Security Directory

S

Studio4Web

studio4web.com

52

Studio4Web is a Croatian-based web hosting provider established in 2004, offering a range of hosting services including shared hosting, VPS hosting, reseller hosting, and domain registration. The company targets businesses and individuals seeking reliable and fast web hosting solutions with 24/7 support and advanced security features. Their market position is supported by over 5000 customers and local server infrastructure in Zagreb. Technically, the website is built on a modern SvelteKit framework, uses FontAwesome for icons, and integrates popular analytics and tracking tools such as Microsoft Clarity, Google Tag Manager, and Facebook Pixel. Cookie consent is managed via Cookiebot, indicating GDPR compliance efforts. Security posture is good with HTTPS enabled and SSL certificates used, but lacks published security policies and advanced security headers. Overall, the website is professional, well-structured, and trustworthy, though it would benefit from publishing privacy and terms of service documents and enhancing security transparency.

Dormer Pramet is a well-established manufacturer and supplier of high-performance cutting tools, serving primarily the manufacturing and machining industries. The company operates a professional and modern website that showcases its product offerings such as turning, milling, threading, and holemaking tools. The website targets industrial clients and professionals seeking advanced machining solutions. Technically, the site leverages modern web technologies including Angular framework, Google Tag Manager, and Microsoft Clarity for analytics, hosted likely on corporate infrastructure associated with Sandvik. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit privacy and terms documentation. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and credible online presence.

F

Frank Bold

budfrankbold.cz

10

Frank Bold is a purpose-driven organization based in the Czech Republic, operating for over 12 years with a focus on legal services, consulting, and public benefit projects. The company is structured into multiple divisions including legal advisory, consulting, societal projects, core organizational functions, and student internships. Their market position is solid within the Czech and broader European context, targeting professionals and students interested in impactful legal and consulting careers. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on the Webflow platform, utilizing modern analytics tools such as Google Analytics, Matomo, Microsoft Clarity, and Facebook Pixel, all integrated with user consent mechanisms. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. However, there is room for improvement in security headers and formal security policies. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security headers and published incident response or vulnerability disclosure policies. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain registration trust insights, but the professional presentation and structured data support legitimacy. Overall, Frank Bold's website demonstrates a mature digital presence with strong business credibility and privacy compliance. Strategic improvements in security policy transparency and technical security headers would enhance their security posture and trustworthiness further.

S

Saint-Gobain España

saint-gobain.es

55

Saint-Gobain España operates as the Spanish branch of the global Saint-Gobain group, specializing in manufacturing and distributing construction materials and sustainable building solutions. The website reflects a mature enterprise with a strong focus on sustainability, innovation, and market leadership in Spain. The digital presence is professional, well-structured, and optimized for multiple devices, targeting construction professionals and stakeholders interested in sustainable construction. Technically, the website is built on Drupal 10, leveraging modern analytics and tracking tools such as Google Tag Manager and Microsoft Clarity. The site employs HTTPS and cookie consent mechanisms, indicating compliance with privacy regulations like GDPR. However, explicit security headers and a published security policy are absent, representing an area for improvement. Security posture is solid with no evident vulnerabilities or exposed sensitive data, but the lack of incident response contact information and vulnerability disclosure mechanisms suggests room for enhancement in security transparency and readiness. Overall, the website is trustworthy, with strong brand consistency and multiple trust signals including official social media accounts and comprehensive privacy policies. Recommendations include adding security headers, publishing a security policy and incident response contacts, and implementing a vulnerability disclosure program to further strengthen security posture and stakeholder trust.

Weber Vietnam is a subsidiary of the global Saint-Gobain group, specializing in manufacturing and distributing tile adhesives, grouts, waterproofing products, and silicone sealants. The company holds a leading market position in Vietnam and globally, serving construction professionals and consumers with a comprehensive product range and technical support. The website is professionally designed, content-rich, and well-branded, reflecting the company's strong market presence and parent company association. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, TikTok Pixel, and Microsoft Clarity. The site is mobile-optimized and accessible, with good SEO practices. However, some security headers are missing, and there is no explicit cookie consent mechanism despite cookie policy presence. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The WHOIS data is unavailable, likely due to privacy protection, but the website's legitimacy is supported by consistent branding and structured data linking to Saint-Gobain. No signs of phishing or malware were detected. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Strategic improvements could focus on enhancing security headers, implementing explicit cookie consent, and publishing a dedicated security policy or incident response page.

K

Kreuziger&Sobotik, s.r.o.

remax-karieramaklere.cz

44

RE/MAX Kariera Maklere is a Czech Republic focused website promoting careers as professional real estate agents under the RE/MAX brand. The site is operated by Kreuziger&Sobotik, s.r.o., a registered Czech company. It offers information about the benefits of joining RE/MAX, including brand trust, training, technology, and support. The website is built on WordPress with Elementor and includes GDPR-compliant privacy and cookie policies. The technical infrastructure is modern and includes analytics tools such as Google Analytics and Microsoft Clarity. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing. WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the website content and business information appear professional and consistent with a legitimate real estate network.

