Security Directory

P

Pilot Institute

pilotinstitute.com

62

Pilot Institute is a reputable online education provider specializing in aviation training, including drone and airplane pilot certification courses. Established in 2019, it has grown to serve over 250,000 students with a strong market presence supported by positive reviews and a 4.9-star rating. The company offers expert-designed curriculums aimed at helping students pass FAA exams and achieve pilot licenses. Their business model centers on online course enrollment and learning management systems, targeting individuals seeking pilot certification and drone business skills. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO, Google Tag Manager, and Facebook SDK. The site is mobile-optimized, accessible, and performs moderately well. Security is solid with HTTPS enabled and no exposed sensitive data, though it lacks some advanced security headers and published security policies. Privacy compliance is partial, with a clear privacy policy but no cookie consent mechanism. Overall, the security posture is good but could be improved by implementing security headers, incident response disclosures, and cookie consent. The domain WHOIS data is consistent with the business claims, showing transparency and legitimacy. The website is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving privacy compliance mechanisms.

A

Asental Group

asental.cz

44

Asental Group operates as a medium-sized real estate company specializing in commercial and industrial property development, sales, and leasing primarily in the Czech Republic. Their website showcases multiple real estate projects including office complexes and industrial parks, targeting investors and businesses seeking property solutions in the region. The company maintains a professional online presence with clear navigation, project details, and compliance with privacy regulations. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and Google Maps API, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS usage and cookie consent mechanisms, though explicit security headers and incident response information are absent. Overall, the site is trustworthy and well-maintained, with room for security enhancements.

O

OPTIO CZ s.r.o.

optio.cz

52

OPTIO CZ s.r.o. is a Czech Republic-based medium-sized creative agency specializing in DTP services, graphic design, photography, video production, content creation, publishing, and digital publishing. The company emphasizes a collaborative and family-like culture and has a diverse portfolio including digital magazines, books, and apps. Their market position is that of a reliable and quality-focused studio with over ten years of experience. Technically, the website uses modern web technologies such as Bootstrap, Google Fonts, and Google Maps API, with good mobile optimization and a professional design. Security posture is moderate with HTTPS usage but lacks advanced security headers and privacy policies. The absence of WHOIS data limits domain registration trust insights but the website content and contact information support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

P

PLAYGROUNDS

playgrounds.ch

60

PLAYGROUNDS is a Swiss-based platform dedicated to providing information about playgrounds, targeting families and children. The website is professionally designed with consistent branding and good content quality, serving a niche local market. Technically, it employs modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for consent management, running on the Umbraco CMS. The site is well-optimized for mobile and SEO, with moderate performance. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy and cookie policy with GDPR adherence. However, the site lacks explicit terms of service, incident response, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. Overall, the website is trustworthy, secure, and suitable for its target audience.

L

liebesexundsoweiter

liebesexundsoweiter.ch

69

liebesexundsoweiter.ch is a Swiss non-profit organization website dedicated to sexual education and related social topics. The site provides educational content, workshops, and resources aimed at a general audience in Switzerland. The organization positions itself as a niche educational provider with a focus on youth and adult education in sexual health and social awareness. The website is built on the Umbraco CMS platform and integrates modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. Hosting and development appear to be managed by Swiss-based OPTEN AG, ensuring regional compliance and performance. Security posture is strong with HTTPS enforced, appropriate security headers, and a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with detailed policies and user consent management. However, the site lacks explicit terms of service and a dedicated security or incident response policy. Overall, the website is professional, trustworthy, and suitable for its educational mission, with moderate technical maturity and good security hygiene.

P

PLAYGROUNDS

lasalleouverte.ch

62

PLAYGROUNDS is a Swiss-based platform dedicated to providing information and community engagement around playgrounds, targeting families and children. The website is professionally designed with a consistent brand presence and offers detailed content relevant to its niche audience. Technically, the site leverages modern web technologies including Umbraco CMS, Google Maps API, and various JavaScript libraries to deliver an interactive user experience. Security-wise, the site enforces HTTPS, employs security headers, and integrates cookie consent mechanisms compliant with GDPR, although it lacks explicit security policy and incident response disclosures. Overall, the website demonstrates a solid security posture and good privacy compliance, with moderate technical performance and user experience.

P

PLAYGROUNDS

chindaktiv.ch

52

PLAYGROUNDS is a Swiss-based platform dedicated to providing information and community engagement around playgrounds, targeting families and children. The website is professionally designed with a consistent brand presence and offers key services such as playground information and event listings. The platform uses Umbraco CMS and integrates modern web technologies including Google Tag Manager, reCAPTCHA, and Google Maps API to enhance user experience and security. Cookie consent is implemented comprehensively, reflecting good privacy compliance practices. Security posture is strong with HTTPS and security headers in place, although no explicit security policy or incident response information is published. Overall, the website is trustworthy, well-maintained, and suitable for its target audience.

A

Active City

activecity.ch

66

Active City is a Swiss-based community initiative offering free sports and movement courses for all age groups, promoting outdoor and collective physical activities without registration requirements. The website is professionally designed using Umbraco CMS and integrates modern technologies such as Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance and user experience enhancement. The technical infrastructure supports good performance and mobile optimization, with a moderate level of accessibility and SEO optimization. Security posture is solid with HTTPS enforcement and cookie consent management, though some security headers could be improved and explicit security policies are absent. Overall, the website is trustworthy, transparent, and well-aligned with its community service mission.

