Security Directory

I

IPG Mediabrands

ipgmediabrands.com

68

IPG Mediabrands is a global media and marketing agency network focused on delivering innovative advertising and media solutions to clients worldwide. The company positions itself as a forward-thinking organization that adapts to fast-moving consumer behaviors, offering award-winning agencies and services that drive growth. The website reflects a mature enterprise with a strong digital presence, including comprehensive privacy and cookie policies aligned with GDPR requirements. Technically, the site is built on WordPress with modern plugins and libraries such as Yoast SEO, Vimeo Player API, and Swiper.js, hosted likely on WPEngine, ensuring reliable performance and scalability. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in implementing security headers and explicit incident response policies. The absence of WHOIS data is a notable gap, possibly due to privacy protection, but the overall digital footprint and branding consistency support the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing security policies, and improving direct contact availability to strengthen trust and compliance.

H

Havas Worldwide Prague a.s.

havas.cz

59

Havas Worldwide Prague a.s. is a well-established advertising and media agency based in the Czech Republic, founded in 2005. The company focuses on creating meaningful connections between brands and consumers through creativity, innovation, and media. The website reflects a professional and consistent brand image, targeting primarily businesses and marketing professionals. Technically, the site is built on WordPress with modern plugins and analytics tools, hosted via Gandi, and optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS, cookie consent, and bot management, though explicit security policies and incident response contacts are not published. Overall, the domain registration data supports the legitimacy and stability of the business.

P

PVA a.s.

forarch.cz

53

Forarch.cz represents the official website of the largest and most visited construction trade fair in the Czech Republic, organized by PVA a.s. The site showcases a well-established event with a history dating back to 1997, targeting construction professionals, exhibitors, media, and visitors. The business model revolves around organizing and facilitating a major international trade fair, providing exhibition space, registration services, and media partnerships. The website is professionally designed, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it leverages WordPress CMS with modern JavaScript libraries and integrates Google Tag Manager with consent mode to respect user privacy. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the domain and website exhibit high legitimacy and trustworthiness, with no signs of malicious activity or content safety concerns.

D

Dutch Cycling Embassy

dutchcycling.nl

44

Dutch Cycling Embassy is a medium-sized organization established in 2011, dedicated to sharing Dutch cycling expertise and technology globally to promote cycling as a sustainable and efficient mode of transport. The website positions the organization as a leading authority in cycling infrastructure, behavior, and policy, targeting governments, urban planners, and cycling advocates worldwide. The business model focuses on knowledge dissemination, consultancy, and networking through various programs and expertises. Technically, the website is built on WordPress with modern SEO and cookie compliance plugins, featuring good mobile optimization and moderate performance. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though lacks published security policies and advanced security headers. Overall, the site is professional, trustworthy, and content-rich, but could improve privacy transparency and incident response readiness.

O

OSN Česká Republika

osn.cz

59

The website osn.cz serves as the official United Nations Information Centre for the Czech Republic, providing comprehensive information about the UN's activities, priorities, and agencies. It targets a broad audience including government institutions, NGOs, schools, media, and the general public interested in UN affairs. The site is well-branded, consistent, and professionally maintained, reflecting its authoritative role as a UN representation. Technically, the site is built on WordPress with modern frameworks like UIkit and performance optimizations such as WP Rocket caching and lazy loading. It uses Cloudflare DNS and enforces HTTPS, ensuring good security fundamentals. However, explicit security headers and privacy policies are not evident, indicating room for improvement in security posture and privacy compliance. Analytics via Google Tag Manager and Google Analytics are used moderately, with basic privacy compliance. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Overall, the site is trustworthy, safe, and professionally operated, with a mature domain consistent with its long-standing presence.

P

Pavel Hnilička Architects+Planners, s.r.o.

phap.cz

55

Pavel Hnilička Architects+Planners, s.r.o. is a small architectural firm based in Prague, Czech Republic, specializing in architectural design, urbanism, and planning services. The company presents a professional online presence with a portfolio of projects and clear contact information, targeting clients interested in architectural and urban planning services in the local market. The website is built on WordPress using modern technologies such as Bootstrap and jQuery, with good mobile optimization and SEO practices. However, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal security policies. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

I

International University Sports Federation

fisu.net

52

The International University Sports Federation (FISU) operates a comprehensive and professionally designed website serving as the official portal for university sports worldwide. The site provides news, event calendars, results, educational programs, and support resources targeting universities, sports federations, media, and event organizers. Recognized by the International Olympic Committee, FISU holds a strong market position as a global leader in university sports. The website demonstrates a mature digital infrastructure built on WordPress with modern technologies such as Yoast SEO, Swiper.js, Google reCAPTCHA, and Google Tag Manager, ensuring good performance, mobile optimization, and SEO compliance. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though explicit security headers and a published security policy are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. The absence of WHOIS data reduces transparency but is common for such organizations. Overall, the website is trustworthy, professional, and well-maintained, supporting FISU's mission effectively.

