Security Directory

M

Město Rajhrad

rajhrad.cz

48

Město Rajhrad operates as the official municipal government website for the city of Rajhrad in the Czech Republic, providing residents and visitors with information about city services, local news, events, and administrative contacts. The website is built on WordPress CMS and leverages common web technologies such as Bootstrap and jQuery to deliver a responsive and user-friendly experience. The content is primarily in Czech and targets local citizens and stakeholders. Despite the lack of WHOIS data, the website presents itself as a legitimate government entity with consistent branding and structured data markup. Technically, the site performs moderately well with good mobile optimization and SEO practices, although some accessibility features could be improved. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response contacts. Privacy compliance is partially met with privacy and cookie policies present, but no active consent mechanism is implemented. Overall, the site is safe, professional, and trustworthy for general audiences.

HOLIDAY WORLD & REGION WORLD is a well-established international trade fair focused on tourism and regional travel, organized by ABF, a.s. The website presents comprehensive information about the event, including visitor and exhibitor details, partner logos, and news updates. The business holds a strong market position in the Czech tourism event sector, with a history dating back to 1998. Technically, the site is built on WordPress with modern plugins and libraries, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, serving its audience effectively.

C

CGI IT Czech Republic s.r.o.

jiz50.cz

50

The website jiz50.cz represents the official platform for the 59th edition of the ČEZ Jizerská 50, a prestigious cross-country skiing race in Central Europe. The event is organized by CGI IT Czech Republic s.r.o. and targets both professional and hobby skiers. The site provides comprehensive information about the races, registration, results, partners, and charity initiatives, positioning itself as a leading event in the regional winter sports calendar. The business model revolves around event management, sponsorship, merchandise sales, and community engagement.

A

Alliance Of Digital Builders

aodb.com

63

Alliance Of Digital Builders (AODB) is a French digital services company specializing in secure, custom digital solutions including internet, extranet, e-commerce, cloud, and DevOps services. With approximately 18 years of experience and nearly 4000 projects, AODB holds a strong market position as a leader in Drupal solutions in France, serving notable clients including CAC 40 companies. The website reflects a mature digital infrastructure leveraging Drupal 10, React, Symfony, and cloud technologies such as AWS. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though no explicit security policy or incident response contacts are published. Overall, the site is professional, well-structured, and compliant with GDPR requirements, supporting a high trustworthiness rating.

Ł

Łódzka Organizacja Turystyczna

lodz.travel

62

Lodz.Travel is the official tourism portal for the city of Łódź, Poland, managed by the Łódzka Organizacja Turystyczna. The website serves as a comprehensive information hub for tourists, offering details on attractions, accommodations, dining, events, and cultural activities. It targets families, event organizers, and cultural visitors, positioning itself as a key regional tourism platform with government backing and strong social media presence. Technically, the site is built on TYPO3 CMS and leverages a modern JavaScript ecosystem including jQuery, Slick Carousel, and various UI libraries. It integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager, indicating a mature digital marketing strategy. The site is mobile optimized and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish privacy or incident response policies, which are areas for improvement. The WHOIS data is privacy protected, which is typical for organizational domains, and no suspicious patterns were detected. Overall, Lodz.Travel presents a professional, trustworthy, and content-rich platform for promoting tourism in Łódź. Strategic enhancements in privacy transparency and security hardening would further strengthen its posture.

A

Alliance Of Digital Builders

allianceofdigitalbuilders.com

63

Alliance Of Digital Builders (AODB) is a French technology company specializing in secure, custom digital solutions including internet, extranet, e-commerce, and cloud DevOps services. Positioned as a leader in Drupal solutions in France, AODB serves a diverse clientele including major corporations and government entities. Their offerings encompass web factories, digital transformation consulting, and technical assistance, supported by a modern technology stack including Drupal 10, Symfony, React, and cloud platforms. The website demonstrates strong digital maturity with comprehensive privacy and cookie policies, and integration of analytics and marketing tools such as Matomo and HubSpot. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and incident response details are absent. The domain WHOIS data is missing, which raises concerns about registration transparency despite the company's claims of longstanding market presence. Overall, AODB presents a professional and trustworthy digital presence with room for improvement in security transparency and domain legitimacy verification.

K

Koncepto, reklamní agentura s.r.o.

koncepto.cz

51

Koncepto, reklamní agentura s.r.o. is a Czech-based creative agency specializing in corporate identity, graphic design, UX/UI, web design, and marketing communication. Established in 2015, the company leverages over 20 years of experience, particularly in the tourism sector, to deliver tailored marketing and design solutions. Their market position is that of a reliable partner for destination agencies, cities, and regions, focusing on building strong brands through data-driven and creative strategies. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, targeting businesses seeking comprehensive marketing and design services. Technically, the website is built on Drupal 9, utilizing modern web technologies such as Google Tag Manager, Google Analytics, and CookieHub for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Hosting appears stable with consistent registrar and name servers. However, some security best practices like security headers and explicit privacy policies could be improved. From a security perspective, the site enforces HTTPS and integrates Google reCaptcha for form protection. Cookie consent is implemented with granular user controls, supporting GDPR compliance to some extent. No critical vulnerabilities or suspicious activities were detected. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history. Overall, Koncepto's digital presence is professional and trustworthy, with room for enhancement in privacy and security policy transparency. The company is well-positioned in its niche with a clear value proposition and solid technical foundation.

