Security Directory

404M.COM is a Czech language blog established in 2007, focusing on domains, investing, and internet business topics. It provides regularly updated content targeting investors, domain enthusiasts, and internet entrepreneurs. The website operates on WordPress CMS hosted by WEDOS Internet, a.s., a reputable Czech hosting provider. The technical infrastructure includes common web technologies such as PHP, JavaScript, and Google Analytics for tracking. The site demonstrates good SEO practices and mobile optimization but lacks formal privacy and cookie policies, which impacts compliance. Security posture is moderate with SSL enabled but missing DNSSEC and security headers. No WAF or blocking mechanisms are detected, and content is safe for general audiences.

W

WEBY GROUP, s.r.o.

webyhosting.sk

66

WEBY GROUP, s.r.o. operates the website Webyhosting.sk, providing domain registration and web hosting services primarily targeting Slovak customers. The company has been in business since 2001, offering a range of hosting plans, SSL certificates, web development, and backup services. Their market position is that of a well-established local hosting provider with a medium-sized client base and a focus on reliability and customer support. Technically, the website uses a modern tech stack including jQuery, Fancybox, and Google Analytics, running on a proprietary CMS (Unisite) and self-managed cloud infrastructure with branded HP servers. The site is mobile-optimized and SEO-friendly with good content quality and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, with no signs of blocking or WAF interference.

E

Ekofond SPP, n.o.

greenfluenceri.sk

56

The website greenfluenceri.sk represents a Slovak non-profit organization Ekofond SPP, n.o., promoting an environmental competition focused on energy solutions. The site highlights competition winners and encourages public participation through voting. The business operates in the energy sector with a niche focus on environmental awareness and community engagement. The domain is newly registered in 2024, consistent with the competition's timeline, and uses DNSSEC and HTTPS, indicating a secure and legitimate presence. Technically, the website uses an older jQuery version alongside Google Analytics and Digital Circle tracking scripts. The CMS appears to be a custom or niche Claro Admin system. The site is moderately optimized for mobile and performance but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. Navigation and design are professional and consistent with the brand. Security posture is adequate with HTTPS and DNSSEC but could be improved by adding security headers and updating JavaScript libraries. Privacy compliance is partial due to the absence of cookie consent banners despite having a linked privacy policy. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy but would benefit from enhanced security and privacy practices. Strategic recommendations include implementing security headers, adding cookie consent, updating libraries, publishing security policies, and improving privacy compliance to strengthen trust and regulatory adherence.

P

Principles for Responsible Investment (PRI)

unpri.org

68

The Principles for Responsible Investment (PRI) is a UN-supported global network of investors dedicated to promoting sustainable investment by integrating environmental, social, and governance (ESG) factors into investment decisions. The organization provides a comprehensive suite of resources, tools, and collaborative platforms to support asset owners, managers, and financial institutions in responsible investment practices. The website reflects a mature digital presence with extensive content, clear navigation, and a professional design consistent with its global leadership position in responsible investment. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, Hotjar for analytics, and Usercentrics for consent management, hosted on Amazon Cloudfront CDN. The site is mobile optimized and accessible, with good SEO practices and performance. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers could be improved. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. The absence of detailed WHOIS data limits domain trust analysis, but the website's affiliation with the United Nations and its professional content strongly support legitimacy. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the PRI website demonstrates a strong business and technical foundation with good security and privacy practices, suitable for its role as a leading responsible investment network. Strategic improvements in security headers and WHOIS transparency could further enhance trust and compliance.

M

Money magazine

moneymag.com.au

63

Money magazine is a well-established Australian personal finance media company offering a wide range of financial news, advice, reviews, and multimedia content including podcasts and videos. It targets Australian consumers interested in personal finance, investing, property, superannuation, and insurance. The website demonstrates a strong market position as Australia's longest-running and most-read personal finance magazine with a consistent brand and professional content. Technically, the site uses modern web technologies such as Bootstrap, Google Tag Manager, Microsoft Clarity, and Facebook Pixel, indicating a mature digital infrastructure. The site is mobile optimized and SEO friendly, though accessibility features could be improved. Security posture is strong with HTTPS enforced and secure forms, but explicit security headers and privacy policies are not clearly visible in the provided content. The WHOIS data is privacy protected, which is typical for media companies, but limits domain registration transparency. Overall, the site is trustworthy and professional with extensive content and strong social media presence.

I

InterWay, a. s.

interway.sk

66

InterWay, a. s. is a well-established Slovak IT company with over 26 years of experience providing comprehensive IT infrastructure support, cloud services, cybersecurity consulting, and web application development. The company targets both private and public sector clients, including government ministries, banks, and healthcare institutions, positioning itself as a leading IT solutions provider in Slovakia. Their business model combines service delivery with proprietary products under the WebJET and IwayCloud brands. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Google Tag Manager, with a proprietary CMS platform (WebJET). The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Performance is moderate, with room for improvement in accessibility and security headers. Analytics usage is moderate and privacy-conscious. From a security perspective, the site uses HTTPS with good SSL configuration and employs CSRF tokens in forms. However, it lacks explicit security policies and incident response contact information, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data aligns well with the company's claims, supporting legitimacy. Overall, InterWay's website demonstrates a strong business presence and technical maturity with good privacy compliance. Strategic improvements in security policy transparency and accessibility would further enhance their security posture and user trust.

