High-risk security reports

Č

Česká asociace cheerleaders

cach.cz

49

Česká asociace cheerleaders (ČACH) is a Czech non-profit organization dedicated to the promotion and development of cheerleading in the Czech Republic. The association organizes competitions, training camps, workshops, and certifies coaches and judges. It also manages national team representation and membership services. The website reflects a well-structured organization with a clear focus on cheerleading sports and community engagement. The association maintains partnerships with various sports and commercial entities and has an active presence on multiple social media platforms. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and jQuery, with a CMS likely based on Perch. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

The website at securenok.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2010 with a reputable registrar, indicating a potentially legitimate business presence. However, the lack of accessible content, absence of privacy or cookie policies, and no contact information severely limit the ability to assess the business or security posture. The technical infrastructure shows no DNSSEC enabled, and no security headers or analytics scripts are present. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user experience and low trustworthiness.

A

Alte Brennerei Oelde

alte-brennerei-oelde.de

38

Alte Brennerei Oelde operates a coworking space in Oelde, Germany, providing flexible workspaces, meeting rooms, virtual office services, and event spaces tailored to freelancers, startups, and entrepreneurs. The business emphasizes a creative and productive environment with amenities such as lounge areas, kitchens, and a rooftop terrace. Their market position is that of a local coworking and office space provider targeting small businesses and independent professionals. Technically, the website is built on WordPress using the Elementor page builder, hosted on kasserver.com. The site is moderately performant, mobile-optimized, and uses HTTPS, but lacks advanced security headers and cookie consent mechanisms. The site collects minimal user data via a newsletter signup form and does not appear to use analytics or tracking services, indicating a privacy-conscious approach. From a security perspective, the site benefits from HTTPS and no visible sensitive data exposure. However, it lacks published security policies, incident response contacts, and security headers, which are recommended for improved security posture. There are no detected vulnerabilities or malware indicators. Overall, the website is professional, trustworthy, and suitable for its business purpose. Strategic improvements in security headers, privacy compliance (cookie consent), and transparency around security policies would enhance trust and compliance.

V

Vierte Orte GmbH

zuseworks.de

37

zuseworks.de is a professionally operated coworking space located in Hünfeld, Germany, managed by Vierte Orte GmbH. The company offers a variety of flexible workspace solutions including flex desks, private offices, meeting rooms, virtual office services, event spaces, and coaching rooms. The business targets creatives, entrepreneurs, and self-employed professionals seeking a modern and community-driven work environment. The website is well-structured, visually appealing, and provides clear contact information and social media links, supporting a positive user experience. Technically, the website is built on WordPress using the Elementor page builder, leveraging modern web technologies such as jQuery and Google Tag Manager for analytics. The site is hosted on servers associated with kasserver.com, with HTTPS enabled and cookie consent managed via Usercentrics, indicating a good level of digital maturity and privacy compliance. Performance and mobile optimization are adequate, though accessibility could be improved. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain WHOIS data is consistent with the business information, enhancing trustworthiness. Overall, zuseworks.de presents a low-risk profile with a solid business presence and good technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its posture.

S

St Johann Konstanz

st-johann-konstanz.de

43

St Johann Konstanz is a small local business focused on providing coworking spaces and promoting new work concepts in the city of Konstanz, Germany. The website presents a professional and consistent brand image, targeting professionals and entrepreneurs interested in innovative workspace solutions. The business model revolves around shared workspaces and community building. Technically, the website is built on WordPress using the Elementor page builder and optimized with the Seraphinite Accelerator plugin, hosted on kasserver.com. The site is moderately performant and mobile-optimized, with good SEO practices evident in meta tags and structured data. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security measures.

Vierte Orte GmbH is a German company specializing in the development and operation of multifunctional real estate spaces primarily in rural and suburban areas. Their offerings combine coworking, cultural activities, accommodation, and community engagement with a strong focus on social and ecological value. The company operates under the parent entity Gründerschiff Holding and targets local communities and businesses seeking innovative shared spaces. Technically, the website is built on WordPress using Elementor, with modern tracking and cookie consent mechanisms implemented. Security posture is adequate with HTTPS and cookie consent but lacks explicit security policies or vulnerability disclosure. Overall, the site is professional, accessible, and compliant with GDPR requirements, reflecting a trustworthy business presence.

A

Anthroposophische Gesellschaft in Deutschland e.V.

anthroposophie-gegen-rassismus.de

46

The website 'Anthroposophie gegen Rassismus' is operated by the Anthroposophische Gesellschaft in Deutschland e.V. and serves as an informational platform dedicated to clarifying misconceptions about Anthroposophy related to racism, antisemitism, and right-wing extremism. It provides educational content, publications, blog articles, and official statements to promote a humanistic and inclusive understanding of Anthroposophy. The target audience includes individuals interested in Waldorf education, biodynamic products, and those seeking critical discourse on these topics. Technically, the site is built on TYPO3 CMS, hosted by Infomaniak, and employs modern frontend libraries ensuring good mobile optimization and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the site is trustworthy, professional, and serves a niche educational purpose effectively.

