Security Directory

P

Platon Technologies, s.r.o.

platon.sk

57

Platon Technologies, s.r.o. is a Slovak IT services company specializing in domain registration, hosting, server management, SSL certificates, mass mailing, and CDN cloud services. With over 15 years of experience, they operate their own infrastructure and data center, targeting businesses and individuals primarily in Slovakia. The website is professionally designed, mobile-optimized, and provides comprehensive product and support information including customer testimonials and clear contact channels. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Google reCAPTCHA for security. Security posture is good with HTTPS enforced and bot protection, though additional security headers could enhance protection. Privacy compliance is evident with a cookie consent mechanism and privacy policy, supporting GDPR adherence. Overall, the site is trustworthy, well-maintained, and reflects a credible business presence.

J

JBL CAR AUDIO

jbl-caraudio.com.au

52

JBL Car Audio Australia operates as a specialized e-commerce retailer offering a range of JBL branded car audio products including speakers, subwoofers, and amplifiers. The website targets vehicle owners and audio enthusiasts within Australia, positioning itself as a trusted source for high-quality car audio equipment. The site features professional branding consistent with JBL's global identity and integrates social media channels linked to official JBL accounts, enhancing credibility. Technically, the website is built on the Magento platform, utilizing common web technologies such as jQuery, Owl Carousel, and Revolution Slider. It employs HTTPS for secure communications and integrates Google Analytics and Facebook Pixel for user tracking and marketing purposes. The site is mobile-optimized with a good user experience and clear navigation, although accessibility features are basic. From a security perspective, the site enforces HTTPS but lacks visible security headers which could improve protection against common web attacks. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; while a privacy policy and terms of service are present, there is no cookie consent mechanism, which may impact GDPR compliance. Contact information is limited to a support ticket system without direct emails or phone numbers. Overall, the website presents a moderate risk profile with good business credibility but opportunities exist to enhance security posture and privacy compliance. Strategic improvements in security headers, cookie consent, and incident response transparency are recommended to strengthen trust and regulatory adherence.

S

Sightline Media Group

sightlinemediagroup.com

57

Sightline Media Group is a specialized media organization focused on military, defense, and federal technology news, operating multiple well-known brands. The company offers a broad portfolio of multimedia products and advertising solutions targeting defense and public sector audiences. The website is built on WordPress with modern plugins and hosted on WP Engine, reflecting a moderate level of technical maturity. The site is professionally designed with good content quality and consistent branding. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and cookie consent mechanisms. No direct contact emails or phone numbers are publicly listed, relying on contact forms. Overall, the website is trustworthy and functional but could improve privacy compliance and security practices.

D

Dab Pumps Spa

dabpumps.id

10

Dab Pumps Spa is a well-established manufacturer specializing in efficient water movement and management technologies. The company operates internationally with localized websites such as the Indonesian version analyzed here. Their business model focuses on manufacturing, after-sales services, training, and digital product support, positioning them as a key player in the energy and manufacturing sectors. The website reflects a professional and consistent brand image targeting industrial clients, professionals, and end users interested in water pump solutions. Technically, the website is built on Drupal 9 CMS with modern front-end technologies including jQuery, Bootstrap, Owl Carousel, and Selectric for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security is implemented with HTTPS and secure forms, but lacks explicit security headers and incident response disclosures. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good with clear privacy and cookie policies, though a cookie consent mechanism is absent. The WHOIS data aligns well with the business claims, indicating legitimacy and consistency. Social media and partner domains are well integrated, enhancing trust and outreach. Overall, the website is professional, secure, and business credible with room for improvement in security headers and privacy mechanisms. The risk level is low, and the site effectively supports the company's market presence and customer engagement.

D

Dab Pumps Spa

dabpumps.com.au

9

Dab Pumps Spa is a well-established company specializing in water technology solutions with over 40 years of experience. The company focuses on manufacturing and providing technological solutions for water movement and management across residential, commercial, agricultural, and irrigation sectors. Their offerings emphasize reliability, efficiency, and energy optimization. The website reflects a professional and consistent brand presence targeting industrial and commercial audiences primarily in Australia and internationally. Technically, the website is built on Drupal 9 with modern frontend libraries such as jQuery, Bootstrap, and Owl Carousel, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and secure login forms but lacks advanced security headers and incident response disclosures. Privacy and cookie policies are present, though cookie consent mechanisms are missing. WHOIS data is incomplete and malformed, which raises some concerns about domain registration transparency. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

D

DAB PUMPS SPA

dabpumps.mx

10

DAB PUMPS SPA is a well-established company specializing in water technology solutions with over 40 years of industry presence. The company offers a broad portfolio of products and services including pumps, digital connectivity solutions, and training programs, targeting residential, commercial, and agricultural sectors. The website reflects a mature digital presence built on Drupal 9, with modern UI components and a clear focus on user experience and compliance. The security posture is adequate but can be improved by implementing additional security headers and renewing the expired domain promptly. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and serves as a solid digital asset for the company.

