Security Directory

G

Golfshop4you

golfshop4you.cz

54

Golfshop4you.cz is a specialized retail business focused on golf equipment and accessories, operating both an e-commerce platform and a physical store in Prague, Czech Republic. The company offers a wide range of products including golf clubs, bags, balls, clothing, shoes, and related accessories, complemented by services such as fitting and equipment servicing. Their market position is that of a niche, trusted golf retailer serving golf enthusiasts in the Czech market. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and outdated libraries updated. Privacy compliance is strong, with clear GDPR policies and cookie consent banners. Overall, the site is professional, trustworthy, and well-structured, though domain WHOIS data is unavailable, which slightly limits trust verification. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

P

PRO.Laika

prolaika.sk

63

PRO.Laika is a well-established Slovakian e-commerce and retail business specializing in photographic and video equipment. Founded in 1993, it holds a strong market position as the largest specialized photo equipment store in Slovakia, offering authorized sales of major brands such as Nikon, Canon, Panasonic, Olympus, Fujifilm, and Leica. The company targets photography enthusiasts and professionals, providing a broad range of products and services including sales, servicing, and workshops. Technically, the website is built on a custom e-commerce platform powered by Unisite CMS, utilizing modern JavaScript libraries and tracking tools. The site is mobile-optimized and SEO-friendly, with a good user experience and clear navigation. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, although formal security policies and incident response information are not publicly available. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, PRO.Laika demonstrates a mature digital presence with room for improvement in privacy policy transparency and security disclosures.

S

Schools United s.r.o.

kraloveskoly.cz

58

Schools United s.r.o. operates a professional e-commerce platform specializing in custom clothing and supplies for schools, sports teams, and interest groups primarily in the Czech Republic. The company offers tailored apparel collections and school equipment through a user-friendly online shop, supported by strong customer testimonials and a clear brand identity. The website is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies, reflecting a mature digital presence. Technically, the site leverages the Shoptet e-commerce platform with integrations for analytics and marketing tools such as Google Analytics, Facebook SDK, and Poptin. Security posture is solid with HTTPS enforcement and CSRF protections, though explicit security headers could be improved. The absence of WHOIS data indicates privacy protection, common for such businesses, but reduces transparency. Overall, the site demonstrates a trustworthy and professional business with good compliance and technical standards.

N

Netzgesellschaft Ahlen mbH

erdgasumstellung-ahlen.de

40

Netzgesellschaft Ahlen mbH operates as a regional energy utility focused on the transition of natural gas supply from L-gas to H-gas in the Ahlen region of Germany. The website serves as an information hub providing detailed guidance on the conversion process, timelines, cost reimbursement, and technical information for installers and chimney sweeps. The company positions itself as a trusted local energy network operator with clear communication channels and customer support. Technically, the website is built on WordPress with standard plugins and libraries such as jQuery and Slick Carousel, hosted on generic servers with a secure HTTPS configuration. The site demonstrates good mobile optimization, accessibility, and SEO practices but lacks advanced security headers and cookie consent mechanisms. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though formal security policies and incident response contacts are absent. Overall, the website is professional, trustworthy, and compliant with GDPR in terms of privacy policy presence but could improve in cookie consent and security transparency. The domain WHOIS data is minimal but consistent with a small regional utility, with no privacy protection or suspicious patterns detected.

B

Úvod

bonavitabody.cz

45

Bonavita.cz operates as a loyalty program platform primarily targeting consumers in the Czech Republic. The website facilitates the collection of loyalty points through a dedicated mobile application and allows users to redeem these points for rewards. The business model centers on incentivizing customer engagement and repeat purchases through partnerships with various retail brands. The site demonstrates a consistent brand presence and integrates social media channels to enhance user engagement. From a technical perspective, the website employs a modern frontend technology stack including Bootstrap 4.3.1, jQuery, Google reCAPTCHA v3, and various UI enhancement libraries such as Slick Carousel and AOS. The site is mobile-optimized and includes basic SEO and accessibility features. SSL is properly configured, ensuring secure communications. Security posture is moderate with HTTPS enforced and bot protection via reCAPTCHA. However, the absence of advanced security headers and explicit security policies indicates room for improvement. Privacy compliance is addressed through a cookie consent mechanism and a basic cookie policy page, aligning with GDPR requirements. No direct company contact emails or phone numbers are provided, which may impact user trust and support accessibility. Overall, the website presents a legitimate and functional loyalty program platform with a moderate security and privacy posture. The lack of WHOIS data due to privacy protection is common for small businesses and does not raise immediate concerns. Strategic enhancements in security headers, accessibility, and transparent contact information would strengthen the platform's trustworthiness and compliance.

I. Český Lawn Tennis Klub Praha (ČLTK) is a well-established tennis club based in Prague, Czech Republic, with a domain age dating back to 2000. The club offers tennis court rentals, memberships, tennis lessons, and hosts tennis events, targeting tennis enthusiasts and players in the local region. The website is professionally designed with clear navigation and consistent branding, reflecting a focused business model centered on sports and hospitality services. Technically, the site uses MySUITU CMS and includes common JavaScript libraries such as jQuery and Slick Carousel, though some libraries are outdated which may pose security risks. The site is mobile optimized and performs moderately well.

