Security Directory

B

BRNO BEACH OPEN 2021

brnobeachpro.cz

54

Brno Beach Pro is a well-established beach volleyball sports event based in Brno, Czech Republic, recognized as a leading regional tournament with international participation. The website provides comprehensive event information, schedules, results, ticketing, and sponsor details, targeting sports fans and volleyball enthusiasts. Technically, the site is built on WordPress with modern libraries and frameworks, offering good mobile responsiveness and SEO optimization. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and formal privacy policies. The absence of WHOIS data limits domain legitimacy verification, but the professional presentation and partner ecosystem support its credibility. Overall, the site is functional, trustworthy, and serves its audience effectively.

Nadácia Orange is a Slovak non-profit foundation focused on education, community development, philanthropy, and charity, operating under the auspices of Orange Slovensko. The website presents a professional and well-structured digital presence, targeting general audiences interested in social impact and grant programs. The foundation leverages modern web technologies including WordPress and Elementor, ensuring a responsive and user-friendly experience. While the site integrates standard tracking and advertising tools such as Google Analytics and Adform, it lacks a formal cookie consent mechanism, which is a notable privacy compliance gap. Security posture is generally good with HTTPS enforced, but the absence of key security headers suggests room for improvement. Overall, the domain registration and business information are consistent and trustworthy, supporting the foundation's legitimacy.

W

WebLab, s.r.o.

weblab.sk

56

WebLab, s.r.o. is a Slovak-based web design studio specializing in creating websites, e-shops, branding, and online marketing services. With over 19 years of experience, the company targets businesses and individuals seeking professional digital presence solutions. Their market position is that of an established local player with a solid portfolio and positive customer testimonials. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Tag Manager, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Overall, the website is professional, trustworthy, and content-rich, supporting the company's credibility and business goals.

V

Veranstaltungsservice Bamberg GmbH

kartenkiosk-bamberg.de

62

Kartenkiosk Bamberg is a well-established regional event ticketing and concert organization service operating primarily in northern Bavaria, Germany. The company, Veranstaltungsservice Bamberg GmbH, has over 30 years of experience and offers ticket sales, event organization, and customer support services. The website is professionally designed with clear navigation, mobile optimization, and integrates modern frontend technologies such as Bootstrap and jQuery. It also includes comprehensive legal documentation including privacy policy, terms of service, and cookie consent mechanisms, demonstrating a strong commitment to compliance and user privacy. Social media integration and active marketing tools like Google Analytics and Facebook Pixel are used responsibly with user consent.

S

Stredoslovenská vodárenská prevádzková spoločnosť, a.s.

stvps.sk

45

Stredoslovenská vodárenská prevádzková spoločnosť, a.s. (StVPS) is a Slovak regional water utility company providing water supply and wastewater management services. The company operates accredited laboratories for water quality analysis and offers a range of customer services including billing, connection information, and support. The website reflects a professional and consistent brand presence targeting Slovak customers and municipalities. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and moderate performance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly available. Overall, the site is trustworthy, compliant with GDPR, and well-positioned in its sector.

Conflict of Nations: World War 3 is a browser-based multiplayer strategy game developed and published by DOG PRODUCTIONS LTD, with affiliation to Stillfront Group. The game targets strategy gamers interested in modern military conflict and diplomacy, offering cross-platform play on browsers, Steam, and mobile devices. The business model is free-to-play with in-game purchases ranging from 1.99 to 179.99 EUR. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages and social media integration. Technical infrastructure includes modern JavaScript libraries and analytics tools, with moderate performance and good mobile optimization. Security posture is solid with HTTPS, CAPTCHA, and form validation, though lacking explicit security policies and some security headers. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data raises concerns about domain legitimacy, though the active and professional website presence mitigates some risk. Overall, the site is trustworthy and well-maintained but would benefit from improved transparency in domain registration and security disclosures.

A

Automobile Tierhold GmbH

tierhold.com

48

Automobile Tierhold GmbH is a well-established family-owned automobile dealership based in Germany since 1981. The company specializes in selling new vehicles from Kia, Volvo, and Mazda brands, alongside a large inventory of over 600 certified used cars. Their service offerings include vehicle maintenance, tire changes, smart repair, and e-mobility solutions, targeting both private customers and commercial clients. The website reflects a professional and consistent brand image with clear navigation and comprehensive service information. Technically, the website employs modern web technologies such as Bootstrap and jQuery, with integration of Matomo analytics for user behavior tracking. The site is mobile-optimized and provides a cookie consent mechanism aligned with GDPR requirements. However, there is room for improvement in security headers and accessibility features. The absence of WHOIS data for the domain is a notable anomaly that slightly impacts trustworthiness. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible HTTP security headers and explicit incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website presents a trustworthy and professional front for the business, though the missing WHOIS data and minor security header gaps suggest areas for enhancement. Strategic recommendations include improving HTTP security headers, maintaining up-to-date libraries, and establishing clear incident response contacts to bolster security posture and trust.