S

Snow Film Fest

snowfilmfest.cz

41

Snow Film Fest is a well-established film festival focused on winter sports and outdoor adventure films, operating since 2011 and presented by the Czech magazine Svět outdooru. The website serves as a platform to showcase festival films, schedules, and locations, targeting enthusiasts of winter sports and outdoor activities primarily in the Czech Republic and neighboring regions. The festival has a stable market position with a network of local co-organizers and a consistent brand presence. Technically, the website is built on WordPress, leveraging common tools such as Google Analytics and MailerLite for marketing and analytics. The site is moderately optimized for performance and mobile devices, with good SEO practices implemented via Yoast SEO. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

F

Festival Obzory – Největší víkendová outdoorová akce v Praze! 2025

festivalobzory.cz

40

Festival Obzory is a prominent outdoor and travel festival held annually in Prague, Czech Republic, with the next event scheduled for November 7-9, 2025. The festival offers a rich program of 80 lectures, workshops, and films, targeting outdoor enthusiasts, travelers, students, and families interested in hiking, climbing, and adventure. The website serves as the main information and ticket sales platform, showcasing partners and sponsors, and providing event details. The business model centers on event organization and collaboration with partners and exhibitors.

V

VOŠ České unie sportu

vos-cus.cz

50

VOŠ České unie sportu is a specialized higher vocational educational institution based in the Czech Republic, focusing on sport management and wellness specialist programs. Founded in 2013, it offers targeted educational services to students and professionals in the sports sector, emphasizing a friendly and family-like atmosphere. The website reflects a well-structured and professionally maintained digital presence, leveraging WordPress with Elementor and Yoast SEO for content management and search optimization. Social media integration with Facebook and Instagram supports community engagement. The technical infrastructure is modern and secure, with HTTPS enforced and Google Analytics implemented for user insights. Privacy and cookie policies are present and GDPR compliant, though explicit terms of service and security policies are absent. Overall, the site demonstrates a solid security posture with room for improvement in security headers and incident response transparency.

N

Next Vision

nextvision.cz

66

Next Vision is a Czech Republic based digital marketing agency specializing in PPC, SEO, UX audits, web development, and international e-commerce expansion. The company operates its own e-shop generating over 200 million CZK in revenue and leverages this experience to provide tested strategies to clients. The website is professionally designed, mobile-optimized, and rich in content including client testimonials and case studies, positioning Next Vision as a trusted and established player in the digital marketing space. Technically, the site runs on WordPress with modern libraries and tracking tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent, though some security headers and policies could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

Toblach - Cortina

dobbiacocortina.org

55

The website www.dobbiacocortina.org represents the Toblach-Cortina Volkslanglauf, a traditional and well-established cross-country ski race in Italy, active since 1977. It holds a significant market position as the second largest Volkslanglauf in Italy, targeting ski enthusiasts and tourists. The site is multilingual, supporting German, Italian, and English, enhancing accessibility for a broad audience. Technically, the site is built on WordPress with modern plugins for SEO, cookie consent, and security, including Wordfence. It integrates Google Analytics, Google Maps, YouTube, and Flickr for enhanced user experience and marketing. Security posture is strong with HTTPS and security plugins, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information and social media presence add to business credibility. WHOIS data is unavailable, likely privacy-protected, but no suspicious indicators are found. Overall, the site is professional, secure, and compliant, serving its niche effectively.

C

CTP

ctparkpraguenorth.eu

45

CTP is a leading real estate company specializing in the development and management of industrial parks across Central and Eastern Europe. The Prague North site is a modern business hub offering logistics, warehousing, manufacturing, retail, and office spaces with excellent connectivity to Prague and major transport routes. The website demonstrates a mature digital presence with a professional design, multilingual support, and comprehensive business information. Technically, it leverages WordPress with SEO and analytics tools, ensuring good performance and user experience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site reflects a trustworthy and credible business with clear contact channels and client testimonials.