D

DAB PUMPS S.p.A.

dabpumps.us

11

DAB PUMPS S.p.A. is an established Italian manufacturer specializing in pump products with a significant presence in North America through its subsidiary DAB Pumps Inc. The company offers a broad portfolio of pump solutions, complemented by customer service, training, and technical support. The website reflects a mature digital presence built on Drupal 9, integrating modern frontend technologies and a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and some advanced HTTP security headers are missing. The WHOIS data is consistent with the business claims, reinforcing legitimacy. Overall, the website is professional, trustworthy, and well-structured for its industrial target audience.

D

Dab Pumps Spa

dabpumps.es

10

Dab Pumps Spa is a well-established company specializing in water technology solutions, focusing on the manufacturing and distribution of water pumps and related services. With over 40 years of experience and a strong presence in Spain and Italy, the company targets both professional sector users and end consumers. Their website reflects a mature digital presence built on Drupal 9, featuring comprehensive content, clear navigation, and a consistent brand image. The site integrates modern web technologies and provides extensive resources including technical advisory, training, and digital tools for pump selection and connectivity.

D

DAB Pumps Spa

dabpumps.be

10

DAB Pumps Spa is a well-established company specializing in water technology solutions with over 40 years of market presence. The Belgian localized website dabpumps.be serves as a regional portal providing product information, service offerings, training, and news updates. The company targets residential, commercial, agricultural, and irrigation sectors with a strong focus on innovation and energy efficiency. Technically, the website is built on Drupal 9 with modern frontend libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The site demonstrates good privacy compliance and business credibility with clear legal documentation and active social media presence. Overall, the website is professional, trustworthy, and well-optimized for its audience.

D

Dab Pumps Spa

dabpumps.de

10

Dab Pumps Spa is a well-established company specializing in water technology solutions, with nearly 50 years of experience. The company focuses on manufacturing pumps and providing technological solutions to optimize water management and energy consumption across residential, commercial, industrial, and agricultural sectors. Their market position is strong, supported by a comprehensive product portfolio and service offerings including DService and DTraining. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site is built on Drupal 9 with modern libraries and frameworks, ensuring a stable and maintainable infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the website reflects a credible and trustworthy business with good privacy compliance and user engagement through social media and contact channels.

D

Dab Pumps Spa

dabpumps.nl

62

Dab Pumps Spa operates a professional website focused on water pump manufacturing and related services, targeting industrial, agricultural, and building management sectors primarily in the Netherlands and internationally. The company has a strong market presence with over 40 years of history and offers a comprehensive product range, service contracts, training, and technical support. The website is built on Drupal 9 with modern front-end technologies and includes a secure login form protected by Google reCAPTCHA. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Security posture is good with HTTPS and secure practices, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-structured, supporting the company's business credibility.

BlueVendo S.A. is a Poland-based technology company specializing in high-tech proprietary software solutions for the tourism industry. Their offerings include integrated booking software, backoffice and inventory management systems, CMS platforms for tourism websites, and automation technologies such as OCR and RPA. The company targets touroperators and travel agencies, positioning itself as a niche provider with a mature product suite and a medium-sized business footprint. The website is professionally designed, content-rich, and optimized for SEO and mobile use, reflecting a solid digital maturity. Technically, the site runs on WordPress with modern plugins and frameworks, delivering moderate performance and good user experience. Security posture is adequate with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the domain registration data supports the legitimacy and stability of the business.

T

TravelGATE Kft

travelgate.hu

55

TravelGATE Kft operates a specialized cloud-based business travel management system tailored for Hungarian travel agencies and tour operators. Their platform offers comprehensive features including online travel offer search, booking, client and order management, and marketing tools. The company holds reputable certifications and maintains an active social media presence, positioning itself as a trusted provider in the Hungarian travel software market. Technically, the website employs a mix of legacy and modern JavaScript libraries, with room for modernization and security enhancements. Security posture is moderate, with cookie consent mechanisms and no visible vulnerabilities, but lacking advanced HTTP security headers and incident response contacts. Overall, the website is professional, compliant with GDPR, and provides clear business and contact information, supporting a medium-sized enterprise profile.

B

BigRock

bigrock.com

68

BigRock is a well-established web presence solutions provider focusing on domain registration, web hosting, and related services primarily targeting small businesses, professionals, and individuals. The website indicates a transition away from the .com domain for new orders, directing new customers to the .in domain, which suggests a strategic regional focus. The company is part of Newfold Digital, a known parent company in the web services industry. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Google Analytics, with a moderate performance and good mobile optimization. Security practices include HTTPS usage and cookie consent mechanisms, though explicit security headers are not evident in the provided content. The WHOIS data for the domain www.bigrock.com is missing, which raises concerns about domain registration transparency and legitimacy. Overall, the site is professional and trustworthy from a user perspective but would benefit from improved security header implementation and clearer domain registration information.

