Security Directory

D

DAV NORDIC A/S

davnordic.se

63

DAV NORDIC A/S is a medium-sized Nordic company specializing in traffic safety and sustainable steel infrastructure solutions. The company offers project-optimized products focusing on economy, work environment, and quality, targeting infrastructure and transportation sectors primarily in Denmark and Sweden. Their website is professionally designed, multilingual, and provides clear contact information and product categories. Technically, the site is built on WordPress, uses Google Tag Manager and Cookiebot for analytics and consent management, and is hosted on Danish DNS servers. Security posture is good with HTTPS enforced and cookie consent implemented, though DNSSEC is not enabled and some security headers are missing. No explicit security or incident response policies are published. The domain is well-established since 2016, consistent with the business profile, and shows no suspicious patterns. Overall, the website is trustworthy, compliant with GDPR, and provides a good user experience.

N

NETION

netion.cz

46

NETION is a specialized marketing agency focused on the construction sector in the Czech Republic, offering marketing and consulting services to companies involved in building houses and supplying materials, technologies, and services. The website presents a professional digital presence built on WordPress with the Divi theme and enhanced SEO via Rank Math. The technical infrastructure is modern but lacks visible advanced security headers and explicit privacy or terms of service documentation, which are important for compliance and trust. The absence of WHOIS data raises concerns about domain registration legitimacy, impacting overall trustworthiness. Strategic recommendations include improving security posture, publishing clear privacy and terms policies, and verifying domain registration details to enhance credibility.

IHZ.pl is a Polish publishing company specializing in industry-specific publications and advertising services. The company operates multiple subdomains for different publications, targeting industry professionals and businesses. The website is professionally designed using WordPress and Elementor, hosted by OVH SAS, and demonstrates a moderate level of digital maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly provided, enhancing business credibility.

Česká peleta is a Czech Republic-based informational and promotional website focused on wood fuel heating solutions, including pellets, briquettes, and wood. The site provides comprehensive content on heating technologies, product catalogs, certifications, and industry news, targeting consumers interested in modern, ecological heating options. The business is well-established with a domain age since 2010 and maintains partnerships with numerous industry members and certifications such as ENplus®. Technically, the website is built on WordPress with common web technologies and includes tracking via Google Analytics, Facebook SDK, and Seznam Retargeting. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced but lacks security headers and explicit privacy and cookie policies, indicating room for compliance and security improvements. Overall, the website is trustworthy and professional, with no signs of blocking or adult content, making it safe for general audiences.

CSTfire s.r.o. is a Czech-based company specializing in biomass combustion technology, providing environmentally friendly heating solutions primarily for industrial and agricultural clients. Their product portfolio includes small and large series biomass boilers, conveyor systems, and fuel conditioning services. The company positions itself as a CO2-neutral energy provider aiming to reduce fossil fuel dependency. Technically, the website is built on WordPress with a moderate performance profile and uses common plugins for anti-spam, gallery, and cookie consent management. Security posture is solid with HTTPS and anti-spam measures, though lacking published security policies and incident response contacts. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the website content and business information appear professional and trustworthy. Overall, the site demonstrates good privacy compliance and user experience, with clear contact information and GDPR adherence.

N

Nutrend World

nutrendworld.cz

42

Nutrend World operates a multifaceted hospitality and wellness complex in the Czech Republic, offering services including hotel accommodation, restaurant dining, fitness, wellness, massages, and congress facilities. The website is professionally designed with multilingual support and targets a general audience interested in health, fitness, and leisure. The business appears established since 2017 with consistent domain registration data. Technically, the website is built on WordPress with modern analytics and marketing tools integrated, including Google Analytics, Matomo, Hotjar, and Facebook Pixel. The site is mobile optimized and SEO friendly but lacks explicit privacy and terms of service pages in the provided content. Security posture is adequate with HTTPS enabled and cookie consent implemented, though security headers are not evident. Overall, the site is trustworthy and professionally maintained.