U

UOL a.s.

uol.cz

64

UOL a.s. is a Czech Republic-based accounting and tax advisory firm offering comprehensive services including accounting, payroll, online accounting systems, and tax consulting. The company targets small and medium-sized businesses and self-employed individuals, providing both physical branch support across regional cities and a robust online platform. The website reflects a mature digital presence with professional design, clear navigation, and strong trust signals such as client testimonials and GDPR compliance. Technically, the site is built on WordPress with modern plugins and analytics integrations, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts transparency but is common in professional services. Overall, UOL presents a credible and trustworthy business with a well-implemented digital infrastructure.

E

EUMETNET SNC

eumetnet.eu

55

EUMETNET is a well-established European meteorological and hydrological services network comprising 33 national members. The organization facilitates collaboration in observations, data sharing, forecasting, climate services, and support to members, positioning itself as a key player in European meteorological infrastructure. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation aimed at meteorological professionals, partners, and stakeholders. Technically, the site is built on WordPress with modern plugins and libraries, hosted by a reputable provider, and optimized for performance and mobile use. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site demonstrates high business credibility and trustworthiness.

S

STAGES HOTEL

stageshotel.com

64

STAGES HOTEL Prague is a modern lifestyle hotel located adjacent to the O2 arena in Prague, Czech Republic. It offers 300 stylish rooms including suites, conference facilities, a unique backstage bar and restaurant, fitness center, and parking. The hotel is part of Marriott's Tribute Portfolio, positioning it as a premium hospitality provider targeting concert and sports event attendees as well as business travelers. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern JavaScript libraries and integrates marketing and analytics tools such as Google Tag Manager and Bing tracking. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response information are missing. The WHOIS data is notably absent, which raises some concerns about domain registration transparency, but the strong brand affiliation and professional content mitigate this risk. Overall, the site is trustworthy and well-positioned in its market niche.

B

Behn Getränke

behn-getraenke.de

42

Behn Getränke is a regional beverage wholesaler and retailer operating in Schleswig-Holstein, Germany, with a long-standing family business history dating back to 1892. The company offers beverage markets in multiple locations and provides gastronomy consulting and event inventory services. The website is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, indicating a moderate level of digital maturity. Accessibility is a strong focus, with an advanced accessibility tool integrated to support various user needs. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

C

Chodím beze stop

chodimbezestop.cz

59

Chodím beze stop is a Czech non-profit environmental awareness initiative focused on educating visitors about responsible behavior in nature, particularly regarding waste and hygiene practices. The website provides educational content, partner collaborations, and free programs to promote sustainable tourism and nature conservation. The target audience includes outdoor enthusiasts and environmentally conscious individuals in the Czech Republic. Technically, the website is built on WordPress with Yoast SEO and uses Facebook Pixel for tracking. It demonstrates good content quality, mobile optimization, and SEO practices but lacks advanced security headers and formal security policies. The domain is newly registered but consistent with the website's Czech focus and content. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, though it could improve security posture and transparency by adding incident response and vulnerability disclosure information.

V

VšĮ „Mėlyna ir geltona“

dronatonas.lt

44

DRONATONAS is a Lithuanian non-profit initiative organized by VšĮ „Mėlyna ir geltona“ focused on supporting Ukraine by raising funds to purchase and send drones to Ukrainian forces. The website serves as a campaign platform providing information about donation methods, events like marathons and velomarathons, and merchandise sales. It targets both private individuals and businesses interested in contributing to the cause. The organization maintains a clear and consistent brand presence with professional content and active social media channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and LiteSpeed Cache, ensuring good performance and SEO optimization. The site is mobile-friendly and accessible with a cookie consent mechanism compliant with GDPR regulations. Security posture is adequate with HTTPS enforced, though some security headers could be improved. No incident response or security policy information is provided. WHOIS data aligns with the website's Lithuanian identity and non-profit nature, though domain creation date appears anomalous. Overall, the site is trustworthy, professional, and well-positioned within its niche of charitable support for Ukraine.

F

Faster.cz

faster.cz

56

Faster.cz is a Czech-based telecommunications and technology company specializing in internet services, data center operations, voice (VoIP) services, and cybersecurity. The company operates its own optical network in Brno with continuous 24/7/365 monitoring, targeting ISP providers and businesses requiring reliable connectivity and security solutions. The website reflects a professional B2B service provider with a clear market position in the regional telecommunications sector. Technically, the site is built on WordPress with modern plugins for SEO and multilingual support, and it employs Google services for analytics and advertising with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and consent management, though explicit security headers and incident response information are lacking. WHOIS data is unavailable, which slightly reduces trust but the website content and branding are consistent and professional. Overall, Faster.cz presents a credible and mature digital presence suitable for its business domain.

