the site is built on WordPress with common plugins and integrates Google Analytics for visitor tracking. The design is professional, mobile-optimized, and user-friendly, supporting a positive user experience. Security posture is adequate with HTTPS enforced and secure form handling, though improvements are recommended in security headers and privacy compliance. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the overall legitimacy of the business. Strategic recommendations include enhancing privacy and cookie policies, publishing security and incident response information, and implementing security headers to strengthen the security posture.

I

International Confederation of Midwives

internationalmidwives.org

66

The International Confederation of Midwives (ICM) is a well-established global non-profit organization dedicated to supporting midwives and midwifery associations worldwide. Their website clearly communicates their mission to ensure access to midwife care for women and gender diverse people globally. The organization operates with a professional digital presence, leveraging WordPress CMS and modern plugins to deliver content in multiple languages and provide event and membership information. The site is hosted via Cloudflare, ensuring reliable performance and security. From a security perspective, the site uses HTTPS and has domain transfer protections, but lacks DNSSEC and explicit security policies or vulnerability disclosures. Privacy compliance is well addressed with visible cookie consent and privacy policies. Overall, the website demonstrates a mature digital infrastructure with good content quality and user experience, suitable for its healthcare and non-profit sector audience.

C

Centre Hospitalier du Nord (CHdN)

chdn.lu

66

Centre Hospitalier du Nord (CHdN) is a public hospital serving the northern region of Luxembourg, with facilities in Ettelbruck and Wiltz. The website provides comprehensive information about medical specialties, doctors, patient services, and hospital organization. It targets patients, visitors, and healthcare professionals, positioning itself as a key regional healthcare provider. The business model is public healthcare service delivery, focusing on a broad range of medical specialties and patient care services. The hospital appears to be medium-sized and was founded around 2020 based on website content.

Unie grafického designu is a professional association for graphic designers and typographers in the Czech Republic, established in 2007. The organization provides educational resources such as seminars, articles, and video tutorials to its members, positioning itself as a key player in the Czech graphic design community. The website serves as a hub for members and the public to access design-related content and industry news. Technically, the website is built on WordPress with the Yoast SEO plugin, embedding numerous YouTube videos for educational purposes. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. The hosting is consistent with Czech providers, and the domain age supports the organization's legitimacy. From a security standpoint, the site uses HTTPS and secure login forms but lacks visible security headers and privacy/cookie policies, indicating room for improvement in compliance and security best practices. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is professional and credible but would benefit from enhanced privacy compliance and security hardening to better protect users and meet regulatory requirements.

N

Neuron Soundware

neuronsw.com

57

Neuron Soundware is a technology company specializing in AI, IoT, and machine learning solutions for industrial process optimization and predictive maintenance. Their offerings include IoT hardware (nEdge) and web-based software (nGuard) designed to monitor and control machinery and manufacturing processes. The company is internationally recognized and partners with European innovation programs. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are missing. WHOIS data is unavailable, which raises some legitimacy concerns but is offset by the professional business presence. Overall, the website and business demonstrate a strong market position in the industrial technology sector.

A

Affidea

affidea.ro

72

Affidea Romania is a leading healthcare provider specializing in diagnostic imaging, laboratory analyses, and cancer treatment services. Operating in 15 European countries with over 391 centers and 16,000 professionals, Affidea holds a strong market position as the largest European provider in its sector. The website reflects a mature digital presence with comprehensive service offerings, clear navigation, and professional branding. Technically, the site leverages WordPress with modern libraries and APIs, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and website content align well, supporting legitimacy and trustworthiness.

A

Affidea Polska

affidea.pl

62

Affidea Polska operates a large network of diagnostic imaging and oncology treatment centers across Poland, providing both publicly funded and private healthcare services. The website reflects a mature healthcare business with a strong market position supported by numerous partnerships and certifications. The technical infrastructure is based on WordPress CMS with modern plugins and technologies ensuring good performance, SEO, and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, targeting patients and healthcare professionals.

A

Affidea Magyarország Kft.

affidea.hu

59

Affidea Magyarország Kft. is a healthcare service provider specializing in advanced medical imaging (MR and CT) and laboratory diagnostics with over 30 years of experience in Hungary. The website presents a professional and well-structured digital presence, leveraging WordPress CMS with modern SEO and analytics integrations such as Google Analytics, Facebook Pixel, and Hotjar. The company targets general healthcare consumers seeking diagnostic services. The technical infrastructure is mature, with good mobile optimization and performance, though some security headers could be improved. The security posture is solid with HTTPS and cookie consent mechanisms in place, but lacks explicit privacy and security policy pages in the analyzed content. Overall, the domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness.