M

Mama Labels

mamalabels.si

49

Mama Labels is a specialized e-commerce retailer focused on personalized labeling products for children, targeting parents and caregivers for school and daycare needs. The website offers a variety of products including name labels for clothing, shoes, school supplies, iron-on labels, stamps, and bundled packages. The business operates primarily in Slovenia with multiple regional partner sites across Europe, indicating a multi-market presence. The domain is newly registered in 2024, consistent with the business launch timeline. Technically, the website is built on the PrestaShop CMS platform and leverages Cloudflare for DNS and CDN services. It integrates a broad range of marketing and analytics tools such as Google Analytics, Microsoft Clarity, Hotjar, Smartlook, and multiple advertising networks including Google Ads and Facebook Ads. The site is mobile-optimized with good SEO practices and structured data for enhanced search engine visibility. From a security perspective, the site enforces HTTPS and implements standard security headers, contributing to a strong security posture. However, there are notable compliance gaps including the absence of explicit privacy and cookie policies, lack of cookie consent mechanisms, and missing terms of service pages. No contact information or incident response channels are clearly provided, which could impact user trust and regulatory compliance. Overall, the website presents a professional and functional e-commerce platform with solid technical infrastructure but requires improvements in privacy compliance and transparency to enhance trust and meet regulatory standards.

M

Mama Etichete

mamaetichete.ro

55

Mama Etichete is a Romanian e-commerce business specializing in personalized labels and stickers for children, targeting parents and caregivers of children in nursery, kindergarten, and school. The website offers a variety of products including adhesive and iron-on labels for clothes, shoes, school supplies, and toys, emphasizing durability and water resistance. The business operates a well-structured online store with clear product categorization and a focus on customer convenience through set offers and fast courier delivery. Technically, the website is built on the PrestaShop CMS platform and integrates multiple modern tracking and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Microsoft Bing Ads. The site is HTTPS secured and shows good mobile optimization and SEO practices. However, it lacks explicit privacy and cookie policies and does not provide a cookie consent mechanism, which impacts its privacy compliance score. WHOIS data is privacy protected, which is common for small e-commerce businesses but reduces transparency. Overall, the website presents a professional and trustworthy front for its niche retail market but should improve privacy compliance and security headers to enhance trust and regulatory adherence.

M

Mama Címkék

mamacimkek.hu

55

Mama Címkék operates a specialized e-commerce platform focused on personalized name labels for children attending nursery, kindergarten, and school. The website offers a variety of products including clothing labels, adhesive labels for objects, name stamps, and wall stickers. The business targets parents and caregivers in Hungary and maintains a consistent brand presence with a clear product focus. The multilingual alternate links suggest a broader regional presence or partnership network across Central and Eastern Europe. Technically, the website is built on PrestaShop and integrates multiple modern analytics and tracking tools, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible critical vulnerabilities, though explicit security headers and privacy policies are missing. The absence of visible privacy and cookie policies, as well as contact information, reduces privacy compliance and business transparency scores. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

M

Mama Labels

mamalabels.at

64

Mama Labels is a small retail e-commerce business specializing in personalized name labels for children attending school and daycare. The website targets German-speaking customers in Austria and offers a variety of labeling products including clothing labels, name stickers, combination packages, and name stamps. The business positions itself as a niche market leader with a focus on quality, customer satisfaction, and fast delivery. Technically, the website is built on the PrestaShop CMS platform and integrates multiple modern analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Hotjar, Smartlook, and Facebook Pixel. The site is mobile optimized and uses HTTPS to secure user interactions. However, explicit privacy and cookie policies are not clearly presented, and no direct contact information is visible in the provided content. From a security perspective, the site enforces HTTPS and uses asynchronous loading of tracking scripts, which is good practice. There is room for improvement by adding explicit security headers and providing clear security policies and incident response contacts. The absence of WHOIS data due to privacy protection is common for small e-commerce sites and does not raise immediate concerns. Overall, the website is professional, trustworthy, and safe for general audiences, with moderate user tracking and advertising practices. Strategic recommendations include enhancing privacy compliance, improving security headers, and making contact information more accessible to strengthen trust and compliance.

M

Mama Labels

mamalabels.pl

59

Mama Labels is an e-commerce retailer specializing in personalized name stickers and labels for children's clothing, shoes, school supplies, and toys. The company targets parents needing durable, waterproof labeling solutions for children attending school, kindergarten, and daycare. The website is professionally designed, built on the PrestaShop platform, and supports multiple European markets through localized sister sites. Technically, the site uses modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Tag Manager, Hotjar, and Facebook Pixel. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit privacy and terms policies are not clearly found in the provided content. WHOIS data is unavailable, likely due to privacy protection, which limits domain trust assessment but does not detract from the professional presentation and business legitimacy. Overall, the site is safe, well-structured, and serves a niche retail market effectively.

S

Sdružení Český ráj

cesky-raj.info

53

The website www.cesky-raj.info serves as the official tourism portal for the Český ráj region in the Czech Republic. It offers comprehensive information about natural attractions, historical sites, events, and cultural experiences, targeting tourists and visitors interested in exploring this scenic area. The site is professionally designed with excellent content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, it is built on Drupal 10 with modern frontend libraries and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. Security posture is good with HTTPS enforced, though some security headers are missing and no explicit privacy or terms of service pages were found. The WHOIS data is unavailable due to privacy protection, but the website's legitimacy is supported by official regional branding and partnerships with recognized local entities. Overall, the site is safe, family-friendly, and trustworthy, with moderate user tracking and basic privacy compliance.

