Security Directory

N

NOHO

cihlovka.cz

52

The website cihlovka.cz represents a real estate development project by NOHO focused on revitalizing the Kukleny district in Hradec Králové, Czech Republic. It highlights sustainable residential buildings, including the first passive house in the city, and offers modern living solutions with amenities such as carsharing and proximity to public transport. The site is professionally designed using WordPress and WPBakery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and Wordfence plugin presence, but lacks visible security headers and privacy policies, indicating room for improvement in compliance and security best practices. Overall, the domain registration is consistent with the business claims, supporting legitimacy and trustworthiness.

P

Photon Remediation

photonremediation.com

52

Photon Remediation is a specialized environmental remediation company focused on providing advanced solutions for PFAS and other contamination challenges. The company leverages innovative technologies such as WaterGuard Nano™ and EarthGuard PRB™ to deliver sustainable cleanup services targeting groundwater, soil, surface water, and biosolids. Positioned as a trusted partner to militaries, airports, chemical manufacturers, and academic institutions, Photon Remediation operates under the Photon Energy Group umbrella, emphasizing eco-friendly and customized remediation strategies. Technically, the website demonstrates a modern and professional digital presence, utilizing contemporary JavaScript libraries, Google Tag Manager, and invisible reCAPTCHA for form security. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, some technical improvements could be made in accessibility and security headers to enhance overall robustness. From a security perspective, the site enforces HTTPS and employs Google reCAPTCHA to protect forms, alongside a cookie consent mechanism aligned with GDPR requirements. Despite these strengths, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. No explicit security policies or incident response contacts are published, indicating room for maturity in security governance. Overall, Photon Remediation presents a credible and professional business front with solid technical implementation and privacy compliance. The main risk lies in the domain registration inconsistency, which should be addressed to strengthen trust and reduce potential reputational risks.

P

Photon Energy Group

photonwater.com

48

Photon Water, a part of Photon Energy Group, offers specialized water treatment and environmental remediation solutions focusing on the removal of PFAS and other contaminants from water and soil. The company targets businesses and organizations requiring advanced water management technologies. The website presents a professional image with clear branding and relevant content, positioning itself as a niche player in the energy and environmental sectors. Technically, the website employs a modern JavaScript technology stack including Bootstrap, jQuery, and Google reCAPTCHA for bot protection. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices evident in meta tags and structured content. However, some accessibility features appear basic, and no CMS or hosting provider information is discernible. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and published privacy or security policies. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. No contact information or incident response details are provided, limiting trust and compliance indicators. Overall, the website is functional and professional but would benefit from enhanced transparency, published policies, and improved security practices to strengthen trustworthiness and compliance posture.

D

DEBYT

debyt.cz

59

DEBYT is a small Czech architecture and furniture design studio that integrates architectural services with sociological participation and community involvement. Their offerings include architectural projects, artistic creations by architect Tomáš Petrášek, and a curated e-shop for retro and antique furniture renovation and sales. The website presents a professional portfolio and clear contact information, targeting clients interested in personalized architectural and furniture solutions. Technically, the website uses modern analytics tools and is mobile-optimized, but lacks some security headers and privacy compliance features. The absence of WHOIS data raises concerns about domain legitimacy, although the website content itself is professional and safe. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

L

Laser Game Arény – návrh a stavba Laser Arény, vybavení pro Laser Game, vesty a zbraně pro Laser Game

lasergameareny.cz

44

LaserGameAreny.cz is a Czech-based company specializing in the design, construction, and outfitting of laser game arenas. With over 25 realized projects and 13 years of experience, they position themselves as a leading European provider in this niche entertainment sector. Their services include arena design, supply of gaming equipment such as vests and guns, development of game extensions, and comprehensive operational support including marketing and reservation systems. The website is professionally designed, mobile-optimized, and provides detailed information about the business model and benefits of laser game arenas. Technically, the site uses standard web technologies including jQuery and Google Fonts, hosted on a Czech hosting provider. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. Contact is primarily via a contact page with no direct emails or phone numbers visible. Overall, the site is safe, suitable for a general audience, and reflects a credible business presence in the Czech Republic.

UI Avatars is a small technology service providing a free API to generate user initials avatars for developers and websites. The service is mature, founded in 2017, and enjoys high usage with over 1.7 billion monthly requests. The website is well designed, mobile optimized, and provides clear usage instructions and API parameters. The technical infrastructure leverages modern web technologies, Google Fonts, Google Analytics, and Cloudflare DNS for performance and reliability. Security posture is good with HTTPS enforced and no user data stored, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is strong with a comprehensive cookie consent management platform and GDPR-aligned vendor disclosures. Business credibility is moderate due to lack of direct contact information but supported by open source code and sponsor transparency. Overall, the website is trustworthy, safe, and professionally maintained.

