Security Directory

OBT Shipping Group DMCC is a recognized maritime and logistics service provider primarily operating in Africa and headquartered in Dubai, UAE. The company offers a broad range of services including vessel agency, stevedoring, logistics, offshore oil & gas support, and mining & energy sector services. Their market position is strong within the African maritime logistics industry, supported by certifications such as TRACE and memberships in BIMCO and INTERTANKO. The website reflects a professional business presence targeting corporate clients and partners in the maritime and energy sectors. Technically, the website employs a mix of legacy and modern web technologies including jQuery 2.1.4, Google Fonts, and the Revolution Slider plugin. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Cookie consent is implemented with user choice options, indicating some level of privacy awareness, although a dedicated privacy policy page is missing. From a security perspective, the site uses HTTPS (implied by external scripts loaded over HTTPS) but lacks visible security headers and explicit incident response contacts. The absence of WHOIS data limits domain trust verification, but the presence of physical contact details, certifications, and social media profiles supports legitimacy. No critical vulnerabilities or adult content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website presents a credible and professional business front with room for improvement in privacy compliance, security hardening, and transparency of domain registration details.

C

Concept Clinic

cclinic.eu

64

Concept Clinic is a specialized healthcare provider based in Bratislava, Slovakia, offering plastic surgery, aesthetic dermatology, internal medicine, and cosmetic treatments. The clinic positions itself as an exclusive, high-end facility with a focus on patient wellness and beauty, leveraging advanced technology and expert staff. The website reflects a professional and consistent brand image with clear service offerings and patient-focused content. Technically, the site is built on WordPress using the Enfold theme, with integration of modern analytics and marketing tools such as Google Analytics and Facebook Pixel. While the site uses HTTPS and has no exposed sensitive data, it lacks some security headers and explicit security or incident response policies. Privacy compliance is partially addressed with a privacy policy hosted on a related domain and some cookie consent mechanisms, but no dedicated cookie policy page was found. Overall, the website is well designed, user-friendly, and trustworthy, with moderate tracking and advertising transparency.

A

Ampliando Democracia

ampliandodemocracia.org

56

Ampliando Democracia is a Spanish non-profit initiative focused on enhancing democratic participation through innovative citizen engagement methods. It operates under the umbrella of the think-and-do tank Political Watch and targets citizens, public administrations, and political parties interested in democratic innovation. The website is built on WordPress with modern technologies and includes GDPR-compliant cookie consent and privacy policies. The technical infrastructure is solid with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and domain transfer protection, though some security headers and policies could be improved. Overall, the website is professional, trustworthy, and aligned with its stated mission.

M

Moravský zemský archiv v Brně

mza.cz

60

Moravský zemský archiv v Brně is a Czech government archival institution providing public access to historical documents, research facilities, and archival care information. The website serves researchers, historians, and the general public interested in regional history and archival materials. It maintains a clear and consistent brand presence with official contact details and regularly updated news content. Technically, the site is built on WordPress with Elementor, uses HTTPS, and includes modern web fonts and icon libraries, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic but includes a cookie policy page. Overall, the site is trustworthy and professionally maintained, though WHOIS data is unavailable, likely due to registry policies.

T

Tržiště Pod Kaštany

trzistepodkastany.cz

46

The website trzistepodkastany.cz represents a local marketplace called "Tržiště Pod Kaštany" located in Zlín, Czech Republic. It focuses on offering a diverse range of regional food products and hosting community events that foster direct interaction between sellers and buyers. The business model is centered around a physical and digital marketplace promoting local and healthy food options, targeting local residents and tourists. The website content is well-structured, with clear navigation and a consistent brand presence, supported by social media channels on Facebook and Instagram. From a technical perspective, the site employs a variety of modern JavaScript libraries and plugins such as jQuery, fullcalendar, select2, and Google services including reCAPTCHA and Tag Manager. The site enforces HTTPS and includes a Content-Security-Policy header, indicating a baseline security posture. Performance and mobile optimization are adequate, though accessibility features could be improved. SEO is supported by proper meta tags and Open Graph data. Security-wise, the website benefits from HTTPS and basic security headers but lacks comprehensive security policies such as privacy, cookie, or vulnerability disclosure statements. No critical vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies represents a compliance gap, especially under GDPR regulations. Contact information is clearly provided, enhancing business credibility. Overall, trzistepodkastany.cz is a legitimate, small-scale local marketplace website with good content quality and technical implementation. To improve security posture and compliance, it is recommended to implement privacy and cookie policies, enhance security headers, and consider a vulnerability disclosure mechanism. These steps will strengthen trust and regulatory adherence while maintaining a positive user experience.

C

Conscribo

conscribo.nl

58

Conscribo is a Dutch company specializing in online administrative software tailored for associations and their boards. Their platform integrates bookkeeping, membership management, mailing, and other administrative functions into a single SaaS solution. The company targets small to medium-sized associations in the Netherlands, positioning itself as a niche provider with a focus on ease of collaboration among multiple users. Technically, the website is built on WordPress with Elementor and employs modern tracking and marketing tools, including Facebook Pixel and Google Tag Manager, alongside a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. The domain registration aligns well with the business profile, enhancing trustworthiness. Overall, the website presents a professional, well-structured, and user-friendly experience with good SEO and mobile optimization.