R

RADIX Schweizerische Gesundheitsstiftung

primokiz.ch

69

RADIX Schweizerische Gesundheitsstiftung is a Swiss non-profit health foundation focused on promoting health in communities, exemplified by their Primokiz program targeting healthy municipalities. The website reflects a professional and consistent brand presence with clear health-related content aimed at municipalities, health professionals, and families. The technical infrastructure is modern, leveraging Umbraco CMS, Google Tag Manager, Cookiebot for consent management, and Google Maps API, indicating a mature digital presence. Security posture is strong with HTTPS, security headers, CSRF protections, and bot mitigation via reCAPTCHA. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, explicit security policies and incident response information are not found, representing an area for improvement. Overall, the website is trustworthy, secure, and compliant with GDPR, serving its target audience effectively.

R

RADIX Schweizerische Gesundheitsstiftung

radix.ch

69

RADIX Schweizerische Gesundheitsstiftung is a Swiss non-profit health foundation dedicated to health promotion and prevention. The organization targets Swiss residents interested in improving their health and well-being through educational programs and services. The website reflects a professional and consistent brand image, with a clear focus on healthcare and public health sectors. The foundation operates with a medium-sized organizational footprint and leverages modern web technologies to engage its audience effectively. Technically, the website is built on the Umbraco CMS platform and integrates a variety of modern JavaScript libraries and APIs, including Google Tag Manager, reCAPTCHA, Cookiebot for consent management, and Google Maps API. The site demonstrates good mobile optimization and moderate performance, with a solid SEO foundation and basic accessibility features. From a security perspective, the site enforces HTTPS, employs strong security headers, and uses cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a publicly available security policy and incident response information represents an area for improvement. Overall, RADIX.ch presents a trustworthy and professionally maintained online presence with strong privacy compliance and a clear focus on user data protection. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party script security to sustain and improve its security posture.

T

tegut... gute Lebensmittel GmbH & Co. KG

tegut.com

62

tegut... gute Lebensmittel GmbH & Co. KG is a well-established German supermarket chain operating approximately 350 stores across six federal states. The company specializes in offering a wide range of quality food products, including regional, organic, vegan, and vegetarian options, emphasizing sustainability and transparency since its founding in 1947. The website reflects a mature digital presence with comprehensive content, customer engagement features such as a loyalty program (tebonus), recipe collections, and nutritional plans. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates multiple marketing and analytics tools while maintaining GDPR compliance through a consent management platform. Security posture is strong with HTTPS enforcement and privacy controls, although explicit security headers could be improved. Despite the absence of WHOIS registration data, the website's professionalism, certifications, and trust signals indicate a legitimate and credible business. Overall, tegut demonstrates a robust online presence aligned with its brand values and customer expectations.

V

Vajra & Delibio

delibio.be

45

Vajra & Delibio is a family-owned wholesale distributor specializing in organic (BIO) food products in Belgium, offering a catalog of over 5000 references including fresh and dry goods. The website is professionally designed, leveraging the PrestaShop e-commerce platform, and integrates modern technologies such as Google Maps API and Google Tag Manager for analytics. The site is fully accessible, mobile-optimized, and provides clear navigation through extensive product categories. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response contacts are published. WHOIS data is restricted due to registry policy, which is typical for .be domains, but the website content and social media presence support legitimacy. Overall, the site demonstrates a mature digital presence suitable for its B2B wholesale market.

MGM spol. s r.o. is a well-established Czech manufacturer specializing in thermal cutting machines and welding aggregates, with a strong presence across Eastern and Central Europe. The company offers proprietary CNC control systems and a range of products including plasma and autogenous cutting machines. Their website reflects a mature business with detailed product showcases, video demonstrations, and comprehensive contact information. Technically, the site uses a modern front-end stack including Bootstrap and jQuery, though some libraries are outdated. Security posture is moderate with cookie consent implemented but lacking explicit privacy policies and security headers. WHOIS data is unavailable due to EURid privacy restrictions, which is typical for .eu domains, but the business legitimacy is supported by consistent contact and company information. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

B

Blaues Kreuz Schaffhausen-Thurgau

blaueskreuz-sh-tg.ch

56

Blaues Kreuz Schaffhausen-Thurgau is a well-established Swiss non-profit organization with over 125 years of experience supporting individuals and families affected by alcohol and addiction issues in the Thurgau and Schaffhausen regions. The organization offers a range of services including counseling, outpatient alcohol withdrawal, group programs, and community engagement through initiatives like the Brocki Pfyn thrift shop and KafiTreff meetings. Their market position is strong within the regional non-profit sector, supported by recognized certifications such as ZEWO and QuaTheDA. Technically, the website is built on TYPO3 CMS and integrates modern web technologies including Google Custom Search, Matomo analytics for privacy-conscious tracking, and Google Tag Manager. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some improvements could be made in accessibility and security headers. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. It uses Matomo analytics, which is privacy-friendly, but lacks explicit cookie consent mechanisms and security.txt files for vulnerability disclosure. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, Blaues Kreuz Schaffhausen-Thurgau presents a trustworthy and professional online presence suitable for its mature target audience. Strategic improvements in privacy compliance and security best practices would further enhance their digital maturity and user trust.