Techfood.cz is a Czech-language website focused on manufacturing operations, likely in the food technology sector. The site is built on WordPress and uses a variety of plugins including WPBakery Page Builder and Slider Revolution to enhance content presentation. The technical infrastructure is modern but lacks some advanced security headers and privacy compliance features. The absence of WHOIS data and contact information reduces the overall trustworthiness and business credibility of the site. No privacy or cookie policies were found, indicating potential compliance gaps. The website is accessible without WAF or security challenges, and content is safe for general audiences.

T

Today is Life

todayislife.de

41

The website 'Today is Life' currently displays a maintenance page with minimal content and no business description or contact information. The site is built on WordPress using a maintenance plugin and includes basic styling and fonts. The technical infrastructure includes HTTPS with no visible security headers, and no analytics or advertising scripts are present. The lack of privacy, cookie, and terms of service policies indicates low privacy compliance. The WHOIS data is limited, showing only domain status and nameservers consistent with a German hosting provider, but no registrant details or domain age information are available. Overall, the site is accessible but under construction, with low content and business credibility.

A

Antum Digital Agency

antum.nl

64

Antum Digital Agency is a specialized Dutch digital agency focused on WordPress development, UX research, web design, and custom online solutions. With over 13 years of experience, the company serves organizations primarily in the Netherlands, offering tailored websites, webshops, and portals. Their small, expert team emphasizes direct client communication and high-quality deliverables. Technically, the website is built on WordPress with modern tools like Yoast SEO, Google Tag Manager, Microsoft Clarity, and CookieYes for consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are absent. Overall, the site demonstrates strong compliance with GDPR and accessibility standards, good SEO, and professional branding. The domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

S

Safeway Gangway |

safewaygangway.com

51

The website safewaygangway.com appears to represent a small business established in 2018, likely operating in a niche sector not explicitly detailed in the available content. The site is built on WordPress using the Divi theme and is hosted with DNS services provided by Cloudflare. The technical infrastructure is moderately modern but lacks advanced security configurations such as DNSSEC and security headers. The site uses Google Site Kit, indicating integration with Google Analytics for visitor tracking. However, the website lacks critical compliance documents such as privacy and cookie policies, terms of service, and explicit contact information, which impacts its trustworthiness and regulatory compliance. The content quality is minimal, with mostly technical CSS and style data visible, suggesting either incomplete content or a heavily styled but content-light site.

S

SiteOrigin

siteorigin.com

60

SiteOrigin is a well-established provider of free and premium WordPress themes and plugins, founded in 2004. The company offers a suite of tools including a drag-and-drop Page Builder, Widgets Bundle, CSS editor, and premium addons under SiteOrigin Premium. Their market position is strong within the WordPress ecosystem, supported by over 2.5 million installs and active community engagement through forums and social media. The website is professionally designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content for WordPress users and developers. Technically, the site runs on WordPress with a modern tech stack including jQuery, Google Analytics, Google Tag Manager, and Cloudflare DNS services. The site uses HTTPS with a good SSL configuration but lacks DNSSEC. Performance is moderate with good mobile optimization. SEO and accessibility are basic to good, with room for improvement in accessibility features. From a security perspective, the site benefits from HTTPS and domain registration protections but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is limited as no explicit privacy or cookie policies were found, and GDPR compliance is not clearly indicated. Contact information such as emails or phone numbers is not explicitly provided, which may impact user trust. Overall, SiteOrigin presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in privacy compliance, security policy transparency, and contact information availability would enhance their security posture and user trust.

U

Urp in Cloud | Software gestione Urp

urpincloud.it

67

Urp in Cloud is a specialized software solution designed to streamline the management of requests, complaints, and communications primarily for public administrations, private companies, and the healthcare sector in Italy. The platform offers a centralized communication channel with intelligent routing, real-time notifications, and an AI-powered virtual assistant to enhance operational efficiency and user experience. The company positions itself as a modern SaaS provider with a focus on compliance with Italian public sector regulations and PNRR investment requirements. Technically, the website is built on WordPress with a modern theme and integrates privacy-conscious analytics and security features such as HTTPS and Google reCAPTCHA Enterprise. While the site lacks explicit security and incident response policies, it demonstrates good security hygiene and privacy compliance. Overall, the business shows a credible market presence with consistent domain registration data and a professional online presence.