W

Wastex, spol s r.o.

wastex.cz

41

Wastex, spol s r.o. is a Czech Republic-based company founded in 1990 specializing in the wholesale and retail distribution of fresh fruit, vegetables, and food products. The company serves a broad range of clients including corporate dining facilities, schools, hotels, restaurants, social care institutions, and retail customers primarily in the Zlín region and surrounding districts. Their business model combines daily deliveries, brick-and-mortar retail, and specialized services such as replacement fulfillment and supplier partnerships. The website reflects a medium-sized regional wholesaler with a professional online presence and clear contact information.

E

ENVIPARTNER, s.r.o.

envipartner.cz

66

ENVIPARTNER, s.r.o. is a Czech-based company specializing in environmental consulting and municipal services, focusing on asset management, flood planning, strategic documentation, and digital mapping solutions. The company positions itself as a reliable partner for municipalities and businesses across the Czech Republic, offering a broad portfolio of services including pasportization, emergency plans, and EU funding advisory. Their market presence is supported by a well-structured website and multiple partner domains, indicating a collaborative ecosystem. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Privacy compliance is basic with privacy and cookie policies present but lacking explicit consent mechanisms. Overall, the website and business demonstrate a high level of professionalism and trustworthiness with room for enhancement in security and privacy practices.

B

Bazén Chodov - Aqua Sport Club s.r.o.

aquasportclub.cz

56

Bazén Chodov - Aqua Sport Club s.r.o. operates a local swimming pool and wellness center located in the Czech Republic, targeting residents of the Jižní Město area. The website serves as the official online presence, offering information about swimming facilities, wellness services, and swimming courses. The business appears to be a small-scale service provider focused on community health and recreation. Technically, the website is built on WordPress with common plugins such as Yoast SEO and LayerSlider, and it integrates Facebook Pixel for marketing analytics. The site is accessible, mobile-optimized, and contains structured data for SEO benefits. Security posture is moderate with HTTPS enabled but lacks visible security headers and detailed privacy or cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and branding suggest a legitimate local business. Overall, the site is functional and professional but would benefit from enhanced security practices and compliance documentation.

P

PERFECT SYSTEM

colosseum.eu

66

PERFECT SYSTEM operates as a family-owned business specializing in IT solutions for ticket sales in the Czech Republic, offering the Colosseum reservation software and related services. The company holds a leading market position in ticketing solutions for cultural events, providing software development, hardware supply, marketing, and customer support. Their target audience includes event organizers such as theaters, concert venues, museums, and festivals. The website reflects a mature digital presence with professional design and clear navigation, supporting both desktop and mobile users effectively. Technically, the site is built on WordPress with modern plugins like Elementor and Yoast SEO, ensuring good SEO and user experience. Security posture is solid with HTTPS and reCAPTCHA integration, though there is room for improvement in security headers and explicit policy disclosures. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website and business demonstrate high credibility and professionalism, with clear contact channels and trust signals. Strategic recommendations include enhancing security headers, publishing incident response information, and adding a terms of service page to further strengthen compliance and trust.

M

MENDELU

mendelu.cz

60

Mendel University in Brno (MENDELU) is a well-established educational institution in the Czech Republic, offering a broad range of study programs and research activities. The website serves multiple audiences including prospective students, current students, employees, and alumni, providing comprehensive information and services. The university maintains a strong market position as a reputable public university with a domain registered since 1997, reflecting its long-standing presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, ensuring good SEO and analytics capabilities. The site is mobile-optimized and accessible, with moderate performance. Hosting and DNS infrastructure appear stable and consistent with academic networks. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms denying ad and analytics storage by default, reflecting privacy awareness. However, explicit privacy policies, terms of service, and security incident response information are not published, representing areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and establishing a vulnerability disclosure process to strengthen compliance and trust.

HOLIDAY WORLD & REGION WORLD is a well-established international trade fair focused on tourism and regional travel, organized by ABF, a.s. The website presents comprehensive information about the event, including visitor and exhibitor details, partner logos, and news updates. The business holds a strong market position in the Czech tourism event sector, with a history dating back to 1998. Technically, the site is built on WordPress with modern plugins and libraries, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, serving its audience effectively.