Ú

Úrad geodézie, kartografie a katastra Slovenskej republiky

skgeodesy.sk

63

The Úrad geodézie, kartografie a katastra Slovenskej republiky (ÚGKK SR) is the official Slovak government agency responsible for geodesy, cartography, and cadastre services. The website serves as a portal for multiple cadastral and spatial data services, targeting citizens, government bodies, and geodesy professionals. It provides access to electronic cadastral data, spatial reference information, and transformation services. The site is well-maintained with recent news updates and clear contact information, reflecting an authoritative national position in its sector. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and the WebJET CMS platform. It is mobile-optimized, accessible, and SEO-friendly. The cookie consent mechanism is implemented in compliance with GDPR, though some security headers are missing. No major vulnerabilities or exposed sensitive data were detected. The site uses HTTPS and secure cookie handling, indicating a solid security posture. Security-wise, the site demonstrates good practices but could improve by adding explicit security headers and publishing a security.txt file for vulnerability disclosures. Incident response contact details are not publicly available. The WHOIS data confirms the domain is legitimately registered to the Slovak government agency, consistent with the website content and language. Overall, the website is professional, trustworthy, and provides essential public services with good technical and security standards. Strategic improvements in security transparency and incident response readiness would further enhance its posture.

T

Telly s.r.o.

telly.cz

67

Telly s.r.o. operates a modern television subscription service targeting the Czech market, offering TV packages with promotional discounts and a focus on family entertainment. The company is positioned as a medium-sized telecommunications provider founded in 2019, with a clear digital presence and active marketing efforts. The website is built on WordPress and integrates multiple analytics and advertising technologies, including Google Analytics, Facebook Pixel, TikTok Pixel, and Criteo, supported by a comprehensive cookie consent mechanism ensuring GDPR compliance. The technical infrastructure is modern and well-optimized for mobile and SEO, hosted with Active24 and using Cloudflare DNS services. Security posture is good with HTTPS enforced and no critical vulnerabilities detected, though improvements in security headers and published security policies are recommended. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

M

Mama Labels

mamalabels.cz

59

Mama Labels is an e-commerce retailer specializing in personalized name stickers and labels for children's clothing, shoes, school supplies, and toys. The company targets parents and caregivers seeking durable, water-resistant labeling solutions for children attending school, kindergarten, or daycare. The website is professionally designed, mobile-optimized, and offers multiple language versions for regional markets, indicating a mature digital presence. Technically, the site runs on PrestaShop CMS and integrates various marketing and analytics tools such as Google Tag Manager, Hotjar, and Facebook Pixel, with user consent mechanisms in place. Security posture is strong with HTTPS and security headers implemented, though no explicit security or incident response policies are published. WHOIS data is unavailable, limiting domain trust analysis, but the website content and business presentation suggest legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

N

Národní pedagogický institut České republiky

projektsypo.cz

52

The website projektsypo.cz serves as a professional development support system for teachers and school directors in the Czech Republic. It is affiliated with the Národní pedagogický institut České republiky, a national pedagogical institute, indicating a government or non-profit educational focus. The platform offers resources such as webinars, methodical cabinets, ICT support, and podcasts, targeting educators and schools with beginning teachers. The project SYPO was officially ended in June 2023, but the site continues to provide valuable archived and ongoing educational content. Technically, the site is built on Joomla CMS with a modern front-end stack including Bootstrap, jQuery, and various UI libraries. It integrates Google Analytics and Google Tag Manager for tracking, along with other third-party scripts. The site is mobile-optimized and has good navigation and content structure, though accessibility features are basic. No explicit security headers were detected, and privacy and cookie policies are not clearly presented, which is a compliance gap. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and incident response contacts. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding strongly suggest legitimacy as an educational government-affiliated project. No adult or unsafe content is present, and the site is safe for general audiences. Overall, the site is a well-structured educational resource with moderate technical maturity and some privacy compliance shortcomings. Strategic improvements in privacy disclosures, security headers, and WHOIS transparency would enhance trust and compliance.

M

MJM agro, a. s.

mjm.cz

68

MJM agro, a. s. is a Czech agricultural company established in 1997, specializing in precision agriculture systems such as Prefarm, along with a broad portfolio of agricultural products including crop protection agents, fertilizers, seeds, animal feed, and energy products. The company serves agricultural enterprises, farms, and small growers, positioning itself as a reliable partner in the agricultural sector. It is part of the Reticulum Holding group, indicating a stable corporate structure. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the website employs a moderate technology stack including jQuery, Bootstrap, and Cookiebot for cookie consent management. It uses Google Analytics and Seznam.cz retargeting for marketing and analytics purposes. The site is mobile responsive and has good SEO practices, although some accessibility features could be enhanced. Security-wise, HTTPS is enforced and reCAPTCHA is used for bot protection, but the absence of security headers and outdated JavaScript libraries suggest room for improvement. The security posture is solid but not exemplary, with no critical vulnerabilities detected in the visible content. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policy documentation. However, the lack of WHOIS data for the domain reduces trust slightly, although the website content and business information appear legitimate and professional. Overall, MJM agro's website is a well-structured, professional platform that effectively supports its business objectives. Strategic improvements in security headers, updated libraries, and enhanced accessibility would further strengthen its digital maturity and trustworthiness.

