Security Directory

Nesdekk ehf is a well-established Icelandic company specializing in tire sales and automotive services, operating since 2008 with multiple physical locations across Iceland. The company offers a broad range of tires for various vehicle types, including passenger cars, trucks, and heavy machinery, complemented by professional advice and service. Their business model combines retail and service with an online presence featuring tire search and appointment booking functionalities. The website reflects a medium-sized enterprise with a strong market position in Iceland's automotive retail sector. Technically, the website is built on WordPress with WooCommerce, leveraging popular plugins such as WPBakery Page Builder, Contact Form 7, and Chaty Pro for enhanced user interaction. The hosting is provided by 1984 Hosting, a known Icelandic hosting provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. From a security perspective, the site uses HTTPS and Google reCAPTCHA for form protection, but lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. The presence of Meta Pixel indicates some user tracking, but Google Analytics is commented out. Overall, the security posture is adequate but could be improved. The website content is safe for general audiences, focusing solely on automotive products and services without any adult or questionable content. Contact information is comprehensive and clearly presented, enhancing business credibility. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

I

InSense Clinic | Kardiolitos klinikos

insenseclinic.lt

62

InSense Clinic is a healthcare provider specializing in dermatology and plastic surgery, operating clinics in Vilnius and Kaunas, Lithuania. The website reflects a professional healthcare service with detailed doctor profiles and clear service offerings. The business is part of the Kardiolitos klinikos group, indicating a strong market position in the Lithuanian healthcare sector. The domain is newly registered in 2024, consistent with a recent launch or rebranding. Technically, the website uses AngularJS framework, integrates Google Tag Manager, Facebook Pixel, and Cookiebot for cookie consent management. The site is hosted on Hostex.lt and uses HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is adequately addressed with proper meta tags and Open Graph data. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and no published security or incident response policies were found. No vulnerabilities or exposed sensitive data were identified in the HTML content. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

V

Vědecká knihovna v Olomouci

vkol.cz

11

Vědecká knihovna v Olomouci is a well-established public scientific library in the Czech Republic, recognized as the second oldest and third largest of its kind nationally. It offers a broad range of services including an online catalog, digital libraries, electronic resources, and organizes cultural and educational events. The institution is funded by the Olomoucký kraj regional government, targeting students, researchers, and the general public interested in scientific and cultural literature. The website demonstrates a mature technical infrastructure utilizing modern web technologies such as the Nette Framework, Bootstrap, lazy loading with Lozad.js, and integrates analytics tools like Google Analytics and Hotjar. It is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience with clear navigation and comprehensive content. From a security perspective, the site enforces HTTPS, employs Google reCAPTCHA on forms, and implements a cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found, but the absence of a public security policy or incident response contact is noted. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The lack of WHOIS data due to privacy protection is justified given the public nature of the institution. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing incident response contacts to further strengthen trust and security posture.

M

Mikroregion Hranicko, MAS Hranicko

regionhranicko.cz

33

Mikroregion Hranicko and MAS Hranicko operate as regional development and community support organizations in the Czech Republic, focusing on grant programs, local business support, cultural events, and energy initiatives. The website serves as an information portal for local residents, businesses, and stakeholders, providing news updates and project information. Technically, the site uses a traditional jQuery-based stack with Google Analytics and reCAPTCHA integration, hosted by a Czech hosting provider. The site is mobile-optimized with good navigation and content quality but lacks modern CMS indicators and advanced accessibility features. Security posture is adequate with HTTPS and bot protection but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and legitimate, with a domain age consistent with the organization's history.

Teplo Přerov a.s. is a municipal utility company based in Přerov, Czech Republic, specializing in the production and distribution of heat and hot water for residential and commercial sectors. Founded in 1997 following the transformation of a former municipal housing enterprise, it is fully owned by the Statutory City of Přerov. The company operates with a medium-sized business model focused on local energy supply and related services including maintenance, electrical installations, and limited transport operations. The website reflects a professional municipal service provider with clear business information and contact details. Technically, the website employs a legacy jQuery stack alongside Google reCAPTCHA and Matomo analytics for user tracking and security. The site uses a proprietary CMS system (IPO Redakční systém) and implements a cookie consent mechanism compliant with EU regulations. However, the site shows room for improvement in mobile optimization, accessibility, and modern security practices such as security headers and HTTPS enforcement verification. From a security perspective, the site lacks visible security headers and a published security policy or incident response contacts. The absence of WHOIS data limits domain trust analysis, although the business information and municipal ownership provide strong legitimacy signals. The site does not present any adult or questionable content, targeting a general audience in the local community. Overall, the website is functional and professional but would benefit from enhanced security measures, improved privacy disclosures, and updated technical infrastructure to strengthen trust and compliance.