Internetové-stránky.eu is a small Czech-based professional web development company specializing in creating websites, e-shops, and internet applications. Their services include graphic design, coding, SEO optimization, marketing, and advertising. The website content is primarily in Czech and targets local businesses and individuals seeking affordable and professional web solutions. The company provides clear contact details including email, phone, and physical address, enhancing business credibility. Technically, the website uses basic HTML, CSS, and JavaScript with legacy Google Analytics integration. There is no evidence of modern CMS or frameworks, and mobile optimization and accessibility are basic. The site lacks HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. No forms are present, reducing data collection risks but also limiting user engagement. From a security perspective, the site shows moderate risk due to missing HTTPS and outdated analytics scripts. There are no privacy or cookie policies, indicating non-compliance with GDPR requirements. The WHOIS data is consistent with the website's business information, supporting legitimacy. Overall, the site is functional but requires significant improvements in security and privacy compliance to meet modern standards. The overall risk is moderate with recommendations to implement HTTPS, update analytics, add privacy and cookie policies, and improve security headers. These steps will enhance trust, compliance, and user safety.

M

Muzeum regionu Boskovicka

muzeum-boskovicka-sbirky.cz

47

The website muzeum-boskovicka-sbirky.cz serves as an online catalog for the Museum of the Boskovice region, providing a searchable database of collection items primarily in the Czech language. The institution is a regional cultural entity focused on preserving and showcasing historical artifacts. The site is well-structured, professionally designed, and optimized for mobile devices, offering a good user experience with clear navigation and search functionalities. The business model is that of a public cultural institution, targeting researchers, historians, and the general public interested in regional history. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies such as JavaScript libraries (Select2), Google Fonts, and external cookie consent management via CookieHub. Hosting appears to be managed through a Czech registrar and hosting provider, with proper HTTPS encryption ensuring secure data transmission. Performance is moderate with good mobile optimization and accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations such as GDPR. However, there is room for improvement by adding security headers and publishing formal security policies or incident response contacts. No vulnerabilities or suspicious content were detected. Analytics usage is moderate, employing Google Analytics with user consent. Overall, the website is legitimate, trustworthy, and professionally maintained, with a strong alignment between domain registration data and business identity. It poses low risk and serves its intended audience effectively. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and possibly adding a dedicated privacy policy page to improve compliance and user trust.

Santillana is a well-established educational content provider focused on Spanish language learning materials in Brazil. The website serves as a portal offering catalogs, educational resources, and accessible content for students and educators. The business operates under the Grupo Santillana umbrella, leveraging partnerships with related educational brands such as Moderna and Richmond. The site is professionally designed with consistent branding and targets educational institutions and learners. Technically, the site uses a custom CMS (Lumis Portal) and integrates common analytics and tracking tools such as Google Analytics and Facebook SDK. Hosting is professional, utilizing AWS DNS infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy policies. Overall, the site is safe, accessible, and trustworthy for its intended audience.

M

Melrose Industries PLC

melroseplc.net

71

Melrose Industries PLC is a UK-listed, industry-leading global aerospace business specializing in manufacturing aerospace engines and structures for major OEMs across civil and defense markets. The company emphasizes value creation, technology leadership, and sustainability, serving investors, customers, and stakeholders with comprehensive reporting and governance. The website demonstrates a mature digital presence with modern technologies, accessibility features, and clear navigation. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and a public security policy are absent. The lack of WHOIS data introduces some uncertainty about domain registration legitimacy, but the professional corporate content and investor relations mitigate this risk. Overall, the website reflects a credible and well-managed aerospace business with room for security enhancements.

S

Studio River

studioriver.fr

36

Studio River is a French award-winning motion design studio specializing in creative storytelling and video production. Their website showcases a professional portfolio of short films and motion design projects for notable clients in luxury and technology sectors. The company targets creative agencies, brands, and media professionals seeking high-quality motion design services. Technically, the website is built on WordPress using the Salient theme and employs modern web technologies including jQuery, Google Analytics, and Vimeo video integration. The site is mobile-optimized, fast-loading, and well-structured with clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are absent. Privacy and cookie policies are not explicitly found, indicating compliance gaps. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security disclosures.

V

Void Software

void.pt

67

Void Software is a Portugal-based technology company specializing in custom software development, advanced AI integration, and embedded systems development. The company positions itself as a skilled, agile, and innovative technology partner offering a broad range of services including security, blockchain solutions, and DevOps. Their market approach targets businesses seeking cutting-edge technology solutions with a focus on quality and security. The website reflects a professional and consistent brand image with clear service offerings and certifications that enhance trust. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery. The site is moderately performant and well-optimized for mobile devices, though accessibility features are basic. SEO optimization is present but could be improved. No CMS or advanced frameworks were detected, indicating a custom or lightweight implementation. From a security perspective, the company demonstrates maturity through ISO 27001 certification and a suite of security services. However, the website lacks visible security headers and does not provide cookie consent mechanisms or incident response policies, which are important for compliance and security transparency. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website and business present a low-risk profile with strong business credibility and a good security posture. Strategic improvements in privacy compliance and security best practices would further enhance trust and reduce potential risks.

P

PSD Aero

psdaero.com

72

PSD Aero is a well-established French company specializing in the distribution and processing of metallurgical products for the aerospace, nuclear, and mechanical industries. With a strong international presence and partnerships with major aerospace players such as Safran and Airbus, PSD Aero positions itself as a first-tier supplier offering high-quality alloys and customized services. The company emphasizes quality, environmental sustainability, and supply chain acceleration to meet the demanding needs of its customers. Technically, the website employs modern web technologies including Bootstrap, Swiper.js, and Microsoft Clarity for analytics, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, security headers, and secure forms are implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a credible and reliable digital presence for PSD Aero.