A

ABX software s.r.o.

ab-x.cz

48

ABX software s.r.o. is a Czech Republic-based company specializing in the development and provision of reliable point-of-sale (POS) systems and software solutions tailored for hospitality and retail sectors including restaurants, hotels, shops, and rental services. The company positions itself as a stable and leading supplier in the Czech market, offering both sales and rental models for their software and hardware products, complemented by comprehensive technical support and service. Their website reflects a professional and user-friendly digital presence with clear navigation, detailed product offerings, and active customer engagement through support portals and social media. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Slick Carousel, and Google Tag Manager, ensuring a responsive and interactive user experience. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR regulations. However, the absence of detected HTTP security headers and unknown SSL configuration suggest areas for security enhancement. The WHOIS data is notably missing, which raises concerns about domain registration transparency but does not directly impact the visible professionalism of the site. From a security perspective, the site demonstrates good practices such as cookie consent and no visible exposure of sensitive data. The use of third-party analytics and marketing tools is managed with user consent. No critical vulnerabilities or security incidents are evident from the content. Overall, the site maintains a moderate to good security posture but would benefit from improved security headers and domain registration transparency. The overall risk assessment is moderate with recommendations to improve domain WHOIS visibility, implement robust HTTP security headers, and verify SSL configurations. These steps will enhance trust and security posture, supporting the company’s market position and customer confidence.

O

Obiteljsko Poljoprivredno Gospodarstvo Damjanić Ivan

damjanic.eu

45

Damjanić Wines is a small family-owned winery based in Fuškulin near Poreč, Croatia, with a long tradition dating back to the early 18th century. The company produces a variety of wines and olive oil, offers wine tastings by appointment, and operates a webshop for direct sales. Their market position is that of a leading regional winery in Istria, targeting wine consumers, tourists, and distributors. The website is multilingual and professionally designed to support their business model and customer engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various frontend libraries. Hosting is provided by a Croatian hosting company, and the site uses HTTPS with a cookie consent mechanism to comply with GDPR. Performance and mobile optimization are good, though accessibility features are basic. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business information, indicating a legitimate and trustworthy domain. Overall, the website presents a professional and trustworthy online presence for a small winery business, with good privacy compliance and moderate security posture. There are opportunities to enhance security headers and incident response information to further improve trust and compliance.

O

Orbis d.o.o.

visitkarlovaccounty.hr

57

The website visitkarlovaccounty.hr serves as the official regional tourism portal for Karlovačka županija (Karlovac County) in Croatia. It provides comprehensive information about destinations, activities, events, and travel logistics to attract and assist tourists. The site is managed by Orbis d.o.o., a Croatian company, and reflects a consistent and professional brand image aligned with regional tourism promotion. Technically, the site employs a mix of modern and legacy technologies including jQuery, UIkit, Google Maps API, and Google Tag Manager, delivering a good user experience with mobile optimization and accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though it lacks some security headers and formal security policies. Privacy compliance is limited due to the absence of a privacy policy and terms of service, though a cookie consent mechanism is present. Overall, the site is trustworthy, safe, and well-positioned as a government/non-profit tourism information platform.

G

Graf & Cie AG

graf-companies.com

69

Graf & Cie AG is a leading global supplier specializing in clothing for carding and combs used in the textile and nonwoven industries. As a subsidiary of the Rieter Group headquartered in Switzerland, Graf offers a comprehensive portfolio of high-performance textile processing components and related services. The company emphasizes vertical integration and quality manufacturing across five global locations, targeting industrial manufacturers and machine builders. The website reflects a professional and well-structured digital presence with multilingual support and strong branding consistency. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes Google Tag Manager for analytics. It features a cookie consent mechanism aligned with GDPR requirements, ensuring user privacy and compliance. The site is mobile-optimized and accessible, with good SEO practices implemented. From a security perspective, the site enforces HTTPS and uses cookie consent for tracking controls. However, it lacks explicit security headers and published security policies or incident response information. The absence of WHOIS registration data for the domain is a notable concern, although the website content and corporate associations support legitimacy. Overall, the website presents a low-risk profile with strong business credibility and compliance posture, but improvements in security transparency and domain registration clarity are recommended.

B

Bräcker

bracker.ch

70

Bräcker is a Swiss-based, medium-sized manufacturing company specializing in rings and travelers for ring spinning systems, operating as a subsidiary of the Rieter Group. The company holds a leading market position globally in its niche, offering high-quality products and technical services to the textile industry. Their website reflects a professional and consistent brand image with comprehensive product and service information, targeting industrial manufacturers and textile professionals. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response contacts. Overall, the website is trustworthy, well-structured, and compliant with GDPR, supporting Bräcker's business credibility and market presence.