B

BAföG Digital

bafoeg-digital.de

66

BAföG Digital is the official German government platform enabling students and trainees to apply online for BAföG educational funding. It is a joint offering by the federal government and the German states, providing a secure, accessible, and user-friendly digital service. The platform supports application submission, status tracking, and offers additional services such as a BAföG calculator and a dedicated mobile app. The website is well-branded with official logos and consistent messaging, targeting students and their families in Germany.

M

Ministerstvo školství, mládeže a tělovýchovy České republiky

msmt.cz

69

The website represents the official online presence of the Ministry of Education, Youth and Sports of the Czech Republic (MŠMT ČR). It serves as a comprehensive portal providing information and services related to education policy, youth programs, sports administration, research and development, and international cooperation. The site targets a broad audience including educators, students, researchers, journalists, and the general public. It holds a strong market position as a national government entity responsible for education and youth affairs. Technically, the website is built on the Marwel CMS platform and utilizes a range of JavaScript libraries such as jQuery, Prototype.js, and Scriptaculous for interactive features. The site is moderately performant with good mobile optimization and accessibility features. SEO practices are well implemented with appropriate meta tags and structured navigation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks visible security headers and does not provide explicit incident response or vulnerability disclosure information. The WHOIS data is unavailable, likely due to registry policies, which slightly impacts trust but is mitigated by the official government domain and consistent branding. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a reliable resource for its stakeholders. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

H

Hlavní město Praha

praha.eu

60

The website praha.eu serves as the official portal for the City of Prague, providing comprehensive information and services related to city administration, transportation, culture, environment, and public services. It targets residents, visitors, and businesses, positioning itself as a key government resource. The site leverages modern web technologies including Liferay CMS and React, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with GDPR and cookie consent mechanisms in place. Overall, the site demonstrates a mature digital infrastructure suitable for a large government entity.

K

Královéhradecký kraj

khk.cz

64

Královéhradecký kraj operates as the official regional government authority for the Královéhradecký region in the Czech Republic. The website serves as a comprehensive portal providing citizens, businesses, and local municipalities with access to a wide range of public services including social services, transportation, healthcare, education, and regional development. The site is well-positioned as a trusted source of official information and services for the region's residents and stakeholders. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Bootstrap for responsive design, Slick Carousel for interactive content, and integrates Google Analytics and Google Tag Manager for analytics and tracking. The site demonstrates good mobile optimization, accessibility features, and SEO practices, reflecting a mature digital infrastructure suitable for a government entity. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and shows no signs of exposed sensitive data or vulnerable libraries. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly visible and could be improved. The absence of WHOIS data is consistent with CZ.NIC registry policies for .cz domains and does not detract from the site's legitimacy. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include enhancing security header implementation, publishing a dedicated security policy or incident response contact, and considering a security.txt file to facilitate vulnerability disclosures.

A

Artlogic

artlogic.net

62

Artlogic is a well-established SaaS platform founded in 1997, specializing in providing comprehensive business management solutions tailored for galleries, artists, and collectors. The platform offers a suite of services including inventory management, sales CRM, marketing tools, websites, and payment processing, positioning itself as a key player in the art business software market with over 5,500 clients worldwide. The website reflects a professional and consistent brand image with excellent content quality and user experience, targeting art professionals and collectors globally. Technically, the website leverages a mature technology stack including jQuery, Google Analytics, Tag Manager, Facebook Pixel, and other marketing and tracking tools, hosted primarily on AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a custom CMS (Artlogic CMS) underpinning its content management. Performance is moderate, with good use of modern web technologies and third-party integrations. From a security perspective, the site employs HTTPS with good SSL configuration, uses Google reCAPTCHA for form protection, and manages cookie consent effectively. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. DNSSEC is not enabled, which could enhance DNS security. No critical vulnerabilities or exposed sensitive data were detected. Overall, Artlogic presents a low-risk profile with strong business credibility and a solid technical foundation. Strategic recommendations include enabling DNSSEC, publishing clear security and privacy policies, and enhancing transparency around incident response and vulnerability disclosures to further strengthen trust and compliance.

P

Passion 4 Gästezimmer GmbH

pension.de

67

Pension.de, operated by Passion 4 Gästezimmer GmbH and part of the FUNKE Mediengruppe, is a well-established online platform specializing in affordable vacation accommodations across Germany, Austria, and Switzerland. Founded in 1999, it offers a comprehensive inventory of over 14,000 pension and hotel listings, targeting families and general vacationers seeking budget-friendly lodging options. The website features a professional design, intuitive navigation, and modern UI components, reflecting a mature digital presence. Technically, the site leverages modern JavaScript modules, Shoelace UI components, and AWS hosting, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, Pension.de demonstrates a high level of business credibility and technical sophistication, positioning it as a reliable player in the hospitality booking sector.

