Security Directory

M

Město Kromeříž

kromeriz.eu

55

The website kromeriz.eu serves as the official tourism and cultural information portal for the city of Kroměříž in the Czech Republic. It provides comprehensive visitor information including historical sites, cultural events, travel tips, and practical details to support tourism and local engagement. The site targets a broad audience including families, seniors, cyclists, and school groups, positioning itself as a trusted and authoritative source for the region. The business model is informational and government-supported, focusing on promoting local tourism and culture. Technically, the site is built on WordPress 6.8.2 with popular plugins such as Yoast SEO, Contact Form 7, and Google Site Kit. It uses modern web technologies including Google reCAPTCHA v3 for form security, Google Maps API for location services, and jQuery libraries for UI enhancements. Hosting is provided by WEDOS Internet, a reputable Czech hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and integrates reCAPTCHA to mitigate spam and abuse. However, it lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. No explicit privacy, cookie, or incident response policies are found, indicating potential compliance gaps with GDPR and related regulations. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, kromeriz.eu is a professionally maintained government tourism portal with solid business credibility and technical infrastructure. To improve, the site should publish clear privacy and cookie policies, implement additional security headers, and provide incident response information to strengthen trust and compliance. These steps will enhance the site's security posture and regulatory adherence while maintaining its role as a key regional tourism resource.

C

Centrála cestovního ruchu Olomouckého kraje, s.r.o.

centralaok.cz

57

Centrála cestovního ruchu Olomouckého kraje, s.r.o. is a regional tourism promotion entity focused on managing and marketing the Olomoucký region in the Czech Republic. The website serves as an information hub for tourists, event planners, media, and regional partners, offering details on campaigns, promotional materials, and services such as the convention bureau and film office. The business operates primarily in the hospitality and government-related sectors, positioning itself as a key regional tourism authority. Technically, the website employs modern JavaScript libraries including jQuery, Bootstrap, Lightbox, and Owl Carousel, and integrates Google Analytics for visitor tracking. The site is mobile-optimized with a responsive design and includes cookie consent mechanisms aligned with GDPR requirements. Performance is moderate, with room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS and implements cookie consent but lacks explicit security headers and vulnerability disclosure mechanisms. No exposed sensitive data or vulnerabilities were detected in the content. The absence of WHOIS data limits domain registration insights, but the website's professional presentation and alignment with the domain name suggest legitimacy. Overall, the website presents a trustworthy and professional front for regional tourism promotion, with recommendations to enhance security headers, accessibility, and formalize security policies to further strengthen its posture.

M

MOL Plugee

molplugee.cz

36

MOL Plugee operates as a provider of electric vehicle charging stations primarily in the Czech Republic, offering both DC and AC chargers capable of fast charging within 30 minutes. The company appears to be a medium-sized entity founded in 2018, likely affiliated with the MOL Group, focusing on the energy and transportation sectors. Their market position is localized with a clear target audience of electric vehicle users in the region. Technically, the website employs modern web technologies including Bootstrap, FontAwesome, and Cookiebot for cookie consent management, hosted on Microsoft Azure DNS infrastructure. The site is mobile-optimized and SEO-friendly with good content quality and consistent branding. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers are not visible in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy linked and a detailed cookie consent mechanism in place. However, contact information and terms of service are not explicitly found on the main page, which could be improved for better business credibility. Overall, the website is professional, trustworthy, and safe for general audiences.

M

MOL Nyrt.

molplugee.ro

45

MOL Plugee operates as a regional electric vehicle charging service provider primarily focused on Romania, supported by a network of partner sites in neighboring countries. The company is part of MOL Nyrt., a well-established energy sector entity, and benefits from EU co-financing, indicating a strong market position in the sustainable energy and transportation sector. Their services include electric vehicle charging stations, a mobile app for charging management, and customer support, targeting electric vehicle owners and users. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. The technical infrastructure leverages modern web technologies such as Bootstrap, jQuery, and Google Analytics, hosted on Microsoft Azure DNS, ensuring reliable performance and scalability. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA to protect forms, though the absence of explicit security headers and incident response contacts suggests room for improvement. Privacy compliance is robust with comprehensive cookie consent mechanisms and detailed privacy policies in Romanian, aligned with GDPR requirements. Overall, the website and business demonstrate a credible, trustworthy, and professional operation with moderate technical sophistication and good compliance practices.

P

Plzeňské městské dopravní podniky, a.s.

plzenskakarta.cz

45

Plzeňské městské dopravní podniky, a.s. operates the Plzeňská karta website, providing integrated transportation card services for the Plzeň region in the Czech Republic. The platform offers both virtual and physical cards facilitating payments for public transport, parking, and shopping, supported by a bonus program and e-shop functionalities. The company holds a strong market position as a key regional transportation service provider with clear customer engagement through multiple channels and social media presence. Technically, the website is built on the niCMS platform, utilizing modern web technologies such as Google Tag Manager, Owl Carousel, and Font Awesome. The site is mobile-optimized with good SEO and accessibility features, although some advanced security headers are missing. The site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and manages user consent for tracking and advertising scripts. However, the absence of explicit security policies, incident response contacts, and WHOIS registration data reduces the overall trustworthiness from a domain registration standpoint. No critical vulnerabilities or exposed sensitive data were detected, indicating a generally secure posture. Overall, the website is professional, user-friendly, and compliant with privacy regulations, serving its target audience effectively. The main risk lies in the lack of WHOIS transparency and some missing security headers, which should be addressed to enhance trust and security posture.