T

TRANSPETROL, a.s.

transpetrol.sk

57

TRANSPETROL, a.s. is the sole operator of the oil pipeline system in Slovakia, providing critical transit and domestic transportation and storage of crude oil. The company holds a strategic position in the Slovak energy sector, serving primarily the national economy and business partners. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support via Weglot. Security posture is solid with HTTPS, cookie consent, and public fraud warnings, though formal security and incident response policies are not published. Overall, the site demonstrates good compliance with GDPR and transparency in data protection.

Z

Západoslovenská distribučná, a. s.

zsdis.sk

70

Západoslovenská distribučná, a. s. operates as a major electricity distribution company in western Slovakia, serving both households and businesses. The website provides comprehensive information about their services including new connections, changes, disconnections, and e-mobility solutions. The company positions itself as a reliable utility provider with a focus on customer service and regulatory compliance. Technically, the website employs modern JavaScript libraries such as jQuery and Swiper.js, and integrates Cookiebot for cookie consent management, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement and standard security headers, with no critical vulnerabilities detected in the visible content. Privacy compliance is well addressed through detailed cookie policies and consent mechanisms, although explicit security and incident response policies are not publicly available. Overall, the site demonstrates a professional and trustworthy online presence consistent with a large utility provider.

M

MinterEllison

minterellison.com

72

MinterEllison is a leading multinational law and professional services firm based in Australia, recognized as the largest law firm in the country by number of lawyers. The company offers a broad range of legal and consulting services including AI advisory, debt restructuring, infrastructure consulting, and sustainability reporting. Their website reflects a mature digital presence with comprehensive content tailored to business clients seeking expert legal and consulting solutions. Technically, the site leverages modern technologies such as Sitecore CMS, Google Tag Manager, Facebook Pixel, Hotjar, and LinkedIn Insight Tag, indicating a well-integrated marketing and analytics infrastructure. The security posture is strong with HTTPS enforced and no visible exposed sensitive data, though improvements can be made by adding security headers and explicit cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

D

Diakonie Deutschland

sozial-o-mat.de

65

Diakonie Deutschland is a prominent evangelical non-profit organization in Germany focused on social welfare, advocacy, and support services. The website provides election decision aids such as the Sozial-O-Mat to help voters compare social-political positions of parties and the organization. The site targets German voters interested in social policy and welfare issues. Technically, the website is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates consent management via Usercentrics alongside analytics tools like Google Analytics and Matomo. The site is hosted with Cloudflare DNS and employs HTTPS with strong SSL configuration. Security posture is solid with no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by consistent branding, partner affiliations, and professional content. Overall, the website is well-designed, accessible, and trustworthy, serving its non-profit mission effectively.

Naučnou stezkou.cz is a niche informational website dedicated to educational trails in the Czech Republic. It provides articles, categorized listings by region, and photo galleries related to various trails. The site targets general audiences interested in nature, hiking, and educational tourism within the Czech Republic. The business model is primarily content-driven, focusing on providing valuable information rather than commercial services. The website uses WordPress CMS with plugins such as NextGEN Gallery and Font Awesome icons, and it employs Google Analytics for visitor tracking. The technical infrastructure is moderate with basic mobile optimization and SEO practices in place. Security posture is adequate with HTTPS enabled but lacks important security headers and shows backend PHP warnings, which could expose sensitive information. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. The absence of WHOIS data reduces domain trustworthiness, although the website content appears legitimate and consistent. Overall, the site scores moderately on AI evaluation, with recommendations to improve backend error handling, implement privacy policies, and enhance security headers to strengthen trust and compliance.

P

Progresio

naucnechodniky.eu

60

The website naucnechodniky.eu is an educational platform dedicated to providing comprehensive information about educational hiking trails in Slovakia. It serves primarily schools, educators, and the general public interested in nature, culture, and outdoor activities. The platform offers a searchable database of trails, educational materials, and interactive maps, positioning itself as a niche resource within the Slovak educational and tourism sectors. The site is developed and maintained by Progresio and affiliated with the Department of Physical Geography and Geoinformatics at Comenius University in Bratislava, lending academic credibility. Technically, the website is built on WordPress CMS with a modern yet somewhat dated technology stack including Bootstrap 3.3.7, jQuery, and FontAwesome. It integrates Google Analytics, Google reCAPTCHA, and Smartlook for analytics and security purposes. The site is hosted by WEDOS Internet, a reputable Slovak hosting provider. Performance and mobile optimization are good, though some technical debt is noted in the use of multiple versions of libraries and older Bootstrap version. From a security perspective, the site enforces HTTPS, uses cookie consent compliant with GDPR, and integrates anti-spam measures. However, explicit security headers are not clearly detected, and some outdated libraries could pose minor risks. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear cookie policies and consent mechanisms. Overall, the website presents a low-risk profile with a solid educational mission, good technical implementation, and adequate security posture. Strategic improvements in updating libraries, consolidating scripts, and enhancing security headers would further strengthen the platform's resilience and user trust.

