Security Directory

T

Tritón Pardubice, spol. s r. o.

triton-racks.com

48

Tritón Pardubice, spol. s r. o. is a Czech Republic-based manufacturer specializing in data cabinets, data centers, cloakroom equipment, and technical support products. Established in 1993, the company has a strong regional presence and a long tradition of engineering excellence. Their website showcases a comprehensive product catalog, company history, and technical support offerings, targeting businesses and organizations requiring reliable data infrastructure solutions. The company maintains an active social media presence and provides detailed information about their products and services, supporting a professional market position. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies including jQuery and Google Tag Manager for analytics. The site is mobile-optimized with good SEO practices and a moderate performance profile. Security-wise, the site uses HTTPS and domain transfer protections but lacks DNSSEC and some advanced security headers. Privacy compliance is well addressed with clear privacy and cookie policies and an opt-in consent mechanism. Overall, the security posture is solid but could be improved by adding a security.txt file and enhancing DNS security. The website is fully accessible without WAF or blocking mechanisms, and the domain registration data aligns well with the company's history and legitimacy. The site is safe for general audiences with no adult or questionable content detected.

T

Tritón Pardubice, spol. s r. o.

triton.cz

48

Tritón Pardubice, spol. s r. o. is a Czech manufacturing company specializing in data cabinets and locker systems, with a strong regional presence and a tradition dating back to 1996. The company offers a range of products including data cabinets, data centers, and technical support accessories, targeting industrial and business clients. Their website reflects a professional and consistent brand image, supported by comprehensive product information and downloadable resources. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies and optimized for mobile devices. Security posture is solid with HTTPS enforcement and standard security headers, although there is room for improvement in publishing explicit security policies and incident response contacts. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the website demonstrates a mature digital presence with good business credibility and trust indicators.

N

NTM

ntm.eu

52

NTM is a well-established Swedish media company focused on delivering local news and journalism to regional communities. Founded in 2002, it positions itself as one of Sweden's largest local media groups, emphasizing the importance of free speech and local engagement. The website reflects a mature digital presence with a professional design, clear navigation, and content tailored to its Swedish audience. The business model centers on media publishing and subscription services targeting local readers. Technically, the website is built on WordPress with modern plugins such as Elementor, Yoast SEO, and Slider Revolution, indicating a robust and flexible infrastructure. The use of Matomo analytics and Google Tag Manager shows a balanced approach to user tracking and marketing. Hosting appears to be managed via Tele2 DNS servers, consistent with a Swedish hosting provider. The site is mobile-optimized and accessible, with good SEO practices implemented. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected, and the domain registration data aligns well with the business claims, enhancing trustworthiness. Overall, NTM's website demonstrates a solid digital maturity level with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and public security policies could further strengthen its security posture and trust with users.

N

NTM

ntm.se

52

NTM is a well-established Swedish local media company founded in 2002, positioning itself as one of the largest local media groups in Sweden. The company focuses on delivering local news and journalistic content to support local communities. Their business model revolves around media publishing and subscription services, targeting local Swedish audiences. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, supported by privacy-conscious analytics via Matomo and a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS enforced, though improvements can be made by enabling DNSSEC and adding security headers. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a mature digital presence suitable for its business domain.

M

Malloy Law Offices, LLC

malloy-law.com

58

Malloy Law Offices, LLC is a personal injury law firm serving clients primarily in Bethesda, Maryland, Washington D.C., and Virginia. The firm specializes in various personal injury cases including car accidents, catastrophic injuries, premises liability, workers’ compensation, and wrongful death claims. Their website offers a free consultation and prominently features contact information and a client intake form, positioning them as a client-focused regional legal service provider. The firm maintains an active social media presence and uses structured data to enhance search engine visibility. Technically, the website is built on WordPress with a modern tech stack including Gravity Forms for client intake, Google Analytics and Tag Manager for tracking, Facebook Pixel, and AdRoll for advertising and retargeting. The site is optimized for performance with WP Rocket and includes Google reCAPTCHA for spam protection on forms. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. No incident response or security policy pages are published, and no vulnerability disclosure mechanism is present. The WHOIS data for the domain is unavailable, which slightly reduces trustworthiness, though the site content and business information appear legitimate and professional. Overall, the website demonstrates a solid digital presence for a small legal firm with good business credibility and technical implementation. Improvements in privacy compliance, security headers, and transparency around incident response would enhance their security posture and user trust.

Michael Gross Art is a small-scale artist portfolio website showcasing the works of Michael Gross, including paintings, prints, and works on paper. The site targets art collectors, galleries, and enthusiasts, providing detailed galleries and information about exhibitions and the artist's background. The business model centers on promoting the artist's work and facilitating contact for inquiries. Technically, the website is built on WordPress and uses common web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security-wise, the site benefits from HTTPS and uses Google reCAPTCHA for form protection; however, it lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanisms. Overall, the website is functional and professional but would benefit from improvements in security and privacy compliance to enhance trust and regulatory adherence.