D

Dopravní podnik města Hradce Králové, a.s.

novesmhd.cz

42

Dopravní podnik města Hradce Králové, a.s. is a medium-sized public transportation company operating in Hradec Králové, Czech Republic. The company provides bus and trolleybus services with a focus on modernizing its ticketing system, including contactless payments and a new tariff structure effective from 2024. The website serves as an information portal for passengers, offering details on ticket types, tariff changes, and contact information. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and Slider Revolution, hosted on a Czech hosting provider. Security posture is adequate with HTTPS enabled and secure form handling, but lacks advanced security headers and privacy compliance mechanisms such as cookie consent and privacy policy. The company is transparent with contact details, social media presence, and official registration information, enhancing trustworthiness. Overall, the website is professional and functional but could improve privacy compliance and security hardening.

M

Metropolis Group Holdings Limited

metropolis.co.uk

67

Metropolis Group Holdings Limited is a UK-based media publishing company established in 1994, specializing in business and consumer media as well as reward and loyalty programs. The company operates multiple well-known brands across various industry sectors including electronics, property, travel retail, packaging, automotive, medical, and more. Their market position is strong with several long-established publications and a leadership role in loyalty programs such as Smartsave and For Less Guides. The website reflects a professional media group targeting business and consumer audiences with a comprehensive portfolio of services and publications. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including popular plugins like WPBakery Page Builder, Slider Revolution, and WP Job Manager. It uses Cloudfront CDN for hosting and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO practices, though accessibility is basic. Performance is moderate, with room for improvement in speed and security headers. Security posture is adequate with HTTPS enforced and patched WordPress core, but lacks important security headers such as CSP and HSTS. Google reCAPTCHA is present but disabled, reducing bot protection effectiveness. No sensitive data exposure was detected. Privacy compliance is basic with a clear privacy policy and GDPR adherence, but no visible cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professional with a solid business foundation. Security improvements and enhanced privacy controls are recommended to strengthen the site’s resilience and compliance. The risk level is moderate with no critical vulnerabilities detected, but proactive security enhancements would benefit the company’s digital presence.

S

Seiler Medical

seilermicro.com

65

Seiler Medical is a well-established company specializing in high-quality medical optical equipment, including surgical dental microscopes, colposcopes, ENT microscopes, and related accessories. With over 80 years of industry experience, the company targets medical professionals seeking precision optics solutions. The website reflects a mature digital presence built on WordPress with modern plugins and integrations, supporting multimedia content and customer engagement through testimonials and product showcases. Security posture is generally good with HTTPS and anti-bot measures, though improvements in security headers and vulnerability disclosure mechanisms are recommended. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall professional presentation and trust indicators support a positive business credibility assessment.

S

Sailent Academy

salientmedicalacademy.com

47

Salient Medical Academy operates as a specialized education provider focusing on medical aesthetics and skincare professional training. The website offers a variety of certification courses including PCA Professional Peel, Microneedling, and other advanced skin science certifications. The target audience primarily consists of medical professionals and clinicians seeking to enhance their expertise through online and in-person courses. The business model centers on delivering professional certification and continuing education in a niche healthcare segment. Technically, the website is built on WordPress using LearnDash LMS for course management, with a modern tech stack including Bootstrap, jQuery, and Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS and secure login forms but lacks important security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is present, indicating room for improvement in security maturity. The absence of WHOIS registration data is a notable concern, potentially impacting trust and legitimacy perceptions. Overall, the website is professional and content-rich, serving its educational purpose well. However, the missing WHOIS data and limited privacy/security disclosures suggest a moderate risk profile. Strategic enhancements in security policies, transparency, and domain registration verification are recommended to strengthen trust and compliance.

B

Big & BIGGER

bigbigger.sk

54

Big & BIGGER is a Slovak-based online marketing agency specializing in digital marketing, branding, web development, and online reservation systems. The company positions itself as a strategic partner for ambitious brands seeking scalable and flexible IT solutions to enhance their online presence and business growth. Their service portfolio includes branding, design, web and e-commerce development, custom software solutions, and marketing services such as SEO and PPC. The website demonstrates a professional and modern digital infrastructure utilizing contemporary frontend technologies and integrates Google Analytics for user tracking. Cookie consent mechanisms are implemented to comply with privacy regulations, and a privacy policy is available in Slovak. However, the site lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. Overall, the website is well-designed, content-rich, and trustworthy, targeting businesses in hospitality, real estate, and other sectors.