H

Hi Fly

mesa.aero

43

Mesa is a specialized aircraft line and base maintenance provider operating primarily in Portugal with additional presence in Brussels and Brisbane. The company holds an EASA Part-145 certification and focuses on maintenance services for Airbus aircraft models. Their business model includes aircraft maintenance, technical training, logistics and procurement, and consulting services, targeting airlines and aviation operators. The website is professionally designed with clear navigation and consistent branding, supporting a medium-sized enterprise profile founded in 2005 under the parent company Hi Fly. Technically, the site uses modern JavaScript libraries and Google Analytics for tracking, but lacks some advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and publishing security policies. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and established operation.

K

KIT-AR

kit-ar.com

59

KIT-AR is a specialized technology company providing augmented reality solutions for quality assurance in manufacturing environments. Their platform aims to reduce costs and errors on the shopfloor by digitizing quality assurance processes and upskilling workers. The company targets manufacturing sectors such as automotive, aerospace, and electronics, positioning itself as a niche B2B provider with a focus on continuous improvement and digital transformation. The website presents professional branding, case studies with reputable clients, and clear calls to action, indicating a mature business presence. Technically, the website is built on WordPress using modern plugins and frameworks such as Genesis Framework, Slider Revolution, and Yoast SEO. It employs Google reCAPTCHA for form security and Matomo for privacy-conscious analytics. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements anti-bot measures but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, representing a compliance gap with GDPR and other privacy regulations. Contact information is clearly provided, but no formal security or incident response policies are published. Overall, KIT-AR's website reflects a credible and professional business with solid technical foundations but could improve its privacy compliance and security posture. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure process.

I

Imaginary Cloud

imaginarycloud.com

67

Imaginary Cloud is a Portugal-based technology company specializing in custom software development and digital acceleration services. Founded in 2010, the company offers a comprehensive suite of services including product ideation, software development, AI and data science, UX/UI design, and quality assurance. Their market position is reinforced by a portfolio of notable clients such as Neom, Remax, ThermoFisher, and Nokia, indicating strong industry trust and credibility. The website reflects a professional and modern digital presence, optimized for performance and mobile devices, with clear navigation and rich content that targets businesses seeking scalable technology solutions. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and HubSpot forms for marketing and analytics. The site demonstrates good SEO and accessibility practices, with fast loading times and responsive design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies are not evident, suggesting room for improvement in formal security documentation. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through comprehensive privacy and cookie policies, including GDPR compliance indicators. The absence of WHOIS registration data is a notable anomaly that slightly reduces trustworthiness but is mitigated by the professional presentation and business transparency on the site. Strategically, the company should enhance its security documentation and consider publishing a vulnerability disclosure policy to further strengthen trust. Monitoring domain registration status is recommended due to the missing WHOIS data. The website’s digital maturity and business credibility position Imaginary Cloud well for continued growth in the competitive software development market.

B

Beyond Gravity

beyondgravity.com

71

Beyond Gravity is a well-established aerospace technology company specializing in satellite and launcher components, with over 40 years of experience supporting space missions. Their website reflects a mature business with a clear focus on advancing humanity through space exploration technologies. The company targets aerospace professionals and organizations requiring advanced satellite and launcher solutions. Technically, the website is built on Drupal CMS, employs modern analytics (Matomo), and integrates a robust cookie consent mechanism (OneTrust), indicating a good level of digital maturity. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are absent. The lack of WHOIS data slightly impacts trust but does not overshadow the professional presentation and compliance indicators. Overall, the website is trustworthy, well-structured, and compliant with privacy regulations.

T

Tirol Werbung

visittirol.nl

57

The website www.visittirol.nl serves as the official Dutch-language travel guide for Tirol, Austria, operated by Tirol Werbung GmbH. It provides comprehensive information on outdoor activities, cultural events, accommodations, and travel logistics, targeting tourists interested in visiting the Tirol region. The site is well-branded, professionally designed, and offers multilingual support through links to partner sites in German, English, Italian, French, Czech, and Polish. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates GDPR-compliant cookie consent via Usercentrics. Security measures include HTTPS enforcement and CAPTCHA protection on forms, though explicit security headers are not visible in the provided content. Contact information is clearly presented, enhancing business credibility. Overall, the site demonstrates a mature digital presence with good SEO, accessibility, and user experience.

M

DewapokerQQ: Link Situs QQ Gampang Maxwin Resmi Hari ini Terbaru di PKV Games

metabaron.net

55

The website at www.corehealthtechnologies.com/about/ appears to be a gambling affiliate or promotional site for DewapokerQQ, an online poker and gambling platform. The content and metadata focus on promoting gambling games, bonuses, and links to PKV Games, which is inconsistent with the domain name suggesting a health technology company. The lack of WHOIS registration data and domain legitimacy raises concerns about the authenticity and trustworthiness of the site. Technically, the site uses common JavaScript libraries and Alibaba CDN resources but lacks visible security best practices such as HTTPS enforcement and security headers. Privacy and compliance policies are absent, and no contact or business information is provided, further reducing trust. Overall, the site presents a questionable security posture and business credibility, with potential risks for users due to the gambling content and lack of transparency.