Kind Jugend Familie KJF is a Swiss regional service provider focused on supporting children, youth, families, institutions, and municipalities through various social services including leisure activities, school support, social work, and counseling. The organization operates under the parent domain jsw.swiss, indicating a government or non-profit affiliation. The website is professionally designed, mobile-optimized, and provides comprehensive information about its services and initiatives. Technically, the site uses modern web technologies such as the webIQ CMS framework, Google Maps API for location services, and Google Fonts for typography. Security posture is solid with HTTPS enabled and cookie consent implemented, though some security headers are missing. No vulnerabilities or suspicious patterns were detected. The WHOIS data is unavailable due to privacy protection, which is typical for Swiss domains and justified for this type of organization. Overall, the website is trustworthy, compliant with privacy regulations, and serves its target audience effectively.

B

Blaukreuz-Brockis

blaukreuz-brocki.ch

58

Blaukreuz-Brockis operates as a Swiss non-profit organization focused on retailing second-hand goods through multiple physical Brocki shops across Switzerland. Their business model supports social causes, including addiction support and integration services. The website reflects a mature digital presence built on Drupal 10, integrating Google Maps for location services and Matomo for privacy-conscious analytics. The site is professionally designed, mobile-optimized, and provides clear contact information for various locations. Security posture is solid with HTTPS and security headers in place, though explicit privacy and cookie policies are missing, which impacts compliance. No incident response or vulnerability disclosure information is provided, representing an area for improvement. Overall, the website is trustworthy and serves its target audience effectively.

K

Klangwelt Toggenburg

klangwelt.swiss

56

Klangwelt Toggenburg is a cultural and educational organization based in the Toggenburg region of Switzerland, offering unique experiences centered around sound, resonance, and traditional music culture. The website showcases a well-structured digital presence with rich content about events, courses, venues, and cultural offerings, targeting a broad audience interested in music, culture, and wellness tourism. The organization holds a strong regional market position with international recognition for its Klangweg sound trail and related activities. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and CookieYes for consent management, integrated with Laravel backend session management. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is solid with HTTPS enforced and session management in place, though it lacks explicit security headers and a public security policy or incident response contact. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent banner, and GDPR adherence. Overall, the website is trustworthy, professional, and well-maintained, with room for improvement in security transparency and incident response readiness.

A

ASM Global

asmglobal.com

74

ASM Global is a leading global venue and event management company specializing in managing stadiums, arenas, convention centers, theaters, and unique venues worldwide. The company operates over 450 premier venues across five continents, delivering live experiences in sports, music, entertainment, and business sectors. ASM Global's business model focuses on best-in-class management, diversified revenue streams, advisory and investing services, and innovative hospitality solutions. The website reflects a mature digital presence with comprehensive content, clear branding, and a professional user experience. Technically, the website employs a modern technology stack including AngularJS, jQuery, Google Tag Manager, and various performance and accessibility tools. It uses HTTPS with good SSL configuration and integrates cookie consent management via Osano, demonstrating attention to privacy compliance. Analytics tools such as Google Analytics and Microsoft Clarity are used for user behavior insights, with moderate user tracking levels and GDPR compliance indicators. Security posture is solid with HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security headers and incident response information suggests room for improvement. The WHOIS data for the domain is unavailable for the 'www' subdomain, which is a minor concern but likely due to querying the wrong domain variant. Overall, the website is trustworthy, professional, and compliant with privacy standards. Strategic recommendations include enhancing security headers, publishing explicit security policies and incident response contacts, auditing third-party scripts regularly, and improving accessibility features. These steps will strengthen the security posture and trustworthiness of ASM Global's digital presence.

E

eclair design s.r.o.

eclair.cz

56

eclair design s.r.o. is a Czech Republic-based company specializing in custom website development and web design services. With over 15 years of market presence and more than 250 completed projects, the company targets businesses, government offices, and organizations seeking tailored web solutions. Their offerings include modern cloud-based hosting using Amazon Web Services and a proprietary CMS called Pagebuilder, which supports comprehensive website management. The company also provides graphic design services to complement web development projects. Technically, the website leverages modern web technologies such as Bootstrap for responsive design, Google Fonts for typography, Google Analytics for visitor tracking, and Google Maps API for location display. The use of a proprietary CMS indicates a degree of digital maturity and control over content management. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site uses HTTPS, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance and user trust. No WHOIS data is available, which limits domain legitimacy verification and slightly reduces trustworthiness. The site does not show signs of WAF blocking or malware, and contact information is clearly presented with company registration details. Overall, the website is professional and trustworthy, but improvements in privacy compliance and security best practices are recommended to enhance user trust and regulatory adherence.

A

Animals life

animalslife.net

65

Animals Life NET is a small non-profit organization based in Latvia that operates a global platform for live streaming animal shelters to support animal welfare. The website facilitates donations and purchases of supplies for shelters worldwide, targeting animal lovers and donors. The platform is technically built on WordPress with integrations for live chat, push notifications, and analytics. While the site is professionally designed and content-rich, some security best practices such as advanced headers and cookie consent are missing. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the site presents a trustworthy and functional platform for its niche audience.