M

Marketingová agentúra UNIQINO

stavmag.sk

57

Stavmag.sk is a Slovak online magazine focused on construction, sustainability, and DIY projects. Founded in 2023 and operated by Marketingová agentúra UNIQINO, it serves a niche audience interested in the latest trends and news in the building sector. The website uses WordPress CMS with a modern tech stack including SEO and GDPR compliance plugins, ensuring a professional digital presence. The content is well-structured and relevant, targeting Slovak-speaking users with interests in construction and energy-efficient solutions. Technically, the site is hosted on a reputable provider with DNSSEC and HTTPS enabled, reflecting good security practices. However, explicit contact information and detailed security policies are not publicly available, which could be improved to enhance trust and compliance. Overall, the site demonstrates a solid foundation with room for enhancements in security transparency and business contact accessibility.

C

Cofidis S.A.

pagodil.it

54

PagoDIL by Cofidis is a well-established financial service platform in Italy that enables consumers to pay for purchases in installments without additional costs or interest. The website reflects a mature digital presence with a clear focus on consumer and merchant audiences, supported by a large partner network and strong brand consistency with Cofidis S.A. The technical infrastructure leverages WordPress CMS with modern libraries and tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers are recommended. Privacy compliance is robust, with clear policies linked to the parent company's domain. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

D

Dopravní podnik Karlovy Vary, a. s.

dpkv.cz

49

Dopravní podnik Karlovy Vary, a. s. is a traditional and established public transportation operator in Karlovy Vary, Czech Republic. The company provides a wide range of services including city and regional bus lines, cable cars, and additional transport-related services such as advertising, vehicle repair, fuel sales, and towing. The website reflects a medium-sized enterprise with a clear focus on serving both residents and tourists in the region. The company maintains a professional online presence with comprehensive service information and user-friendly navigation.

P

Plzeňské městské dopravní podniky, a.s.

pmdp.cz

48

Plzeňské městské dopravní podniky, a.s. (PMDP) operates as the primary public transportation provider in Plzeň, Czech Republic, offering a wide range of services including tram, trolleybus, and bus transport, ticketing solutions, vehicle rentals, and advertising services. The company has a long-standing history dating back to 1899 and maintains a strong market position as a trusted municipal transport operator. The website reflects a professional and user-friendly digital presence with clear navigation and relevant content targeted at the general public and transport users. Technically, the website employs modern web technologies such as Bootstrap, Font Awesome, and niCMS, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and includes essential privacy and cookie consent mechanisms, demonstrating compliance with GDPR requirements. However, some security best practices like security headers and vulnerability disclosure mechanisms are not evident, suggesting room for improvement in security posture. From a security perspective, the site uses HTTPS and enforces cookie consent with granular controls, but lacks visible security headers and published incident response or security policies. The absence of WHOIS data for the domain reduces transparency and trustworthiness, although the website content and business information appear legitimate and consistent. Overall, the site presents a moderate to good security posture with recommendations to enhance domain transparency and security controls. Strategically, PMDP should focus on improving domain registration transparency, implementing comprehensive security headers, and publishing formal security and incident response policies to strengthen trust and compliance. Enhancing these areas will support the company’s reputation as a reliable public transport provider and ensure continued regulatory compliance and user confidence.

M

MOL Serbia d.o.o.

freshcorner.rs

63

Fresh Corner is a retail food and beverage brand operating primarily at Slovnaft gas stations in Serbia, offering coffee, hot dogs, sandwiches, pastries, and hot meals. The company is part of MOL Serbia d.o.o., indicating a connection to the MOL Group, a significant energy sector player. The website is professionally designed with good mobile optimization and clear navigation, targeting general consumers and travelers seeking quick food options at fuel stations. The business model focuses on convenience retail integrated with energy services, positioning Fresh Corner as a recognized local brand with a medium-sized market presence. Technically, the website employs modern web technologies including Google Maps API for location services, Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics. The site uses HTTPS with a valid SSL configuration and includes a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data, indicating room for security enhancements. The site lacks a published security policy or incident response contact, which could improve trust and compliance. From a security perspective, the site demonstrates good practices such as CSRF token usage and cookie consent with detailed categories. Tracking technologies are used responsibly with user consent. No critical vulnerabilities or suspicious domains were found. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the site maintains a good security posture but could benefit from additional security headers and formal security documentation. The overall risk assessment is low, with the site presenting a trustworthy and professional front for its business operations. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing a security policy, and considering a vulnerability disclosure program to further enhance security and compliance posture.

M

MOL Nyrt.

molplugee.si

63

MOL Plugee operates as a regional provider of electric vehicle charging infrastructure, primarily targeting Slovenia and neighboring countries. The company offers DC and AC charging stations, supported by user account management and mobile applications, positioning itself as a key player in the emerging electric mobility sector. The website reflects a professional and consistent brand presence, supported by EU co-financing under the NEXT-E project, enhancing its market credibility. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Owl Carousel, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Hosting appears to be supported by Microsoft Azure DNS infrastructure, indicating a reliable hosting environment. The site is mobile-optimized and SEO-friendly, with clear navigation and structured content. From a security perspective, the site enforces HTTPS, uses CSRF protection tokens, and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, security headers are not explicitly detected and no incident response contacts or vulnerability disclosure policies are published, representing areas for improvement. No critical vulnerabilities or suspicious patterns were identified. Overall, the website demonstrates a solid security posture, good privacy compliance, and strong business credibility. The domain registration data aligns well with the business profile, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and continuous monitoring of third-party scripts to maintain security and trust.

