Security Directory

Slovenská pošta, a.s. is the national postal operator of Slovakia, providing reliable and accessible postal, payment, distribution, and state services to citizens, businesses, and e-shops. The company holds a strong market position as a government-affiliated entity with a broad service portfolio including express delivery, parcel services, financial services, and e-commerce logistics solutions. The website reflects a mature digital infrastructure with a modern React-based frontend, optimized for mobile devices and good SEO practices. Security posture is robust with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

Miele is a premium brand specializing in household and professional appliances, offering products such as kitchen appliances, laundry care machines, vacuum cleaners, and cleaning products. The website targets consumers and professionals seeking high-quality, innovative appliances. The digital infrastructure is built on modern JavaScript frameworks including Nuxt.js and Vue.js, supported by a custom CMS, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit privacy and security policies suggests room for improvement in compliance and transparency. Overall, the website reflects a mature, professional online presence consistent with a large, reputable enterprise.

M

Miele

miele.lt

55

Miele Lithuania operates as a premium brand retailer and e-commerce platform specializing in household and professional appliances. The website presents a professional and well-structured digital presence with comprehensive product offerings, customer account management, and support features. The technical infrastructure leverages modern web technologies including OpenText CMS and SAP Hybris platform, with integration of Google Tag Manager for analytics and marketing. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data limits domain legitimacy verification, but the website content and branding strongly indicate a legitimate and established business. Overall, the site demonstrates good digital maturity and business credibility with room for improvement in transparency of security and contact information.

Miele is a premium household appliance brand operating in Italy, offering a wide range of kitchen, laundry, vacuum, and cleaning products. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization. The technical infrastructure leverages modern frameworks such as Nuxt.js and Vue.js, ensuring a responsive and performant user experience. Security posture is good with HTTPS enforced and resource preloading, but lacks explicit security headers and visible privacy or cookie policies. No signs of WAF or content blocking were detected, and the WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, the website is trustworthy and well-positioned in the retail and e-commerce sector for premium appliances.

Miele is a globally recognized premium brand specializing in household and commercial appliances, with a strong presence in Ireland. The website showcases a wide range of products including kitchen appliances, laundry care, vacuum cleaners, and cleaning accessories, targeting consumers and commercial clients seeking high-quality and reliable appliances. The business model focuses on manufacturing and retail, supported by comprehensive customer services such as product consultation, delivery, installation, and maintenance. The website is professionally designed with clear navigation and rich content, reflecting Miele's market position as a premium appliance provider. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, ensuring fast performance and excellent mobile optimization. The use of a custom CMS and modern web standards contributes to a seamless user experience. SEO and accessibility features are well implemented, supporting broad user engagement and discoverability. From a security perspective, the site enforces HTTPS and includes essential security headers, indicating a strong security posture. However, explicit security policies, incident response details, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing vulnerability disclosure information to further strengthen trust and compliance.

Miele is a globally recognized premium brand specializing in household and professional appliances. The Greek website showcases a comprehensive product catalog with a strong focus on quality and innovation. The technical infrastructure is modern, leveraging Nuxt.js and Vue.js frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced, but lacks visible security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the website is professional and trustworthy, but enhancing privacy compliance and security transparency would strengthen user trust and regulatory adherence.

Miele is a globally recognized premium brand specializing in the manufacturing and retail of household and commercial appliances. The website reflects a mature digital presence with a focus on kitchen, laundry, vacuum cleaning, and cleaning products. The site is well-structured, mobile-optimized, and uses modern web technologies such as Nuxt.js. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and policies are not evident. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Overall, the website demonstrates high professionalism and trustworthiness consistent with an enterprise-level manufacturer and retailer.

Miele is a premium manufacturer and retailer of household and professional kitchen appliances, targeting consumers and professionals in Finland. The website showcases a broad product range including kitchen appliances, laundry care, and vacuum cleaners, emphasizing quality and innovation. The technical infrastructure is modern, leveraging Nuxt.js and Vue.js frameworks, with good mobile optimization and accessibility. Security posture is strong with HTTPS and security headers in place, but lacks visible privacy and cookie policies, which impacts privacy compliance. Contact information is not explicitly visible in the provided content, limiting direct customer engagement channels. Overall, the website is professional and trustworthy but could improve transparency and compliance documentation.