F

Four Seasons Flowers

4seasonsflowers.com

54

Four Seasons Flowers is a family-owned florist business established in 1974, serving the San Diego area with flower delivery and retail floral products. The website presents a professional e-commerce platform built on WordPress and WooCommerce, offering a variety of floral arrangements, subscriptions, and classes. The business targets local consumers seeking convenient and high-quality flower delivery services. Technically, the site uses modern web technologies including Elementor, Google Analytics, Facebook Pixel, and integrates secure payment gateways such as Authorize.Net. The website is mobile-optimized and includes structured data for SEO benefits. Security posture is generally good with HTTPS and secure payment integration, but lacks explicit security headers and published privacy or cookie policies. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy. Overall, the site is trustworthy and professional but would benefit from improved transparency and security documentation.

Princeton in Africa is a well-established non-profit organization dedicated to developing young leaders through yearlong fellowships with impactful African organizations. The website reflects a mature program with a strong network of fellows, host organizations, and alumni, emphasizing leadership development and contributions across multiple sectors in Africa. The site is professionally designed using WordPress and integrates common web technologies such as jQuery, Google Analytics, and Gravity Forms for user engagement and data collection. Security posture is generally good with HTTPS enforced and secure form handling, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. The WHOIS data is unavailable or malformed, which slightly reduces domain trustworthiness, but the website content and contact information strongly support legitimacy. Overall, the site is accessible, safe, and provides comprehensive information for its target audience.

A

Amour Getaways

amourgetaways.com

44

Amour Getaways is a specialized hospitality service provider focusing on unique, romantic travel adventures and events primarily in Puerto Rico and surrounding tropical locations. The company targets couples and groups seeking intimate and exclusive travel experiences, offering services such as tropical getaways, concierge services, romantic vacations, and exclusive retreats. Their market position is niche, catering to luxury and personalized travel experiences with a small business scale. Technically, the website is built on WordPress with modern plugins including Gravity Forms for contact and lead capture, Google Tag Manager, and Google Analytics for tracking. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. SEO is adequately addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and employs some best practices such as IP anonymization in analytics and spam prevention in forms. However, it lacks visible security headers and published privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data for the domain is unusual and reduces trust slightly, though the site content and contact information appear legitimate. Overall, the website presents a professional and trustworthy front for a small hospitality business but should improve privacy compliance and security hardening to enhance trust and regulatory adherence.

F

FINEPACK

finepack.com

62

FINEPACK is a medium-sized company specializing in customized packaging production, graphic design, and global logistics services, targeting local and international brands primarily in the retail sector. The company positions itself as an experienced provider with a decade of global packaging expertise, serving over 1000 projects annually across Europe. Their website reflects a professional and consistent brand image, with comprehensive service offerings and strong client trust indicators such as reputable client logos and customer reviews. Technically, the website is built on the Webflow platform, leveraging modern technologies including Google Tag Manager, Facebook Pixel, Hotjar, and Cloudflare Turnstile CAPTCHA for security and analytics. The site is mobile-optimized, accessible, and performs moderately well, with good SEO practices and privacy compliance mechanisms in place. From a security perspective, the site enforces HTTPS, uses CAPTCHA on forms, and manages cookie consent effectively. However, explicit security headers are not confirmed, and the absence of WHOIS registration data raises concerns about domain legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low to moderate risk profile with strong business credibility but requires verification of domain registration and enhanced security header implementation to improve trustworthiness and compliance.

Golf.cz is a well-established Czech media portal focused on golf news, events, and equipment. Founded in 1996, it serves the Czech golf community with news coverage, travel tips, and an integrated e-commerce platform for golf products. The website demonstrates a mature digital presence with modern technologies including WordPress CMS, WooCommerce for e-commerce, and Google Tag Manager for analytics and marketing. The site is professionally designed with good navigation, mobile optimization, and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, Golf.cz presents a credible and trustworthy platform for golf enthusiasts in the Czech Republic.

P

Předškolní sport s.r.o.

hravelyzovani.cz

49

Předškolní sport s.r.o. operates the website hravesporty.cz, offering playful skiing and winter sports courses primarily for children aged 4 to 12. The company targets parents and schools near Prague, providing group lessons, individual instruction, and school ski trips in local ski resorts. The website is professionally designed with clear navigation, rich content, and strong trust signals such as Google reviews and partner logos. Technically, the site uses modern JavaScript libraries and frameworks, is mobile-optimized, and employs cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. Overall, the site is trustworthy and compliant with GDPR, with comprehensive privacy and terms documentation.