The website medienzentrum-ekm.de is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. This prevents extraction of business, contact, or policy information. The domain is hosted on manitu.net name servers, a known German hosting provider, but no registrant details or company information are available to verify legitimacy or business operations. The lack of accessible content and absence of privacy, cookie, or terms of service policies indicates a very low digital maturity and poor user experience. Security posture cannot be properly assessed due to lack of accessible data and no visible security headers or SSL information. Overall, the site is effectively blocked from public access, resulting in a critical limitation for analysis and a very low trust and credibility score.

T

Thüringer Literaturrat e.V.

literaturland-thueringen.de

45

Literaturland Thüringen is a cultural-literary initiative focused on presenting the literary heritage and contemporary literary scene of the Thüringen region in Germany. It operates as a non-profit platform supported by recognized cultural institutions such as the Thüringer Literaturrat e.V., Sparkassen-Kulturstiftung Hessen-Thüringen, and media partners MDR Kultur and MDR Thüringen. The website offers a rich repository of articles, images, indexes of places and persons, and multimedia content aimed at literature enthusiasts and the general public interested in regional culture. Technically, the website is built on WordPress 4.9.26 with several plugins enhancing user experience, including Leaflet.js for interactive maps and cookie consent mechanisms for GDPR compliance. While the site uses HTTPS and has a cookie consent banner, it relies on outdated WordPress and jQuery versions, which may expose it to security vulnerabilities. The site lacks explicit security headers and visible contact emails or phone numbers on the homepage, although a contact form is available. From a security perspective, the site demonstrates basic good practices such as HTTPS and cookie consent but requires updates to its CMS and libraries to mitigate potential risks. No advanced security policies or incident response contacts are published. The absence of a vulnerability disclosure policy and security.txt file indicates room for improvement in transparency and security readiness. Overall, Literaturland Thüringen is a trustworthy and professionally presented cultural platform with good content quality and user experience. Strategic updates to its technical stack and enhanced security measures are recommended to maintain and improve its security posture and compliance.

L

Lese-Zeichen e.V.

lesezeichen-ev.de

40

Lese-Zeichen e.V. is a small non-profit cultural association based in Germany, dedicated to promoting literature and organizing literary events, readings, and podcasts. The website serves as a hub for event information, news, and cultural content targeting literature enthusiasts primarily in the Thuringia region. The organization maintains an active presence with detailed event calendars and multimedia content, including podcasts and videos. Technically, the website uses a modern Bootstrap framework with common JavaScript libraries and custom scripts, providing a responsive and user-friendly experience. However, some technical aspects such as mixed content loading and lack of security headers indicate room for improvement in security practices. The security posture is moderate, with client-side password hashing implemented but lacking comprehensive protections like CSRF tokens and secure script delivery. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a significant gap given GDPR requirements. Overall, the website is functional and professional but would benefit from enhanced security and privacy measures to improve trust and compliance.

M

Mitteldeutsche Bildungsakademie in Trägerschaft der MMB gGmbH

bildungsakademie-mmb.de

49

Mitteldeutsche Bildungsakademie in Trägerschaft der MMB gGmbH is a non-profit educational organization based in Germany, focused on supporting schools and leadership teams in their development and transformation processes. The organization offers key services including school development, educational events, and leadership qualification programs. The website is professionally designed, well-structured, and targets educational institutions primarily in the central German region. Technically, the site is built on WordPress with modern libraries such as jQuery and Swiper.js, hosted on host-on.net servers. It employs cookie consent management via Borlabs Cookie, ensuring compliance with GDPR regulations. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a trustworthy and professional digital presence for the educational sector.

G

Gemeindedienst der EKM

gemeindedienst-ekm.de

46

The Gemeindedienst der EKM is a non-profit church service organization affiliated with the Evangelische Kirche in Mitteldeutschland (EKM). It provides a broad range of services including consulting, education, event organization, fundraising, and material provision primarily targeted at church communities and church districts. The website reflects a well-structured and professional presence with clear contact channels and relevant content for its audience. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and slick carousel, hosted on Eastlink infrastructure, and is mobile optimized with moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and explicit incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and aligns well with its church affiliation.