N

Nubium Development SE

nubium.cz

52

Nubium Development SE is a Czech-based technology company founded in 2013, specializing in comprehensive web application solutions including cloud storage, CDN, video encoding, cybersecurity, and Linux systems management. The company positions itself as a leader in high-load applications and data distribution networks, targeting businesses across various industries seeking scalable and secure digital infrastructure. The website reflects a professional and consistent brand image with clear service offerings and a focus on sustainability. Technically, the website employs standard web technologies such as HTML5, CSS, JavaScript, and jQuery, with a moderate performance profile and good mobile optimization. However, there is a lack of advanced security headers and no visible CMS or hosting provider information. SEO and accessibility are basic but adequate for the site’s scope. From a security perspective, the site uses HTTPS (assumed from URL), but lacks explicit security headers and published security policies. No vulnerability disclosure or incident response contacts are provided, which could be improved to enhance trust and compliance. Privacy and cookie policies are absent, indicating potential compliance gaps with GDPR and related regulations. Overall, the website is safe, professional, and business-focused with no adult or questionable content. The domain WHOIS data aligns well with the company’s stated information, supporting legitimacy. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and adding incident response information to strengthen security posture and regulatory compliance.

A

Avager s.r.o.

pagio.cz

60

Avager s.r.o. is a Czech-based company specializing in B2B and enterprise e-commerce solutions, focusing on digitalizing business processes and accelerating online commerce. Their proprietary Avager Business Platform offers scalable, secure, and fast e-commerce capabilities tailored for demanding enterprise clients. The company targets manufacturing firms, wholesalers, and various industries including automotive, agriculture, and services. With over 15 years of specialization, Avager holds a strong market position supported by a portfolio of top clients and multilingual platform support. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates Matomo and Google Tag Manager for analytics, and uses Statamic CMS. The site is well-optimized for mobile and SEO, with a professional and consistent design. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. Overall, the domain registration aligns with the business claims, indicating legitimacy and trustworthiness.

H

Husqvarna AB

husqvarnaconstruction.com

65

Husqvarna Construction is a division of Husqvarna AB, a well-established Swedish manufacturing company specializing in construction products, machines, and diamond tools. The website targets construction professionals and businesses, offering a broad range of equipment for cutting, drilling, demolishing, and polishing concrete. The site is part of a larger Husqvarna Group ecosystem, linking to related brand domains such as Husqvarna Bicycles and Husqvarna Motorcycles, reinforcing its market presence and brand consistency. Technically, the website employs modern React technology with good mobile optimization and SEO practices, although some accessibility features could be improved. Security posture is adequate with HTTPS enabled and some best practices observed, but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap for GDPR compliance. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

R

REFRESHER Media, s.r.o.

refresher.cz

66

REFRESHER.cz is a well-established Czech lifestyle and news media platform operated by REFRESHER Media, s.r.o., founded in 2013. It targets the modern generation with diverse content including lifestyle, culture, tech, sports, and news. The platform offers premium subscription services, e-commerce, and multimedia content, positioning itself as a leading media brand in the Czech and Slovak markets. Technically, the website employs modern web technologies, including JavaScript frameworks, AMP components, and Cloudflare for hosting and DNS, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, consent management, and reputable ad and tracking networks, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, good privacy compliance, and a trustworthy domain registration history, making it a reliable and mature online media presence.

F

Fastmail

fastmailstatus.com

60

Fastmailstatus.com is a dedicated status page for Fastmail, an established email service provider founded in 2014. The website provides real-time operational status updates for various Fastmail services including general availability, web client and mobile app, login and sessions, mail delivery, mail access (IMAP/POP), and calendar (CalDAV). The site is designed with modern web technologies such as Next.js and React, ensuring good performance and mobile optimization. The domain is registered with a reputable registrar, Gandi SAS, and shows no signs of suspicious activity or privacy protection, indicating a legitimate and trustworthy service. Technically, the website is well-implemented with fast loading times and good accessibility features. However, it lacks some important security headers and DNSSEC is not enabled, which could be improved to enhance security. The site uses HTTPS, ensuring encrypted communication. Privacy compliance is minimal on this status page, with no visible privacy or cookie policies, which is a gap in regulatory adherence. From a security perspective, the site demonstrates a solid baseline with HTTPS and domain transfer protection but lacks published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the site is safe, professional, and trustworthy, but could benefit from enhanced privacy and security disclosures. Strategically, Fastmailstatus.com serves as a transparent communication channel for Fastmail customers, reinforcing trust through operational transparency. To further improve, the site should implement privacy and cookie policies, add security headers, enable DNSSEC, and provide clear contact information for security incidents.

K

Kambojabet

yoanderoeck.com

7

Kambojabet operates as an online gaming and betting platform primarily targeting the Indonesian market, offering various gambling services including live casino, sports betting, slots, and poker. The website positions itself as a leading and legally recognized service in Indonesia, with a focus on small-stake betting. Technically, the site uses standard web technologies with Cloudflare DNS but lacks advanced security configurations such as DNSSEC and security headers. The site is mobile-optimized and includes structured data for SEO and social media integration. Security posture is weak due to missing policies, lack of security headers, and suspicious WHOIS data. Overall, the site presents moderate risk due to gambling content and questionable domain legitimacy.