S

SafeRisk

saferiskmanagement.com

67

SafeRisk is an Italian-based company offering a specialized risk and compliance management software platform designed to assist businesses in data collection and risk mitigation. The website presents a professional and well-structured digital presence built on WordPress, utilizing modern plugins and technologies such as Yoast SEO, Google reCAPTCHA Enterprise, and Matomo analytics. The platform targets businesses seeking comprehensive risk management solutions, positioning itself as a niche SaaS provider in the technology sector. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness. Security measures such as HTTPS and bot protection are in place, but the lack of visible security headers and formal privacy and terms policies indicate areas for improvement. Overall, the website is functional and professional but requires enhanced transparency and security practices to strengthen trust and compliance.

W

Wavefront Systems Limited

wavefront.systems

58

Wavefront Systems Limited is a specialized technology company focused on advanced sonar systems for underwater detection and navigation. The company positions itself as a world leader in sonar specialist technology, targeting businesses and organizations requiring precise underwater detection solutions. Their website reflects a professional and consistent brand image, emphasizing engineering excellence and innovation in sonar technology. The business model is primarily B2B, offering specialized sonar technology services and products. Technically, the website is built on WordPress using the Divi theme, supplemented by plugins for SEO, GDPR compliance, and anti-spam protection. The site demonstrates moderate performance and good mobile optimization, with a modern tech stack including Google Tag Manager and FontAwesome. SEO practices are well implemented with proper metadata and structured data. From a security perspective, the site uses HTTPS with good SSL configuration and employs anti-spam and cookie consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a moderate to good security posture and business credibility, with privacy compliance well addressed. The lack of publicly available WHOIS data due to privacy protection is typical for technology companies and does not raise immediate concerns. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility features to further strengthen trust and compliance.

A

Art Jameel

hayyjameel.org

56

Hayy Jameel is a prominent arts complex and creative hub located in Jeddah, Saudi Arabia, developed and managed by Art Jameel. The organization focuses on fostering culture-oriented communities by hosting exhibitions, cinema events, learning programs, residencies, and cultural festivals. The website reflects a well-established non-profit entity with a clear mission to promote arts and culture in the region. Technically, the site is built on WordPress with modern frameworks and libraries, ensuring good performance, mobile optimization, and SEO compliance. Security posture is solid with HTTPS enforcement and domain locking, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is basic, with cookie and terms of use policies present but lacking consent mechanisms. Overall, the site is professional, trustworthy, and serves its target audience effectively.

B

Bradford Museums and Galleries

bradfordmuseums.org

54

Bradford Museums and Galleries operates as a public cultural institution managing four key venues in the Bradford District, UK. The organization focuses on providing museum exhibitions, art galleries, educational programs, and community engagement activities targeted at families, students, and art/history enthusiasts. The website reflects a well-established entity with a domain age dating back to 2004, consistent with its institutional nature. Technically, the site is built on WordPress using Elementor and Rank Math SEO, with Cloudflare DNS and HTTPS enabled, indicating a modern and secure infrastructure. However, explicit privacy and cookie policies are not detected, which may impact compliance and user trust. The security posture is good with HTTPS and domain transfer protections, but lacks visible security headers and DNSSEC. Overall, the website is professional, accessible, and content-rich, serving its audience effectively while leaving room for improvements in privacy compliance and security best practices.

J

Jameel Arts Centre

jameelartscentre.org

60

Jameel Arts Centre is a prominent independent cultural institution based in Dubai, dedicated to contemporary art exhibitions, educational programs, and community engagement. Supported by Art Jameel, it holds a strong market position as a leading hub for contemporary art in the UAE, offering diverse services including exhibitions, commissions, venue hire, and a retail shop. The website reflects a professional and well-branded digital presence with rich content targeting art enthusiasts, educators, students, and the general public. Technically, the website is built on WordPress with modern frameworks like Uikit and integrates essential marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enabled and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is basic with policies present but no explicit cookie consent mechanism. Overall, the security posture is adequate for a cultural institution but could be improved by enabling DNSSEC, enhancing cookie consent, and publishing explicit security and incident response policies. The domain registration is consistent and trustworthy, supporting the legitimacy of the organization. The website content is safe for general audiences with no adult or explicit material. Strategic recommendations include improving DNS security, enhancing privacy compliance, and formalizing security policies to strengthen trust and compliance in an increasingly regulated digital environment.