A

Asociácia informačných centier Slovenska

aices.sk

59

Asociácia informačných centier Slovenska (AiCES) is a Slovak non-profit association that coordinates and supports tourist information centers across Slovakia. The website serves as a central hub for information about the association, its members, and tourism-related initiatives, including sustainable tourism campaigns. The site is well-positioned in the Slovak tourism sector with partnerships including the Ministry of Tourism and other regional entities. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance, and uses popular libraries like jQuery and Swiper.js for UI enhancements. Security posture is strong with enforced HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

C

News - Magazín TIM

czech-tim.cz

56

The website www.czech-tim.cz is an online Czech travel and lifestyle magazine named Magazín TIM, providing travel tips, event news, and regional tourism content primarily targeting a general Czech audience. The site uses WordPress CMS with Yoast SEO and integrates Google Analytics for visitor tracking. The technical infrastructure is moderately modern with good mobile optimization and SEO practices, though performance could be improved. Security posture is basic with HTTPS enabled but lacking advanced security headers and privacy compliance mechanisms such as privacy and cookie policies. WHOIS data is unavailable, likely due to privacy protection, which is common for small media sites but reduces transparency. Overall, the site is functional and professional but would benefit from enhanced privacy and security measures.

J

Jihoměstská majetková a.s.

jihomestska.cz

48

Jihoměstská majetková a.s. is a municipal property management company serving the Prague 11 district in the Czech Republic. The company provides professional services managing residential and non-residential properties, parking facilities, maintenance of greenery and roads, sports facilities, and construction projects. Their website reflects a well-established local presence with a focus on community and municipal services. The target audience includes residents, property owners, and municipal stakeholders in Prague 11. The business model centers on property and facility management with a medium-sized operational scale and a history of over a decade in the market. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Ajax Search Lite, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS with good SSL configuration, but lacks some advanced security headers and explicit privacy and cookie policies. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and uses nonce tokens in forms to prevent CSRF attacks. However, it lacks published security policies, incident response plans, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, the website is professional and trustworthy with good business credibility but requires improvements in privacy compliance and security best practices to enhance its security posture and regulatory adherence.

C

Chodovská Tvrz

chodovskatvrz.cz

45

Chodovská Tvrz is a cultural center located in a historic building in Prague, offering a wide range of cultural activities including concerts, art exhibitions, theater, cinema for children, and art workshops. The website positions itself as a unique cultural landmark on Jižní Město, targeting local residents, families, and art enthusiasts. The business model revolves around event hosting, space rentals, and ticket sales, supported by partnerships with local government and cultural organizations. Technically, the site is built on WordPress with a modern tech stack including popular plugins for SEO, event management, and user engagement. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, with no signs of blocking or malicious activity.

Б

Благодійний фонд «Схід SOS»

east-sos.org

60

Благодійний фонд «Схід SOS» є українською неприбутковою організацією, що надає всебічну допомогу постраждалим від збройного конфлікту, внутрішньо переміщеним особам, а також підтримує громади через гуманітарні, правові, психологічні та освітні проєкти. Організація має стабільну позицію на ринку благодійних фондів в Україні, активно співпрацює з міжнародними донорами та партнерами. Технічна інфраструктура сайту базується на WordPress з використанням сучасних плагінів для SEO, доступності та інтерактивності, що забезпечує добру продуктивність та мобільну оптимізацію. З точки зору безпеки, сайт використовує HTTPS, має налаштований статус домену clientTransferProhibited, але не використовує DNSSEC, а також не має видимих політик безпеки чи контактів для інцидентів. Загалом, сайт є професійним, надійним і орієнтованим на користувача, але може покращити відповідність GDPR шляхом впровадження механізму згоди на куки та публікації політики безпеки.

E

European Students' Union

esu-online.org

50

The European Students' Union (ESU) is a well-established non-profit umbrella organization representing 43 National Unions of Students across 40 European countries. Founded in 1982 and headquartered in Brussels, ESU advocates for the educational, social, economic, and cultural interests of nearly 20 million students at the European level. The organization maintains a strong presence with comprehensive content, active social media channels, and partnerships with major European institutions such as the European Commission, Council of Europe, and UNESCO. Technically, the website is built on WordPress with modern plugins including Yoast SEO and GDPR compliance tools, ensuring good SEO, accessibility, and privacy adherence. The site is mobile-optimized and features a professional design with clear navigation and user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited domain status, but lacks DNSSEC and some advanced security headers. There is no published security policy or incident response contact, and no vulnerability disclosure mechanism is present. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism aligned with GDPR. Overall, the ESU website demonstrates a mature digital presence with solid business credibility and privacy compliance. Security posture is good but could be improved by enabling DNSSEC, adding security headers, and publishing security policies. The site is safe for general audiences and free from adult or questionable content.