P

Pražská vydavatelská společnost

casopisyprovas.cz

50

Casopisyprovas.cz is an e-commerce website specializing in the sale and subscription of various magazines primarily targeting Czech and Slovak customers. The business offers a wide range of magazine titles, including Pes přítel člověka, Praktik, Méďa Pusík, and others, with options for purchasing individual issues or subscriptions. The site also provides pre-orders for calendars and emphasizes customer support through multiple contact channels. Technically, the website is built on the Eshop-rychle.cz platform, uses HTTPS, and integrates Matomo analytics for visitor tracking. The site is mobile-optimized and provides cookie consent mechanisms aligned with GDPR requirements. Security posture is generally good with HTTPS and secure forms, though the absence of visible security headers and missing WHOIS data are notable gaps. Overall, the website presents a professional and trustworthy front for magazine retail, but domain registration transparency should be improved to enhance trust.

C

Classic Barber Shop

classicbarbershop.cz

44

Classic Barber Shop is a small, established barbershop located in the center of Prague, specializing in professional hair and beard grooming services. The business emphasizes quality customer care, premium and classic cosmetic products, and offers additional services such as workshops and gift vouchers. The website supports online booking through a third-party platform and maintains active social media profiles. Technically, the site uses modern tracking and analytics tools but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers. Overall, the site is professional and trustworthy but could improve privacy transparency and security hardening.

T

Taste, a.s.

medio.cz

60

Taste, a.s. is a Czech digital agency founded in 2014, specializing in cross-channel online marketing solutions including paid advertising, SEO, email marketing, branding, and social media strategies. The company serves businesses seeking to enhance their online presence and marketing effectiveness. The website demonstrates a solid market position supported by multiple certifications such as Google Partner and Meta Business Partner, and a portfolio of reputable clients. Technically, the site employs modern analytics and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is strong with HTTPS and consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and well-structured, reflecting a mature digital marketing business.

D

David Grudl

nette.org

56

Nette.org is the official website for the Nette Framework, a mature and secure PHP framework developed and maintained since 2008 by David Grudl. The framework is highly regarded in the PHP community, ranked as the third most popular PHP framework worldwide. The website serves PHP developers and web application creators by providing comprehensive documentation, community support, and access to a suite of standalone components that emphasize security, productivity, and best practices. The business model is primarily open source with sponsorship and donation support from a variety of partners and community members. Technically, the website is well-constructed using modern web technologies including PHP 8, JavaScript ES modules, and CSS, hosted on CESNET infrastructure. It demonstrates good performance, mobile optimization, and accessibility. SEO is well implemented with proper meta tags and Open Graph data. Analytics are implemented via Google Tag Manager with moderate user tracking. The site lacks a visible cookie consent mechanism and explicit privacy policy, which could be improved for GDPR compliance. From a security perspective, the domain is secured with HTTPS and domain transfer/update protections. The framework itself prioritizes security with protections against common web vulnerabilities such as XSS and CSRF. However, the website could enhance its security posture by enabling DNSSEC, adding security headers, and publishing clear security and incident response policies. No vulnerabilities or suspicious content were detected. Overall, Nette.org presents a professional, trustworthy, and technically sound presence for a well-established open source PHP framework. Strategic recommendations include improving privacy compliance, enhancing security headers, and publishing incident response and vulnerability disclosure policies to further strengthen trust and compliance.

V

Veolia India

veolia.in

66

Veolia India is a subsidiary of the global Veolia Group, specializing in environmental services such as water treatment, hazardous waste management, and carbon capture solutions. The company operates in India with a strong focus on sustainability and ecological transformation, serving industrial and governmental clients. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content about their services and corporate responsibility. Technically, the site is built on Drupal CMS, integrates modern consent management tools like Didomi, and uses Google Tag Manager and HubSpot for analytics, indicating a well-managed digital infrastructure. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security and incident response policies are not publicly available. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the site.

P

PRESTADD

prestadd.fr

53

PRESTADD is a French certification label dedicated to technical service providers in the live performance and event sectors, emphasizing sustainable development and corporate social responsibility (CSR). The website presents a clear business model focused on guiding companies through a structured labeling process with three progressive levels, supported by an auto-diagnostic tool and personalized consulting services. The company positions itself as a pioneer in this niche market, offering recognized certification and visibility to its certified members. Technically, the website is hosted by OVH and uses modern web technologies including JavaScript and Google Analytics for user tracking. The site is mobile-optimized with good SEO practices and a professional design, although some accessibility features could be improved. The absence of a CMS or major frameworks suggests a custom or lightweight implementation. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide visible privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security governance. Overall, PRESTADD's website reflects a credible and professional business with a solid market position in the French event services sector. Strategic recommendations include enhancing privacy compliance, implementing security headers, and establishing formal incident response channels to strengthen trust and regulatory adherence.