T

Techfood s.r.o.

automatizacevpotravinarstvi.cz

52

The website automatizacevpotravinarstvi.cz serves as the official platform for the 'Automatizace v potravinářství' conference, a specialized event focusing on automation in the food and beverage manufacturing sector in the Czech Republic. The organizing entity, Techfood s.r.o., is a small-sized company with a stable presence since 2013. The site provides detailed conference information, including program schedules, partner listings, registration forms, and contact details, targeting industry professionals interested in technological advancements in food production automation. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Slider Revolution, and Contact Form 7, with integration of Google reCAPTCHA for form security. The hosting and domain registration are managed by REG-WEDOS, a Czech provider, ensuring regional consistency. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. From a security perspective, the site employs HTTPS and basic spam protection but lacks advanced security headers and published security policies or incident response contacts. Privacy compliance is minimal, with no dedicated privacy policy or terms of service pages, though a cookie consent banner is present. No vulnerabilities or malicious content were detected. Overall, the website is professional and trustworthy for its niche audience but would benefit from enhanced privacy documentation, security policies, and accessibility improvements to strengthen compliance and user trust.

L

Lean Industry

leanindustry.cz

46

Lean Industry is a Czech-based consulting company specializing in lean manufacturing, Industry 4.0, and management consulting services. With over 15 years of experience, they target industrial and manufacturing firms to improve operational efficiency and reduce costs. Their website reflects a professional and consistent brand image, offering services such as management consulting, lean production methods, and tailored education programs. The company presents itself as a trusted partner with client testimonials and a broad portfolio of client logos. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies including jQuery, Google Tag Manager, and Mailchimp for marketing automation. The site is mobile-optimized and includes accessibility and SEO best practices. Security measures include HTTPS enforcement and CAPTCHA protection on contact forms, although some security headers are missing. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy, which slightly impacts trustworthiness. Overall, Lean Industry's digital presence is professional and secure, supporting their business model effectively. Strategic improvements in security headers and domain transparency would enhance their security and credibility further.

O

OLTIS Group

irfc.eu

66

The International Railway Forum & Conference (IRFC) website represents a well-established event organizer, OLTIS Group, focusing on the European railway and transport sector. The site provides comprehensive information about the conference, including speakers, sponsors, venue, and ticketing. The business is positioned as a key player in the international rail event market, supported by government patronage and European institutions, enhancing its credibility and reach. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and Google Maps API. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. However, some technical improvements could be made in accessibility and performance optimization. From a security perspective, the site uses HTTPS and employs Google reCAPTCHA for forms, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. No critical vulnerabilities or suspicious content were found. Overall, the website presents a moderate risk profile with good business credibility but room for improvement in security and privacy compliance. Strategic enhancements in security policies, cookie consent, and security headers would strengthen trust and compliance.

C

CE-PA spol. s r.o.

konferencefenomen.cz

45

The website konferencefenomen.cz represents CE-PA spol. s r.o., organizing the Fenomén business conference series in the Moravia region of the Czech Republic. It is positioned as the largest business conference on Moravia, focusing on business, HR, innovation, and AI, targeting professionals and elites in the Czech business community. The site offers event information, video recaps, photo galleries, and ticket sales via WooCommerce. The business model centers on event organization and ticketing services. The domain is relatively new, created in 2022, consistent with the conference's recent editions.

D

DKSV

dksv.cz

48

DKSV.cz is a professional website dedicated to organizing and promoting transportation-related events, specifically the Dopravní konference (Transportation Conference) and Silniční veletrh (Road Trade Fair) held in Pardubice, Czech Republic. The site targets industry professionals, government officials, and companies involved in transportation infrastructure. It offers event information, registration options, and showcases partners and media collaborators. The business operates primarily as an event organizer with a regional focus and a small organizational size, founded in 2022. Technically, the website is built on WordPress using the Divi theme, enhanced with SEO tools like Yoast and analytics platforms including Matomo and Google Analytics via Google Tag Manager. The site demonstrates good mobile optimization, structured data usage, and moderate performance. Hosting is provided by hosting90, a Czech hosting provider. From a security perspective, the site enforces HTTPS and employs a GDPR-compliant cookie consent mechanism with detailed user controls. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, DKSV.cz presents a trustworthy and professional online presence for its niche event business. Strategic improvements in security headers, incident response transparency, and visible contact information would enhance its security posture and user trust. The site is safe for general audiences and complies well with privacy regulations.