K

MAMIQQ: Agen Pkv Games BandarQ dan Online QQ Winrate Tinggi!

kenorrinst.com

50

The website carknowledge4u.com operates as an online gaming agent platform primarily targeting Indonesian players interested in BandarQ and PKV games. The site promotes high winrate online QQ games with bonuses and fair play assurances. The business model revolves around online gambling services, catering to a mature audience. The domain is very recently registered in April 2024, consistent with a new entrant in the online gaming market. The site leverages multiple Alibaba and Lazada CDN and analytics services, indicating a reliance on third-party infrastructure for performance and tracking. However, the site lacks fundamental trust and compliance elements such as privacy policies, cookie consent mechanisms, terms of service, and contact information, which diminishes its credibility and regulatory compliance. Security practices are basic, with domain locking but no DNSSEC enabled and no visible advanced security headers. Overall, the site presents a basic online gambling service with limited transparency and security maturity.

V

Via Aurea s.r.o.

viaaurea.cz

54

Via Aurea s.r.o. is a Czech technology company specializing in web design, CMS, e-commerce solutions, hosting, and IT consulting services. The company targets businesses seeking professional digital solutions, including large portals and e-shops. Their market position is supported by a portfolio of notable clients and a focus on quality and comprehensive service delivery. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA v3 for form security, and a custom CMS likely based on the Nette framework. The site is mobile optimized and uses standard SEO practices. Security posture is solid with HTTPS and anti-spam measures, though explicit security headers are missing. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data is a concern for domain legitimacy but does not detract from the professional presentation and trust signals on the site.

T

TSC Spectre, s.r.o.

tsc-spectre.cz

49

TSC Spectre, s.r.o. operates as the central administrative and support entity within the TSC Group holding, providing comprehensive economic, legal, personnel, administrative, and IT services to its subsidiaries. The company emphasizes quality management, ISO certification support, and ESG initiatives, positioning itself as a key enabler of operational excellence within the group. Their market presence spans multiple countries including the Czech Republic, Slovakia, Germany, Poland, and Hungary, serving a large client base with a workforce exceeding 7,000 employees. Technically, the website employs modern web technologies such as Google Tag Manager and Swiper.js, with responsive design and good SEO practices, although some security headers are missing. Security posture is solid with HTTPS and secure forms, but could be improved with additional headers and published security policies. The absence of WHOIS data is a concern for domain legitimacy, but the professional content and detailed contact information mitigate this risk. Overall, the company demonstrates a mature business model with strong compliance and quality focus.

T

TSC GROUP, a.s.

tsc-cleaning.sk

47

TSC GROUP, a.s. is a holding company operating in Slovakia and the Czech Republic, specializing in facility management, cleaning, security, laundry, and technical cleaning services. The company holds a strong market position as the largest group in its sector in the Czech Republic and maintains a significant presence in Slovakia. Their service portfolio covers industrial, healthcare, commercial, and public sectors, leveraging modern technologies and extensive experience. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Google Analytics for marketing and analytics purposes. The site is mobile-optimized with good navigation and content quality, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on its contact form to mitigate spam. Cookie consent mechanisms are implemented with granular controls, and privacy policies are comprehensive and GDPR compliant. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives. The risk profile is low, with recommendations focusing on improving security headers, publishing security policies, and enhancing accessibility compliance to further strengthen the security posture and user trust.

C

Chi Technologies Inc.

chimoney.app

59

Chimoney App, operated by Chi Technologies Inc., is a Canadian fintech company providing a multi-currency digital wallet platform that enables users worldwide to send, receive, and manage money across borders seamlessly. The platform supports over 130 countries and multiple currencies including USD, CAD, and NGN, targeting diverse user groups such as freelancers, students, remote workers, and small businesses. The company positions itself as a facilitator of borderless payments with competitive exchange rates and user-friendly mobile applications available on iOS and Android. Technically, the website is built using modern web technologies including Next.js and React, with optimized performance and mobile responsiveness. The site employs Google Tag Manager for analytics and Cloudinary for media hosting. SEO and accessibility practices are well implemented, contributing to a professional and trustworthy user experience. From a security perspective, Chimoney App enforces HTTPS, uses strong security headers, and incorporates fraud detection and anti-money laundering frameworks. User account security is emphasized with guidance on password protection and account monitoring. However, the site lacks a dedicated security policy or incident response page and does not display an explicit cookie consent mechanism, which are areas for improvement. Overall, Chimoney App demonstrates a strong business credibility and technical maturity with comprehensive privacy and terms of service policies. The WHOIS data confirms legitimacy with consistent registrant information matching the website claims. The platform is well-positioned in the fintech market with a clear focus on global financial inclusion and seamless cross-border payments.