H

Herpain Group

herpainrse.com

54

The Herpain Group website presents a well-established real estate company with a strong focus on sustainability and corporate social responsibility. The company emphasizes quality, performance, and responsibility in its real estate projects and has been operating for over 86 years. The website content is professional and consistent with the company's values and market positioning. Technically, the website uses modern web standards with HTTPS and a privacy-respecting analytics tool, but lacks some security headers and privacy compliance documentation. The absence of contact information and privacy policies reduces transparency and user trust. Security posture is moderate with room for improvement in DNS security and security headers. Overall, the website is legitimate and trustworthy but would benefit from enhanced privacy and security practices.

W

Web & Media a.s.

builder.cz

40

Builder.cz is a Czech online information portal focused on programming and development topics, operated by Web & Media a.s. The site offers articles, tutorials, and forums targeting programmers and developers interested in languages such as PHP, ASP, JavaScript, Delphi, and C++. It is part of a broader media group with several related projects in graphics, photography, printing, and Apple product communities. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Adsense for advertising and AddThis for social sharing. The site is served over HTTPS but lacks advanced security headers and cookie consent mechanisms, which impacts privacy compliance. No WHOIS data was available, which reduces domain trustworthiness, though the website content and related projects indicate a legitimate business. Contact is available via email and a contact form, but no phone numbers or physical addresses were found. Overall, the site is professionally maintained with good content quality and moderate technical implementation.

W

Web & Media a.s.

mujipod.cz

40

MUJiPOD.cz is a Czech language online portal dedicated to Apple iPod, iTunes, and related MP3 player news, tips, and product reviews. Operated by Web & Media a.s., the site targets Apple enthusiasts and users seeking information and community engagement. The website features regularly updated content, a newsletter subscription, and social media integration, positioning itself as a niche media outlet within the Czech technology and media sector. Technically, the site employs standard web technologies including HTML5, CSS, JavaScript, and jQuery, with monetization through Google Adsense and social sharing via AddThis. The CMS identified is WMpublic, a multi-editor system. While the site is functional and moderately optimized, there is room for improvement in mobile responsiveness, accessibility, and security headers implementation. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, indicating partial compliance with modern security and privacy standards. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is common for media websites. Overall, MUJiPOD.cz presents a professional and trustworthy online presence with moderate technical maturity and basic privacy compliance. Strategic improvements in security headers, GDPR cookie consent, and mobile optimization would enhance its security posture and user trust.

H

Herpain Urbis

herpain.be

48

Herpain Urbis is a real estate development company operating in Belgium, focusing on office, residential, and commercial real estate sectors. The company is part of the Herpain family group and has an established market presence supported by a domain registered since 1998. The website provides basic information about the business but lacks detailed contact or compliance documentation. Technically, the site uses standard web technologies with HTTPS enabled, but it lacks advanced security headers and comprehensive privacy or cookie policies. Social media presence is active on major platforms, supporting brand visibility. Security posture is moderate with room for improvement in policy transparency and technical safeguards. Overall, the website is functional but could benefit from enhanced compliance and security features to improve trust and user confidence.

A

AOP Health

aop-health.com

64

AOP Health is a European healthcare company specializing in integrated therapies for rare diseases and critical care. The website positions the company as a pioneer in this niche, targeting healthcare professionals and patients requiring specialized treatments. The digital presence is built on TYPO3 CMS, featuring a professional design with good SEO and mobile optimization. However, the absence of WHOIS domain registration data raises questions about the domain's legitimacy or recent registration status. Security posture is moderate with HTTPS enabled but lacking important security headers and privacy compliance documentation. Overall, the website is functional and professional but would benefit from enhanced transparency and security measures.

C

CPI Hotels, a.s.

cpihotels.com

60

CPI Hotels, a.s. operates a large hospitality business offering tailored accommodation services across six countries with nearly 40 hotels and over 4000 rooms. Their services include hotel bookings, conference and event hosting, special offers, and a corporate loyalty program targeting both leisure and business travelers. The website is professionally designed with excellent content quality and clear navigation, supporting a positive user experience. Technically, the site uses modern JavaScript frameworks, Google Tag Manager, and cookie consent management, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and secure forms, though explicit security headers and policies could be improved. Privacy compliance is well addressed with GDPR and cookie policies present. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and registration status, which should be verified for full trust. Overall, the site is trustworthy and professional but would benefit from enhanced transparency on domain registration and security policies.