Z

Z-Group bus a.s.

karierazavolantem.cz

42

Z-Group bus a.s. is a well-established transportation company in the Czech Republic, operating since 1992. It provides a wide range of bus transportation services including regional, urban, and international routes, serving millions of passengers annually. The company also focuses on recruitment and career opportunities for bus drivers across multiple regions. The website reflects a professional and consistent brand image with clear business information and partner affiliations. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie management and Google Analytics integration. Security posture is strong with HTTPS and reCAPTCHA, though some security headers could be improved. The absence of WHOIS data limits domain trust verification but does not detract from the overall legitimacy of the business. Strategic recommendations include enhancing security headers, adding a terms of service page, and publishing a security.txt file for vulnerability disclosures.

J

JV Press

jvpress.cz

52

JV Press is a Czech media and press agency specializing in regional news, emergency services, transportation, and local events. The website serves a general audience interested in up-to-date regional information across multiple Czech regions. The business operates primarily as a news publisher and media partner, with a focus on delivering timely and relevant content. Technically, the site is built on WordPress, leveraging common plugins and libraries such as jQuery, Font Awesome, and Google Fonts, hosted by Wedos, a Czech hosting provider. The site demonstrates moderate performance and good mobile optimization, with a consistent and professional design. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is limited, with no privacy policy or terms of service found, though a cookie consent mechanism is implemented. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security documentation to improve compliance and user trust.

M

Munck

munck.dk

56

Munck is a well-established Danish nationwide construction and infrastructure group specializing in road construction, district heating, sewer networks, electrical and fiber networks, unique construction projects, and harbor facilities. The company targets business and public sector clients within Denmark, leveraging over 25 years of domain presence and experience. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the site is built on WordPress with Elementor, incorporating modern web technologies and cookie consent management via Cookiebot. The site is mobile-optimized and SEO-friendly, though some improvements in accessibility and security headers could be made. Security posture is solid with HTTPS and consent management but lacks explicit security policies and vulnerability disclosure mechanisms. Overall, Munck presents a credible and trustworthy digital presence aligned with its business operations.

S

SR-Gruppen – sinusrumleriller – kalkstabilisering – cementstabilisering – specialfræsning

sr-gruppen.dk

43

SR-Gruppen is a specialized Danish company focused on road construction and maintenance, offering niche services such as sinusrumleriller, cement and lime stabilization, BSM, Remix, and soil treatment. Their website presents a professional image with clear service offerings and a focus on industry-specific solutions. The company targets businesses and professionals in the transportation and infrastructure sectors. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a modern CMS with SEO considerations. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy policy page found. WHOIS data is unavailable, limiting domain trust verification. Overall, the website is professional and trustworthy but could improve in privacy transparency and security best practices.

D

DAV NORDIC A/S

davnordic.dk

61

DAV NORDIC A/S is a Danish company specializing in traffic safety, noise reduction, poles, and steel infrastructure solutions. Established in 2016, it holds a leading position in the Danish transportation infrastructure sector, offering project-optimized solutions focusing on economy, work environment, and quality. The company targets businesses and public sector entities involved in infrastructure and traffic safety. The website is professionally designed using WordPress CMS, enhanced with performance tools like WP Rocket, and integrates modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though improvements can be made by enabling DNSSEC and adding security headers. No critical vulnerabilities or suspicious patterns were detected. Overall, the website reflects a trustworthy and credible business presence with good technical maturity and compliance practices.

I

ITS Teknik

its-teknik.dk

53

ITS Teknik is a Danish company specializing in traffic safety, traffic planning, and traffic registration. They provide advanced traffic technology solutions including traffic signals, ITS systems, and various traffic monitoring and control equipment. The company targets municipalities and transportation authorities in Denmark, positioning itself as a trusted specialist in the traffic technology sector. Their website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on WordPress using modern themes and plugins, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks some advanced security headers and incident response information. Privacy and cookie policies are present, though cookie consent mechanisms could be improved. WHOIS data is unavailable, limiting domain trust analysis, but the overall site and business presentation suggest legitimacy.

