Security Directory

F

fit trotz Family

fit-trotz-family.de

65

fit-trotz-family.de is a German niche fitness blog focused on helping parents balance fitness, family, and work life. The website offers fitness tips, product reviews, challenges, and local gym information with childcare options. It targets parents seeking practical advice to maintain an active lifestyle despite family commitments. The site is built on the Jimdo Creator CMS platform, hosted by Jimdo GmbH, and uses modern web technologies including jQuery and Google Analytics with GDPR-compliant cookie consent mechanisms. The design is professional, mobile-optimized, and content is relevant and trustworthy. Security posture is good with HTTPS enforced and basic security best practices, though additional security headers could improve protection. No critical vulnerabilities or exposed sensitive data were found. Contact is primarily via a company email address, with no phone or physical address listed. Overall, the website is safe, family-friendly, and compliant with privacy regulations.

M

Mario Fehr

mariofehr.ch

49

The website mariofehr.ch serves as the official online presence of Mario Fehr, a government official and Regierungsrat of the Canton of Zurich, Switzerland. It provides political information, updates, and personal engagement content targeted primarily at the citizens of Zurich. The site is built on Joomla CMS and incorporates modern web technologies including jQuery and Google Analytics for visitor tracking. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is solid with HTTPS enforced and CSRF tokens present, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy page present but no visible cookie consent mechanism. Overall, the site is trustworthy and well-aligned with its governmental purpose.

P

Pfaller & Söhne AG

pfaller.ch

31

Pfaller & Söhne AG is a well-established Swiss company specializing in painting, wallpapering, flooring, plastering, and mold remediation services primarily serving the Zurich region since 1974. The company emphasizes craftsmanship, experience, and customer service, targeting residential and commercial property owners and managers. Their website reflects a professional local business with clear service offerings and contact information. Technically, the site is built on Joomla CMS with modern JavaScript libraries and integrates Google Analytics and Google Ads for marketing and tracking. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

R

Riiterstübli Waldhof

riiterstuebli.ch

46

Riiterstübli Waldhof is a small hospitality business located in Winkel, Switzerland, specializing in traditional home-style cuisine with a focus on fresh, bio ingredients. The restaurant offers daily lunch and dinner menus, room rental for private events, and seasonal outdoor grilling in a garden pergola. The website is built on Joomla CMS and integrates Google Analytics for visitor tracking. The design is professional and mobile-optimized, providing a good user experience with clear navigation and consistent branding. Contact information and legal disclaimers are clearly presented, enhancing business credibility. However, the site lacks a dedicated cookie consent mechanism and formal security or incident response policies, which are areas for improvement.

P

Home | Play'n GO

playngo.com

64

The website www.playngo.com appears to be built using the Wix platform, incorporating standard Wix scripts and Google Analytics for tracking. However, the domain WHOIS data is not publicly available, indicating either the domain is unregistered, privacy protected, or the WHOIS query failed. The website content is minimal with no visible privacy policy, cookie policy, terms of service, or contact information, which limits trust and compliance assessment. Technically, the site uses modern web technologies but lacks visible security headers and comprehensive SEO or accessibility features. Overall, the security posture is moderate due to HTTPS usage and some cookie handling mechanisms, but the absence of critical policies and registrant data reduces confidence. Strategic recommendations include improving transparency with privacy and contact information, enhancing security headers, and verifying domain registration details.

N

NetEnt AB (publ)

netent.com

71

NetEnt AB (publ) is a leading technology provider specializing in digitally distributed gaming systems for the online gaming industry. With over 20 years of experience, the company offers a comprehensive suite of gaming solutions including games, pooled jackpots, branded games, and back-office services. Their target audience primarily consists of online gaming operators seeking premium gaming content and services. NetEnt holds multiple licenses from reputable regulatory bodies such as the UK Gambling Commission and Malta Gaming Authority, underscoring their commitment to compliance and responsible gaming. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Modernizr, and Owl Carousel. It demonstrates excellent mobile optimization, fast performance, and good SEO practices. The site employs HTTPS with strong SSL configuration and integrates analytics tools like Google Analytics and Facebook Pixel for user tracking and marketing insights. A cookie consent mechanism is present, supporting privacy compliance. From a security perspective, the site follows best practices such as HTTPS enforcement, use of reCAPTCHA, and cookie consent banners. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and readiness. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, NetEnt's website reflects a mature, professional, and trustworthy online presence aligned with its market position as a premium gaming technology supplier. The absence of WHOIS data is noted but likely due to registrar query limitations rather than suspicious activity. Strategic recommendations include publishing a dedicated security policy, providing incident response contacts, and enhancing security headers to further strengthen the security posture.

A

AnimalhealthEurope

animalhealtheurope.eu

49

AnimalhealthEurope is a European association representing manufacturers of animal medicines, vaccines, and other animal health products. The organization serves as an industry advocate and information hub for stakeholders in the animal health sector across Europe. The website reflects a professional and consistent brand presence with clear focus on its core mission and audience. Technically, the site is built on WordPress CMS, leveraging modern frameworks such as Bootstrap and FontAwesome, and integrates Google Analytics with IP anonymization to track user interactions while respecting some privacy considerations. Security posture is solid with HTTPS enabled and no obvious vulnerabilities detected in the provided content, though security headers and explicit incident response policies are absent. Privacy and cookie policies are not found, indicating a compliance gap that should be addressed to meet GDPR and other regulatory requirements. Overall, the website is trustworthy and well-positioned within its niche but would benefit from enhanced privacy and security disclosures.