The website frantisekbartos.cz serves as a cultural and educational platform dedicated to the historical figure František Bartoš, a Czech pedagogue, linguist, and ethnographer. It is affiliated with reputable Czech cultural institutions, providing biographical data, bibliographies, galleries, and related literature. The site targets researchers, historians, and the general public interested in Moravian heritage. The business model is non-commercial, focusing on heritage dissemination. Technically, the website is built with basic HTML and CSS, hosted on websupport.cz, and uses Google Analytics for visitor tracking. The site lacks modern CMS or frameworks and shows limited mobile optimization and accessibility features. SEO is basic but includes structured metadata using Dublin Core standards. From a security standpoint, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which impacts compliance with GDPR and other regulations. No forms or contact information are provided, limiting user interaction and incident response capabilities. The domain registration is consistent and legitimate, with a long history supporting trustworthiness. Overall, the website is a modest but legitimate cultural resource with room for improvement in privacy compliance, security hardening, and technical modernization to enhance user experience and trust.

H

Haier

haier-europe.com

64

Haier Europe presents a professional website focused on kitchen and home appliances with modern design and localized Finnish content. The company is positioned as a large manufacturer with advanced technology integration and customization options for consumers. The technical infrastructure leverages modern web frameworks such as Gatsby and React, indicating a contemporary digital maturity. However, the absence of WHOIS data and lack of visible privacy and cookie policies suggest gaps in transparency and compliance. Security posture is moderate with no detected security headers or SSL configuration details, indicating room for improvement. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy measures to align with best practices and regulatory requirements.

C

Czech Pedal Car

czechpedalcar.com

56

Czech Pedal Car is a small manufacturing business based in the Czech Republic specializing in the production and sale of retro pedal car models and kits. Established since 2017, the company targets enthusiasts and collectors interested in nostalgic pedal cars. The website showcases media coverage and videos highlighting their products, indicating a niche but engaged market presence. Technically, the site is built on the Webnode platform, hosted via AWS Cloudfront, and uses modern web technologies including HTTPS and Google Tag Manager for analytics. While the site is accessible and mobile-optimized with good design and navigation, it lacks comprehensive privacy and cookie policies, security headers, and explicit contact information, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, though the website content and external media references support legitimacy. Overall, the security posture is moderate with room for enhancements in security best practices and privacy compliance.

Temu operates as a large-scale e-commerce platform offering a wide variety of consumer products. The website analyzed is a security verification page designed to protect user accounts and transactions through multiple verification methods. The platform targets a general audience with a focus on secure online shopping experiences. Technically, the site employs modern web technologies such as React and Webpack, served via a CDN infrastructure, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and integrity checks on resources, although some security headers could be improved. Privacy and cookie policies are comprehensive and indicate GDPR compliance. However, the absence of WHOIS data and contact information on this page limits full trust assessment. Overall, the site demonstrates a mature digital presence with room for enhanced transparency and security documentation.

B

Barum

barum.cz

63

Barum is a well-established tire brand with a strong presence in the Czech Republic and other markets, operating under the Continental AG umbrella. The website serves as an official platform offering product information, tire guides, and dealer search functionalities targeting both consumers and commercial clients. The site is built on Adobe Experience Manager, indicating a mature digital infrastructure with modern web technologies and multi-language support. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks explicit privacy and terms of service documentation. WHOIS data is unavailable, which slightly reduces transparency and trustworthiness. Overall, the website is professional and trustworthy but could improve compliance and contact transparency.

K

Domů • IDZK

koved.cz

44

The website www.idzk.cz represents Integrovaná doprava Zlínského kraje (IDZK), a regional integrated public transportation service provider in the Zlín region of the Czech Republic. The platform offers comprehensive services including bus and train schedule searches, fare and tariff information, a transport card system (Zetka), and an e-shop for related products. The site targets local citizens and travelers, aiming to simplify and improve regional mobility. The business model is focused on public transport integration and customer service facilitation, positioning IDZK as a key regional transportation entity. Technically, the website employs modern web technologies such as Google Web Fonts and JavaScript, with responsive design and good accessibility features. The site is served over HTTPS, ensuring secure communication. Cookie consent mechanisms and GDPR-compliant privacy policies are implemented, reflecting a mature approach to privacy and data protection. However, no advanced security headers were detected, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates a solid baseline with HTTPS and privacy compliance but lacks some best practices such as security headers and vulnerability disclosure mechanisms. The absence of WHOIS data reduces domain trustworthiness, though the website content and structure appear professional and legitimate. No critical vulnerabilities or exposed sensitive data were found. Overall, the site is secure for general users but could improve transparency and security posture. The overall risk assessment is moderate with recommendations to enhance security headers, publish incident response contacts, and improve business contact transparency. The site is well-positioned in its market niche but should address WHOIS data gaps and security best practices to strengthen trust and compliance.