U

Usermaven

usermaven.com

63

Usermaven is a technology company founded in 2020 that offers an AI-powered marketing attribution and analytics SaaS platform. The platform targets marketing teams, agencies, brands, and product teams by providing multi-touch attribution, product analytics, funnel analysis, and user journey insights. The company positions itself as privacy-conscious, emphasizing GDPR and CCPA compliance and hosting data in the EU. Technically, the website is built on modern frameworks such as Next.js and React, integrates with multiple marketing and analytics tools, and uses Cloudflare for DNS and likely CDN services. The site is fast, mobile-optimized, and professionally designed. Security posture is good with HTTPS enforced and domain transfer protection, but lacks published security policies and vulnerability disclosures. Privacy compliance is partial due to missing explicit privacy and cookie policies. Overall, the website is trustworthy and professional, with room for improvement in transparency and compliance documentation.

A

Alf & Bet

alfabet.coffee

68

Alf & Bet is a small specialty coffee roaster and artisan bakery based in Prague, Czechia, operating an e-commerce platform primarily targeting European customers. The company offers a curated selection of coffee, tea, bread, wine, books, and related accessories, supported by physical espresso bar locations under the EMA brand. The website is built on Shopify, leveraging modern e-commerce technologies and third-party integrations for marketing, analytics, and customer reviews. Privacy and cookie consent mechanisms are implemented, reflecting GDPR compliance. Security posture is strong with HTTPS and standard security headers, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site presents a professional and trustworthy online presence with no signs of malicious activity or content blocking.

A

Alf & Bet

coffee.toys

68

Alf & Bet is a small specialty coffee roaster and artisan bakery based in Prague, Czechia, operating an e-commerce platform primarily targeting European customers. The company offers a curated selection of coffee, tea, bread, wine, books, and related accessories, supported by physical espresso bar locations under the EMA brand. Their market position is niche, focusing on quality and artisanal products with a loyal customer base. The website is built on the Shopify platform using a modern theme and integrates multiple analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. The domain WHOIS data is privacy protected, which is typical for small businesses, and no suspicious patterns were detected. Overall, the website is professional, trustworthy, and compliant with GDPR, making it a reliable online presence for the business.

H

Heimstaden

heimstaden.cz

51

Heimstaden.cz is a professionally maintained real estate website focused on rental apartments, commercial spaces, and new construction projects primarily in the Moravskoslezský region of the Czech Republic. The company is part of the larger Heimstaden group, a significant player in the European real estate market. The website offers a user-friendly experience with clear navigation, modern design, and multiple customer support channels. Technically, the site uses modern frameworks such as Next.js and is hosted on Microsoft Azure, ensuring reliable performance and scalability. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, the site reflects a mature digital presence suitable for a large real estate company.

S

SolarEdge

solaredge.com

72

SolarEdge is a globally leading provider of smart energy technology solutions, specializing in photovoltaic systems, energy storage, electric vehicle charging, and energy optimization. The company targets residential, commercial, and utility sectors with advanced energy solutions. The website reflects a mature digital presence built on Drupal 10, integrating modern analytics and marketing tools such as Google Tag Manager and Microsoft Clarity, indicating a well-maintained technical infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly available. Overall, the website presents a professional and trustworthy image, though the absence of WHOIS registrant data slightly reduces domain trustworthiness.

D

Der Stall Shop

derstall.de

10

Der Stall Shop is a German-based e-commerce retailer specializing in sneakers, streetwear, and fabrics, offering exclusive brand collections such as GNSBRND. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations including Google Tag Manager, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The site demonstrates good design quality, mobile optimization, and user experience, targeting sneaker and streetwear enthusiasts primarily in Germany. Security posture is solid with HTTPS enforcement and captcha protection, though explicit security policies and headers are absent. Privacy and cookie policies are not found, indicating room for compliance improvement. Overall, the domain registration aligns with the business claims, supporting legitimacy and trustworthiness.

S

SABE, spol. s r.o.

sportovnipohary.cz

47

SABE, spol. s r.o. operates a well-established e-commerce platform specializing in the sale and production of sports trophies, medals, figurines, diplomas, and related accessories. With a business history dating back to 1990, the company positions itself as a leading supplier in the Czech Republic, offering a vast inventory and quick order fulfillment. The website reflects a professional retail operation targeting sports clubs, event organizers, schools, and individuals seeking quality sports awards. Technically, the site employs modern web technologies including jQuery, Google Analytics, Microsoft Clarity, and retargeting pixels from Facebook and Seznam, ensuring effective marketing and user behavior analysis. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism with granular controls, but lacks some advanced security headers and publicly available security policies. The absence of WHOIS registration data limits domain trust assessment, though the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid digital presence with room for improvement in security transparency and domain registration visibility.

D

DN Wohnbau GmbH

dn-wohnbau.de

56

DN Wohnbau GmbH is a well-established real estate developer based in Munich, Germany, specializing in the development and construction of multi-family residential buildings and housing complexes. Founded in 1994, the company emphasizes quality craftsmanship and sophisticated architectural design through a long-term partnership with a dedicated architecture firm. Their market position is that of a trusted regional developer with a portfolio of completed, ongoing, and planned projects, targeting property buyers and investors seeking premium residential properties in Munich and surrounding areas. Technically, the website is built on the Webflow platform, leveraging modern web technologies including Google Tag Manager, Microsoft Clarity, Facebook Pixel, and Brevo for marketing automation. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a professional design and clear navigation structure. Cookie consent and privacy compliance mechanisms are implemented effectively. From a security perspective, the site enforces HTTPS and uses Cloudflare Turnstile captcha for form protection, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, showing no privacy protection or suspicious registration patterns. Overall, DN Wohnbau GmbH presents a credible and professional online presence with good security and privacy practices. Strategic improvements could include publishing formal security and incident response policies and enhancing security headers to further strengthen their security posture.

