Security Directory

P

Paul Bauder GmbH & Co. KG

bauder.rs

41

Bauder d.o.o. Serbia is a subsidiary of Paul Bauder GmbH & Co. KG, a leading European manufacturer specializing in roofing systems including flat, green, and pitched roofs. The company targets construction professionals and building owners in Serbia and the broader European market, offering comprehensive roofing solutions and technical support. The website reflects a professional business presence with detailed product information and local contact points, supporting its market position as a regional leader. Technically, the website is built on TYPO3 CMS with legacy jQuery and modern consent management via Usercentrics. While the site performs moderately well and is mobile optimized, some technical modernization opportunities exist, particularly updating JavaScript libraries and enhancing accessibility features. SEO and content quality are good, supporting effective user engagement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional digital presence with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and technical updates would enhance its posture further.

P

Paul Bauder GmbH & Co. KG

bauder.lt

36

Paul Bauder GmbH & Co. KG is a family-owned European manufacturer specializing in roofing systems including flat roofs, green roofs, and pitched roofs. With over 150 years of experience, the company offers a comprehensive range of roofing membranes, insulation materials, and related products targeting architects, designers, and installers. The website reflects a professional business presence with detailed product information and a clear focus on the construction and manufacturing sectors. Technically, the site is built on TYPO3 CMS and uses several JavaScript libraries, including jQuery and bxSlider, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and consent management via Usercentrics, though improvements are recommended in security headers and library updates. The absence of WHOIS data for the .lt domain limits domain trust verification, but the website content and business information appear consistent and credible. Privacy and cookie policies are comprehensive and GDPR compliant, supporting a strong privacy posture.

P

Paul Bauder GmbH & Co. KG

bauder.be

34

Bauder is a leading European manufacturer specializing in roofing systems, insulation, and green roof solutions with a history spanning over 160 years. The company holds a strong market position as the number one roofing system provider in Europe, targeting construction professionals and building owners. Their website reflects a mature digital presence with multilingual support and comprehensive product information. Technically, the site is built on TYPO3 CMS with legacy jQuery libraries and modern consent management, indicating moderate digital maturity. Security posture is solid with HTTPS and consent mechanisms, though lacking some advanced security headers and explicit incident response disclosures. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting Bauder's business credibility and market leadership.

B

Bon Group Oy

bongroup.fi

43

Bon Group Oy is a Finnish hospitality group operating in growth centers and popular tourist destinations, focusing on beverage, entertainment, and food restaurant services. The company is growing and committed to sustainable development of its venues and operations. Their market position is that of a passionate and expanding hospitality operator aiming to become a leading experience hospitality company in Finland. The website is professionally designed, mobile-optimized, and uses modern web technologies including Google Tag Manager, Analytics, and reCAPTCHA for security and analytics. Cookie consent mechanisms are implemented with granular user controls, reflecting good privacy compliance. Security posture is strong with HTTPS and reCAPTCHA, though some security headers and explicit security policies are missing. Overall, the website is trustworthy and well-maintained, supporting the company's business credibility.

P

Paul Bauder GmbH & Co. KG

bauder.eu

38

Paul Bauder GmbH & Co. KG is a leading European manufacturer specializing in roofing systems including flat roofs, green roofs, pitched roofs, thermal insulation, and photovoltaic systems. With a strong presence across Europe through multiple factories and subsidiaries, the company serves contractors, architects, and building owners with a comprehensive product portfolio. Their website reflects a mature digital presence with multilingual support and extensive technical documentation. The company emphasizes sustainability and innovation in roofing solutions. Technically, the website is built on TYPO3 CMS with legacy jQuery and modern consent management via Usercentrics. The site is well-structured, mobile-optimized, and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed policies and consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. The WHOIS data is privacy-protected, which is typical for large enterprises. Overall, the site demonstrates professionalism, trustworthiness, and compliance with European data protection standards. Strategic recommendations include enhancing security headers, publishing explicit security policies, and updating legacy JavaScript libraries to maintain security and performance.

P

Paul Bauder GmbH & Co. KG

bauder.nl

37

Paul Bauder GmbH & Co. KG operates a professional and comprehensive website focused on roofing systems, insulation, and green roofing solutions. The company holds a leading market position in Europe with over 160 years of experience and a broad product portfolio. The website targets construction professionals and building owners, providing detailed product information, downloads, and contact options. Technically, the site is built on TYPO3 CMS with standard JavaScript libraries and includes modern consent management for privacy compliance. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

P

Paul Bauder GmbH & Co. KG

bauder.hr

40

Bauder d.o.o. is a Croatian regional branch of Paul Bauder GmbH & Co. KG, a leading European manufacturer of roofing systems including flat, green, and pitched roofs. The company has a long tradition of over 160 years and holds a strong market position in Europe. Their website provides comprehensive product information, technical documentation, and corporate news targeting construction professionals and building owners in Croatia. The digital infrastructure is built on TYPO3 CMS with modern JavaScript libraries and includes a robust cookie consent mechanism via Usercentrics, ensuring GDPR compliance. Social media integration and multilingual support enhance their digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website reflects a mature, professional business with good technical and security standards.