C

CPI Hotels, a.s.

clarioncongresshotelostrava.com

61

Clarion Congress Hotel Ostrava is a large, modern four-star hospitality business located in the Czech Republic, specializing in accommodation, congress and event hosting, wellness, and dining services. It is part of the CPI Hotels group and targets business travelers, conference delegates, and tourists. The website is professionally designed with comprehensive content and clear navigation, reflecting a mature digital presence. Technically, the site uses modern JavaScript frameworks, analytics, and consent management tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and secure forms, though some security headers are missing and no explicit security policy is published. The absence of WHOIS data raises some legitimacy concerns but is mitigated by the professional business presence and affiliations. Overall, the site is trustworthy and well-maintained.

T

The Newsmast Foundation

channel.org

55

Channel.org is a media-focused platform operated by The Newsmast Foundation, providing tools for organisations and content creators to manage channels, content, and communities. The platform leverages modern web technologies such as React and Next.js to deliver a responsive and performant user experience. The website is professionally designed with clear navigation and mobile optimization, targeting organisations and community managers in the media sector. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but aligns with the organization's non-commercial nature. Overall, the site is safe, professional, and trustworthy with room for security and privacy improvements.

P

Pharmacie.lu

pharmacie.lu

57

Pharmacie.lu is a specialized healthcare information platform serving the Luxembourg community by providing comprehensive details about pharmacies, including on-call schedules, vaccination services, Covid testing, job offers, and pharmacy news. The website positions itself as a key national resource for pharmacy-related information, targeting residents seeking accessible and reliable pharmacy services. The business model revolves around being an authoritative directory and informational hub rather than a transactional platform. Technically, the website employs modern web technologies including JavaScript, CSS, and Google reCAPTCHA for form security, hosted under EuroDNS nameservers. The site is mobile-optimized with good navigation and professional design, though it lacks a known CMS and some advanced accessibility features. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, but could be improved by adding explicit security headers and publishing security policies. Privacy compliance is good with a clear privacy policy and cookie consent mechanism, though terms of service and incident response contacts are missing. Overall, the domain registration is consistent and trustworthy, with no suspicious indicators. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility and SEO further.

E

Etat luxembourgeois

public.lu

64

The website etat.public.lu serves as the official directory and portal for public administration websites of the Grand Duchy of Luxembourg. It provides comprehensive listings of ministries, administrations, public services, and related government portals. The site targets government agents, citizens, and professionals seeking official information and services. It also promotes Luxchat4Gov, a secure instant messaging platform for government employees. Technically, the site is built on Adobe Experience Manager, uses modern web standards, and is optimized for mobile and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain registration insights, but the site’s branding and content strongly indicate legitimacy as a government resource. Overall, the site is professional, trustworthy, and well maintained.

C

Creative Boom

creativeboom.com

61

Creative Boom is a prominent UK-based art and design media platform delivering news, inspiration, and insights to millions of creative professionals annually. The website features a rich variety of content including articles, podcasts, and videos, targeting creative industry workers and artists. It maintains a strong market position as a leading creative industry publication with a professional and consistent brand presence. Technically, the site employs modern web technologies such as Tailwind CSS, Swiper.js, and Cloudflare Turnstile captcha, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is solid with HTTPS enforced and bot protection mechanisms in place, though explicit security policies and incident response contacts are not published. Privacy and cookie policies are present and indicate GDPR compliance. The lack of WHOIS domain registration data introduces some uncertainty about domain registration transparency, but the active and professional website content supports legitimacy. Overall, the site is well-maintained, trustworthy, and serves its target audience effectively.

The website represents the 109th Annual Meeting of the German Society of Pathology, hosted by the University Hospital Augsburg. It serves as a professional platform for pathology experts, researchers, and clinicians to engage in scientific exchange, abstract submission, and event registration. The site is well-structured, content-rich, and professionally designed, reflecting a mature digital presence for a scientific conference. Technically, it is built on TYPO3 CMS, hosted on AWS infrastructure, and incorporates modern web practices including responsive design and consent-based tracking via Matomo. Security posture is solid with HTTPS and basic security headers, though additional headers and explicit security policies could enhance protection. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy, professional, and aligned with the expectations of its target audience.