T

Technische Hochschule Georg Agricola

thga.de

58

Technische Hochschule Georg Agricola (THGA) is a specialized engineering university located in Bochum, Germany, offering a broad range of practice-oriented Bachelor and Master degree programs in engineering disciplines such as mechanical engineering, electrical engineering, and industrial engineering. The institution maintains strong industry partnerships to ensure excellent job prospects for its graduates. The website reflects a mature digital infrastructure built on TYPO3 CMS, leveraging modern web technologies and providing a mobile-optimized, accessible, and SEO-friendly user experience. Privacy and cookie compliance are well implemented with a consent management platform and a comprehensive privacy policy. Security posture is solid with HTTPS enforced and minimal exposure of sensitive data, though some improvements in security headers and incident response transparency are recommended. Overall, the website presents a professional, trustworthy, and user-friendly platform that effectively supports the institution's educational mission and stakeholder engagement.

M

Max Planck Institute for Security and Privacy

mpi-sp.org

63

The Max Planck Institute for Security and Privacy is a research institute founded in 2019 and affiliated with the Max Planck Society in Germany. It focuses on advancing security and privacy technologies through foundational research, systems development, and societal impact. The website serves academics, researchers, students, and professionals interested in security and privacy research, offering information about research areas, people, career opportunities, and contact details. The business model is centered on academic research and education within the technology sector, positioning itself as a leading institution in its field. Technically, the website is built on the JustRelate CX Cloud CMS platform, utilizing modern JavaScript libraries such as RequireJS and Slick Carousel for UI components. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate with deferred loading of styles and scripts. Security is well implemented with HTTPS enforced and CSRF protection on forms, though explicit security headers are not detected. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Security posture is strong overall with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in adding security headers, publishing a security policy, and providing vulnerability disclosure information. The absence of WHOIS data reduces trust slightly, but the strong affiliation with the Max Planck Society and professional website design mitigate concerns. No advertising or tracking services are detected, supporting user privacy. Overall, the website is safe, professional, and trustworthy, serving its academic audience effectively. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response and vulnerability disclosure information, and improving accessibility features to further strengthen compliance and user trust.

Ú

Ústav zdravotnických informací a statistiky ČR

uzis.cz

66

Ústav zdravotnických informací a statistiky ČR (ÚZIS ČR) is a Czech government agency responsible for collecting, processing, and publishing healthcare statistical data. It operates the National Health Information System (NZIS) and collaborates with other governmental and international health organizations. The website serves healthcare professionals, statisticians, researchers, and the public with comprehensive data and reports. The organization is positioned as the authoritative source for healthcare statistics in the Czech Republic, supported by its affiliation with the Ministry of Health.

NIC.ec, operated by ECUADORDOMAIN S.A., is the official registry and registrar for Ecuador's .ec country code top-level domain. The website provides domain search, registration, and management services targeting individuals, businesses, and government entities within Ecuador. It holds multiple official accreditations such as ICANN, IANA, LACNIC, and LACTLD, reinforcing its authoritative position in the domain registration market. The site also promotes partnerships with registrar agents and offers specialized services for government and military domains. Technically, the website employs a modern tech stack including jQuery, Bootstrap, FontAwesome, Google Tag Manager, Google Analytics, Yandex Metrika, and Chatwoot for live chat support. It uses HTTPS with good SSL configuration and implements cookie consent mechanisms. The site is mobile optimized and features good navigation and content quality. However, no explicit CMS or hosting provider information is detected, suggesting a custom-built platform. From a security perspective, the site follows best practices such as HTTPS enforcement, CSRF tokens, and reCAPTCHA integration. While security headers are not explicitly visible in the HTML, the site does not expose sensitive data or show signs of vulnerabilities. The absence of a published security policy or incident response contact is noted. Extensive tracking and marketing tools are used, indicating a moderate to extensive user tracking level, with basic privacy compliance. Overall, NIC.ec presents a trustworthy and professional online presence consistent with its role as Ecuador's official domain registry. Recommendations include enhancing security header implementation, publishing a security policy and incident response contacts, and improving accessibility features to further strengthen compliance and user trust.

M

Museo Nacional Thyssen-Bornemisza

museothyssen.org

65

Museo Nacional Thyssen-Bornemisza is a prominent national art museum located in Madrid, Spain, forming part of the renowned 'Paseo del Arte' cultural corridor alongside Museo del Prado and Centro de Arte Reina Sofía. The museum offers a rich collection of Western art from the 13th to the 20th century, complemented by temporary exhibitions, educational activities, and a museum shop. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, targeting general public and art enthusiasts. Technically, the site is built on Drupal 10, integrates Google Tag Manager and Google Optimize for analytics and marketing, and employs CookiePro for GDPR-compliant cookie consent management. Security posture is strong with HTTPS enforced and privacy-conscious analytics activation, though some security headers could be improved. WHOIS data is unavailable due to registry restrictions, but the website's branding and content indicate legitimacy. Overall, the site is well-maintained, user-friendly, and compliant with privacy regulations, serving as a reliable digital front for the museum.

The website info.mojedatovaschranka.cz serves as an official government portal providing comprehensive information and services related to 'Datové schránky' (Data Mailboxes), a digital communication system between citizens, businesses, and government institutions in the Czech Republic. Operated by Česká pošta, s.p., the portal offers detailed guidance, multiple secure login methods, technical requirements, and up-to-date news, positioning itself as a trusted and authoritative source for electronic communication with the state. From a technical perspective, the site employs modern web technologies including jQuery, Slick Carousel, and a government design system ensuring good mobile optimization, accessibility, and user experience. The integration of a chatbot enhances user support. While performance is moderate, the site is well-structured and SEO optimized, reflecting a mature digital infrastructure. Security-wise, the portal enforces HTTPS and offers multiple secure authentication methods such as mobile keys and citizen identity logins. However, explicit security headers are not detected, and no vulnerability disclosure or incident response contacts are published, indicating areas for improvement. Privacy compliance is strong with a clear privacy policy and GDPR adherence, though cookie consent mechanisms are absent. Overall, the website demonstrates a high level of professionalism, trustworthiness, and business credibility as a government service portal. The lack of WHOIS data for the subdomain is noted but does not detract from legitimacy given the official branding and content. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing vulnerability disclosure information to further strengthen security posture and user trust.