W

WeTransfer

wetransfer.com

70

WeTransfer is a well-established technology company specializing in online file transfer services, enabling users worldwide to send large files quickly and efficiently. Founded in 2007 and headquartered in the Netherlands, it holds a leading market position with a freemium business model offering both free and paid subscription plans. The website reflects a professional and modern digital presence with excellent content quality and user experience, targeting both general users and business customers. The technical infrastructure is robust, leveraging modern web technologies such as React and Next.js, hosted on Amazon AWS, and integrating secure payment processing via Stripe. The site demonstrates good performance, mobile optimization, and accessibility, supported by comprehensive SEO and metadata implementation. Security posture is strong with HTTPS enforced, appropriate security headers, and no detected vulnerabilities or exposed sensitive data. However, DNSSEC is not enabled, and no explicit security policy or vulnerability disclosure page was found, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, WeTransfer presents a low-risk profile with a high trustworthiness rating, suitable for professional and personal use. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding a security.txt file to enhance transparency and security readiness.

C

Consortium of Multiple Sclerosis Centers

mscare.org

52

The Consortium of Multiple Sclerosis Centers (CMSC) is a well-established non-profit organization dedicated to advancing clinical research, education, and advocacy in multiple sclerosis care. The website serves healthcare professionals, researchers, patients, and caregivers by providing continuing education, certifications, special interest groups, and annual meetings. CMSC holds a strong market position as a leading North American resource for MS care professionals, supported by partnerships with reputable organizations and a comprehensive offering of services.

C

Corgoň

corgon.sk

46

Corgoň.sk is the official website for the Slovak beer brand Corgoň, presenting brand information and product marketing targeted at adult consumers. The site enforces age verification to comply with legal requirements for alcohol-related content. The website is built on WordPress with common plugins such as Yoast SEO and uses Google Tag Manager for analytics. The presence of Heineken Slovakia domains in scripts suggests corporate affiliation. Privacy and cookie policies are implemented, supporting GDPR compliance. However, no explicit contact emails or phone numbers are provided, and no terms of service or security policy pages are found. The site uses HTTPS with good SSL configuration but lacks visible security headers in the provided data.

S

SCR Technologies

dealdone.online

49

Dealdone is a technology company offering a secure digital platform for creating and managing verbal agreements online. Their service targets individuals and small to medium businesses who need a simple, encrypted way to document deals such as loans, rentals, sales, and work agreements. The business operates on a subscription SaaS model with free, premium, and enterprise plans. Technically, the website is built on WordPress with Bootstrap and jQuery, providing a modern but moderately optimized user experience. The site is mobile-friendly and SEO-optimized but shows some backend PHP warnings that could affect security and professionalism. Security posture is moderate with HTTPS and encryption claims, but lacks visible security headers and explicit security policies. Privacy compliance is basic with privacy and terms pages but no cookie consent mechanism. Overall, the site is trustworthy but could improve in backend stability and security transparency.

H

Hanácký Večerník

hanackyvecernik.cz

54

Hanácký Večerník is a regional news media outlet focused on delivering news, interviews, cultural, sports, and societal information primarily for the Olomouc region in the Czech Republic. The website presents a well-structured and categorized content layout, targeting local residents and readers interested in regional affairs. The business model is based on online news publication supported by advertising, with evident partnerships for event promotion and ticketing. Technically, the site uses modern web technologies including Google Tag Manager for analytics, CookieYes for cookie consent management, and Google Fonts for typography. Hosting is provided by WEDOS, a Czech hosting provider, consistent with the domain registration data. The website is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with GDPR-aligned cookie consent and a basic privacy policy. Business credibility is supported by consistent branding, structured content, and social media presence. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy regional news source.

M

M+MP spol. s r.o.

infodnes.cz

47

InfoDnes.cz is a Czech regional media portal network operated by M+MP spol. s r.o., providing regional news, business directories, job listings, classifieds, and event calendars. The website serves a broad Czech audience interested in local information and services, positioning itself as a key regional media aggregator. The business model relies on advertising, affiliate marketing, and providing a platform for regional content and classifieds. Technically, the site uses modern web standards, Google Fonts, Google Analytics, and Google Adsense for monetization and analytics. The site is mobile optimized and includes privacy and cookie consent mechanisms in compliance with GDPR. Security posture is good with HTTPS and basic security headers, though some improvements are recommended. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the site's apparent operational legitimacy. Overall, InfoDnes.cz is a well-established regional media portal with a solid digital presence and compliance posture.

N

Nadační fond dětské onkologie KRTEK

krtek-nf.cz

55

Nadační fond dětské onkologie KRTEK is a well-established Czech non-profit foundation dedicated to supporting children with cancer. The foundation focuses on funding research, education, personalized treatment, and improving the quality of life for patients and their families. The website reflects a professional and consistent brand image, targeting donors, families, and volunteers. The technical infrastructure is based on WordPress with modern SEO and analytics tools, hosted behind Cloudflare DNS. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is trustworthy and provides clear pathways for engagement and support.