J

J.B. Poindexter & Co

jbpoindexter.com

44

J.B. Poindexter & Co (JBPCO) is a privately held diversified manufacturing company specializing in commercial trucks, specialty vehicles, upfit and accessory solutions, and manufacturing services. With a global workforce of approximately 8,500 employees and a consolidated revenue of around $2.5 billion, JBPCO operates multiple well-known business units including Morgan Truck Body, Morgan Olson, Reading Truck, and several ambulance and specialty vehicle manufacturers. The company positions itself as a leader in the industrial and commercial vehicle manufacturing sectors, serving a broad range of customers and industries. Technically, the JBPCO website is built on WordPress with modern front-end technologies such as Tailwind CSS and Alpine.js, and integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. The site is well-optimized for SEO, mobile responsive, and demonstrates good accessibility features. Security measures include HTTPS enforcement, reCAPTCHA v3 on forms, and security headers, reflecting a mature security posture. From a security perspective, the site shows strong adherence to best practices with no visible vulnerabilities or exposed sensitive data. However, the absence of a visible cookie consent banner and explicit incident response contact information are areas for improvement. The WHOIS data for the domain is missing, which is unusual for a large enterprise and may warrant further investigation to confirm domain legitimacy. Overall, JBPCO presents a professional, trustworthy, and well-maintained digital presence aligned with its business stature. Strategic recommendations include enhancing privacy compliance visibility, publishing security policies, and clarifying domain registration details to strengthen trust and compliance posture.

The website www.modulus.ro is currently inaccessible, returning a 404 Not Found error page with no meaningful content or metadata. Due to the lack of accessible content, no business description, contact information, or compliance policies are available for analysis. The domain WHOIS data is protected by ROTLD privacy policies, preventing extraction of registrar or registrant details. Technically, the site lacks security headers and advanced SSL/TLS configuration details, indicating a minimal security posture. Overall, the site appears inactive or misconfigured, limiting any substantive security or business assessment.

A

art@tec Agentur für Design- und Webkommunikation

art-at-tec.de

45

art@tec Agentur für Design- und Webkommunikation is a small German agency specializing in creative design and web communication services, including graphic design, corporate identity, web development, and video animation. The company targets businesses seeking professional design and web solutions, positioning itself as a reliable and creative partner in the regional market. The website is built on TYPO3 CMS, indicating a mature technical infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and anonymized Google Analytics tracking, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy, with clear contact information and consistent branding.

The Zentrum für Mittelalterausstellungen e.V. is a small non-profit cultural organization based in Magdeburg, Germany, dedicated to medieval exhibitions and cultural-historical projects. Their website serves as an informational portal highlighting brochures, podcasts, and events related to medieval history. The organization maintains a modest but clear online presence with official contact details and published materials supporting their mission. Technically, the website is built on WordPress with common plugins such as Events Manager and H5P, utilizing Bootstrap and jQuery for frontend functionality. The site is hosted with domain control via GoDaddy name servers and uses HTTPS, ensuring basic security. However, the site lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. From a security perspective, the site demonstrates a moderate posture with HTTPS enabled and no visible sensitive data exposure. The absence of security headers and vulnerability disclosure policies suggests a need for enhanced security practices. Privacy compliance is partially addressed through a linked privacy policy document, but no cookie consent or terms of service pages were found. Overall, the website is functional and trustworthy for its niche audience but would benefit from technical and security enhancements to improve user trust and compliance with modern standards.

N

Nadace Pro půdu

nadacepropudu.cz

42

Nadace Pro půdu is a Czech non-profit foundation established in 2016, dedicated to ecological and sustainable agriculture by securing land for eco-farmers who practice environmentally friendly farming. The foundation operates by acquiring land and leasing it to small ecological farmers under long-term agreements, promoting soil health and local community benefits. The website is professionally designed using WordPress and the Divi theme, featuring rich content in Czech and clear navigation. It integrates common web technologies including jQuery, MediaElement.js, Google Analytics, and Facebook Pixel for tracking. Security posture is moderate with HTTPS enabled but lacks explicit security headers and privacy/cookie policies, indicating room for compliance improvement. Contact information is clearly provided, enhancing business credibility. The domain registration data aligns well with the organization's profile, supporting legitimacy. Overall, the website is a good representation of a small non-profit with a clear mission and professional online presence.

T

Technologické centrum AV ČR

h2020.cz

44

The website www.h2020.cz serves as the official Czech national portal for the EU Horizon 2020 research and innovation framework program. Operated by Technologické centrum AV ČR, it provides comprehensive information, news, event calendars, and documentation related to Horizon 2020. The portal targets researchers, innovators, industry stakeholders, and public institutions interested in EU research funding opportunities. It positions itself as a trusted government-affiliated resource with consistent branding and clear navigation. Technically, the site uses a combination of jQuery, Bootstrap 3.3.7, jQuery UI, and a custom CMS named FoxFrame. It integrates Google Tag Manager and Google Analytics for tracking. The site is mobile optimized and performs moderately well, though accessibility features are basic. The HTML structure and meta tags support good SEO practices. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could improve protection. There is no visible privacy or cookie policy, which is a compliance gap especially under GDPR. No WHOIS data is available for the domain, which slightly reduces trust but the content and external links strongly indicate legitimacy. Overall, the site is a professional and trustworthy government information portal with good content quality and technical implementation. To enhance security and compliance, it should implement security headers, publish privacy and cookie policies, and provide clear contact information for security and privacy concerns.