K

Královéhradecký kraj

stansenahradnimrodicem.cz

56

The website 'Staň se náhradním rodičem' is a regional government initiative by Královéhradecký kraj aimed at promoting foster care and supporting children without families. It serves as an informational and resource platform targeting potential foster parents and stakeholders involved in child welfare. The site provides comprehensive content about foster care processes, benefits, and related news, reflecting a well-structured and professionally maintained digital presence. Technically, the website is built on WordPress using the Avada theme, incorporating modern web technologies such as jQuery, Google Analytics, Google Recaptcha, and Cloudflare Bot Management for security and performance. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, employs bot protection mechanisms, and includes a detailed cookie consent system compliant with GDPR. While some security headers are not explicitly detected, the overall security posture is solid with no apparent vulnerabilities or exposed sensitive data. Overall, the website presents a trustworthy and credible platform with a clear mission in social welfare. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and possibly adding explicit contact emails and terms of service to improve transparency and user trust.

RealSelf is an online platform specializing in cosmetic and aesthetic healthcare, providing consumers with reviews, Q&A, and provider listings related to cosmetic treatments. The website is positioned as a marketplace and information hub for individuals interested in cosmetic procedures. However, the current analysis is limited due to the website being blocked by a security mechanism that requires CAPTCHA verification, preventing access to the full content and features. The technical infrastructure includes Google Analytics for tracking and PerimeterX for bot mitigation, indicating a focus on security and user behavior analysis. Despite these measures, the absence of accessible content and WHOIS data limits the ability to fully assess the website's security posture and compliance. The security posture shows some strengths in bot protection but lacks visible security headers and privacy compliance indicators. Overall, the site presents a moderate risk due to limited transparency and accessibility issues.

R

RJFM

rjfm.net

56

RJFM is a well-established local radio station based in Montluçon, France, providing regional news, music hits, and podcasts primarily targeting local residents. The website reflects a professional media outlet with a consistent brand presence and a focus on delivering local content digitally. The business operates a multi-channel digital presence including streaming, podcasts, and mobile applications, positioning itself as a key local media player in the Allier region. Technically, the website uses modern web technologies and CDNs to deliver content efficiently, with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS, domain locking, and reCAPTCHA integration, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is basic but includes cookie consent and a privacy policy in French. Overall, the site is trustworthy and safe for general audiences, with no adult or explicit content detected.

T

TigerHostings

tigerhostings.com

44

TigerHostings is a small technology company specializing in WordPress hosting services, offering multiple subscription plans tailored for various customer needs worldwide. The company emphasizes speed, security, and customer support, positioning itself as a reliable hosting provider recommended by WordPress.com. The website is built on WordPress with modern plugins and technologies, providing a good user experience with clear navigation and responsive design. However, the site lacks explicit privacy and cookie policies, which impacts compliance and trust. Security posture is moderate with HTTPS enabled and reCAPTCHA integration, but missing DNSSEC and security headers reduce overall security maturity. The domain registration is consistent with the business age and claims, registered through a reputable registrar without privacy protection, enhancing trustworthiness.

F

Foire Internationale de Bordeaux | 24 au 1er juin 2025

foiredebordeaux.com

57

The website www.foiredebordeaux.com represents the Bordeaux International Fair event scheduled for 2025. It serves as an informational and promotional platform targeting visitors and exhibitors in the Nouvelle-Aquitaine region of France. The site provides event details, exhibitor lists, programming, and visitor FAQs, positioning itself as a regional event organizer with a medium-sized digital presence. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses OneTrust for cookie consent management. The site is mobile optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and CAPTCHA protections, though explicit security headers and policies are not evident. The absence of WHOIS data for the domain is a notable concern, suggesting either a recent registration or privacy protection, which impacts trustworthiness. Overall, the website is professional and functional but would benefit from clearer business and privacy disclosures to enhance credibility and compliance.

F

Foire de printemps de Montpellier

foiredeprintemps-montpellier.com

46

The website www.foiredeprintemps-montpellier.com represents a professionally managed event platform for the Foire de Printemps in Montpellier, France. It serves as an information hub for visitors and exhibitors, offering details on event schedules, exhibitor lists, ticketing, and various contests and animations. The site targets a general audience including families and local businesses. Technically, it is built on WordPress using Elementor and several modern plugins, ensuring good performance, mobile responsiveness, and SEO optimization. Security measures include HTTPS, reCAPTCHA, and a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness. Contact information is provided primarily via forms, with no explicit emails or phone numbers visible. Overall, the site is well-structured and trustworthy from a content and technical perspective but would benefit from clearer domain registration transparency and enhanced security policy disclosures.

D

Dijon Bourgogne Events

dijonbourgogne-events.com

55

Dijon Bourgogne Events operates the Parc des Expositions et Congrès de Dijon, providing venue services for fairs, congresses, and exhibitions in the Dijon and Bourgogne region of France. The company appears to be a regional event venue operator founded recently in 2023, with a medium-sized business profile. The website is built on WordPress using the Divi theme and incorporates SEO and user experience best practices such as Yoast SEO and Google Fonts. The site is mobile optimized and includes social media integration with LinkedIn, Facebook, and Instagram. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information such as emails and phone numbers are not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website is professional and relevant to its business domain but could benefit from enhanced security and compliance documentation.