M

Max Zeller Söhne AG

zellerag.ch

60

Max Zeller Söhne AG is a Swiss-based company specializing in the development and manufacturing of clinically proven herbal medicines. The company positions itself as a leading player in the Swiss herbal medicine market, targeting consumers interested in natural health and well-being solutions. Their website provides detailed product information, educational content on phytotherapy, and multiple language support, reflecting a mature digital presence. The business model focuses on product development, manufacturing, and retail distribution through online channels and physical outlets. The company maintains a consistent brand image and offers clear contact information and social media engagement.

J

JoinGo Mobile Console

joingo.com

41

JoinGo operates a technology platform focused on providing a mobile console solution, likely with geolocation and mapping capabilities as indicated by the integration of Google Maps API and related libraries. The website serves primarily as a web application interface rather than a marketing or informational site, targeting professional or enterprise users who require mobile console functionalities. The domain is well-established, registered since 2002, indicating a mature business presence. Technically, the site uses modern JavaScript libraries such as CropperJS and Intl-MessageFormat, and leverages external resources like Google Maps and FontAwesome. Hosting appears to be on Amazon AWS infrastructure based on DNS servers. However, the site lacks SEO optimization, accessibility features, and comprehensive metadata. Performance is moderate with basic mobile optimization. From a security perspective, the site lacks visible security headers and DNSSEC is not enabled, which are areas for improvement. No privacy, cookie, or terms of service policies are present, and no contact or incident response information is provided, limiting transparency and compliance. The domain registration is consistent and trustworthy, but the website itself could benefit from enhanced security and compliance measures. Overall, the website is functional as a platform console but lacks public-facing content and compliance documentation. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to enhance trust and regulatory compliance.

Ecocardprint is a Swiss-based company specializing in eco-responsible printing solutions, focusing on sustainable business cards made from FSC® certified wood, biodegradable PET, and recycled cardboard. The company targets environmentally conscious businesses across sectors such as hospitality, retail, watchmaking, tourism, and health insurance. As a member of the Schellenberg Group, Ecocardprint benefits from a network of related companies enhancing its market position. The website is built on WordPress with the Divi theme and includes modern plugins for SEO and user experience. While the site is well-designed and mobile-optimized, it lacks explicit privacy and cookie policies, which may impact compliance with GDPR and other regulations. Security posture is moderate with HTTPS enforced but missing some security headers and incomplete reCAPTCHA configuration. Contact information is clearly presented, including phone, email, physical address, and a contact form. Overall, the site reflects a professional and trustworthy business with room for improvement in privacy compliance and security hardening.

Hartzell Propeller Service Center is a specialized FAA-certified repair station focused exclusively on the Hartzell product line, offering propeller repair, overhaul, sales, and support services. The company positions itself as a trusted source for guaranteed lead times, industry-best warranty, and a dedicated exchange program, targeting general aviation operators and maintenance organizations. The website reflects a medium-sized business with a professional and consistent brand presence, supported by customer testimonials and FAA certification as trust indicators. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and Google Analytics for enhanced user experience and tracking. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks DNSSEC and security headers, representing areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional, trustworthy, and functional, but could enhance compliance and security practices to strengthen its digital maturity and risk posture.

V

Volg Konsumwaren AG

volg.ch

51

Volg Konsumwaren AG operates a well-established Swiss retail grocery chain focused on local convenience stores, offering a broad range of products, online shopping, and community engagement through recipes and magazines. The website reflects a mature digital presence with multilingual support and integration of modern web technologies such as TYPO3 CMS, Google Maps API, and Google Tag Manager. The security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting Volg's strong market position in Switzerland.

T

Triulzi AG

triulzi.ch

59

Triulzi AG is a well-established electrical engineering company operating primarily in the Oberengadin and Albula regions of Switzerland. As a member of the Burkhalter Gruppe, it benefits from access to advanced technologies and a broad service portfolio including installations, automation, telematics, and maintenance. The company positions itself as a leading regional provider with a strong focus on building technology and electrical services. The website reflects a professional and consistent brand image, targeting regional customers and potential apprentices interested in electrical trades. Technically, the site is built on TYPO3 CMS, integrates Google services for analytics and maps, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA, and controlled script loading, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is trustworthy, well-structured, and provides comprehensive contact information across multiple locations.

The Bibliotheksverbund Graubünden website serves as a centralized catalog portal for 37 school and community libraries within the canton of Graubünden, Switzerland. It provides users with the ability to search media collections, make reservations, and renew loans. The site supports multiple regional languages (German, Italian, Romansh) reflecting its target audience. The business model is a public service facilitating shared library resources, positioning it as a key regional educational infrastructure.

G

Gemeinde Surses

surses.ch

54

The website for Gemeinde Surses serves as the official municipal portal providing residents and visitors with comprehensive information about local government services, news, tourism, and public administration. It is well-positioned as a local government authority site in Switzerland, targeting the local community and tourists. The site offers key services such as administrative contacts, news updates, local maps, and tourism information. Technically, the site uses a mix of Google Analytics, Google Maps API, and jQuery 1.12.0, with a custom or proprietary CMS. The site is mobile-optimized and has good SEO practices but could improve accessibility and update some libraries. Security-wise, the site enforces HTTPS and anonymizes IPs in analytics but lacks explicit security headers and incident response information. Overall, the site is trustworthy, professional, and compliant with basic privacy and cookie regulations, suitable for its government function.