Fotbalunas.cz is a well-established Czech media platform focused on amateur football, providing news, photo galleries, match tips, and community discussions. Owned by KPK sport s.r.o. since 2014, it holds a strong position in the Czech amateur football community with a medium-sized operation and consistent branding. The website leverages modern web technologies and integrates multiple advertising and tracking services to monetize its content. While the site is mobile-optimized and offers good user experience, it lacks explicit privacy and cookie consent mechanisms, which impacts GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and publishing security policies. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy entity.

C

Decision 21

cernosickasance.cz

52

The website 'Decision 21' hosted at cernosickasance.cz is a small-scale Czech platform focused on enabling users to express their opinions through multiple votes, enhancing collective decision-making. The content is minimal but clearly targeted at a general audience interested in voting or decision processes. The site uses modern web technologies including React and Google Tag Manager, with images hosted on Cloudinary. However, it lacks comprehensive business information, contact details, and formal policies such as privacy or cookie policies. Security posture is adequate with HTTPS and some caching headers but lacks advanced security headers and incident response information. Overall, the site is functional but basic in content and compliance, with room for improvement in transparency and security.

H

Handwerkskammer für München und Oberbayern

hwk-muenchen-bildung.de

67

The Handwerkskammer für München und Oberbayern operates a comprehensive educational portal focused on handcraft training and continuing education in the Munich and Upper Bavaria region. The website offers a broad range of courses including Meisterkurse, Lehrlingskurse, and specialized training, targeting apprentices, skilled workers, and business leaders in the handcraft sector. The institution holds a strong regional market position as a trusted educational provider with clear branding and professional content. Technically, the website is built on the ODAV Content Management System and employs modern web technologies such as jQuery, Bootstrap, and accessibility tools like eyeAble. It integrates analytics via Google Analytics and Matomo, with a cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses best practices such as asynchronous script loading and cookie consent. However, explicit security headers like X-Frame-Options are not visibly set, and no public security policy or incident response contacts are provided. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the business identity, indicating high legitimacy. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements could include publishing a formal security policy, enhancing security headers, and providing incident response contact information to further strengthen trust and security posture.

D

Der Stall Shop

derstall.de

10

Der Stall Shop is a German-based e-commerce retailer specializing in sneakers, streetwear, and fabrics, offering exclusive brand collections such as GNSBRND. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations including Google Tag Manager, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The site demonstrates good design quality, mobile optimization, and user experience, targeting sneaker and streetwear enthusiasts primarily in Germany. Security posture is solid with HTTPS enforcement and captcha protection, though explicit security policies and headers are absent. Privacy and cookie policies are not found, indicating room for compliance improvement. Overall, the domain registration aligns with the business claims, supporting legitimacy and trustworthiness.

V

Vectron Systems AG

bonvito.net

67

bonVito is a German-based multichannel marketing platform operated by Vectron Systems AG, specializing in customer loyalty, e-payment, online table reservations, and live reporting solutions primarily for retail and hospitality sectors. The platform integrates with Vectron's POS systems, offering a comprehensive suite of marketing tools such as coupons, digital stamp cards, and direct discounts. The website is professionally designed, mobile-optimized, and provides a clear navigation structure, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS and leverages modern marketing and analytics technologies including Google Tag Manager, Facebook Pixel, and Cookiebot for GDPR-compliant cookie consent management. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and vulnerability disclosure mechanisms suggests room for improvement. The WHOIS data is notably absent, raising concerns about domain registration transparency, but the overall business credibility is supported by the professional website and parent company association. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clearer contact and legal information to strengthen trust and compliance.

I

Innovasjon Norge

innovationnorway.com

74

Innovasjon Norge is a Norwegian government agency dedicated to fostering sustainable growth and export opportunities for Norwegian businesses. The agency provides a range of services including startup support, scaling assistance, internationalization programs, and sustainability initiatives. Their market position is that of a national innovation and business development authority, targeting Norwegian enterprises seeking to innovate and expand globally. Technically, the website is built on modern frameworks such as Next.js and React, with content managed via Sanity CMS. It employs Google Tag Manager for analytics and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, reflecting good digital maturity. From a security perspective, the site enforces HTTPS, uses standard security headers, and implements cookie consent mechanisms. However, it lacks explicit security policy pages, vulnerability disclosure, and direct contact information for incident response, which are areas for improvement. The absence of WHOIS data is due to Norid's privacy policies for .no domains, but the site branding and content strongly support legitimacy. Overall, Innovasjon Norge's website presents a professional, secure, and privacy-conscious platform suitable for its government agency role. Strategic recommendations include publishing clear security and privacy policies, enhancing transparency with vulnerability disclosures, and providing explicit contact channels for security incidents to further strengthen trust and compliance.