W

Web Incubator Community Group (WICG)

wicg.io

56

The Web Incubator Community Group (WICG) operates as a community-driven platform under the World Wide Web Consortium (W3C) to incubate and discuss new web platform features. It serves developers and browser makers by providing a collaborative environment for proposing and refining web standards. The website reflects a well-established entity with a domain age consistent with its founding in 2015, and it maintains a reputable presence with active GitHub repositories and affiliation with recognized web standards bodies. Technically, the site employs modern web technologies including HTML5, CSS, and JavaScript with asynchronous script loading, and is hosted by a reputable registrar, Gandi SAS. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured content. Security-wise, the site uses HTTPS but lacks visible security headers and published security policies, which suggests room for improvement in security posture and transparency. Privacy compliance is minimal, with no privacy or cookie policies found, and no explicit GDPR compliance indicators. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures to align with best practices and regulatory expectations.

F

FORVIA

faurecia.com

70

FORVIA is a major global supplier in the automotive industry, focusing on sustainable and innovative automotive technologies. The company positions itself as a tech company with a strong emphasis on sustainability and digital transformation in mobility. The website reflects a professional corporate presence with detailed sections on technologies, sustainability, investor relations, and careers. Technically, the site is built on Drupal 10 and uses Matomo for analytics, indicating a modern and privacy-conscious approach. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit security policies. The absence of WHOIS data limits domain trust verification but the website content and branding suggest legitimacy. Privacy and cookie policies are not clearly found, indicating room for compliance improvement.

C

Charita Česká republika

daranek.cz

54

Daránek dětem is a charitable initiative managed by Charita Česká republika, focused on supporting children in vulnerable situations through fundraising and social support. The website serves as a platform for donations, awareness, and partnership engagement, positioning itself as a trusted national charity. Technically, the site employs modern web technologies including Google reCAPTCHA for form security, Facebook Pixel and Google Analytics for tracking, and a cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized with good design and navigation, though some security headers are not explicitly detected. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, but the presence of official charity information and partner references supports trustworthiness. Overall, the site demonstrates a solid security posture with room for improvement in explicit security header implementation and transparency around incident response.

The website beaworldfestival.com currently serves a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The visible content is minimal, showing a redirect countdown and a browser integrity check script. The site uses very outdated CMS technologies (Joomla 1.5 and WordPress 2.5), which are known to have multiple security vulnerabilities and are no longer supported. No business or contact information, privacy policies, or terms of service are accessible, limiting the ability to assess the business comprehensively. The domain registration is valid and consistent with a legitimate entity, registered since 2017 and expiring in 2026, but the lack of accessible content and outdated technology reduces trustworthiness and professional appearance.

A

ACC Belgium

bestofreputation.be

51

The website bestofreputation.be serves as the official platform for the Best of Reputation Awards 2025, an event recognizing excellence in earned media and influencer relations. Operated under the auspices of ACC Belgium, the site targets PR professionals and agencies in Belgium, offering entry kits, case submission portals, and showcasing past winners. The business model centers on event organization and industry recognition, positioning itself as a niche leader in the Belgian PR awards sector. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, hosted by OVH, a reputable European provider. The site demonstrates good mobile optimization and SEO practices, though it lacks advanced frameworks or CMS identification. Performance is moderate with a clean, professional design and clear navigation. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected, but improvements in security best practices are recommended. Overall, the website presents a professional and trustworthy front for its niche business, with moderate technical sophistication and compliance. Strategic enhancements in security posture and transparency would further strengthen its risk profile and user trust.

A

ACC

bestofcontent.be

52

Bestofcontent.be is a professional website dedicated to organizing and promoting the Best of Content Awards (BOCA) in Belgium, focusing on recognizing excellence in content marketing strategies and craftsmanship. The platform targets content marketing professionals, agencies, and brands seeking recognition for their marketing efforts. The business operates as a niche award organizer with a small but focused market presence, leveraging partnerships with ACC Belgium and other industry players. Technically, the website is custom-built with modern HTML5, CSS3, and JavaScript technologies, hosted via OVH, and demonstrates good mobile optimization and user experience. However, it lacks visible CMS signatures and advanced technical frameworks. Security posture is moderate, with cookie consent mechanisms in place and use of Facebook Pixel for tracking, but missing explicit security headers and incident response information. Privacy compliance is strong due to linked comprehensive policies hosted on ACC Belgium's domain. Overall, the website is trustworthy, professional, and safe for general audiences, with no adult or questionable content detected.

A

ACC

bestofactivation.be

52

The website bestofactivation.be serves as the official platform for the Best Of Activation Awards (BOA) 2025, organized by ACC Belgium. It focuses on recognizing the most successful and creative brand activation campaigns in Belgium. The site provides resources such as entry kits and case submission portals, targeting marketing professionals and agencies. The business operates in a niche market segment, positioning itself as a key player in brand activation awards with a history dating back to 2008. Technically, the site is built with standard web technologies (HTML5, CSS3, JavaScript) and hosted by OVH, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic SEO and accessibility features. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is supported by linked policies and GDPR consent mechanisms. No direct contact information or incident response details are published, which could be improved. Overall, the site is professional, trustworthy, and safe for general audiences.