P

Paul Bauder GmbH & Co. KG

bauder.no

43

Bauder AS, a subsidiary of Paul Bauder GmbH & Co. KG, is a leading European manufacturer and supplier of roofing systems, insulation materials, green roofs, and solar energy roofing solutions. The company has a strong market position in Europe, combining over 160 years of tradition with innovation and sustainability. Their website targets architects, planners, craftsmen, dealers, contractors, and building owners, offering comprehensive product information and consulting services. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes GDPR-compliant consent management via Usercentrics. The site is well-structured, mobile-optimized, and integrates analytics responsibly. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. WHOIS data is unavailable due to privacy protection, but the website's professionalism and certifications support legitimacy. Overall, the site reflects a mature digital presence aligned with business goals and compliance requirements.

P

Paul Bauder GmbH & Co. KG

bauder.hu

39

Paul Bauder GmbH & Co. KG is a well-established European manufacturer specializing in roofing systems including flat roofs, green roofs, and pitched roofs. The company operates in multiple countries, including Hungary, where it provides localized content and services. Their business model integrates manufacturing, technical consulting, and certified installation services, targeting architects, contractors, traders, and private builders. The website reflects a professional and consistent brand image with comprehensive product and service information.

V

Verband für Dämmsysteme, Putz und Mörtel e.V.

wdvs-planungsatlas.de

55

The website wdvs-planungsatlas.de is a specialized German platform providing free CAD details and technical construction resources focused on thermal insulation composite systems (WDVS). It is operated by the Verband für Dämmsysteme, Putz und Mörtel e.V., a construction industry association. The site targets architects, planners, and construction professionals seeking optimized construction details for energy-efficient building envelopes. The business model centers on offering free technical content and research reports to support planning and compliance with thermal protection standards. The site is positioned as a niche authoritative resource within the German construction sector. Technically, the website uses a traditional web stack with jQuery, jQuery UI, FancyBox, and Piwik/Matomo analytics. It employs cookie consent mechanisms and CSRF tokens in forms, indicating moderate digital maturity and privacy awareness. The site is mobile optimized with SVG graphics and structured navigation, though no CMS or hosting details are evident. Performance is moderate with room for improvement in security headers and advanced SEO. From a security perspective, the site uses HTTPS and cookie consent but lacks visible HTTP security headers such as CSP or HSTS. No vulnerability disclosure or incident response information is provided. The login form includes CSRF protection, but no phone or physical address contact details are listed, limiting direct support channels. WHOIS data is minimal but consistent with the site's German construction association identity. Overall, the security posture is moderate with recommendations to enhance header policies and publish security policies. The overall risk assessment is low; the site is professional, trustworthy, and compliant with GDPR through its privacy and cookie policies. Strategic recommendations include improving security headers, publishing terms of service and security policies, and enhancing contact transparency to strengthen trust and compliance.

B

btf Innovationen für den Bau GmbH

btf-innovationen.de

46

btf Innovationen für den Bau GmbH is a specialized manufacturer and distributor of innovative building sealing and insulation products, focusing on impact sound insulation, moisture barriers, and waterproofing solutions for floors, walls, and roofs. The company targets construction professionals and distributors primarily in Germany, positioning itself as a niche innovator with strong partnerships. The website is built on TYPO3 CMS and employs modern web technologies, providing a professional and user-friendly experience with multilingual support. Security posture is solid with HTTPS and CAPTCHA protections, though some improvements in security headers and cookie consent mechanisms are recommended. Overall, the site reflects a credible and trustworthy business with comprehensive product information and clear contact channels.

P

Paul Bauder GmbH & Co. KG

bauder.de

47

Paul Bauder GmbH & Co. KG operates as a leading European manufacturer specializing in roofing systems including flat roofs, pitched roofs, green roofs, and photovoltaic solutions. The company targets architects, planners, roofers, and both industrial and private builders, positioning itself as a market leader in the energy and construction sector. Their website reflects a professional business model focused on manufacturing and supplying high-quality roofing materials and services. The presence of multiple localized websites indicates a broad international market reach.