S

Slovenský zväz floorbalu

szfb.sk

55

The website www.szfb.sk represents the Slovenský zväz floorbalu, the Slovak national floorball federation. It serves as a comprehensive portal for floorball enthusiasts, players, clubs, and stakeholders in Slovakia, providing news, live match updates, statistics, national team information, and educational resources. The site is well-structured with clear navigation and a consistent brand presence, targeting the Slovak floorball community. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Analytics, and is built on an ASP.NET framework. It is mobile-optimized and performs moderately well. Security-wise, the site uses HTTPS, anti-forgery tokens, and cookie consent mechanisms, though it could enhance security headers and publish explicit security policies. No critical vulnerabilities or suspicious content were detected. Overall, the site is trustworthy, professional, and safe for general audiences.

V

Veranstaltungsservice Bamberg GmbH

vsbamberg.de

62

Veranstaltungsservice Bamberg GmbH is a well-established event organization company operating primarily in northern Bavaria and surrounding regions, with over 30 years of experience in concert and event management. The company offers event organization, ticket sales, and customer engagement services, positioning itself as a trusted regional player with a strong digital presence. The website is professionally designed, mobile-optimized, and provides comprehensive event information and user-friendly navigation. Technically, the site uses modern frameworks such as Bootstrap and jQuery, with a ColdFusion backend inferred from URL patterns. Security practices include HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is strong, with clear policies and consent management. Overall, the site demonstrates a mature digital infrastructure supporting its business goals.

Aquis Grana GmbH operates the Aquis Grana Cityhotel, a 4-star hotel located in the heart of Aachen, Germany. The hotel targets tourists and business travelers seeking comfortable accommodation near key city landmarks such as the Aachen Cathedral. The website offers information about hotel services, gastronomy, event hosting, and special packages, supporting multiple languages to cater to international visitors. The business model focuses on hospitality services with a local market position emphasizing quality and location. Technically, the website is built on a proprietary CMS (some.oner - black.t CMS) and uses common web technologies such as jQuery, Fancybox, and Slick Slider for UI components. The site is mobile optimized with good navigation and basic SEO practices. No advanced analytics or tracking tools are detected, and cookie consent mechanisms are implemented in compliance with GDPR. From a security perspective, the site uses HTTPS and has implemented cookie consent but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. WHOIS data aligns with the business location and domain usage, indicating legitimacy. Overall, the website presents a professional and trustworthy online presence suitable for its hospitality business. The overall risk is low, with recommendations to enhance security headers, improve accessibility, and expand security documentation to strengthen compliance and trust.

C

camindu GmbH

hausverw.de

51

Hausverw.de is a specialized online education platform operated by camindu GmbH, offering legally compliant online seminars and certifications for residential property managers and real estate agents in Germany. The platform focuses on fulfilling the mandatory continuing education requirements under §34c GewO and MaBV, providing flexible, accessible training via live webinars and recorded sessions. Their market position is niche, targeting real estate professionals seeking convenient and certified training solutions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI/UX enhancing libraries, hosted on aditsystems.hosting. The site is built on October CMS and integrates privacy-conscious analytics tools like Matomo alongside Google Analytics and Tag Manager. The site is mobile-optimized and accessible, with additional accessibility features enabled via third-party scripts. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism despite active tracking scripts. Overall, hausverw.de presents a professional, trustworthy online training service with a solid technical foundation and good business credibility. Strategic enhancements in security headers, privacy consent, and incident response transparency would further strengthen its security posture and compliance standing.

D

Datenschutz Pöllinger GmbH

datenschutz-poellinger.de

56

Datenschutz Pöllinger GmbH is a specialized German company providing comprehensive data protection consulting, information security, and IT security services. They combine expert advisory with proprietary software solutions for data protection management, targeting businesses needing GDPR compliance and security certifications such as ISO 27001 and TISAX. The company also offers training and whistleblower system implementations, positioning itself as a trusted partner in the data protection ecosystem. Technically, the website is built on the auctores CMS platform, leveraging modern JavaScript libraries like jQuery and Slick Carousel, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and nonce usage in scripts, though some security headers and incident response details are missing. Overall, the site is professional and trustworthy, though it lacks explicit privacy and cookie policies, which impacts compliance scoring.

T

Team KULTUR.GEMEINSCHAFTEN bei der Kulturstiftung der Länder

kulturgemeinschaften.de

48

KULTUR.GEMEINSCHAFTEN is a German government-backed funding program aimed at supporting small and non-profit cultural institutions in developing digital content offerings. The program is administered by the Kulturstiftung der Länder and focuses on enabling cultural organizations to acquire production technology, receive expert project support, and build competencies in digital content production. The website presents a professional and consistent brand image, targeting cultural institutions across Germany. Technically, the site is built on WordPress, hosted on AWS infrastructure, and uses common JavaScript libraries and plugins such as jQuery and Slick Slider. While HTTPS is enforced and cookie consent is managed via Borlabs Cookie, the site lacks explicit privacy policy and terms of service pages, and security headers are not detected in the provided data. Analytics are implemented using Google Tag Manager, indicating moderate user tracking. Overall, the website is well-designed, content-rich, and trustworthy, but could improve its privacy and security posture by publishing comprehensive policies and implementing additional security headers.

