Security Directory

M

Městská kulturní zařízení Hranice, p.o.

kultura-hranice.cz

42

Kultura Hranice is a cultural portal operated by Městská kulturní zařízení Hranice, p.o., providing comprehensive listings and information about cultural events in the city of Hranice and its surroundings. The website serves as a local media platform targeting residents and visitors interested in music, theater, film, exhibitions, lectures, and other cultural activities. It offers event calendars, ticketing links, and partner promotions, positioning itself as a key cultural information hub in the region. Technically, the website is built on WordPress and leverages common plugins such as Yoast SEO, Contact Form 7, and Cookie Law Info for SEO, forms, and cookie consent management. It integrates Google Analytics and Google Tag Manager for visitor tracking and uses Google Maps API for location services. The site is mobile-optimized with a moderate performance profile and good SEO practices, including structured data markup for enhanced search engine visibility. From a security perspective, the site enforces HTTPS with a valid SSL certificate and implements a detailed cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and dedicated security or privacy policy pages. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the website's purpose and location, indicating legitimacy and stable operation. Overall, Kultura Hranice presents a professional and trustworthy cultural information portal with good technical and security foundations. Enhancements in security headers and explicit privacy documentation would further strengthen its compliance and security posture.

M

Městská kulturní zařízení Hranice, p.o.

muzeum-hranice.cz

42

Muzeum a galerie Hranice is a public cultural institution based in Hranice, Czech Republic, providing museum and gallery exhibitions, cultural events, and educational programs. The website serves as an information portal for visitors and researchers, showcasing current and upcoming exhibitions and events. The institution appears to be well-established since 2016 and targets a general audience interested in culture and local history. Technically, the website is built on WordPress with common plugins for SEO and cookie compliance, integrating Google Analytics and Google Maps API for enhanced user experience. The site is mobile-optimized and provides clear navigation and content structure. Security-wise, the site uses HTTPS and a cookie consent mechanism, but lacks published security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the website's claims, indicating legitimacy. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations, though it could improve by publishing privacy and security policies.

K

KOSTAL Solar Electric GmbH

kostal-solar-electric.com

67

KOSTAL Solar Electric GmbH is a medium-sized German company specializing in the manufacture and sale of photovoltaic inverters, battery storage solutions, and wallbox charging stations. The company positions itself as a leading innovator in the solar energy sector with a strong emphasis on German engineering quality and sustainability. Their product portfolio targets private homeowners, commercial enterprises, and professional installers, offering integrated energy management systems and smart charging solutions. The website reflects a mature digital presence built on TYPO3 CMS with modern front-end technologies and a comprehensive multi-language structure. Security posture is solid with HTTPS and consent management in place, though some improvements in security headers and incident response transparency are recommended. The absence of WHOIS registration data for the domain is a notable inconsistency that slightly impacts trustworthiness from a domain registration perspective. Overall, the site is professional, content-rich, and well-structured, supporting KOSTAL's market position as a reputable energy technology provider.

K

Kantmeister

kantmeister.de

52

Kantmeister is a specialized German manufacturer focusing on precision metal profiles such as wall coverings, facades, connection products, and accessories. The company emphasizes quality and customization using advanced CNC technology, targeting construction professionals and related industries. Their digital presence includes a WordPress-based website with WooCommerce and Elementor, offering tools like a sheet metal configurator and a quick inquiry upload feature. The website is professionally designed, mobile-optimized, and includes essential privacy and cookie consent mechanisms. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and business-focused with clear contact information and social media presence.

M

MOGAT

mogat-werke.de

54

MOGAT is a German company specializing in innovative and sustainable roofing and building waterproofing systems, targeting construction professionals and building owners. The website presents a professional image with a focus on quality and service, emphasizing 'Made in Germany' products. The digital infrastructure is based on WordPress with WooCommerce, enhanced by SEO and cookie consent plugins, and integrated with Google Analytics and Tag Manager for marketing and analytics purposes. The site is well-optimized for mobile and SEO, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a medium-sized manufacturing business with a strong market position in its sector.

W

Wienerberger GmbH

creaton.de

65

Wienerberger GmbH operates the website creaton.de, positioning itself as an expert in steep roofs offering high-quality clay roof tiles and economical concrete roof tiles with extensive original and system accessories. The website targets both business customers and end consumers in the roofing and construction sectors, providing product information, tools, and e-commerce capabilities including PayPal payment integration. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with modern JavaScript integrations such as Google Tag Manager and Cookiebot for analytics and consent management. The site is well-optimized for mobile and SEO, with good accessibility features and a professional design. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are not publicly visible. Privacy compliance is robust, featuring a comprehensive privacy and cookie policy with GDPR adherence and user consent mechanisms. Overall, the website demonstrates a mature digital presence suitable for a large enterprise in the energy and construction sector.