T

TNX s.r.l.

tnx.it

50

TNX s.r.l. is an established Italian technology company specializing in custom software development, web design, e-commerce solutions, and digital marketing services. Founded in 1999 and based in Poggibonsi, Siena, TNX serves over 8000 clients across Italy, positioning itself as a reliable and experienced partner for businesses seeking digital transformation and online presence enhancement. Their portfolio includes proprietary products such as Ordinalo, Invoicex, Avatable, and Ekeepup, indicating a diversified product offering tailored to various business needs. The company emphasizes long-term client relationships and a talented team of developers, designers, and marketing experts.

W

World Heart Federation

world-heart-federation.org

69

World Heart Federation is a globally recognized non-profit organization dedicated to fighting cardiovascular disease and promoting heart health worldwide. The organization is formally recognized by the WHO and operates through advocacy, education, campaigns, and partnerships. Their website reflects a mature digital presence with comprehensive content targeting health professionals, policymakers, and the general public interested in cardiovascular health. The business model focuses on global health advocacy and community engagement. Technically, the website is built on WordPress with modern technologies including Cloudflare CDN, Google Tag Manager, and CookieYes for privacy compliance. The site is well-optimized for performance, mobile responsiveness, and SEO, demonstrating a high level of digital maturity. Multiple analytics and marketing tools are integrated with user consent mechanisms. From a security perspective, the site enforces HTTPS and uses Cloudflare services for bot management. While some security headers are not explicitly detected, the overall security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust with clear cookie consent and GDPR adherence. However, incident response and security policy pages are not found, suggesting room for improvement in transparency. Overall, the website is trustworthy, professional, and secure, with a strong alignment between WHOIS data and business identity. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date software to sustain security and compliance.

W

World Heart Federation

worldheart.org

68

World Heart Federation is a globally recognized non-profit organization dedicated to fighting cardiovascular disease and promoting heart health worldwide. The organization is formally recognized by the WHO and operates through advocacy, education, campaigns, and partnerships. Their website reflects a mature digital presence with comprehensive content targeting healthcare professionals, policy makers, and the global health community. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, Microsoft Clarity, and CookieYes for consent management. The use of Cloudflare for DNS and bot management enhances security and performance. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially addressed with a cookie consent mechanism but lacks explicit privacy and terms of service pages. Overall, the website demonstrates high professionalism and trustworthiness, supported by consistent WHOIS data and strong social media presence.

R

Rieter

rieter.com

69

Rieter is a globally recognized leader in manufacturing systems and machinery for short-staple fiber spinning, headquartered in Winterthur, Switzerland. The company offers a comprehensive portfolio including machinery, automation, digital solutions, and after-sales services tailored to spinning mills. With a history spanning over 230 years and a presence in multiple countries, Rieter maintains a strong market position supported by its subsidiaries and partner companies specializing in textile components. The website reflects a professional corporate presence with detailed investor relations, sustainability initiatives, and career opportunities. Technically, the website is built on TYPO3 CMS and incorporates modern JavaScript libraries and Google Tag Manager for analytics and marketing. The site is well-structured, mobile-optimized, and includes comprehensive cookie consent mechanisms aligned with GDPR requirements. However, no explicit security headers were detected, and no direct contact emails or phone numbers were found, with contact primarily via forms. Security posture is solid with HTTPS enforced and a published vulnerability disclosure policy, but could be improved by adding security headers and explicit incident response contacts. The absence of WHOIS data is a minor concern but is mitigated by the company's transparent corporate disclosures and stock exchange listing. Overall, the website and business demonstrate a mature digital presence with good security and privacy practices, supporting Rieter's credibility as a leading manufacturer in the textile machinery sector.

K

Kulturreferat Garching

buergerhaus-garching.de

10

The website www.kultur-garching.de serves as the official cultural portal for the town of Garching, Germany, focusing on promoting cultural events, ticket sales, and community engagement through the Bürgerhaus Garching. It targets local residents and visitors interested in cultural activities, offering a comprehensive event calendar and ticket purchasing options via a reputable third-party platform. The site is well-positioned as a local government-affiliated cultural service provider with a clear and consistent brand presence. Technically, the website employs modern frontend technologies including Angular, jQuery, and Slick Carousel, supported by a CMS platform (EGOTEC). It is hosted on SchlundTech infrastructure, ensuring reliable performance and good mobile responsiveness. SEO and accessibility are basic but functional, with room for improvement in accessibility features and SEO optimization. From a security perspective, the site uses HTTPS and includes some security best practices such as email obfuscation and standard security headers. However, it lacks a security.txt file and explicit Content-Security-Policy headers, which are recommended for enhanced security posture. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is detected, which is a gap for GDPR compliance. Overall, the website is trustworthy and professional, with a high business credibility score. Strategic improvements in privacy compliance and security headers would further strengthen its security posture and user trust.