W

Walk of Beer

walk-of-beer.de

43

Walk of Beer is a cultural tourism initiative based in Forchheim, Germany, promoting the local beer heritage through a themed walking route connecting historic breweries and beer cellars. The website serves as an informational platform targeting tourists and beer enthusiasts, providing historical context and promoting local attractions. The business operates in the hospitality sector with a niche focus on regional cultural experiences. Technically, the website is built on TYPO3 CMS and employs modern frontend libraries such as jQuery, Bootstrap, and Slick Carousel, ensuring a responsive and user-friendly experience. The inclusion of a cookie consent mechanism demonstrates awareness of privacy compliance requirements. Security posture is moderate with HTTPS usage implied, but lacks explicit security headers and formal policies. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

A

Annafest: Annafest Forchheim

annafest.bayern

47

The website www.annafest.bayern serves as the official information portal for the Annafest, a traditional folk festival held in Forchheim, Bavaria. It provides comprehensive details about the event including schedules, attractions, food and drink options, accessibility, and reservation information. The site targets festival attendees, families, and cultural enthusiasts, positioning itself as a regional cultural event platform. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response contacts. WHOIS data is privacy protected, which is typical for event domains, and does not raise suspicion given the regional focus and content consistency. Overall, the site is professional, trustworthy, and well-optimized for its purpose.

L

Landhaus Sponsel-Regus

sponsel-regus.de

68

Landhaus Sponsel-Regus is a family-run 4-star wellness hotel located in the Franconia region of Germany, targeting families and wellness tourists. The website presents a professional and consistent brand image with a focus on hospitality and wellness services. The technical infrastructure leverages a custom CMS platform with common web technologies such as jQuery, Matomo analytics, and Google Tag Manager, with cookie consent mechanisms in place. Security posture is generally good with HTTPS enforced and consent-based analytics, but lacks explicit security headers and updated libraries. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the website is trustworthy and professionally maintained but could improve in transparency and security best practices.

F

Forchheim Erleben: Königsstadt Forchheim - das Tor zur Fränkischen Schweiz

forchheim-erleben.de

42

The website www.forchheim-erleben.de serves as the official tourism portal for the city of Forchheim and the surrounding Fränkische Schweiz region in Germany. It provides comprehensive information about local hotels, gastronomy, breweries, events, city tours, and brochures to assist visitors in planning their trips. The site targets tourists and visitors interested in cultural, culinary, and outdoor activities in the region. The business model focuses on regional tourism promotion and supporting local hospitality and retail sectors. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and incorporates modern web libraries such as jQuery, Slick Carousel, and FontAwesome Pro. It uses Google Analytics for visitor tracking and CookieFirst for cookie consent management, indicating a moderate level of digital maturity. The site appears to be mobile-optimized with a responsive design and provides a clear navigation structure. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but lacks visible security headers and published privacy or terms of service policies in the provided content. There is no evidence of a security.txt file or explicit incident response contacts. While no critical vulnerabilities or suspicious patterns were detected, the absence of some security best practices and compliance documentation suggests room for improvement. Overall, the website is a trustworthy and professional regional tourism portal with good content quality and user experience. However, enhancing privacy compliance, security headers, and providing clear contact and policy information would strengthen its security posture and user trust. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and establishing a vulnerability disclosure process.

The website www.bergstrasse-odenwald.de serves as a comprehensive regional tourism portal for the Bergstraße-Odenwald area in Germany. It provides extensive information on cultural, culinary, and outdoor activities, including event listings, accommodation booking, and regional guides. The site targets tourists, families, and outdoor enthusiasts, positioning itself as a key regional tourism authority. Technically, it is built on TYPO3 CMS with modern frontend libraries such as jQuery, Bootstrap, and Slick Carousel, and integrates Matomo analytics for user tracking. The site is mobile-optimized and offers multilingual support via Google Translate. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and detailed security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable security posture. Overall, the site is professional, trustworthy, and compliant with GDPR, though it could improve by adding explicit security and incident response information.

S

Stadt Arnsberg

arnsberg.de

64

The website www.arnsberg.de serves as the official digital presence of the city of Arnsberg, Germany. It provides extensive information and services related to tourism, economic development, community engagement, sustainability, culture, politics, and municipal administration. The site targets residents, local businesses, tourists, and community stakeholders, positioning itself as a comprehensive municipal government portal. The business model is that of a government entity providing public services and information. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery, Bootstrap, Video.js, Leaflet, and accessibility tools like ReadSpeaker. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure appears stable and consistent with a government website. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security or privacy policies. No vulnerability disclosure or incident response information is present. The absence of cookie and privacy policies indicates potential compliance gaps with GDPR and related regulations. No critical vulnerabilities or exposed sensitive data were detected, but security posture could be improved by implementing standard security headers and formal policies. Overall, the website is trustworthy and professional, serving its purpose as a municipal information portal. Strategic recommendations include enhancing privacy and cookie disclosures, implementing security headers, and establishing a vulnerability disclosure policy to improve compliance and security maturity.