A

AOI d.o.o.

freshcorner.si

59

Fresh Corner is a Slovenian retail food and beverage brand operating primarily at MOL fuel stations, offering a variety of fresh products such as coffee, hot dogs, sandwiches, bakery items, and warm meals. The website reflects a well-established regional presence with a medium-sized business footprint, supported by a consistent brand identity and clear customer engagement channels including social media and customer support contacts. The domain is registered to AOI d.o.o. since 2016, aligning with the business timeline and regional operations. Technically, the website employs modern web technologies including Google Maps API for location services, Facebook Pixel and Google Analytics for marketing and analytics, and uses Azure DNS for hosting infrastructure. The site is mobile-optimized with good performance and SEO practices, though accessibility features are basic. Security measures include HTTPS enforcement, CSRF tokens, and reCAPTCHA integration, with room for improvement in security headers and formal security policies. From a security and compliance perspective, the site demonstrates good privacy compliance with comprehensive privacy and cookie policies, including a consent mechanism aligned with GDPR requirements. However, no explicit security policy or incident response contact is published, and no vulnerability disclosure mechanism is evident. The WHOIS data supports the legitimacy of the domain and business, with no suspicious patterns detected. Overall, Fresh Corner's website is professional, secure, and compliant, serving its target audience effectively. Strategic enhancements in security policy transparency and security header implementation could further strengthen its posture.

M

MOL Nyrt.

molplugee.hu

67

MOL Plugee is a Hungarian electric vehicle charging service operated by MOL Nyrt., a major energy company. The website offers comprehensive information about their diversified portfolio of fast DC and AC chargers primarily located in Budapest, targeting both individual EV owners and corporate clients. The platform supports user registration and account management through a dedicated subdomain, enhancing customer engagement and service delivery. The site is well-branded, consistent with MOL's corporate identity, and supported by EU co-financing, indicating strong market positioning and credibility. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Google Analytics and Google Tag Manager for marketing and analytics, and uses Google reCAPTCHA to secure forms. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

F

Fresh Corner

freshcorner.hu

65

Fresh Corner is a Hungarian retail and hospitality brand operating primarily at MOL fuel stations, offering fresh coffee, hot-dogs, sandwiches, bakery items, and hot meals. The website reflects a well-established business with a clear market position serving general consumers and travelers in Hungary. The digital presence is supported by modern tracking and advertising technologies, including Google Analytics, Facebook Pixel, and TikTok Pixel, indicating a mature marketing strategy. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with CSRF protections, though it lacks explicit security policy documentation. Privacy compliance is strong, with clear cookie consent mechanisms and GDPR-aligned privacy policies. Contact information is transparent and professional, enhancing business credibility.

S

Sdružení dopravních podniků ČR

sdp-cr.cz

48

Sdružení dopravních podniků ČR is a well-established association founded in 1992, representing the largest public transport companies in Czech cities. The organization coordinates 22 major transport operators, including tram and trolleybus services, collectively transporting over 2.6 billion passengers annually. The website reflects a professional and consistent brand presence with active news updates and event calendars, targeting transport companies, partners, and the general public interested in Czech public transportation. Technically, the website uses a modern tech stack including Bootstrap 4, Font Awesome, Swiper.js, Owl Carousel, and Google Tag Manager, built on the niCMS platform. The site is mobile-optimized with good SEO practices and a cookie consent mechanism, though it lacks a published privacy policy and terms of service pages. Performance is moderate, and accessibility is basic. From a security perspective, HTTPS is enforced, and cookie consent is implemented, but security headers and incident response information are missing. The WHOIS data is unavailable, which slightly reduces trust but is mitigated by the professional site and active content. No vulnerabilities or suspicious content were detected. Overall, the site is credible and trustworthy with room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing privacy and security policies, adding security headers, and providing incident response contacts to enhance trust and compliance.

S

Simovision BV

simovision.com

47

Simovision BV is a Belgium-based company specializing in ophthalmology innovation, providing surgical products and capital equipment primarily to eye care professionals in Belgium and the Netherlands. The company operates a professional, multi-language website built on SilverStripe CMS, featuring a comprehensive product catalog, support tools, and customer service resources. The website demonstrates good content quality, clear navigation, and consistent branding aligned with its healthcare industry focus. Technically, the site uses modern front-end libraries and integrates analytics and marketing tools such as Google Analytics and HubSpot, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is addressed with a cookie consent banner and privacy policy, though no dedicated security or incident response policies are published. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is professional and trustworthy with room for security enhancements.

S

Salient Medical

salientmed.com

47

Salient Medical Solutions is a Canadian-based distributor specializing in advanced medical technologies and skincare products across multiple healthcare sectors including vision, aesthetics, skin science, wellness, and orthopedics. The company positions itself as a leader in providing world-class medical devices and clinical support to Canadian healthcare providers, emphasizing flexible payment plans and comprehensive customer service. Their digital presence is built on a WordPress platform with modern frontend technologies and integrated marketing and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and secure forms, though some security headers could be improved. The absence of WHOIS data is unusual but the website content and business information appear legitimate and professional. Overall, the site demonstrates strong business credibility and technical implementation with room for enhanced security practices.