The website www.pathology-congress.de represents the 109th Annual Meeting of the German Society of Pathology, a well-established scientific conference hosted by the University Medical Center Augsburg. It targets pathology professionals and researchers, offering a comprehensive scientific program and abstract submission platform. The site is professionally designed, mobile-optimized, and uses TYPO3 CMS hosted on AWS infrastructure. Privacy compliance is strong with GDPR-aligned cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy and credible, supporting the society's mission to advance pathology through interdisciplinary collaboration.

A

anji s.r.o.

24safe.cz

44

24SAFE is a Czech Republic-based company specializing in the rental of secure safety deposit boxes located in Prague. Their services focus on providing anonymous, 24/7 access to safety deposit boxes for valuables such as jewelry, gold, documents, cash, and data storage. The company emphasizes security with insurance coverage through Lloyd’s Insurance Company and uses an automated system by Gunnebo for access control. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience. However, the absence of WHOIS data and explicit privacy and cookie policies slightly reduce transparency and privacy compliance confidence. The site integrates modern tracking technologies including Google Analytics and TikTok Pixel, indicating a moderate level of user tracking.

Raj pre deti s.r.o. operates a Slovak e-commerce website specializing in educational and sensory toys, including magnetic building sets and safe modeling clays. The company targets parents and educators seeking quality developmental products for children. The website is built on the Flox e-commerce platform hosted by BiznisWeb.sk, featuring a modern design with good mobile optimization and clear navigation. Privacy and cookie policies are implemented with consent mechanisms, and contact information is clearly provided. Security posture is adequate with HTTPS and basic security headers, though additional headers and explicit security policies could enhance protection. The site uses Facebook Pixel for marketing and retargeting, indicating moderate user tracking. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, suitable for its business scope.

P

PMR-RECUP

pmrrecup.be

50

PMR-RECUP is a small Belgian business specializing in the recycling, sales, and rental of equipment for persons with reduced mobility and handicapped individuals. The website is built on the Wix platform, featuring professional design and relevant content targeting a regional audience in Wallonie, Belgium. Contact information includes a phone number and postal address, but lacks email contacts and social media presence. The business model focuses on providing accessible mobility equipment through multiple channels including recycling and rentals. Technically, the site uses Wix's Thunderbolt framework and standard web technologies, with moderate performance and good mobile optimization. Security posture is basic, with no advanced security headers or policies detected, and privacy compliance is lacking due to absence of privacy and cookie policies. WHOIS data is restricted, limiting transparency about domain ownership and age, which slightly reduces trust. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

M

Maxdorf

maxdorf.cz

56

Maxdorf.cz is a well-established Czech medical publishing house specializing in professional healthcare literature and educational materials. The website serves as a portal for news, book releases, and access to an e-commerce platform for purchasing specialized medical books. The target audience primarily consists of healthcare professionals, medical students, and specialists within the Czech Republic. The business operates a niche publishing model with a strong reputation supported by expert authors and multiple awards. Technically, the website uses a combination of classic JavaScript libraries (MooTools, jQuery) and modern media players (Flowplayer), with Google Analytics and Tag Manager for user tracking. The site is hosted by REG-ZONER, a reputable Czech registrar and hosting provider. Security posture is moderate, with HTTPS usage implied but lacking visible security headers and modern security policies. Privacy and cookie policies are absent, indicating compliance gaps with GDPR. Overall, the website is professional, content-rich, and trustworthy but would benefit from enhanced security and privacy compliance measures.

Miger Advertising is a small Czech Republic-based advertising agency specializing in web design, web hosting, SEO optimization, and related digital services. The company has been operating since 2011 and targets local businesses and individuals seeking comprehensive internet presence solutions. Their website reflects a consistent brand image and provides clear contact information, supporting their credibility in the local market. Technically, the website uses standard web technologies including HTML, CSS, JavaScript, and jQuery, with Google Analytics integrated for visitor tracking. However, the use of an outdated jQuery version and lack of modern security headers indicate areas for improvement in security posture. The absence of privacy and cookie policies, despite active tracking, suggests non-compliance with GDPR best practices. Overall, the website is functional and professional but would benefit from enhanced security and privacy measures.

HPV Guide is a specialized educational portal operated by BZCompany Internacional s.r.o., targeting healthcare professionals with comprehensive information on HPV infections and related diseases. The website provides educational content, recommendations, patient materials, and a newsletter subscription service, positioning itself as a trusted resource in the Czech healthcare sector. The site is supported by recognized medical societies, enhancing its credibility and market position. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with integration of Google Adsense for advertising and Google Analytics for visitor tracking. The site is mobile-optimized with good navigation and content structure, though some accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit privacy policies. No direct contact emails or phone numbers are provided, limiting transparency. WHOIS data is privacy protected, which is reasonable for this type of healthcare educational portal. Overall, the security posture is adequate but could be improved with better header implementation and clearer privacy disclosures. The overall risk assessment is low, with no signs of malicious activity or suspicious content. Strategic recommendations include adding a comprehensive privacy policy, enhancing security headers, and providing clearer contact information to improve trust and compliance.