S

Sparkasse Vest Recklinghausen

vesterleben.de

55

Vesterleben is a regional digital magazine and information portal serving the Vest region in Germany. It provides local news, event listings, and community engagement content, supported by reputable local institutions including Sparkasse Vest Recklinghausen, Diakonie Recklinghausen, Hertener Stadtwerke, and RDN-Verlag. The website targets residents and visitors interested in regional culture, social events, and local initiatives. The business model is based on regional media publication with digital content and downloadable print editions, positioning itself as a trusted local information source.

V

Vest Erleben

vest-erleben.de

55

Vest Erleben is a regional media platform serving the Vest Recklinghausen area in Germany, providing local news, event information, and community engagement. The website is supported by a consortium of local institutions including Sparkasse Vest Recklinghausen, Diakonie Recklinghausen, Hertener Stadtwerke, and RDN-Verlag, positioning it as a trusted source for regional content. The platform targets residents and visitors interested in cultural, social, and economic developments within the region. Technically, the website is built on WordPress with modern enhancements such as ElasticPress for search, Matomo for analytics, and responsive design elements ensuring good mobile usability. The site uses HTTPS and includes basic security practices like CSRF tokens, but lacks some advanced security headers and explicit cookie consent mechanisms. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site demonstrates a reasonable posture with encrypted connections and no visible vulnerabilities or exposed sensitive data. However, it could improve by implementing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy. Privacy compliance is partially addressed with a privacy policy present, but cookie consent mechanisms are missing despite tracking usage. Overall, Vest Erleben is a credible and professionally maintained regional media website with solid business credibility and technical infrastructure. Strategic improvements in privacy compliance and security transparency would enhance trust and regulatory adherence.

P

PDV GmbH

pdv.group

55

PDV Group is a medium-sized German company specializing in E-Government software and IT services for public sector institutions including federal, state, and municipal administrations. The group consists of PDV GmbH and its subsidiaries CC e-gov GmbH, regisafe GmbH, and adKOMM GmbH, offering a comprehensive portfolio of digital solutions for document management, process automation, and digital transformation in public administration. Their market position is strong with over 30 years of experience and a focus on usability, interoperability, and compliance with E-Government laws. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery and Bootstrap. The site is mobile-optimized, well-structured, and uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement in security hardening. No forms collecting personal data were found on the homepage, and cookie consent is implemented properly. From a security perspective, the domain registration is consistent and legitimate, with no suspicious patterns. The website lacks explicit published security policies or incident response contacts, which could be enhanced to improve trust and compliance. Privacy compliance is good with a clear privacy policy and cookie banner. No social media or email contacts are publicly listed, but a clear phone contact is provided. Overall, the website and business demonstrate a professional and trustworthy presence with a solid technical foundation. Strategic improvements in security headers, DNSSEC, and published security policies would further strengthen their security posture and compliance standing.

BACKBONE, s.r.o. is a small, Bratislava-based design and development studio specializing in user experience, web and mobile application development, hosting, and cloud solutions. The company has a strong local presence with a portfolio of notable Slovak clients and a decade of experience. Their website is professionally designed, content-rich, and clearly communicates their services and expertise. Technically, the site uses modern web technologies including Google Analytics and Typekit fonts, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of security headers and incident response contacts suggests room for improvement. Privacy compliance is strong, featuring a comprehensive GDPR privacy policy in Slovak, but lacks a cookie consent mechanism despite analytics usage. Overall, the website reflects a credible and trustworthy small technology business with a good balance of professionalism and technical maturity.

M

Mesto Levice

levice.sk

58

Mesto Levice operates an official municipal website serving the city of Levice, Slovakia. The site provides comprehensive information about local government, public services, cultural events, and community news. It targets residents, visitors, and local businesses, positioning itself as the authoritative source for city-related information. The business model is a government entity providing public digital services and information dissemination. Technically, the site uses a custom CMS platform (WEBY PORTÁL) with common web technologies such as jQuery and Fancybox. Hosting and technical operations are managed by WEBY GROUP s.r.o. The website is moderately optimized for performance and mobile devices, with basic accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and incident response information. Overall, the site is trustworthy and professionally maintained, with room for security and technical improvements.