Š

Šance Olomouc o.p.s

sanceolomouc.cz

45

Šance Olomouc o.p.s is a small non-profit organization based in the Czech Republic, focused on social or community services. The website is built on WordPress using the Divi theme and incorporates Google Analytics for visitor tracking. The content is primarily in Czech and targets local community members. The technical infrastructure is moderate with basic mobile optimization and SEO features. Security posture is basic with HTTPS enabled but lacking security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional but could improve in transparency and security practices.

F

Filharmonie Bohuslava Martinů

filharmonie-zlin.cz

52

Filharmonie Bohuslava Martinů is a cultural institution based in the Czech Republic, focused on delivering classical music concerts and cultural events to the local community and classical music enthusiasts. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies such as Google Tag Manager and Font Awesome, with HTTPS enabled, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data due to privacy protection limits the ability to fully verify domain ownership and legitimacy. Overall, the security posture is moderate with room for improvement in privacy policies and security best practices. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

L

LiveFX

livefx.fr

40

LiveFX is a French company specializing since 2016 in the rental, provision, and sale of special effects for various types of events including festivals, concerts, corporate events, sports, and private occasions. The website serves as a basic informational and contact portal while a new site is under development. The company targets event organizers and professionals seeking specialized stage effects services. The business operates in a niche market with a small company size and a localized French presence. Technically, the website uses a modest technology stack including jQuery, Bootstrap, and Font Awesome, hosted on OVH infrastructure. The site is accessible via HTTPS and shows basic mobile optimization and SEO practices. However, it lacks advanced security headers, privacy policies, and analytics tools, indicating a low to moderate level of digital maturity. From a security perspective, the site benefits from HTTPS but lacks important security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No forms or data collection mechanisms are present, reducing immediate data protection risks. The WHOIS data aligns well with the website content and business claims, supporting legitimacy. No signs of malware, phishing, or adult content were detected. Overall, the website is functional but basic, with room for improvement in privacy compliance, security hardening, and content richness. Strategic enhancements in these areas would improve trustworthiness and regulatory adherence.

C

Concert Systemes

concert-systemes.com

46

Concert Systemes is a French audiovisual technical service provider specializing in sound, lighting, structures, video, and event engineering for spectacles and events. The company offers services including technical assistance, rental, sales, and installation, targeting event organizers and audiovisual professionals primarily in France. The website is built on Joomla CMS and incorporates modern web technologies such as Bootstrap and jQuery, with Google Analytics for visitor tracking. The site is accessible, mobile-optimized, and includes a cookie consent mechanism, but lacks privacy and terms of service pages. Security posture is moderate with HTTPS enabled but missing key security headers and no visible incident response or data protection policies. WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the website and business. Overall, the site demonstrates a good level of content quality and business credibility but requires improvements in security and compliance documentation.

Z

Zámek Wichterle

zamekwichterle.cz

44

Zámek Wichterle is a hospitality business based in the Czech Republic offering hotel accommodation and unique wellness services including a beer spa. The website presents a professional and modern design built on WordPress with the Divi theme, enhanced by SEO optimizations via Yoast and user consent management through Cookiebot. The technical infrastructure is solid with HTTPS enabled and integration of Google Tag Manager for analytics. However, the site lacks explicit privacy and terms of service policies, and no direct contact information is readily available, which may impact user trust and compliance. Security posture is moderate with SSL in place but missing security headers and vulnerability disclosure mechanisms. Overall, the business appears legitimate and consistent with its domain registration data, but improvements in compliance and security transparency are recommended.

H

Hotel VEGA, s.r.o.

hotelvega.cz

46

Hotel VEGA, s.r.o. operates a hospitality business located in Luhačovice, Czech Republic, offering accommodation, wellness, sports facilities, and event hosting services. The website targets tourists, families, seniors, and corporate clients, positioning itself as a regional hotel with a focus on wellness and family-friendly amenities. The business model centers on providing comprehensive hospitality services including lodging, wellness treatments, and recreational activities. Technically, the website employs a moderately modern technology stack including MooTools JavaScript framework, Google Fonts, Google Analytics, and Pikaday datepicker. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate, and the site uses HTTPS with cookie consent mechanisms, indicating a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent with categorized options. However, it lacks explicit security headers and a dedicated security policy or incident response contact information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is missing, which slightly reduces trustworthiness but does not significantly impact the overall security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations such as GDPR. The absence of WHOIS data and security policy details are areas for improvement. Strategic recommendations include implementing security headers, publishing a security policy, and providing incident response contacts to enhance trust and security posture.