A

ActivIT, s.r.o.

activit.sk

50

ActivIT, s.r.o. is a Slovak technology company with over 25 years of experience specializing in custom development of web and mobile applications, e-commerce platforms, and web presentations. The company serves a diverse client base including notable enterprises and organizations, positioning itself as a reliable partner for digital transformation projects. Their website reflects a professional and consistent brand image with a clear focus on technology services tailored to business needs. Technically, the site is built on Drupal 7 with a variety of JavaScript libraries enhancing user experience, although the CMS version is approaching end-of-life, which poses security risks. The company demonstrates good privacy compliance with GDPR-aligned cookie consent mechanisms and a comprehensive privacy policy. However, explicit security policies and incident response information are not publicly available, which could be improved. Overall, the website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

R

RONGATING spol. s r.o.

rongating.sk

52

RONGATING spol. s r.o. is a Slovak engineering company specializing in structural design and steel constructions, serving clients across the European Union. The company offers professional services including static calculations, preparation of construction and execution drawings, and the production and delivery of steel structures. Positioned as a reliable and experienced partner with over a decade of practice, RONGATING targets project designers, construction firms, and investors within the EU market. The website reflects a professional business model with clear service offerings and client references. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good SEO and GDPR compliance. Security posture is solid with HTTPS and reCAPTCHA integration, though some PHP warnings and lack of explicit security headers suggest room for improvement. Overall, the website is trustworthy, well-structured, and compliant with privacy regulations.

U

Urbasofia

urbasofia.eu

47

Urbasofia is a specialized urban and regional planning company established in 2011, offering expertise across Europe in urban development, policy design, and territorial cohesion. Their business model focuses on consulting, research, and managing EU-funded projects, targeting urban authorities, public administrations, and research consortia. The website reflects a professional and consistent brand with clear service offerings and a strong network of international partners. Technically, the site is built on WordPress with a modern but standard technology stack, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and shows minor issues such as deprecated PHP warnings and incomplete analytics configuration. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences but would benefit from improved security and privacy practices.

G

GAYA

gaya.sk

54

GAYA s.r.o. is a well-established Slovak telecommunications provider founded in 2004, serving the Turiec region with a broad portfolio of services including high-speed internet, digital television, telephony, and business IT solutions. The company positions itself as a regional leader with over 20 years of experience, targeting households, businesses, and local governments. Their website reflects a professional and consistent brand image, offering clear navigation and comprehensive service descriptions. Technically, the site is built on WordPress with modern libraries and frameworks, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced HTTP security headers and explicit security policies. Privacy compliance is partial, with a privacy policy and terms of service available but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

I

INFINITY GROUP a.s.

infinitygroup.sk

48

INFINITY GROUP a.s. is a Slovak manufacturing company specializing in the production of shaped cut parts and weldments for construction, mining machinery, rail vehicles, and handling equipment. Established in 2008, the company leverages advanced technologies such as laser, plasma, and oxygen cutting, CNC machining, bending, surface treatment, and welding to deliver high-quality products. The company holds multiple certifications including ISO 9001 and CE standards, reinforcing its commitment to quality and compliance. The website targets industrial clients and businesses in the manufacturing sector, positioning itself as a reliable regional manufacturer with a solid market presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Isotope, Owl Carousel, and Google Fonts. It employs performance optimizations such as lazy loading and caching via WP Rocket, and integrates GDPR-compliant cookie consent mechanisms through the Complianz plugin. The site is mobile-optimized and SEO-friendly, though some lazy loading images show errors which may affect user experience. From a security perspective, the site uses HTTPS with DNSSEC enabled and integrates Google reCAPTCHA v3 for bot protection. However, it lacks explicit HTTP security headers and does not provide a dedicated security policy or incident response contact. No vulnerabilities or malicious content were detected, but improvements in security headers and broken image fixes are recommended to enhance security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility. The domain registration data aligns well with the business claims, showing a consistent and legitimate online presence. Strategic recommendations include implementing security headers, fixing broken images, and adding explicit security and incident response information to further strengthen trust and security.

L

LL design interior, s.r.o.

lldesign.sk

57

LL design interior, s.r.o. is a Slovakian small business specializing in interior design services for residential and commercial spaces. The company offers comprehensive services including space measurement, detailed interior design, and advanced 3D visualizations with 360-degree views. With over 54 successful projects and a strong referral rate of 73%, LL design holds a reputable position in its local market. The website reflects a professional and consistent brand image, targeting property owners seeking aesthetic and functional interior solutions. Technically, the website is built on WordPress using modern frameworks such as Bootstrap and jQuery, supplemented by plugins for GDPR compliance, cookie management, and user interaction enhancements. Hosting is provided by WebSupport, with DNSSEC enabled and HTTPS enforced, indicating a secure and reliable infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site employs HTTPS, DNSSEC, Google reCAPTCHA on forms, and cookie consent mechanisms, demonstrating adherence to best practices. However, it lacks explicit security policies and incident response contacts, which could be improved. No vulnerabilities or suspicious activities were detected. Overall, LL design's website is a trustworthy, well-maintained digital presence that supports its business objectives effectively. Strategic enhancements in security transparency and additional HTTP headers could further strengthen its posture.