Multilanguage for Weebly is a small technology business specializing in providing a SaaS application that enables Weebly website owners to add multiple languages and translate their websites easily. The company targets Weebly users who want to internationalize their online presence and increase traffic and sales by offering multilanguage support and translation services, including store product and checkout translation. The business maintains a niche market position with a focused service offering and positive user testimonials, supported by a clear contact presence and social media engagement. Technically, the website is built on the Weebly platform, utilizing jQuery 1.8.3, Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics, marketing, and security. Hosting is provided via EditMySite CDN, likely part of Weebly's infrastructure. The site demonstrates moderate performance and good mobile optimization but uses an outdated jQuery version and lacks some modern security headers. SEO practices are adequate with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but it lacks visible security headers and explicit security or incident response policies. Privacy compliance is partial, with a GDPR info page but no cookie consent banner or terms of service page. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and safe for general audiences. The risk level is moderate due to missing cookie consent and outdated libraries. Strategic improvements in privacy compliance, security headers, and updated libraries would enhance the security posture and user trust.

G

GoDaddy Operating Company, LLC

belgrade.org

71

The website forsale.godaddy.com/forsale/belgrade.org is a professionally designed domain sales landing page operated by GoDaddy Operating Company, LLC. It offers the premium domain belgrade.org for sale with options to buy immediately or make an offer. The site targets German-speaking customers and emphasizes secure transactions, fast domain transfers, and multiple payment methods. The presence of trust indicators such as a high Trustpilot rating and verified domain badges reinforces its credibility. Technically, the site uses modern web technologies including React and Next.js, hosted on AWS, with good performance and mobile optimization. Security measures include HTTPS enforcement and reCAPTCHA on forms, though some security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site demonstrates a mature digital infrastructure and a strong security posture appropriate for an enterprise-level e-commerce platform focused on domain aftermarket sales.

C

Comvation AG

cubetech.ch

64

Comvation AG is a Swiss digital and web agency based in Bern and Thun, specializing in developing customized digital products including web applications, websites, online shops, SEO, and consulting services. The company positions itself as a passionate and human-centric digital partner, serving businesses seeking tailored digital solutions. Their website demonstrates a professional and modern design with rich content, customer testimonials, and client references, indicating a strong market presence in their regional niche. Technically, the site leverages modern frameworks such as Astro, integrates Google Tag Manager and reCAPTCHA for analytics and security, and employs cookie consent mechanisms to comply with privacy regulations. Security posture is generally good with HTTPS enforced and secure form handling, though explicit security headers and published security policies are absent. The absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the overall business credibility and digital maturity are solid. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to improve trust.

V

Verband der Veranstaltungsorganisatoren e.V.

vdvo.de

59

The website vdvo.de represents the Verband der Veranstaltungsorganisatoren e.V., a German industry association focused on innovation within the MICE (Meetings, Incentives, Conferences, and Exhibitions) sector. The organization provides startup support, education, political advocacy, and sustainability initiatives tailored to the event industry. The site positions itself as a niche player supporting MICE innovation with a clear target audience of industry professionals and startups. The business model revolves around membership, education, and sector advocacy, with a small organizational size and a strong German regional focus. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and reCAPTCHA for security and analytics. The site demonstrates good mobile optimization, a professional design, and clear navigation, although accessibility features are basic. Performance is moderate, typical for a CMS-based site. Structured data in JSON-LD format enhances SEO and provides clear organization and local business information. From a security perspective, the site enforces HTTPS with HSTS enabled, uses Google reCAPTCHA to protect forms, and includes security headers. However, it lacks explicit security policies, vulnerability disclosure mechanisms, and comprehensive privacy and cookie consent implementations, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data is minimal but consistent enough with the website's claims, supporting legitimacy. Overall, vdvo.de is a professionally presented, secure, and credible website for a specialized industry association. Strategic recommendations include adding explicit privacy and cookie consent policies, implementing a security.txt file, enhancing accessibility, and maintaining regular security audits to uphold compliance and trust.

I

IGORA-Genossenschaft für Aluminium-Recycling Schweiz

igora.ch

38

IGORA-Genossenschaft für Aluminium-Recycling Schweiz operates as a cooperative focused on the collection and recycling of aluminium packaging in Switzerland. The organization emphasizes environmental protection by promoting aluminium recycling, which significantly reduces energy consumption and greenhouse gas emissions compared to new aluminium production. The website positions IGORA as a key player in the Swiss aluminium recycling sector, targeting both consumers and businesses interested in sustainable waste management. Technically, the website is built on WordPress and integrates modern technologies such as Google reCAPTCHA for security, Google Maps for location services, and EmbedSocial for social media content integration. The site employs a professional cookie consent mechanism compliant with GDPR and Swiss data protection laws, indicating a mature digital infrastructure. Performance and mobile optimization are adequate, supporting a good user experience. From a security perspective, the site enforces HTTPS, uses multiple security headers, and manages user consent effectively. No critical vulnerabilities or suspicious activities were detected. However, the absence of a dedicated security policy or incident response page suggests room for improvement in transparency and preparedness. Overall, IGORA's website reflects a trustworthy and professional organization with a solid security posture and compliance framework. Strategic enhancements in security documentation and accessibility could further strengthen its digital maturity and stakeholder trust.