F

Förderverein für regionale Entwicklung e. V.

mobile-mitarbeiter-kommunikation.de

68

The website www.mobile-mitarbeiter-kommunikation.de presents the momikom Mitarbeiter-App, a mobile employee communication platform designed primarily for small to medium organizations and public sector entities in Germany. The app offers a free basic package with essential communication tools such as messaging, event management, galleries, and contact lists, complemented by modular paid extensions including chat, digital time tracking, and document sharing. The business model is SaaS-based, targeting sectors like healthcare, social services, crafts, companies, and municipalities. The site is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content including testimonials and detailed feature descriptions. Technically, the website leverages a modern tech stack including jQuery, Material Design Lite, and slick carousel components, hosted on a German ISO 27001-certified environment ensuring compliance with strict data protection standards. The site uses HTTPS with good SSL configuration and implements GDPR-compliant privacy and cookie policies. Contact information is transparent and includes a contact form, phone number, email, and physical address. No security challenges or WAF blocks were detected, and no critical vulnerabilities were found in the visible content. Security posture is strong with ISO 27001 certification, granular access rights management, SSL encryption, and regular security updates. However, the site lacks a published security.txt file and explicit incident response contact details, which could be improved. Privacy compliance is robust with clear policies and consent mechanisms. The business credibility is supported by trust signals such as certifications, testimonials, and transparent contact details. Overall, the website scores well across content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional platform for mobile employee communication. Strategic recommendations include publishing vulnerability disclosure information, enhancing security headers, and maintaining ongoing audits of third-party libraries to sustain security and compliance standards.

Amt Recknitz-Trebeltal is a regional government administrative body in Germany providing a range of public services including citizen administration, tourism information, and local governance. The website serves residents and visitors with information on administration, events, and community resources. The digital infrastructure is based on a specialized Verwaltungsportal CMS with modern frontend technologies like jQuery and Material Design Lite, offering a moderate performance and basic mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security headers and incident response disclosures. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

G

Gemeinde Nessetal

gemeinde-nessetal.de

59

Gemeinde Nessetal is a municipal government entity serving a small community in the Landkreis Gotha, Thüringen, Germany. The website provides comprehensive information about local administration, services, events, and tourism, targeting residents and visitors. The site is built on a specialized CMS platform (verwaltungsportal.de) using modern web technologies and offers a good user experience with mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is trustworthy and professionally maintained, reflecting the municipality's official presence online.

G

Gemeinde Milower Land

milow.de

58

Gemeinde Milower Land is a small German municipal government entity providing local administration, public services, and tourism information for its approximately 5,000 residents. The website serves as an official portal offering comprehensive information about the municipality, its public institutions, events, and contact points. The digital infrastructure is built on a specialized municipal CMS with common web technologies such as jQuery, Material Design Lite, and various UI libraries, ensuring a good user experience and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be enhanced. No signs of blocking or WAF interference were detected, and privacy compliance is well addressed with clear policies and consent banners. Overall, the website is trustworthy, professional, and serves its community effectively.

T

Tuli Cinema

tulicinema.com

57

Tuli Cinema operates as a local cinema service provider primarily targeting audiences in Slovakia and Hungary. The website offers comprehensive movie programming, online ticket sales, and event promotions, positioning itself as a key entertainment venue associated with the x-bionic® sphere. The business model focuses on direct ticket sales and event marketing, catering to families and cinema enthusiasts. The website content is professionally presented, with clear navigation and multilingual support, enhancing user experience for its target audience. Technically, the website employs a custom or proprietary CMS platform (mojekino_v2r) and utilizes common web technologies such as jQuery, Facebook SDK, and legacy Google Analytics for tracking. While the site is mobile optimized and provides interactive features like trailers and event calendars, some modernization opportunities exist, including upgrading analytics and enhancing accessibility. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy requirements. However, no advanced security headers were detected, and the use of legacy analytics scripts suggests room for improvement. The absence of a public WHOIS record for the domain reduces transparency and trustworthiness, although the website content and contact information appear legitimate. Overall, Tuli Cinema presents a solid digital presence with good content quality and business credibility but would benefit from enhanced privacy disclosures, updated security practices, and improved domain registration transparency.

C

Centre national de la musique

cnm.fr

48

The Centre national de la musique (CNM) is a French national institution dedicated to supporting professionals in the music and variety sectors. Established in 2005, it provides financial aids, training, research, and consulting services to foster the development of the music industry in France. The website reflects a mature digital presence with multilingual support, professional design, and comprehensive content tailored to its target audience of music professionals and stakeholders. Technically, the site is built on WordPress with modern performance optimizations and accessibility considerations, hosted by OVH, a reputable provider. Security posture is solid with HTTPS, security headers, and privacy compliance mechanisms in place, although explicit security policies and incident response details are not publicly disclosed. Overall, the CNM website demonstrates high business credibility and digital maturity appropriate for a government agency.

S

Stadt Herten

herten.de

64

Stadt Herten operates an official municipal website providing comprehensive information and services to its citizens and visitors. The site covers a wide range of topics including citizen services, city administration, cultural events, and urban development. It targets residents and stakeholders of the city, offering online tools such as appointment scheduling and event calendars. The website is built on TYPO3 CMS and employs modern web technologies ensuring good accessibility and user experience. Security posture is adequate with HTTPS enforced and obfuscated email addresses, though it lacks explicit security policies or incident response contacts. Overall, the site is trustworthy and professionally maintained, reflecting the city's commitment to digital public service.