F

Freie Gemeinschaftsbank Genossenschaft

gemeinschaftsbank.ch

42

Freie Gemeinschaftsbank Genossenschaft is a Swiss cooperative bank focused on sustainable and transparent banking practices. It offers services including account opening, credit lending, and sustainable investments, targeting individuals and projects aligned with ecological and social values. The bank positions itself as a niche player in the Swiss sustainable finance sector, emphasizing community involvement and transparency. Technically, the website is well-structured, mobile-optimized, and uses modern web technologies with good SEO and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response details are not published. Overall, the website reflects a trustworthy and professional financial institution with a clear sustainability mission.

A

Anthroposophische Gesellschaft in Deutschland e.V.

anthroposophische-gesellschaft.org

45

The Anthroposophische Gesellschaft in Deutschland e.V. is a well-established non-profit organization dedicated to promoting the spiritual and cultural movement of Anthroposophy founded by Rudolf Steiner. The website serves as a comprehensive platform for members and interested parties, offering news, events, publications, and educational resources. It holds a strong market position within the spiritual and cultural sector in Germany, targeting individuals and institutions interested in Anthroposophy and related reform movements. The organization operates with a medium-sized footprint and a clear mission to foster cultural and spiritual development.

Parzival-Jugendhilfe is a small, non-profit educational and youth support organization based in Karlsruhe, Germany. It operates as part of the Parzival-Zentrum Karlsruhe and offers integrative educational services based on Waldorf pedagogy, targeting male youths aged 12 to 18. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on its educational mission. Technically, the site is built on WordPress with modern SEO practices via Yoast SEO and uses standard web technologies such as jQuery. Hosting is provided by kasserver.com, as indicated by the nameservers. Security posture is adequate with HTTPS enforced and some anti-spam measures, but lacks advanced security headers and explicit incident response or security policies. Privacy compliance is basic with a privacy and cookie policy present but no active cookie consent mechanism. Overall, the website is trustworthy and well-positioned within its regional educational sector.

V

Vierte Orte GmbH

office-friends-olpe.de

36

Office & Friends Olpe, operated by Vierte Orte GmbH, is a coworking space provider located in Olpe, Germany. The company offers flexible workspace solutions including flex desks, private offices, meeting rooms, virtual offices, and event spaces tailored for freelancers, startups, and entrepreneurs. Their market position is regional with a focus on fostering community and productivity in a modern environment. The website is professionally designed using WordPress and Elementor, featuring clear navigation, mobile optimization, and integrated cookie consent mechanisms. Technically, the site uses modern web technologies and is hosted on kasserver.com with proper HTTPS configuration. Security posture is solid with no visible vulnerabilities, though security headers could be improved. Privacy compliance is addressed with a GDPR-compliant privacy and cookie policy. Contact information is clearly presented, enhancing business credibility. Overall, the website reflects a trustworthy and professional business presence.

C

CHARLOTTE | Stiftung

charlotte-stiftung.org

49

CHARLOTTE | Stiftung is a small non-profit foundation based in Berlin, Germany, established in 2019 by the Charlottenburger Baugenossenschaft. The foundation focuses on providing financial support to residents in need, particularly for health-related home modifications and support for disabled youth and elderly care. The website is built on TYPO3 CMS and uses modern web technologies including jQuery and Google Maps API. It offers donation options via bank transfer and PayPal, with clear contact information and legal disclosures. The site is well-structured, mobile-optimized, and provides relevant content for its target audience. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is good with a privacy policy present, though no cookie consent mechanism is detected. Overall, the website demonstrates a trustworthy and professional online presence for a local charitable foundation.

Seenotrettershop is a German e-commerce website specializing in maritime rescue-themed merchandise such as books, clothing, collectibles, and art prints. The site targets enthusiasts and supporters of maritime rescue services, offering a niche product catalog through an online retail model. The platform is built on the Gambio e-commerce software and integrates PayPal for payment processing, indicating a moderate level of digital maturity. The website is well-structured with clear navigation, responsive design, and product presentation, supporting a positive user experience. However, the absence of privacy and cookie policies, as well as terms of service, indicates gaps in compliance and transparency. Security posture is adequate with HTTPS and secure forms but lacks advanced security headers and documented incident response mechanisms. Overall, the site is functional and trustworthy for its niche audience but would benefit from enhanced privacy compliance and security best practices.

The website centralni-adresa.net serves as an informational portal for a Czech government registry concerning declarations of activities, property, income, gifts, and liabilities under law 159/2006 Sb. The site is operated by Galileo Corporation s.r.o., a small company providing niche registry services to public officials and government entities. The content is primarily legal and regulatory in nature, targeting officials and citizens interested in conflict of interest declarations. The site is modest in design and content quality, with basic navigation and limited interactivity. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with resources hosted on the same domain. The site uses HTTPS, but lacks visible advanced security headers such as CSP or HSTS. There is no evidence of a CMS or modern frameworks, and the site appears to have been last updated in 2017, indicating potential technical debt and outdated content. Mobile optimization and accessibility are basic but present. From a security perspective, the site does not expose sensitive data or forms on the main page, which reduces risk. However, the absence of security headers and privacy/cookie policies indicates gaps in compliance and best practices. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency and legitimacy, although the site content and footer indicate a legitimate business operator. Overall, the site is functional and serves its informational purpose but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trustworthiness and regulatory compliance.