V

VšĮ „OSFL PROJEKTAI“

osfl.lt

39

OSFL Projektai is a Lithuanian non-profit organization focused on delivering community programs, projects, and professional services such as accounting, consulting, and administrative support. The organization maintains a clear presence in Lithuania with a physical office in Vilnius and actively engages with partners and stakeholders through various projects and initiatives. Their website reflects a professional and consistent brand image targeted at non-profit entities and civic groups within Lithuania. Technically, the website is built on WordPress, leveraging common JavaScript libraries like jQuery and Slick Carousel, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and secure form inputs; however, the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data transparency slightly reduces trustworthiness, but the visible business information and contact details support credibility. Overall, the website is a reliable digital presence for a small non-profit organization with a focus on community engagement and service provision.

Atviros Lietuvos fondas is a Lithuanian non-profit organization dedicated to strengthening civil society, supporting NGOs, and promoting democracy and human rights. With nearly 30 years of history, it holds a reputable position in Lithuania's civic sector. The website is built on WordPress using the Avada theme and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and MailerLite. It employs a cookie consent mechanism compliant with GDPR, reflecting a good privacy posture. Security practices include HTTPS and cookie consent, though additional security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a mature digital presence aligned with its mission and audience.

M

Meliva Pušyno klinika

pusyno.lt

47

Meliva Pušyno klinika is a Lithuanian healthcare clinic offering specialized medical consultations and personal health care services. The website targets both local Lithuanian and international clients seeking high-quality healthcare. The business emphasizes professionalism, patient respect, and uses advanced medical equipment with over 14 years of experience. The website is built on WordPress, leveraging common plugins such as Yoast SEO and Contact Form 7, and integrates Google Analytics and Cookiebot for analytics and cookie consent management. The site is well-designed, mobile-optimized, and provides a good user experience, although explicit privacy and terms of service pages are not detected in the provided content. Security posture is adequate with HTTPS and cookie consent, but additional security headers and policies could improve the security maturity. The WHOIS data shows a suspicious domain creation date in the future, which conflicts with the claimed business history and reduces trustworthiness. Overall, the site is professional and safe but would benefit from enhanced transparency and security documentation.

U

UAB „InMedica“

panodontologai.lt

44

The website represents a well-established dental clinic in Panevėžys, Lithuania, operating under the brand "Meliva" and owned by UAB „InMedica“. It offers a comprehensive range of dental services including implants, orthodontics, and oral surgery, targeting local and foreign patients. The site is professionally designed with clear navigation, mobile optimization, and rich content that highlights experienced medical staff and patient-centric services. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Algolia search, ensuring good SEO and user experience. Security posture is strong with HTTPS, cookie consent via Klaro, and secure form handling, though explicit security headers are not detected. WHOIS data shows a discrepancy in domain creation date, likely a data error, but overall domain registration is consistent with the business profile. The site complies with GDPR and provides clear privacy and cookie policies. Overall, the website is trustworthy, professional, and well-positioned in the regional healthcare market.

I

InSense Clinic | Kardiolitos klinikos

insenseclinic.lt

62

InSense Clinic is a healthcare provider specializing in dermatology and plastic surgery, operating clinics in Vilnius and Kaunas, Lithuania. The website reflects a professional healthcare service with detailed doctor profiles and clear service offerings. The business is part of the Kardiolitos klinikos group, indicating a strong market position in the Lithuanian healthcare sector. The domain is newly registered in 2024, consistent with a recent launch or rebranding. Technically, the website uses AngularJS framework, integrates Google Tag Manager, Facebook Pixel, and Cookiebot for cookie consent management. The site is hosted on Hostex.lt and uses HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is adequately addressed with proper meta tags and Open Graph data. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and no published security or incident response policies were found. No vulnerabilities or exposed sensitive data were identified in the HTML content. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

K

Kardiolitos klinikos

kardiolitosklinikos.lt

60

Kardiolitos klinikos is a prominent private healthcare provider in Lithuania, operating multiple clinics across major cities including Vilnius, Kaunas, Klaipėda, Šiauliai, and Utena. The website presents a professional image with comprehensive information about their medical services, targeting patients seeking private medical care. The business model focuses on offering specialist consultations, diagnostics, and rehabilitation services, positioning itself as a leading private medical center in the region. Technically, the site uses modern CMS technology (EasyWeb 4), integrates Google Tag Manager and Cookiebot for analytics and privacy compliance, and employs Google Fonts for typography. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, additional security headers could enhance protection. The absence of WHOIS data for the .lt domain limits domain trust analysis but does not detract from the site's apparent legitimacy. Overall, the site demonstrates a mature digital presence with strong privacy compliance and a secure posture appropriate for a healthcare provider.

M

Meliva – InMedica klinika

inmedica.lt

58

The website inmedica.lt represents Meliva – InMedica klinika, a family clinic network operating across Lithuania since 2014. It offers a broad range of healthcare services including diagnostics, vaccinations, and preventive programs, targeting patients seeking quality medical care. The site supports patient engagement through an online self-service portal for appointment registration. Technically, the site is built using EasyWeb4 CMS, integrates Cookiebot for GDPR-compliant cookie management, and employs Google Tag Manager and Facebook Pixel for analytics and marketing. The hosting is provided by Hostex.lt, a Lithuanian hosting provider. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent dialog. Business credibility is supported by consistent WHOIS data and professional site presentation. Overall, the site is well-structured, user-friendly, and trustworthy for its healthcare audience.