B

Bugs Business

bugsbusiness.nl

42

Bugs Business is a specialized software provider and advisory partner focused on the insurance sector in the Netherlands. Their core offering includes the Imago software suite tailored for insurance professionals, aiming to streamline and integrate workflows within the insurance industry. The company positions itself as a niche player delivering configurable, integrated software solutions that connect with other industry platforms such as CCS Level and ANVA. The website content and structured data confirm a professional and focused business model targeting insurance service providers, brokers, and insurers. Technically, the website is built on WordPress with modern plugins like Yoast SEO and WPML for multilingual support, and it employs Google Analytics and Tag Manager for tracking. The site is well-structured with good SEO and mobile optimization but lacks explicit privacy and cookie policies, which impacts privacy compliance. Security posture is solid with HTTPS and DNSSEC enabled, though security headers and incident response contacts are missing. Overall, the domain registration data is consistent with the business claims, showing a domain age of over a decade and no suspicious patterns. The website is accessible without WAF or blocking mechanisms, indicating good availability and trustworthiness.

E

EBZ Akademie

ebz4u.de

51

EBZ Akademie operates a specialized digital learning platform, EBZ4U, targeting professionals and companies in the real estate and housing sector. The platform offers MaBV-certified mandatory training, continuous education, and supports HR functions such as onboarding and knowledge management. The company positions itself as a modern education provider with a focus on flexible, technology-driven learning solutions. Technically, the website is built on WordPress with modern plugins including Yoast SEO and Borlabs Cookie for privacy compliance. The site is mobile-optimized, accessible, and integrates analytics tools like Matomo and HubSpot. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

E

EBZ Akademie

ebz-akademie.de

51

EBZ Akademie is a specialized educational and consulting institution focused on the real estate industry in Germany. It offers a comprehensive portfolio of services including learning modules, certified career building blocks, consulting in personal and organizational development, and networking opportunities. The organization positions itself as an expert and trusted partner for housing companies and real estate professionals, providing tools and knowledge to support a sustainable and future-proof real estate economy. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it leverages WordPress CMS with modern plugins such as Yoast SEO and Borlabs Cookie for compliance, alongside Matomo and HubSpot for analytics and marketing. Security posture is solid with HTTPS enforced and privacy-conscious analytics configurations, though it lacks some advanced security headers and explicit security policies. Overall, the site is safe, trustworthy, and compliant with GDPR cookie consent requirements, but could improve transparency by publishing privacy and terms of service documents and providing direct contact details. The domain WHOIS data is consistent with the business profile, showing no suspicious patterns or privacy protection that would raise concerns.

S

SWAT - Strategie, Branding en Creatie. Merkenbureau.

swat.nl

45

SWAT is a Dutch branding and creative agency specializing in building, creating, and strengthening brands through strategic design, creative concepts, and thoughtful branding. The company targets businesses seeking impactful brand identities and communication materials. Their market position is that of a dedicated, passionate agency focused on delivering strong and distinctive brands. Technically, the website is built on WordPress using modern plugins and frameworks, with good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements. Recommendations include enhancing security headers, adding incident response information, and maintaining plugin security.

T

Technická správa komunikací hl. m. Prahy, a.s.

libenak.eu

59

The website libenak.eu serves as the official information portal for the extensive reconstruction project of the Libeňský most in Prague, managed by Technická správa komunikací hl. m. Prahy, a.s. It provides detailed updates, project descriptions, and visualizations targeting residents, professionals, and stakeholders interested in the infrastructure development. The site is well-structured, professionally designed, and optimized for SEO and mobile devices, leveraging WordPress with Elementor and Yoast SEO plugins. Technically, it employs modern web technologies and integrates Google Tag Manager for analytics and marketing purposes. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy. Business credibility is supported by consistent branding, official partner links, and transparent project information. Overall, the site presents a trustworthy and authoritative source for the Libeňský most reconstruction project.

T

Technická správa komunikací hl. m. Prahy, a.s.

cdsw.cz

56

Technická správa komunikací hl. m. Prahy, a.s., through its CDSw department, provides specialized geographic information system (GIS) solutions focused on municipal infrastructure management in Prague. The company develops proprietary GIS applications, maintains geographic data, and offers related services such as hosting, training, and consulting. Their market position is that of a trusted municipal technology provider with a medium-sized operation and a history dating back to 1998. The website reflects a professional and consistent brand image with clear focus on their core services and target audience. Technically, the website is built on WordPress with Elementor and several plugins supporting SEO, cookie compliance, and UI components. Hosting assets are served via Azure Blob Storage, indicating a modern infrastructure. Performance and mobile optimization are good, though accessibility could be improved. The site uses Google Tag Manager and Google Analytics for tracking, with a cookie consent mechanism in place, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, showing a long-established presence and no suspicious patterns. Overall, the website is secure, professional, and compliant with privacy regulations, though it could benefit from enhanced security headers and clearer incident response information. The risk level is low, and the site effectively supports the business objectives of the municipal GIS service provider.