A

Arctic Yearbook - Arctic Yearbook

arcticyearbook.com

48

The Arctic Yearbook website serves as an academic publication platform focused on Arctic geopolitics and security, produced in collaboration with the Northern Research Forum and the University of the Arctic. It offers annual yearbooks, scholarly papers, briefing notes, and commentaries targeting researchers, policymakers, and stakeholders interested in Arctic affairs. The site is positioned as a niche authoritative source with a small-scale, non-commercial business model. Technically, the site is built on Joomla CMS using standard libraries such as jQuery, Bootstrap, and Font Awesome, with integration of Twitter feeds and Google Analytics for social media and analytics. The site is moderately optimized for mobile and performance but lacks advanced accessibility features. Security posture is moderate with HTTPS enabled and domain registration protections in place, but lacks DNSSEC and security headers, and no privacy or cookie policies are present. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is trustworthy and professional but could improve privacy compliance and security hardening.

ChemicalParks.com is a professional website representing Chemical Parks in Germany, offering available spaces and comprehensive infrastructure services for chemical and pharmaceutical companies. The site targets investors and businesses seeking to establish production facilities within Germany's chemical parks, emphasizing benefits such as integration into Europe's pipeline network, skilled workforce, and strong research partnerships. The website is built on TYPO3 CMS with a modern tech stack including jQuery, Bootstrap, and Google Analytics, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements could be made by adding security headers and publishing explicit security policies. Overall, the domain registration is consistent with the business history, and no suspicious indicators were found, supporting a high legitimacy score.

A

AI dětem, z.s.

tiny.school

42

Tiny is a Czech non-profit educational AI application developed by AI dětem, z.s., designed to assist teachers with formative assessment and provide personalized mentoring to children. The platform offers individualized feedback and tailored educational content, primarily targeting primary and secondary school students and educators. Supported by academic institutions such as ČVUT and Univerzita Karlova, and funded in part by Google.org Impact Challenge, Tiny positions itself as an innovative AI-driven educational tool in the Czech and Slovak markets. The business model focuses on pilot school partnerships and content collaboration to expand its offerings. Technically, Tiny is built on a modern WordPress CMS with Elementor and integrates various JavaScript libraries and Google Analytics for tracking. The website is well-structured, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. However, some security best practices such as security headers and cookie consent mechanisms are missing, which could be improved to enhance user trust and compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. The lack of visible security policies and incident response information suggests room for improvement in transparency and readiness. WHOIS data is unavailable due to TLD registry restrictions, but the website content and affiliations indicate legitimacy and trustworthiness. Overall, Tiny demonstrates a strong educational mission with solid technical implementation and good business credibility. Strategic enhancements in security policies, privacy compliance, and incident response transparency would further strengthen its position and user confidence.

Z

Zawoko NET s.r.o.

botyobleceni.cz

43

BotyObleceni.cz is an established Czech e-commerce retailer specializing in CrossFit, weightlifting, and fitness apparel and equipment. Operating since 2011 under Zawoko NET s.r.o., the site targets fitness enthusiasts in the Czech Republic and Slovakia, offering a broad range of products including shoes, clothing, and accessories from well-known brands. The business maintains a strong market position as an authorized WORKOUT reseller and partner to many CrossFit gyms and national weightlifting teams. Technically, the website runs on PrestaShop CMS with a moderate performance profile and basic mobile optimization. It integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Heureka widgets, enabling extensive user tracking and remarketing capabilities. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks advanced security headers and modern JavaScript libraries. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site presents a professional and trustworthy e-commerce platform with room for improvement in security and privacy practices.

A

ANECT a.s.

anect.cz

47

ANECT a.s. is a leading Czech ICT solutions provider specializing in enterprise architecture, information and cyber security, and IT operations management. The company positions itself as a professional and innovative partner with over 25 years of experience, targeting business clients requiring advanced technology and security services. The website reflects a mature digital presence with clear service descriptions and client references. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and cookie consent mechanisms, indicating a good level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks visible advanced security headers and incident response contacts. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and business information appear legitimate. Overall, the site is professional, secure, and compliant with privacy regulations, but domain registration verification is recommended.

M

MS 97, s.r.o.

skolatreneru.cz

9

Trenérská škola Olympia, operated by MS 97, s.r.o., is an accredited educational institution specializing in fitness and bodybuilding trainer certifications authorized by the Czech Ministry of Education. The website presents a professional image with detailed course offerings, seminars, and a team of qualified lecturers. It targets individuals seeking recognized qualifications in personal training within the Czech Republic and the EU. The business model focuses on delivering accredited training programs and issuing certificates that enable graduates to operate professionally in the fitness industry. The site integrates modern web technologies hosted on AWS Cloudfront and built on the Webnode platform, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service pages. The absence of WHOIS data due to privacy protection slightly reduces transparency but is common for small businesses. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in compliance documentation and contact transparency.