E

Ebner Media Group GmbH & Co. KG

developer-world.de

56

Developer World, operated by Ebner Media Group GmbH & Co. KG, is a well-established German platform focused on software developers, offering events, knowledge sharing, and community engagement. The website serves as a hub for developer conferences such as DWX and DDC, provides technical insights, training opportunities, and publishes the dotnetpro magazine. The platform targets professional developers and IT specialists, positioning itself as a key player in the German-speaking developer ecosystem with a history dating back to 1984. Technically, the website employs modern web technologies including asynchronous JavaScript loading, a consent management platform (Usercentrics), Google Tag Manager, and structured data (JSON-LD) for SEO enhancement. The site is mobile-optimized, accessible, and uses a CMS likely based on Contentstack. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses a consent mechanism for cookies, but lacks explicit security headers like CSP or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies, and GDPR adherence is evident. Overall, Developer World presents a professional, trustworthy, and content-rich platform with a solid security posture and compliance framework. Strategic improvements could include publishing a formal security policy, incident response contacts, and enhancing security headers to further harden the site.

H

HiFlow

hiflow.ch

54

HiFlow is a Swiss association and innovation ecosystem based in Geneva, offering a collaborative space for startups, SMEs, and independent professionals. It provides flexible office spaces, event venues, exhibitions, and a unique material database showroom. The website is built on WordPress with modern technologies and includes a cookie consent mechanism compliant with GDPR. Social media presence and partner ecosystem reinforce its community engagement. Security posture is good with HTTPS and cookie controls, though formal security and incident response policies are not publicly available. Overall, the site is professional, accessible, and trustworthy.

N

Newsstand

newsstand.co.uk

66

Newsstand.co.uk is an established online retailer specializing in magazine subscriptions and single issue sales, serving a global audience with a focus on UK customers. The business has a long history dating back to 1898 and positions itself as a leading magazine retailer offering a wide range of categories and a concierge service for personalized magazine recommendations. The website is professionally designed with good navigation and content relevance, targeting magazine readers worldwide. Technically, the site uses common web technologies such as jQuery, Google Analytics, and Google Tag Manager, with moderate performance and good mobile optimization. However, it lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and user trust. The WHOIS data indicates domain registration issues, which is a significant concern for legitimacy and trustworthiness. Overall, the site presents a professional e-commerce platform but requires improvements in security and privacy transparency.

R

Radio Duisburg

radioduisburg.de

59

Radio Duisburg is a regional media company providing local news, music, and community information primarily for the Duisburg area in Germany. The website serves as a digital platform for live radio streaming, news updates, music playlists, and community engagement. It holds a solid market position as a trusted local radio station with a medium-sized audience. The business model revolves around broadcasting, advertising, and community interaction, supported by partnerships with media groups and e-commerce platforms.

N

n-tv NACHRICHTEN

n-tv.de

65

n-tv.de is a major German news media website providing a wide range of news articles, videos, live TV streaming, stock market data, and weather forecasts. The site targets a general audience interested in current affairs, politics, economy, sports, and entertainment. It operates a business model based on advertising and subscription services, including a PUR-Abo subscription. The website is well-branded and professionally designed, reflecting its position as an established media outlet in Germany. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, Sourcepoint for GDPR consent management, and Kameleoon for A/B testing. It is hosted with EuroDNS nameservers and enforces HTTPS with a Content-Security-Policy header. The site is mobile-optimized and SEO-friendly, though accessibility features could be improved. From a security perspective, the site has a good posture with HTTPS and some security headers but lacks additional headers like X-Frame-Options or Strict-Transport-Security. No vulnerabilities or exposed sensitive data were detected. GDPR compliance is partially implemented with consent management but lacks explicit privacy policy and terms of service links in the provided content. Overall, the site is safe, professional, and trustworthy with no adult or questionable content. Strategic improvements include publishing explicit privacy and security policies, enhancing security headers, and providing clear contact information to improve compliance and user trust.

J

junge Welt

jungewelt.de

46

junge Welt is a German left-wing daily newspaper established in 1947, operating as a cooperative with over 3000 members. The website offers comprehensive news coverage with a focus on political and social issues, supported by subscription services, newsletters, and event information. Technically, the site uses a custom CMS (KONTEXT-CMS), Bootstrap, jQuery, and Piwik analytics, providing a modern and mobile-optimized experience. Security posture is moderate with HTTPS implied but lacks explicit security headers and cookie consent mechanisms. No direct contact emails or phone numbers are visible, but a login form and contact pages exist. Overall, the site is professional, content-rich, and trustworthy, serving a niche audience interested in leftist political news.