S

Středisko výchovné péče Orlíček Přední Chlum, o. p. s.

orlicekprednichlum.cz

38

Středisko výchovné péče Orlíček Přední Chlum, o. p. s. is a Czech non-profit organization providing ambulant and residential educational care services primarily targeting children, parents, and educators. Their offerings include counseling, social-educational activities, and support for sports, cultural, and leisure projects for youth. The organization appears to serve a local or regional community with a focus on social welfare and education. Technically, the website is built on WordPress 4.9.26 with jQuery 1.12.4 and uses Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized with a responsive design and basic accessibility features. Performance is moderate, and SEO is basic but functional. However, the WordPress and jQuery versions are outdated, which may pose security risks. From a security perspective, the site enforces HTTPS and implements a cookie consent banner with detailed user options, indicating some privacy awareness. However, no security headers are detected, and there is no privacy policy or incident response information published. The absence of WHOIS data reduces trust in domain legitimacy, although the website content and contact details appear genuine and professional. Overall, the website is safe and suitable for general audiences, with no adult or explicit content. The main risks relate to outdated software and missing security best practices. Strategic improvements in security headers, privacy documentation, and software updates would enhance the site's security posture and compliance.

S

SC SPORT BRANDS DISTRIBUTION SRL

insportline.ro

64

SC SPORT BRANDS DISTRIBUTION SRL operates the inSPORTline.ro website, a Romanian e-commerce platform specializing in sports equipment and articles. The company offers a wide range of fitness and sports products, targeting general consumers interested in sports and fitness. The website is well-structured, professionally designed, and provides clear navigation and product categorization. It supports customer engagement through loyalty programs, authorized service, and warranty offerings. Technically, the site is built on the PrestaShop CMS platform, utilizing modern JavaScript libraries and analytics tools such as Google Analytics and Facebook SDK. The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and secure cookie practices, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a trustworthy and professional online retail presence.

B

Benes Consulting Group

spolecnebezpecne.cz

43

The website 'Společně bezpečně' is a safety awareness and educational project primarily focused on increasing road safety and general safety awareness in the Czech Republic. It is a collaborative initiative involving ESSOX and the Hasičský záchranný sbor Jihočeského kraje, targeting children and the general public through educational campaigns and activities. The site presents a professional and consistent brand image with clear navigation and relevant content. Technically, it employs a modern front-end stack including jQuery, Bootstrap, and various plugins, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and use of reCAPTCHA, but lacks some security headers and explicit privacy and cookie policies. The absence of WHOIS data reduces transparency and trust somewhat, but partnerships and content quality support legitimacy. Overall, the site is a trustworthy educational resource with room for improvement in privacy compliance and security best practices.

T

touring artists

touring-artists.info

51

Touring Artists is a specialized non-profit platform providing comprehensive information and free consultation services for internationally mobile artists and creatives working in or moving to Germany. The website is supported by reputable cultural institutions such as the International Theatre Institute Germany, the International Society of Fine Arts, and the German Dance Association, and is funded by German cultural government bodies. It offers detailed resources on visas, contracts, social security, taxes, insurance, copyright, and transport, alongside a funding database and guides to support cross-border cultural work. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience. The site is mobile-optimized, accessible, and includes a cookie consent mechanism compliant with GDPR. Google Tag Manager is used for analytics, with minimal user tracking. However, some security best practices such as explicit security headers are not evident. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of WHOIS transparency and missing registrar data slightly reduce trust. No critical vulnerabilities or exposed sensitive data were found. Privacy policies and cookie consent are clearly presented, supporting compliance. Overall, the website is a trustworthy, well-maintained resource for its niche audience, with strong cultural partnerships and government backing. Strategic improvements in security headers and WHOIS transparency could further enhance trust and security posture.

P

Plaine Commune Grand Paris

plainecommune.fr

56

Plaine Commune Grand Paris is a public territorial establishment serving a large population in the northern Paris region. The website provides comprehensive information about the institution's services, projects, and community engagement. It targets residents, local businesses, and public stakeholders with a focus on urban development, culture, mobility, and environmental initiatives. The digital infrastructure is built on TYPO3 CMS with modern JavaScript libraries, ensuring a responsive and user-friendly experience. Security measures include HTTPS, RSA encryption for login forms, and a GDPR-compliant cookie consent mechanism. However, formal security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website demonstrates a strong commitment to transparency, accessibility, and user engagement, positioning it as a trustworthy government portal.

R

RSI Testsysteme GmbH & Co. KG

rsi-testsysteme.de

60

RSI Testsysteme GmbH & Co. KG is a specialized German manufacturer focused on corrosion testing systems and durability test equipment. Their product portfolio includes salt spray cabinets, condensation devices, climate change test chambers, and walk-in test rooms, serving industries such as automotive, electromobility, agriculture, offshore, sanitary, wind energy, and solar technology. The company positions itself as a niche provider with strong technical expertise and longstanding industry experience. The website is professionally designed using WordPress with modern plugins and SEO tools, providing clear navigation and multilingual support (German and English). Privacy and cookie policies are implemented with GDPR compliance, and contact information is prominently displayed. The technical infrastructure is moderate in performance with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. No vulnerabilities or suspicious content were detected. Overall, the website reflects a credible small manufacturing business with a good digital presence and compliance maturity.