RetroFest.cz is a small-scale, niche event website dedicated to a 2015 retro computing conference organized by students of the Czech Technical University in Prague under the Silicon Hill club. The site serves primarily as an informational portal for event details, partner acknowledgments, and archival content such as lecture recordings. The business model revolves around community engagement and educational event hosting within the technology and education sectors. The website's market position is limited to a specialized audience interested in retro hardware and software history. Technically, the website is a simple static HTML site with basic CSS and JavaScript, including Google Analytics for visitor tracking. The hosting is provided by ACTIVE 24, and the domain is registered consistently with the academic affiliation. However, the site lacks modern web standards such as HTTPS, security headers, and mobile optimization, which limits its technical maturity and security posture. From a security perspective, the absence of HTTPS and security headers, along with loading external scripts over HTTP, exposes the site to potential man-in-the-middle attacks and data interception risks. No privacy or cookie policies are present, which is a compliance gap under GDPR. The site does not collect user data via forms, reducing some risk, but the use of Google Analytics without consent mechanisms is a privacy concern. Overall, the website is functional for its intended purpose but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and user safety. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving mobile responsiveness, and adopting security best practices.

S

Studentska Unie ?VUT

avc.sh

45

AVC Silicon Hill is a student audiovisual center affiliated with the Students' Union of Czech Technical University (ČVUT). It provides technical support for small to medium-sized events including audio, video, and lighting services, both live and online, with a strong focus on education and training in audiovisual technologies. The organization collaborates with several partners and maintains an active presence on social media platforms. Technically, the website uses modern web technologies and is hosted by OVH SAS, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and privacy compliance documentation. Overall, the domain registration and WHOIS data align well with the organization's identity, supporting legitimacy and trustworthiness.

N

NEW.EGO GmbH

newego.de

68

NEW.EGO GmbH is a premium internet agency based in Munich, Germany, specializing in TYPO3 CMS solutions and digital B2B communication services. Founded in 2005, the company serves medium-sized businesses and hidden champions primarily in the DACH region. Their key offerings include TYPO3 consulting, development, hosting, SEO, and comprehensive digital strategy services. The company holds multiple TYPO3 certifications and industry awards, reflecting a strong market position and trusted reputation. Technically, the website is built on TYPO3 CMS with a modern tech stack including JavaScript, CSS, and privacy-focused analytics tools like self-hosted Matomo. The site is well-optimized for performance, mobile responsiveness, and SEO, with a professional design and clear navigation. Security best practices such as HTTPS and cookie consent mechanisms are implemented, though explicit security headers and incident response policies are not publicly detailed. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies aligned with GDPR. The company demonstrates strong business credibility through detailed contact information, client testimonials, and certifications. Overall, the website presents a trustworthy and professional digital presence suitable for its B2B audience.

I

Insane Business Ideas

inbui.com

49

Insane Business Ideas is a small-scale content website focused on providing insights and ideas for building resilient business models for the future. The site targets entrepreneurs and business professionals interested in innovation and business strategy. The website is built on the Squarespace platform, leveraging standard web technologies and Google Analytics for visitor tracking. While the site has a consistent branding approach and basic content, it lacks comprehensive business details, contact information, and formal policies such as privacy or cookie policies. The technical infrastructure is moderate in performance and mobile optimization but lacks advanced security headers and configurations. Security posture is basic with no evident vulnerabilities but also no advanced protections. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the site presents as a basic informational platform with room for improvement in transparency, security, and compliance.

F

Fellow Digitals

viadesk.com

72

Fellow Digitals is a technology company specializing in hybrid employee experience platforms, offering products such as Fellow Intranet, LMS, and Employee App. The company targets medium to large enterprises aiming to enhance internal communication, employee engagement, and remote work capabilities. Their market position is supported by a client base of over 350 companies, including well-known brands, indicating strong industry trust and adoption. Technically, the website is built using modern frameworks like Astro and utilizes a robust tech stack including DatoCMS for content management, Cloudflare for bot management and security, and analytics tools such as Google Analytics and Microsoft Clarity. The site demonstrates excellent performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy, warranting further verification. Overall, the website presents a professional, secure, and privacy-conscious platform with strong business credibility, though domain registration inconsistencies slightly reduce trust scores. Strategic recommendations include publishing explicit incident response contacts, establishing a vulnerability disclosure policy, and verifying domain registration details to enhance trust and compliance.

K

Kreatívna Dvojica

kreativnadvojica.sk

45

Kreatívna Dvojica is a Slovak full-service creative advertising agency established in 2018, recognized as one of the top 10 most effective agencies in Slovakia. They offer a broad range of services including branding, communication strategies, campaigns, employer branding, social media management, and website development. Their client base ranges from small ambitious brands to major market players, supported by a professional and consistent brand presence online. Technically, the website is built on WordPress, leveraging modern tools such as Google Analytics, Facebook Pixel, and GDPR-compliant cookie management, hosted by WebSupport with DNSSEC enabled and HTTPS enforced. Security posture is strong with no critical vulnerabilities detected, though additional security headers could enhance protection. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, good technical implementation, and strong business credibility.