N

Nomet

nomet.pl

60

Nomet is a well-established Polish manufacturing company specializing in modern furniture accessories such as handles, baskets, bathroom and kitchen equipment, wardrobe fittings, and decorative articles. The company emphasizes its 40 years of experience, 100% Polish capital ownership, and modern production facilities, positioning itself as a trusted B2B supplier in the furniture manufacturing sector. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content targeted at furniture manufacturers and interior designers. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries like jQuery, Swiper.js, Tippy.js, and Slick Carousel, along with Google reCAPTCHA for form security and Facebook Pixel for marketing analytics. The site is served over HTTPS with good SSL configuration, although security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. From a security perspective, the site demonstrates a moderate security posture with HTTPS, secure forms, and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for enhancement in security transparency and readiness. WHOIS data is unavailable due to .pl registry policies, but the website content and business information indicate legitimacy and trustworthiness. Overall, the website presents a professional and credible business front with good technical implementation and privacy compliance. Strategic improvements in security headers, incident response transparency, and contact information visibility would further strengthen the security posture and trustworthiness of the site.

R

RENDART sp. z o. o.

rendart.pl

40

RENDART sp. z o. o. is a specialized marketing agency focused on providing creative marketing solutions for real estate developers, particularly small to medium-sized residential investments. Established in 2014 and based in Poland, the company offers a comprehensive suite of services including website development for developers, 3D visualizations, virtual tours, branding, and printed marketing materials. The website demonstrates a strong market position with over 10 years of experience and more than 700 completed projects, supported by client testimonials and educational webinars. Technically, the website is built on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. The security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in DNS security and HTTP security headers. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

S

Semaco Home & Tourist

newcampsite.com

48

NewCampsite is a Polish-based hospitality business specializing in holiday rentals of modern Dutch-style mobile homes located on well-equipped campsites near beaches in Italy. The company offers vacation stays primarily in three Italian locations: Cesenatico, Ca'Savio, and Marina. Their market position is niche, targeting families and tourists seeking comfortable and nature-adjacent holiday accommodations. The website is built on Drupal 8, leveraging modern web technologies including lazy loading, slick carousels, and integrated booking widgets, reflecting a mature digital infrastructure. Security measures include HTTPS, Google reCAPTCHA v3, and GDPR-compliant cookie consent mechanisms, although DNSSEC is not enabled and some security headers are missing. Overall, the site is professional, user-friendly, and trustworthy, with positive customer reviews and clear contact information. The domain registration data aligns well with the business profile, supporting legitimacy.

Semaco Real Estate is a specialized real estate advisory and sales company operating primarily in Kraków, Poland. With over two decades of experience and a portfolio of more than 30 investments and approximately 1500 sold apartments, the company positions itself as a trusted local expert in both primary and secondary real estate markets. Their services encompass guiding clients through the entire property transaction process, including financing assistance and new development projects. The website reflects a professional and customer-focused approach, emphasizing quality housing and client satisfaction. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Owl Carousel, and Google reCAPTCHA, hosted likely by home.pl S.A. The site is mobile optimized and uses EstiCRM as its content management system. Performance is moderate with good SEO and accessibility basics. Tracking and marketing tools such as Google Analytics and Facebook SDK are integrated, indicating a moderate level of digital maturity. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms. However, DNSSEC is not enabled and security headers are not detected, suggesting room for improvement in hardening the website. No critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy regulations. Strategic improvements in security configurations and transparency around security policies would enhance the company’s risk posture and customer trust.

I

Infonia spol. s r.o.

infonia.cz

58

Infonia spol. s r.o. is a Czech digital agency specializing in custom web design, SEO, PPC campaigns, and digital marketing services. With over 25 years of experience and more than 500 satisfied clients, the company positions itself as a reliable partner for businesses seeking to enhance their online presence. Their offerings include proprietary CMS-based websites, graphic design, copywriting, and ongoing technical support. The website is professionally designed, mobile-optimized, and provides clear contact information and client testimonials, reinforcing trust and credibility. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and integrates marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Smartlook. The site enforces HTTPS and uses cookie consent mechanisms, though explicit privacy and terms of service pages are not found. Security headers are not explicitly detected, suggesting room for improvement in security hardening. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration data is a concern for domain legitimacy verification, reducing overall trustworthiness. The website content is safe, business-oriented, and compliant with basic privacy practices. Overall, Infonia demonstrates a mature digital presence with solid business credibility but should enhance transparency around privacy policies and security configurations. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, and verifying domain registration details to improve trust and compliance.

A

Associacio Catalana de Municipis i Comarques

acm.cat

53

The website acm.cat represents the Associació Catalana de Municipis i Comarques, a regional government association in Catalonia, Spain, founded in 2006. It serves as a platform to provide information, training, consulting, and communication services to municipalities and local government entities. The site is professionally designed using WordPress CMS with common plugins such as Yoast SEO and Cookiebot for privacy compliance. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and DNSSEC. No explicit privacy policy or terms of service pages were detected, though cookie consent is present and GDPR compliant. Contact information is primarily via embedded forms, with no direct emails or phone numbers found. Overall, the domain registration data is consistent and supports the legitimacy of the organization. The site is safe for general audiences and maintains a good level of professionalism and trustworthiness.