S

SocialAppsHQ

socialappshq.com

52

SocialAppsHQ is an all-in-one marketing platform that provides comprehensive resources and guides across a wide range of digital marketing channels including social media platforms, SEO, email marketing, and website design. The platform targets marketers, small businesses, and digital marketing professionals seeking to enhance their marketing strategies and execution. The website is well-structured, professionally designed, and offers a broad spectrum of marketing solutions and agency directories, positioning itself as a valuable resource hub in the marketing technology sector. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern web technologies and SEO best practices. Performance and mobile optimization are good, though accessibility could be improved. Security posture is adequate with HTTPS enforced but lacks advanced security headers and published security policies. Privacy compliance is basic with privacy and terms pages present but no cookie consent mechanism. Contact information is available via email and contact form, but no phone or physical address is provided. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the site is professional and trustworthy but could benefit from enhanced security and privacy transparency.

P

Polska Organizacja Turystyczna

puola.travel

60

The website www.puola.travel/fi serves as the official Finnish-language tourism portal for Poland, managed by the Polska Organizacja Turystyczna (Polish Tourism Organization). It provides comprehensive travel information, cultural insights, news updates, and contact options aimed at Finnish-speaking tourists interested in visiting Poland. The site is positioned as a government-backed platform promoting Poland's tourism sector in Nordic countries, offering services such as travel tips, event news, and newsletter subscriptions. Technically, the site is built on Joomla CMS and integrates modern analytics and marketing tools including Google Tag Manager, Google Analytics, Matomo, and Google reCAPTCHA for form security. The website demonstrates good mobile optimization, basic accessibility features, and solid SEO practices. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect forms, ensuring GDPR compliance with explicit user consent mechanisms. The WHOIS data is unavailable due to malformed responses, which slightly reduces domain trustworthiness, but the official nature of the content and government references mitigate this concern. Overall, the site maintains a good security posture with room for improvement in security headers and transparency. The overall risk assessment is moderate with a recommendation to enhance security headers, publish security policies, and improve WHOIS transparency if possible. The site is safe for general audiences, free from adult or questionable content, and professionally maintained.

Česká letecká servisní a.s. is a specialized aviation service company established in 1997, focusing on modernization, integration, and repair of avionics and special equipment for military, para-military, and civil aviation sectors. The company operates primarily in the Czech Republic and across multiple European countries, positioning itself as a leading expert in its field. Their key services include military and civil aviation modernization projects, avionics sales and servicing, and integration of mission-specific equipment. The website reflects a professional and consistent brand image with clear business information and certifications such as EASA PART 145 and PART 21 J/G, enhancing trust and credibility.

M

MORAVIA EVENTS s.r.o.

nocnibehy.cz

35

The website nocnibehy.cz represents a regional event organizer, MORAVIA EVENTS s.r.o., specializing in night running races in the Zlín region of the Czech Republic. The site provides event registration, race results, photo galleries, and an e-shop for gift vouchers, targeting running enthusiasts and the general public interested in sports events. The business is relatively young, founded in 2022, and maintains an active social media presence to engage its audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and Google Analytics integration. The site is mobile-optimized with good SEO practices and moderate performance. Hosting and domain registration are consistent with the business profile, using REG-GRANSY as registrar and likely hosting provider. From a security perspective, the site uses HTTPS and implements a cookie consent banner, indicating basic privacy compliance. However, it lacks explicit privacy and security policies, security headers, and incident response information, which are areas for improvement. No critical vulnerabilities or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, the website demonstrates a good level of professionalism and business credibility but would benefit from enhanced security policies and privacy documentation to improve trust and compliance.

T

Taneční klub Fortuna Zlín z.s.

tkfortuna.cz

51

Taneční klub Fortuna Zlín is a well-established dance club based in Zlín, Czech Republic, with approximately 38 years of experience. The club offers a variety of dance courses for children, youth, adults, and seniors, including dance sport training and event organization. Their business model focuses on community engagement and education through dance, supported by local partners and sponsors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the website employs modern web technologies such as Bootstrap 5, jQuery, FontAwesome, and Google Analytics, ensuring good mobile optimization and moderate performance. The presence of a cookie consent banner and privacy policy indicates attention to GDPR compliance. However, the absence of detected security headers and lack of a vulnerability disclosure or incident response page suggest areas for security improvement. From a security perspective, the site uses HTTPS and secure login forms, but the missing WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. No critical vulnerabilities or exposed sensitive data were found in the content. Overall, the site demonstrates a good security posture but would benefit from enhanced security headers and clearer incident response information. The overall risk assessment is moderate with a recommendation to verify domain registration details and improve security policies. Strategic improvements in security practices and transparency will enhance trust and compliance, supporting the club's community-focused mission.

F

FidAR e.V.

fidar.de

44

FidAR e.V. is a German non-profit organization dedicated to increasing the representation of women in supervisory boards and leadership roles within the economy. The website serves as a comprehensive platform offering research indices, advocacy, educational programs, and partnership information to support gender diversity in corporate governance. The organization targets women professionals, policymakers, and corporate stakeholders interested in gender equality. Technically, the site is built on TYPO3 CMS, uses standard JavaScript libraries like jQuery and Owl Carousel, and is hosted on German servers with secure HTTPS and cookie consent mechanisms in place. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. The site is professional, well-branded, and trustworthy with clear contact details and social media presence. No critical vulnerabilities or suspicious content were detected.