A

AmRest

careeratamrest.com

66

AmRest Career website serves as a professional portal for career opportunities within AmRest, a large hospitality company operating multiple restaurant brands. The site highlights employee stories, career growth paths, and company culture, targeting job seekers and hospitality professionals. Technically, the website is built on SilverStripe CMS, uses modern front-end technologies including Swiper.js and Google Fonts, and is hosted with Azure DNS services. The site is mobile optimized with good SEO practices but lacks some accessibility features and explicit security headers. Security posture is moderate with HTTPS enabled and domain transfer protection, but DNSSEC is not enabled and no security policies are published. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy with a strong social media presence but could improve in security and privacy transparency.

A

Asociace virtuální a rozšířené reality

avrar.cz

54

The website avrar.cz represents the Asociace virtuální a rozšířené reality, a Czech association focused on virtual and augmented reality technologies. It serves as a community hub for professionals, entrepreneurs, institutions, academics, and enthusiasts in the VR/AR sector. The association organizes the Czech VR Fest, the largest industry festival and conference in Central Europe, positioning itself as a leading entity in this niche market. The site provides information about membership, events, and news related to VR/AR innovation in the Czech Republic. Technically, the website uses modern JavaScript frameworks (Vue.js), integrates social media SDKs, and employs Google Analytics and Facebook Pixel for tracking. Hosting is provided by WEDOS, a reputable Czech hosting provider. Security posture is adequate with HTTPS enforced and secure form handling, but lacks visible security headers and public security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no explicit consent mechanisms. Contact information is limited to web forms without direct email or phone contacts. Overall, the site is professional, well-branded, and trustworthy, but could improve transparency and security practices.

B

Bluethumb

bluethumb.com.au

57

Bluethumb is a well-established Australian online art marketplace specializing in original paintings and modern art. Since its founding in 2012, it has positioned itself as a leading platform connecting Australian artists with collectors and art buyers. The website offers free shipping, returns, and insurance, enhancing customer trust and satisfaction. The business model focuses on e-commerce with additional services such as art advisory and trade services. Bluethumb targets art enthusiasts and collectors primarily within Australia.

D

designhouse®

designhouse.de

52

designhouse® is a well-established German branding and communication agency with over 25 years of experience. The company specializes in creating strong brands and communication concepts using words, images, colors, and forms, targeting businesses seeking comprehensive multimedia branding solutions. Their website showcases a rich portfolio of projects, indicating a solid market position in the media and creative services sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Slider Revolution, and WPML, reflecting a mature digital infrastructure. The site is mobile optimized and employs standard tracking tools like Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and IP anonymization enabled, but lacks some recommended security headers and explicit privacy and terms policies. Contact information is not directly visible, which may affect user trust and compliance. Overall, the website is professional and trustworthy but could improve in privacy transparency and security best practices.

D

Dôveryhodná Firma

doveryhodnafirma.eu

57

The website www.doveryhodnafirma.eu represents the Slovak branch of an international certification brand "Dôveryhodná Firma" that awards trust certificates to reputable businesses across Europe. The platform serves as a hub for companies seeking to verify their certification status and promotes transparency and trustworthiness in business relations. The site features a professional design with interactive elements such as a live chat form, and it integrates tracking technologies like Facebook Pixel and Google Analytics to monitor user engagement. The business model centers on certification issuance and promotion, targeting companies that value reputation and client trust. The website is part of a broader network of partner sites in multiple European countries, reinforcing its market position.

K

KREA DIGITAL s.r.o.

krea.com

59

KREA DIGITAL s.r.o. is a Slovak-based IT company specializing in the development of web and mobile applications, IT outsourcing, and business system solutions. With over 14 years of experience, the company serves a diverse client base including notable brands, positioning itself as a reliable IT partner for custom software development and IT professional outsourcing. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and hCaptcha, ensuring responsive design and user-friendly navigation. Security measures include HTTPS enforcement and CAPTCHA integration on forms, although explicit security policies and headers could be improved. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR adherence. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy. Overall, the company presents a credible and professional digital presence with room for enhanced security transparency and WHOIS data clarity.

J

Juniorito

juniorito.de

62

Juniorito is a German-based e-commerce retailer specializing in pedagogically valuable children's furniture, climbing frames, and toys inspired by Montessori and Pikler principles. The company targets parents and caregivers seeking environmentally friendly and thoughtfully designed products for children. Positioned in a niche market, Juniorito leverages Shopify's platform to deliver a professional and user-friendly online shopping experience. The website features comprehensive GDPR-compliant privacy and cookie policies, integrated customer reviews, and active social media engagement, enhancing trust and customer confidence. Technically, the website is built on Shopify's Dawn theme with modern technologies including Google Tag Manager, Google Analytics, and multiple marketing pixels (Pinterest, TikTok). The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement, secure cookie management, and cookie consent mechanisms, although explicit security policies and incident response information are not publicly disclosed. Overall, Juniorito presents a secure, compliant, and professionally managed e-commerce presence with moderate tracking and advertising practices aligned with GDPR. The absence of critical security issues and the presence of trust signals such as customer reviews and clear return policies contribute to a positive risk profile. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and enhancing accessibility features to further strengthen compliance and user experience.