L

Lesestoff

lesestoff.ch

64

Lesestoff.ch is a Swiss online bookstore offering a wide range of books, eBooks, audiobooks, and related products. It operates both online and through physical stores in multiple Swiss cities, targeting book buyers primarily in Switzerland and German/English speaking customers. The website is professionally designed with good content quality, clear navigation, and multilingual support. The technical infrastructure uses modern JavaScript libraries and APIs, ensuring a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and secure login forms, but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but could improve in privacy and security transparency.

T

TV Marko

tvmarko.cz

53

TV Marko is a small audiovisual studio based in the Moravskoslezský region of the Czech Republic, operating since 1999. The company specializes in media production and broadcasting, including local television (TIK Bohumín), corporate films, advertising spots, aerial drone filming, and 2D/3D animation. Their market position is regional with a focus on local businesses and media consumers. The website presents a professional design with clear navigation and detailed service descriptions, supported by client logos and contact information. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Fonts, but lacks advanced CMS or hosting details. Security posture is moderate with HTTPS assumed but missing key security headers and privacy policies, indicating compliance gaps. No tracking or analytics scripts were detected, suggesting minimal user tracking. Overall, the site is safe, trustworthy, and professionally maintained but would benefit from enhanced security and privacy compliance measures.

Razítko.cz is an e-commerce platform specializing in the sale of original Trodat stamps and related accessories. The website offers a comprehensive online ordering system with customization options including text input, logo uploads, and color selection. It serves primarily businesses and individuals in the Czech Republic and supports multiple languages including Czech, Slovak, and English. The platform integrates multiple local producers and branches, providing customers with localized e-shop options and contact points. Technically, the website is built on WordPress 5.4.16, utilizing Bootstrap for responsive design, jQuery for interactivity, and several third-party libraries such as Select2 and Google Maps API. Analytics and user behavior tracking are implemented via Smartlook and Google Tag Manager. The site employs HTTPS and a cookie consent mechanism, indicating a baseline level of privacy compliance. From a security perspective, the site has good SSL configuration but lacks advanced security headers and uses an outdated jQuery version, which could expose it to known vulnerabilities. There is no visible security policy, incident response information, or vulnerability disclosure mechanism, which are areas for improvement. The absence of WHOIS data reduces domain transparency and trustworthiness, although the business presence and content suggest legitimate operations. Overall, Razítko.cz presents a professional and functional e-commerce site with good user experience and moderate technical maturity. Strategic improvements in security practices, privacy documentation, and domain transparency would enhance its risk posture and trustworthiness.

C

CommonSpirit Health

centura.org

71

CommonSpirit Health's Mountain region website serves as a comprehensive healthcare portal connecting patients and communities across Colorado, Kansas, and Utah. The site offers extensive information about healthcare services, provider search, scheduling, and patient tools including a dedicated patient portal. The content is professionally presented with a strong emphasis on community impact and patient-centered care. Technically, the site is built on Drupal 10 with integrations of Google Maps API, Google Tag Manager, Adobe DTM, and Bizible for analytics and marketing. The website is mobile-optimized, accessible, and SEO-friendly. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies could be improved. WHOIS data is unavailable due to privacy protection, which is typical for large healthcare organizations. Overall, the website is trustworthy, professional, and well-maintained, supporting a large healthcare network.

S

Society of Professional Rope Access Technicians

sprat.org

36

The Society of Professional Rope Access Technicians (SPRAT) is a well-established non-profit organization founded in 1998, specializing in rope access certification, standards development, and education. The organization serves a diverse audience including companies, technicians, and government agencies involved in rope access work, primarily within the energy sector. SPRAT offers certification programs, membership benefits, regulatory support, and networking opportunities, positioning itself as a leading authority in the rope access industry globally. Technically, the website is built on WordPress with a Divi child theme, leveraging common libraries such as jQuery, Bootstrap, and Font Awesome. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Hosting details are limited, but the domain registrar is Network Solutions, LLC, with a long-standing domain age consistent with the organization's history. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and important security headers. There is no visible privacy or cookie policy, nor incident response or vulnerability disclosure information, which indicates gaps in compliance and security transparency. Tracking is minimal, limited to Jetpack stats, and no advertising or affiliate programs are detected. Overall, the website is professional and trustworthy with good business credibility but requires improvements in privacy compliance, security headers, and explicit policies to enhance its security posture and regulatory adherence.

E

Equinox

equinox.com

74

Equinox is a premium luxury fitness and wellness brand offering a comprehensive range of services including personal training, group fitness classes, Pilates, and spa amenities. The website reflects a high level of professionalism and targets affluent consumers seeking a lifestyle-oriented fitness experience. The technical infrastructure is modern, leveraging React and Next.js frameworks, with integrations for marketing and analytics tools such as Adobe Launch, Optimizely, and Facebook Pixel. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is noted but does not detract significantly from the overall legitimacy given the brand's strong external presence and professional web implementation.