2

2getonline GmbH

2getonline.com

54

2getonline GmbH is a small technology company based in Innsbruck, Tirol, Austria, specializing in professional IT solutions including web design, hosting, cloud services, photo and video services, and groupware solutions. The company targets businesses and individuals seeking comprehensive online presence and IT infrastructure support in the Tirol region. Their website is well-structured, professionally designed, and provides clear information about their services and team. Technically, the website is built on Joomla CMS with Yootheme templates and UIkit framework, ensuring good mobile responsiveness and accessibility. The site uses HTTPS with SSL certificates, but lacks visible HTTP security headers and cookie consent mechanisms, which are areas for improvement. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the website demonstrates good practices such as SSL encryption and CSRF token usage, but could enhance security posture by implementing standard security headers and a vulnerability disclosure policy. The absence of WHOIS registration data is a notable anomaly that reduces trustworthiness, although the website content and business information appear legitimate and consistent. Overall, 2getonline GmbH presents a credible and professional online presence with room for technical and security enhancements to strengthen trust and compliance.

V

Vent | Ötztal | oetztal.com

vent.at

72

The website www.oetztal.com/de/regionen-orte/vent serves as a regional tourism portal focused on the Vent village in the Ötztal valley, Austria. It provides visitors with information about alpine hiking, skiing, and local attractions. The site targets tourists and outdoor enthusiasts seeking authentic mountain experiences. The business model centers on tourism promotion and regional marketing, positioning itself as a trusted source for travel planning in the region. Technically, the website employs modern JavaScript libraries such as GSAP, Swiper, Leaflet, and Rive for interactive and visual content. It integrates Google Tag Manager for analytics and Cookiebot for cookie consent management, reflecting a moderate level of digital maturity. The site is mobile-optimized with good SEO practices and a professional design, although accessibility features are basic. From a security perspective, the site uses HTTPS and a comprehensive cookie consent mechanism, but lacks visible security headers and explicit privacy or security policies in the provided content. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces the trust score, but the website content and technical setup indicate a legitimate and professional operation. Overall, the website presents a solid tourism information platform with room for improvement in privacy transparency, security headers, and incident response readiness. Strategic enhancements in these areas would strengthen user trust and compliance posture.

The website legalcontentua.com is currently a parked domain with minimal content and no active business presence. It primarily serves as a placeholder with advertising scripts from Google Adsense and AdsDeli, indicating monetization attempts through domain parking. The domain was registered recently in August 2023 and uses Dynadot Inc as registrar with parkingcrew name servers. There is no meaningful business description, contact information, or interactive content available. Technically, the site uses basic JavaScript and advertising scripts but lacks HTTPS and security headers, which lowers its security posture. Privacy compliance is minimal with only a basic privacy policy accessible via a JavaScript popup and no cookie consent mechanism. Overall, the site has low trustworthiness and poor content quality, reflecting its parked status rather than an operational business.

P

Prozdravi.cz na Vivantis | Vivantis.cz - Od kabelky po parfém

prozdravi.cz

54

The website vivantis.cz, specifically the Prozdravi.cz section, operates as an e-commerce platform primarily targeting consumers in the Czech Republic. It offers health-related products alongside fashion accessories and perfumes under the Vivantis brand umbrella. The site demonstrates a consistent and professional branding approach with a modern design and good user experience. The business model is retail-focused, leveraging online sales channels to reach a broad consumer base. However, the absence of publicly available WHOIS data limits the ability to fully verify domain legitimacy and ownership transparency. From a technical perspective, the site employs contemporary web technologies including Bootstrap 5, JavaScript libraries such as Swiper.js and Fancybox, and Google Fonts, indicating a modern frontend infrastructure. Performance and mobile optimization are adequate, though accessibility features appear basic. SEO practices are reasonably implemented with proper meta tags and Open Graph data. Security posture is moderate but could be improved. There is no evidence of security headers or explicit security policies, and privacy and cookie policies are not found, which raises compliance concerns. The lack of WHOIS data and absence of contact information for security incidents or data protection officers further reduce trustworthiness. No WAF or blocking mechanisms were detected, and the site content is safe for general audiences. Overall, the site is functional and professionally presented but would benefit from enhanced transparency, security best practices, and compliance documentation to improve trust and reduce risk.

O

Obzor

ctreports.com

56

ctreports.com is an Azerbaijani-focused online casino informational and affiliate platform established in 2021. It provides comprehensive content about online casinos, including reviews, bonus offers, game strategies, and responsible gambling guidelines. The site targets mature users interested in online gambling within Azerbaijan, offering localized content in Azerbaijani language. Technically, the website uses Cloudflare for DNS and CDN services, ensuring good performance and security. The site is mobile-optimized and well-structured with clear navigation and SEO-friendly metadata. Security posture is moderate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and explicit security headers. Privacy and cookie policies are present with consent mechanisms, though GDPR compliance is basic. Contact information is limited to an email address without phone or physical address details. Overall, the site demonstrates a professional approach to content and user experience but could improve security policies and transparency. The domain registration is consistent with the business model and age, supporting legitimacy. No WAF or blocking mechanisms were detected, allowing full content access.