M

Město Vizovice

mestovizovice.cz

51

Město Vizovice operates as the official municipal government website for the town of Vizovice in the Czech Republic. It provides residents and visitors with comprehensive information about the town, including news, events, contact details, and virtual tours. The site emphasizes community engagement and local services, positioning itself as a trusted source of municipal information. The website targets local citizens, tourists, and stakeholders interested in the town's activities and services. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and Google services such as reCAPTCHA and Tag Manager. The site is mobile-optimized, accessible, and performs moderately well. It integrates an AI chat widget to assist users, enhancing user experience. However, the CMS appears custom or based on the Nette framework, with no explicit commercial CMS detected. From a security perspective, the website uses HTTPS and Google reCAPTCHA to protect forms, but lacks published privacy and cookie policies, security headers, and incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the municipal nature of the site. Overall, the website is professional, trustworthy, and well-maintained but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

O

Obec Tlumačov

tlumacov.cz

10

Obec Tlumačov operates an official municipal website serving the local community in the Zlínský kraj region of the Czech Republic. The site provides comprehensive information including news, events, public documents, and contact points relevant to residents and visitors. The business model is focused on governmental and community service, positioning itself as a trusted local authority portal. The website is well-branded with consistent municipal logos and regularly updated content, reflecting an active and engaged administration. Technically, the site is built on WordPress with popular plugins such as Yoast SEO and Modern Events Calendar Lite, hosted on a Czech hosting provider. The infrastructure supports good mobile responsiveness and accessibility, with moderate performance. Security posture is solid with HTTPS enabled and no visible sensitive data exposure, though it lacks some security headers and formal security policies. Privacy compliance is partial, with cookie usage disclosed but no explicit privacy policy or consent mechanism. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

APSIS Lead operates as a technology-driven marketing platform specializing in lead management and marketing automation, providing users with a secure login portal. The website content is minimal, focusing primarily on user authentication without public-facing business or compliance information. The technical infrastructure leverages common web technologies including JavaScript, jQuery, Google Fonts, and tracking tools such as Google Analytics and ProspectEye. Hosting and domain registration are managed through reputable providers, with the domain established in 2015, aligning with the company's operational timeline. From a security perspective, the site employs basic best practices such as form POST methods and domain status locks to prevent unauthorized domain changes. However, it lacks DNSSEC, visible security headers, and explicit HTTPS enforcement details, indicating potential areas for security enhancement. Privacy and cookie policies are absent, which may impact GDPR compliance and user trust. No incident response or security contact information is provided, limiting transparency in security governance. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected but notable gaps in privacy compliance and security hardening. The absence of contact information and policies reduces business credibility and user confidence. Strategic improvements in security headers, privacy disclosures, and user communication channels are recommended to elevate trust and compliance standards.

N

NIDO Europe – HOME LAND DEVELOPEMENT

nidoeurope.org

45

NIDO Europe is a land development focused business operating in Europe, as indicated by the website title. The website is built on WordPress using the Salient theme, reflecting a basic but functional technical infrastructure. The site lacks comprehensive content, contact information, and privacy or cookie policies, which limits its digital maturity and trustworthiness. Security posture is minimal with no detected security headers or advanced protections, and WHOIS data is unavailable due to a malformed request or privacy protection, reducing transparency and trust. Overall, the website presents a basic online presence with room for significant improvements in security, compliance, and business credibility.

M

ML Promotion s.r.o.

mlpromotion.cz

45

ML Promotion s.r.o. is a Czech-based small creative agency founded in 2016, specializing in marketing, web development, graphic design, and multimedia services. The company targets local businesses seeking comprehensive digital marketing and creative solutions. Their website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. Technically, the site is built on WordPress using Elementor and integrates modern tools such as Cloudflare Turnstile captcha for form security and Google Analytics for tracking. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with a clear privacy policy and cookie management. Contact information is complete and transparent, enhancing business credibility.

R

Regina Schneiderová

uzmrzlinare.cz

46

U Zmrzlináře is a small local ice cream business based in Valtice, Czech Republic, operating since 2019. The website serves as an informational portal providing contact details, location, and social media links to customers. The business targets local residents and visitors seeking ice cream services. The site uses a simple technical stack including Bootstrap and Google Tag Manager for analytics, hosted by WEDOS, a Czech hosting provider. The website is basic in design and content but functional for its purpose. Security posture is minimal with no advanced headers or policies detected, and privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and consistency.

G

GO parking s.r.o.

goparking.cz

10

GO parking s.r.o. operates a parking service near Prague Airport, offering customers convenient parking options with online reservation capabilities, transfer services to the airport, and additional services such as car washing and electric vehicle charging. The company targets travelers, corporate clients, and travel agencies, positioning itself as a competitive local parking provider with attractive pricing and comprehensive service offerings. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in Czech with English support. Technically, the site employs modern analytics and tracking tools, including Google Analytics, Microsoft Clarity, and Google Tag Manager, alongside reCAPTCHA v3 for bot protection and a chatbot for customer interaction. Security posture is generally good with HTTPS enforced and secure forms, though the absence of visible security headers and incident response information suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness but does not detract significantly from the overall legitimacy of the business. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving transparency around domain registration.