L

LAGEN

lagen.cz

58

LAGEN is a Czech company specializing in the manufacture and sale of high-quality leather goods including wallets, bags, and accessories. Established in 1997, it operates both an e-commerce platform and wholesale distribution, targeting retail customers and business clients. The website reflects a well-established brand with consistent branding and a clear product focus on leather craftsmanship. Technically, the site employs a modern JavaScript stack with tracking and marketing tools such as Google Analytics, Facebook Pixel, and reCAPTCHA, ensuring a functional and user-friendly experience with good mobile optimization. Security posture is solid with HTTPS and form protections, though it lacks some advanced security headers and a published security policy. Privacy compliance is well addressed with visible cookie consent and a privacy policy in Czech language. The absence of WHOIS data reduces transparency and trust slightly, but the overall business credibility remains high based on website content and contact information.

T

Travesti Modeller

ankaratravestimodeller.com

51

The website 'Travesti Modeller' serves as a niche content portal focused on showcasing travesti models and related community content in Ankara, Turkey. It targets an adult audience interested in this specific cultural and social segment. The site is built on WordPress with common SEO and UI plugins, indicating a moderate level of digital maturity. It uses Google Analytics for visitor tracking but lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing advanced security headers and incident response information. The domain WHOIS data is missing, raising concerns about domain legitimacy and trustworthiness. Overall, the site is functional and content-rich but requires improvements in privacy, security, and business transparency to enhance trust and compliance.

İ

İstanbul Travesti Portalı

istanbultravestii.com

55

İstanbul Travesti Portalı is a niche community website dedicated to the travesti community in Istanbul, providing profiles, cultural articles, event information, and support resources. The platform positions itself as a safe and inclusive space for travesti individuals to connect and share experiences. Technically, the site is built on WordPress with common SEO and analytics tools, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy/cookie policies, which are areas for improvement. The absence of WHOIS registrant data reduces domain trustworthiness, though the site content and contact information support its legitimacy. Overall, the site serves a specialized community with a focus on cultural and social engagement.

N

Netstep

netstep.cz

51

Netstep is a small Czech digital marketing agency specializing in online promotion and sales support for e-commerce businesses. The company is operated by a female duo offering services including PPC campaigns, SEO strategies, social media management, and customized portfolios. They emphasize reliable communication, budget-conscious solutions, and continuous professional development. The website is well-structured, professionally designed, and includes clear contact information and social media links. However, the absence of privacy and terms of service pages and the use of an outdated jQuery version represent compliance and security gaps. WHOIS data is unavailable, limiting domain legitimacy verification. The site uses Google Tag Manager and Google Analytics with a cookie consent mechanism, indicating some privacy awareness.

S

Śląskie. Informacja Turystyczna Województwa Śląskiego

slaskie.travel

47

The website slaskie.travel serves as the official tourism information portal for the Silesian Voivodeship in Poland. It provides comprehensive information on regional attractions, cultural heritage, nature, events, accommodation, and gastronomy, targeting tourists and visitors interested in this region. The site is well-structured with multiple language options and accessibility features, indicating a mature digital presence. Technically, it employs modern web technologies including Bootstrap, jQuery, and various analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy policy or terms of service detected. Overall, the domain age and country alignment support the legitimacy of the site as a regional government-affiliated portal.

K

KMVS, advokátní kancelář, s.r.o.

kmvs.cz

49

KMVS, advokátní kancelář, s.r.o. is a well-established Czech law firm operating since 2006, specializing in legal services across healthcare, pharmaceuticals, advertising, intellectual property, and data protection sectors. The firm serves primarily business clients and offers additional educational services such as workshops and webinars. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses jQuery, Google Fonts, and Google Analytics, and is built on the WebRedakce CMS platform. Cookie consent is actively managed via KookieCheck, indicating attention to privacy compliance, although no explicit privacy policy or terms of service pages were found. Security posture is moderate with HTTPS usage implied but lacking visible security headers and detailed incident response information. WHOIS data is unavailable, which reduces transparency and trustworthiness from a domain registration perspective.

R

Respect APP s.r.o.

respectapp.com

42

Respect APP s.r.o. is a Slovak advertising agency specializing in comprehensive marketing strategies, television spots, logo design, and corporate identity services. The company positions itself as a creative agency that brings ideas to life, serving businesses seeking to enhance or maintain their brand image. The website content is professional and showcases a portfolio of works, awards, and client references, indicating a solid market presence in Slovakia. Technically, the website is built on WordPress with modern plugins and libraries, including jQuery, Slick Carousel, and Gravity Forms, and uses HTTPS with valid SSL certificates. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy. Security posture is moderate with HTTPS and secure forms but lacks security headers and explicit privacy and terms policies. Overall, the site is safe, well-designed, and credible but would benefit from improved compliance and security transparency.

S

Slaska Organizacja Turystyczna

beskidy.travel

48

The website beskidy.travel serves as a regional tourism portal for the Beskidy and Silesian Cieszyn regions in Poland, operated by the Slaska Organizacja Turystyczna. It provides comprehensive information on cultural heritage, tourist trails, events, accommodations, gastronomy, and multimedia content aimed at tourists and visitors interested in exploring the region. The business model focuses on regional tourism promotion and information dissemination, positioning itself as an important regional authority in hospitality and tourism sectors. Technically, the site employs a modern tech stack including Bootstrap, jQuery, Google Tag Manager, and Hotjar, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is limited due to absence of a visible privacy policy, though cookie consent is implemented. Overall, the site is professional and trustworthy with room for improvement in security and privacy transparency.