A

ARWEI Bauzubehör GmbH

arwei.de

49

ARWEI Bauzubehör GmbH is a well-established German manufacturer specializing in high-quality recessed matting and floor mat systems since 1952. The company targets architects, planners, homeowners, and construction professionals, offering custom solutions and accessories. Their market position is strong with over 60 years of experience and recognized certifications such as TÜV and DGNB. Technically, the website is built on the Contao CMS platform, using modern JavaScript libraries and privacy-conscious Matomo analytics. The site is mobile-optimized with a clear navigation structure and cookie consent implemented via Klaro. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. WHOIS data aligns with the business claims, showing a consistent and legitimate domain registration. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

H

Heluz cihlářský průmysl a.s.

smysluplnycelek.cz

42

Heluz cihlářský průmysl a.s. operates a professional website promoting its comprehensive building system products and services, targeting home builders and construction professionals primarily in the Czech Republic. The company offers a wide range of building materials including bricks, ceilings, and related construction components, complemented by advisory and support services for self-builders. The website is built on Xaver CMS and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though the absence of security headers and WHOIS data transparency are areas for improvement. Overall, the site presents a trustworthy and professional image aligned with its business objectives.

C

CzechTrade

bizinfo.cz

70

BusinessInfo.cz is an official Czech government-supported online portal providing comprehensive business information, guides, and export resources targeted at small and medium-sized entrepreneurs and exporters. The portal is managed by the Ministry of Industry and Trade of the Czech Republic and implemented by the CzechTrade agency, ensuring authoritative and ad-free content. The website offers a rich variety of content including articles, events, tenders, tools, and guides, supported by multimedia such as videos and podcasts. Technically, the site is built on WordPress with modern SEO and analytics integrations, including Google Analytics and Matomo, and employs security best practices such as HTTPS and Google reCAPTCHA for form protection. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting GDPR compliance. Despite the absence of publicly available WHOIS data, the website's official backing and consistent branding indicate high legitimacy. Overall, the site demonstrates a mature digital presence with strong content quality and security posture.

Č

Česká agentura na podporu obchodu / CzechTrade

exportmag.cz

57

ExportMag.cz is a professional export magazine operated by the CzechTrade agency and the Ministry of Industry and Trade of the Czech Republic. It serves as an authoritative information platform targeting exporters, businesses, and stakeholders interested in international trade. The website offers expert articles, news, and support services related to export and business development. The content is well-structured, professionally presented, and updated regularly, reflecting a mature digital presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and Bootstrap for responsive design. It integrates Google Tag Manager for analytics and employs a cookie consent mechanism compliant with GDPR. While the site is mobile-optimized and performs moderately well, there is room for improvement in security headers and analytics configuration. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks several recommended security headers. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data reduces the ability to fully verify domain legitimacy, though the content and business affiliations strongly indicate a legitimate government-backed entity. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, WHOIS transparency, and contact information completeness would enhance trust and security posture.

A

Atletika s gepardem

atletikasgepardem.cz

44

Atletika s gepardem is a Czech Republic-based small education business specializing in athletics training programs for children from kindergartens and early primary school grades. The company offers structured sports courses and camps designed to develop children's motor skills through playful and engaging athletics activities. The website is professionally designed using WordPress and integrates modern web technologies such as jQuery, Slick Carousel, Fancybox, and Google reCAPTCHA for security. SEO is enhanced by Yoast SEO plugin and structured data markup. Security posture is good with HTTPS enforced and no exposed sensitive data, though security headers are missing and no formal security or incident response policies are published. Privacy and cookie policies are present and indicate GDPR compliance. Contact information including email, phone, and physical address is clearly provided, enhancing business credibility. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trustworthiness. Overall, the website is well-structured, secure, and targeted at its audience with a good user experience and content quality.

T

Tenis pro děti

tenisprodeti.cz

43

TenisProDeti.cz is a specialized sports education provider focused on systematic tennis training for children from kindergartens and primary schools in Prague and surrounding areas. The organization offers group and individual tennis courses led by qualified trainers, emphasizing fun and skill development. The website reflects a small, local business with a clear target audience of children and their parents seeking tennis education. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, featuring HTTPS and security measures like Google reCAPTCHA and cookie consent. However, the absence of WHOIS registration data limits full trust verification. Overall, the site demonstrates good security posture and privacy compliance but lacks explicit terms of service and detailed security policies.