F

Farma Ráječek

farmarajecek.cz

49

Farma Ráječek is a small, family-run local farm based near Brno, Czech Republic, specializing in the cultivation and sale of fresh vegetables such as salads and tomatoes. The business emphasizes ecological and sustainable farming practices, serving local consumers, restaurants, and retail outlets. The website reflects a well-structured, content-rich platform with clear branding and a focus on local community engagement. Technically, the site uses modern front-end libraries including jQuery, Bootstrap 4, and AOS for animations, hosted by a Czech hosting provider, and includes Google Analytics for visitor tracking. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the domain registration data aligns well with the business history, indicating legitimacy and trustworthiness.

D

Digital Journal Inc

digitaljournal.com

65

Digital Journal Inc operates a global media platform that elevates voices in the news cycle, with a strong presence online since 1998. The website serves as a content partner and news publisher, targeting a general audience interested in world news, business, technology, entertainment, and lifestyle. The company maintains a professional brand image with consistent branding and a comprehensive content offering. Technically, the site is built on WordPress CMS, leveraging modern optimization tools such as WP Rocket and Google Tag Manager, ensuring fast performance and excellent mobile optimization. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partially met with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy and professional but could improve transparency and security practices.

The website mo-je.cz represents a small Czech business specializing in technical SEO and online profile management services for platforms such as Firmy.cz, Mapy.cz, and Google Search. The business targets other companies seeking to improve their online visibility through sustainable SEO practices rather than paid advertising. The site is professionally designed with clear navigation and relevant content, though it lacks comprehensive privacy and cookie policies. Technically, the site uses modern web technologies including Google Tag Manager, Google Fonts, and Font Awesome icons, and appears mobile-optimized with moderate performance. Security posture is adequate but could be improved by adding security headers and formal policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and raising questions about domain registration legitimacy. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

H

Hockey Roanne

hockeyroanne.com

45

Hockey Roanne is a local sports organization focused on hockey, as indicated by the website content and branding. The website is currently under maintenance, providing basic contact information and links to ticketing and location services. The business targets local sports fans and community members interested in hockey events. The domain is well-established since 2009, consistent with a small sports club's history. Technically, the website is built on WordPress and uses common web technologies such as CSS, JavaScript, Font Awesome, and Google Fonts. Hosting is provided by OVH sas, a reputable provider. The site currently has basic mobile optimization and SEO features but lacks advanced accessibility and performance optimizations. The site uses a coming soon/maintenance plugin, limiting content availability. From a security perspective, the domain has protective status flags but lacks DNSSEC and visible security headers. No privacy or cookie policies are published, and no incident response or vulnerability disclosure information is available. The site does not appear to use analytics or tracking services, indicating minimal user tracking. Overall security posture is basic with room for improvement. The overall risk is moderate given the limited content and lack of advanced security or privacy features. Strategic improvements in security headers, privacy compliance, and content availability would enhance trust and user experience.

F

Fan Avenue

fanavenue.com

46

Fan Avenue is a French e-commerce retailer specializing in merchandising and derivative products related to music, cinema, TV series, and sports. Established since 2000, the company targets fans and collectors seeking licensed merchandise. The website is built on the PrestaShop platform, hosted by OVH sas, and integrates modern web technologies including Google Fonts, Google Maps API, and Google Tag Manager for analytics. The site is well structured with clear navigation and consistent branding, supporting a good user experience primarily for French-speaking audiences. From a technical perspective, the website employs HTTPS with a valid SSL certificate and domain status protections to prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and several recommended HTTP security headers are missing, which could be improved to enhance security posture. Privacy compliance is basic, with a privacy policy present but lacking explicit GDPR compliance details and no cookie consent mechanism detected. Security-wise, the site shows moderate maturity with no visible vulnerabilities or exposed sensitive data. The absence of a vulnerability disclosure policy or security contact channels indicates room for improvement in incident response readiness. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security practices to meet higher compliance standards. Strategic recommendations include enabling DNSSEC, implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, and establishing clear incident response contacts to strengthen trust and compliance.

J

Judarks World

judarks.com

46

Judarks World is a Ghana-based creative digital agency specializing in website development, social media management, brand identity, digital graphics, and IT support services. The company targets businesses seeking to enhance their digital presence and transform their visions into reality. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, positioning Judarks as a trusted small-sized agency in the technology sector. Technically, the website is built on WordPress using the Elementor page builder, leveraging modern web fonts and libraries such as jQuery and Font Awesome. Hosting is provided by StormerHost, and the site uses HTTPS with a valid SSL certificate. Mobile optimization and navigation clarity are good, though accessibility and SEO optimizations are basic. From a security standpoint, the site benefits from HTTPS and domain transfer protection but lacks important security headers and DNSSEC. There is no visible privacy or cookie policy, which presents compliance risks. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security governance. Overall, Judarks World presents a moderate risk profile with a solid business foundation but requires enhancements in privacy compliance and security best practices to strengthen trust and regulatory adherence.