E

easybell GmbH

easybell.de

72

easybell GmbH is a German telecommunications provider specializing in internet and telephony services for private and business customers. The company offers a range of products including SIP Trunks, Cloud Telefonanlage, Microsoft Teams integration, and Home Office Connect solutions. With over 50,000 business customers and a parent company Dstny, easybell holds a solid market position in the telecommunications sector in Germany. The website reflects a professional and customer-focused business model emphasizing flexible contracts without minimum terms. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery and Bootstrap. It integrates multiple analytics and marketing tools including Matomo, Google Analytics, Microsoft Clarity, and Trustami for reputation management. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not detected, and there is no published security.txt or clear incident response contact, which are areas for improvement. The WHOIS data is limited due to DENIC privacy policies but consistent with the domain's German origin and business claims. Overall, easybell.de is a trustworthy and professionally managed website with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving transparency on incident response contacts to further strengthen security and trust.

J

Jean Nicolas

jeannicolas1930.fr

54

Jean Nicolas is a cooperative brand specializing in the production and sale of preserved Breton vegetables, with a heritage dating back to 1930. The website targets consumers interested in quality regional food products and recipes, emphasizing local agricultural know-how and community engagement. The brand maintains a consistent and professional online presence with rich content including product showcases, recipes, and community news. Technically, the site is built on WordPress using WPBakery Page Builder and integrates multiple analytics and tracking tools such as Google Analytics, Matomo, and Microsoft Clarity, alongside cookie consent mechanisms to comply with privacy regulations. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical for commercial sites, but domain age cannot be verified. Overall, the site is well-structured, user-friendly, and trustworthy, with no signs of malicious activity or content blocking.

I

iPresso S.A.

ipresso.pl

63

iPresso S.A. operates a sophisticated Marketing Automation platform designed for professional marketers and enterprises across multiple industries including e-commerce, finance, education, media, and travel. The platform offers a wide range of features such as personalized marketing scenarios, multi-channel communication (email, WhatsApp, push notifications), and extensive integrations with popular services like Google Ads, AWS, and Zapier. The company positions itself as a reliable and certified provider with ISO 9001 and ISO 27001 certifications, emphasizing data security and GDPR compliance. The website reflects a mature digital presence with excellent content quality, user experience, and mobile optimization. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and advanced analytics tools like Piwik PRO and Microsoft Clarity. Security posture is strong with HTTPS enforcement and adherence to recognized standards, although explicit security headers could be further confirmed. Overall, the business demonstrates a high level of professionalism and trustworthiness, supported by client testimonials and visible certifications.

D

D'aucy

daucy.fr

51

D'aucy is a well-established French cooperative brand specializing in vegetable products including canned, frozen, and prepared foods. The website reflects a mature digital presence with a focus on sustainability, cooperative values, and consumer engagement through recipes and educational content. Technically, the site uses WordPress with modern JavaScript libraries and analytics tools such as Matomo and Microsoft Clarity, ensuring a good user experience and data-driven insights. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the domain is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and parent company association. Overall, the site is trustworthy, user-friendly, and compliant with privacy regulations.

W

Webto

webto.dk

46

Webto is a Danish technology company specializing in digital development, programming, and marketing services for both small and large businesses. With over 700 projects completed in 11 years, Webto positions itself as an experienced partner in website development and digital marketing. The website is professionally designed using WordPress with the Kadence theme and various plugins, reflecting a modern and responsive digital infrastructure. The technical stack includes SEO optimization tools and analytics services such as Microsoft Clarity and Google Tag Manager, indicating a mature digital marketing approach. Security-wise, the website uses HTTPS and implements cookie consent mechanisms, but lacks DNSSEC and explicit security headers, and does not publish a privacy policy or security incident response information, which are areas for improvement. Overall, the website is safe, business-focused, and trustworthy, with a solid domain registration history consistent with the company's claims.

R

Rontar Group OÜ

rontar.com

56

Rontar Group OÜ operates a professional adtech platform focused on providing dynamic retargeting and native advertising solutions primarily for e-commerce businesses. The company integrates with major platforms such as Shopify and Magento and serves over 1,200 customers globally, positioning itself as a specialized player in the digital advertising market. The website content is well-structured, with clear service offerings and customer testimonials that reinforce its market credibility. Technically, the site employs modern JavaScript libraries and third-party analytics and advertising tools, ensuring a functional and moderately optimized user experience across devices. Security posture is solid with HTTPS enforced and GDPR-compliant consent mechanisms, though there is room for improvement in publishing explicit security policies and headers. The absence of WHOIS data is a notable anomaly but does not currently undermine the operational legitimacy of the business. Overall, Rontar presents as a trustworthy and competent adtech provider with a good balance of business and technical maturity.