M

Metrostav DIZ

metrostavdiz.cz

51

Metrostav DIZ is a modern and rapidly growing construction company operating in the Czech Republic with over 25 years of experience in the construction market. It is a member of the Metrostav Group since 2017, expanding its expertise across energy, industrial, healthcare, sports, education, civil construction, and historical reconstruction sectors. The company positions itself as a reputable and ethical partner with a focus on innovation and environmental responsibility. The website reflects a professional digital presence with multilingual support and comprehensive business information. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with a detailed cookie policy and GDPR-aligned consent management. Overall, the website and business demonstrate a high level of professionalism and trustworthiness, suitable for their B2B target audience.

T

Technická správa komunikací hlavního města Prahy, a.s.

tsk-praha.cz

56

Technická správa komunikací hlavního města Prahy, a.s. (TSK Praha) is a large public company responsible for managing and maintaining the transportation infrastructure of Prague, including roads, bridges, tunnels, greenery, cycling paths, and parking facilities. The company operates under the ownership of the City of Prague and aims to improve the quality of life in the city through efficient infrastructure management and development. Their website reflects a professional and comprehensive digital presence with detailed information about their activities, projects, and public services. The technical infrastructure of the website is built on WordPress with modern plugins such as Yoast SEO, WPForms, and Instagram Feed integration. The site is well-optimized for SEO, mobile-friendly, and includes accessibility features. Security measures include HTTPS enforcement, security headers, Google reCAPTCHA on forms, and a cookie consent mechanism compliant with GDPR. Security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the website lacks explicit incident response contact information and a vulnerability disclosure policy, which are recommended for enhanced security transparency. Privacy compliance is robust, with clear privacy and cookie policies and user consent mechanisms. Overall, TSK Praha presents a trustworthy and professional online presence consistent with its role as a public infrastructure manager. Strategic recommendations include publishing incident response contacts, establishing a vulnerability disclosure program, and enhancing security policy disclosures to further strengthen trust and security posture.

Pecka.TV is a Czech-based internet television service operated by VELUS Invest SE, offering affordable IPTV packages with over 160 channels, including popular Czech and international content. The service emphasizes flexibility with no contracts, multi-device support, and features such as ad skipping and cloud DVR. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Yoast SEO, and Cookiebot for consent management. Social media presence is active on Facebook, Instagram, and YouTube. Security posture is good with HTTPS and consent mechanisms, though some security headers and policies are not explicitly published. The domain registration is consistent with the business profile and country, indicating legitimacy. However, explicit privacy policy and terms of service documents were not found in the provided content, which could be improved for compliance and trust.

P

Pražská integrovaná doprava

pid.cz

59

Pražská integrovaná doprava (PID) operates as the integrated public transportation system for Prague and the Central Bohemia region, providing comprehensive transit information including schedules, fares, route maps, and real-time updates. The website serves as a critical information hub for commuters and travelers, offering tools such as connection search, ticketing information, and news about service changes. The organization maintains a strong market position as a key public transportation provider in the region, supported by a large and well-maintained digital presence. Technically, the website is built on WordPress with modern libraries like Leaflet for mapping and Google reCAPTCHA for security on user forms, reflecting a mature and well-maintained infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is robust, with clear GDPR and cookie policies. Overall, the site is professional, trustworthy, and well-optimized for user experience.

F

FUNKE Digital

mediapartisans.com

51

FUNKE Digital is a digital media powerhouse and a 100% subsidiary of the FUNKE Mediengruppe, specializing in news websites, content verticals, and digital investments. The company positions itself as the digital motor of its parent group, leveraging modern technologies and agile teams to innovate and expand its digital offerings. The website reflects a professional and consistent brand image, targeting digital media consumers, advertisers, and investors primarily in Germany. Technically, the site is built on WordPress with modern plugins for SEO and interactive content, showing moderate performance and good mobile optimization. Security posture is strong with HTTPS and consent management in place, though some security headers and policies could be improved. Privacy compliance is robust, with clear GDPR-aligned cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and aligned with its business objectives.

A

Anamnesia

anamnesia.com

47

Anamnesia is a specialized French company providing innovative interactive, multimedia, and audiovisual solutions for museums and exhibitions. With over 15 years of experience and a portfolio of more than 100 projects, the company positions itself as a trusted partner in the cultural sector, offering end-to-end services from feasibility studies to content adaptation and technology integration. The website reflects a professional and consistent brand image, targeting museum professionals and cultural institutions. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, reCAPTCHA on forms, and GDPR-compliant cookie consent mechanisms. However, there is room for improvement in security headers and explicit security policies. Overall, the domain registration data aligns well with the business claims, reinforcing trust and legitimacy.