D

Domain Protection Services, Inc.

slaskcieszynski.travel

45

The website slaskcieszynski.travel serves as a regional tourism portal focused on the Beskidy and Śląsk Cieszyński areas in Poland. It provides comprehensive travel information including thematic and tourist routes, cultural heritage sites, events, accommodation, gastronomy, and multimedia content such as galleries and virtual tours. The platform targets tourists and travelers interested in exploring these regions, positioning itself as a key regional information provider with a small-scale business model. The domain is relatively new, registered in 2019, and uses privacy protection services typical for such websites. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Font Awesome, Google Tag Manager, Google Analytics, and Hotjar for analytics and user behavior tracking. The site is mobile optimized with good accessibility and SEO practices. It uses the SonataCore CMS framework, indicating a structured content management approach. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options, which are recommended to enhance security posture. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website is safe, professional, and trustworthy for general audiences interested in regional tourism. Strategic improvements include enabling DNSSEC, adding security headers, publishing comprehensive privacy and security policies, and enhancing incident response transparency to strengthen trust and compliance.

N

NextPage Media, s.r.o.

nextpagemedia.cz

45

NextPage Media, s.r.o. is a Czech media company operating a portfolio of well-known finance, business, and lifestyle websites and printed magazines. It serves a broad audience of Czech and Slovak users interested in financial news, investment, and lifestyle content. The company is a subsidiary of Partners HoldCo and manages multiple high-traffic portals and lead generation platforms. The website is professionally designed with consistent branding and good content quality. Technically, it uses modern tracking and consent management tools, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and some security best practices, but lacks published security policies and incident response information. Privacy compliance is partial, with cookie consent implemented but no explicit privacy policy found on the main site. Overall, the site is trustworthy and safe for general audiences.

S

STORMWARE s.r.o.

moja-pohoda.sk

55

STORMWARE s.r.o. operates the website www.moja-pohoda.sk, which serves as a portal for the Moja POHODA magazine targeted at users of the POHODA accounting software. The company is a recognized software provider in Slovakia, offering comprehensive accounting solutions for small and medium enterprises. The website provides downloadable magazine issues, business-related content, and links to the main product and support sites. Technically, the site uses standard web technologies including jQuery and Google Tag Manager, with a cookie consent mechanism compliant with GDPR. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Contact information is clearly presented, enhancing business credibility.

S

Stormware s.r.o.

mojepohoda.cz

56

Stormware s.r.o. operates the website mojepohoda.cz, which serves as a digital magazine platform for users of the POHODA accounting software. The site provides triannual publications with updates on the software and related business topics such as accounting, taxes, and law. Stormware is a recognized software producer in the Czech Republic with a strong market presence in the accounting software sector. The website targets small to medium-sized businesses, accounting professionals, and entrepreneurs who use or are interested in the POHODA system. Technically, the website employs standard web technologies including jQuery and Google Tag Manager for analytics and marketing. The site is served over HTTPS with a good SSL configuration and includes a comprehensive cookie consent mechanism that complies with GDPR requirements. The site is moderately optimized for performance and mobile devices, with good SEO and accessibility basics. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent management. However, it lacks explicit security headers and published security or incident response policies. The absence of WHOIS data reduces transparency about domain registration, which is a minor concern but does not detract significantly from the site's legitimacy given the strong brand presence and consistent content. Overall, mojepohoda.cz is a professional, trustworthy website supporting a well-established software product. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance its security posture and trustworthiness further.

J

Jitka Skuhrava Glass

jitkaskuhrava.com

42

Jitka Skuhrava Glass is a small artisan glass art business based in the Czech Republic, specializing in personalized glass and lighting products. The website serves primarily as a brand showcase with minimal content and limited direct customer interaction features. The technical infrastructure is modest, utilizing common JavaScript libraries such as jQuery and Modernizr, and is hosted on Wedos servers. Google Analytics is implemented for visitor tracking, but no cookie consent or privacy policies are present, indicating gaps in privacy compliance. Security posture is basic with HTTPS implied but lacking security headers and DNSSEC, which could be improved to enhance protection. Overall, the domain registration is consistent with the business profile, supporting legitimacy. The website is safe for general audiences with no adult or questionable content detected.

P

People For Net a.s.

realbonus.cz

54

RealBonus.cz is a Czech real estate listing platform established in 2012, operated by People For Net a.s. The website offers a broad range of property listings including apartments, houses, commercial properties, and land for sale and rent. It targets individuals and businesses seeking real estate in the Czech Republic, providing categorized search options and a directory of real estate agencies. The site is professionally designed with consistent branding and clear navigation, though it uses some outdated technologies such as jQuery 1.7.2. The technical infrastructure includes standard web technologies and Google Analytics for tracking. Security measures are basic, with cookie consent implemented but lacking advanced security headers or explicit security policies. No blocking or WAF mechanisms are detected, and the site is fully accessible. Overall, the website is functional and trustworthy but could benefit from modernizing its tech stack and enhancing security and compliance documentation.