3

Kvalitní informace v souvislostech - rozcestník - 3oko.cz

3oko.cz

50

3oko.cz is a Czech language content portal and news aggregator focused on alternative information, self-development, spirituality, and societal topics. The website serves a niche audience interested in deeper understanding and alternative perspectives on current events and personal growth. It operates as a thematic directory linking to articles, videos, and other media, curated and categorized for ease of navigation. The business model is content aggregation and education with a small-scale operation founded recently in 2024. Technically, the site is built on Joomla CMS with the Gantry 5 framework, using common JavaScript libraries such as jQuery and Awesomplete. It employs Google Fonts and Google Analytics for typography and analytics respectively. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. Hosting and domain registration are consistent with the Czech market and the website's content. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, but lacks visible security headers and explicit privacy or cookie policies. No contact information or incident response details are provided, which limits trust and compliance posture. The domain is newly registered but consistent with the website's nature and location. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is functional and well-structured for its purpose but would benefit from improved privacy compliance, security headers, and transparent contact information to enhance trust and regulatory adherence.

A

Agionet s.r.o.

facman.cz

56

FACMAN is a Czech Republic-based SaaS provider specializing in online inspection management software tailored for facility managers, inspection technicians, and companies managing multiple buildings and inspections. The platform offers features such as automated reminders, multi-building support, and PDF report generation, positioning itself as a niche player with a history rooted in facility management systems. The website is professionally designed, content-rich, and provides clear pricing and demo options, indicating an active and customer-focused business model. Technically, the website is built on a PHP and Nette framework stack with MySQL backend, enhanced by Google Fonts and Google Analytics for tracking. The presence of reCAPTCHA on forms indicates basic security measures. However, the absence of visible security headers and cookie consent mechanisms suggests room for improvement in security and privacy compliance. Performance and mobile optimization are adequate, supporting a good user experience. Security posture is moderate; HTTPS is implied but no advanced security headers were detected. The lack of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, although the website content and contact information appear professional and consistent. No privacy policy or cookie consent banner was found, which may impact GDPR compliance. Overall, the site is safe with no adult or questionable content. Strategic recommendations include enhancing security headers, implementing explicit privacy and cookie policies with consent mechanisms, improving WHOIS transparency, and establishing a vulnerability disclosure policy to strengthen trust and compliance.

T

The Burdett Trust for Nursing

nursingnow.org

64

The Nursing Now Challenge is a global non-profit initiative operated by The Burdett Trust for Nursing, focused on developing leadership opportunities for student and early career nurses and midwives worldwide. The website serves as a platform for information dissemination, networking, and resource sharing, positioning itself as a reputable program within the healthcare and non-profit sectors. Technically, the site is built on WordPress with modern plugins and integrations such as Google Analytics and reCAPTCHA, indicating a mature digital infrastructure. Security posture is strong with HTTPS and anti-bot measures, though it lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, with minor areas for improvement in security and privacy transparency.

I

I.C.E.I.D

iceid-gh.org

47

I.C.E.I.D is a specialized eye healthcare provider based in Ghana, focusing on digital health, imaging, diabetic, and paediatric eye care services. The company positions itself as a one-stop destination for comprehensive eye health solutions, leveraging modern digital health technologies and international standards. Their service offerings include eye imaging, diabetic eye care, paediatric care, glaucoma care, and general consultations, supported by a professional and skilled team. The website reflects a small but focused healthcare business with a clear mission and vision to improve eye care delivery in Africa.

W

Women’s Environment & Development Organization

wedo.org

54

Women’s Environment & Development Organization (WEDO) is a well-established global non-profit advocacy organization focused on promoting human rights, gender equality, and environmental integrity. Founded in 1991, WEDO operates internationally, engaging in advocacy, capacity building, and coalition development to influence global and national policies. The organization targets women's rights advocates, environmental activists, policymakers, and supporters of gender equality worldwide. Their business model centers on non-profit advocacy and movement building, supported by a strong digital presence and active social media engagement. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and Cloudflare DNS services. The site demonstrates good mobile optimization, clear navigation, and solid SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. The domain is long-standing, registered since 1996, consistent with the organization's history, and hosted securely with HTTPS enabled. From a security perspective, the site employs HTTPS and Cloudflare DNS but lacks DNSSEC and Content-Security-Policy headers, which are recommended for enhanced security. No sensitive data exposure or vulnerable libraries were detected. Privacy compliance is partial; while a comprehensive privacy policy exists, cookie consent mechanisms and GDPR compliance indicators are limited. No incident response contacts or vulnerability disclosure policies were found. Overall, WEDO’s website is professional, trustworthy, and content-rich, reflecting its mission and credibility. Security and privacy practices are adequate but could be strengthened to meet higher compliance standards. The site is safe for general audiences with no adult or explicit content. Strategic recommendations include implementing DNSSEC, CSP headers, cookie consent banners, and a security.txt file to improve security posture and compliance.

G

Global Knowledge

globalknowledge.com

76

Global Knowledge is a leading provider of IT training and certification services, operating under the Skillsoft brand. The company offers a broad range of instructor-led and e-learning courses targeting IT professionals and business users worldwide. Their market position is strong, supported by partnerships with major technology vendors and a comprehensive course catalog. The website reflects a mature digital presence with extensive marketing and analytics integrations, indicating a high level of digital maturity. Security posture is good with HTTPS and consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and well-optimized for its audience.