P

PIXMAN s.r.o.

ms-museum.org

63

The Czech Museum of Mass Spectrometry is a small, non-profit educational institution focused on the history and technology of mass spectrometry. The website provides detailed information about exhibits, educational quizzes, and virtual tours aimed at scientists, students, and enthusiasts. The museum is affiliated with reputable scientific partners, enhancing its credibility. Technically, the website uses a traditional tech stack including jQuery, Bootstrap, and Google Analytics, but some libraries are outdated, which may pose security risks. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security posture is moderate; while HTTPS is implied and cookie consent is implemented, the absence of security headers and use of outdated libraries are concerns. WHOIS data is unavailable, likely due to privacy protection, but the website content and partner affiliations support legitimacy. Overall, the site is safe, trustworthy, and serves its educational purpose effectively.

R

Radancy

radancy.com

66

Radancy is a global technology company specializing in digital talent acquisition through a cloud-based SaaS platform. The company focuses on delivering branded candidate experiences and optimizing hiring processes for enterprise clients. With over 675 platform customers, Radancy positions itself as a leader in the talent acquisition technology market. The website demonstrates a mature digital infrastructure leveraging WordPress CMS, advanced SEO plugins, and marketing automation tools such as Pardot and Google Tag Manager. Privacy compliance is well addressed with OneTrust cookie consent mechanisms and a comprehensive privacy policy. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly available. The domain WHOIS data is not publicly accessible, which slightly reduces transparency but is common for enterprise businesses. Overall, Radancy presents a professional, trustworthy, and technically sound online presence suitable for its enterprise audience.

I

igroup Internetagentur GmbH & Co. KG

i-group.de

50

igroup Internetagentur GmbH & Co. KG is a specialized TYPO3 partner agency based in Germany, offering comprehensive web development, responsive web design, SEO, digital signage, and online reporting services. With over 555 TYPO3 projects completed and a team of 12 experts, the company holds a strong market position as a reliable full-service TYPO3 agency serving national and international clients. Their website reflects a professional and consistent brand image, supported by positive trust indicators such as Google reviews and official TYPO3 partnership certification. The technical infrastructure is modern, leveraging TYPO3 CMS, jQuery, Google Analytics, and consent management tools, ensuring a good digital maturity level. Security posture is solid with HTTPS enforcement and consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website and business demonstrate high professionalism and trustworthiness.

N

NAHUALES, Alebrijes From Oaxaca

nahualesfromoaxaca.com.mx

41

The website 'NAHUALES, Alebrijes From Oaxaca' serves as a cultural and artistic platform promoting traditional Mexican folk art, specifically Alebrijes from Oaxaca. It targets art enthusiasts and cultural tourists interested in artisan crafts. The business model appears to focus on showcasing artists, cultural tours, and possibly sales of handcrafted pieces, positioning itself within a niche artisan market. The website content is basic but relevant to its cultural theme. Technically, the site employs a variety of front-end libraries and plugins such as Bootstrap, jQuery, Slider Revolution, and Owl Carousel to enhance user experience. However, there is no evidence of a CMS or advanced backend frameworks. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO practices. The site lacks structured data and meta tags that could improve search engine visibility. From a security perspective, the site does not demonstrate strong security posture. There is no visible HTTPS confirmation or security headers in the provided data, and no privacy or cookie policies are present, which raises compliance concerns. No contact information or incident response channels are provided, limiting transparency and trust. The domain uses privacy protection for WHOIS data, which is reasonable for a small cultural business. No suspicious patterns or vulnerabilities were detected. Overall, the website is functional and serves its cultural promotion purpose but requires improvements in security, privacy compliance, and contact transparency to enhance trustworthiness and user confidence.

P

PROSTĚ NA KOLECH - pojízdný bar

prostenakolech.cz

39

Prostě na kolech is a small hospitality business based in the Czech Republic offering a unique mobile bar rental service. They have transformed a horse trailer into a portable bar suitable for events such as weddings, celebrations, and corporate parties. Their service includes bar rental, optional bar staff, decorations, and delivery within a specified radius. The website is professionally designed with clear navigation and good content quality, targeting event organizers and individuals seeking a stylish bar solution for their events. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and various JavaScript libraries for UI effects and analytics. The site is mobile optimized and includes Google Analytics for visitor tracking. However, it lacks privacy and cookie policies and does not implement a cookie consent mechanism, which is a compliance gap. No forms are present, reducing data collection risks. From a security perspective, the site uses HTTPS but lacks visible security headers and vulnerability disclosures. The absence of WHOIS data for the domain is a significant concern, impacting trust and legitimacy assessments. No critical vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website presents a professional and functional online presence for a niche hospitality service but requires improvements in privacy compliance, security headers, and domain transparency to enhance trust and regulatory adherence.

P

Pivovar Volt

pivovarvolt.cz

40

Pivovar Volt is a Czech craft brewery established in 2017, specializing in a wide variety of beers including traditional Czech styles and innovative ales. The business operates a brewery, restaurant, and pension, targeting beer enthusiasts and local customers. The website reflects a well-structured and professional digital presence with detailed product information and active social media engagement. Technically, the site uses established libraries such as jQuery and Bootstrap, and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and Hotjar. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced compliance and security measures.