F

FLERBAR Online Shop | Alle Produkte online kaufen |

flerbar.de

63

The website www.flerbar.de operates as an official German online retailer specializing in FLERBAR vaping products, including disposable e-cigarettes, pods, and e-liquids. It targets adult consumers interested in vaping and nicotine products, offering fast shipping within Germany and payment options such as PayPal and Klarna. The site is built on the plentymarkets e-commerce platform using Vue.js, with integrations for analytics and marketing tools like Google Analytics, Microsoft Clarity, and Google Tag Manager. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and a cookie consent mechanism is implemented, but explicit privacy policies and terms of service pages are not found, which is a compliance gap. WHOIS data is minimal and uses Alibaba DNS servers, which is unusual for a German retailer and slightly reduces trust. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

ITNOMIC is a specialized Austrian web agency providing comprehensive digital services including website creation with Contao CMS, e-commerce solutions using PrestaShop, and SEO/SEA optimization. The company emphasizes economic IT solutions with over 15 years of experience, targeting businesses across Austria. Their technical infrastructure leverages modern open-source platforms and integrates Google marketing and analytics tools with a strong focus on privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and incident response policies could enhance their security maturity. Overall, the website is professional, accessible, and trustworthy, supporting a positive business reputation despite the lack of publicly available WHOIS data.

G

Glitzerladen.de

glitzerladen.de

52

Glitzerladen.de is a specialized online retailer offering personalized and fashion jewelry primarily targeting the German market. The company provides a broad range of products including engraved bracelets, necklaces, rings, and accessories, with a focus on customization and affordable pricing. The business leverages trusted partnerships with payment providers such as PayPal and Klarna and is certified by Trusted Shops, enhancing customer trust and satisfaction. The website is professionally designed, mobile-optimized, and offers a smooth user experience with clear navigation and comprehensive product information. Technically, the website is built on the Shopware platform, hosted by Rackspeed, and integrates modern web technologies including Google Tag Manager, Google Analytics, and Trusted Shops widgets. Security measures include HTTPS enforcement, CSRF tokens, and cookie consent management, reflecting a mature digital infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site demonstrates strong adherence to best practices with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies and GDPR-aligned consent mechanisms. However, explicit security policies and incident response contacts are not present, representing an area for improvement. Overall, Glitzerladen.de presents a trustworthy and professional e-commerce platform with a solid security posture and compliance framework. Strategic enhancements in security policy transparency and accessibility could further strengthen its market position and customer confidence.

H

Hats-Trends

hats-trends.de

64

Hats-Trends is a small, established German retailer specializing in fashionable hats, beanies, caps, and related headwear for men, women, and children. Founded in 1992, the company operates an e-commerce platform powered by Jimdo CMS, complemented by presence on marketplaces such as Ebay and Amazon. The business emphasizes handmade quality and trendy designs, targeting fashion-conscious customers seeking affordable headwear. Technically, the website uses modern web technologies including jQuery UI and integrates Google Analytics and POWr.io widgets for analytics and marketing. The site is mobile-optimized with good navigation and content quality. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site projects a trustworthy and professional image with positive trust signals such as Händlerbund membership and extensive customer reviews. No critical vulnerabilities or blocking mechanisms were detected.

G

GEROBUG - Schädlingsabwehr Shop

gerobug.de

68

GEROBUG is an established German e-commerce retailer specializing in pest control and insect repellent products targeted at private consumers. The website emphasizes affordability, effectiveness, and fast delivery, supported by over 800,000 satisfied customers. The business operates primarily online using the Shopify platform, integrating multiple third-party services for customer reviews, marketing automation, and analytics. The site is well-structured with comprehensive GDPR and cookie compliance mechanisms, reflecting a mature approach to privacy and user consent. However, explicit security policies and incident response information are not publicly available, indicating room for improvement in transparency and security communication.

A

AlteZeitschriften.de

altezeitschriften.de

42

AlteZeitschriften.de operates a specialized e-commerce platform focused on selling original vintage German magazines and print media dating from the 1930s to present. The business targets collectors, educators, and gift buyers seeking authentic print issues across diverse categories including erotica, youth magazines, automotive, history, and comics. The website is built on PrestaShop CMS and integrates modern payment options such as Amazon Pay, with customer trust reinforced by Trusted Shops certification and Trustpilot reviews. The site offers low shipping costs and a growing archive, positioning itself as a niche market leader in vintage magazine retail. Technically, the website employs a modern tech stack including jQuery, Google Analytics, and trusted third-party widgets. It is mobile-optimized with good SEO practices and moderate performance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is adequate with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional, trustworthy, and user-friendly platform for vintage magazine sales. Security and privacy practices are solid but could benefit from enhancements in cookie consent and explicit security policies. The domain WHOIS data aligns with the website's branding and business claims, supporting legitimacy. No WAF or blocking mechanisms interfere with access, allowing full content analysis.