A

Affidea Bosnia

affidea.ba

68

Affidea Bosnia operates as a specialized radiotherapy and oncology center located in Banja Luka, Bosnia and Herzegovina. It is part of the larger Affidea Group, a Swiss-owned European healthcare provider with a broad network of centers across multiple countries. The website presents a professional and comprehensive digital presence, emphasizing advanced medical services such as teleradiotherapy and brachytherapy with modern technologies. The content is well-structured, targeting oncology patients and healthcare professionals, and reflects a strong market position within the regional healthcare sector. Technically, the website is built on WordPress with modern plugins and libraries including jQuery, Google reCAPTCHA, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security measures include HTTPS enforcement, cookie consent management, and use of CAPTCHA to protect forms. However, some security headers are not explicitly detected and could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. No adult or questionable content is present, making the site safe for general audiences. Overall, Affidea Bosnia's website reflects a mature and trustworthy healthcare provider with a strong digital footprint, though it could enhance security headers and incident response transparency to further strengthen its security posture.

J

Jihomoravská zdravotní, a.s.

jmzdravotni.cz

58

Jihomoravská zdravotní, a.s. is a newly established regional healthcare company founded in 2024 by the South Moravian Region to provide quality and accessible healthcare services across the region. The company manages regional hospitals and is preparing to launch the Sanatorium Pálava, a unique rehabilitation institute. The website reflects a professional and consistent brand presence, targeting patients, healthcare professionals, and job seekers in the region. Technically, the site is built on WordPress using the Divi theme and several modern plugins, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR-aligned cookie management. Overall, the site is trustworthy and well-positioned to serve its audience effectively.

G

GANSHORN Medizin Electronic GmbH

ganshorn.de

51

GANSHORN Medizin Electronic GmbH is a German medical technology company specializing in lung function diagnostics, offering a broad range of high-precision devices such as spirometers, body plethysmographs, diffusion measurement systems, and blood gas analyzers. With over 40 years of experience, the company positions itself as a reliable partner for healthcare professionals and institutions seeking innovative and durable pulmonary diagnostic solutions. Their website reflects a mature digital presence with multilingual support and comprehensive product information. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS, CAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. Overall, the domain and WHOIS data align with the company's German origin and business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing explicit security policies, and adding vulnerability disclosure information to strengthen trust and compliance.

A

A.M.I. – Analytical Medical Instruments, s. r. o.

amimedical.cz

47

A.M.I. – Analytical Medical Instruments, s. r. o. operates a professional website targeted exclusively at healthcare specialists in the Czech Republic, offering analytical medical instruments and diagnostic healthcare products. The company positions itself as a niche provider within the healthcare sector, focusing on compliance with Czech advertising laws for medical products. The website content is professional and clearly states the intended audience, reinforcing its specialized business model. Technically, the website is built on WordPress using Oxygen Builder and Yoast SEO, with modern web fonts and jQuery. The site is mobile-optimized and performs moderately well, with good SEO practices. However, there is no evidence of advanced security headers or detailed privacy policies beyond a cookie consent mechanism linked to a PDF document. From a security perspective, the site enforces HTTPS and provides cookie consent, but lacks visible security headers and explicit incident response or security policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, which impacts overall trustworthiness. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is functional and professional but would benefit from enhanced transparency, improved security headers, and clearer contact and privacy information to strengthen trust and compliance.

M

Multiple Sklerose Gesellschaft Wien

msges.at

48

Multiple Sklerose Gesellschaft Wien is a non-profit organization based in Vienna, Austria, dedicated to providing information, counseling, and psychotherapy services to individuals affected by Multiple Sclerosis and their families. The website serves as a resource hub offering support and guidance tailored to this specific healthcare community. The organization positions itself as a regional leader in MS support, leveraging digital presence to reach its target audience effectively. Technically, the website is built on WordPress using the Avada theme and integrates popular plugins such as Yoast SEO and Borlabs Cookie for SEO optimization and cookie consent management. The site demonstrates moderate performance and good mobile optimization, with structured data implemented to enhance search engine visibility. However, some accessibility features could be improved to meet higher standards. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks several recommended security headers and does not provide explicit privacy policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture but with room for enhancement in compliance and transparency. Overall, the website is professional, trustworthy, and well-aligned with its mission, though it would benefit from publishing comprehensive privacy and security policies and improving security header implementation to strengthen user trust and regulatory compliance.