R

Rhoss

rhoss.it

56

Rhoss S.p.a. is a well-established Italian company specializing in air conditioning and air handling solutions, serving both public and private sectors since 1968. As part of the NIBE Group, Rhoss offers a broad portfolio of HVAC products including chillers, heat pumps, fan coils, and air handling units, targeting large buildings and residential markets. The website reflects a mature digital presence with multilingual support and comprehensive product and reference information. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good performance and SEO optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and related regulations.

Θ

ΘΕΡΜΟΓΚΑΖ Α.Ε.

thermogea.gr

53

ΘΕΡΜΟΓΚΑΖ Α.Ε. operates as an importer, commercial, and technical company specializing in energy products, specifically as the exclusive representative of NIBE in Greece. The website reflects a medium-sized business targeting the Greek market with a focus on energy sector products and services. The digital infrastructure is built on WordPress with modern plugins such as Yoast SEO Premium and Elementor, indicating a moderate level of digital maturity and SEO optimization. The site uses tracking technologies including Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and formal privacy or cookie policies, which are areas for improvement. No contact information or incident response details are present in the analyzed content, limiting direct communication channels for users. Overall, the website is professional and functional but could enhance compliance and security transparency.

C

Carl von Ossietzky Universität Oldenburg

icbm.de

61

The ICBM is an interdisciplinary marine sciences institute under the Carl von Ossietzky Universität Oldenburg, Germany. It operates research and teaching activities in marine chemistry and biology with multiple working groups and research platforms. The website is professionally designed using TYPO3 CMS, with good technical infrastructure and modern web technologies. Security posture is strong with HTTPS and privacy-conscious analytics (Matomo with disabled cookies). Contact information and social media presence enhance trust. No critical vulnerabilities or compliance gaps were detected, though explicit security policies could be improved. Overall, the site reflects a reputable academic institution with a clear focus on marine research and education.

The Deutsche Arbeitsgemeinschaft für Psychosoziale Onkologie e.V. (dapo e.V.) is a German non-profit professional society dedicated to psychosocial oncology. It brings together diverse healthcare professionals involved in medical, psychotherapeutic, psychosocial, and pastoral care for cancer patients and their families, as well as researchers in psychooncology. The organization focuses on fostering interdisciplinary exchange, strengthening collaboration, and supporting scientific work in this specialized field. The website serves as an information hub for members and interested professionals, offering news, event details, and a newsletter subscription.

S

Sociedade de Pediatria de São Paulo - SPSP

spsp.org.br

56

Sociedade de Pediatria de São Paulo (SPSP) is a well-established non-profit professional association serving pediatricians and healthcare professionals in São Paulo, Brazil. It operates as the pediatric department of the Associação Paulista de Medicina (APM) and is affiliated with the Sociedade Brasileira de Pediatria (SBP). The website provides educational resources, event information, publications, and membership services, targeting medical professionals and members of the pediatric community. The organization maintains a credible market position as a regional leader in pediatric healthcare education and advocacy. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, supported by Cloudflare for DNS and CDN services. The site is mobile-optimized, SEO-friendly, and integrates multiple Google tracking and analytics tools. Performance is moderate, with good design quality and user experience. Privacy and cookie policies are present, though GDPR compliance is basic. From a security perspective, the site uses HTTPS and Cloudflare DNS but lacks explicit advanced security headers and published incident response or vulnerability disclosure policies. No critical vulnerabilities or malicious content were detected. The presence of multiple tracking scripts suggests moderate user tracking, which could be improved for privacy compliance. Overall, SPSP's website is professional, trustworthy, and serves its audience well, with room for improvement in security policies and privacy transparency to enhance user trust and compliance.

R

Russell Certified Home Inspections

rchi.ca

58

Russell Certified Home Inspections is a small, professional home inspection service provider based in Kemptville, Ontario, Canada. The company offers a comprehensive range of inspection services including pre-purchase, new home warranty, WETT, BGRS, maintenance inspections, thermal imaging, and drone services. Led by Lucas Russell, an InterNACHI certified master inspector with over 10 years of experience, the business positions itself as a market leader in the local real estate inspection sector. The website reflects a professional image with detailed service descriptions and strong customer testimonials, supporting its credibility and trustworthiness. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, Owl Carousel, and Google Maps integration. SEO is enhanced by the Yoast SEO plugin and structured data markup. The site is mobile optimized and provides a good user experience. However, some technical improvements are recommended such as enabling DNSSEC and implementing security headers to strengthen security posture. Security-wise, the site uses HTTPS and has domain status protections but lacks DNSSEC and security headers. There is no visible privacy policy or cookie consent mechanism, which is a compliance gap especially under GDPR. Incident response and vulnerability disclosure information are absent, indicating room for improvement in security transparency and readiness. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and establishing a vulnerability disclosure policy.