S

SchemaRabbit

schemarabbit.com

54

SchemaRabbit is a specialized SaaS platform providing AI-driven schema markup generation and maintenance services to improve website visibility across traditional and AI-powered search engines. The company targets businesses and website owners aiming to enhance SEO performance with structured data. The platform offers a free audit and paid subscription tiers, positioning itself as a leader in future-proofing search visibility. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for Google Analytics, Google Tag Manager, Hotjar, and Google reCAPTCHA, indicating a mature digital infrastructure. Performance and mobile optimization are excellent, supporting a high-quality user experience. Security posture is good with HTTPS enforced and anti-bot measures in place, though the absence of security headers and explicit security policies suggests room for improvement. The WHOIS data reveals an unusual future domain creation date, which slightly impacts trust but does not detract from the professional presentation and business legitimacy. Overall, the website scores well on content quality, technical implementation, and business credibility, with moderate privacy compliance due to missing cookie policies.

M

Međimurska županija

medjimurska-zupanija.hr

43

Međimurska županija operates as the official regional government entity for the Međimurje County in Croatia, providing a comprehensive digital platform for residents, businesses, and visitors. The website offers extensive information on local governance, administrative departments, EU-funded projects, transparency in budget and procurement, and public announcements. It targets local citizens, stakeholders, and tourists, positioning itself as a trusted source of regional governmental information and services. Technically, the website is built on WordPress 6.8.3 using the Oxygen Builder theme, integrating modern web technologies such as Google Fonts, Flickity carousel, and Google reCAPTCHA for security. The site demonstrates good mobile optimization, accessibility features, and SEO practices, although some minor improvements in security headers could enhance its posture. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and uses reCAPTCHA to mitigate automated abuse. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. However, additional HTTP security headers and regular updates are recommended to maintain a robust security posture. Overall, the website presents a professional, trustworthy, and user-friendly interface consistent with government standards. It complies with privacy regulations and provides clear contact information, enhancing its credibility and user trust.

T

Tokić

autocheckcenter.hr

47

Auto Check Center - Tokić is a well-established automotive service network operating multiple service centers across Croatia. The company offers comprehensive vehicle servicing, repairs, diagnostics, and related automotive services, targeting vehicle owners seeking professional and reliable maintenance solutions. The website reflects a mature digital presence with detailed service descriptions, multiple locations, and integration of modern web technologies such as WordPress, Yoast SEO, and Google Maps API. Security posture is strong with HTTPS, security headers, and use of reCAPTCHA for forms, though privacy and cookie policies are missing, representing a compliance gap. Overall, the business demonstrates high credibility and trustworthiness in its sector.

C

Centar Velike Zvijeri

centar-velikezvijeri.eu

40

Centar Velike Zvijeri is a Croatian public institution visitor center dedicated to the education and conservation of large carnivores in the Gorski kotar region. The center operates under EU-funded projects and regional partnerships, providing educational services, research dissemination, and public engagement. The website is professionally designed using WordPress with modern plugins and offers bilingual content in Croatian and English. Technically, the site is well-structured, mobile-optimized, and integrates Google Tag Manager and reCAPTCHA for security and analytics. Security posture is solid with HTTPS and some best practices, though it lacks explicit security policies and vulnerability disclosures. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is trustworthy and serves its niche audience effectively.

B

Beli Visitor Centre

belivisitorcentre.eu

41

Beli Visitor Centre is a specialized non-profit organization focused on the conservation and rehabilitation of griffon vultures in Cres, Croatia. The center provides educational exhibits, workshops, volunteer programs, and operates a rehabilitation facility for these birds. It serves both local visitors and international nature enthusiasts, positioning itself as a key regional conservation hub. The website is professionally designed using WordPress, with good mobile optimization and accessibility features, reflecting a mature digital presence. Security measures include HTTPS and Google reCAPTCHA, though some improvements in security headers and privacy compliance are recommended. Overall, the site is trustworthy and well-aligned with its mission, with clear contact information and partner affiliations.

S

Software House Webixa

webixa.pl

41

Software House Webixa is a Polish-based technology company specializing in web development, e-commerce solutions, SEO, and digital marketing services. Positioned as a local software house in Poznań, it offers a range of services including PrestaShop and WordPress store creation, SEO optimization, and paid advertising campaigns such as Google Ads and Meta Ads. The company targets businesses seeking to enhance their online presence and sales through modern, scalable digital solutions. Technically, the website is built on WordPress CMS with a modern tech stack including Yoast SEO, Google Tag Manager, Google Analytics, and CookieYes for consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting appears to be behind Cloudflare, providing additional security and performance benefits. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to mitigate spam and bot attacks, and implements a detailed cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and published security or incident response policies, which are recommended for enhanced security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations regarding cookies, though it could improve transparency by publishing privacy and terms of service documents. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include adding security headers, publishing security and privacy policies, and providing direct contact information for incident response.