K

GreMi KLIMA | KONTEJNEROVÉ ŘEŠENÍ

kontejnerovereseni.com

47

The website kontejnerovereseni.com is a small business site focused on container solutions, primarily targeting a Czech-speaking audience. The domain was registered in 2022 and is hosted by a Czech provider, consistent with the website's language and apparent market. The site uses WordPress CMS with the Divi theme and integrates Google services such as Google Tag Manager and reCAPTCHA for analytics and bot protection. While the site is accessible and uses HTTPS with a valid SSL certificate, it lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy, cookie, or terms of service policies were found, indicating limited compliance with privacy regulations. Contact information and business legal details are not explicitly provided on the site, which may affect user trust and business credibility.

T

Taste, a.s.

digichef.cz

58

Digichef.cz is a Czech digital marketing magazine operated by Taste, a.s., providing up-to-date news, articles, and event coverage focused on SEO, PPC, social media, and other online marketing disciplines. The website targets marketing professionals and agencies, offering valuable content and a newsletter subscription to maintain engagement. The business is well-established with a consistent brand presence and transparent company information. Technically, the site runs on WordPress with modern SEO practices and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site demonstrates a professional and trustworthy digital presence with moderate to good technical maturity.

T

TKK spol. s.r.o.

truhlarstvitkk.cz

30

The website represents TKK spol. s.r.o., a small Czech woodworking and art business operating locally in České Budějovice. The business offers carpentry services and artistic painting and sculpture, targeting local customers interested in craftsmanship and art. The website content is minimal but relevant, with basic branding and navigation. Technically, the site uses legacy technologies such as jQuery 1.7.2 and Bootstrap CSS, hosted likely via WEDOS, a Czech hosting provider. The site lacks HTTPS and modern security headers, which poses security risks. Privacy and cookie policies are absent, and no contact information is directly provided on the homepage, limiting user trust and compliance. Google Analytics is used without visible consent mechanisms, indicating privacy compliance gaps. Overall, the site is functional but requires modernization and security improvements.

Y

YESCO

yesco.com

67

YESCO is a well-established company specializing in custom electric signs, lighting, and billboard services since 1920. The company offers a broad range of services including design, manufacturing, installation, maintenance, and repair of signage and lighting solutions, targeting businesses and organizations seeking quality signage. The website demonstrates a mature digital presence built on WordPress with modern plugins and technologies, providing a professional user experience with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and use of Google Tag Manager, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of clear privacy and cookie policies. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the overall business credibility remains high due to consistent branding, social media presence, and detailed service offerings. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and compliance.

C

Chambre des Métiers du Luxembourg

cdm.lu

79

The Chambre des Métiers du Luxembourg website serves as the official online presence of the governmental chamber representing craftsmen and small businesses in Luxembourg. It provides information and services related to business registration, training, and advocacy. The site targets professionals and businesses within Luxembourg, positioning itself as a key institutional resource. Technically, the website is built on Joomla CMS and leverages modern web technologies including Google Fonts, Cookiebot for cookie consent, and multiple analytics platforms such as Google Analytics and Pirsch. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and explicit security policies. The absence of WHOIS data limits domain trust analysis, though the .lu domain and content suggest legitimacy. Overall, the website demonstrates a moderate to good security posture and privacy compliance, with room for improvement in transparency and security best practices.

M

Made In Luxembourg

made-in-luxembourg.lu

47

Made In Luxembourg is a certification and promotional platform established in 1984 to identify and promote products and services originating from Luxembourg. It operates under the auspices of the Luxembourg Ministry of Foreign Affairs, the Chamber of Commerce, and the Chamber of Trades. The website serves as a directory and informational resource for over 1,800 labelled companies, providing news, company portraits, and guidance on obtaining the label. The target audience includes Luxembourg-based businesses and consumers seeking locally certified products and services. Technically, the site is built on WordPress with modern SEO practices and uses Google Analytics for visitor insights. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and explicit policies are absent. The WHOIS data is unavailable due to malformed domain queries, which limits domain registration trust analysis. Overall, the site is professional, trustworthy, and well-structured, supporting its role as a local certification authority.

S

SINCLAIR Global Group s.r.o.

sinclair-lighting.cz

55

SINCLAIR Global Group s.r.o. operates the Sinclair Lighting website, specializing in manufacturing and designing advanced LED lighting fixtures and systems. Their offerings target a professional audience including architects, project designers, investors, and installation firms, focusing on energy-efficient, photobiologically safe LED lighting solutions for various sectors such as education, healthcare, industrial, and public lighting. The company emphasizes quality, innovation, and compliance with modern standards including healthy lighting concepts aligned with human biorhythms. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and Google services such as Tag Manager and Analytics. The site is built on Pagio CMS and demonstrates good mobile responsiveness and user experience. Privacy compliance is robust with a detailed cookie consent mechanism and a comprehensive privacy policy in Czech. However, the absence of WHOIS data and security headers indicates areas for improvement in transparency and security hardening. Security posture is moderate; HTTPS is assumed but no explicit security headers were detected. No incident response or vulnerability disclosure information is provided, which could be a gap in security readiness. The site shows no signs of malicious content or adult material, maintaining a professional and safe environment. Overall, the website presents a credible and professional business front with good privacy practices but would benefit from enhanced security policies, transparency in domain registration, and improved technical security controls to strengthen trust and compliance.