I

Imprex s.r.o.

imprex.sk

40

Imprex s.r.o. operates imprex.sk, an established Slovak online retail platform specializing in groceries, alcoholic and non-alcoholic beverages, household goods, and pet supplies. Founded in 2009, the company targets general consumers in Slovakia offering convenient home delivery and competitive pricing. The website demonstrates a mature e-commerce business model with a consistent brand presence and a comprehensive product catalog. Technically, the site is built on WordPress with WooCommerce, leveraging modern libraries and marketing tools such as Google Tag Manager and MailerLite. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and DNSSEC enabled, though additional security headers could enhance protection. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Contact information is transparent, though no explicit security or incident response policies are published. Overall, the website is trustworthy and professionally maintained, with moderate user tracking and advertising integrations. The content is safe for general and mature audiences, reflecting the inclusion of alcohol products. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing incident response contacts to further strengthen trust and compliance.

A

ACR, s.r.o.

kolibagoral.sk

55

Koliba GORAL is a traditional Slovak restaurant located in Donovaly, Slovakia, offering a wide range of traditional and seasonal dishes with a focus on quality ingredients and a gourmet experience. The business also provides event hosting services including weddings and corporate events, positioning itself as a local favorite with a long-standing tradition. The website reflects a professional and consistent brand image with good user experience and mobile optimization. Technically, the site uses modern frameworks such as Bootstrap 5 and integrates multiple third-party analytics and marketing tools including Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced but lacks advanced security headers and a published privacy policy, which are important for GDPR compliance. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional and trustworthy but would benefit from improved privacy and security practices.

Y

YVEX, s.r.o.

gothal.sk

45

Gothal is a hospitality resort located in Liptovská Osada, Slovakia, offering accommodation in cottages and apartments, wellness services, gastronomy, and various recreational activities. The resort targets nature lovers, families, and sports enthusiasts, positioning itself as a comprehensive destination for active relaxation near the Low Tatras. The website demonstrates a mature technical infrastructure with modern web technologies, integration of Google Tag Manager and reCAPTCHA for security and analytics, and a user-friendly reservation system. Security posture is strong with HTTPS and privacy compliance evident through cookie consent and GDPR-aligned privacy policies. However, there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-optimized for its audience.

M

MOL

mol.hu

68

MOL Magyarország is a leading energy and transportation company with a strong market presence in Hungary and surrounding countries. The company offers a wide range of services including fuel retail, lubricants, electric vehicle charging, corporate fuel supply, and innovative mobility solutions such as car sharing. The website reflects a mature enterprise with comprehensive service offerings targeting both individual consumers and corporate clients. The digital infrastructure is built on modern technologies like Vue.js and integrates essential analytics and marketing tools, demonstrating a good level of digital maturity. Security measures such as HTTPS, Google reCAPTCHA, and detailed cookie consent mechanisms are implemented, although some security headers could be enhanced. Privacy compliance is strong with clear policies and user consent options. Overall, the website is professional, trustworthy, and well-structured, supporting MOL's position as a reputable energy sector leader.

M

MOL Group

molgroupchemicals.com

57

MOL Group Chemicals operates as a key division within MOL Group, focusing on the production and distribution of polymers, monomers, and base chemicals. The company targets industrial clients in sectors such as automotive, packaging, and chemical manufacturing, positioning itself as a leading Central Eastern European chemical producer with a strong emphasis on sustainability and innovation. Their digital presence is supported by a modern technical infrastructure including Vue.js, jQuery, and integration with Google Analytics and Tag Manager, hosted on Microsoft Azure DNS. Security measures include HTTPS enforcement, CSRF tokens, and Google reCAPTCHA, alongside a comprehensive cookie consent mechanism and privacy policy aligned with GDPR standards. However, the site lacks explicit security policies and vulnerability disclosure information, which could be improved to enhance trust and compliance. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and established online presence.

H

Hrvatski Telekom d.d.

freshcorner.hr

58

Fresh Corner is a Croatian retail food and beverage brand specializing in quick-service offerings such as coffee, hot dogs, sandwiches, and bakery products, primarily located at INA fuel stations. The website reflects a medium-sized enterprise with consistent branding and a clear market position within the Croatian retail and hospitality sectors. The digital infrastructure employs modern web technologies including Google Analytics, Google Tag Manager, and Google Maps API, supporting a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement and CSRF protections, though some security headers and incident response details are absent. Privacy compliance is strong, featuring comprehensive cookie and privacy policies with user consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with the business's operational scope.