D

Dr. Hesse Tierpharma GmbH & Co. KG

roehnfried.de

69

Röhnfried, operated by Dr. Hesse Tierpharma GmbH & Co. KG, is a well-established German company specializing in animal health products, particularly supplements and pharmaceuticals for pigeons, poultry, ornamental birds, and rabbits. The company has a strong market position with a history dating back to 1959, targeting breeders and animal enthusiasts. Their website reflects a professional digital presence with multilingual support and active social media engagement. Technically, the site uses modern frameworks like Bootstrap and integrates Google Tag Manager for analytics, hosted on UI-DNS nameservers. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the website is trustworthy, compliant with GDPR, and offers a good user experience.

P

Pearl Group

pearlgroup.no

66

Pearl Group is a Nordic technology company specializing in SAP and Hybris business system solutions, positioning itself as the largest SAP partner in the Nordic region. The website reflects a professional B2B service provider targeting businesses seeking rapid and secure implementation of new business systems. The company leverages HubSpot CMS and integrates multiple marketing and analytics tools to support its digital presence. The technical infrastructure is modern with standard libraries and tracking technologies, though some security best practices such as security headers and explicit privacy policies are lacking. The website is secured with HTTPS and employs a cookie consent mechanism, indicating awareness of privacy compliance, albeit with room for improvement. Overall, the security posture is solid but could benefit from enhanced transparency and formalized security policies. The domain WHOIS data is privacy protected, which is typical for business websites, and no suspicious indicators were found. Strategic recommendations include publishing comprehensive privacy and security policies, adding security headers, and providing clear contact information to enhance trust and compliance.

V

Vonekl s.r.o.

vonekl.cz

45

Vonekl s.r.o. operates as a wholesale distributor specializing in flowers and floral accessories, targeting business customers such as florists and companies with valid business identification numbers. The company maintains a strong market position in the Czech Republic with a comprehensive product range including cut and potted flowers, decorations, and an online ordering system. Their business model focuses on B2B wholesale and value-added services such as seminars and floral competitions. Technically, the website employs modern web technologies including jQuery, Slick Carousel, and Google Tag Manager, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional and trustworthy, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security headers, publishing explicit security and privacy policies, and improving accessibility features to strengthen compliance and user trust.

S

Sucuri

sucuri.net

71

Sucuri is a well-established website security company founded in 2009, offering a cloud-based platform that provides malware cleanup, monitoring, firewall protection, backups, and performance optimization for websites across various CMS platforms. The company targets small businesses, web professionals, and enterprise organizations, positioning itself as a reliable and comprehensive security solution provider. The website demonstrates strong branding, professional design, and clear navigation, reflecting a mature digital presence. Technically, the website is built on WordPress using Elementor and Yoast SEO Premium, leveraging modern web technologies and third-party services such as Google Tag Manager and Microsoft Clarity for analytics and user tracking. The site is mobile-optimized and performs well, with fast loading times and good accessibility features. However, some security best practices like DNSSEC and security headers are not fully implemented. From a security posture perspective, the site uses HTTPS with strong domain registration protections but lacks explicit security headers and published security policies such as privacy, cookie, and incident response policies. No WAF blocking or content restrictions were detected, indicating full accessibility. The WHOIS data confirms domain legitimacy with consistent registration details and no privacy protection, supporting trustworthiness. Overall, Sucuri's website is professional, secure, and credible, though improvements in privacy compliance and security policy transparency are recommended to enhance trust and regulatory alignment.

F

Flensburger Hofkultur e.V.

flensburger-hofkultur.de

49

Flensburger Hofkultur e.V. operates a well-established cultural summer festival in Flensburg, Germany, transforming historic courtyards into vibrant stages for music, theater, cabaret, and film. The organization targets culture enthusiasts and local visitors, offering a diverse program of live events that attract over 5,000 attendees annually. The website reflects a professional and consistent brand image, supported by a network of regional partners and sponsors. Technically, the site is built on TYPO3 CMS with modern frontend technologies, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is trustworthy, compliant with GDPR, and effectively supports the organization's mission.

L

legalia.sk

legalia.sk

56

The website legalia.sk appears to be a Slovak business site likely related to legal or business services, established in 2013. The domain is well-aged and registered with a reputable registrar and hosting provider, with DNSSEC enabled, indicating a legitimate and stable online presence. The site uses modern web technologies such as React, Gatsby, and Tailwind CSS, suggesting a contemporary technical infrastructure. However, the content quality is basic with limited visible textual content and no detected privacy or cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS and DNSSEC but lacks important security headers and formal security or incident response policies. No contact information or social media links were found, limiting direct communication channels. Overall, the site is accessible and safe for general audiences but would benefit from enhanced privacy compliance and security best practices.

Merten is a well-established brand specializing in building communication and electrical installation products, operating under the parent company Schneider Electric. The website presents a professional and consistent brand image, targeting both professional installers and private customers interested in smart home and building communication solutions. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries and marketing tools such as Facebook Pixel and Marketo, indicating a mature digital presence. Security posture is adequate with HTTPS implied and no exposed sensitive data, though explicit security headers and policies are not evident. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy and terms of service documentation. Overall, the website is trustworthy and professionally maintained, with room for improvement in explicit security and privacy disclosures.