C

Cyberworx Technologies Pvt Ltd

cyberworx.in

46

Cyberworx Technologies Pvt Ltd is a well-established digital agency based in Delhi NCR, India, specializing in website design, development, ecommerce solutions, mobile app development, SEO, and digital brand development. The company positions itself as a top-tier service provider with a strong portfolio and client base, supported by a high aggregate rating and extensive service offerings. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Microsoft Clarity, and Materialize CSS, ensuring a responsive and user-friendly experience. However, there is room for improvement in security posture, particularly in implementing security headers and formal privacy and cookie policies. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and social media presence.

Cockroach Labs operates the website www.cockroachlabs.com, offering CockroachDB, a distributed SQL database designed for cloud-native applications requiring high availability, scalability, and multi-region deployment. The company positions itself as a leader in distributed database technology, serving enterprise customers such as Netflix, Bose, and DoorDash. The website is professionally designed, mobile-optimized, and rich in content, including detailed product descriptions, customer testimonials, and technical documentation links. The technical infrastructure leverages modern web technologies including Next.js, React, and integrates multiple analytics and marketing tools such as Google Analytics, Datadog RUM, Segment, and Clearbit, all managed with a consent mechanism via OneTrust.

O

Olivova dětská léčebna o.p.s.

olivovna.cz

53

Olivova dětská léčebna o.p.s. is a well-established non-profit pediatric healthcare organization based in Říčany u Prahy, Czech Republic. Founded in 1896, it provides comprehensive inpatient treatment and rehabilitation services for children aged 1 to 18 years, fully covered by public health insurance. The organization focuses on treating respiratory and musculoskeletal diseases, childhood obesity, and related conditions, emphasizing prevention and follow-up care. The website reflects a professional and trustworthy presence with clear service offerings and engagement channels for parents, children, and medical professionals. Technically, the website is built on the SKY:CMS platform and employs modern web technologies including asynchronous JavaScript loading, Google Tag Manager, Google Analytics, Microsoft Clarity, and Facebook Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism compliant with GDPR. However, explicit security headers are not fully implemented, and no dedicated security or incident response policies are published. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to privacy protection slightly reduces transparency but is understandable for a healthcare non-profit. Overall, the site demonstrates a mature digital presence with good privacy compliance and user engagement, though improvements in security headers and incident response transparency are recommended. The risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to ensure ongoing compliance and security.

O

Obec Hlásná Třebaň

hlasnatreban.cz

54

The website www.hlasnatreban.cz serves as the official online presence for the municipality of Hlásná Třebaň in the Czech Republic. It provides residents and visitors with information about local government services, community news, cultural events, waste management, and public participation opportunities. The site targets local citizens and stakeholders interested in municipal affairs and community development. The business model is that of a local government entity focused on public service and communication. Technically, the website is built on the Solidpixels CMS platform and employs modern web technologies including JavaScript, jQuery, Google Tag Manager, and Microsoft Clarity for analytics. The site is mobile-optimized, accessible, and includes SEO best practices such as meta tags and Open Graph data. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, demonstrating compliance with GDPR. However, no advanced security headers were detected, and no explicit security or incident response policies are published. The absence of WHOIS data limits domain legitimacy verification, but the official nature of the site and consistent branding support trustworthiness. Overall, the website is a well-maintained municipal portal with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing explicit security policies and incident response contacts, and improving transparency around domain registration. These steps will strengthen the site's security posture and trustworthiness.

H

Heroine s.r.o.

eduzin.cz

62

Heroine.cz is a Czech online media platform specializing in education and societal topics, integrating the Eduzín magazine content to provide in-depth educational materials and commentary. The site targets Czech-speaking audiences interested in education policy, social issues, and culture, offering articles, podcasts, and newsletters. The business operates under Heroine s.r.o., a medium-sized media company with a professional online presence and e-commerce capabilities for magazine subscriptions. Technically, the website employs a modern Ruby on Rails-based infrastructure with Turbolinks, integrates multiple analytics and advertising services including Google Tag Manager, Microsoft Clarity, Gemius, and Caroda ads, and uses Cloudflare Turnstile for bot protection. The site is mobile-optimized with good SEO and basic accessibility features. Security posture is solid with HTTPS, CSRF protections, and bot mitigation, though it lacks some advanced security headers and publicly available incident response policies. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. However, no direct company contact emails or phone numbers are publicly listed, relying mainly on newsletter subscription forms for user interaction. Overall, the website is professional, content-rich, and trustworthy, though the absence of WHOIS data and direct contact details slightly reduce transparency. Strategic improvements in security headers, incident response disclosure, and contact information would enhance trust and compliance.

A

AMBIS vysoká škola, a.s.

ambis.cz

67

AMBIS vysoká škola, a.s. is a private higher education institution operating primarily in the Czech Republic with campuses in Prague and Brno, and a presence in Bratislava, Slovakia. The institution offers a variety of bachelor's and master's degree programs, including distance and online learning options, targeting students interested in fields such as security management, pedagogy, psychology, economics, marketing, and tourism. The website is professionally designed, content-rich, and includes extensive student testimonials and program details, positioning the school as a reputable player in the private education sector in the region. Technically, the website is built on the Solidpixels CMS platform and utilizes modern web technologies including Google Analytics, Microsoft Clarity, and various marketing and tracking scripts. The site is mobile-optimized and accessible, with a moderate performance profile. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of certain security headers and lack of published incident response information suggest areas for improvement. The WHOIS data for the domain www.ambis.cz is unavailable, which limits the ability to fully verify domain registration legitimacy and age. Despite this, the presence of detailed contact information, privacy policies, and certifications such as the HR AWARD support the legitimacy of the institution. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, the website demonstrates a strong business credibility and compliance posture for a private educational institution, with recommendations to enhance security headers, publish incident response contacts, and consider adding a terms of service page to further improve trust and compliance.