Ú

Úschova u advokáta

uschovauadvokata.cz

47

Úschova u advokáta is a Czech legal service specializing in secure escrow (advokátní úschova) for real estate transactions. The company offers an online platform allowing clients to monitor escrow status and manage documents securely. Their services include escrow of purchase prices, legal contract drafting and review, and cooperation with real estate agencies. The website positions the company as a cost-effective and efficient alternative to traditional bank or notary escrow services, emphasizing security and transparency backed by professional legal standards and insurance. Technically, the website employs a modern tech stack including jQuery, Bootstrap, WOW.js for animations, Dropzone.js for file uploads, and Google reCAPTCHA for form security. It uses HTTPS with a strict Content-Security-Policy header, ensuring a secure browsing experience. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Security posture is strong with HTTPS, CSP, and reCAPTCHA integration, but lacks published security policies or incident response information. Privacy compliance is partially met with a privacy policy present and GDPR adherence, but no cookie consent mechanism is implemented. WHOIS data is missing, which reduces domain trustworthiness, though the website content and contact details appear professional and legitimate. Overall, the site is well-constructed for its business purpose but would benefit from enhanced transparency in domain registration, cookie consent, and security documentation to improve trust and compliance.

Katastr.cz is an established online portal providing access to cadastral information and real estate listings primarily for the Czech Republic. The website offers services such as searching parcels, buildings, units, proceedings, and maps, supplemented by real estate listings through a partner site. The target audience includes general public users interested in property and cadastral data. The business model relies on advertising and partner referrals, positioning itself as a key resource in the Czech real estate sector. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, Google Fonts, Google reCAPTCHA, and Google Analytics for tracking. The site is mobile optimized with good SEO practices and basic accessibility features. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS and reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. The absence of explicit security policies and incident response information is noted. WHOIS data is privacy protected, which is common but reduces transparency. Overall, the security posture is solid but could be enhanced with additional headers and compliance features. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security and incident response policies, and maintaining regular audits of third-party scripts to enhance trust and compliance.

J

Jiří Tschiharsch

premiovymakler.cz

49

The website premiovymakler.cz represents a Czech real estate brokerage business operated by Jiří Tschiharsch, a professional real estate agent with over a decade of industry experience. The site offers a range of services including property sales, purchases, financing assistance, and renovations, targeting local clients in the Czech Republic. The business is positioned as a premium agent with strong client testimonials and a focus on personalized service. Technically, the website employs modern web technologies such as Bootstrap 5, jQuery, and integrates analytics tools like Google Analytics and Facebook Pixel. It is hosted under the domain registered with REG-WEDOS, indicating a reliable hosting environment. The site is mobile-optimized and features good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved. No vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy digital presence for a small real estate business. Strategic improvements in security policies and accessibility could enhance its posture further.

S

SQUID.CZ s.r.o.

softreal.cz

49

Softreal.cz is a Czech Republic based small business offering a SaaS real estate software platform tailored for real estate agents and agencies. The platform provides tools for property listing management, export to real estate portals, client inquiry management, AI-generated descriptions, and reporting features. The website is professionally designed with good content quality and clear navigation, targeting real estate professionals seeking efficiency in their operations. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, and Facebook Pixel, with a cookie consent mechanism implemented to support privacy compliance. However, the absence of a published privacy policy and terms of service pages limits full compliance visibility. Security posture is moderate with HTTPS usage but lacks explicit security headers and vulnerability disclosure information. WHOIS data is unavailable, which raises concerns about domain registration legitimacy, though the website content and business information appear consistent and professional. Overall, the site presents a trustworthy business front but would benefit from improved transparency and security practices.

H

Hotelchamp

hotelchamp.com

68

Hotelchamp is a technology company specializing in providing SaaS solutions for the hospitality industry, focusing on enabling hotels to increase direct bookings and improve guest engagement. Their product suite includes a booking engine, metasearch advertising, website personalization tools, and hotel website building services. The company targets hoteliers and hotel chains, positioning itself as a trusted partner with a portfolio of reputable hotel clients and positive testimonials. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries and integrations such as Google Tag Manager, Cookiebot for consent management, and Weglot for multilingual support. The site demonstrates good performance, mobile optimization, and SEO practices, with a professional and consistent design. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security headers and does not publish a visible security policy or vulnerability disclosure. The WHOIS data for the domain is missing, which is unusual and slightly reduces trustworthiness, though the website content and branding strongly indicate a legitimate business. Overall, Hotelchamp presents a mature digital presence with strong business credibility and technical implementation. Strategic improvements in security transparency and domain registration clarity would further enhance trust and compliance.

M

MontaVista Software, LLC

mvista.com

74

MontaVista Software, LLC is a specialized technology company providing commercial embedded Linux solutions tailored for telecom, industrial, military-aerospace, medical, and embedded security markets. Their offerings include embedded Linux distributions, security certification services, Kubernetes support for embedded systems, and extended lifecycle support for popular Linux baselines. The company positions itself as an experienced and trusted provider with a strong client base including major global technology firms. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Google Analytics, and integrates third-party services like Google Maps and OpenWidget chat. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies with user consent mechanisms, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and demonstrates adherence to multiple security frameworks and certifications. However, it lacks some security headers and explicit incident response contact information. The absence of WHOIS registration data for the domain is a notable anomaly that impacts trustworthiness from a domain registration standpoint. Overall, the website is professional, content-rich, and trustworthy in terms of business and technical presentation, but the missing WHOIS data warrants further investigation to confirm domain legitimacy and ownership.