M

MOL Serbia

molserbia.rs

72

MOL Serbia operates as a regional energy and transportation company specializing in fuel retail, wholesale, lubricants, and automotive services. As part of the MOL Group, it maintains a strong market presence in Serbia with a focus on both consumer and business clients. The website reflects a professional corporate identity with clear navigation and relevant content tailored to its audience. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates common marketing and analytics tools including Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though DNSSEC is not enabled, representing a minor security gap. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and aligned with the business's operational scope.

M

MOL Slovenija

mol.si

60

MOL Slovenija operates as a key player in the energy and transportation sectors within Slovenia, offering a broad range of services including fuel retail, lubricants, automotive chemicals, and electric vehicle charging infrastructure. The company is part of the larger MOL Group, which enhances its market position and brand recognition. The website reflects a mature digital presence with modern technologies such as Vue.js and integration of multiple marketing and analytics tools. Security measures include HTTPS enforcement and Google reCAPTCHA, although explicit security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are comprehensive and GDPR compliant, with an effective consent mechanism in place. Overall, the website is professional, well-branded, and trustworthy, serving both consumer and business audiences effectively.

B

Beiersdorf

8x4.de

60

The website www.8x4.de is a professionally designed brand site for 8X4 deodorants, a product line under the Beiersdorf company. It targets German-speaking consumers with product information, marketing content, and social media engagement. The site demonstrates a mature digital presence with modern JavaScript libraries, consent management, and tracking tools integrated. The technical infrastructure is stable, hosted on professional nameservers, and employs HTTPS with good SSL configuration. Security posture is solid but could be improved by adding explicit security headers and incident response information. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and consent mechanism. Business credibility is high due to consistent branding, official social media links, and alignment with the Beiersdorf parent company. Overall, the site is safe, trustworthy, and suitable for general audiences.

M

MEZeroE H2020 Project

mezeroe-platform.eu

50

MEZeroE is a specialized platform focused on advancing zero energy building envelope technologies by connecting manufacturers, service providers, and research institutions. It offers a suite of services including open innovation, measurement and verification, and living laboratories to support product development and market readiness. The platform is supported by EU Horizon 2020 funding, enhancing its credibility and positioning within the European energy and construction sectors. Technically, the website is built on Drupal 9 with modern front-end libraries and integrates Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and some best practices, though improvements are needed in security headers and cookie consent compliance. Overall, the website presents a professional and trustworthy digital presence aligned with its business goals.

P

pixelmolkerei AG

pixelmolkerei.ch

60

pixelmolkerei AG is a specialized company providing advanced CGI, 3D visualization, and VR/AR/MR solutions primarily for the healthcare sector. With offices in Switzerland and Canada, they serve medical professionals and healthcare institutions by delivering immersive training and marketing content. Their market position is strong, supported by long-term partnerships with reputable healthcare companies and positive client testimonials. The website reflects a professional and modern digital presence with rich multimedia content and interactive features. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics for user tracking. Security posture is good with HTTPS and CAPTCHA on forms, but lacks some security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and well-designed but could improve compliance and security transparency.

M

MEZeroE H2020 Project

mezeroe.eu

53

MEZeroE is a European Union Horizon 2020 funded project focused on developing an open innovation ecosystem for nearly Zero Energy Building (nZEB) envelope solutions. The project aims to foster collaboration among stakeholders in the construction and energy sectors by providing a digital platform and marketplace to accelerate the deployment of energy-efficient building technologies. The website reflects a professional and well-structured digital presence, leveraging Drupal 9 CMS and modern web technologies, with strong branding consistency and clear navigation. It targets SMEs, larger companies, public authorities, and private citizens interested in sustainable building solutions. Technically, the site uses modern frameworks such as Bootstrap and jQuery, integrates Google Tag Manager for analytics, and employs Axeptio for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though there is room for improvement in publishing explicit security policies and incident response information. From a security and compliance perspective, the site shows good GDPR compliance with a comprehensive privacy policy and cookie consent mechanism. However, WHOIS data is unavailable due to privacy protection, which is justified given the nature of the project. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy and credible digital front for the MEZeroE project. Strategic recommendations include enhancing transparency by publishing a security policy and incident response contacts, adding a vulnerability disclosure or security.txt file, and implementing additional security headers to further harden the site against attacks.

I

Innolabb

innolabb.sk

54

Innolabb is a Slovak community and creative center focused on fostering innovation, technology education, and collaboration among students, startups, companies, and educational institutions. It operates as part of the SPACE centers network across several Slovak cities, providing access to technical equipment, workshops, and support for project realization. The website is built on WordPress using modern plugins and themes, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and DNSSEC enabled, though additional security headers and policies could enhance protection. Privacy compliance is addressed with clear cookie and privacy policies. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

V

VITAR Sport, s.r.o.

enervitsport.sk

60

VITAR Sport, s.r.o. operates the ENERVIT e-shop, a specialized online retailer focused on sports nutrition and compression clothing primarily targeting endurance athletes and sports enthusiasts in Slovakia and the Czech Republic. The company serves as the official distributor of the Enervit brand, offering a wide range of products designed to support athletic performance, energy replenishment, and recovery. The website is professionally designed with clear navigation, supporting a positive user experience and trustworthiness. Technically, the site leverages modern e-commerce frameworks, integrates multiple analytics and marketing tools, and employs security measures such as Google reCAPTCHA and cookie consent management. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Overall, the site demonstrates a solid security posture and business credibility, with no signs of blocking or WAF interference.