Z

Změna k lepšímu

klepsimu.cz

60

Změna k lepšímu is a Czech business platform focused on sustainability, connecting companies aiming for positive change. The platform emphasizes public affairs, community engagement, and education as its core strategic interests. The website is built on the Wix platform, leveraging modern web technologies and multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and LinkedIn Insight Tag. The technical infrastructure is moderate in performance and well-optimized for mobile devices. Security posture is adequate with HTTPS enforced and some security hardening scripts in place, but lacks explicit security headers and formal privacy or cookie policies. The absence of WHOIS data suggests privacy protection or domain registration issues, which slightly reduces trustworthiness. Overall, the site presents a professional and consistent brand image targeting Czech businesses interested in sustainability.

B

Baker Hughes

bakerhughes.com

77

Baker Hughes is a leading energy technology company focused on advancing safer, cleaner, and more efficient energy solutions globally. The company offers a broad portfolio of services and technologies including energy transition, hydrogen technologies, geothermal solutions, carbon capture, emissions abatement, remote operations, AI-driven energy operations, liquefied natural gas, industrial technology, and mature asset solutions. Their market position is that of a large, established enterprise headquartered in the United States, serving energy industry professionals and partners worldwide. Technically, the website is built on Drupal CMS with modern JavaScript integrations, including analytics and consent management tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly detailed. Overall, the website presents a professional, trustworthy, and well-structured digital presence aligned with enterprise standards.

E

European Society of Cardiology

escardio.org

60

The European Society of Cardiology (ESC) is a leading independent, nonprofit organization dedicated to reducing the burden of cardiovascular disease through education, research, and advocacy. The website serves as a comprehensive platform for cardiology professionals, offering access to guidelines, congresses, eLearning, and community engagement. The ESC maintains a strong market position as a trusted authority in cardiovascular health across Europe and globally. Technically, the website is built on a robust infrastructure using modern web technologies including Bootstrap for responsive design, and integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Adobe DTM. The site is hosted with performance and security in mind, leveraging Akamai CDN and enforcing HTTPS with strong security headers. From a security perspective, the ESC website demonstrates good practices including HTTPS enforcement, cookie consent management via OneTrust, and no visible vulnerabilities or exposed sensitive data. However, there is an opportunity to enhance transparency by publishing a dedicated security policy and vulnerability disclosure information. Overall, the ESC website is a professional, secure, and user-friendly platform that effectively supports its mission. Strategic recommendations include improving security transparency, maintaining up-to-date third-party scripts, and enhancing accessibility features to further strengthen trust and compliance.

A

Automando GmbH

bewirtungsbeleg.net

47

Bewirtungsbeleg.net is a German technology startup operated by Automando GmbH, offering an AI-powered SaaS solution for automated creation of tax-compliant hospitality receipts (Bewirtungsbelege). The platform targets businesses and professionals who require efficient and compliant receipt management, providing a web and mobile Progressive Web App with integration capabilities to popular bookkeeping tools. The website is professionally designed, content-rich, and provides clear pricing tiers including free and premium plans. Technically, it is built on WordPress with Elementor, uses modern JavaScript libraries, and integrates Google Analytics and Microsoft Clarity for user behavior insights. Cookie consent is managed via CookieYes with granular user controls, reflecting good privacy compliance. Security posture is solid with HTTPS enforced and domain transfer protection, though some security headers could be improved. Overall, the domain registration is transparent and consistent with the startup's recent founding in 2024. The website is trustworthy, safe, and well-positioned in its niche market.

C

Copy Electronic

copy-electronic.hr

50

Copy Electronic is a well-established Croatian company specializing in the sale, rental, and servicing of IT equipment, including printers, scanners, projectors, and related office technology. With a domain registered since 1997 and a clear focus on business customers, the company positions itself as a reliable provider of comprehensive office IT solutions. Their online presence includes a webshop with a broad product catalog and customer service features such as live chat and clear contact details. Technically, the website employs modern analytics tools like Google Analytics and Microsoft Clarity, and uses Google Tag Manager for marketing and tracking purposes. The site is hosted under a Croatian registrar (CARNET), uses HTTPS, and shows good compliance with GDPR and cookie regulations. However, explicit security policies and incident response contacts are not found, which could be improved to enhance trust and security posture. Overall, the website is professional, user-friendly, and trustworthy, serving a medium-sized business audience in Croatia.