G

GC Rieber Minerals

gcrieber-salt.com

58

GC Rieber Minerals is a Norwegian-based company specializing in the supply and development of mineral and salt products for diverse markets including road maintenance, fishery, aquaculture, industrial applications, food production, and agriculture. The company emphasizes sustainability and circular economy principles, positioning itself as a partner for businesses seeking innovative and environmentally responsible mineral solutions. Their portfolio includes well-known brands such as Norsal and Stradasalt, which cater to premium salt products and de-icing solutions respectively. The company operates across multiple Nordic countries with detailed contact points and a professional online presence. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and WPBakery Page Builder, with integrations for GDPR compliance and map services. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain is missing, which raises concerns about domain registration transparency and legitimacy. Despite this, the website content and branding are consistent and professional, mitigating some risk. Privacy and cookie policies are comprehensive and GDPR compliant, supporting the company’s commitment to data protection. Overall, GC Rieber Minerals presents a credible and professional business front with a strong focus on sustainability and customer engagement. Security and compliance practices are good but could benefit from enhanced transparency in domain registration and additional security headers.

W

WhistleSystem ApS

whistlesystem.com

69

WhistleSystem ApS is a Danish technology company founded in 2020, specializing in providing secure, simple, and compliant whistleblower systems primarily targeting businesses seeking to implement whistleblower compliance solutions. The website is professionally designed using WordPress with the Divi theme and integrates multiple marketing and analytics tools such as HubSpot, Google Analytics, and Cookiebot for GDPR compliance. The company positions itself as a trusted provider in the whistleblower compliance market with a focus on security and simplicity. Technically, the website is hosted with Amazon Registrar and uses AWS DNS servers, with HTTPS enabled and a moderate performance profile. Security posture is generally good, though improvements can be made by enabling DNSSEC and adding explicit security headers. Privacy compliance is supported by a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. Overall, the website is safe, professional, and trustworthy with no adult or questionable content detected.

N

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o.

nanlitomerice.cz

44

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o. is a Czech Republic-based medium-sized company specializing in construction and infrastructure projects, particularly railway construction, bridge and wall structures, and civil engineering works. Established in 2001, the company has a solid market presence and offers comprehensive project documentation and construction services. The website reflects a professional and consistent brand image, targeting construction industry clients and infrastructure developers. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder, Slider Revolution, and Complianz GDPR for compliance. It integrates Google Tag Manager and Google reCAPTCHA for analytics and security. The hosting is provided by cesky-hosting.eu, and the site shows moderate performance with good mobile optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but it lacks explicit security headers and uses an outdated jQuery version, which could pose risks. No exposed sensitive data or vulnerabilities were detected in the HTML content. Privacy compliance is strong with a comprehensive GDPR policy and cookie management. Overall, the website is trustworthy and professionally maintained, with recommendations to update JavaScript libraries and enhance security headers to improve the security posture further.

J

JK Machinery s.r.o.

jk-machinery.cz

41

JK Machinery s.r.o. is a Czech-based manufacturing company specializing in the design and production of agricultural machinery and technology solutions. With over 30 years of experience, the company offers comprehensive services including equipment manufacturing, technology design, installation, and after-sales support. Their market presence spans 42 countries with a strong client base exceeding 2500 satisfied customers. The website reflects a professional and consistent brand image, targeting agricultural businesses and food industry enterprises globally. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and utilizes popular analytics and marketing tools including Google Analytics, Facebook Pixel, and Hotjar. The site is mobile-optimized and demonstrates good SEO practices. Hosting is provided by Active24, a reputable provider, and the site uses HTTPS with a valid SSL certificate ensuring secure communications. From a security perspective, the site employs Google reCAPTCHA on its contact forms to mitigate spam and abuse. However, it lacks explicit security headers and does not provide a public security policy or incident response information. Privacy and cookie policies are present and indicate GDPR compliance, though more detailed data retention policies are not disclosed. No vulnerabilities or suspicious content were detected during analysis. Overall, JK Machinery's website is a well-maintained digital asset that supports its business objectives effectively. The security posture is solid but could be enhanced by implementing additional security headers and publishing incident response and vulnerability disclosure policies. The company demonstrates strong business credibility and international reach, making it a trustworthy entity in its sector.