Italmec s.r.o. is a Czech-based company specializing in the sale and service of industrial machinery and chemical products, primarily sourced from Italy. With over 25 years of experience, the company targets demanding Czech customers in sectors such as washing lines, packaging machines, sports and civil surfaces, and plastic pipe production equipment. The business model focuses on B2B sales with a strong emphasis on personalized customer service. The website reflects a small-sized, established manufacturing sector player with a niche market position. Technically, the website employs common web technologies including jQuery, Google Analytics, Google Tag Manager, Google Maps API, and Google Fonts. The site is hosted under the REG-ZONER registrar and uses standard web fonts and scripts. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. No CMS or advanced frameworks are detected. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are critical for GDPR compliance. HTTPS usage is assumed but not explicitly confirmed in the provided data. The site uses Google Analytics and Tag Manager for tracking, indicating moderate user tracking without explicit consent mechanisms. No forms or input fields are present, reducing immediate risk from input-based vulnerabilities. Overall, the website is functional and provides clear business contact information but lacks modern privacy and security best practices. Strategic improvements in security headers, privacy compliance, and mobile optimization would enhance trust and compliance. The domain WHOIS data supports the legitimacy and longevity of the business, aligning with the website content and business claims.

P

Pigeon Mountain Industries, Inc.

itrsonline.org

55

The International Technical Rescue Symposium (ITRS) website represents a professional event platform focused on technical rescue disciplines, co-hosted by PMI and CMC. It targets rescue professionals and volunteers, offering event registration, ticket sales, and presentation proposal submissions. The site is well-branded and consistent with its niche market positioning, serving a specialized audience in the rescue and emergency response sector. The domain is well-established since 2008, registered to Pigeon Mountain Industries, Inc., a US-based entity consistent with the event location and sponsors. Technically, the website is built on the Tilda CMS platform, integrating modern tools such as Google Analytics, Google Tag Manager, and Ticket Tailor for ticketing. It uses HTTPS with Cloudflare DNS but lacks DNSSEC and some security headers, indicating room for security enhancements. The site is mobile-optimized with good navigation and content relevance, though accessibility and SEO optimizations are basic. Security posture is moderate with HTTPS enforced and domain transfer protection enabled, but missing DNSSEC and security headers reduce the overall security score. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanisms. Business credibility is strong with clear contact information, event details, and trusted partner links. Overall, the website is a credible and professional event platform with moderate technical maturity and security posture. Strategic improvements in privacy compliance and security hardening would enhance trust and regulatory adherence.

S

Start Driving

startdriving.cz

54

Start Driving is a Czech Republic-based educational project focused on enhancing the knowledge, responsibility, and driving skills of novice drivers. Supported by the Association of Driving Schools of the Czech Republic and other partners including government bodies, the project offers free advanced driver training and educational activities for young drivers, driving instructors, and responsible parents. The website reflects a well-structured initiative with strong institutional backing and a clear mission to improve road safety through education. Technically, the website is built on WordPress and integrates modern tools such as Google Tag Manager, Google Analytics, and YouTube embeds. It implements a cookie consent mechanism compliant with GDPR requirements, although a dedicated privacy policy page is not clearly found. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, some security headers are missing, and the Google Maps API key is exposed in the source code, which should be reviewed for restrictions. From a security perspective, the site uses HTTPS and has no visible critical vulnerabilities or exposed sensitive data. The cookie consent mechanism and partner trust signals enhance its compliance posture. The absence of WHOIS registrant data limits domain trust assessment but does not detract significantly from the overall legitimacy given the project's nature and partnerships. Overall, Start Driving presents a credible, well-supported educational platform with moderate technical maturity and good security practices. Strategic improvements in privacy policy transparency and security header implementation are recommended to enhance compliance and trust further.

The Associação Comercial e Industrial de Vizela (ACIV) is a well-established regional business association founded in 1986, serving the commercial and industrial sectors of the Vale de Vizela region in Portugal. The organization focuses on representing and promoting the interests of local businesses through services such as legal and financial consultancy, professional training, job insertion support, and event organization. The website reflects a professional and community-oriented approach, targeting local entrepreneurs and business stakeholders. Technically, the website employs a traditional web stack with Bootstrap, jQuery, and various UI libraries to deliver a responsive and user-friendly experience. While the site is functional and moderately optimized for mobile devices, there is room for improvement in performance and accessibility. The absence of a known CMS suggests a custom-built platform maintained by the developer acastro dev. From a security perspective, the site uses HTTPS and includes basic form validation but lacks critical security headers and anti-CSRF protections. No privacy or cookie policies are present, which is a compliance gap under GDPR. The integration of Facebook SDK indicates some level of user tracking, but overall tracking is minimal. The WHOIS data aligns well with the business identity, supporting legitimacy and trustworthiness. Overall, the site is a credible and useful resource for its target audience but would benefit from enhanced security measures and privacy compliance to strengthen trust and regulatory adherence.