I

International Federation of Biomedical Laboratory Science (IFBLS)

ifbls.org

45

The International Federation of Biomedical Laboratory Science (IFBLS) is a well-established non-profit professional federation representing biomedical laboratory scientists globally. Founded in 1954 and with a domain registered since 2002, IFBLS serves over 240,000 professionals across 38 countries. The organization provides membership services, educational webinars, scientific publications, and international congresses to promote the profession and advance healthcare diagnostics. The website reflects a professional and consistent brand image targeted at biomedical laboratory science professionals worldwide. Technically, the website is built on Joomla CMS using standard web technologies including jQuery and Bootstrap. It integrates Google Analytics and Google Tag Manager for user tracking and AddThis for social sharing. The site is mobile optimized with a moderate performance profile. However, it lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS and domain transfer protections but lacks DNSSEC and security headers. There is no published privacy or cookie policy despite the use of tracking scripts, which is a compliance gap. The security posture is moderate with no critical vulnerabilities detected but improvements are needed in privacy compliance and security best practices. The site actively warns users about phishing attempts impersonating IFBLS, demonstrating awareness of security risks. Contact information is clearly provided, including email, phone, and physical address in Canada, along with active social media channels. Overall, IFBLS presents a credible and professional online presence with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure policy to enhance trust and compliance.

R

Register OÜ

inforegister.ee

62

Register OÜ operates the Inforegister website, a business-focused platform providing credit ratings, beneficiary information, financial forecasts, and business risk assessments primarily targeting Estonian businesses and professionals. The website is well-branded and consistent with the company's identity, offering services that support informed business decisions. Technically, the site is built on WordPress with modern integrations such as Google Analytics and OAuth-based single sign-on, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, enhancing user experience and discoverability. Security-wise, the website enforces HTTPS and uses cookie consent mechanisms aligned with GDPR, but lacks explicit security policies and some recommended security headers. Overall, the site is trustworthy and professionally maintained with no signs of blocking or WAF interference.

R

Radicenter

radicenter.fi

62

Radicenter is a small technology company specializing in web hosting and domain registration services primarily targeting customers in Finland and Estonia. The company offers a range of hosting packages featuring cPanel management, malware scanning, automatic backups, and website acceleration tools. Their market position is regional with a focus on providing reliable and developer-friendly hosting solutions. Technically, the website is built on WordPress with modern plugins and frameworks, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and malware scanning, though additional security headers and policies could enhance protection. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a small hosting provider.

R

Radicenter OÜ

radicenter.ee

62

Radicenter OÜ is a small Estonian technology company specializing in web hosting and domain registration services. The company targets businesses and individuals primarily in Estonia and neighboring regions, offering a range of hosting packages with modern features such as cPanel control panels, SSD storage, and malware scanning. The website is professionally designed using WordPress CMS with a modern tech stack including Bootstrap and jQuery, and it supports multiple languages to cater to regional audiences. The presence of a cookie consent mechanism and comprehensive privacy and terms of service documents indicates good compliance with GDPR regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although the absence of security headers suggests room for improvement. Overall, Radicenter presents a trustworthy and professional online presence with clear contact channels and customer support integration via live chat.

R

Radicenter

radicenter.eu

63

Radicenter is a small Estonian technology company specializing in web hosting and domain registration services. The company offers a range of hosting packages featuring cPanel management, malware scanning, and website optimization tools, targeting individuals and businesses primarily in Estonia and neighboring regions. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive business information including privacy and terms of service documents. Technically, the site is built on WordPress with modern frameworks such as Bootstrap and uses popular plugins like Contact Form 7 and WPBakery Page Builder. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though security headers could be improved. No WHOIS registrant data is publicly available due to EURid privacy policies, but the website's professionalism and compliance suggest legitimacy. Overall, Radicenter demonstrates a mature digital presence with good privacy compliance and business credibility.

W

Weleda AG

weleda.at

72

Weleda AG operates as a well-established international brand specializing in natural cosmetics and pharmaceutical products. The website www.weleda.at serves the Austrian market with a comprehensive e-commerce platform offering a wide range of natural skincare, health, and wellness products. The company emphasizes holistic beauty and health, targeting consumers interested in natural and sustainable personal care. The website reflects a mature digital presence with consistent branding and high-quality content. Technically, the site is built using modern frameworks such as Nuxt.js and Vue.js, integrating PrimeVue components for UI. It employs Google Tag Manager for analytics and OneTrust for cookie consent management, indicating compliance with privacy regulations. The site is mobile-optimized, fast-loading, and accessible, with good SEO practices. From a security perspective, the website enforces HTTPS, includes essential security headers, and uses secure forms. However, there is no public vulnerability disclosure or incident response policy visible, which could be improved. The absence of WHOIS data for the domain reduces the trust score slightly but does not detract from the overall legitimacy indicated by the website content and certifications. Overall, the website presents a low-risk profile with strong privacy compliance and a professional digital footprint. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing transparency on incident response, and ensuring WHOIS data is properly registered and accessible to improve trustworthiness.