T

Tomáš Michálek, fyzická osoba

meteo-roven.cz

49

The website meteo-roven.cz serves as a regional weather information portal focused on eastern Czech Republic, providing real-time data from multiple local meteorological stations. It also offers additional services such as webcams and an e-shop for weather-related products. The business appears to be a small, locally focused entity operated by an individual, with a domain age consistent with its operational history since 2016. The website uses a modern frontend technology stack including Bootstrap 4, jQuery, and various UI plugins, hosted on infrastructure associated with the WEDOS registrar and nameservers. The site is mobile responsive and offers a generally good user experience, though some minor code quality issues are present as evidenced by PHP notices in the navigation menu.

The website www.dopravapk.cz currently displays only a brief message indicating that the project was terminated as of January 22, 2024. There is no additional content, metadata, or business information available on the site. The lack of WHOIS data further complicates verification of domain ownership and legitimacy. Technically, the site lacks any detectable technologies, security headers, or HTTPS configuration, indicating a very low digital maturity level. From a security perspective, the absence of privacy policies, contact information, and security best practices suggests a minimal security posture with significant room for improvement. Overall, the site appears inactive or abandoned, posing a low risk but also offering no business value or trust signals.

T

T.J. SOKOL ROVEŇ

tjsokolroven.cz

42

T.J. Sokol Roveň is a small local sports and cultural organization based in the Czech Republic, primarily focused on football and other community sports activities. The website serves as an information hub for club members and local residents, providing schedules, results, historical data, and news updates. The site is built on Backdrop CMS and uses common web technologies including jQuery, Featherlight lightbox, and Google Analytics for visitor tracking. While the site is accessible and well-structured with good content quality, it lacks formal privacy and cookie policies, security headers, and publicly available contact information, which are important for compliance and trust. The absence of WHOIS data limits the ability to verify domain registration legitimacy, although the website content appears consistent with a legitimate local sports club. Overall, the site demonstrates moderate technical maturity and security posture but would benefit from enhanced privacy compliance and security best practices.

Golfový klub Osyčina is a regional golf club located in Dobříkov u Chocně, Czech Republic, operating a 9-hole golf course with additional facilities such as a driving range, practice areas, and a golf simulator. The club offers services including training, tournaments, children's activities, and accommodation in a traditional wooden clubhouse and partner pension. The website reflects a small but active community-focused business with a clear target audience of golf enthusiasts and families in the region. Technically, the website uses a custom CMS (Web-SOUL) with legacy technologies such as jQuery 1.11.3 and FancyBox for galleries. It integrates Google Analytics, Google Tag Manager, and Facebook SDK for tracking and marketing. The site has basic mobile optimization and accessibility features but could benefit from modernization and performance improvements. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating GDPR awareness. However, no explicit security headers were detected, and the use of an outdated jQuery version poses potential vulnerabilities. WHOIS data is unavailable, which reduces domain trustworthiness, but the active social media presence and detailed content support legitimacy. Overall, the website is functional and professional for its business scope but should address technical and security improvements to enhance trust and compliance.

S

Spotible

spotible.com

49

Spotible is a specialized multimedia engagement platform offering innovative advertising solutions across audio, video, OTT, and interactive display formats. The company targets media brands, advertisers, and publishers seeking high-impact engagement frameworks and monetization strategies. With a domain registered since 2011 and a presence across multiple continents, Spotible positions itself as a trusted partner for top-tier media and Fortune 500 enterprises. The website reflects a professional and consistent brand image with clear service offerings and client testimonials. Technically, the website employs a modern tech stack including Bootstrap, jQuery, various sliders, and YouTube API integrations, hosted on Amazon AWS infrastructure. Performance and mobile optimization are good, though accessibility and SEO could be improved. The site uses HTTPS with a valid SSL configuration but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. From a security perspective, the site demonstrates basic best practices such as HTTPS enforcement and domain status protections. However, it lacks visible incident response policies and cookie consent mechanisms, which are important for compliance and user trust. The presence of certifications like GDPR and CCPA logos indicates awareness of privacy regulations. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, Spotible presents a credible and professional digital presence with room for improvement in security hardening and privacy compliance. Strategic enhancements in security headers, DNSSEC, and cookie consent would strengthen its posture and user trust.

The website clearview-intelligence.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2015 through Ascio Technologies, a domain registrar, with no privacy protection applied. Due to the lack of accessible content, no business description, contact information, or security policies are available for analysis. The site does not present any metadata, scripts, or tracking technologies, indicating minimal digital maturity and no active online presence. Security posture is poor as no HTTPS or security headers are detected, and privacy compliance is absent. Overall, the site appears either restricted or misconfigured, limiting trust and business credibility.