Merten is a specialist brand in smart home and building system technology, offering solutions that optimize energy consumption, enhance security, and provide comfort for both residential and commercial customers. The brand operates under the Schneider Electric group, indicating a strong market position and backing by a global energy management leader. The website is built on TYPO3 CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Marketo, reflecting a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms in place, though explicit security headers and formal security policies are absent. The site is content-rich, professionally designed, and targets both private and professional audiences interested in intelligent building solutions. Overall, the website demonstrates a solid business and technical foundation with room for improvement in privacy and security transparency.

T

Tower 115

tower115.sk

58

Tower 115 is a commercial real estate business operating a premium office and retail building in Bratislava, Slovakia. The company offers flexible office spaces, retail areas, and building management services, targeting businesses seeking high-standard premises in a prime location near the Eurovea zone. The website reflects a mature digital presence with professional content and consistent branding. Technically, the site is built on WordPress with common libraries and plugins, including Google Maps integration and a cookie consent mechanism. Security posture is good with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit incident response information. Privacy compliance is basic with privacy and cookie policies present but no detailed GDPR statements. Overall, the site is trustworthy and well-maintained, supporting the company's market position as a leading real estate provider in Bratislava.

G

Grünbeck AG

gruenbeck.de

66

Grünbeck AG is a well-established German company specializing in water treatment solutions for over 75 years, serving both private households and industrial clients. The company holds a leading market position in the energy sector focused on water quality and hygiene. Their website reflects a mature digital presence with comprehensive product offerings, including water softening, filtration, disinfection, and related services. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google services for analytics and tag management with GDPR-compliant consent mechanisms. Security measures include HTTPS enforcement and Google reCaptcha for form protection. The domain registration data aligns well with the company's history and legitimacy, showing no suspicious patterns. Overall, Grünbeck demonstrates a strong security posture, good privacy compliance, and professional business credibility.

O

Obchodní akademie a Česko - anglická základní škola s.r.o.

obaka-ostrava.cz

47

Obchodní akademie a Česko - anglická základní škola s.r.o. Ostrava is a private educational institution specializing in secondary education that combines economics and sports, particularly football and coaching. The school targets young athletes and students interested in balancing academic studies with sports training, offering specialized programs such as the Football Academy and Coaching Academy. The institution maintains a niche market position within the Czech Republic's education sector, emphasizing collaboration with FC Baník Ostrava and providing scholarship opportunities for high-performing students. Technically, the website employs a modern JavaScript stack including jQuery, Flatpickr, Google reCAPTCHA v3, and Slick Carousel, integrated within the Nette Framework. The site is mobile-optimized with good SEO practices and includes a cookie consent mechanism compliant with GDPR. However, some security headers are missing, and no explicit incident response or vulnerability disclosure policies are published. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, indicating a reasonable security posture. The absence of security.txt and incident response contacts suggests room for improvement in transparency and readiness. The WHOIS data is unavailable, likely due to privacy protection, which is common for private educational entities. Contact information is clear and professional, supporting the site's legitimacy. Overall, the website is well-designed, content-rich, and trustworthy, with moderate technical and security maturity. Strategic improvements in security headers, incident response transparency, and accessibility could enhance the site's security and compliance posture.

C

CENTROPEN, a.s.

centropen.de

47

CENTROPEN, a.s. is a medium-sized European manufacturer and retailer specializing in writing and drawing instruments, including markers, pens, and creative products for office, industry, schools, children, and artists. The company maintains a professional online presence with multi-language support and active social media channels. Their business model focuses on manufacturing and B2B/B2C retail, targeting a broad audience from businesses to hobbyists. The website content is well-structured and relevant to their market segment, reflecting a consistent brand image.

C

CENTROPEN, a.s.

centropen.sk

44

CENTROPEN, a.s. is a well-established Slovak manufacturing and retail company specializing in writing instruments and creative products. With a history dating back to 1940, the company serves a broad audience including office users, schools, hobbyists, and artists. The website reflects a mature business with multilingual support and a clear product catalog. Technically, the site uses a mix of legacy and modern JavaScript libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the site.

C

CENTROPEN, a.s.

centropen.cz

9

CENTROPEN, a.s. is a well-established Czech manufacturer specializing in writing instruments such as pens, markers, and creative tools for office, school, hobby, and artistic use. The company emphasizes its long tradition dating back to 1940, Czech production, and high-quality products. The website reflects a medium-sized manufacturing and retail business with a clear focus on multiple customer segments including children, students, and professionals. The digital presence includes multiple specialized microsites and active social media channels, supporting brand engagement and product promotion. Technically, the website uses a combination of legacy and modern web technologies including jQuery 1.11.3, Leaflet.js for maps, Google Fonts, and slick carousel for UI components. The site is mobile optimized with good navigation and content structure, though some technical improvements could enhance performance and security. The cookie consent mechanism is implemented in compliance with GDPR, providing users control over cookie preferences. From a security perspective, the site uses HTTPS but lacks visible advanced security headers and uses an outdated jQuery version which could pose risks. No explicit security policies or incident response contacts are published, which could be improved to enhance trust and compliance. The absence of WHOIS data reduces domain registration transparency, but the website content and branding strongly indicate a legitimate and established business. Overall, CENTROPEN's website is professional, content-rich, and compliant with privacy regulations, but could benefit from technical and security enhancements to strengthen its digital maturity and trustworthiness.