D

Duotones LLC

duotones.ch

49

Duotones LLC is a specialized UX and interaction design agency based in Bern, Switzerland, founded in 2016. The company focuses on delivering user experience design, interaction, and interface design services for digital media and products such as web and app design. Their client portfolio includes reputable Swiss organizations like Swisscom, PostFinance, and Universität Zürich, positioning them as a trusted player in the Swiss UX market. The website reflects a professional and consistent brand image with comprehensive service offerings including innovation workshops, digital transformation consulting, and prototyping. Technically, the website is built on WordPress 5.8.12 with modern JavaScript libraries such as Three.js and GSAP, and uses Yoast SEO for optimization. The site is mobile-optimized and includes a cookie consent mechanism compliant with GDPR. Google Analytics and Google Tag Manager are used for analytics with IP anonymization enabled. Performance is moderate with good SEO and basic accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected, and no formal security or incident response policies are published. Privacy compliance is strong with clear privacy and cookie policies. Contact is primarily via a contact form, with no direct email or phone numbers publicly listed. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, suitable for its business domain. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the security and user experience posture.

M

Musterhaus.net GmbH

musterhaus.net

10

Musterhaus.net GmbH operates a comprehensive and well-established online house building portal primarily targeting German-speaking customers in Germany, Austria, and Switzerland. The website offers extensive resources including over 2,600 houses, 350 building companies, and 46 model house parks, along with free catalog requests and detailed guides. It holds a strong market position as Germany's largest independent house building portal, supported by multiple awards and positive customer ratings. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Schema Premium, ensuring good SEO and structured data presence. The site uses jQuery, Bootstrap, and Flickity for UI components, delivering a responsive and user-friendly experience. Performance is moderate with good mobile optimization and accessibility. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. The WHOIS data for the domain is missing or not publicly available, which raises concerns about domain registration legitimacy despite the professional appearance and business presence. Overall, Musterhaus.net presents a trustworthy and professional service for house building customers but should address privacy compliance and domain registration transparency to enhance trust and security further.

F

FUNKE Digital Investments

funkedigitalinvestments.de

39

FUNKE Digital Investments operates as the investment arm of the FUNKE Digital GmbH, a family-run media group based in Germany. The company focuses on Buy & Build investment strategies targeting profitable digital companies primarily in the D/A/CH region, specializing in sectors such as Digital Publishing, Classifieds & Marketplaces, and Digital Marketing. Their business model emphasizes long-term partnerships, leveraging their expertise, network, and media reach to support sustainable growth of portfolio companies. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Revolution Slider, hosted on Hetzner servers. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Analytics are implemented via Google Tag Manager, indicating moderate user tracking. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and published security policies or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the website presents a professional and trustworthy image aligned with its business focus. The main risks relate to privacy compliance and security best practices, which should be addressed to enhance trust and regulatory adherence.

C

Center for Advanced Internet Studies (CAIS) GmbH

cais-research.de

52

The Center for Advanced Internet Studies (CAIS) GmbH operates a professional academic research website focused on digital age internet studies. The site targets researchers and stakeholders interested in internet research and digital society. The business model is that of a specialized research institute, likely non-profit, with a small organizational size and a focus on collaboration, events, and publications. The website is built on WordPress using the Divi theme and several plugins including Yoast SEO and Borlabs Cookie for privacy compliance. The technical infrastructure is modern and supports good SEO and mobile optimization, although accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. No privacy policy or terms of service were found, which is a compliance gap. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

S

Středočeská centrála cestovního ruchu

sccr.cz

49

Středočeská centrála cestovního ruchu is a regional tourism organization focused on promoting Central Bohemia as a travel destination. The website serves as a corporate portal providing information about the organization's activities, marketing campaigns, regional product sales, and tourist information centers. It targets tourists, regional partners, and media stakeholders. The organization holds a key position in the regional tourism ecosystem, collaborating with government entities and other regional partners. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and performance optimizations via WP Rocket. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS and cookie consent mechanisms compliant with GDPR. However, explicit security headers and published security policies are absent. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is unavailable, which limits domain legitimacy verification, but the website's content and partner affiliations strongly indicate a legitimate and professional entity. Overall, the website is well-structured, professional, and trustworthy for its intended audience, with room for improvement in security transparency and accessibility.