G

Gymnastika pro děti

gymnastikaprodeti.org

47

Gymnastika pro děti is a Czech Republic based educational organization specializing in gymnastics training programs for children aged 4 to 13 years. The website presents a well-structured offering of three main programs (BABY, JUNIOR, SPORT) and additional summer sports camps, targeting children and their parents. The organization appears to have a solid regional presence with over 100 locations in major Czech cities such as Prague, Brno, and Plzeň. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

O

Osječko-baranjska županija

obz.hr

59

Osječko-baranjska županija operates as the official regional government authority for the Osječko-baranjska County in Croatia. The website serves as a comprehensive portal for local government information, public notices, investment projects, social services, and EU fund programs. It targets residents, businesses, and stakeholders within the county, providing transparent access to administrative and developmental resources. The site is well-structured, professionally designed, and consistent with government branding standards. Technically, the website is built on Joomla CMS, leveraging modern JavaScript libraries such as jQuery, Bootstrap, and various sliders for dynamic content presentation. It incorporates accessibility features including the UserWay widget and is optimized for mobile devices. The site uses HTTPS and Google Analytics for visitor tracking, with a cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site demonstrates good practices including ISO 27001 certification, HTTPS enforcement, and cookie consent management. However, WHOIS data is unavailable due to GDPR and rate limiting, which is typical for EU government domains. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit incident response contact information and security.txt is noted as an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing incident response contacts, enhancing security headers, and maintaining regular audits of third-party scripts to sustain security and trust.

S

Société Française de Dermatologie

sfdermato.org

53

The Société Française de Dermatologie (SFD) is a well-established French non-profit professional society dedicated to promoting dermatology research, education, and public health. With over 130 years of history and more than 2400 members, it serves medical professionals, researchers, and patients by providing educational resources, funding opportunities, and organizing congresses. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design consistent with its mission. Technically, the site employs a modern tech stack including Bootstrap, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, some security best practices such as security headers and explicit security policies are missing, which could be improved to enhance the security posture. From a security perspective, the site shows good privacy compliance with GDPR-aligned cookie consent and anonymized analytics. No vulnerabilities or suspicious activities were detected. The absence of WHOIS data limits domain trust analysis, but the professional content and certifications like HONcode support legitimacy. Overall, the site is a trustworthy and authoritative resource in the dermatology field, with recommendations to improve security headers, publish security policies, and clarify domain registration data to further strengthen trust and compliance.

V

Vegane Gesellschaft Österreich

vegan.at

54

Vegane Gesellschaft Österreich is a well-established non-profit organization dedicated to promoting vegan and plant-based nutrition in Austria. The website serves as an educational and community platform offering resources such as events, recipes, nutritional information, and advocacy tools. It holds a strong market position as a leading vegan society in Austria with a consistent brand presence and active social media engagement. Technically, the site is built on Drupal 7 with modern JavaScript libraries and analytics tools like Matomo and Google Tag Manager, reflecting a mature digital infrastructure. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks some advanced security headers and explicit incident response information. Overall, the site demonstrates a high level of trustworthiness and compliance with GDPR, making it a credible and safe resource for its audience.

S

Sport Na Františku

sportnafrantisku.cz

45

Sport Na Františku operates a well-established sports complex located in the heart of Prague 1, offering a variety of sports facilities and activities primarily targeting children, schools, and the general public. The website presents a professional and user-friendly interface with detailed information about sports programs, pricing, and event hosting options. Technically, the site is built on WordPress with modern JavaScript libraries and includes cookie consent management and Google Tag Manager integration, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and some privacy controls, but lacks advanced security headers and published security policies. The absence of WHOIS data limits full domain legitimacy verification, representing a moderate risk. Overall, the site is trustworthy and well-positioned in its local market but would benefit from enhanced compliance documentation and security hardening.

E

Ealys

ealys.com

41

Ealys is a French web development agency specializing in the creation, redesign, and maintenance of websites and web applications, primarily serving clients in the North-East region of France including Metz, Nancy, and Strasbourg. With over 20 years of experience, the company targets a diverse clientele ranging from SMEs to large groups and institutional clients. Their service offerings include website creation, web application development, hosting, security, and audits, positioning them as a comprehensive digital solutions provider in their regional market. The website reflects a professional and consistent brand image with clear service descriptions and client references. Technically, the site employs modern web technologies such as HTML5, CSS3, jQuery, and popular plugins like Revolution Slider and Fancybox, ensuring a responsive and user-friendly experience. Google Analytics is used for visitor tracking, and a cookie consent mechanism is implemented, indicating basic privacy compliance. Security-wise, the site uses HTTPS and follows some best practices but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. The domain registration data is consistent with the business claims, showing a long-established presence without privacy protection, which supports legitimacy. Overall, the website is well-structured, professional, and trustworthy, though there is room for improvement in security and compliance documentation.

K

Kampus Hybernská

kampushybernska.cz

59

Kampus Hybernská is a cultural and educational hub located in Prague, focusing on fostering creativity, innovation, and academic collaboration. The website showcases a variety of events including lectures, performances, exhibitions, and workshops aimed at students, artists, researchers, and the general public. The platform is supported by partnerships with the Prague city government and Charles University, enhancing its credibility and community impact. Technically, the site is built on Webflow with modern JavaScript libraries and includes analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS and security headers in place, complemented by GDPR-compliant privacy and cookie policies. However, the absence of WHOIS data limits domain trust verification. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for a medium-sized educational and cultural institution.