P

Poliklinika i dnevna bolnica IMED

imed.hr

59

Poliklinika i dnevna bolnica IMED is a specialized healthcare provider based in Croatia, focusing on complex dental cases and combining dental medicine, implantology, orthodontics, aesthetic surgery, and ENT services. The website reflects a professional and modern digital presence, leveraging Nuxt.js and Tailwind CSS frameworks, with integrated analytics and cookie consent mechanisms. The site is well-structured, mobile-optimized, and provides essential contact information, although explicit privacy and terms of service policies are missing. Security posture is good with HTTPS and security headers in place, but lacks published incident response or vulnerability disclosure policies. Overall, the business appears legitimate and trustworthy with a solid technical foundation but could improve compliance documentation and transparency.

Z

Zaklada GNK Dinamo Nema Predaje

zakladanemapredaje.hr

48

Zaklada GNK Dinamo Nema Predaje is a Croatian non-profit foundation officially affiliated with the GNK Dinamo football club. The foundation focuses on promoting equality, social inclusion, and providing humanitarian aid, particularly targeting persons with disabilities, socially vulnerable groups, and young talented athletes. The website serves as a platform to communicate the foundation's mission, programs, and events, and facilitates donations and community engagement. It maintains a strong presence on social media and provides comprehensive contact and legal information.

G

GNK Dinamo

gnkdinamo.hr

11

GNK Dinamo is a prominent Croatian football club with a well-established digital presence, offering comprehensive services including news, membership, ticketing, merchandising, and academy information. The website targets football fans and club members, providing a professional and engaging user experience. The technical infrastructure leverages modern web technologies, including Cloudflare DNS, Google Analytics, Microsoft Clarity, and Facebook Pixel for analytics and marketing. Hosting is managed by a Croatian provider, ensuring regional consistency. Security posture is strong with HTTPS enforced and secure forms, though formal security policies and incident response details are absent. Privacy compliance is robust with clear policies and cookie consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity.

N

National Education Union

neu.org.uk

62

The National Education Union (NEU) is a prominent UK-based education union focused on representing teachers and education professionals. The website serves as a comprehensive platform for member services, campaigns, advice, training, and union news. It targets education sector professionals and union members, positioning itself as a leading union organization with a strong advocacy role. The business model is non-profit, centered on member support and campaigning for better education funding and teacher pay. Technically, the website is built on Drupal 10 with Commerce 2, leveraging modern analytics and marketing tools such as Google Tag Manager and Microsoft Clarity. The site is hosted by 123-Reg Limited and demonstrates good performance, mobile optimization, and accessibility. The presence of structured navigation, meta tags, and SEO best practices indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the NEU website is professional, trustworthy, and well-maintained, with a high legitimacy score supported by consistent WHOIS data. The site effectively balances user experience, privacy compliance, and security, making it a reliable resource for its audience.

B

Bonterra

bonterratech.com

10

Bonterra is a purpose-built software company specializing in nonprofit and social good sectors, offering solutions for fundraising, case management, and corporate giving. Founded in 2021 and inspired by social investing pioneer Sir Ronald Cohen, Bonterra has quickly positioned itself as the second-largest social good software company globally. The company targets a broad audience ranging from new nonprofits to Fortune 500 enterprises, aiming to enhance social impact through integrated software solutions. Technically, the website is built on WordPress with React and Bootstrap frameworks, leveraging modern marketing and analytics tools such as Marketo, Microsoft Clarity, and Google Tag Manager. The site is well-optimized for SEO and mobile devices, providing an excellent user experience. Security posture is good with HTTPS enforced and asynchronous loading of scripts, though it lacks some security headers and explicit privacy and incident response policies. The absence of WHOIS domain registration data is a concern, potentially indicating privacy protection or registration issues, which slightly reduces trustworthiness. Overall, Bonterra presents a professional and credible online presence with room for improvement in privacy compliance and security transparency.

U

Universitat Politècnica de Catalunya - BarcelonaTech

upc.edu

11

The Universitat Politècnica de Catalunya - BarcelonaTech (UPC) is a prominent public university specializing in engineering, architecture, and technology education and research. The website serves a broad audience including prospective and current students, researchers, academic staff, and industry partners. It offers comprehensive information on undergraduate, master's, doctoral, and continuing education programs, as well as research and innovation services. The university holds a strong market position in Catalonia and Spain with international recognition and certifications such as HR Excellence in Research. Technically, the website is built on the Plone CMS platform and employs modern web technologies including Usercentrics for consent management, Google Analytics, Microsoft Clarity for analytics, and Bootstrap for responsive design. The site demonstrates good performance, mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the exact queried domain 'www.upc.edu' was not found, which is unusual but likely due to querying the subdomain rather than the root domain. Despite this, the website's legitimacy is supported by consistent branding, official social media presence, and comprehensive institutional content. Privacy policies and cookie consent mechanisms indicate GDPR compliance. Overall, the website is professional, secure, and trustworthy, serving as a reliable digital presence for the university. Strategic recommendations include enhancing security headers, publishing a dedicated security policy, and adding a vulnerability disclosure mechanism to further strengthen security posture.

O

Outright Games

outrightgames.com

71

Outright Games is a family-run global video game publisher specializing in family-friendly interactive entertainment featuring some of the biggest licensed franchises worldwide. The company operates a professional and well-structured website that reflects its market position as a medium-sized player in the media industry focused on children and family audiences. The website is built on a modern WordPress CMS with advanced SEO and performance optimizations, including caching and lazy loading. It integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Intercom, and Cookiebot for consent management. Security posture is solid with HTTPS enforced and domain transfer protections in place, although DNSSEC is not enabled and some security headers could be improved. No privacy policy or terms of service were detected in the provided content, which is a compliance gap. Contact information is not explicitly listed on the homepage, but social media presence is strong. Overall, the website is professional, trustworthy, and safe for general audiences.