R

Rejs Sp. z o.o.

e-rejs.eu

10

Rejs Sp. z o.o. is a Polish manufacturer and online retailer specializing in furniture accessories such as kitchen drawers, cargo baskets, and handles. Established in 1993, the company has positioned itself as a leader in the furniture fittings market in Poland, serving both residential and commercial customers. Their e-commerce platform, built on Magento, offers a comprehensive product portfolio with a focus on quality and functionality. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in Polish. Technical infrastructure includes modern web technologies and integrations with Google Analytics, Facebook Pixel, and Google Maps API, supporting marketing and user experience. Security posture is strong with HTTPS enforcement, reCAPTCHA protection on forms, and cookie consent mechanisms, although no explicit security policy or incident response information is published. Overall, the site demonstrates good compliance with GDPR and industry best practices, reflecting a mature digital presence for a medium-sized manufacturing and retail business.

I

Izzy Trading, s.r.o.

sprava-servisov.sk

41

FOXii is a Slovak-based software company specializing in cloud-based service management solutions tailored for field service companies. Their platform enables digitalization of service processes including scheduling, protocol creation, and technician monitoring, targeting small to medium-sized service firms. The website reflects a professional and consistent brand presence with clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is solid with HTTPS and DNSSEC enabled, use of Google reCAPTCHA, and a cookie consent mechanism, though it lacks explicit security headers and a published security policy. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

T

Tatra-Leasing, s.r.o.

tatraleasing.sk

49

Tatra-Leasing, s.r.o. is a Slovak financial services company specializing in leasing and financing solutions for businesses and consumers. As part of the Tatra banka group, it holds a strong market position in Slovakia offering financial leasing, operational leasing, consumer loans, insurance, and digital leasing services. The website is professionally designed, mobile-optimized, and provides comprehensive information and interactive tools such as a leasing assistant and client zone. Technically, the site is built on Drupal CMS with modern integrations including Google Tag Manager, Analytics, and reCAPTCHA, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS, CSP headers, and consent management, though explicit security policies and incident response details are not publicly available. Overall, the site demonstrates high business credibility and compliance with privacy regulations, making it a trustworthy platform for its target audience.

B

BRAGG Gaming Group

oryxgaming.com

67

Bragg Gaming Group Inc. is a publicly traded international B2B iGaming technology and content solutions provider, listed on NASDAQ and TSX under the ticker BRAG. The company offers a comprehensive suite of services including turnkey iGaming platforms, exclusive casino content, player account management, and player engagement tools. It operates globally with multiple regulated market licenses and offices in Canada, UK, Malta, USA, Brazil, Slovenia, and India. The website reflects a mature, professional business with strong branding and industry recognition. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for security and analytics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is privacy protected but consistent with the company’s public presence. Overall, the website is well-structured, compliant with GDPR, and provides clear contact and regulatory information, supporting a high trust level.

B

bb9

bb9.cz

40

bb9.cz is a small Czech web development business specializing in custom websites, e-shops, and municipal website solutions. The company emphasizes personal approach, professional service, and modern design, leveraging over 15 years of experience. The website is built on Joomla CMS with Gridbox builder and integrates Google reCAPTCHA for form security. The technical infrastructure is modern and mobile-optimized, though some improvements in accessibility and security headers are recommended. Security posture is solid with HTTPS and spam protection but lacks published privacy and cookie policies, which impacts compliance. Overall, the site presents a professional and trustworthy image suitable for its target audience of businesses and municipalities in the Czech Republic.

E

European Society for Emergency Nursing

eusen.org

55

The European Society for Emergency Nursing (EuSEN) is a well-established non-profit professional society founded in 2012, focused on supporting emergency nursing professionals across Europe. The website serves as a hub for news, events, educational webinars, newsletters, and organizational information, targeting healthcare professionals in emergency nursing. The society maintains a consistent brand presence and active social media engagement, reinforcing its position in the healthcare non-profit sector. Technically, the website is built on WordPress CMS with a modern tech stack including Google Analytics, reCAPTCHA, and common plugins for forms and RSS aggregation. Hosting is provided by OVH sas, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with structured metadata and SEO best practices implemented. From a security perspective, the site uses HTTPS and domain status protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy and cookie policies are absent, representing a compliance gap with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and security posture. Overall, the website is professional and trustworthy with good content quality and business credibility. However, improvements in privacy compliance and security hardening are advised to mitigate risks and align with best practices.

E

EDTNA/ERCA

edtnaerca.org

51

EDTNA/ERCA is a well-established European non-profit association focused on renal care professionals, primarily nurses. The organization provides education, accreditation, conferences, publications, and fosters collaboration across the renal care community. Their website reflects a mature digital presence with comprehensive content targeting healthcare professionals in nephrology. Technically, the site employs modern web technologies including Material Design Lite, Google reCAPTCHA, and tracking via Google Tag Manager and Facebook Pixel, indicating a balanced approach to user experience and analytics. Security posture is strong with HTTPS, CSRF protection, and bot mitigation, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional, trustworthy, and serves its audience effectively.