J

JustRelate Group GmbH

scrivito.com

75

Scrivito is a cloud-based, decoupled/headless enterprise web CMS platform developed by JustRelate Group GmbH, targeting enterprise customers, marketing teams, editors, and developers. The platform emphasizes flexibility, rapid development, and omnichannel content delivery. The website presents a professional and modern interface with clear segmentation of benefits for different user roles and includes testimonials from reputable enterprise clients. Technically, the site uses modern JavaScript frameworks and cloud infrastructure, delivering fast performance and excellent mobile optimization. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are not published. The absence of WHOIS data is a notable anomaly that impacts domain trustworthiness. Overall, the site is professional, secure, and compliant with privacy regulations, suitable for enterprise use.

D

Deutsche Gesellschaft für Pathologie e.V.

pathologie-dgp.de

11

The Deutsche Gesellschaft für Pathologie e.V. (DGP) is a well-established German professional society dedicated to the field of pathology. The organization focuses on advancing medical knowledge, quality assurance, education, and research in pathology. Their website serves as a comprehensive portal for members and interested parties, offering news, events, educational resources, and publications. The society targets medical professionals, researchers, and students in pathology and related fields. The website's content is rich, professionally presented, and well-structured, reflecting the organization's authoritative position in the healthcare sector. Technically, the website is built on the TYPO3 CMS platform, hosted on AWS infrastructure, and employs modern web technologies including JavaScript and CSS. It features responsive design and basic accessibility features. Analytics are implemented via Piwik/Matomo with privacy-conscious configurations such as disabling cookies by default. The site uses HTTPS with good SSL configuration, though some security headers could be improved. The cookie consent mechanism is implemented in compliance with GDPR requirements. From a security perspective, the site demonstrates good practices including secure login forms and no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present, which could be areas for enhancement. The WHOIS data aligns well with the website's claims, showing consistent domain registration and hosting information, supporting the site's legitimacy. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing formal security policies, and improving accessibility features to further strengthen the site's security posture and user trust.

BMW Motorrad Czech Republic operates a professional and comprehensive website dedicated to motorcycle sales, financing, accessories, and services. The site targets motorcycle enthusiasts and potential buyers in the Czech market, leveraging the strong BMW brand and offering a wide range of models and related products. The website is built on Adobe Experience Manager, indicating a mature digital infrastructure with integrated analytics and consent management. Security posture is good with HTTPS and consent mechanisms, though explicit security headers and incident response information are absent. The lack of WHOIS data limits domain trust assessment, but the branding and content strongly support legitimacy. Overall, the site is well-positioned to serve its audience with a professional and secure online presence.

F

Formspark

submit-form.com

66

Formspark is a technology-focused SaaS company founded in 2018, providing a backend service that connects web forms to email and other integrations without requiring users to manage servers or databases. The company targets agencies, freelancers, developers, and marketing teams, positioning itself as a reliable and easy-to-use form backend solution trusted by over 20,000 companies. The website is professionally designed with excellent content quality and clear navigation, supporting multiple languages and integrations with popular platforms such as Slack, Zapier, and various spam protection services. Technically, the website leverages modern frameworks including Next.js and React, hosted on AWS infrastructure. It demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforced, secure form handling, and multiple anti-spam protections, although some security headers are not explicitly detected and DNSSEC is not enabled. Privacy compliance is good with a comprehensive privacy policy and GDPR page, but lacks a cookie consent mechanism. Overall, the security maturity is solid for a small SaaS provider, with no visible vulnerabilities or suspicious patterns. The domain registration is privacy protected but consistent with the business profile and age. Contact information is available via email and support forms, with active social media presence. No critical issues were found, and the website is safe for general audiences. Strategic recommendations include implementing security headers, enabling DNSSEC, publishing a formal security policy and vulnerability disclosure program, and adding cookie consent to enhance privacy compliance and trust.

Webex, a Cisco brand, is a leading provider of collaboration and customer experience solutions, offering industry-leading video conferencing, cloud calling, and contact center services that support hybrid work environments for businesses of all sizes. The website demonstrates a mature digital presence with comprehensive product information, clear navigation, and professional branding consistent with Cisco's corporate identity. Technically, the site leverages modern technologies including Brightcove video players, Adobe Helix RUM for performance monitoring, and Adobe Experience Manager as its CMS, ensuring a fast, accessible, and SEO-optimized user experience. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a high level of business credibility and technical maturity, suitable for an enterprise-grade SaaS provider.