G

Greaton OÜ

greaton.ee

46

Greaton OÜ is an Estonian technology service provider specializing in the development of user-friendly websites, e-commerce platforms, mobile applications, and payment solutions tailored to business needs. The company demonstrates a strong market position with a diverse portfolio of clients across various sectors, emphasizing custom software and web solutions. Their website reflects a professional and modern digital presence, leveraging technologies such as Vue.js and Laravel, and supporting mobile platforms including Android, iOS, and Smart TV. The site is well-designed, mobile-optimized, and provides clear navigation and contact information, enhancing user experience and trust. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the business appears legitimate and credible, with consistent WHOIS data and a transparent client showcase.

Aura kohvik is a small local café and catering service based in Tartu, Estonia, operating since 2010. The business offers daily meals, snacks, and catering for events such as birthdays and corporate gatherings. The website is built on WordPress using common plugins like Revolution Slider and Contact Form 7, hosted by Radicenter OÜ. The site is well structured with good SEO metadata and clear contact information, targeting local customers and event organizers. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. No privacy or cookie policies are present, which is a compliance gap. Overall, the website is functional and professional but could improve in privacy and security best practices.

F

Ferðamannavörur

bfutgafa.is

62

Ferðamannavörur is a small Icelandic e-commerce business specializing in travel products. The website is built on the Shopify platform and is currently password protected, restricting public access to its full content. The business targets travelers and customers interested in travel-related goods within Iceland. The site uses standard Shopify technologies and scripts, including Shopify Analytics and hCaptcha for form protection. However, the site lacks publicly visible privacy and cookie policies, which impacts its privacy compliance posture. Technically, the website is hosted on Shopify's CDN with a modern tech stack and moderate performance. Mobile optimization is good, but accessibility and SEO optimizations are basic. Security practices include HTTPS enforcement and password protection, but the absence of DNSSEC and security headers reduces the overall security posture. No incident response or vulnerability disclosure information is provided. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security best practices. The domain registration data is consistent with the business's Icelandic location and e-commerce nature, supporting legitimacy. The site does not contain any adult or questionable content and is safe for general audiences. Strategic recommendations include enabling DNSSEC, publishing comprehensive privacy and cookie policies, adding security headers, and providing clear contact information for incident response to enhance trust and compliance.

H

Hagstofa Íslands

tekjusagan.is

51

Tekjusagan is a government-operated interactive tool managed by Statistics Iceland and the Prime Minister's Office of Iceland. It provides accessible visualizations of income, assets, and demographic data spanning over 25 years, aimed at the general public and policymakers. The website is positioned as an authoritative source for income and living standards data in Iceland, supporting government decision-making and public transparency. Technically, the site uses AngularJS 1.7.2, Bootstrap 4.1.3, and jQuery, hosted on Microsoft Azure DNS infrastructure. While the site is functional and mobile-optimized, it uses somewhat dated frameworks and lacks modern security headers and DNSSEC, which are recommended improvements. Security posture is moderate with no critical vulnerabilities detected, but privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. The site employs Google Analytics and Tag Manager for user tracking without visible consent banners, which may pose compliance risks. Overall, the domain registration and WHOIS data align well with the government entity, supporting high legitimacy and trustworthiness.

Q

Qcells

q-cells.nl

52

Qcells is a well-established company specializing in solar energy products and solutions, including solar panels, energy storage systems, and smart home charging stations. The website targets a diverse audience including users, business owners, partners, and job applicants, providing detailed product information and services. The company maintains a consistent brand presence with multi-language support and professional content presentation. Technically, the website is built on TYPO3 CMS, integrates Google Tag Manager for analytics, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and no visible vulnerabilities, though explicit privacy and cookie policies are missing, which impacts compliance. Overall, the site reflects a mature digital infrastructure suitable for a large energy sector player.

V

VARTA AG

varta.energy

64

VARTA.energy is a digital portal operated by VARTA AG, a well-known energy storage solutions provider. The portal offers customers and certified partners access to monitor energy storage data, manage settings, and register warranties. The website is professionally designed, mobile-optimized, and provides comprehensive product information and user guidance. Technically, the site uses TYPO3 CMS, integrates Google Tag Manager and Analytics, and employs a modern cookie consent manager (Klaro) ensuring GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable due to malformed responses or privacy protection, which slightly impacts domain trust but the website content and branding strongly indicate legitimacy. Overall, the site is safe, professional, and well-suited for its target audience in the energy sector.

The website yosoy-andrea.com is currently inaccessible, returning a 403 Forbidden error page with no visible content or metadata. This prevents any meaningful analysis of the business, services, or technical infrastructure. The domain is registered since 2020 with RegistryGate GmbH and is not privacy protected, indicating some legitimacy. However, the lack of accessible content and security information severely limits trust and usability. No privacy, cookie, or terms policies are present, and no contact information or social media links are available. The technical stack and hosting details are minimal, with DNS servers identified but no SSL or security headers detected. Overall, the site appears offline, restricted, or misconfigured, resulting in a very low AI score and high risk for users.