S

SIESTA SOLUTION s.r.o.

siesta-labs.com

10

Siesta Labs is a Czech Republic based innovation lab and startup studio founded in 2020, specializing in software development and startup incubation. Their services include AI, web and mobile applications, system architecture, and business consulting. The company targets innovators, startups, and businesses seeking scalable digital solutions. The website reflects a professional and consistent brand with clear navigation and relevant content. Technically, the site uses modern frameworks like Bootstrap and integrates analytics tools such as Microsoft Clarity, Google Analytics, and Facebook Pixel, indicating a mature digital infrastructure. Security posture is solid with HTTPS and secure forms, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic with privacy and terms documents available but lacking cookie consent mechanisms. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

B

Bonterra

networkforgood.com

73

Bonterra is a purpose-built software company specializing in fundraising and social good solutions for nonprofits. Founded in 2021, it has quickly positioned itself as the second-largest social good software provider globally, targeting small nonprofits and social good organizations with SaaS offerings that include fundraising software and built-in coaching. The website demonstrates a mature digital presence with a modern tech stack including React and WordPress, and integrates multiple marketing and analytics tools such as Marketo, Microsoft Clarity, and Facebook Pixel. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS registration data is a concern for domain transparency but does not negate the professional and trustworthy appearance of the site. Overall, Bonterra presents a credible and professional business with a strong market position in the nonprofit technology sector.

Silicagame.com is the official website for Silica, a sci-fi hybrid RTS/FPS game developed under Bohemia Interactive's incubator program. The site targets gamers interested in immersive strategy and shooter experiences, offering digital sales via Steam and Bohemia Store. The website is built on modern web technologies including Next.js and React, with integrations for analytics and marketing tools such as Google Analytics, Microsoft Clarity, Matomo, and CookieHub for cookie consent management. The site demonstrates good design quality, mobile optimization, and SEO practices, providing a professional user experience. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though DNSSEC is not enabled and no explicit security policies or incident response contacts are published. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the domain registration is consistent and legitimate, supporting the business claims. The site is safe for general audiences with no adult content detected.

V

VP Racing Fuels, Inc.

vpracingfuels.com

72

VP Racing Fuels, Inc. is a well-established company specializing in premium race fuels, lubricants, coolants, and fuel additives, targeting motorsport enthusiasts and professionals. The company operates a professionally designed Shopify e-commerce platform, offering a comprehensive product range and customer support through detailed contact forms and quality assurance channels. The website demonstrates a mature digital presence with consistent branding and clear business information, supported by a domain registered since 1998, indicating long-term market presence. Technically, the website leverages modern e-commerce infrastructure on Shopify, enhanced with various marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. Cookie consent is managed via OneTrust, reflecting attention to privacy compliance. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. Mobile optimization and SEO practices are good, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs reCaptcha on forms to mitigate abuse. While explicit security headers are not fully visible in the provided data, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The WHOIS data aligns with the business claims, showing no privacy protection and a consistent registration history, enhancing trust. Overall, the website presents a low-risk profile with good compliance and security practices. Recommendations include enabling DNSSEC, adding explicit security headers, and maintaining regular audits of third-party scripts to further strengthen security and trust.

G

Gamma Group

gammacommunications.nl

76

Gamma Communications is a large telecommunications company based in the Netherlands, offering a broad portfolio of business communication solutions including internet, mobile telephony, Microsoft Teams integration, cybersecurity, and managed networks. The company operates internationally with multiple country-specific domains, indicating a strong market presence in Europe. The website is professionally designed with good navigation and mobile optimization, reflecting a mature digital infrastructure. The technical stack is modern, leveraging WordPress CMS with NitroPack optimization and multiple analytics and marketing tools. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is lacking due to missing privacy and cookie policies. Overall, the website is trustworthy and business-focused but would benefit from enhanced privacy and security transparency.

L

Lipscore

lipscore.com

65

Lipscore is a Norway-based SaaS company specializing in review and ratings management software for e-commerce businesses. The platform emphasizes verified customer feedback to boost trust and sales, integrating seamlessly with major e-commerce platforms. The website demonstrates a mature digital presence with modern technologies, strong SEO, and comprehensive content supporting business growth and customer engagement. Security posture is solid with HTTPS, domain transfer protection, and verified-only reviews to prevent fake feedback. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Lipscore presents a professional, trustworthy, and technically sound online presence.