Y

403 - Forbidden

yunextraffic.com

43

The website yunextraffic.com is currently inaccessible, serving a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2021 with CSC Corporate Domains, Inc., and uses Azure DNS name servers without DNSSEC enabled. No privacy, cookie, or terms of service policies are present, nor is there any contact information or business details available on the site. The lack of accessible content and security best practices significantly limits the ability to assess the business or technical maturity of the site. The site appears either restricted, under maintenance, or misconfigured, resulting in a poor user experience and low trustworthiness.

A

Akabo Media

akabomedia.co.uk

45

Akabo Media is a UK-based small business specializing in publishing and event organization focused on logistics, supply chain, and intelligent transportation systems. The company provides decision makers in these sectors with informed intelligence, analysis, and industry events to maintain competitive advantage. The website is professionally designed using WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure includes modern web technologies and analytics tools, supporting good performance and SEO optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal policies. The absence of privacy and cookie policies, as well as contact information, represents compliance and trust gaps. WHOIS data is unavailable due to domain registration errors, which impacts domain legitimacy assessment. Overall, the website is functional and business-focused but would benefit from enhanced compliance and security transparency.

Limo Špes is a Slovak company specializing in the production and distribution of natural spring and mineral water products. The company emphasizes tradition, nature, and faith as core values and positions itself as more than just a bottler of water, aiming to provide health-supporting water created by God in detail. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. The site is moderately optimized for mobile and SEO, with good design and user experience. However, it lacks explicit privacy, cookie, and terms of service policies, which impacts compliance and trust. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. The presence of an external tracking script without a visible consent mechanism raises privacy concerns. Overall, the website is functional and professional but would benefit from enhanced privacy, security, and contact transparency.

Primatour s.r.o. is a Slovak travel agency based in Trnava, offering a wide range of holiday packages including last minute deals, exotic vacations, family and adult-only hotels, and cruises. The company emphasizes 20 years of experience and positions itself as a trusted provider in the Slovak travel market. Their website is well-structured, professionally designed, and targets Slovak-speaking travelers seeking vacation options. The business model revolves around travel package sales and customer service with a strong digital presence including social media and newsletter marketing. Technically, the website leverages modern web technologies such as jQuery, Bootstrap, and Slick Slider, integrated with a specialized travel agency system (CeSYS). It uses CDN-hosted assets and includes marketing and analytics tools like Google Tag Manager, Facebook Pixel, and Mailchimp. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the business claims, supporting legitimacy and trustworthiness. Overall, Primatour's website demonstrates a solid digital maturity level with good privacy compliance and business credibility. Strategic improvements could focus on enhancing security headers, incident response transparency, and accessibility features to further strengthen their security posture and user trust.

P

PaRELI s.r.o.

pareli.sk

43

PaRELI s.r.o. is a Slovak company founded in 2013 specializing in digitization and project documentation services for the construction sector, focusing on electrical installations, lighting, and security systems. The company serves construction professionals and developers primarily in Slovakia, with a portfolio of multifunctional complex projects. The website is built using modern technologies such as Vue.js and integrates Google Maps API for enhanced user experience. The site is professionally designed with good navigation and mobile optimization, though it lacks formal privacy and cookie policies, which impacts compliance. Security posture is moderate with no evident security headers or vulnerability disclosures, and no analytics or tracking scripts detected, indicating minimal user tracking. Contact information is clearly presented, supporting business credibility. Overall, the website reflects a legitimate and professional small business with room for improvement in privacy and security practices.

M

Ministerstvo investícií, regionálneho rozvoja a informatizácie SR

hacknime.to

49

Hacknime.to is a Slovak government-backed digital platform managed by the Ministry of Investment, Regional Development and Informatization of the Slovak Republic. The website promotes and organizes hackathons aimed at accelerating digital transformation and innovation within public administration. It targets the tech community, startups, and public sector stakeholders, offering financial incentives and opportunities to implement innovative solutions. The platform is funded through the Slovak Recovery and Resilience Plan, positioning it as a key player in national digitalization efforts. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and fslightbox, alongside Google Tag Manager and Facebook Pixel for analytics and marketing. The site is built on TYPO3 CMS, optimized for mobile devices, and includes cookie consent mechanisms to comply with privacy regulations. Performance is moderate, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns with the government entity, confirming legitimacy and consistency. Overall, Hacknime.to presents a professional, trustworthy, and well-branded digital presence supporting Slovakia's public sector innovation. Strategic improvements in security transparency and compliance documentation would enhance its posture and stakeholder confidence.