S

Swisa Beauty

swisabeauty.de

66

Swisa Beauty operates an e-commerce platform specializing in Dead Sea salt and Aloe Vera skincare products targeting consumers interested in natural and therapeutic cosmetics. The website is built on Shopify, leveraging modern web technologies and third-party integrations for marketing, analytics, and customer reviews. The business maintains GDPR compliance with comprehensive privacy and cookie policies, including a consent mechanism. Security posture is solid with HTTPS and secure payment processing, though explicit security headers and incident response policies are not publicly disclosed. Overall, the website presents a professional and trustworthy online presence with good technical infrastructure and user experience.

ZE-BRAND is a small, specialized branding consultancy with over 30 years of experience focused on the Central and Eastern European (CEE) market. The company offers brand consulting, packaging design, and special project services primarily targeting fast-moving consumer goods (FMCG), beauty, hygiene, health, and nutrition sectors. Their website reflects a professional business with clear service offerings and a regional focus. Technically, the site is built on the Weebly platform using legacy JavaScript libraries and includes standard analytics and tracking tools. Security posture is moderate but could be improved by updating libraries and implementing security headers. The absence of privacy and cookie policies and missing WHOIS registration data are notable gaps that impact trust and compliance. Overall, the website is functional and professional but requires enhancements in security and privacy transparency to align with best practices.

Unilever Česká republika operates as a regional branch of the global consumer goods giant Unilever PLC, providing a wide range of well-known brands in food, home care, and personal care sectors. The website reflects a mature enterprise-level digital presence with a focus on user experience, accessibility, and compliance with privacy regulations such as GDPR. The site employs modern web technologies including the Astro framework and integrates cookie consent management via OneTrust, alongside Google Analytics and Tag Manager for analytics and marketing purposes. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-optimized for performance and SEO.

P

Provident

provident.cz

61

Provident is a well-established consumer finance company operating in the Czech Republic, specializing in personal loans including online and cash loans. The company targets Czech consumers seeking accessible lending solutions. The website reflects a professional and consistent brand presence with clear service offerings and user-friendly navigation. Technically, the site is built on modern frameworks such as Next.js and React, with Tailwind CSS for styling, and integrates standard analytics and marketing tools like Google Tag Manager and Google Analytics. Security posture is strong with HTTPS enforcement and comprehensive security headers, although public security policies and incident response contacts are not prominently disclosed. Privacy compliance is robust, featuring GDPR-aligned privacy and cookie policies with consent mechanisms. Overall, the site demonstrates a mature digital infrastructure suitable for its business domain.

P

Penta Real Estate

pentarealestate.com

66

Penta Real Estate is a professional real estate development company focusing on residential and commercial projects. The website presents a clear market position with key services including project development, ESG initiatives, and career opportunities. The company targets real estate investors and clients seeking property solutions. Technically, the website is built on WordPress with Bootstrap and uses modern analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel. Cookie consent is implemented comprehensively, indicating GDPR compliance. Security posture is good with HTTPS enforced and bot protection via Google reCAPTCHA, though some security headers are not explicitly detected. The lack of WHOIS data limits domain trust verification, but the website content and structure suggest legitimacy. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

A

AI Awards

aiawards.cz

47

AI Awards is a Czech Republic-based organization that hosts the only professional awards in the field of artificial intelligence in the country. The website showcases the 2025 edition of the awards, highlighting winners, finalists, jury members, and partners. The organization targets professionals, companies, academia, public administration, and non-profits involved in AI development and application in the Czech Republic. The site is well-branded and supported by prominent partners including government bodies and media outlets. Technically, the website is built on WordPress with modern SEO and analytics tools, delivering a fast, mobile-optimized, and accessible user experience. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies are missing. WHOIS data is unavailable, which slightly reduces trust from a domain registration perspective but the website content and partner ecosystem strongly indicate legitimacy.

A

AI dětem, z.s.

aidetem.cz

44

AI dětem, z.s. is a Czech non-profit organization specializing in education in the field of artificial intelligence. Established in 2022, it positions itself as a leader in AI education, providing comprehensive educational materials, training workshops, and technological AI assistant solutions targeted primarily at schools, educators, parents, and students. The organization emphasizes preparing future generations for a rapidly evolving technological landscape. Technically, the website is built on WordPress with Elementor and Yoast SEO, featuring modern web technologies and good mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though explicit security policies and incident response information are lacking. Privacy compliance is mostly addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a minor gap. Overall, the website is professional, trustworthy, and well-positioned in its niche.

B

BDG - Bundesverband der Deutschen Gießerei-Industrie

wer-giesst-was.de

48

The website 'wer-giesst-was.de' is operated by the BDG - Bundesverband der Deutschen Gießerei-Industrie, an established German industry association representing foundries. It provides a comprehensive directory of German foundries with over 300 selection criteria, facilitating supplier research for manufacturing professionals. The site targets companies and professionals in the manufacturing sector seeking foundry services within Germany. The business model centers on providing industry-specific information and supplier matching services, positioning BDG as a key resource in the German foundry market. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, DataTables, Font Awesome, and Google Tag Manager for analytics and marketing. Hosting is provided by Intersolute, indicated by the domain's nameservers. The site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured cookie consent. From a security perspective, the site enforces HTTPS and employs a GDPR-compliant cookie consent mechanism with opt-in for analytics cookies. However, it lacks explicit security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The security posture is solid but could be improved by adding security headers and formal incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It serves its niche audience effectively with relevant content and functional features. The domain registration data aligns well with the website's purpose and business identity, indicating legitimacy and stability. No blocking or WAF mechanisms interfere with content access, allowing full analysis. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and adding terms of service to improve legal clarity and user trust.