Data Project, operated by Genius Sports Italy Srl, is a well-established company founded in 2002 specializing in volleyball data analytics software. Their product suite includes tools for coaches, clubs, federations, and leagues to collect, analyze, and manage volleyball match data and video. The company holds a strong market position with significant adoption by national teams and federations worldwide. The website reflects a professional and consistent brand image, supported by testimonials and client logos from reputable volleyball organizations. Technically, the website is built on ASP.NET with Telerik UI components, hosted likely on Microsoft Azure, and integrates modern analytics and cookie consent solutions. Security posture is good with HTTPS enforced and domain registration protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is strong with a comprehensive Iubenda privacy and cookie policy implementation. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

B

BRNO BEACH OPEN 2021

brnobeachpro.cz

54

Brno Beach Pro is a well-established beach volleyball sports event based in Brno, Czech Republic, recognized as a leading regional tournament with international participation. The website provides comprehensive event information, schedules, results, ticketing, and sponsor details, targeting sports fans and volleyball enthusiasts. Technically, the site is built on WordPress with modern libraries and frameworks, offering good mobile responsiveness and SEO optimization. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and formal privacy policies. The absence of WHOIS data limits domain legitimacy verification, but the professional presentation and partner ecosystem support its credibility. Overall, the site is functional, trustworthy, and serves its audience effectively.

B

BIG STAR Jeans

bigstarjeans.sk

67

BIG STAR Jeans operates an official e-commerce platform focused on branded fashion apparel, primarily jeans, targeting the Slovak market. The website presents a professional and consistent brand image with clear contact information and a user-friendly shopping experience. The technical infrastructure leverages established web technologies including OpenCart CMS, Bootstrap, jQuery, and integrates advanced analytics and marketing tools such as Google Analytics and Facebook Pixel. Privacy compliance is robust, with a comprehensive cookie consent mechanism implemented via Cookiebot, reflecting adherence to GDPR requirements. Security posture is solid with HTTPS enforced and no evident vulnerabilities, although explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates a mature digital presence suitable for a medium-sized retail business.

H

HLMH Vertrieb UG

ismoker.eu

72

iSmoker.eu is a German-based e-commerce retailer specializing in e-cigarettes, e-liquids, and vaping accessories. Established in 2011, the company has built a solid market position with over 100,000 customers and is recognized for quality products and customer support. The website offers a comprehensive product catalog, detailed business information, and multiple trust signals including Trusted Shops certification and clear contact details. The target audience is adult smokers and vapers primarily in Germany and Europe. Technically, the site is built on Prestashop CMS, uses modern JavaScript libraries, and integrates Google Analytics and reCAPTCHA for security and analytics. The site is mobile-optimized and SEO-friendly with good navigation and content quality. Security posture is good with HTTPS enforced and use of CAPTCHA on forms, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant. Overall, the site is professional, trustworthy, and compliant with relevant regulations.

A

Avoria GmbH

avoria-liquids.de

49

Avoria GmbH is a well-established German manufacturer and retailer specializing in E-Liquids, E-cigarettes, and related vaping products. The company positions itself as a market leader in Germany with a strong focus on quality, safety, and customer satisfaction. Their e-commerce platform is built on the Shopware CMS, leveraging modern technologies and integrations such as Google Analytics, Hotjar, Klaviyo, and Chatra for marketing, analytics, and customer support. The website is professionally designed, mobile-optimized, and provides comprehensive product information and customer engagement features including live chat and detailed FAQs. Security posture is strong with HTTPS, secure cookies, and privacy compliance mechanisms in place, although there is room for improvement in publishing dedicated security policies and incident response information. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

V

Veranstaltungsservice Bamberg GmbH

kartenkiosk-bamberg.de

62

Kartenkiosk Bamberg is a well-established regional event ticketing and concert organization service operating primarily in northern Bavaria, Germany. The company, Veranstaltungsservice Bamberg GmbH, has over 30 years of experience and offers ticket sales, event organization, and customer support services. The website is professionally designed with clear navigation, mobile optimization, and integrates modern frontend technologies such as Bootstrap and jQuery. It also includes comprehensive legal documentation including privacy policy, terms of service, and cookie consent mechanisms, demonstrating a strong commitment to compliance and user privacy. Social media integration and active marketing tools like Google Analytics and Facebook Pixel are used responsibly with user consent.

R

RV Phönix Augsburg

rv-phoenix.de

43

RV Phönix Augsburg is a well-established German cycling club founded in 1893, focused on organizing cycling events such as the Schwarzbräupreis and providing training opportunities for cycling enthusiasts. The website serves as a community hub with event news, galleries, and team information, targeting local and regional cycling participants. Technically, the site is built on WordPress with a modern tech stack including jQuery, Font Awesome, and various plugins for event and map functionalities. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is adequate with HTTPS enforced but lacks advanced security headers and incident response information. Privacy compliance is basic with a GDPR privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its niche well.