C

Centro de Administraciones Tributarias Subnacionales (CeATS)

ceats.org

44

Centro de Administraciones Tributarias Subnacionales (CeATS) is a well-established non-profit organization based in Argentina, focused on subnational tax administration collaboration, training, and research. The website reflects a professional presence with clear navigation, relevant content, and active engagement through events and educational programs. The organization partners with universities and government tax agencies, reinforcing its credibility and market position in the government and education sectors. Technically, the website uses a modern but standard technology stack including Bootstrap, jQuery, and various carousel and slider libraries. Hosting is stable with a reputable registrar, and the site is mobile optimized with moderate performance. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are recommended to enhance protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, supporting business credibility. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

E

Europäisches Institut für Stillen und Laktation

stillen-institut.com

58

The Europäisches Institut für Stillen und Laktation (EISL) operates as a specialized educational institute focused on breastfeeding and lactation. It offers a variety of seminars, congresses, and certification preparation courses primarily targeting healthcare professionals such as doctors, pharmacists, and lactation consultants in German-speaking countries. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its niche audience. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript with components like Owl Carousel for interactive content. The site is mobile optimized and includes a cookie consent mechanism indicating GDPR compliance. However, no CMS or hosting provider details are evident, and performance is moderate. Security headers are not detected, and no explicit security or incident response policies are published on the site. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible advanced security headers and incident response information. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or a WHOIS server issue, which impacts domain legitimacy assessment. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is trustworthy and professional in content and design but would benefit from improved transparency in domain registration and enhanced security practices. Strategic recommendations include implementing security headers, publishing security policies, and clarifying domain registration details to strengthen trust and compliance.

S

Scribble Software, Inc.

marinago.com

45

MARINAGO Office, operated by Scribble Software, Inc., offers a comprehensive cloud-based marina management software solution designed to streamline operations for marinas, ports, harbors, and boatyards. The platform integrates key functionalities such as slip reservations, fuel dock sales, ship store management, accounting integration, enterprise reporting, and automated customer communications. Positioned as a trusted and scalable solution, MARINAGO Office targets marina professionals seeking efficient and profitable management tools. The website reflects a professional and consistent brand image with strong customer testimonials and integration with reputable accounting software providers. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various UI libraries, with Google Tag Manager and Google Ads for analytics and marketing. The site is mobile-optimized with good SEO practices and clear navigation, although accessibility features are basic. Security posture is moderate with HTTPS usage implied but lacking visible security headers and explicit security policies. Privacy and cookie policies are not found, indicating room for compliance improvement. The WHOIS data is notably missing or unavailable, which raises some concerns about domain registration transparency and legitimacy. Despite this, the website content and external references strongly indicate a legitimate business operation. Overall, the site scores well on content quality and business credibility but needs enhancements in privacy compliance and security best practices to strengthen trust and regulatory adherence.

T

TTG Czech Republic

ttg.cz

34

TTG Czech Republic is a Czech media outlet specializing in news, analysis, and inspiration related to the travel and tourism industry. The website offers comprehensive coverage of travel destinations, agencies, transportation, hospitality, events, and industry trends, targeting professionals and enthusiasts in the tourism sector. The site is well-branded and maintains a consistent professional appearance with active social media channels on Facebook, Twitter, and Instagram. Technically, the website is built on WordPress with modern plugins and libraries, including The Events Calendar and WPForms, and uses HTTPS for secure communications. However, the absence of WHOIS data and lack of explicit privacy and cookie policies indicate areas for improvement in transparency and compliance. Security posture is moderate with HTTPS enabled but missing security headers. Overall, the site is functional, relevant, and trustworthy for its audience but would benefit from enhanced privacy disclosures and security hardening.

E

Entrevestor

entrevestor.com

44

Entrevestor is a specialized media platform focused on delivering news and information about startups, innovation, and technology companies primarily in Atlantic Canada. It serves entrepreneurs, investors, and ecosystem participants by providing timely news, funding announcements, and ecosystem reports. The platform operates on a media business model with revenue streams from advertising and newsletter subscriptions, positioning itself as a niche regional leader in startup news. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and Owl Carousel, hosted on Dynamichosting.cloud with a CMS likely ExpressionEngine. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS and includes CSRF tokens in forms but lacks DNSSEC and security headers, and does not publish security or privacy policies, indicating room for improvement in compliance and security posture. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

S

Sightline Media Group

sightlinemg.com

57

Sightline Media Group is a specialized media organization focused on military, defense, and federal technology sectors. They provide award-winning journalism and a broad portfolio of multimedia products including digital, print, events, and custom publishing. Their market position is strong within their niche, serving a global audience with multiple recognized brands. Technically, the website is built on WordPress with modern plugins and hosted on a reputable platform, showing good digital maturity. Security posture is adequate with HTTPS and domain locking but lacks advanced DNS security and explicit security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