F

For Best Clients, s.r.o.

nextech.sk

40

Nextech.sk is a Slovak technology news and media website operated by For Best Clients, s.r.o. It provides a wide range of technology-related content including news, reviews, research articles, and special projects targeting Slovak-speaking technology enthusiasts and professionals. The website features a modern design with responsive elements and integrates multiple third-party analytics and advertising services to support its business model. Hosting is provided by WebSupport, a reputable Slovak hosting provider. From a technical perspective, the site uses a combination of jQuery, Bootstrap, Slick Carousel, and Google services such as Analytics and Tag Manager. The site is served over HTTPS with good SSL configuration, but lacks explicit security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No security incident response or vulnerability disclosure information is provided, which is a gap in the security posture. Security-wise, the site demonstrates basic best practices such as HTTPS and reCAPTCHA usage but could improve by publishing clear privacy and cookie policies, implementing cookie consent mechanisms, and adding security headers. There is no evidence of WAF or blocking mechanisms, and the site content is fully accessible. Overall, Nextech.sk is a professionally managed technology media site with moderate security and privacy compliance maturity. Strategic improvements in privacy transparency and security disclosures would enhance trust and compliance.

2

2123design s.r.o.

2123design.cz

41

2123design s.r.o. is a Czech Republic based graphic design company established in 2005, specializing in visual styles, illustrations, and typesetting for print media such as books and brochures. The company targets both small and large businesses and organizations, offering a unique combination of graphic design, illustration, and typesetting services. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses legacy technologies such as jQuery 1.11.3 and Google Maps API loaded over HTTP, which pose security risks. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Security posture is moderate with no visible security headers or incident response information. Overall, the domain registration data supports the legitimacy and longevity of the business.

Obec Poběžovice u Holic is a small municipal government entity serving approximately 309 residents in the Czech Republic. The website provides local government information, public notices, event calendars, and contact details, positioning itself as a trusted source for community engagement and administrative services. The site is professionally designed with consistent branding and clear navigation, targeting residents and visitors of the Poběžovice area. Technically, the website uses a modern technology stack including jQuery, jQuery UI, Owl Carousel, Google reCAPTCHA, and Matomo analytics, built on the IPO CMS platform by Antee s.r.o. The site is mobile responsive and performs moderately well, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, but lacks security headers and a formal privacy policy, which are recommended for enhanced compliance and protection. The absence of WHOIS data limits domain trust analysis, but the presence of official contact information and government partner links supports legitimacy. Overall, the website is a reliable municipal portal with room for improvement in privacy and security transparency.

G

Galileo Corporation s.r.o.

obec-jaroslav.cz

47

Obec Jaroslav operates an official municipal website providing residents and visitors with comprehensive information about the village, including administrative notices, event calendars, contact details, and local services. The website is managed by Galileo Corporation s.r.o., a professional company specializing in municipal web solutions, as indicated in the footer. The site targets local citizens and stakeholders, offering a user-friendly interface with mobile optimization and clear navigation. Technically, the site employs modern JavaScript libraries such as jQuery, Bootstrap, Swiper.js, and PhotoSwipe, ensuring a responsive and interactive user experience. The inclusion of Smartlook indicates a moderate level of user behavior tracking for analytics purposes. Security-wise, the website enforces HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit security or privacy policies, which could be improved to enhance compliance and trust. Overall, the website is trustworthy, well-maintained, and serves its community effectively, though there is room for strengthening privacy and security documentation.

O

Obec Chvojenec

chvojenec.cz

42

Obec Chvojenec is the official website of the municipality of Chvojenec in the Czech Republic, serving as a local government portal providing community information, public notices, and municipal services. The website targets residents and visitors seeking information about local governance, events, and services. The site is well-structured with clear navigation and consistent branding, reflecting a small government entity focused on community engagement. Technically, the website employs standard web technologies including jQuery, YouTube API integration, and Google Analytics for visitor tracking. It uses HTTPS to secure communications and implements a cookie consent mechanism, indicating some level of privacy awareness. However, the absence of a dedicated privacy policy and security headers suggests room for improvement in compliance and security hardening. From a security perspective, the site shows moderate maturity with HTTPS enabled and no visible vulnerabilities in the provided content. The lack of WHOIS data limits domain trust verification, but the website content and external references support its legitimacy. No signs of malicious or adult content were found, and the site appears safe for general audiences. Overall, the website is functional and professional for its purpose but would benefit from enhanced privacy disclosures, improved security headers, and better transparency in domain registration to strengthen trust and compliance.

Obec Trusnov is the official municipal website for the municipality of Trusnov in the Czech Republic. It serves as a local government portal providing residents and visitors with information about the municipality, its villages, local administration, public notices, events, and contact details. The website targets local citizens and stakeholders interested in municipal affairs. Technically, the site uses a PHP-based CMS (IPO Redakční systém), jQuery libraries, Google reCAPTCHA for form security, and Matomo for analytics with cookie tracking disabled. The site is mobile responsive and well structured, though it lacks some modern security headers and comprehensive privacy documentation. Security posture is moderate with HTTPS enabled and basic security practices in place. The absence of WHOIS data limits domain trust assessment, but the website content and external partner links indicate legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

O

Obec Horní Ředice

horniredice.cz

42

Obec Horní Ředice operates an official municipal website serving the local community in the Czech Republic. The site provides comprehensive information about the municipality, including local government news, event calendars, public notices, educational institutions, and community services. It targets residents and visitors seeking official information about Horní Ředice. The business model is that of a government information portal, focusing on transparency and community engagement. The website is well-branded and consistent with its official purpose, reflecting a small-sized local government entity founded in 2003. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and integrates external resources such as YouTube for video content and Smart App Banner for mobile app promotion. The hosting is managed through a Czech registrar and name servers, indicating local infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site benefits from HTTPS encryption and avoids exposing sensitive data. However, it lacks explicit security headers and formal security policies such as vulnerability disclosure or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR applicability. No tracking or advertising scripts were detected, indicating minimal user tracking. Overall, the website is trustworthy and professional, serving its governmental function effectively. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance user trust and regulatory adherence.