Y

😼Я ЕБУ - смотреть порно ролики. Онлайн сайт секса и HD порно!

yaeby.pro

55

The website www.yaeby.pro is an adult entertainment platform primarily offering online streaming of pornographic videos in Russian. It targets an adults-only audience and operates through multiple subdomains for content delivery. The business model appears to be advertising-based with no visible e-commerce or subscription services. The site has a moderate technical implementation with use of standard web technologies and decent mobile optimization. However, it lacks visible privacy, cookie, or terms of service policies, and no contact or business legitimacy information is provided. The WHOIS data is unavailable, indicating possible privacy protection or obfuscation, which reduces trustworthiness. Security posture is weak due to absence of security headers and unclear SSL configuration. Overall, the site is functional but lacks transparency and compliance features.

F

Top des Meilleurs Casinos en Ligne Français ᐉ Top 3 Casinos Fiables

focuspcg.com

63

FocusPCG.com is a French-language online casino review and affiliate platform launched in 2022. It provides detailed reviews, rankings, and payment method guides for various online casinos targeting French-speaking players interested in online gambling. The website features a well-structured design with clear navigation and mobile optimization, offering a good user experience for its niche audience. Technically, the site uses modern web standards and Cloudflare DNS but lacks advanced security headers and DNSSEC. The domain registration is consistent and appropriate for the business age, with clientTransferProhibited status enhancing domain security. However, the site lacks visible privacy, cookie, and terms of service policies, and no direct contact information is provided, which impacts trust and compliance. Overall, the site is functional and professional but requires improvements in privacy compliance and security posture to enhance user trust and regulatory adherence.

M

Mostbet

nayora.org

55

Mostbet AZ is an online gambling and sports betting platform targeting Azerbaijani users, offering a wide range of casino games, live casino, and sports betting options. The website provides detailed information about registration, bonuses, payment methods, and game offerings, supported by a Curacao license and other gambling trust badges. Technically, the site uses modern web technologies with Cloudflare DNS and CDN, is mobile optimized, and includes dedicated mobile app instructions. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and professional but could improve transparency and security practices.

Pražská teplárenská a.s. operates the website www.praha-cista.cz to promote clean air initiatives and sustainable heating solutions in Prague, focusing on district heating and waste heat utilization. The company is positioned as a key regional energy provider with strong environmental advocacy. The website is professionally designed with good content quality and clear navigation, targeting residents and stakeholders concerned about air quality. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, and Cookiebot for cookie consent management. Security posture is solid with HTTPS and cookie consent blocking, though explicit security headers and policies are absent. Privacy compliance is partially met with a cookie consent mechanism but lacks a dedicated privacy policy page. Overall, the domain registration aligns well with the business identity, indicating legitimacy and trustworthiness.

K

Kluby | mcompanies.cz

kluby-mcompanies.cz

63

Kluby | mcompanies.cz is a newly launched e-commerce platform based in the Czech Republic, focusing on club memberships and related products. The website is built on Shopify, leveraging its robust e-commerce infrastructure and payment capabilities. The platform targets club members and customers interested in club benefits, providing a streamlined shopping and account management experience. The business appears to be in its early stages, with domain registration dating to June 2024, consistent with the website's branding and content.

H

Handelshøyskolen BI

bi.no

66

Handelshøyskolen BI is a leading Norwegian business school offering a wide range of educational programs including bachelor, master, PhD, executive education, and corporate training. The institution is internationally accredited and targets students and professionals seeking high-quality business education. The website reflects a mature digital presence with modern technologies, strong content quality, and clear navigation. The technical infrastructure includes advanced tracking and consent management tools, ensuring compliance with privacy regulations. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly detailed. Overall, the site demonstrates legitimacy and professionalism consistent with a reputable educational institution.

S

Saab

saab.com

67

Saab is a well-established enterprise founded in 1937, serving global governments, authorities, and corporations with advanced defense and civil security products and solutions. The website reflects a mature digital presence with comprehensive information on products, investor relations, sustainability, and corporate governance. The technical infrastructure leverages modern web technologies, including Azure Application Insights and Google Tag Manager, with a strong emphasis on privacy compliance via Cookiebot. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. However, the absence of WHOIS data is notable but does not detract from the overall legitimacy given the professional content and branding. Contact is primarily via web forms rather than direct emails or phone numbers.

K

KONGSBERG - an international technology group

kongsberg.com

73

KONGSBERG is a large, internationally recognized technology group specializing in high-technology systems and solutions for the oil and gas, merchant marine, defense, and aerospace industries. The company targets industrial and governmental customers with a B2B business model, leveraging a diversified portfolio of subsidiaries and partner companies. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to their target audience. Technically, the website employs modern analytics and tracking technologies such as Piwik PRO, Azure Application Insights, and Google Tag Manager, combined with a robust consent management system via OneTrust. The site is hosted on a reliable CDN infrastructure (Amazon CloudFront) and demonstrates good performance, mobile optimization, and accessibility standards. From a security perspective, the site enforces HTTPS, implements key security headers, and manages user consent effectively. However, it lacks a dedicated security policy or incident response page, and no vulnerability disclosure policy is published. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional business presence. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic improvements in transparency around security policies and incident response would further enhance trust and security maturity.