B

Birgit Dreist

skulpturix.de

35

The website skulpturix.de represents a small artisan business specializing in handmade sculptures by Birgit Dreist, located in Germany. The site serves primarily as an informational and promotional platform showcasing unique art pieces. The business operates locally with a focus on handcrafted art, targeting general audiences interested in sculptures and unique artistic objects. The market position is that of a local artisan with a simple business model centered on direct sales or commissions. Technically, the website is built with basic HTML, CSS, and JavaScript without the use of modern CMS or frameworks. Hosting is provided by a German hosting provider (kasserver.com). The site shows basic mobile optimization and accessibility but lacks advanced SEO and performance optimizations. No analytics or tracking technologies are detected, indicating minimal digital maturity. From a security perspective, the website lacks HTTPS confirmation in the provided data, security headers, privacy policies, and incident response contacts. No forms or data collection mechanisms are present, reducing attack surface but also limiting user engagement features. The absence of privacy and cookie policies indicates non-compliance with GDPR best practices. The overall security posture is basic and requires improvements to protect user data and enhance trust. Overall, the website is functional for its purpose but scores moderately low on technical and security aspects. Strategic improvements in HTTPS implementation, security headers, privacy compliance, and mobile optimization are recommended to enhance trustworthiness and user experience.

The Hermann Hesse Schule Aalen is a specialized educational institution in Germany focusing on special education needs, particularly in learning and emotional-social development. The website serves as an informational portal for students, parents, and educators, detailing the school's services including inclusive education and early childhood support. The institution appears to be a small-sized regional school with a clear educational mission but limited digital sophistication. Technically, the website uses basic HTML, CSS, and JavaScript with legacy libraries such as jQuery. There is no evidence of a modern CMS or advanced frameworks. Mobile optimization and accessibility are minimal, and SEO practices are basic. The site lacks structured data and social media integration, indicating a low level of digital maturity. From a security perspective, the site does not demonstrate strong security posture. There is no visible HTTPS confirmation in the provided data, no security headers, and no privacy or cookie policies, which are critical for GDPR compliance in Germany. Contact information is limited to a physical address, with no emails or phone numbers clearly provided. No incident response or data protection officer contacts are found, indicating gaps in security and compliance readiness. Overall, the website is functional for its educational purpose but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and user experience.

The website www.go-therapie.de represents the Interdisziplinäre Praxisgemeinschaft Opferkuch-Gentner, a small healthcare provider specializing in Ergotherapie (occupational therapy), Logopädie (speech therapy), and Physiotherapie (physical therapy) located in Aalen, Germany. The practice has a long-standing history since 1994 and offers a comprehensive range of therapy services targeting patients of all ages. The site provides detailed descriptions of therapy offerings, treatment focuses, and introduces the leadership and team members, reflecting a well-established local presence. Technically, the website is built using standard HTML, CSS, and JavaScript with jQuery, without a detected CMS or advanced frameworks. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for GDPR compliance and user trust. The domain WHOIS data is consistent with the business claims, showing no privacy protection and a legitimate registration with German nameservers. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is professional and trustworthy but would benefit from enhanced security practices, privacy compliance improvements, and technical modernization to improve user trust and regulatory adherence.

INFO WEB s.r.o. is a Czech-based software company founded in 2015 specializing in custom web and mobile application development, e-commerce solutions, online marketing, and IoT projects. The company targets businesses seeking tailored digital solutions and offers additional services such as product photography and 360-degree imaging. Their market position is that of a reliable small enterprise with a focus on modern technologies and customer-centric service. Technically, the website employs a modern tech stack including Java, PHP, Angular, and various frameworks, hosted by REG-WEDOS. The site is mobile-optimized and well-structured, though performance is moderate. Security posture is average with no visible security headers or explicit policies, and privacy compliance is limited by the absence of cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

F

KEMBANG128 SITUS PENYEDIA PASARAN TOGEL TOTO 4D TERLENGKAP DAN RESMI DI INDONESIA - Buy Scented Candles,Candles Scented Luxury,Scented Candles Private Label Product on Alibaba.com

filnasa.org

45

The website filnasa.org presents itself as Kembang128, an online provider of togel toto 4d gambling markets primarily targeting Indonesian users. The business claims to offer the most complete and official togel markets in Indonesia, focusing on lottery and slot games. However, the domain is very recently registered (December 2024) and lacks publicly disclosed registrant information, which raises questions about its establishment and credibility. The website content is minimal and primarily focused on gambling services with no visible privacy, cookie, or terms of service policies, nor any contact or security incident response information. Technically, the site uses JavaScript and Alibaba analytics scripts but lacks modern security headers and DNSSEC, and there is no visible HTTPS enforcement in the HTML content. Overall, the site exhibits poor design quality, limited content relevance, and low trustworthiness.

The website worldsoft-wsw.com serves as a German-language login and account management portal, likely for a small business or service established around 2020. The site provides user authentication forms including login, account creation, and password reset functionalities. The business appears to be focused on providing secure access to services or software, but lacks publicly visible business descriptions or contact information. Technically, the site uses modern JavaScript and CSS assets with CSRF protection tokens in forms, indicating some security awareness. However, no privacy or cookie policies are present, and no security headers are detected, which limits compliance and security posture. The domain is registered with a reputable German registrar and is not privacy protected, consistent with the website's language and hosting. Overall, the site is functional but basic in content and security maturity.