HanseWerk AG is a large regional energy service provider based in Germany, offering a broad portfolio of energy and telecommunications services to households, businesses, and municipalities. The company operates multiple subsidiaries and focuses on electricity, gas, heating solutions, and emerging technologies such as electric vehicle charging. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service information. Technically, the site uses modern frameworks like React and integrates consent management and analytics tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data reduces trust signals but does not negate the legitimacy indicated by the website content. Overall, the site is professional, compliant with GDPR, and suitable for its target audience.

S

STEINEL

steinel.de

60

STEINEL is a German manufacturing company specializing in sensor and lighting technology. The website presents a professional and consistent brand image focused on industrial and commercial customers. The technical infrastructure includes modern JavaScript tracking tools such as Google Tag Manager, hosted on German Telekom servers, indicating a stable hosting environment. However, the website lacks visible privacy and cookie policies, security policies, and contact information, which are critical for compliance and user trust. Security posture is minimal with no detected security headers or vulnerability disclosures. Overall, the website is functional and professional but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

S

SCHMITZ-WILA GmbH

schmitz-wila.com

54

SCHMITZ-WILA GmbH is a German medium-sized manufacturing company specializing in advanced lighting solutions, including multifunctional linear light systems and LED technologies. The company targets architects, designers, and commercial clients, offering both products and project-based lighting solutions. Their website demonstrates a professional digital presence with detailed product information, project showcases, and customer engagement tools such as a product configurator and newsletter subscription. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

R

REMKO GmbH & Co. KG

remko.de

53

REMKO GmbH & Co. KG is a medium-sized German company founded in 1976, specializing in heating and climate technology products including warm air heating systems, dehumidifiers, climate systems, and heat pumps. The company operates primarily in the European market and maintains a professional online presence with a well-structured website powered by TYPO3 CMS. The website demonstrates good technical maturity with modern technologies, fast performance, and mobile optimization. Security posture is strong with HTTPS enforcement, cookie consent management, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, REMKO presents a credible and trustworthy business with clear contact information and active social media channels.

F

FABAS LUCE S.P.A.

fabasluce.it

53

Fabas Luce S.p.a. is an established Italian manufacturer specializing in decorative and technical lighting solutions, serving primarily specialized retailers and professional clients. The company offers a broad product portfolio including modular lighting systems, architectural lighting, and naval lighting, complemented by a commitment to sustainability through photovoltaic energy production. Their market position is supported by a long domain history dating back to 1999 and a professional digital presence. Technically, the website employs modern JavaScript frameworks and asynchronous loading techniques, integrating third-party services such as YouTube and Google Tag Manager for analytics and media. The site is mobile-optimized with good navigation and design quality, though some SEO and accessibility features could be enhanced. Hosting and CMS details are not explicitly identified. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks advanced security headers and DNSSEC. There is no visible cookie consent mechanism or comprehensive privacy policy addressing GDPR compliance, which represents a compliance gap. Incident response and security policies are not published, limiting transparency. Overall, the website is professional and trustworthy with moderate technical and security maturity. Strategic improvements in privacy compliance, security headers, and DNS security would enhance the security posture and regulatory adherence, reducing risk and improving user trust.

C

Comelit Group Deutschland

comelitgroup.de

65

Comelit Group Deutschland is a medium-sized technology company specializing in security and communication solutions for residential and commercial properties. Their offerings include door intercom systems, access management, video surveillance, and burglary protection. The company targets installers, property developers, TGA planners, and housing companies, positioning itself as a reputable player in the German security technology market. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates third-party services such as Cookiebot for cookie consent management, Google Tag Manager for analytics, and Trustpilot for reviews. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. The presence of ISO 27001 certification indicates a commitment to information security management. However, explicit security headers and incident response policies are not evident, and no vulnerability disclosure or security.txt file is published. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a low-risk profile with a solid security posture and compliance awareness. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and improving accessibility compliance to further strengthen trust and regulatory adherence.

A

Albert Leuchten

albert-leuchten.de

50

Albert Leuchten is a German-based manufacturer specializing in high-quality outdoor luminaires, including LED lighting solutions designed for environmental harmony and safety. The company targets both consumers and businesses seeking durable, weatherproof outdoor lighting products. Their market position is that of an established medium-sized enterprise with a focus on innovation and quality. The website reflects a mature digital presence built on WordPress with WooCommerce, integrating modern technologies such as Google Tag Manager and ConsentManager for privacy compliance. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, well-structured, and GDPR compliant, with clear contact channels and business information. No critical security or content safety issues were detected.

A

ABN GmbH by Schneider Electric

abn-electro.com

64

ABN GmbH by Schneider Electric is a well-established company specializing in metering and distribution technology products, with a history spanning over 75 years. The company operates under the Schneider Electric umbrella, offering a range of products including surge protection, field distributors, and transformer technology. The website reflects a mature digital presence built on TYPO3 CMS, featuring professional design, good mobile optimization, and comprehensive privacy compliance mechanisms such as OneTrust cookie consent. Security posture is solid with HTTPS and no visible vulnerabilities, although some security headers could be improved. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, which should be further investigated to ensure trustworthiness. Overall, the website presents a professional and trustworthy front aligned with its business sector.