V

Vispato GmbH

vispato.com

54

Vispato GmbH is a German-based technology company specializing in providing a secure, anonymous whistleblowing system designed to help organizations comply with the EU Whistleblower Directive and other global data protection laws. The company operates a SaaS model, offering a modern, user-friendly platform with strong security features such as end-to-end encryption and ISO 27001 certified hosting. Vispato serves a broad range of enterprises, particularly in the DACH region, and is part of the HR WORKS family, enhancing its market credibility. Technically, the website is built on WordPress with a modern theme and integrates multiple marketing and analytics tools including Google Tag Manager, Usercentrics CMP for cookie consent, Microsoft Clarity, and Pipedrive for lead management. Hosting is provided by the ISO 27001 certified DATEV data center, ensuring a high security standard. The site is well-optimized for SEO, mobile-friendly, and accessible, with comprehensive multilingual support. From a security perspective, Vispato demonstrates strong practices including HTTPS enforcement, penetration testing, access controls, and activity logging. However, the site could improve by adding security headers and publishing a security.txt file to facilitate vulnerability disclosures. No critical vulnerabilities or exposed sensitive data were detected. Overall, Vispato presents a professional, trustworthy, and compliant digital presence with clear business information, transparent pricing, and strong customer testimonials. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing legal documentation with Terms of Service and incident response details to further strengthen compliance and trust.

F

Four Agency Worldwide Limited

joipolloi.com

72

Four Agency Worldwide Limited is a UK-based creative technology agency that acquired Joi Polloi in 2022, integrating their team into its award-winning Creative Technology Unit. The company specializes in building interactive content, immersive experiences, and digital platforms for clients primarily in the cultural and media sectors. Their portfolio includes work for notable clients such as the BBC, Channel 4, and the Natural History Museum, positioning them as a reputable player in the creative technology industry. The website reflects a professional and consistent brand image with comprehensive service offerings and client case studies. Technically, the website is built on Drupal 10 and leverages modern analytics and marketing tools including HubSpot, Microsoft Clarity, and Google Tag Manager. It is mobile-optimized, accessible, and includes a cookie consent mechanism aligned with GDPR requirements. The site demonstrates good SEO practices and performance, although explicit hosting provider details are not disclosed. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks visible security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable or privacy protected, which is common for businesses of this type and size, and does not detract from the site's legitimacy given the professional content and clear contact information. Overall, the website presents a secure, compliant, and credible digital presence for Four Agency Worldwide Limited, with room for improvement in security transparency and incident response readiness.

Function.no is a Norwegian company specializing in products and solutions related to KNX, installation, indoor climate, building automation, energy, and infrastructure. The website presents a professional and consistent brand image targeting businesses and professionals in the energy and building automation sectors. The company appears to be newly founded in 2024, with a domain registration date consistent with this timeline. The site integrates modern technologies including React-based components, Cloudflare CDN, and multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, HubSpot, and Facebook Pixel. Cookie consent is implemented comprehensively with detailed categories and third-party privacy policy links, demonstrating good privacy compliance.

M

MatSight – Evolution in Plasma Process and Equipment Simulation

matsight.com

49

The website matsight.com appears to represent a technology-focused business established in 2020. The site uses modern web technologies including Google Fonts, Typekit, Microsoft Clarity analytics, LinkedIn Insight Tag, Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection. The domain is registered with Tucows Domains Inc. and is not privacy protected, indicating transparency in domain ownership. However, the website content is minimal and lacks critical legal and compliance pages such as privacy policy, cookie policy, and terms of service. Contact information and business details are not present in the provided HTML content, limiting the ability to fully assess business credibility. Security posture is basic with HTTPS enabled and use of reCAPTCHA, but no advanced security headers or published security policies are detected. Overall, the site demonstrates moderate technical maturity but falls short in privacy compliance and business transparency.

V

Vortex

vortex.cz

55

Vortex.cz is a Czech media website specializing in video game news, reviews, podcasts, and community discussions. It targets Czech-speaking gamers and gaming enthusiasts, offering a variety of content including articles, videos, and game databases. The site operates primarily on an advertising-supported model and maintains an active presence with multiple authors and social media channels. Technically, the site is built on WordPress and uses modern web technologies such as jQuery, Google Analytics, Microsoft Clarity, and OneSignal for push notifications. It employs HTTPS and Google reCAPTCHA to enhance security. However, the absence of WHOIS data and lack of visible security headers indicate areas for improvement in trust and security posture. Privacy policy and terms of service are either missing or not prominently linked, which may affect compliance. Overall, the site provides a good user experience with safe content and moderate tracking practices.

V

VÚB, a.s., pobočka Praha

vub.cz

61

VÚB, a.s., pobočka Praha is a banking institution offering a broad range of financial services including corporate financing, structured and export financing, factoring, electronic banking, and payment services. The website positions the bank as a strategic partner for businesses, emphasizing modern identification solutions compliant with AML regulations. It is affiliated with the Intesa Sanpaolo group, indicating a strong market presence in the Czech and Slovak banking sectors. The website is professionally designed with consistent branding and clear navigation, targeting business clients and retail customers. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Tag Manager, Microsoft Clarity, and various tracking services. It is mobile optimized with good SEO and basic accessibility features. The site uses HTTPS with good SSL configuration but lacks some advanced security headers. Cookie consent and privacy policies are implemented, reflecting GDPR compliance. However, no explicit security policy or incident response contacts are published. From a security perspective, the site shows good practices such as encrypted connections and consent management but could improve by adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces the ability to fully verify domain legitimacy, but the affiliation with Intesa Sanpaolo and professional presentation support trustworthiness. Overall, the site is a secure, professional banking portal with moderate tracking and marketing integration, suitable for its audience. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.