B

Bundesverband Solarwirtschaft e.V.

solarwirtschaft.de

50

The Bundesverband Solarwirtschaft e.V. is a prominent German industry association dedicated to the solar and energy storage sector. The organization serves as a network hub for solar industry professionals, offering membership benefits, advocacy, educational resources, and event organization. The website reflects a well-established entity with a clear focus on supporting its members and promoting solar energy adoption in Germany. The target audience includes industry stakeholders, members, and consumers interested in solar technologies. Technically, the website is built on WordPress 6.8.3, utilizing common plugins such as Borlabs Cookie for consent management, Formidable Forms for data collection, and Newsletter2Go for marketing communications. The site is hosted behind Cloudflare DNS, ensuring reliable domain management and security. The design is responsive and user-friendly, with good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosure, and comprehensive security headers. No critical vulnerabilities or suspicious content were detected. Privacy compliance is partial, with no visible privacy policy or terms of service on the homepage, which should be addressed to improve GDPR adherence. Overall, the website presents a professional and trustworthy front for the Bundesverband Solarwirtschaft e.V., with solid business credibility and technical implementation. Strategic improvements in privacy documentation and security transparency would further enhance its posture and user trust.

The website ligoniukasa.lrv.lt is currently inaccessible to visitors without passing a Cloudflare Turnstile human verification challenge, indicating it is protected by a Web Application Firewall (WAF). Due to this security mechanism, no actual website content, business information, or contact details are available for analysis. The domain WHOIS data is unavailable or invalid, which prevents verification of domain registration details and reduces confidence in legitimacy assessment. The website appears to be government-related based on the domain and TLD, but this cannot be confirmed due to lack of accessible content. The technical infrastructure relies on Cloudflare services for security and performance, but no CMS or other technologies are detectable. Overall, the site’s digital maturity and business credibility cannot be properly assessed under these conditions.

M

Create an Ecommerce Website and Sell Online! Ecommerce Software by Shopify

medo.lt

54

The website medo.lt currently serves as a placeholder page hosted on the Shopify platform indicating that the store is unavailable. The content is minimal and generic, providing no direct business information or active ecommerce functionality. The site promotes Shopify's services and encourages visitors to explore other stores or start a new Shopify store. The domain is registered with a Lithuanian registrar and is valid until 2026, but the website itself does not reflect an active business presence. Technically, the site uses Shopify's CDN and includes jQuery 2.0.3. There is no evidence of advanced frameworks or additional technologies. The site lacks privacy, cookie, or terms of service policies, and no contact information is provided. Security headers and HTTPS status could not be confirmed from the data, indicating potential gaps in security posture. From a security perspective, the site is low risk as it contains no forms or data collection mechanisms, no tracking or analytics scripts beyond jQuery, and no adult or explicit content. However, the absence of HTTPS information and security headers, combined with the lack of privacy compliance documentation, reduces the overall security and compliance maturity. Overall, medo.lt appears to be an inactive or expired ecommerce domain currently parked with Shopify's default unavailable store page. The risk is low but the site offers no business credibility or privacy assurances. Strategic recommendations include activating the domain with proper business content, implementing HTTPS and security headers, and publishing privacy and cookie policies to improve trust and compliance.

V

Valstybės įmonė "Registrų centras"

esveikata.lt

63

The website www.esveikata.lt serves as the official Lithuanian government e-health portal, operated by the State Enterprise Registrų centras. It provides a comprehensive suite of digital health services including electronic prescriptions, patient registration, health certificate viewing, and cross-border health services. The portal targets Lithuanian residents and healthcare professionals, positioning itself as the primary national platform for electronic health services. The content is professionally presented in Lithuanian, with clear navigation and mobile optimization. Technically, the site employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Cloudflare Turnstile captcha for form security, and enforces Content Security Policy headers. The site is served over HTTPS with strong SSL configuration, ensuring secure data transmission. Privacy and cookie policies are prominently presented with user consent mechanisms, reflecting good compliance with GDPR requirements. However, no explicit terms of service or published security policies were found. From a security perspective, the portal demonstrates a mature posture with secure forms, no exposed sensitive data, and appropriate security headers. The use of Cloudflare Turnstile captcha helps mitigate automated abuse. The absence of a published incident response or vulnerability disclosure policy is a minor gap. WHOIS data for the domain is unavailable due to registry query issues, but the official government affiliation and contact details strongly support the site's legitimacy. Overall, the website is a trustworthy, well-maintained government digital service platform with good security and privacy practices. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving accessibility features to further strengthen compliance and user trust.

O

Online Solutions Oy

secmail.com

60

Online Solutions Oy operates the SecMail service, specializing in email security solutions including spam prevention, email encryption, and secure email transmission. The company positions itself as a reliable Finnish IT partner with over 20 years of experience, targeting organizations requiring robust email security, including sensitive sectors like social and healthcare. The website content is professional and clearly communicates the business offerings and benefits. Technically, the website uses standard web technologies (HTML, CSS, JavaScript) with a focus on usability and mobile responsiveness. The login form uses HTTPS, indicating secure data transmission, but lacks explicit security headers and advanced SEO or accessibility features. No external tracking or advertising is present, reflecting a privacy-conscious approach. Security posture is moderate; while HTTPS is used, the absence of security headers and explicit privacy/security policies suggests room for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy, although the website content and contact information appear credible and consistent with a legitimate business. Overall, the site is safe, professional, and business-focused with good privacy practices but would benefit from enhanced security headers, clearer privacy policies, and verification of domain registration details.