M

MSC Abensberg e.V.

msc-abensberg.de

51

MSC Abensberg e.V. is a well-established motorsport club based in Abensberg, Germany, with a rich history dating back to 1928. The club specializes in speedway racing and hosts significant international events such as the FIM Speedway Grand Prix Qualifying rounds. It also emphasizes youth development and community engagement, serving over 500 members. The website reflects a professional and consistent brand image, providing comprehensive event information, news updates, and membership details. Technical infrastructure includes modern web technologies, integration of Google Maps for location services, and Google Analytics for visitor tracking, complemented by a GDPR-compliant cookie consent mechanism. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and explicit security policies. Overall, the site is user-friendly, mobile-optimized, and trustworthy, supporting the club's community and promotional goals effectively.

C

CIRCUIT project

circuitproject.eu

53

The CIRCUIT project website represents an EU-funded initiative focused on fostering circular, smart, resilient, and sustainable transport infrastructures across Europe. The project supports the deployment of Green and Innovation Public Procurement and innovative engineering practices, with pilot projects located in multiple EU countries. The website positions itself as a niche player in the transportation and energy sectors, targeting stakeholders involved in transport infrastructure and public procurement. Technically, the site is built on WordPress with Elementor and uses modern web technologies including Google Maps API for geographic visualization of pilots. The site is well-structured, mobile-optimized, and employs SEO best practices via Yoast SEO. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. WHOIS data is privacy protected, typical for EU domains, and no suspicious patterns were detected. Overall, the site is professional and trustworthy but could enhance privacy compliance and security posture.

C

Connected Automated Driving

connectedautomateddriving.eu

46

Connected Automated Driving is a European-focused knowledge base and community platform dedicated to Connected, Cooperative and Automated Mobility (CCAM). The website serves as a hub for research, innovation projects, policy updates, standards, and data sharing related to automated driving technologies. It targets researchers, policymakers, industry stakeholders, and the broader CCAM community, providing structured information and event updates to support the advancement of automated mobility in Europe. Technically, the site is built on WordPress with modern plugins and analytics tools such as Google Analytics and Matomo, ensuring a good level of digital maturity and user engagement tracking. The site is well-structured, mobile-optimized, and SEO-friendly, with clear navigation and consistent branding. Security-wise, the website enforces HTTPS, implements cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, it lacks explicit security headers and incident response information, which could be improved. The domain WHOIS data is not publicly available due to EURid privacy policies, but the website's professional presentation and EU funding acknowledgments support its legitimacy. Overall, the site presents a trustworthy and valuable resource for the CCAM community with moderate to high security and privacy compliance.

F

Fédération Internationale de Motocyclisme

fim-moto.com

58

The Fédération Internationale de Motocyclisme (FIM) operates as the global governing body for motorcycle sport and motorcycling activities. It commands a strong market position as the authoritative international federation, organizing multiple world championships and providing comprehensive regulatory frameworks. The website serves a diverse audience including motorcycling enthusiasts, federations, and members of the FIM family, offering news, official documents, event calendars, and educational resources. Technically, the site is built on TYPO3 CMS and integrates modern analytics tools such as Matomo and Google Tag Manager, alongside multimedia content from YouTube and Google Maps APIs. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced, but could benefit from additional security headers and explicit security policies. Despite the strong digital presence and professional content, the absence of WHOIS registration data for the domain introduces a notable risk factor. This inconsistency may be due to privacy protection or a lookup failure but warrants further investigation. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the website reflects a mature and professional digital asset for an international sports federation, with recommendations focusing on enhancing security headers, clarifying domain registration status, and publishing incident response information.

F

Fédération Internationale de Motocyclisme

fim-landspeed-worldrecords.com

50

The website www.fim-landspeed-worldrecords.com serves as the official platform for the Fédération Internationale de Motocyclisme (FIM) to publish and manage motorcycle land speed world records. It provides comprehensive information including record rules, event calendars, news, galleries, and registration for record attempts. The site targets motorcycle enthusiasts, racers, and professionals interested in land speed achievements, positioning itself as an authoritative source in this niche. Technically, the site is built on TYPO3 CMS, leveraging modern analytics tools such as Google Tag Manager and Matomo, and integrates Google Maps for location services. The design is professional, mobile-optimized, and SEO-friendly, offering a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses standard analytics scripts but lacks explicit security headers and a published security policy or incident response information. The absence of WHOIS registration data reduces domain trustworthiness, although the website's branding and external links to official FIM domains support its legitimacy. Overall, the site is functional, secure, and compliant with privacy regulations, but could improve transparency and security posture.

F

Fédération Internationale de Motocyclisme

fim-awards.com

49

The Fédération Internationale de Motocyclisme (FIM) operates the FIM Awards website to celebrate and recognize world champions in motorcycling disciplines globally. The site serves as an informational and promotional platform for annual award ceremonies, trophies, and related motorcycling events. It targets motorcycling enthusiasts, sports professionals, and stakeholders within the motorcycling sports community. The organization positions itself as a reputable international non-profit entity dedicated to the sport's promotion and recognition. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including Google Tag Manager and Matomo for analytics, and integrates Google Maps API for location services. The site demonstrates good mobile optimization, SEO practices, and a professional design, although some accessibility features could be enhanced. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses reputable analytics tools. However, it lacks explicit security headers and does not provide visible incident response or vulnerability disclosure information. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and branding strongly indicate a legitimate organization. Overall, the website presents a professional and trustworthy front for the FIM Awards, but improvements in transparency regarding domain registration, security policies, and contact information would enhance trust and compliance. Strategic recommendations include implementing security headers, publishing incident response contacts, and verifying domain registration details to strengthen credibility and security posture.