N

New/Mode

newmode.net

66

New/Mode is a technology company specializing in providing an empowerment and community action platform designed to help non-profits, unions, and advocacy groups amplify their voices and launch campaigns efficiently. The platform offers a suite of tools including smart petitions, email outreach, click-to-call, and campaign analytics, positioning itself as a trusted partner for leading campaigners globally. The website is built on HubSpot CMS and integrates modern analytics and marketing technologies, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, New/Mode presents a professional, credible, and secure online presence suitable for its target audience.

S

Soprema

soprema.com.br

48

Soprema is a leading global waterproofing group with a strong presence in Brazil, specializing in manufacturing and distributing waterproofing and construction chemical products. Their website targets construction professionals, applicators, technical experts, and consumers seeking waterproofing solutions. The company emphasizes quality certifications and offers extensive product lines and technical content to support their customers. Technically, the website uses a modern JavaScript stack including jQuery and Google Analytics, hosted on Gandi.net infrastructure. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and secure forms, though some security headers and incident response disclosures are missing. Overall, the website is professional, trustworthy, and compliant with basic privacy and cookie policies. No blocking or WAF mechanisms hinder access.

T

TECHNICOAT Bakeware s.r.o.

technicoat-bakeware.com

51

TECHNICOAT Bakeware s.r.o. is a Czech Republic based small manufacturing company specializing in high-quality coated and uncoated bakeware products and related coating services for industrial bakeries. The company emphasizes improving baking efficiency, hygiene, and safety through its non-stick coating technology. The website reflects a professional and consistent brand presence with clear product and service offerings, targeting industrial baking businesses. Technically, the website uses modern JavaScript libraries and Google services with GDPR-compliant cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS and consent mode implemented, but lacks explicit security headers and published security policies. WHOIS data is missing, which raises concerns about domain registration legitimacy and reduces overall trust. The site is free from adult or questionable content and provides clear contact information and business credentials. Overall, the website is functional, professional, and trustworthy from a business perspective but would benefit from improved transparency on domain registration and enhanced security disclosures.

M

Městské muzeum a galerie Vodňany

muzeumvodnany.cz

58

Městské muzeum a galerie Vodňany is a local cultural institution in Vodňany, Czech Republic, providing museum and gallery services including exhibitions, educational programs, and community events. The website reflects a well-structured and content-rich platform targeting local residents, tourists, and art enthusiasts. The institution maintains a consistent brand presence and offers clear contact information and social media engagement primarily via Facebook. Technically, the website employs modern JavaScript libraries and frameworks such as jQuery, Bootstrap, Owl Carousel, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices evident in metadata and structured navigation. Security posture is moderate; while HTTPS is implied by the URL and cookie consent mechanisms are implemented, there is a lack of visible security headers and no explicit security or incident response policies published. WHOIS data is unavailable, which limits domain trust assessment but does not detract significantly from the overall legitimacy given the official nature of the content and contact details. Overall, the website is professional and trustworthy, serving its cultural and educational mission effectively.

T

TECHNICOAT s.r.o.

technicoat.cz

53

TECHNICOAT s.r.o. is a well-established, family-owned company specializing in high-performance functional coatings based on fluoropolymer technology. Founded in 1999 and headquartered in the Czech Republic, it serves a broad range of industrial sectors including automotive, energy, food, semiconductor, chemical, and general engineering. The company is part of the ADELHELM group and operates subsidiaries such as TECHNICOAT Bakeware s.r.o. Their business model focuses on B2B service provision with a strong emphasis on quality, innovation, and customer responsiveness. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Swiper.js, with integrated Google Analytics and Consent Mode for privacy compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and published security policies could enhance protection. The absence of WHOIS data due to privacy protection is noted but does not detract significantly from the legitimacy of the business, which is supported by certifications such as ISO 9001:2015 and multiple trust indicators including customer testimonials and industry awards. Overall, the website and business present a credible, professional, and secure digital presence suitable for their industrial clientele. Recommendations include enhancing security headers, publishing a security policy and incident response information, and considering a vulnerability disclosure program to further strengthen trust and compliance.

The website www.venkov21stoleti.cz/venkov21/ serves as a regional tourism information portal for three local action groups in the Czech Republic: MAS Pošumaví, MAS Železnohorský region, and MAS Region Kunětické hory. It provides visitors with information about these regions, targeting tourists, families, and cyclists interested in exploring these areas. The site is professionally designed with clear navigation and multilingual support, enhancing user experience. Technically, it employs common JavaScript libraries such as jQuery, Flexslider, and Fancybox, and integrates Google Analytics for visitor tracking. However, the site lacks explicit privacy and cookie policies, which is a notable compliance gap. Security-wise, HTTPS usage is implied but not fully confirmed, and no advanced security headers are detected, indicating room for improvement in security posture. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and security hardening.