B

Parik24 — офіційні ставки на бокс онлайн з вигідними коефіцієнтами

bepolite.eu

53

The website 'Parik24' is an online platform specializing in boxing betting, targeting boxing fans primarily in Ukraine and internationally. It offers a variety of betting markets including live betting and detailed odds, positioning itself as a niche sports betting media site. The site is built on WordPress with common front-end libraries such as jQuery and Bootstrap, indicating a moderate level of technical maturity. The design is professional and content is relevant and well-structured, though accessibility features are basic. Security posture is limited with no visible security headers or privacy policies, and no contact information is provided, which may impact user trust and compliance with regulations. Overall, the site is functional and content-rich but requires improvements in security and privacy compliance to enhance credibility and user trust.

N

noCRM

nocrm.io

61

noCRM is a SaaS company providing a lead management and sales CRM tool designed to simplify the sales process for salespeople, solopreneurs, and sales teams. Positioned as an action-driven alternative to traditional CRMs, it focuses on reducing administrative overhead and improving sales efficiency. The company operates globally with multi-language support and a strong partner ecosystem. Technically, the website uses modern frameworks like Bootstrap and integrates marketing and analytics tools such as Google Tag Manager and Hotjar. The site is well-optimized for mobile and SEO, with clear navigation and professional design. Security posture is strong with HTTPS enforced and privacy compliance evident through cookie consent mechanisms and GDPR-aligned policies. WHOIS data is privacy protected, which is typical for SaaS providers, and no suspicious patterns were detected. Overall, the website reflects a mature, trustworthy business with a solid technical foundation and good security hygiene.

The website mikroregion-lipensko.cz is currently inaccessible to general users due to a bot verification challenge page that blocks content access. The domain is very recently registered (January 2024) and uses Cloudflare DNS services, indicating some level of technical infrastructure but limited public content. No business, contact, or policy information is available on the landing page, which severely limits the ability to assess the business or compliance posture. The technical setup includes JavaScript-based bot checks and XMLHttpRequest calls but lacks visible security headers or HTTPS enforcement in the provided data. Overall, the site appears to be in an early or protected state, with minimal content and poor user experience.

V

Vědecká knihovna v Olomouci

vkol.cz

11

Vědecká knihovna v Olomouci is a well-established public scientific library in the Czech Republic, recognized as the second oldest and third largest of its kind nationally. It offers a broad range of services including an online catalog, digital libraries, electronic resources, and organizes cultural and educational events. The institution is funded by the Olomoucký kraj regional government, targeting students, researchers, and the general public interested in scientific and cultural literature. The website demonstrates a mature technical infrastructure utilizing modern web technologies such as the Nette Framework, Bootstrap, lazy loading with Lozad.js, and integrates analytics tools like Google Analytics and Hotjar. It is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience with clear navigation and comprehensive content. From a security perspective, the site enforces HTTPS, employs Google reCAPTCHA on forms, and implements a cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found, but the absence of a public security policy or incident response contact is noted. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The lack of WHOIS data due to privacy protection is justified given the public nature of the institution. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing incident response contacts to further strengthen trust and security posture.

M

MŠ Hustopeče nad Bečvou

mshustopece.cz

9

MŠ Hustopeče nad Bečvou is a small educational institution providing preschool education services in Hustopeče nad Bečvou, Czech Republic. The website serves as an official information portal for parents and the local community, offering details about school activities, meal plans, photo galleries, and contact information. The site is well-structured and designed with modern web technologies, ensuring good user experience and mobile responsiveness. However, the absence of WHOIS data and registrant information introduces some uncertainty regarding domain legitimacy. Security posture is moderate, with HTTPS usage and cookie consent implemented, but lacking advanced security headers and explicit privacy policies. Overall, the website is functional, trustworthy for its purpose, but could improve in compliance and security transparency.

S

Státní ústav pro kontrolu léčiv

olecich.cz

11

The website represents the official online presence of the Státní ústav pro kontrolu léčiv (SÚKL), the Czech national authority responsible for the regulation and control of medicinal products. It serves a broad audience including the general public, healthcare professionals, and industry stakeholders by providing comprehensive databases, regulatory information, safety alerts, and educational resources. The site is well-branded, professionally designed, and consistent with government standards, reinforcing its authoritative position in the healthcare regulatory sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates analytics and marketing tools like Google Analytics, Hotjar, and Facebook Pixel. It demonstrates good mobile optimization, accessibility, and SEO practices. The presence of a cookie consent mechanism and detailed privacy policy indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and employs some security best practices, including protection against user enumeration. However, it lacks visible security headers and a published security.txt file, which could enhance its security posture. No critical vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the website is a trustworthy, authoritative source for pharmaceutical regulatory information in the Czech Republic. It balances user experience, privacy, and security effectively, though there is room for improvement in security header implementation and incident response transparency.