S

Srdce v domě, p. o.

srdcevdome.cz

58

Srdce v domě, p. o. is a non-profit social service organization established by the Jihomoravský kraj (South Moravian Region) in the Czech Republic. The organization provides protected housing and support services primarily for persons with disabilities, operating facilities in Klentnice, Mikulov, and Lednice. Their website reflects a regional government-affiliated entity focused on social welfare, with clear contact information and service descriptions. The business model is non-profit, supported by regional government funding, targeting individuals seeking social housing and care services. Technically, the website is built on an ASP.NET WebForms framework with modern front-end libraries such as jQuery, Bootstrap, and Slick Carousel. It employs Google Tag Manager for analytics and tracking, and includes cookie consent mechanisms and a privacy policy, indicating a reasonable level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data reduces transparency and trust slightly, but the website's content and affiliations strongly support its legitimacy. Overall, the website presents a trustworthy and professional front for a regional non-profit social service provider. Strategic improvements in security headers and public disclosure of incident response policies would enhance its security posture and compliance standing.

T

Topenářské centrum Tespo

tespo-su.cz

42

Topenářské centrum Tespo is a small local business based in Šumperk, Czech Republic, specializing in the sale, installation, and servicing of heating, plumbing, and gas equipment. Their website presents a professional image with clear service offerings including sales of boilers and heat pumps, installation services, and maintenance. The company targets residential, commercial, and industrial customers within their region. Technically, the website uses common JavaScript libraries such as jQuery and UI components like Venobox and Slick Carousel, with Google Fonts for typography. The site is mobile optimized and provides a cookie consent mechanism, but lacks a dedicated privacy policy or terms of service pages. Security posture is basic, with no advanced security headers detected and no visible SSL configuration details. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and contact information appear legitimate. Overall, the site scores moderately on content quality and business credibility but should improve security and compliance documentation.

Y

young academy rostock

young-academy-rostock.de

55

The young academy rostock is a specialized educational institution focused on the early musical development of gifted children and youth. Affiliated with the Hochschule für Musik und Theater Rostock, it offers workshops, early university studies, and organizes events and competitions to foster musical talent. The website reflects a well-structured, professionally designed platform that effectively communicates its mission and services to its target audience of musically gifted youth, their families, and educators. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and cookie consent mechanisms indicates room for improvement. The WHOIS data aligns with the institution's affiliation, supporting legitimacy. Overall, the site is trustworthy and serves its educational purpose well.

B

Bürgerhaus Garching / Kultur Garching

kultur-garching.de

51

The website www.kultur-garching.de serves as the official cultural portal for the town of Garching, Germany, providing comprehensive information about local cultural events, ticket sales, and related services. It targets local residents and visitors interested in cultural activities, positioning itself as a key local cultural institution with a focus on event promotion and community engagement. The business model is primarily public service oriented, supported by partnerships with established ticketing platforms such as Münchenticket. Technically, the site is built on the EGOTEC CMS platform, leveraging modern JavaScript frameworks like Angular and libraries such as jQuery and Slick Carousel for interactive features. Hosting is provided by SchlundTech, a reputable German hosting provider, ensuring stable and localized infrastructure. Security posture is adequate with HTTPS enforced and email obfuscation implemented, but lacks advanced security headers and explicit vulnerability disclosure mechanisms. Privacy compliance is supported by a comprehensive GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the site demonstrates good content quality, usability, and trustworthiness appropriate for a government cultural service portal.

F

Frutiko

frutiko.cz

48

Frutiko.cz is a Czech Republic-based e-commerce retailer specializing in edible flower bouquets, classic flowers, cakes, and gift baskets. The company targets general consumers seeking unique and fresh gift options with delivery services across Prague, Brno, and the wider Czech Republic. The website is professionally designed, multilingual, and offers a seamless shopping experience with clear navigation and mobile optimization. Technically, the site leverages modern web technologies including jQuery, Bootstrap, and multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, though the absence of a published security policy and incident response contact suggests room for improvement. The lack of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and comprehensive privacy and cookie policies. Overall, Frutiko.cz presents a trustworthy and well-managed online retail platform with good compliance and security practices.

The European Cancer Patient Coalition (ECPC) is a well-established non-profit organization advocating for cancer patients across Europe. The website serves as a comprehensive platform for policy advocacy, health and research initiatives, patient engagement, and awareness campaigns. It targets cancer patients, caregivers, healthcare professionals, and European policymakers, positioning itself as a key voice in European cancer patient advocacy with over a decade of history. Technically, the site is built on WordPress with modern plugins and tools, offering good SEO, mobile optimization, and user experience. Security posture is adequate with HTTPS and domain protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is strong with clear GDPR consent mechanisms and policies. Overall, the site is professional, trustworthy, and content-rich, supporting its mission effectively.