R

Rádio Relax

radio-relax.cz

59

Rádio Relax is a well-established regional radio station in the Czech Republic, founded in 1998. It offers a variety of services including FM radio broadcasting across multiple cities, online streaming, podcasts, and local news coverage. The station targets a general audience within its broadcast regions and operates primarily on advertising revenue. The website is built on WordPress, leveraging common plugins for content management, cookie compliance, and media presentation. The technical infrastructure is modern enough to support a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, though advanced security headers and incident response policies are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

E

European Business Enterprise

ebe.cz

10

European Business Enterprise (EBE) is a Czech-based company established in 2002, specializing in cybersecurity, GDPR compliance, software development, project management, and data processing services. The company targets businesses and organizations requiring tailored cybersecurity solutions, compliance audits, and training, positioning itself as a trusted provider with ISO certifications and a comprehensive portfolio. The website reflects a professional and consistent brand image with clear navigation and relevant content in Czech, supported by partner projects focused on cybersecurity education and GDPR guidance. Technically, the website employs modern web technologies including Bootstrap, Google Tag Manager, and Mapbox GL JS, delivering a responsive and moderately performant user experience. Hosting and domain registration data align with the company's Czech origin and long-standing presence. However, some technical improvements are recommended, such as implementing cookie consent mechanisms and security headers to enhance privacy and security compliance. From a security perspective, EBE demonstrates good practices with HTTPS enforcement and ISO certifications, but lacks explicit incident response contacts and vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is solid but could be strengthened by adopting additional security headers and transparency measures. Overall, EBE presents a trustworthy and professional online presence with a strong focus on cybersecurity and compliance services. Strategic enhancements in privacy compliance and security transparency would further improve their risk profile and user trust.

L

LETECKÉ ZÁŽITKY.CZ - vyhlídkové lety, pilotem na zkoušku, lety balónem, tandemové sekoky padákem a další tipy na originální dárky - Letecké zážitky

leteckezazitky.cz

42

The website www.leteckezazitky.cz is a Czech e-commerce platform specializing in aviation-related experiences such as sightseeing flights, pilot training experiences, balloon flights, parachute jumps, and flight simulators. It targets consumers in the Czech Republic seeking unique aviation gifts and experiences. The site presents a professional and consistent brand image with a good quality of content and user experience. Technically, it employs modern web technologies including Bootstrap, jQuery, and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight. The site is mobile-optimized and uses HTTPS for secure communication. However, the absence of WHOIS data and lack of explicit privacy policy and contact information reduce transparency and trustworthiness. The cookie consent mechanism is implemented, indicating some level of privacy compliance. Overall, the site appears legitimate and well-maintained but would benefit from improved transparency and security disclosures.

P

Pilotní škola AeroPrague.com

aeroprague.com

59

AeroPrague is a specialized flight school based in Prague, Czechia, offering pilot training, aircraft rental, airtaxi, and sightseeing flights primarily targeting individuals interested in aviation across Europe. The website is professionally designed using WordPress and Elementor, integrating modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site employs a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced, bot protection via Cloudflare, and standard security headers in place. However, the absence of WHOIS registration data raises concerns about domain legitimacy, and the lack of explicit privacy policy and terms of service pages indicates room for compliance improvement. Overall, the website presents a trustworthy and professional front for a small transportation business with good technical maturity.

M

Město Mníšek pod Brdy

mnisek.cz

40

Mníšek pod Brdy's official municipal website serves as a comprehensive portal for residents and visitors, providing detailed information on local governance, services, cultural events, and community resources. The site is well-structured and targets the local population with relevant municipal content. Technically, the website is built on WordPress using Elementor and several plugins that enhance event management, GDPR compliance, and accessibility. The presence of a cookie consent banner and a detailed privacy policy PDF demonstrates adherence to EU data protection regulations. Security-wise, the site employs HTTPS and uses CAPTCHA services to mitigate automated abuse, though some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is reasonable for a municipal entity. Overall, the website is professional, trustworthy, and compliant, with moderate technical performance and good user experience.

W

Webthinx

webthinx.com

63

Webthinx is a technology service provider specializing in web page creation, mobile application development, e-commerce solutions, and custom software tailored to client needs. The company targets businesses and individuals seeking digital transformation and custom development services. The website is built using modern technologies such as React and Next.js, indicating a contemporary technical infrastructure. Google Tag Manager is employed for analytics and tracking, reflecting a moderate level of digital maturity. Security posture is moderate with HTTPS usage implied, but lacks visible security headers and detailed privacy or security policies. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the website presents a professional front but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and credibility.