R

Radio Berg

radioberg.de

58

Radio Berg is a well-established regional radio broadcaster serving the Bergisches Land region in Germany. The website offers a rich mix of local news, music programming, podcasts, and community engagement features, positioning itself as a leading media outlet in its area. The business model revolves around regional advertising, event promotions, and digital content delivery. The site demonstrates a mature digital infrastructure with modern technologies such as Angular, Adobe Launch, and Google Tag Manager, supported by a robust CMS (CONTENS). Security practices include HTTPS enforcement and consent management via Usercentrics, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

I

IMPER CZ, s.r.o.

regform.io

46

IMPER CZ, s.r.o. operates the Našeptávač.cz website, offering smart form auto-completion and data validation services primarily targeting businesses in the Czech and Slovak markets. Their key offerings include address auto-completion, company data enrichment, email and phone validation, and typo correction to improve form accuracy and conversion rates. The company positions itself as a niche SaaS provider focused on improving online form usability and data quality. Technically, the website is built on WordPress with multilingual support via WPML. It uses a combination of legacy and modern JavaScript libraries including jQuery, Slick Carousel, and integrates multiple marketing and tracking tools such as Google Tag Manager, Cookiebot for consent management, LinkedIn Insight, and Leady retargeting. The site is mobile optimized and SEO friendly, though some technical debt is noted with the use of an outdated jQuery version. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and uses an outdated jQuery version which could pose vulnerabilities. No explicit security policies or incident response contacts are published. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and contact information appear professional and trustworthy. Overall, the website presents a solid business offering with good user experience and privacy compliance. However, improvements in security practices and domain registration transparency are recommended to enhance trust and reduce risk.

I

Imper CZ s.r.o.

merk.cz

56

Imper CZ s.r.o. operates the Merk business database platform, a comprehensive B2B marketing and sales tool serving over 15,000 users across 2,000 companies in the Czech and Slovak Republics. The platform aggregates data from over 4,000 sources, providing detailed business information on more than 4 million entities, including verified contact details and financial analytics. Merk positions itself as a critical tool for companies seeking to expand their market reach and optimize customer targeting. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Tag Manager, and various marketing and analytics integrations such as Intercom and LinkedIn Insight. The site demonstrates good mobile optimization, SEO practices, and performance, with a comprehensive cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and employs cookie consent management but lacks explicit security headers and visible incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the professional presentation and business indicators suggest legitimacy. Overall, the site is a well-structured, professional B2B platform with strong compliance and marketing capabilities. Strategic improvements in security headers and transparency around security policies would enhance trust and resilience.

I

IMPER CZ, s.r.o.

imper.sk

49

IMPER CZ, s.r.o. operates as a B2B data and marketing solutions provider primarily serving clients in Slovakia and the Czech Republic. The company offers a suite of services including lead identification (Leady), a B2B business data platform (Merk), media monitoring (Mediaboard), and data consultancy. With over 2000 companies relying on their solutions, IMPER positions itself as a trusted regional player in the data-driven marketing and sales space. The website reflects a professional and consistent brand image with clear messaging targeting B2B customers. Technically, the site is built on WordPress with modern plugins and tracking tools, hosted by Active24 with DNSSEC enabled and HTTPS enforced, indicating a mature digital infrastructure. Security posture is strong with no visible vulnerabilities, complemented by GDPR compliance and cookie consent mechanisms. Overall, the site demonstrates good content quality, user experience, and trustworthiness, supporting the company's credibility and market presence.

A

Akademie věd České republiky

cas.cz

59

The Akademie věd České republiky (Academy of Sciences of the Czech Republic) is a prominent public research institution dedicated to scientific research, education, and public outreach in the Czech Republic. The website serves as a comprehensive portal for news, events, publications, and resources related to the academy's activities. It targets researchers, academics, students, media, and the general public interested in science and research. The institution holds a leading position in the Czech scientific community and operates with a large organizational size and extensive content offerings.

I

Imper CZ s.r.o.

leady.cz

60

Imper CZ s.r.o. operates the website leady.cz, a B2B lead identification and marketing optimization platform primarily serving Czech and Slovak markets. The company offers services that identify website visitors, providing detailed company and behavioral data to enable timely sales outreach and campaign automation. The business is well-established since 2007 and maintains a professional online presence with comprehensive privacy and cookie policies, reflecting GDPR compliance. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools, including Google Analytics, LinkedIn Insight, and Intercom. Security posture is solid with HTTPS and consent management but lacks some HTTP security headers and a public security policy. Contact information is complete and transparent, supporting business credibility.

B

Be.Beyond GmbH & Co KG

lead-print.com

49

Lead-Print, a brand of Be.Beyond GmbH & Co KG, is a well-established provider of web-to-print solutions primarily serving the DACH region. With over 360 installations and 2500 active portals, the company offers tailored, cost-effective platforms for printers, media service providers, and corporate clients. Their product suite includes PRINT LOUNGE, DRUCKSHOP, and ONLINE CREATOR, supported by consulting and plugin services. The website reflects a professional and consistent brand image with clear contact information and comprehensive privacy and cookie policies, indicating a mature digital presence. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Tag Manager, with a responsive design and moderate performance. However, there is room for improvement in security headers and published security policies. The absence of WHOIS data is a notable gap, reducing domain transparency and trust from a registration perspective. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the lack of incident response contacts and security policy documentation suggests an opportunity to enhance trust and compliance. Overall, the website is safe, business-focused, and well-structured, suitable for its target audience in the printing and media technology sector.