M

Mikroregion Hranicko, MAS Hranicko

regionhranicko.cz

33

Mikroregion Hranicko and MAS Hranicko operate as regional development and community support organizations in the Czech Republic, focusing on grant programs, local business support, cultural events, and energy initiatives. The website serves as an information portal for local residents, businesses, and stakeholders, providing news updates and project information. Technically, the site uses a traditional jQuery-based stack with Google Analytics and reCAPTCHA integration, hosted by a Czech hosting provider. The site is mobile-optimized with good navigation and content quality but lacks modern CMS indicators and advanced accessibility features. Security posture is adequate with HTTPS and bot protection but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and legitimate, with a domain age consistent with the organization's history.

N

Nanotrix

nanotrix.ai

29

Nanotrix is a technology company specializing in artificial intelligence solutions, originating as a spin-off from the Faculty of Mechatronics at the Technical University of Liberec. The company focuses on developing AI-powered systems such as recommendation engines and chatbots, leveraging proprietary language and vectorization models. Their market position is that of a niche AI provider with strong academic and industry partnerships, targeting businesses seeking to harness AI capabilities. Technically, the website is built on WordPress with modern themes and plugins, optimized for mobile and accessibility, though lacking some advanced security headers and privacy compliance features. Security posture is generally good with HTTPS enforced, but improvements are recommended in privacy policy visibility and security headers. Overall, the website is professional and trustworthy, with clear contact information and partner references, but could enhance compliance and security transparency.

K

Kino Hvězda Přerov

kinohvezdaprerov.cz

53

Kino Hvězda Přerov is a local cinema in the Czech Republic offering advanced movie screening technology including 4K laser projection and a large panoramic screen. The business targets general audiences including families and children, providing ticket sales, event hosting, and related services such as gift cards and podcasts. The website is built on modern web technologies such as React and Next.js, with a good level of mobile optimization and user experience. Security posture is solid with HTTPS and security headers, though some compliance gaps exist such as the absence of a cookie consent mechanism. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Přerovská rozvojová

prerovskarozvojova.cz

60

Přerovská rozvojová is a Czech Republic based small business specializing in comprehensive management of residential buildings, primarily serving housing associations. The company offers technical, administrative, and economic management services, positioning itself as a local property management provider. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. It features a professional design with good navigation and mobile optimization, though lacks explicit privacy and terms of service pages. Security posture is solid with HTTPS and security hardening scripts, but could be improved by adding security headers and formal policies. No WHOIS data is available, likely due to privacy protection, which is common for small businesses. Overall, the site is trustworthy and safe for general audiences.

S

Sportoviště Přerov s.r.o.

sportoviste-prerov.cz

42

Sportoviště Přerov s.r.o. operates as the management entity for multiple sports and recreational facilities in the city of Přerov, Czech Republic. Their portfolio includes a swimming pool complex, winter stadium, sports hall, hotel, and wellness center, targeting local residents and visitors interested in sports and leisure activities. The company also runs an e-shop for related products and services. The website is professionally designed using WordPress with Elementor and optimized for SEO and multilingual support via Weglot. The technical infrastructure is modern and hosted by a reputable Czech provider, Wedos. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks published security policies and cookie consent mechanisms, which are important for GDPR compliance. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Teplo Přerov a.s. is a municipal utility company based in Přerov, Czech Republic, specializing in the production and distribution of heat and hot water for residential and commercial sectors. Founded in 1997 following the transformation of a former municipal housing enterprise, it is fully owned by the Statutory City of Přerov. The company operates with a medium-sized business model focused on local energy supply and related services including maintenance, electrical installations, and limited transport operations. The website reflects a professional municipal service provider with clear business information and contact details. Technically, the website employs a legacy jQuery stack alongside Google reCAPTCHA and Matomo analytics for user tracking and security. The site uses a proprietary CMS system (IPO Redakční systém) and implements a cookie consent mechanism compliant with EU regulations. However, the site shows room for improvement in mobile optimization, accessibility, and modern security practices such as security headers and HTTPS enforcement verification. From a security perspective, the site lacks visible security headers and a published security policy or incident response contacts. The absence of WHOIS data limits domain trust analysis, although the business information and municipal ownership provide strong legitimacy signals. The site does not present any adult or questionable content, targeting a general audience in the local community. Overall, the website is functional and professional but would benefit from enhanced security measures, improved privacy disclosures, and updated technical infrastructure to strengthen trust and compliance.

S

Sociální služby města Přerova p.o.

ssmp.cz

60

Sociální služby města Přerova p.o. is the largest social services provider in the city of Přerov, Czech Republic, offering a range of care services including palliative care, senior homes, day care, and municipal nurseries. The website serves as an informational portal for residents and families seeking social support and community services. The site is built on Joomla CMS and incorporates common web technologies such as jQuery, Mootools, and Bootstrap, with Google Analytics for visitor tracking. While the site is content-rich and regularly updated with news and events, it lacks explicit privacy and terms of service pages, which could be improved for better compliance and transparency. Security posture is moderate with HTTPS usage and cookie consent but lacks advanced security headers and policies. WHOIS data is unavailable, which limits domain trust assessment, but the website content and branding align with a legitimate municipal organization.