M

Městský úřad Spálené Poříčí

spaleneporici.cz

50

The website spaleneporici.cz serves as the official digital presence of the municipal office of Spálené Poříčí, a town in the Czech Republic. It provides residents and visitors with comprehensive information about the town, including local news, official documents, event calendars, and tourism-related content. The site targets local citizens, tourists, and stakeholders interested in municipal services and community activities. The business model is government/public service oriented, focusing on transparency and community engagement. The domain is well-established since 2001, reinforcing its credibility and trustworthiness. Technically, the website employs a modern tech stack including HTML5, CSS, JavaScript, and integrates Google services such as Analytics, Tag Manager, reCAPTCHA, and Translate. It uses the vismo CMS platform, which is common for Czech municipal websites. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and domain registration are consistent with Czech providers, supporting local presence. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid but could be enhanced by adding security headers and formal policies. Overall, the website is a trustworthy, well-maintained municipal portal with good content quality and user experience. It demonstrates compliance with privacy regulations and employs standard security practices. Strategic improvements in transparency around security policies and incident handling would further strengthen its posture.

E

e-masters GmbH & Co. KG

intelligent-modernisieren.de

55

INTELLIGENT MODERNISIEREN is a German brand operated by e-masters GmbH & Co. KG, providing comprehensive information and services related to energy-efficient and smart modernization solutions for residential and commercial buildings. The website serves as a platform connecting users with a large network of qualified specialist companies and reputable manufacturers, offering expert knowledge, product showcases, and interactive planning tools. The company positions itself strongly in the energy sector with a focus on sustainable and modern technologies such as photovoltaics, heat pumps, and smart home systems. Technically, the website is built on TYPO3 CMS, integrates modern consent management via Usercentrics, and uses Google Tag Manager for analytics, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and consent-based tracking, though some security headers and explicit security policies are absent. Overall, the site is professional, GDPR compliant, and trustworthy, with clear contact information and strong branding consistency.

e-masters GmbH & Co. KG operates a specialized community platform serving the electrical and SHK trades in Germany, providing marketing cooperation, discounts, and training opportunities to its members. The website is well-structured, professionally designed, and targets trade professionals with relevant content and offers. Technically, the site is built on TYPO3 CMS, integrates modern tools like Google Tag Manager and Cookiebot for consent management, and employs secure login mechanisms for members. The security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site demonstrates good compliance with GDPR and privacy standards, with clear cookie policies and consent mechanisms. No critical vulnerabilities or suspicious activities were detected, indicating a trustworthy and professional online presence.

C

Caspersen Energie & Haustechnik GmbH

elektro-caspersen.de

63

Caspersen Energie & Haustechnik GmbH is a well-established German company specializing in electrical installations, photovoltaic systems, smart home solutions, and safety inspections such as DGUV V3 and E-Check. With over 60 years of experience, the company positions itself as a reliable and innovative service provider for both residential and commercial clients. The website reflects a professional and trustworthy business with clear service offerings and customer engagement features. Technically, the site is built on WordPress using Elementor and optimized with modern SEO and performance tools. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is compliant with GDPR and provides comprehensive contact information, enhancing business credibility.

H

HEINRICH KRUMME Gesellschaft für Sanitär- und Heizungstechnik mbH

krumme-brunsbuettel.de

49

HEINRICH KRUMME Gesellschaft für Sanitär- und Heizungstechnik mbH is a medium-sized German company specializing in innovative and energy-efficient solutions in building services engineering and plant construction, with over 50 years of experience. The company targets B2B clients requiring heating, cooling, ventilation, sanitation, project management, and maintenance services. The website reflects a professional and consistent brand presence with clear navigation and relevant project references. Technically, the site uses a modern CMS (Contao), integrates common libraries like jQuery and Bootstrap, and employs Google Analytics and Cookiebot for tracking and consent management. Security posture is solid with HTTPS and cookie consent blocking, though additional security headers could enhance protection. Overall, the site is compliant with GDPR and provides clear contact information, supporting business credibility and trust.

S

S.A.T. Alternativtechnik

alternativtechnik.de

50

S.A.T. Alternativtechnik is a small German company specializing in the planning, installation, and maintenance of solar and alternative energy systems, including heating solutions. The company targets private and commercial customers seeking to reduce energy costs and increase energy independence. The website is professionally designed using WordPress with the Divi theme and includes structured data to enhance search engine visibility. Technical infrastructure includes Google Tag Manager and Rank Math SEO plugin, with Google Analytics present but disabled by default in the EU region to comply with privacy regulations. Security posture is moderate with HTTPS enforced and consent mode implemented, but lacks advanced security headers and published security policies. Overall, the website is accessible, trustworthy, and provides clear contact information, though it would benefit from enhanced privacy and security disclosures.