A

Autonómia Alapítvány

autonomia.hu

41

Autonómia Alapítvány is a well-established Hungarian non-profit organization focused on strengthening civil society and supporting marginalized groups, particularly Roma integration. Operating since 1990, it delivers community development programs, advocacy, and international cooperation. The website reflects a professional and consistent brand presence with clear contact information and social media integration. Technically, the site is built on WordPress with modern libraries such as jQuery and Bootstrap, and integrates Google Maps and analytics tools. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though it lacks some security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and serves its audience effectively.

L

Lubrialbi – Comércio de Lubrificantes, Lda.

lubrialbi.com

48

Lubrialbi – Comércio de Lubrificantes, Lda. is a Portuguese company specializing in the sale and technical support of lubricants and related products. Established in 2010, the company operates a professional website offering product information, technical and safety data sheets, lubrication plans, and an online store. The website targets professional users and businesses requiring lubricant solutions, positioning itself as a trusted regional player with partnerships with major brands such as Castrol and BP. Technically, the website is built on a custom PHP platform using Bootstrap and jQuery, with integrations including Google Fonts, Google Maps, and Google reCAPTCHA for security. While the site is functional and professionally designed, it shows room for improvement in mobile optimization and security headers. Security posture is moderate, with good anti-spam measures on the contact form but lacking DNSSEC and advanced HTTP security headers. Privacy compliance is strong, with clear privacy and cookie policies and a consent mechanism. Overall, the website is trustworthy and professional, with a domain age consistent with the business history.

M

MagNet Bank Zrt.

magnetbank.hu

72

MagNet Bank Zrt. is a Hungarian financial institution providing a broad range of banking services including retail and corporate accounts, loans, deposits, and digital banking solutions. The bank emphasizes community banking and sustainable finance, targeting individuals, companies, and nonprofit organizations. The website reflects a medium-sized bank with a solid market position in Hungary, offering comprehensive services and community-oriented programs. Technically, the website uses modern JavaScript frameworks like Vue.js and integrates popular analytics and marketing tools such as Google Tag Manager and Facebook Pixel. The site is well-optimized for mobile and SEO, with good performance and accessibility standards. Security-wise, the site enforces HTTPS, employs multiple security headers, and integrates recaptcha for form protection, indicating a strong security posture. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and compliant with GDPR and other relevant regulations.

M

Mateřské centrum Veselý Paleček, z.s.

veselypalecek.cz

53

Mateřské centrum Veselý Paleček, z.s. is a Czech non-profit community center focused on providing educational and recreational activities for parents, especially mothers on maternity leave, and their children. The organization operates locally in the Blansko and Boskovice regions, offering services such as children's creative workshops, Montessori educational approaches, parent-child exercise classes, and social/legal counseling. The website reflects a small-sized, community-oriented entity with a clear mission to support families and children. Technically, the website is built on WordPress using the Mesmerize theme and several plugins including Yoast SEO, Contact Form 7, and Cookie Law Info. It integrates Google Analytics and Google Maps API for tracking and location services. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. Hosting and domain registration are consistent with the Czech location, provided by Wedos. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers in the HTML source. Cookie consent mechanisms are implemented, supporting GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the Google Analytics plugin is not fully configured, and security headers like Content-Security-Policy and X-Frame-Options are not explicitly present, which could be improved. Overall, the website presents a trustworthy and professional online presence for a local non-profit organization. The risk profile is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, completing analytics configuration, and maintaining regular security updates to strengthen the security posture further.

P

Prodesi/Domesi

prodesidomesi.cz

51

Prodesi/Domesi is a Czech Republic based architectural and construction firm specializing in wooden houses and dřevostavby (wooden buildings). The company offers comprehensive services including individual design and realization, turnkey wooden houses, and public/commercial buildings. With over 22 years of experience and 250 completed projects, they hold a solid regional market position. Their website is professionally designed, mobile optimized, and includes clear navigation and relevant content targeting clients interested in wooden architecture. Technically, the site uses WordPress CMS with modern tracking and analytics tools such as Google Analytics, Hotjar, and Google Tag Manager. Hosting is provided by OVH, a reputable provider. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though security headers and incident response policies are absent. Overall, the site is trustworthy and compliant with GDPR, with clear contact information and social media presence.

K

Krematorium zvířat Praha

krematoriumzviratpraha.cz

34

Krematorium zvířat Praha operates as the sole pet crematorium located directly in Prague, offering comprehensive cremation services including office, ceremonial hall, cooling box, and cremation furnace all in one place. The business targets pet owners seeking dignified farewell services for their animals, providing 24/7 availability including weekends and holidays. Their unique guarantee system ensures individual cremation with camera recording for transparency. Technically, the website employs legacy technologies such as jQuery 1.10.2 and uses Google Analytics and Google Maps API for tracking and location services. While the site is accessible and professionally designed, it lacks modern security headers and uses outdated libraries, posing potential risks. The absence of WHOIS data and presence of hidden spammy links to gambling and adult sites reduce trustworthiness. Overall, the security posture is moderate with room for improvement in privacy compliance and technical modernization.