H

HENSOLDT AG

hensoldt.net

65

HENSOLDT AG is a leading German technology company specializing in defense and security electronics, with a strong presence across multiple domains including Air, Land, Sea, Space, and Cyber. The company offers manufacture-independent system integration, innovative radar, optronics, and electronic warfare products, as well as comprehensive services and training. Positioned as a European market leader with global reach, HENSOLDT targets government and defense sectors with advanced sensor solutions. The website infrastructure is built on modern technologies such as SvelteKit and hosted on Vercel, ensuring fast performance, mobile optimization, and good accessibility. The site employs HTTPS with strong security headers and integrates analytics and consent management tools, reflecting a mature digital presence. Security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy or vulnerability disclosure page and missing WHOIS domain registration data introduce some concerns. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-maintained, though the domain registration inconsistency warrants further verification. Strategic recommendations include publishing explicit security policies and incident response contacts to enhance transparency and trust.

G

GKN Aerospace Services Limited

gknaerospace.com

74

GKN Aerospace Services Limited is a leading global tier one aerospace supplier specializing in aero-engine products, airframe structures, and aftermarket services. The company serves over 90% of the world's aircraft and engine manufacturers with a strong presence in both civil and defense aerospace markets. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with a large enterprise in the transportation and manufacturing sectors. Technically, the site employs modern JavaScript frameworks, cookie consent management, and accessibility tools, indicating a commitment to user experience and compliance. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and vulnerability disclosures are absent. The WHOIS data is missing or indicates the domain may not be currently registered, which is a critical concern for domain legitimacy despite the professional website content. Overall, the site is trustworthy from a content and business perspective but requires domain registration verification and enhanced security transparency.

ANTONOV Company is a well-established Ukrainian aircraft manufacturing and aviation services provider, specializing in cargo and passenger airplanes and air transportation. The company holds a strong market position as a global leader in specialized cargo air transport, particularly for space components and satellite-related shipments. The website reflects a professional and consistent brand image with good content quality and navigation, targeting aviation industry professionals and customers requiring specialized air transport services. Technically, the website is built on a Yii framework with modern JavaScript libraries and is moderately optimized for performance and mobile devices. Security posture is adequate with HTTPS and CSRF protections but lacks advanced security headers and DNSSEC. Privacy and cookie policies are not present, indicating compliance gaps. Overall, the domain registration and WHOIS data support the legitimacy and trustworthiness of the company and website.

S

Scriby, Inc.

progressier.com

66

Progressier is a technology company specializing in providing no-code tools for creating and managing Progressive Web Apps (PWAs). Their platform enables web developers and no-code makers to integrate universal installation pages, push notifications, and other PWA features without coding. The company positions itself as a niche SaaS provider with a focus on ease of use and broad compatibility across popular web platforms and frameworks. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence for a company founded in 2020. Technically, Progressier employs modern web technologies including JavaScript, CSS3, and integrates third-party services like Intercom for customer engagement. The site is hosted via GoDaddy and uses HTTPS with a well-configured SSL setup. While no explicit security headers were detected in the HTML content, the site demonstrates good security hygiene with locked domain status and no exposed sensitive data. The cookie consent mechanism is implemented, supporting GDPR compliance. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed credentials. However, it lacks publicly available security policies or incident response information, which could be improved to enhance trust. The domain WHOIS data aligns well with the business timeline and shows no suspicious patterns. Overall, the risk level is low, and the site is trustworthy for its intended audience. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, enabling DNSSEC, and enhancing transparency around data protection practices. These steps would further strengthen the security posture and compliance standing of Progressier.

E

Exattosoft LLP

exattosoft.com

48

Exattosoft LLP operates a SaaS platform focused on rapid business website creation, targeting small to medium businesses primarily in India. The platform offers a wide range of features including unlimited pages, galleries, SEO, social integration, and hosting services, with transparent tiered pricing plans. The company has a solid market position as a provider of fast, reliable, and feature-rich website solutions, supported by clear contact information and social media presence. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, jQuery, and the Materialize framework. Hosting and DNS services leverage Cloudflare, enhancing performance and reliability. The site is mobile optimized and includes Google Analytics and Tag Manager for user tracking, though lacks a cookie consent mechanism. From a security perspective, the site uses HTTPS and has domain transfer protections, but lacks DNSSEC and important security headers like CSP and HSTS. There is no published security policy or incident response contact, which limits transparency. The absence of cookie consent and some security best practices reduces privacy compliance. Overall, the website is professional and functional with good business credibility but could improve its security posture and privacy compliance to better protect users and build trust.

Richmond, operated under Santillana Educação, is an educational content portal serving primarily Brazilian educators and students. The website offers access to educational materials, catalogs, and exclusive content, with a focus on accessibility and user experience. The portal integrates with other Santillana and Moderna educational platforms, indicating a broad ecosystem of educational services. Technically, the site uses a legacy CMS (Lumis Portal) and includes standard tracking and consent mechanisms, but relies on older JavaScript libraries which may pose security risks. Security posture is moderate with room for improvement in headers and modern best practices. Privacy compliance is basic, with cookie consent implemented but no explicit privacy policy found in the analyzed content. Overall, the site is professional, trustworthy, and safe for general audiences.