G

GoDaddy Operating Company, LLC

icrn.org

71

This website is a domain sales landing page hosted by GoDaddy, offering the domain icrn.org for sale or lease-to-own. It targets businesses and individuals interested in premium domain names, providing secure transactions, multiple payment options, and expert support. The site is professionally designed with consistent branding and a strong trust signal from a high Trustpilot rating. Technically, it uses modern web technologies including React and Next.js, hosted on GoDaddy infrastructure, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure payment integrations, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and compliant with GDPR, suitable for its e-commerce domain sales business model.

H

Hanze

werkenbijhanze.nl

10

Werkenbijhanze.nl is a career portal for Hanze University of Applied Sciences, a leading Dutch educational institution focused on sustainability, health, digitalization, and societal impact. The website targets prospective employees including lecturers, researchers, and staff, providing job listings, recruiter contacts, and testimonials. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, Google reCAPTCHA, and Cloudflare Bot Management, hosted under SURF B.V. with DNSSEC enabled, indicating a secure infrastructure. Security posture is good with HTTPS and bot protection, but lacks explicit security headers and published security policies. Privacy compliance is partially met with a detailed cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and well-structured, suitable for its educational recruitment purpose.

H

Výukové pomůcky a zdravotnické vybavení|helago-cz.cz

helago-cz.cz

52

The website helago-cz.cz is a professional e-commerce platform specializing in the sale of medical equipment and educational aids, primarily targeting schools, hospitals, and medical professionals in the Czech Republic. It offers a broad catalog of products including anatomical models, resuscitation mannequins, and training simulators. The site is well-structured with clear navigation and multiple nested product categories, supporting a good user experience. Technically, the site uses modern JavaScript libraries such as jQuery, Bootstrap, and Google Tag Manager, indicating a mature digital infrastructure. Security measures include HTTPS enforcement and the use of Google reCAPTCHA for form protection, alongside a cookie consent mechanism that restricts ad and analytics storage by default. However, the absence of a published privacy policy and terms of service pages represents a compliance gap. Overall, the site demonstrates a solid security posture with room for improvement in privacy transparency and contact information availability.

Mont Group s.r.o. is a Czech manufacturing company specializing in promotional aromatic tags, scented air fresheners, beer coasters, and gift items. The company operates a sheltered workshop employing over half of its workforce as persons with disabilities, enabling clients to fulfill substitute employment obligations. Their market position is niche with a strong social responsibility aspect. The website is built on WordPress with WooCommerce and integrates modern technologies such as Google Tag Manager and reCAPTCHA for security and analytics. Contact information is comprehensive, including phone, email, physical address, and an online inquiry form. Security posture is good with HTTPS and CAPTCHA protections, though additional HTTP security headers could enhance defenses. Cookie consent mechanisms are implemented, supporting GDPR compliance, but no explicit privacy policy or terms of service pages were found. Overall, the website is professional, trustworthy, and well-structured, serving its target audience effectively.

H

Hanwha Qcells

q-cells.de

59

Hanwha Qcells is a well-established company specializing in innovative photovoltaic technology and sustainable energy solutions, primarily targeting private customers in Germany. The company offers a comprehensive portfolio including solar modules, energy storage systems, hybrid inverters, and a home energy management system, supported by a network of certified partners for installation. The website reflects a strong market position with over 20 years of experience and recognized certifications such as TÜV and Top Brand PV awards. Technically, the site is built on TYPO3 CMS, employs modern tracking and consent management tools, and is optimized for mobile and accessibility. Security measures include HTTPS, reCAPTCHA, and GDPR-compliant consent mechanisms, though some HTTP security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

V

VšĮ Vilniaus universiteto ligoninė Santaros klinikos

santa.lt

43

VšĮ Vilniaus universiteto ligoninė Santaros klinikos is a leading university hospital in Lithuania providing comprehensive healthcare services including emergency care, specialist consultations, pediatric and adult treatments, and biomedical research. The institution is well-established with a founding date of 1998 and maintains a strong online presence with professional content and clear patient-oriented information. The website demonstrates a moderate to high level of digital maturity, utilizing modern web technologies such as jQuery, Swiper.js, and Google reCAPTCHA to enhance user experience and security. Privacy and cookie policies are clearly presented and GDPR compliant, reflecting a commitment to data protection. Security posture is good with HTTPS enforced and bot protection in place, though some security headers are missing and no explicit vulnerability disclosure or incident response contacts are published. Overall, the website is trustworthy, professional, and safe for general audiences, supporting the hospital's mission and services effectively.