A

Anthroposophische Gesellschaft in Deutschland e.V.

anthroposophische-gesellschaft.de

45

The Anthroposophische Gesellschaft in Deutschland e.V. is a well-established non-profit organization dedicated to promoting the spiritual and cultural movement of Anthroposophy founded by Rudolf Steiner. The organization operates primarily in Germany and serves a broad audience interested in spiritual science, cultural reform, and social initiatives. Their business model revolves around memberships, events, publications, and fostering community engagement. The website reflects a mature digital presence with a comprehensive content offering, including news, events, and educational resources. Technically, the site is built on TYPO3 CMS, hosted by Infomaniak, and employs modern web technologies to ensure a good user experience across devices.

C

Centro de Estudos sobre Tecnologias Web (Ceweb.br) - Departamento do NIC.br

ceweb.br

58

Ceweb.br is a Brazilian non-profit research and policy support entity operating under NIC.br, focused on advancing web technologies, accessibility, and open data initiatives within Brazil. The website serves as a hub for community engagement, educational resources, and project dissemination related to web standards and digital inclusion. It holds a strong market position as a trusted institution affiliated with NIC.br and CGI.br, targeting Brazilian web technology stakeholders and policymakers. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Matomo analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and secure form handling, though it lacks explicit security policy and incident response disclosures. Overall, the site is professional, trustworthy, and compliant with privacy regulations, including GDPR. Recommendations include publishing security policies and enhancing security headers to further strengthen the security posture.

C

crashtest-service.com GmbH

crashtest-service.com

62

Crashtest-service.com GmbH operates a specialized crash test facility in Germany, providing comprehensive crash testing and accident reconstruction services. The company is accredited by DAkkS and offers access to an extensive crash test database with over 8,500 tests. Their services cater primarily to experts such as insurers, legal professionals, accident researchers, and automotive manufacturers. The website is professionally designed, mobile-optimized, and provides clear navigation with rich content in German. Technically, the site uses AmphiCMS, jQuery, and video player technologies, with a consent management platform ensuring GDPR compliance. Security posture is moderate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. WHOIS data is unavailable or inconsistent, which raises some concerns about domain registration legitimacy, but the business information and website content appear credible and professional.

IG Jazz Arnstadt e.V. is a small non-profit cultural association based in Germany focused on organizing and promoting jazz music events in Arnstadt. The website serves as an information hub for upcoming concerts, ticket sales, and archival content related to jazz. The target audience primarily consists of jazz enthusiasts and the local community interested in cultural events. The organization maintains an active presence on social media platforms such as Facebook and Instagram and offers a newsletter subscription to engage its audience. Technically, the website is built on WordPress using a modern tech stack including Bootstrap, jQuery, and several plugins for SEO, booking, and GDPR compliance. The site is hosted on servers associated with avidesign.eu and employs HTTPS with a valid SSL certificate. Performance and mobile optimization are good, with SEO best practices implemented via Yoast SEO. The site includes a cookie consent mechanism compliant with GDPR regulations and uses Matomo for analytics and Mailchimp for marketing. From a security perspective, the site has HTTPS enabled and uses cookie consent tools to manage user privacy. However, no advanced security headers were detected, and there is room for improvement by implementing CSP, HSTS, and other HTTP security headers. No vulnerabilities or exposed sensitive data were found in the provided content. Incident response and security policies are not explicitly documented on the site. Overall, the website presents a professional and trustworthy front for a local cultural organization with good privacy compliance and moderate security posture. Recommendations include enhancing security headers, maintaining up-to-date software, and possibly publishing explicit security and incident response policies to improve trust and compliance.

Jazzclub Erfurt e.V. is a small non-profit cultural organization based in Germany focused on promoting jazz music through live events and concerts. The website serves as a platform to showcase upcoming events, ticket reservations, and club information targeting jazz enthusiasts and the local community. The organization benefits from cultural funding and maintains an active presence on social media platforms such as Facebook and Instagram. Technically, the website is built on the ClubDesk CMS platform, utilizing modern JavaScript libraries like jQuery, Featherlight, and Owl Carousel to enhance user experience. The site is mobile-optimized and includes accessibility features, although SEO and performance optimizations are basic. Security posture is moderate with HTTPS assumed but no explicit security headers detected. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, but no explicit terms of service or incident response policies are published. Overall, the site is trustworthy and professional, suitable for its cultural and community-oriented purpose.

VARTA AG operates a professional corporate website focused on consumer battery and energy storage products. The site is well-structured, multilingual, and uses TYPO3 CMS with modern web technologies. It targets consumers seeking reliable energy solutions including primary batteries, rechargeable batteries, special batteries, hearing aid batteries, lighting, and mobile power solutions. The website demonstrates good digital maturity with SEO optimization, cookie consent, and privacy policy compliance. Security posture is solid with HTTPS and some security best practices, though additional security headers could be implemented. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract from the overall legitimacy. No blocking or WAF challenges were detected, allowing full content access.