The Bundesverband der Regionalbewegung e.V. (BRB) is a German non-profit umbrella organization and competence network dedicated to promoting regionality and strengthening regional economic cycles. With approximately 360 member organizations, it serves as a key voice and network for regional initiatives, small and medium enterprises, municipal initiatives, and agricultural and food sectors. The website reflects a well-established organization celebrating over 20 years of activity, providing information, networking, and advocacy services. Technically, the site is built on the Odoo CMS platform, leveraging modern web technologies such as Bootstrap and FontAwesome, and integrates Google Analytics for visitor insights. The site is mobile-optimized and presents a professional design with clear navigation and relevant content. Security posture is moderate; while HTTPS and CSRF tokens are present, explicit security headers and incident response policies are not published. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, though GDPR-specific details are basic. Overall, the domain registration data aligns well with the organization's claims, supporting legitimacy and trustworthiness.

A

Arctic Portal

arcticportal.org

54

Arctic Portal is a well-established non-profit gateway providing comprehensive information, data sharing, and consultation services related to the Arctic region. The website offers news, maps, scientific data, governance information, educational resources, and event calendars targeting researchers, policymakers, educators, and Arctic stakeholders. The organization is based in Iceland and has been operational since 2005, positioning itself as a trusted source in the Arctic domain. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap, jQuery, and Font Awesome. It is hosted with domain registration via GoDaddy and DNS managed by Cloudflare. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Google Analytics is used for user behavior tracking, including scroll and download events, indicating moderate user tracking practices. From a security perspective, the site enforces HTTPS and employs domain status locks to protect domain integrity. However, DNSSEC is not enabled, and no security headers were detected, which are areas for improvement. The absence of privacy and cookie policies suggests compliance gaps with GDPR and other privacy regulations. No incident response or vulnerability disclosure policies are published, which could impact trust and security readiness. Overall, Arctic Portal demonstrates a solid business and technical foundation with a strong reputation in its niche. To enhance security posture and regulatory compliance, it should implement DNSSEC, security headers, privacy and cookie policies, and publish incident response contacts. These steps will improve trustworthiness and align with best practices for data protection and user privacy.

U

Universitatea de Științe Agricole și Medicină Veterinară Cluj-Napoca

usamvcluj.ro

43

The website www.usamvcluj.ro represents the Universitatea de Științe Agricole și Medicină Veterinară Cluj-Napoca, a public university in Romania specializing in agricultural and veterinary sciences. The site provides comprehensive information about academic programs, organizational structure, student services, research activities, and public documents. It targets students, faculty, researchers, and stakeholders in the agricultural education sector. The university maintains an active presence on major social media platforms and uses modern web technologies including WordPress CMS with Elementor, Bootstrap, and jQuery. Technically, the website is well-structured, mobile-optimized, and uses HTTPS with Google Analytics for traffic monitoring. Accessibility tools are integrated, enhancing usability for diverse users. However, some security best practices such as implementing security headers are not evident from the provided data. The cookie consent mechanism is active, but no explicit privacy policy page was found in the main HTML content. From a security perspective, the site shows a good posture with no visible vulnerabilities or exposed sensitive data. The domain WHOIS information is privacy-protected by ROTLD, which is common for Romanian domains, and does not reveal registrant details. This privacy protection is justified given the nature of the institution. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is professional, trustworthy, and serves its educational mission effectively. Strategic improvements include publishing a clear privacy policy, enhancing security headers, and maintaining regular updates to CMS and plugins to ensure ongoing security and compliance.

The GB Non-native Species Secretariat (NNSS) website serves as an official government resource coordinating efforts to manage invasive non-native species across Great Britain. It provides comprehensive information, alerts, and resources targeted at the general public, environmental stakeholders, and government agencies. The site is well-branded with official government logos and offers structured navigation to various informational sections including legislation, biosecurity, and local action groups. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Google Analytics, hosted behind Cloudflare for performance and security. The site is mobile-optimized and includes a cookie consent mechanism compliant with GDPR standards. Security posture is generally good with HTTPS enforced, though DNSSEC is not enabled and security headers are not explicitly detected. No direct contact emails or phone numbers are provided, relying instead on a contact form. No terms of service or security policies are published, and no vulnerability disclosure or incident response information is available. Overall, the website is trustworthy, professional, and serves its governmental informational purpose effectively.