M

Morka Labs

morkalabs.com

52

Morka Labs is a Lithuanian-based small web development agency specializing in creating websites and digital solutions with a focus on programming and unique design. The company has been operating since 2015 and presents a professional online presence with a portfolio showcasing diverse client projects. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Contact Form 7, and integrates Google Analytics and reCAPTCHA for analytics and security. The site is well-structured, mobile-optimized, and includes a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy or terms of service were found. Security practices include HTTPS and CAPTCHA protection, but the absence of DNSSEC and security headers indicates room for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

CKW

solarville.ch

11

CKW is a prominent Swiss energy company specializing in renewable energy solutions, particularly photovoltaic systems for residential, commercial, and community customers. The website demonstrates CKW's commitment to supporting Switzerland's energy transition by providing comprehensive information, services, and tools related to solar energy. The company holds a strong market position with a large workforce dedicated to solar energy expansion and offers a variety of services including installation, consulting, and financing options. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern technologies such as Google Tag Manager, reCAPTCHA, and Usercentrics for consent management. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site employs HTTPS with strong SSL configuration and security headers. It uses CAPTCHA to protect forms and manages user consent effectively. However, there is no explicit security policy or incident response contact information published, which could be improved. Overall, CKW's website is professional, trustworthy, and compliant with privacy regulations, providing a positive user experience and strong business credibility. The risk level is low, with recommendations focusing on enhancing transparency around security policies and incident response.

D

DATRON, a.s.

datron.cz

49

DATRON, a.s. is a Czech IT company founded in 1997, specializing in software applications and expert services aimed at automating business and municipal processes. Their offerings include municipal portals, complementary application systems (DAS), Microsoft licensing partnership, ICT infrastructure solutions, cybersecurity services, and IT education. The company targets public sector organizations and businesses seeking digital transformation and cybersecurity support. Technically, the website is built on modern frameworks such as Bootstrap and jQuery, hosted by WEDOS, and employs Google Analytics and reCAPTCHA for analytics and security. The site is mobile optimized with good design and navigation. Security posture is moderate with HTTPS enabled and reCAPTCHA usage, but lacks explicit security headers and published security policies. Privacy compliance is basic with a cookie consent banner but no visible privacy policy or terms of service. WHOIS data confirms a long-established domain consistent with the business identity, supporting legitimacy. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

M

MeDiLa spol. s r.o.

medila.cz

62

MeDiLa spol. s r.o. operates as a healthcare laboratory service provider in the Czech Republic, offering diagnostic testing and patient services through a network of collection centers across multiple cities. The company targets both patients and healthcare professionals, providing a range of laboratory tests including COVID-19 related services and preventive health packages. The website reflects a medium-sized regional healthcare business with a professional online presence and clear service segmentation. Technically, the website employs modern web technologies such as Bootstrap, Google Fonts, Google reCAPTCHA, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforced and use of CAPTCHA on forms, though some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. Overall, the website is well-structured, compliant with GDPR, and trustworthy, though WHOIS data is unavailable, likely due to privacy protection. Strategic recommendations include enhancing security headers, publishing incident response details, and improving accessibility features.

P

Plasma Protein Therapeutics Association

pptaglobal.org

65

The Plasma Protein Therapeutics Association (PPTA) website serves as the digital presence for a global industry association representing manufacturers of plasma-derived and recombinant analog therapies. The site provides information about the association's role, advocacy, and industry representation. The content is professionally presented, targeting healthcare professionals, regulators, and industry stakeholders. The website is built on modern web technologies including Webflow CMS, Google Tag Manager, Cookiebot for consent management, and Google reCAPTCHA for form security. It integrates multiple third-party analytics and marketing tools, ensuring compliance with privacy regulations through explicit cookie consent mechanisms. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though additional security headers and published security policies could enhance protection. The absence of WHOIS data limits domain registration insights, but the website's professional content and technology use indicate legitimacy. Overall, the site is well-structured, secure, and compliant with privacy standards, suitable for its healthcare industry audience.

L

Léčebné lázně Bohdaneč a.s.

llb-kariera.cz

10

Léčebné lázně Bohdaneč a.s. operates a professional career website focused on recruitment for their spa and healthcare services. The company specializes in rehabilitation and treatment of musculoskeletal conditions, with a long-standing history since 1897. The website targets job seekers interested in healthcare, hospitality, and administrative roles within the spa industry. Technically, the site is built on WordPress with Elementor, uses modern web technologies, and includes standard privacy and cookie compliance mechanisms. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some security headers and has an expired domain registration status which poses a risk. Overall, the website is professional, trustworthy, and compliant with GDPR, serving as a credible recruitment platform for the spa company.

Č

Česká pediatrická společnost ČLS JEP

pediatrics.cz

54

Česká pediatrická společnost ČLS JEP is a professional pediatric society in the Czech Republic providing educational resources, events, publications, and membership services to pediatric healthcare professionals. The website serves as a portal for news, congress information, and resources for both professionals and parents. Technically, the site is built on WordPress with modern integrations such as Google reCAPTCHA and The Events Calendar plugin, ensuring a functional and moderately performant user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though additional security headers could enhance protection. The absence of WHOIS data limits full domain legitimacy verification, but the website's professional presentation and comprehensive contact information support its credibility. Overall, the site is well-structured, secure, and compliant with privacy regulations, serving its target audience effectively.