V

Victory Sweepers

sweeperpartsonline.com

55

Victory Sweepers, a division of ROOTS MULTI CLEAN, Inc., operates an e-commerce platform specializing in spare parts for industrial and commercial sweepers. The company targets businesses and individuals requiring replacement parts for various sweeper models, positioning itself as a niche supplier with direct manufacturer ties. The website is professionally designed with clear navigation and mobile responsiveness, supporting a good user experience. Technically, the site is built on ASP.NET WebForms with modern frontend libraries like Bootstrap and jQuery, hosted likely via GoDaddy. Security posture is moderate with HTTPS enabled and form protections in place, but lacks advanced security headers and DNSSEC. Privacy compliance is limited, with no visible privacy or terms of service pages, though a cookie consent banner is present. Contact information is comprehensive and trust indicators are strong, including social media presence and physical address. Overall, the site is legitimate and functional but could improve in privacy and security transparency.

Kende Gastro is a Hungarian company specializing in hospitality and catering equipment, providing products, planning, servicing, and related services primarily targeting hospitality businesses and retail customers. The website is professionally designed using Joomla! CMS and integrates modern web technologies such as Bootstrap, jQuery, and Revolution Slider. It maintains an active social media presence and complies with GDPR through a cookie consent mechanism. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Overall, the website is trustworthy, business-focused, and safe for general audiences.

M

Moravský letecký klastr, z.s.

czech-aerospace.cz

53

Moravský letecký klastr, z.s. is a well-established Czech aerospace cluster association focused on fostering collaboration, innovation, and business development among aerospace companies and educational institutions primarily in the southeast Moravia region. The website reflects a professional and consistent brand presence, offering detailed information about services such as innovation support, marketing, and education programs. The cluster serves a large audience with over 6000 employees and significant production output, positioning itself as a key player in the Czech aerospace manufacturing sector. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and Owl Carousel, ensuring a responsive and user-friendly experience across devices. The site includes a comprehensive cookie consent mechanism aligned with GDPR requirements, demonstrating digital maturity in privacy compliance. However, some security best practices such as HTTP security headers are not evident, and no explicit security or incident response policies are published. From a security perspective, the site uses HTTPS (implied by domain and modern standards), has no visible vulnerabilities or exposed sensitive data, and implements cookie consent with detailed user controls. The WHOIS data is consistent with the business profile, enhancing trustworthiness. No signs of WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance the security posture and user trust.

E

esc Aerospace s.r.o.

esc-aerospace.com

47

esc Aerospace s.r.o. is a Czech-based technology company specializing in aerospace, defense, and security systems integration and product development. The company operates through three independently owned entities located in the Czech Republic, the United States, and Germany, providing advanced solutions such as flight software, avionics, secure communications, and defense technologies. Their market position is strong within the Czech aerospace sector, with participation in European defense projects and a focus on innovation and reliability. The website reflects a professional and modern digital presence built on WordPress with a variety of plugins supporting content management and user interaction. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, but lacks explicit security headers and published policies for privacy and incident response. The absence of WHOIS registrant data is a concern for domain legitimacy, though the overall business credibility is supported by detailed product offerings and social media presence. Strategic recommendations include enhancing privacy compliance, publishing security policies, and verifying domain registration details to improve trust and compliance.

V

ViroSafe Norge AS

virosafe.no

53

ViroSafe Norge AS is a leading Norwegian distributor specializing in IT security solutions, serving Managed Service Providers (MSPs) across Norway since 2001. The company offers a comprehensive portfolio of cybersecurity products and services including backup and restore, endpoint protection, email security, network and cloud security, security culture training, and SOC services. Their market position is strong within the Norwegian IT security sector, focusing on value-added partnerships and expert support for MSPs. Technically, the website is built on a custom ASP.NET platform with modern front-end technologies such as jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience and interactivity. The site is mobile-optimized and integrates marketing and analytics tools like HubSpot and Google Analytics, alongside Google reCAPTCHA for form security. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and employs reCAPTCHA to protect forms. Cookie consent mechanisms and a comprehensive privacy policy demonstrate GDPR compliance. However, there is a lack of explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for ViroSafe's business operations. The absence of WHOIS data from the Norid registry is a notable gap, limiting full domain legitimacy verification. Nonetheless, the business information, contact details, and content quality support a high trust level. Strategic recommendations include enhancing security headers, publishing security policies, and implementing vulnerability disclosure protocols to further strengthen security posture and compliance.