O

Obec Býšť

byst.cz

48

Obec Býšť operates an official municipal website serving the local community in the Czech Republic. The site provides comprehensive information about the municipality, including local government, education, culture, sports, and community services. It targets residents and visitors seeking official information and services. The website is well-structured with clear navigation and uses modern web technologies such as jQuery, Bootstrap, and Swiper.js to enhance user experience. Mobile optimization is good, and the site includes a cookie consent mechanism indicating awareness of privacy compliance requirements. However, the absence of a privacy policy and WHOIS registration data presents compliance and trust concerns. Security posture is moderate with HTTPS usage but lacks visible security headers and vulnerability disclosure policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

pg-webstudio is a small German web design and development service provider specializing in custom websites using popular CMS platforms such as Wordpress, Drupal, Grav, Contao, and Joomla. The company targets local businesses and individuals in Göttingen and surrounding areas, offering a comprehensive range of services including SEO, responsive design, interactive maps, and ongoing website maintenance. The website showcases a strong portfolio of client projects across various industries, demonstrating technical versatility and design expertise. Technically, the site uses modern web standards and frameworks like Bootstrap 4 and jQuery, hosted on Alfahosting servers. Mobile optimization and user experience are excellent, with clear navigation and professional content. Security posture is moderate with cookie consent implemented and form nonce tokens present, but lacks visible HTTP security headers and explicit security policies. No active analytics tracking or advertising is detected, enhancing privacy compliance. WHOIS data aligns with the website's business focus, indicating legitimacy. Overall, the site is professional, trustworthy, and well-structured.

L

Landesverband der Kita- und Schulfördervereine Berlin-Brandenburg e.V.

lsfb.de

47

The Landesverband der Kita- und Schulfördervereine Berlin-Brandenburg e.V. operates as a regional non-profit association supporting daycare and school support organizations in the Berlin-Brandenburg area. The website serves as an informational and advocacy platform targeting parents, educators, and affiliated support groups. The organization positions itself as a key regional player in educational support, focusing on community engagement and resource provision. Technically, the website is built on WordPress CMS with modern frameworks such as Bootstrap and Elementor, hosted by Alfahosting. It employs HTTPS for secure communication and integrates Google Analytics for visitor tracking. Accessibility is enhanced by a dedicated accessibility tool, and cookie consent mechanisms are implemented, reflecting a moderate level of digital maturity. From a security perspective, the site benefits from HTTPS and updated software components but lacks explicit privacy policies, terms of service, and incident response contacts. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and compliance. Security headers are partially implemented, and no WAF or blocking mechanisms interfere with accessibility. Overall, the website is professionally designed and functional with good content relevance and user experience. However, to enhance trust and compliance, the organization should publish comprehensive privacy and security policies and provide clear contact channels for security incidents.

O

OEMUS MEDIA AG

jobsuchtdich.de

43

The website jobsuchtdich.de is a German job portal operated by OEMUS MEDIA AG, focusing on providing job listings and recruitment advertising services. The site targets job seekers and employers primarily in Germany, positioning itself as a niche media company within the recruitment sector. The business model revolves around online job advertising and media services. Technically, the site is built on WordPress using Elementor and JetEngine plugins, hosted on servers with kasserver.com nameservers. The site includes cookie consent mechanisms via BorlabsCookie and SEO optimizations through Rank Math. However, there is a lack of visible privacy policy, terms of service, and explicit contact information, which impacts compliance and trust. Security posture is moderate with no detected security headers or incident response information, and SSL configuration details are not provided. Overall, the site is professionally designed, mobile optimized, and content is relevant and safe for general audiences.

Č

Česká rada dětí a mládeže

darujemekrouzky.cz

41

Darujemekrouzky.cz is a Czech non-profit project organized by the Česká rada dětí a mládeže that provides financial support to families in difficult financial situations to pay for children's extracurricular activities. The project operates a voucher system targeting children aged 3 to 18 years, including support for Ukrainian refugee families residing in the Czech Republic. Supported by multiple foundations and institutions, the project enjoys strong trust signals including the patronage of the Czech president's wife. Technically, the website is built on WordPress with the Avada theme, uses modern web technologies, and integrates Google Tag Manager for analytics. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The domain WHOIS data is unavailable, limiting domain trust verification, but the website content and partner references strongly indicate legitimacy.