R

Roman Skřipec

kovoskripec.cz

40

Roman Skřipec is a small family-owned manufacturing company based in Zábřeh, Czech Republic, specializing in precise metal machining services including CNC and conventional machining of rotational and milled parts. Founded in 2004, the company serves industrial clients requiring custom and series production of metal components from various materials such as cast iron, bronze, brass, copper, steel, and stainless steel. The website presents a professional image with clear service descriptions and contact information, targeting industrial customers in need of precision machining solutions. Technically, the website employs modern JavaScript libraries and frameworks, including jQuery, Bootstrap, and Google Analytics, and is built on the Eliška CMS platform. It features a cookie consent mechanism compliant with GDPR, indicating attention to privacy regulations. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Security posture is moderate with no detected security headers or explicit security policies, suggesting room for improvement in hardening the website and providing incident response information. Overall, the website is functional, professional, and trustworthy from a business perspective but would benefit from enhanced security and transparency measures.

K

Kerekesh Teatar

kerekesh-teatar.hr

46

Kerekesh Teatar is a Croatian theatre company specializing in comedic and cultural performances, offering a schedule of shows primarily in Croatia. The website presents a professional and well-structured digital presence, leveraging WordPress with modern plugins and themes to deliver content effectively. The company maintains a consistent brand image and integrates social media channels to engage its audience. Technically, the site uses a solid tech stack including WordPress, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. Overall, the site is trustworthy and compliant with GDPR, reflecting a legitimate and transparent business.

D

Dogfish

dogfish.cz

42

Dogfish is a Czech digital agency specializing in web design, web applications, graphic design, video production, and e-commerce solutions. The company positions itself as a professional and experienced provider with a strong portfolio and client testimonials, targeting businesses seeking digital transformation and marketing support. The website is built on WordPress and incorporates modern web technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and trust signals on the site. Overall, Dogfish demonstrates a solid digital presence with good business credibility and technical implementation.

B

Bohemia

bohemiahokej.cz

42

The website www.bohemiahokej.cz is a Czech-language promotional platform centered around interactive hockey-themed games and contests sponsored by Bohemia Chips. It targets Czech consumers interested in hockey and promotional sweepstakes, offering prizes such as cars and branded merchandise. The site features multiple interactive games, user registration with consent for data processing, and social media integration. Technically, it employs modern JavaScript libraries and tracking tools like Google Tag Manager and Facebook Pixel, with a responsive design optimized for mobile devices. Security posture is generally good with HTTPS enforced and consent mechanisms in place, though minor backend PHP notices indicate some error handling issues. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding appear professional and consistent with a legitimate marketing campaign.

R

Radim Oulehla

fintree.cz

53

Fintree.cz is a Czech Republic-based FinTech news and review website founded around 2020 by Radim Oulehla. It serves a niche audience interested in financial technologies, startups, and business insights. The website offers news articles, reviews, podcasts, and job listings related to the FinTech sector. Technically, the site is built on WordPress using the Divi theme, leveraging common JavaScript libraries such as jQuery and Slick Carousel for UI enhancements. The site is mobile-optimized and includes SEO best practices with structured data and meta tags. Security-wise, the website enforces HTTPS and includes standard security headers, along with a GDPR-compliant cookie consent mechanism. However, it lacks explicit published security policies or incident response contacts. Overall, the site presents a professional and trustworthy digital presence with moderate to good technical maturity.

R

ResponsiveAds

responsiveads.com

65

ResponsiveAds is a mature technology company specializing in creative automation for digital advertising, offering a comprehensive suite of tools and services to brands, agencies, and publishers. Their platform supports high-impact, fluid HTML5 ads across multiple channels including web, mobile, DOOH, and CTV, with advanced analytics and dynamic creative optimization capabilities. The website reflects a professional and well-branded presence with extensive case studies and trusted partner logos, indicating strong market positioning. Technically, the website is built on WordPress with modern frameworks like Elementor and Yoast SEO, hosted on AWS infrastructure. It integrates multiple advertising and analytics technologies such as Google Tag Manager, DoubleClick, StackAdapt, and Microsoft Clarity. The site is mobile-optimized, accessible, and employs a detailed cookie consent mechanism compliant with GDPR principles. From a security perspective, the site uses HTTPS with good SSL configuration and standard security practices including bot management and secure cookies. However, it lacks DNSSEC and explicit security headers, and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements include enhancing security headers, publishing privacy and security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

G

Golf Europe s.r.o.

golfovehry.cz

55

Golf Europe s.r.o. operates the website GolfovéHry.cz, a specialized platform offering golf travel packages, golf courses, lessons, and gift vouchers primarily targeting golf enthusiasts in the Czech Republic and neighboring countries. The business model focuses on providing curated golf travel experiences and personalized offers. The website demonstrates a professional and consistent brand presence with clear contact information and social media integration. Technically, the site uses modern web technologies including jQuery, Bootstrap 4, and tracking tools like Google Analytics and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and formal privacy policies are missing. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and well-maintained.