P

PARROT MEDIA GmbH

parrot-it.de

57

PARROT MEDIA GmbH is a small-sized IT system house based in Lübeck, Germany, specializing in premium webhosting, cloud services, IT support, and data protection solutions primarily targeting businesses in Northern Germany. The company offers a broad portfolio of IT services including desktop management, remote support, cloud infrastructure, and Microsoft 365 integration, positioning itself as a reliable regional IT partner with long-term client relationships. Technically, the website is built on TYPO3 CMS with modern web technologies, responsive design, and a moderate performance profile. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the website demonstrates good privacy compliance and business credibility with clear contact information and partner affiliations. The risk profile is low with no suspicious indicators detected.

V

Vleeko

vleeko.com

49

Vleeko is a well-established digital marketing agency based in Mexico, with a strong presence in major cities such as CDMX, Puebla, Hermosillo, and Guadalajara. The company offers a comprehensive suite of digital marketing services including brand design, web design, Google Ads, Facebook Ads campaigns, social media management, and digital strategies. With over 20 years of experience and multiple certifications from Google, AMIPCI, HubSpot, and others, Vleeko positions itself as a trusted partner for businesses seeking to enhance their digital footprint. The website reflects a professional and consistent brand image, supported by good content quality and clear navigation.

D

demokratie.today - Deutschlands Nr.1 Consul-Dienstleister

demokratie.today

51

demokratie.today is a specialized service provider focused on delivering Consul citizen participation software, positioning itself as Germany's leading Consul platform provider. The website targets German municipalities and government entities aiming to enhance democratic engagement and citizen collaboration. The business model revolves around software services and consulting for democratic participation, with a clear market position supported by social media presence and structured data implementation. Technically, the site is built on WordPress with modern plugins for SEO, performance, and multilingual support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements are recommended in security headers and formal privacy documentation. Overall, the site is professional, trustworthy, and compliant with basic GDPR requirements, though it lacks explicit privacy and terms of service pages. Strategic recommendations include enhancing security headers, publishing privacy and incident response policies, and maintaining regular security audits to strengthen trust and compliance.

Eurovea Riverside is a residential real estate project by JTRE a.s., located in Bratislava, Slovakia, offering luxury apartments with river views as part of the larger Eurovea City development. The website is professionally designed using Drupal 10, with modern analytics and marketing tools integrated, including Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 for form security. The site demonstrates good privacy compliance with a comprehensive privacy policy and cookie consent mechanism. Security posture is strong with HTTPS, DNSSEC, and anti-bot protections, though explicit security headers and incident response policies are not published. Contact information is clear and accessible, supporting business credibility. Overall, the website is trustworthy, well-maintained, and suitable for its target audience.

J

JTRE a.s.

euroveacity.sk

51

Eurovea City is a premier real estate development project in Bratislava, Slovakia, managed by JTRE a.s. The website showcases a comprehensive portfolio of residential, office, shopping, and leisure projects, including Slovakia's first skyscraper, Eurovea Tower. The site is professionally designed, mobile-optimized, and uses modern technologies such as Drupal 10, Google Analytics, and Facebook Pixel. Privacy and cookie compliance are well implemented, with clear policies and consent mechanisms. Security posture is strong with HTTPS, DNSSEC, and reCAPTCHA, though some security headers could be improved. Contact information is complete and transparent, supporting business credibility. Overall, the website reflects a mature digital presence aligned with a large real estate business.

R

Total trygghet för privatpersoner & företagare - Riksskydd

riksskydd.se

55

Riksskydd is a Swedish security service provider targeting private individuals and business owners, offering protection and security solutions. The website is built on WordPress using Elementor and integrates modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Trustpilot widgets. The technical infrastructure is hosted by a reputable provider, LoopiaGroup2, with a domain registered since 2018 and a long expiry date, indicating stability. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy and security policies. Contact information and incident response details are not clearly presented, which could impact user trust and compliance. Overall, the website is professional and functional but would benefit from enhanced transparency and security documentation.

P

Pumpkin TD | Official website of the known Warcraft III Map

pumpkintd.com

52

Pumpkin TD is a fan-made custom tower defense map for Warcraft III, offering players a strategic and engaging gameplay experience. The website serves as the official hub for downloads, community engagement via Discord, and support through Patreon. It features rich multimedia content including video guides and changelogs, targeting Warcraft III players and tower defense enthusiasts. The business model is primarily community-driven with free distribution and optional supporter contributions. Technically, the website is built using modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as YouTube IFrame API, Google Tag Manager, and Redistats for analytics. The site is mobile-optimized, accessible, and performs well with fast loading times. However, it lacks some security headers and formal privacy or cookie policies. From a security perspective, the site enforces HTTPS and implements good practices such as ARIA labels and keyboard navigation support. No forms collect sensitive data, reducing risk exposure. However, the absence of privacy and cookie policies, security headers, and incident response contacts indicates areas for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the active and professional website presence. Overall, Pumpkin TD's website is a well-designed, content-rich platform with strong community engagement but requires enhancements in privacy compliance, security headers, and domain registration transparency to improve trust and security posture.