D

Doprava a Mechanizace a.s.

damplzen.cz

54

Doprava a Mechanizace a.s. is a regional Czech company specializing in construction-related transport, mechanization, and equipment rental services. Their offerings include production and installation of reinforcing steel, earthworks, vehicle and machinery repairs, and concrete production and transport. The company targets construction firms and contractors primarily in the Plzeň region. The website is professionally designed with clear navigation and relevant content, supporting their business model effectively. Technically, the website uses an older jQuery version (1.11.2) alongside common libraries such as FontAwesome and Google Fonts. The site is built on the UNIWEB CMS platform and includes a cookie consent mechanism compliant with GDPR principles. However, the absence of modern security headers and the use of outdated libraries present potential security risks. Performance and mobile optimization are moderate to good, but SEO and accessibility could be improved. Security posture is moderate with no visible blocking or WAF detected, but the lack of WHOIS transparency and missing explicit privacy and security policies reduce trust. The cookie consent banner is implemented well, but no incident response or security contact information is provided. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures. Strategically, the company should update its technical stack, publish comprehensive privacy and security policies, and improve transparency regarding domain registration to strengthen trust and compliance. These steps will enhance their digital maturity and reduce potential security vulnerabilities.

F

fitness-rezervace.cz

fitness-rezervace.cz

47

fitness-rezervace.cz operates a specialized online reservation and information system primarily targeting fitness centers, gyms, yoga studios, and various sports facilities in the Czech Republic. Established in 2011, the company offers a comprehensive software solution that includes user management, payment integration, live streaming capabilities, and advanced features such as turnstiles, vouchers, and REST API for developers. Their market position is that of a niche leader within the Czech fitness and sports reservation software sector, supported by a small but focused business model emphasizing customization and client support. The website reflects a professional and consistent brand image with clear business information and contact details.

S

Senta s.r.o.

air-track.cz

46

Air-Track.cz is a Czech Republic based e-commerce retailer specializing in branded AirTrack inflatable gymnastics and acrobatic equipment. The company operates as the exclusive distributor for AirTrack Factory in the Czech Republic and an authorized distributor for Slovakia, targeting gymnastics enthusiasts, cheerleading, freerun, parkour practitioners, schools, trampoline parks, and home users. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, it is built on the PrestaShop CMS platform, utilizing common web technologies and analytics tools such as Smartlook and Google Tag Manager. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit security policies. Business credibility is strong with clear contact details, company registration, and trust signals like warranty and exclusive distributorship. Overall, the website presents a trustworthy and professional online presence for a niche sports equipment retailer.

S

SPARROW

sp-sparrow.cz

45

SPARROW is a small family-owned business based in the Czech Republic specializing in the manufacture and retail of sportswear and fitness clothing, with over 25 years of experience. The company offers custom club clothing, costumes, and jerseys, leveraging high-quality imported materials and modern production technologies. Their website serves as an e-commerce platform showcasing their product range and custom design services. Technically, the website uses a legacy jQuery version and BohemiaSoft e-commerce platform scripts, with Google Tag Manager and Google Analytics for tracking. While the site is accessible and mobile-optimized, some technical issues such as outdated libraries and malformed script tags were identified. Security posture is moderate with HTTPS enforced and basic cookie consent mechanisms, but lacks advanced security headers and updated libraries. The absence of WHOIS data and a formal privacy policy page reduces trust and compliance confidence. Overall, the site is functional and professional but would benefit from technical and compliance improvements.

F

femme.cz

femme.cz

39

femme.cz is a Czech lifestyle media website offering content on fashion, beauty, health, personal development, entertainment, and family relationships. The site targets Czech-speaking audiences interested in lifestyle topics and operates primarily as a content publishing platform with advertising revenue. Technically, the site is built on WordPress with Elementor and Yoast SEO plugins, hosted by Wedos, and uses modern web technologies including Google Analytics for tracking. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks some security headers and explicit privacy and cookie policies. The domain registration is transparent but the domain age is very recent compared to the content age, suggesting a possible domain transfer or re-registration. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices.

M

mestavevrope.cz

mestavevrope.cz

39

The website mestavevrope.cz is a Czech-language travel guide focused on interesting cities across Europe. It provides visitors with information and inspiration for travel, highlighting historical, cultural, and architectural aspects of various European cities. The site appears to be a niche content platform targeting Czech-speaking travelers interested in European destinations. Technically, the site is built on WordPress using popular plugins such as Yoast SEO and Elementor, with modern frontend libraries like jQuery and Owl Carousel. It employs HTTPS and integrates Google Analytics for visitor tracking. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are important for compliance and security best practices. The WHOIS data for the domain is unavailable, likely due to privacy protection, but the website content dates back to 2020, suggesting a domain age consistent with the site's history. Overall, the site is professionally designed with good content quality but could improve its privacy compliance and security posture.