D

Društvo Crvenog križa Istarske županije

hck-istra.hr

58

Društvo Crvenog križa Istarske županije is a well-established regional humanitarian non-profit organization based in Croatia, focusing on blood donation, first aid, disaster response, and community social programs. With over 30 years of operation, it holds a strong market position in Istria County, supported by volunteers and partnerships. The website reflects a professional and consistent brand image, providing clear information and contact details to its audience. Technically, the site uses modern open-source libraries and frameworks like Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. Security posture is moderate with room for improvement in HTTP security headers and documented security policies. Privacy compliance is strong, featuring GDPR-aligned privacy and cookie policies. Overall, the website is trustworthy, safe, and serves its community-focused mission effectively.

S

Saunia

saunia.sk

55

Saunia operates as a regional sauna and wellness service provider primarily targeting customers seeking relaxation and health benefits through sauna experiences. The website presents a professional and consistent brand image, with content focused on promoting their sauna worlds and wellness offerings. The company appears to be established in the Czech Republic, serving a general audience interested in wellness and leisure. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Cookiebot for consent management, and various plugins for social sharing and popups. The site is mobile-optimized and includes structured data for SEO and organization information, indicating a mature digital presence. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is supported by cookie disclosures and consent but lacks a clearly accessible privacy policy page in the provided content. Overall, the website is trustworthy and professionally maintained, with no blocking or WAF interference detected. The absence of WHOIS data limits domain registration insights but does not detract from the site's apparent legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and adding vulnerability disclosure information to improve trust and compliance.

S

Saunia

saunia.de

52

Saunia operates as a regional wellness and sauna service provider primarily targeting customers in the Czech Republic and neighboring countries. The website presents a professional and well-structured digital presence, leveraging WordPress CMS and integrating multiple marketing and analytics tools such as Google Analytics, Microsoft Clarity, and Cookiebot for consent management. The business focuses on delivering sauna experiences and wellness services, positioning itself as a trusted brand in the hospitality sector. However, the absence of publicly available WHOIS data and explicit privacy or terms of service pages slightly detracts from the overall trustworthiness. Technically, the site is well-optimized for mobile devices and SEO, though there is room for improvement in accessibility and security header implementation. The security posture is solid with HTTPS enforced and no visible vulnerabilities, but could benefit from enhanced transparency through published security policies and vulnerability disclosure mechanisms.

S

S-Team

s-team.lu

55

S-Team is a government-backed non-profit initiative based in Luxembourg focused on preventing violence among youth in schools and educational institutions. The project engages young people to lead prevention activities and peer mediation, supported by national youth services and partner organizations. The website is well-structured, professionally designed, and provides clear information about the project, partners, and contact details. Technically, it is built on WordPress with modern libraries and frameworks, including Bootstrap and jQuery, and integrates Google reCAPTCHA and Matomo analytics with GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, limiting domain legitimacy assessment, but the presence of government logos and partner sites supports trustworthiness. Overall, the site is a credible, safe, and well-maintained platform for its intended audience.

S

Service national de la jeunesse

colonies.lu

57

The website colonies.lu is an official government-operated portal managed by the Service national de la jeunesse in Luxembourg. It serves as a centralized platform aggregating a wide variety of leisure activities such as weekends, camps, and colonies organized by multiple partner organizations. The portal targets children and youth in Luxembourg, providing event listings, registration capabilities, and practical information. The site is well-branded with consistent government logos and clear navigation, reflecting a professional and trustworthy presence. Technically, the site is built on WordPress 6.8.1 with modern plugins including Yoast SEO and Complianz GDPR for privacy compliance. It uses Bootstrap for responsive design and integrates Google Maps for location services. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Analytics are handled via Matomo with anonymized statistics, respecting user privacy. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism with opt-in for non-essential cookies. However, it lacks explicit HTTP security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The domain registration data aligns well with the website’s government affiliation and Luxembourg location, indicating high legitimacy. Overall, colonies.lu is a well-maintained, secure, and privacy-conscious government portal providing valuable services to youth in Luxembourg. Strategic improvements include adding security headers, publishing a security policy, and providing incident response contact information to enhance trust and compliance.

S

Service National de la Jeunesse (SNJ)

chalets.lu

54

Chalets.lu is an official Luxembourg government-affiliated website providing comprehensive information and booking options for youth accommodations including chalets, camping grounds, and youth hostels across Luxembourg. The platform targets youth groups, families, and tourists seeking affordable lodging options, positioning itself as a trusted government resource. The website leverages WordPress CMS with modern technologies such as Bootstrap, jQuery, and Google Maps API to deliver a responsive and accessible user experience. Privacy compliance is robust, featuring a detailed cookie policy with opt-in consent mechanisms aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity suitable for its government service role.