Č

Česká Neonatologická Společnost

cneos.cz

53

Česká Neonatologická Společnost is the official Czech Neonatology Society affiliated with the Czech Medical Society Jana Evangelisty Purkyně. The organization provides professional resources, events, and information targeted at healthcare professionals specializing in neonatology within the Czech Republic. The website serves as an official communication platform with a clear focus on the medical community. Technically, the site is built on WordPress using the Kadence theme and related plugins, hosted on AWS infrastructure, and employs modern web technologies including Google reCAPTCHA for form security. The site is well-optimized for SEO and mobile devices, offering a good user experience. Security posture is adequate with HTTPS enabled and basic form protections, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the website content and business claims, indicating legitimacy and trustworthiness.

F

France Sclérose en Plaques

arsep.org

10

France Sclérose en Plaques is a well-established French non-profit foundation dedicated to supporting patients with multiple sclerosis, funding research, and raising public awareness. The website reflects a mature organization with a clear mission, strong branding, and comprehensive content aimed at patients, caregivers, researchers, and donors. The foundation leverages digital tools including donation platforms and social media to engage its audience effectively. Technically, the website employs modern JavaScript libraries, responsive design, and accessibility features, ensuring a good user experience across devices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be explicitly confirmed. The absence of detailed WHOIS data introduces some uncertainty, but the overall trust signals and certifications mitigate concerns. Strategic recommendations include enhancing security header implementation and publishing a vulnerability disclosure policy to further strengthen trust.

Z

Združenie Sclerosis multiplex Nádej

tatrydunaj.sk

42

The website tatrydunaj.sk represents a Slovak non-profit organization 'Združenie Sclerosis multiplex Nádej' that organizes an annual cycling event to raise awareness and support for multiple sclerosis patients. The event, now in its 12th year, is well-established and targets young adults and the general public to promote early diagnosis and solidarity. The website is professionally designed using WordPress with modern technologies such as Bootstrap and jQuery, and it integrates SEO best practices via Yoast SEO. Social media integration and multimedia content enhance engagement. Security posture is solid with HTTPS and DNSSEC enabled, and Google reCAPTCHA is used to protect forms. However, the site lacks formal privacy and cookie policies, as well as explicit security incident contacts or vulnerability disclosures, which are important for compliance and trust. Overall, the site is trustworthy and effective for its mission but could improve compliance and security transparency.

E

Europe Guadeloupe

europe-guadeloupe.fr

39

Europe Guadeloupe is a public sector informational website representing the European Union's engagement and solidarity policies in the Guadeloupe region. The site serves as a regional portal to disseminate information about EU programs and initiatives aimed at regional development and convergence. It targets a general audience including residents, stakeholders, and interested parties in Guadeloupe and the EU. Technically, the website is built on WordPress with the Divi theme and uses modern web technologies including Google Analytics and FontAwesome. The site is well-optimized for SEO and mobile devices, with a good user experience and clear navigation. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy policy detected in the provided content. Overall, the domain WHOIS data is not publicly available, likely due to privacy protection, which is typical for such informational sites. No suspicious or malicious indicators were found. The website is trustworthy and professionally maintained, serving its informational purpose effectively.

G

Guadeloupe Formation

guadeloupeformation.com

45

Guadeloupe Formation is a regional public administrative institution dedicated to professional training, orientation, and insertion services in Guadeloupe. Established in 2007, it offers a broad range of training programs targeting employees, job seekers, and the general public. The institution emphasizes pre-qualification, qualification, and support throughout the training journey. The website reflects a well-structured, professional presence with clear navigation and relevant content tailored to its audience. It maintains an active social media presence and displays recognized certifications such as Qualiopi, enhancing its credibility. Technically, the website is built on Joomla CMS using modern libraries like jQuery and Bootstrap, hosted by OVH sas. It employs HTTPS with good SSL configuration and integrates Google Analytics, Facebook SDK, and OneSignal for push notifications. Cookie consent mechanisms are implemented, though a dedicated privacy policy page is not found. The site is mobile-optimized and performs moderately well. From a security perspective, the site uses HTTPS and reCAPTCHA for forms but lacks DNSSEC and explicit security headers. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business profile, showing a long-established domain without privacy protection, indicating transparency. Overall, the security posture is adequate but could be improved with additional headers and published security policies. The overall risk is low, with no signs of malicious activity or suspicious content. Strategic recommendations include enhancing DNS security, publishing privacy and security policies, and implementing security headers to strengthen protection and compliance.

A

Appenzellerland Tourismus AI

appenzell.ch

51

Appenzellerland Tourismus AI operates the official tourism portal for the Appenzell region in Switzerland, providing comprehensive information on accommodations, gastronomy, events, cultural activities, and regional products. The website serves as a key resource for tourists and visitors, offering detailed event listings, booking options, and regional insights. The organization positions itself as the authoritative source for tourism in the Appenzell area, supported by consistent branding and professional content. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery, Slick Carousel, and Google Maps API. It integrates marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Sendinblue for newsletter management. The site is mobile-optimized with good SEO practices and moderate performance, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and implements Google reCAPTCHA on forms to mitigate spam and abuse. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. However, there is room for improvement by adding a security.txt file and publishing incident response contacts. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable platform for regional tourism promotion. Strategic recommendations include enhancing security headers, formalizing vulnerability disclosure, and improving accessibility features to further strengthen the site's security posture and user experience.