S

Synergy Partners Consulting Ltd.

synergypartners.ca

56

Synergy Partners Consulting Ltd. is a Canadian engineering consulting firm specializing in building engineering and advisory services for new and existing buildings. Founded in 2014 and headquartered in Toronto, Ontario, the company serves property owners, managers, designers, and builders across various real estate sectors. Their core services include advisory, restoration engineering, and enclosure engineering, positioning them as a trusted and experienced player in the Canadian real estate engineering market. The website reflects a professional and well-established business with clear branding and comprehensive service descriptions. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Slick Carousel, and Magnific Popup for enhanced user experience. SEO is supported by Yoast SEO plugin, and Google Analytics is integrated for visitor tracking. The site is mobile optimized and accessible, with good performance, although some improvements in security headers and DNSSEC could be made. From a security perspective, the site uses HTTPS and has domain locks to prevent unauthorized changes, but lacks DNSSEC and security headers that would strengthen its posture. There is no visible security policy or incident response contact information, and no cookie consent mechanism despite the use of tracking scripts, which may impact privacy compliance. The WHOIS data is consistent with the business claims, showing a legitimate and stable domain registration. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic improvements in these areas would enhance the company's digital trust and compliance posture.

P

PAE Engineers

pae-engineers.com

64

PAE Engineers is a professional engineering consulting firm specializing in sustainable mechanical, electrical, plumbing, lighting, and technology design. They position themselves as leaders in high-performance engineering with a strong commitment to sustainability, evidenced by their B-Corp and JUST certifications. Their target market includes clients in healthcare, education, government, and commercial real estate sectors seeking innovative and regenerative engineering solutions. The website presents a comprehensive portfolio of projects and services, reinforcing their market position. Technically, the website employs modern web technologies including Google Analytics and Tag Manager for tracking, and uses responsive design with good SEO and accessibility features. The site is served over HTTPS with CSRF protections indicated, though some security headers are missing. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. From a security perspective, the site demonstrates good practices such as HTTPS and CSRF tokens but could improve by adding security headers and explicit incident response information. The absence of WHOIS data for the domain is a concern, reducing trust slightly, but the professional presentation and certifications mitigate this risk. No WAF or blocking mechanisms were detected, and the content is safe and appropriate for general audiences. Overall, the website is professional, trustworthy, and well-structured, with minor improvements recommended in security headers and privacy compliance to enhance trust and protection.

B

British Pacific Properties Limited

britishproperties.com

57

British Pacific Properties Limited is a well-established real estate developer focused on creating exceptional residential communities in West Vancouver, Canada. With a legacy dating back to 1931, the company emphasizes quality, nature, and lifestyle in its developments. The website serves as a professional platform to showcase their communities, history, and upcoming projects, targeting prospective home buyers and residents interested in upscale neighborhoods. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery and GSAP for interactive elements. Hosting is provided by GreenGeeks, and the site includes Google Tag Manager and Usercentrics for analytics and consent management, indicating a moderate level of digital maturity. The site is mobile optimized and has good SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no advanced security headers were detected. There is no published security policy or incident response contact, which could be improved. Privacy and cookie policies are present and include consent mechanisms, supporting GDPR compliance. Overall, the website is professional, trustworthy, and secure for its business purpose. Recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and enhancing accessibility to further strengthen the security posture and compliance.

S

Spark Hire | Recruit

comeet.co

68

Spark Hire | Recruit operates a professional Applicant Tracking System (ATS) platform branded as Spark Hire Recruit, targeting globally distributed teams and hiring managers seeking to streamline recruitment processes. The website presents a modern, user-friendly interface emphasizing collaboration, automation, and scheduling features to accelerate hiring. The company positions itself as a technology provider in the recruitment SaaS market with a medium-sized business profile. Technically, the website is built on WordPress CMS with Bootstrap and jQuery frameworks, integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site demonstrates good SEO practices and mobile optimization but lacks explicit privacy and terms of service pages. Security posture is strong with HTTPS enforcement and security headers, though no vulnerability disclosure or incident response contacts are visible. WHOIS data is missing or unavailable, raising concerns about domain registration legitimacy. Overall, the site is professional and trustworthy in content but requires improved transparency on privacy, contact, and domain registration details.

E

Extraset

extraset.ch

49

Extraset is an independent Swiss type foundry based in Geneva, specializing in publishing professional typefaces designed by graphic designers for graphic designers. The website reflects a focused business model targeting the graphic design community with a professional and consistent brand presence. Technically, the site is built on WordPress using common plugins such as Contact Form 7 and Cookie Law Info, with integration of Mailchimp for marketing and tracking. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security and incident response policies are not published. Privacy compliance is addressed with cookie consent and privacy policies, indicating awareness of GDPR requirements. Overall, the site is trustworthy and legitimate, with WHOIS data consistent with the business claims. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

D

DWX Developer World

dotnet-developer-conference.de

56

DWX Developer World is a well-established media and event organization specializing in the .NET developer community, hosting the annual .NET Developer Conference (DDC) in Cologne. The company offers a comprehensive program of workshops, sessions, and networking opportunities targeting professional developers focused on Microsoft technologies. Their market position is strong within the German-speaking developer ecosystem, supported by a professional website and clear branding. Technically, the website employs modern web technologies including Google Tag Manager, Usercentrics for consent management, and responsive design, ensuring good performance and accessibility. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.