N

Nysse, Tampereen seudun joukkoliikenne

nysse.fi

55

Nysse is the public transportation service provider for the Tampere region in Finland, offering responsible and evolving transit solutions to residents and visitors. The website reflects a regional public service entity with a clear focus on accessibility, user convenience, and compliance with privacy regulations. The technical infrastructure leverages modern web technologies including jQuery, Bootstrap, and Cookiebot for cookie consent management, alongside Matomo for analytics, indicating a mature digital presence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of a published security policy and incident response contact suggests room for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the organization's public service mission effectively.

P

Planet Zemlja

planet-zemlja.hr

39

Planet Zemlja is a Croatian non-profit organization dedicated to environmental awareness, personal ecology, and ecological news dissemination. The website serves as a community platform offering news articles, event announcements, photo and video galleries, and educational content related to ecology. The target audience is the general public interested in environmental issues within Croatia. The business model is informational and community-driven without evident commercial transactions. Technically, the site uses a custom PHP-based CMS with jQuery and various plugins for RSS feeds, weather, and media galleries. External integrations include Google Analytics and Facebook SDK for tracking and social media engagement. However, the site lacks HTTPS on its main URLs, which is a significant security concern. Security headers are absent, and no advanced security or privacy compliance mechanisms are evident. Contact information is limited to forms without explicit emails or phone numbers. Overall, the site is functional but requires modernization and security improvements.

IRTA d.o.o. is a medium-sized regional tourism development agency based in Istria, Croatia, established in 2004. The company manages official tourism portals, contact and sales centers, and develops cultural and outdoor tourism products to promote the Istrian region. Their market position is strong within the regional tourism sector, serving tourists and local businesses with comprehensive information and services. Technically, the website uses a custom CMS with modern JavaScript libraries and Google services, but lacks HTTPS which is a significant security gap. The privacy policy is comprehensive and GDPR compliant, with a named data protection officer, reflecting good privacy awareness. However, the absence of HTTPS and security headers lowers the security posture. Overall, the site is professional and trustworthy but requires security improvements to align with best practices.

Y

Úvod | Yankeesvicky.cz

yankeesvicky.cz

46

The website www.yankeesvicky.cz is a small-scale e-commerce platform focused on retailing Yankees sports merchandise primarily targeting the Czech Republic market. The site features basic content and design, with a functional user interface and mobile optimization. It integrates several third-party technologies including jQuery, Google Maps API, and delivery service scripts, indicating a moderate level of technical maturity. However, the absence of a privacy policy and limited business information reduces its compliance and trustworthiness. Security posture is moderate with HTTPS usage and CSRF token presence but lacks advanced security headers and explicit vulnerability disclosures. Overall, the site is functional but would benefit from enhanced transparency, security practices, and privacy compliance to improve user trust and regulatory adherence.

E

Eko Kvarner

ekokvarner.hr

41

Eko Kvarner is a Croatian non-profit environmental organization focused on promoting sustainable energy, climate change awareness, and ecological protection in the Kvarner region. The website serves as an information hub providing news, activities, projects, and educational resources to local communities and stakeholders interested in environmental issues. The organization appears well-established with a domain registered since 2012 and clear contact information including physical address, phone numbers, and email. The site content is primarily in Croatian and targets regional audiences. Technically, the website uses an older CMS platform called Galaksija and relies on legacy JavaScript libraries such as jQuery and Fancybox. While the site is accessible and contains meaningful content, it loads some external scripts over unsecured HTTP, which introduces mixed content risks. The site lacks modern security headers and advanced privacy or cookie consent mechanisms, indicating room for improvement in security and compliance maturity. Hosting is provided by Totohost, a Croatian hosting provider, and the domain registrar is CARNET, a reputable Croatian academic network. From a security perspective, the site uses HTTPS but does not implement additional security headers or content security policies. No incident response or security policy pages are found, and no vulnerability disclosure or security.txt files are present. The WHOIS data is consistent with the website's business profile and geographic location, supporting legitimacy. No suspicious or malicious indicators were detected. Overall, the website is functional and provides valuable content for its target audience but would benefit from technical modernization, improved security practices, and enhanced privacy compliance to strengthen trust and resilience against threats.

O

Online Factory s.r.o.

smartform.cz

50

Smartform.cz is a Czech-based technology company operated by Online Factory s.r.o., specializing in form data validation and enrichment services. Their offerings include postal address autocompletion and validation, company data validation, email verification, name validation, and reverse geocoding. The company targets a broad audience ranging from small e-commerce shops to large enterprises, providing SaaS solutions with API integration and subscription pricing. The website demonstrates a strong market position with over 1000 companies relying on their services, including notable clients, and offers a professional, well-branded online presence.