S

Sankt Oberholz

sanktoberholz.de

43

Sankt Oberholz is a Berlin-based real estate company specializing in flexible office rentals, coworking spaces, meeting rooms, and event locations. The company targets freelancers, self-employed professionals, teams, and companies seeking adaptable office solutions in Berlin. Their business model focuses on providing flexible rental periods and a variety of office sizes and event venues, positioning them as a key player in Berlin's coworking and office rental market. The website is professionally designed using WordPress with Gravity Forms for data collection and Borlabs Cookie for consent management, indicating a moderate level of digital maturity. Google Analytics is used for visitor tracking, integrated via Google's Site Kit plugin. Security posture is generally good with HTTPS enforced and consent mechanisms in place; however, the absence of explicit privacy policies, security headers, and incident response information suggests room for improvement. Overall, the website is trustworthy and professional, with clear business information and contact channels, but could enhance compliance and security transparency.

G

Gutshaus Gramkow

gutshaus-gramkow.de

55

Gutshaus Gramkow is a small hospitality business located in Germany offering family-friendly vacation rentals on a historic farm near the Baltic Sea. The website provides detailed information about their Ferienwohnungen (vacation apartments), on-site restaurant, and recreational activities for families and individuals. The business targets families, couples, and individuals seeking a rural vacation experience with access to nature and local attractions. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Google Tag Manager and Usercentrics for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is addressed with a privacy policy and cookie consent mechanism in place. Overall, the website reflects a legitimate and professional small hospitality business with a strong regional focus.

W

WOGEMA Wohnungsgesellschaft Malchin mbH

wogema.de

59

WOGEMA Wohnungsgesellschaft Malchin mbH is a medium-sized real estate company based in Malchin, Germany, specializing in the rental, sale, and management of residential and commercial properties. The company emphasizes social and barrier-free housing solutions, serving residents and property clients in the Malchin region. Their business model focuses on providing comprehensive real estate services including property management, sales, and tenant support. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website is built on the Mono CMS platform, utilizing modern web technologies such as JavaScript, jQuery, and Cookiebot for consent management. The site is mobile-optimized, accessible, and incorporates SEO best practices. Performance is moderate, with external dependencies on Google Analytics and other tracking services managed via explicit user consent. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms to comply with GDPR. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be implemented to enhance protection. No critical vulnerabilities or exposed sensitive data were found. Incident response and security policies are not publicly documented, representing an area for improvement. Overall, the website presents a trustworthy and professional digital presence with good privacy compliance and moderate security posture. Strategic enhancements in security headers and incident response transparency would further strengthen the company's risk management and user trust.

The website webnem.cz is operated by DALTEN media s.r.o., a Czech company specializing in providing custom web presentation services for real estate properties. The service enables real estate agents and property sellers to create dedicated websites for their listings, enhancing marketing and SEO capabilities. The business model is subscription-based, charging monthly fees for property websites and annual fees for domain registration. The company leverages over 20 years of experience and partnerships with multiple real estate platforms, positioning itself as a trusted provider in the Czech real estate market. Technically, the website uses modern JavaScript libraries including jQuery and Google Analytics for tracking, with a responsive design optimized for mobile devices. Cookie consent management is implemented with granular user controls, ensuring GDPR compliance. Hosting and domain registration are consistent with the registrar REG-WEBGLOBE, and the domain age aligns with the company's founding date. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers such as CSP or HSTS. No incident response or security policy information is published, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a professional and trustworthy front with good content quality and business credibility. The main risks relate to the absence of published security policies and some missing security headers. Strategic improvements in these areas would enhance the security posture and compliance maturity.

S

solidpixels.

vroomagazine.com

65

VROOMAGAZINE.com is an online lifestyle and travel magazine targeting discerning men aged 30 and above, focusing on travel, gear, lifestyle, mobility, business, and finance. The website is professionally designed, with a consistent brand presence and rich editorial content in Czech. The technical infrastructure leverages modern web technologies including Google Analytics, Facebook Pixel, and a proprietary CMS platform (solidpixels.). The site is mobile optimized and uses interactive elements like sliders and lightboxes to enhance user experience. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages found. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the site is functional, professional, and trustworthy but could improve transparency and compliance documentation.

G

Giersiepen GmbH & Co. KG

gira.at

51

Gira is a well-established German manufacturer specializing in smart home technology and electrical installation products such as switches, sockets, and security systems. The company maintains a strong market position with a professional website offering comprehensive product information, partner networks, and customer support. Their digital infrastructure leverages modern web technologies including Vue.js, Google Tag Manager, Google Analytics, Facebook Pixel, and Matomo for analytics, ensuring a mature and data-driven online presence. Security measures include HTTPS enforcement, cookie consent mechanisms, and reCAPTCHA integration for form protection. However, the absence of WHOIS data for the domain www.gira.com in the .com registry is unusual and warrants monitoring, though the website's professionalism and contact transparency mitigate immediate concerns. Overall, Gira demonstrates a robust security posture and compliance with GDPR, supporting its credibility as a trusted brand in the smart home industry.

A

Austropapier

austropapier.at

60

Austropapier is the official association representing the Austrian paper industry, advocating for its 23 members and nearly 8,000 employees. The organization emphasizes sustainability, renewable energy use, and high recycling rates, positioning itself as a leader in the European paper sector. The website provides news, educational resources, and industry insights, targeting stakeholders, policymakers, and the public interested in paper industry developments. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent management, though some security headers could be improved. The site is well-structured, mobile-optimized, and SEO-friendly, but lacks explicit privacy and terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business identity.