PURO Bistro is a small hospitality business located in Göttingen, Germany, specializing in high-quality bistro, café, and bar services with a focus on organic and locally sourced products. The website presents a well-structured and visually appealing digital presence emphasizing their menu offerings, team, and contact information. The business targets local residents and visitors seeking quality food and beverages in a relaxed atmosphere with terrace seating. Technically, the website uses modern front-end technologies including Bootstrap, FontAwesome, and jQuery-based plugins, hosted on netcup.net infrastructure. The site is mobile-optimized and SEO-friendly but lacks advanced CMS or analytics integrations. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the site is trustworthy and professional, though improvements in privacy compliance (cookie consent) and security best practices are recommended. No forms or data collection mechanisms are present, reducing privacy risks. Social media links are generic and could be enhanced with direct company profiles. Strategically, PURO Bistro should focus on enhancing privacy and security transparency, adding cookie consent, and possibly integrating analytics to better understand user engagement while maintaining compliance with GDPR.

S

Smart Sender

smartsender.eu

60

Smart Sender is a technology company offering a SaaS chatbot platform that integrates with multiple popular instant messengers such as Telegram, Viber, WhatsApp, Instagram Direct, Facebook Messenger, Skype, VKontakte, Kik, Line, and WeChat. The platform focuses on automating customer engagement, increasing sales, and improving customer loyalty through chatbots, autoresponders, and automated sales funnels. The website presents a professional and consistent brand image with clear pricing plans and calls to action for free trials and registration. Technically, the website is built using modern JavaScript frameworks, primarily Vue.js, and incorporates common analytics and marketing tools like Google Analytics and Facebook Pixel. The site is mobile-optimized with good SEO practices and a moderate performance profile. Security-wise, HTTPS is enforced, and CSRF tokens are present, but there is room for improvement in implementing additional security headers and publishing explicit security policies. The security posture is solid but could benefit from enhanced transparency around incident response and vulnerability disclosure. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. No direct contact emails or phone numbers are provided, which may limit immediate customer support access but is common for SaaS platforms relying on account portals. Overall, the website and business appear legitimate, professional, and trustworthy with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and compliance.

F

Foodyny

foodyny.hu

50

Foodyny.hu is a Hungarian media website specializing in international gastronomy, recipes, and celebrity kitchen insights. It targets a general audience interested in food and lifestyle content. The site operates primarily as a content publishing platform monetized through advertising and sponsorships, with a niche position in the Hungarian gastronomy media market. Technically, the website uses WordPress CMS with a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for UI and advertising integration. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic but present, with a privacy policy and cookie banner. No direct contact emails or phone numbers are published, which may limit user trust. Overall, the website is professional, content-rich, and trustworthy with moderate risk and room for security and compliance improvements.

A

Affino

affino.com

69

Affino is a technology company specializing in AI-enhanced customer experience solutions delivered via a unified SaaS platform. Their offerings include personalization, automation, AI-powered search, adaptive analytics, and conversion funnel optimization. The company positions itself as a leader providing hands-on services to help clients outperform competitors. Technically, the website employs modern front-end technologies such as HTML5, CSS3, JavaScript, jQuery, and SVG graphics, with a proprietary CMS platform. The site is well-designed, mobile-optimized, and provides clear navigation and professional content. Security posture is moderate with HTTPS implied and secure login forms, but lacks explicit security headers and published security policies. Privacy compliance is limited with no visible privacy or terms of service pages, though a cookie policy with consent mechanism is present. WHOIS data is unavailable, which reduces trustworthiness but the professional presentation and contact information support business credibility. Overall, the site is suitable for business audiences seeking AI-driven customer experience platforms.

M

Moveo AS

moveo.no

60

Moveo AS is a Norwegian IT service provider specializing in effective and secure IT solutions with over two decades of experience. Their offerings include Microsoft cloud services, IT hardware, network infrastructure, security, consulting, and training, targeting businesses primarily in maritime, aquaculture, industry, and commercial sectors. The company positions itself as a reliable partner focused on flexibility, efficiency, and security. Technically, the website is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and privacy compliance are recommended. Overall, the website reflects a professional and trustworthy business presence, though the lack of WHOIS transparency and cookie consent mechanisms slightly reduce compliance and trust scores.

A

Anthroposophische Gesellschaft in Deutschland e.V.

anthroposophie-gegen-rassismus.de

46

The website 'Anthroposophie gegen Rassismus' is operated by the Anthroposophische Gesellschaft in Deutschland e.V. and serves as an informational platform dedicated to clarifying misconceptions about Anthroposophy related to racism, antisemitism, and right-wing extremism. It provides educational content, publications, blog articles, and official statements to promote a humanistic and inclusive understanding of Anthroposophy. The target audience includes individuals interested in Waldorf education, biodynamic products, and those seeking critical discourse on these topics. Technically, the site is built on TYPO3 CMS, hosted by Infomaniak, and employs modern frontend libraries ensuring good mobile optimization and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the site is trustworthy, professional, and serves a niche educational purpose effectively.