Y

Young Survival Coalition

youngsurvival.org

64

Young Survival Coalition is a well-established nonprofit organization founded in 1999, dedicated to supporting young women aged 40 and under diagnosed with breast cancer. The organization provides comprehensive educational resources, peer support, advocacy, and fundraising initiatives to empower and assist its target audience. The website reflects a strong market position as a trusted leader in this specialized healthcare support sector, with clear branding and consistent messaging tailored to young breast cancer survivors and their support networks. Technically, the website employs a modern CMS (FusionCMS), integrates widely used analytics and tracking tools such as Google Analytics and Facebook Pixel, and is hosted with Cloudflare DNS services, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. The WHOIS data aligns well with the organization's identity, reinforcing legitimacy. No critical vulnerabilities or suspicious activities were detected. The site lacks explicit incident response or security policy disclosures, which could be enhanced to improve transparency and preparedness. Overall, the website is professional, trustworthy, and serves its mission effectively. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent for GDPR compliance, and publishing clear security and incident response policies to further strengthen security posture and user trust.

B

Best Western Amsterdam

bestwesternamsterdam.nl

51

Best Western Amsterdam operates a professional hospitality website offering hotel accommodations in Amsterdam with direct booking capabilities. The site targets travelers seeking comfortable rooms and modern facilities with a best price guarantee. The business is positioned as a medium-sized hotel entity within the hospitality sector in the Netherlands. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as Bootstrap and jQuery, and is optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no GDPR indicators are present. Overall, the site is trustworthy but could improve transparency and security practices.

The website content provided corresponds to Best Western Amsterdam, a hospitality business offering hotel accommodation and direct booking services in Amsterdam. The site is built on Joomla CMS using the Helix Ultimate framework and incorporates modern web technologies such as Bootstrap, jQuery, and FontAwesome. The technical infrastructure is moderately modern and optimized for mobile devices, with good SEO practices. However, the security posture is average, lacking visible security headers and explicit privacy or cookie policies. The WHOIS data for the queried domain www.thebaysiderestaurant.com is missing, indicating the domain is unregistered or inactive, which raises legitimacy concerns. Overall, the site is functional and professional but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

The analyzed website content corresponds to Best Western Amsterdam's official site, a hospitality business offering hotel accommodation services in Amsterdam. The site is built on Joomla CMS with modern frontend technologies such as Bootstrap and Font Awesome, integrating booking APIs and third-party scripts for enhanced user experience. However, the WHOIS data for the domain www.austinpergolaco.com is missing or indicates the domain is unregistered, suggesting a mismatch between the domain and the content provided. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. The site lacks visible contact information and compliance documentation, which impacts trust and privacy compliance scores. Overall, the site is professionally designed and safe for general audiences but requires improvements in security and compliance documentation.

The website content provided corresponds to Best Western Amsterdam, a hospitality business offering hotel accommodation and direct booking services. The site is built on Joomla CMS using the Helix Ultimate framework and incorporates modern frontend technologies such as Bootstrap, jQuery, and FontAwesome. The business targets travelers and tourists seeking comfortable stays in Amsterdam with a best price guarantee. However, the WHOIS data for the queried domain www.4unails.com is missing or indicates the domain is unregistered, which is inconsistent with the active website content. This discrepancy raises concerns about domain legitimacy and trustworthiness. The website lacks critical privacy and cookie policies, contact information, and security headers, which negatively impacts its security posture and privacy compliance. Analytics are implemented via Google Tag Manager, indicating moderate user tracking. Overall, the site demonstrates good content quality and technical implementation but suffers from significant security and compliance gaps.

L

Ler digital studio s.r.o.

lerstudio.cz

41

Ler digital studio s.r.o. is a well-established Czech digital and branding agency founded in 2013, specializing in web development, graphic design, and online marketing services. The company targets both Czech and international clients, offering tailored digital solutions including website creation, e-commerce, branding, and marketing consultancy. Their market position is reinforced by multiple partnerships with recognized entities such as Google, Wix, Meta, and industry associations, reflecting a strong reputation and trustworthiness in the digital services sector. Technically, the website employs a modern technology stack including Laravel backend, jQuery, Bootstrap, and various front-end libraries for animations and user experience enhancements. The site is hosted by Wedos, a Czech hosting provider, and demonstrates good mobile optimization and SEO practices. Analytics and tracking tools are extensively used, including Google Analytics, Microsoft Clarity, Facebook Pixel, and retargeting services, indicating a mature digital marketing infrastructure. From a security perspective, the site enforces HTTPS and includes CSRF tokens for form security. However, it lacks explicit security headers and a formal security or incident response policy. Cookie usage is disclosed but lacks an explicit consent mechanism, which may be a compliance gap. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, Ler studio presents a professional, trustworthy, and technically competent digital agency with room for improvement in security best practices and privacy compliance mechanisms. Strategic enhancements in security headers, incident response transparency, and cookie consent would further strengthen their security posture and regulatory compliance.