F

Firebase

firebase.com

62

Firebase is a comprehensive mobile and web app development platform owned by Google, offering a wide range of cloud-based services and tools to developers worldwide. It holds a strong market position as a trusted platform backed by Google, serving millions of businesses and developers. The website reflects a mature digital infrastructure with modern technologies, excellent design, and clear navigation, supporting a high-quality user experience. Security posture is robust, leveraging Google's infrastructure and HTTPS enforcement, though explicit security policy and incident response contacts could be improved. Privacy compliance is well addressed through Google's comprehensive policies and cookie consent mechanisms. Overall, Firebase's online presence is professional, credible, and aligned with enterprise standards.

R

REFRESHER Media, s.r.o.

refresher.cz

66

REFRESHER.cz is a well-established Czech lifestyle and news media platform operated by REFRESHER Media, s.r.o., founded in 2013. It targets the modern generation with diverse content including lifestyle, culture, tech, sports, and news. The platform offers premium subscription services, e-commerce, and multimedia content, positioning itself as a leading media brand in the Czech and Slovak markets. Technically, the website employs modern web technologies, including JavaScript frameworks, AMP components, and Cloudflare for hosting and DNS, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, consent management, and reputable ad and tracking networks, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, good privacy compliance, and a trustworthy domain registration history, making it a reliable and mature online media presence.

I

ISTI MIRANT STELLA

isti-mirant-stella.com

9

ISTI MIRANT STELLA is a small French publishing house specializing in the publication of poetry collections, essays, and documents related to music and correspondence. The website presents a professional and artistic image, targeting a niche audience interested in literary and musical works. The business model revolves around direct online sales through a Squarespace-powered boutique. Technically, the website is built on the Squarespace platform, leveraging standard web technologies and fonts, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced headers like HSTS and formal privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and presentation suggest a genuine small publisher. Overall, the site is functional and trustworthy from a user perspective but would benefit from improved compliance and domain registration transparency.

P

Pan Commonwealth Forum on Open Learning

pcf11.org

62

The website pcf11.org serves as the official platform for the Eleventh Pan-Commonwealth Forum on Open Learning (PCF11 2025), an educational event organized by the Commonwealth of Learning in partnership with Botswana's Ministry of Higher Education and Botswana Open University. It targets educators, policymakers, researchers, and stakeholders across Commonwealth countries, focusing on open and distance learning to foster inclusive and sustainable education. The site provides detailed event information, speaker profiles, and partner acknowledgments, reflecting a well-structured and professional presence. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and CoBlocks, ensuring good SEO and user experience. Hosting is managed by GoDaddy, with HTTPS enabled and basic performance optimizations. However, DNSSEC is not enabled, and security headers are absent, indicating room for security enhancements. Privacy compliance is partial, with privacy and terms policies linked from the parent organization but lacking a cookie consent mechanism. Security posture is moderate; the domain is protected with registrar locks, and SSL is properly configured. No forms or sensitive data collection points are present on the homepage, reducing attack surface. However, the absence of explicit security policies and incident response contacts limits transparency. Overall, the site is trustworthy and professional but would benefit from improved security and privacy practices. Strategically, the site supports a significant educational event with a clear mission and reputable partnerships. It effectively communicates its purpose and maintains consistent branding. The lack of direct contact information and cookie consent are minor drawbacks that can be addressed to enhance user trust and compliance.

T

The Nemours Foundation

kidshealth.org

64

Nemours KidsHealth is a well-established, physician-reviewed children's health information website operated by The Nemours Foundation, a reputable non-profit healthcare organization. The site provides trusted health and parenting advice targeted at parents, kids, teens, and educators, with content available in English and Spanish. It holds a leading market position as the most visited children's health site on the web, offering comprehensive educational resources and wellness center information. The website demonstrates consistent branding and high content quality, reflecting its authoritative status in the healthcare education sector. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies including jQuery and Adobe's tag management system, complemented by PostHog analytics for user behavior tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is generally good with HTTPS enforced and domain transfer protections in place, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a clear privacy policy but no visible cookie consent mechanism. Security-wise, the site shows maturity with no visible vulnerabilities or exposed sensitive data. However, it lacks published security policies and incident response contacts, which could be improved to enhance trust and compliance. Overall, the site is safe, professional, and trustworthy, with no adult or questionable content detected. Strategically, Nemours KidsHealth should focus on enhancing privacy compliance by implementing cookie consent and publishing security policies. Enabling DNSSEC and security headers would strengthen technical security. These improvements will support continued trust and regulatory adherence while maintaining its leadership in children's health education online.