T

TeamUpdraft

teamupdraft.com

66

TeamUpdraft is a small technology company specializing in WordPress plugins that provide backup, migration, optimization, and security solutions for WordPress site owners and developers. The website is built on WordPress with WooCommerce integration and uses modern technologies such as Google Tag Manager and Nelio A/B Testing for marketing and analytics. The domain is registered with NameCheap and uses Cloudflare DNS, indicating a stable and legitimate technical infrastructure. Security posture is good with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. The website content is professional and relevant to its target audience, but lacks explicit contact information and detailed compliance documentation. Overall, the site is trustworthy and technically sound but would benefit from enhanced privacy compliance and security best practices.

A

Archinfo

archinfo.sk

58

Archinfo.sk is a professional Slovak architectural portal providing comprehensive information, news, events, and resources for architects, designers, and related professionals in Slovakia. The site offers a variety of content including articles, discussions, competitions, and a database of firms and products, positioning itself as a key information hub in the Slovak architectural sector. Technically, the website uses a custom CMS with a technology stack including jQuery, Google Fonts, Font Awesome, and various JavaScript plugins. It implements HTTPS with good SSL configuration and integrates Google Analytics, Google Tag Manager, and Facebook SDK for analytics and marketing. Security posture is moderate with HTTPS and reCAPTCHA in place, but the use of an outdated jQuery version and lack of security headers are notable vulnerabilities. Privacy compliance is good with cookie consent and a privacy policy present, though no explicit security or incident response policies are published. Overall, the website is professional, content-rich, and trustworthy, with room for technical and security improvements.

K

KLIMAK COMFORT

klimadodomu.sk

65

KLIMAK COMFORT operates a professional e-commerce platform specializing in HVAC and renewable energy products such as air conditioners, heat pumps, photovoltaic systems, and underfloor heating. Established in 1993, it holds a strong market position in Slovakia as a leader in technical building equipment. The website offers comprehensive product listings, consultation services, and after-sales support, targeting residential and commercial customers interested in energy-efficient solutions. Technically, the site uses a modern tech stack including jQuery, Slick Carousel, and Google Tag Manager, running on the Unisite CMS platform. It demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, employs standard security headers, and integrates cookie consent mechanisms, reflecting a mature security posture. However, explicit security and incident response policies are not published, and no vulnerability disclosure information is available. Overall, the site is trustworthy, professionally designed, and compliant with GDPR requirements, making it a reliable platform for its target audience.

F

Froda AB

froda.se

10

Froda AB is a Swedish financial services company specializing in providing tailored business loans and savings accounts primarily targeting small and medium-sized enterprises. The company emphasizes transparency, customer-centric service, and digital ease of access, supported by strong trust indicators such as a high Trustpilot rating and BankID integration. Their business model focuses on democratizing access to financing with no hidden fees and a lowest price guarantee, positioning them as a competitive player in the Swedish SME finance market. Technically, the website is built on Webflow with modern tracking and marketing tools, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of security headers and a formal security policy page suggests room for improvement. The lack of WHOIS data is a notable anomaly, potentially indicating privacy protection or registration issues, but the professional website content and consistent branding mitigate immediate concerns. Overall, Froda presents a credible and professional online presence with minor technical and compliance gaps.

Q

Qred Bank AB

qred.se

64

Qred Bank AB is a specialized financial institution founded in 2015, focusing on providing financing solutions tailored for small and medium-sized enterprises across several European countries including Sweden, Finland, Denmark, Norway, Netherlands, Belgium, and Germany. Their core offerings include business loans, corporate credit cards with cashback benefits, and high-interest savings accounts. The company positions itself as a niche bank dedicated to supporting small business growth with fast and accessible financial products. The website reflects a mature digital presence with multi-language support and strong branding consistency. Technically, the website is built on the Webflow platform, integrated with HubSpot for marketing and customer engagement, and uses Google Tag Manager and Intellimize for analytics and optimization. The site is well-optimized for performance, mobile responsiveness, and SEO, with modern security headers and HTTPS enforced. Privacy compliance is robust, featuring cookie consent mechanisms and GDPR-aligned policies. From a security perspective, the site demonstrates good practices including secure transport, content security policies, and no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance trust and transparency. The absence of WHOIS data for the exact subdomain www.qred.se suggests it may be a subdomain or alias, but the main domain qred.se is presumably registered and used. Overall, Qred Bank's website presents a professional, trustworthy, and user-friendly platform for SME financing. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and continuing to monitor third-party scripts for security risks to maintain a strong security posture.