U

Univerzita Hradec Králové

mojeuhk.cz

44

Univerzita Hradec Králové operates a well-structured and professionally designed website targeting prospective and current students interested in higher education in the Czech Republic. The site presents multiple faculties and study programs, enriched with student testimonials and social media integration, reflecting a strong engagement with its audience. The business model is that of a public university providing educational services with a medium-sized presence in the regional education sector. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and Laravel framework, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and reCAPTCHA integration, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is trustworthy, safe, and professionally maintained.

S

Ski centrum Říčky

skiricky.cz

51

Ski centrum Říčky is a well-established recreational and hospitality business located in the Orlické Mountains, Czech Republic, founded in 2004. The company offers a variety of outdoor activities including skiing, bike rentals, bikepark facilities, mountain carts, and accommodation partnerships, targeting tourists and outdoor enthusiasts. The website reflects a solid regional market position with consistent branding and active social media presence. Technically, the site is built on WordPress with modern plugins and frameworks, providing a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and advanced security headers. Privacy compliance is well addressed with GDPR cookie consent and policy documents. Overall, the site is professional, trustworthy, and safe for general audiences.

H

Hotel Studánka

hotelstudanka.cz

44

Hotel Studánka is a well-established hospitality business located in the Czech Republic, offering a comprehensive range of services including accommodation, wellness treatments, restaurant dining, conference facilities, and event hosting such as weddings and cultural performances. The website reflects a strong regional market position with a focus on quality and customer experience. Technically, the site is built on WordPress with modern plugins and technologies, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and GDPR compliance evident through cookie consent mechanisms and privacy policies, although some security headers could be improved. Overall, the site presents a professional and trustworthy digital presence with clear contact information and active social media engagement.

P

Pivovar Hradecký Klenot

hradeckyklenot.cz

42

Pivovar Hradecký Klenot is a small, regionally focused brewery located in Hradec Králové, Czech Republic, specializing in traditional Czech lagers and specialty beers. The business operates both a physical brewery with hospitality services and an online e-shop for direct sales. The website reflects a professional and consistent brand presence with clear contact information and social media integration. The inclusion of an age verification modal demonstrates compliance with legal requirements for alcohol-related content. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, supporting a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the absence of security headers and explicit privacy policies indicates room for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Aupark Hradec Králové

aupark.cz

46

Aupark Hradec Králové operates as a modern retail shopping center located near the main train station in Hradec Králové, Czech Republic. The website showcases a variety of stores, restaurants, events, and a loyalty program targeting local residents and visitors. The business positions itself as a regional lifestyle and shopping hub with a medium-sized market presence. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers are missing and no incident response information is provided. The absence of WHOIS data reduces domain trustworthiness but the professional site content and active social media presence support legitimacy. Overall, the site is well-structured and user-friendly, serving its retail audience effectively.

R

Raab Computer s.r.o.

auditfamilyfriendlycommunity.cz

59

The Audit Family Friendly Community website serves as a national portal supporting municipal and regional efforts to improve family-friendly living conditions in the Czech Republic. The site is managed or developed by Raab Computer s.r.o., a small company specializing in web solutions. The portal provides information about the audit program, regional partners, and news updates, targeting municipalities, regional governments, and families. The business model is non-profit/governmental support with a focus on community development and audit facilitation. Technically, the website uses a traditional web stack including jQuery, FontAwesome, and several UI libraries such as Fancybox and Owl Carousel. The site is mobile-optimized with good navigation and content structure, though no CMS or hosting provider details are evident. Performance is moderate with room for improvement in accessibility and SEO. Security headers and SSL configuration details are not provided, but cookie consent mechanisms are implemented. From a security perspective, the site shows basic compliance with privacy regulations, including a privacy policy and cookie consent banner. However, WHOIS data is unavailable, which raises concerns about domain registration transparency. No explicit security policies, incident response contacts, or vulnerability disclosures are found. The site does not expose sensitive data or use vulnerable libraries visibly, but security headers and SSL details should be verified and enhanced. Overall, the website is professional and trustworthy in content and design but lacks transparency in domain registration and some security best practices. Strategic recommendations include verifying domain WHOIS data, enhancing security headers and SSL configuration, and adding explicit security and incident response policies to improve trust and compliance.