N

National Biodiversity Network

nbn.org.uk

55

The National Biodiversity Network (NBN) is a UK-based non-profit organization dedicated to the collection, sharing, and dissemination of biodiversity data. It operates a large partnership network with over 200 members including conservation organizations, government bodies, and voluntary groups. The NBN Atlas serves as a comprehensive data portal with over 300 million species occurrence records. The website reflects a mature digital presence with a WordPress CMS, modern SEO practices, and integration of social media channels to engage its target audience of environmental professionals and citizen scientists. Technically, the site uses common frameworks and libraries such as Bootstrap, jQuery, and WooCommerce for e-commerce capabilities, with Google Analytics and Tag Manager for analytics and tracking. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected in the provided content. Overall, the site is professional, trustworthy, and well-positioned within its niche, though it would benefit from enhanced transparency around privacy and security policies.

U

UK Centre for Ecology & Hydrology

ceh.ac.uk

66

The UK Centre for Ecology & Hydrology (UKCEH) is a prominent UK-based government research institute specializing in environmental science focused on land and freshwater ecosystems. It operates under the Natural Environment Research Council (NERC) and delivers impactful scientific research, data services, and consultancy to governments, academia, and businesses. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with its authoritative position in environmental research. Technically, the site is built on Drupal 10 with modern JavaScript libraries and includes a robust cookie consent mechanism (Klaro) and analytics tools (Google Analytics, Google Tag Manager). The site is mobile-optimized and accessible, though there is room for improvement in security headers and explicit incident response disclosures. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with detailed privacy and cookie policies and user consent management. However, WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of institution. Overall, UKCEH's website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

J

Joint Nature Conservation Committee

jncc.gov.uk

70

JNCC (Joint Nature Conservation Committee) is a UK government advisory body specializing in nature conservation. It provides scientific advice and coordination on biodiversity and environmental monitoring across the UK and internationally. The organization targets government entities, environmental professionals, researchers, and the public interested in nature conservation. The website reflects a professional and authoritative presence consistent with its government affiliation, offering comprehensive information, news, and resources related to its mission. Technically, the website employs a modern but stable technology stack including jQuery, Foundation framework, and Slick Carousel, integrated with Google Tag Manager and Google Analytics for tracking and marketing purposes. The site is mobile-optimized, accessible, and SEO-friendly, with a clear navigation structure and professional design. Hosting details are not explicit, but domain registration is through Nominet, consistent with UK government domains. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contact information. No critical vulnerabilities or exposed sensitive data were detected. The use of third-party libraries is current but should be monitored for updates. Overall, the security posture is good but could be enhanced by adding security headers and formal security policies. The overall risk assessment is low, with high trustworthiness and legitimacy due to the domain age, consistent WHOIS data, and professional content. Strategic recommendations include publishing a dedicated security policy, adding security headers, and providing incident response contacts to improve transparency and security maturity.

B

Bundesverband für Tiergesundheit e.V.

bft-online.de

50

The Bundesverband für Tiergesundheit e.V. (BfT) is a German industry association representing leading manufacturers of veterinary pharmaceuticals and feed additives. The website serves as an information hub for animal health topics, industry news, and regulatory updates, targeting veterinarians, animal owners, and industry stakeholders. The organization maintains a strong market position within Germany's animal health sector, providing publications, events, and advocacy services. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates Google Analytics and a consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS enforced and privacy-conscious analytics settings, though explicit security policies and incident response contacts are absent. Overall, the website is professional, well-structured, and trustworthy, with comprehensive privacy and cookie policies and active social media engagement.

Norsk Zoologisk Forening is a well-established Norwegian non-profit organization dedicated to zoology and wildlife interests. Founded in 2001, it serves a community of zoology enthusiasts and researchers by providing publications such as the Fauna journal, organizing events, and promoting species mapping and conservation efforts. The website reflects a professional and consistent brand presence with clear calls to action for membership and engagement. Technically, the site is built on WordPress using a modern stack of plugins including Yoast SEO, Google Tag Manager, and GDPR compliance tools. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Performance is moderate, with room for improvement in security headers and explicit incident response policies. Security posture is solid with HTTPS enforced and privacy compliance well addressed through cookie consent mechanisms and a comprehensive privacy policy. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a vulnerability disclosure policy and incident response information suggests areas for enhancement. Overall, the site presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date software to sustain trust and compliance.

S

Sabima

sabima.no

51

Sabima is a Norwegian non-profit environmental organization dedicated to halting biodiversity loss and conserving natural habitats such as forests, wetlands, and cultural landscapes. The website serves as a platform for advocacy, public education, and fundraising, featuring campaigns, news, events, and membership information. Sabima holds a strong position in the Norwegian environmental NGO sector, collaborating with multiple member associations and maintaining active social media engagement. Technically, the website is built on WordPress with WooCommerce integration for e-commerce functionality. It employs modern web technologies including Google Analytics for tracking, Google Maps API for geospatial features, and Yoast SEO for search engine optimization. The site is mobile-optimized and demonstrates good performance and accessibility standards, although some accessibility features could be enhanced. From a security perspective, the site uses HTTPS with a strong SSL configuration and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or incident response plan. Privacy compliance is generally good, with a comprehensive privacy policy and terms of service, but it lacks a visible cookie consent mechanism. The WHOIS data is unavailable due to Norid's privacy policy for .no domains, which is typical and not suspicious. Overall, Sabima's website is professional, trustworthy, and well-maintained, with minor improvements recommended in security headers and cookie consent to enhance compliance and user trust.