M

Müritz-Yacht Management e.K.

mueritz-yacht.de

50

Müritz-Yacht Management e.K. is a well-established medium-sized company based in Germany specializing in yacht charter, houseboat rentals, boat sales, individual yacht construction, and comprehensive yacht services. Founded in 1993, the company has grown to become a recognized and certified player in the Mecklenburg region, offering a broad range of maritime leisure services to tourists and boating enthusiasts. Their website reflects a professional and customer-focused approach, providing detailed information about their offerings and easy access to contact channels. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as Bootstrap, jQuery, and slick carousel for a responsive and engaging user experience. The site is mobile-optimized and includes SEO best practices, although performance is moderate. Security measures include HTTPS enforcement and cookie consent mechanisms, but there is room for improvement in explicit security headers and published security policies. From a security perspective, the site maintains a good posture with no detected vulnerabilities or malicious content. Privacy compliance is strong, with a comprehensive privacy policy and GDPR-aligned cookie consent. However, the absence of a public security policy or incident response contact is noted. Overall, the domain registration and website content are consistent and trustworthy, supporting the company's legitimacy. Strategically, Müritz-Yacht Management should focus on enhancing their security transparency and incident readiness, while continuing to leverage their strong market position and customer trust. The website serves as a robust digital front for their business, effectively supporting their operational and marketing goals.

I

ITF

biogasplatform.eu

65

The Biogas and Gasification Matchmaking Platform is a specialized online service designed to connect stakeholders in the biogas and gasification sectors globally. It offers company profiles, business opportunities, and a knowledge base to facilitate collaboration and project development. Supported by European Union Horizon 2020 funding, the platform positions itself as a niche marketplace for industry participants seeking partnerships and information. Technically, the website is built using Angular 11 with Material Design components, integrating Google Analytics and Google Maps for user tracking and visualization. The site demonstrates good mobile optimization, accessibility, and moderate performance, reflecting a modern and professional digital infrastructure. From a security perspective, the platform enforces HTTPS and provides a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhancing trust and compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, the platform is trustworthy, professionally designed, and compliant with privacy regulations, making it a reliable resource for its target audience. Strategic improvements in security transparency and contact information could further strengthen its position and user confidence.

G

Giersiepen GmbH & Co. KG

gira.com

56

Gira, operated by Giersiepen GmbH & Co. KG, is a well-established company specializing in electrical installation products and smart home solutions. Their website demonstrates a professional and comprehensive digital presence targeting private customers, professionals, and architects. The company offers a broad range of products including switches, sockets, smart home systems, and door intercoms, supported by detailed product information, brochures, and a smart home configurator tool. The site is well-structured, mobile-optimized, and integrates modern web technologies and analytics tools with user consent mechanisms in place. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, Facebook Pixel, and Matomo for analytics, alongside reCAPTCHA for form security. The site uses HTTPS with good SSL configuration, though HTTP security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Contact information is clearly presented with multiple channels, enhancing business credibility. From a security perspective, the site shows good practices such as encrypted connections and consent-based tracking but lacks explicit security policy or incident response contact details. The absence of WHOIS data for the domain is unusual and should be monitored, though the website's professional appearance and consistent branding support its legitimacy. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, indicating a trustworthy and mature online presence.

N

Nový Web s.r.o.

hotelzameksvijany.cz

46

Hotel & Zámek Svijany is a small hospitality business located in the Czech Republic offering unique castle-style accommodation combined with brewery experiences and leisure activities. The website is professionally designed with good content quality, clear navigation, and mobile optimization. Technically, it uses modern JavaScript libraries and Google services for analytics and tag management. Security posture is adequate with HTTPS and CAPTCHA protection on forms, but lacks some HTTP security headers. Privacy compliance is well addressed with GDPR and cookie consent mechanisms. However, the absence of WHOIS data reduces domain trustworthiness. The site also contains embedded promotional content related to online casinos, which may affect content safety ratings. Overall, the website is functional and trustworthy for its business purpose but could improve security and transparency aspects.

U

UFC Strike

ufcstrike.com

60

UFC Strike operates as an e-commerce platform specializing in the sale of fully licensed UFC video NFTs, targeting UFC fans and NFT collectors. The business appears to be relatively young, founded around 2021, and focuses on a niche market within the digital collectibles space. The website's branding and description emphasize licensed UFC content, positioning it as a specialized provider in the sports NFT market. However, the website content is minimal and currently displays an error message, indicating possible technical or deployment issues that impact user experience and content delivery. Technically, the website leverages modern web technologies including React, Bootstrap, and integrates multiple third-party analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Segment Analytics, and Singular SDK. Hosting appears to be on Amazon AWS infrastructure, supported by AWS DNS servers. Despite the modern tech stack, the website lacks key security headers and DNSSEC is not enabled, which are areas for improvement. Performance is moderate with basic mobile optimization and limited accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and formal security policies. There is no evidence of privacy, cookie, or terms of service policies, nor contact information for security or incident response. Extensive user tracking is implemented via multiple analytics and marketing scripts, but privacy compliance is poor due to missing policies and consent mechanisms. The domain WHOIS data is consistent and legitimate, with no privacy protection but stable registration status. Overall, UFC Strike presents a niche digital collectibles business with a modern technical foundation but suffers from poor content availability, lack of privacy and security policies, and minimal user trust signals. Strategic improvements in website content delivery, security hardening, and privacy compliance are recommended to enhance credibility and user confidence.