C

Chládek & Tintěra, a.s.

cht.cz

48

Chládek & Tintěra, a.s. is a well-established Czech construction company specializing in railway, bridge, civil engineering, and related construction services. With over 35 years of experience and a workforce of approximately 380 professionals, the company holds a leading position in the Czech construction market. Their website showcases a comprehensive portfolio of projects, career opportunities, and detailed company information, reflecting a mature and professional business model focused on transportation and infrastructure sectors. Technically, the website is built on WordPress using the Mioweb3 theme, enhanced with SEO and GDPR compliance plugins such as Yoast SEO and Complianz. The site integrates modern analytics tools including Google Analytics 4 and Facebook Pixel, and employs Google Consent Mode to manage user privacy preferences effectively. The site is mobile-optimized and demonstrates good performance and SEO practices. From a security perspective, the website enforces HTTPS and uses cookie consent management, but lacks some recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable gap, reducing the overall trust score and suggesting a need for further domain registration verification. Overall, the website presents a secure, compliant, and professional digital presence for a large construction firm. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture further.

S

SBS Cargo

sbscargo.cz

36

SBS Cargo is a traditional forwarding company established in 2012, specializing in rail and maritime transport services. The company leverages generational knowledge in forwarding and transport sectors, serving clients primarily in energy, coal, steel, wood, paper, chemical oil, and industrial products. Their market position is that of a small but established player with a focus on traditional and reliable logistics solutions. The website reflects a professional and consistent brand image with clear service offerings and partner affiliations. Technically, the website is built on WordPress with Bootstrap and jQuery, optimized for mobile devices and SEO-friendly through the Yoast SEO plugin. Hosting appears to be provided by Webglobe, consistent with the domain's nameserver information. Performance is moderate with good design quality and navigation clarity, though accessibility features are basic. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, indicating compliance gaps with GDPR and other regulations. No contact information or incident response details are present on the homepage, limiting transparency. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and clearer contact and incident response information to improve trust and regulatory adherence.

T

TRCZ s.r.o.

trcz.cz

56

TRCZ s.r.o. is a Czech manufacturing company specializing in automotive safety components such as multifunctional controllers and seat belts. Established in 2003 as a subsidiary of the Japanese Tokai Rika Co., Ltd., it serves major automotive manufacturers with a focus on quality and safety. The company operates a modern factory in Lovosice and holds recognized certifications including ISO 9001 and IATF 16949, underscoring its commitment to quality management. The website reflects a professional digital presence built on WordPress with Elementor, providing clear business information and compliance with GDPR through a dedicated privacy policy page. However, contact details are not prominently displayed on the homepage, and cookie consent mechanisms are absent.

Ú

Ústecká komunitní nadace

komunitninadace.cz

58

Ústecká komunitní nadace is a well-established non-profit community foundation based in Ústí nad Labem, Czech Republic, with roots dating back to 1993. The organization focuses on supporting local community projects through grants and donations, aiming to improve the quality of life in the Ústecký region. Their website reflects a professional and consistent brand image, providing clear information about their mission, donors, and supported projects. The foundation maintains active partnerships with reputable organizations and has a visible presence on major social media platforms. Technically, the website is built on WordPress using the Elementor framework, incorporating modern web technologies such as Google Analytics, Facebook Pixel, and lazy loading for images. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site uses HTTPS with a strong SSL configuration but lacks several recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear GDPR and cookie policies, including consent mechanisms. However, the site does not publish explicit security policies, incident response contacts, or vulnerability disclosure information, which could be areas for future enhancement. Overall, the website presents a trustworthy and credible image for a non-profit organization, with a solid technical foundation and good privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen their digital maturity and risk posture.

F

FW Africa

foodbusinessafrica.com

47

Food Business Middle East & Africa, operated by FW Africa, is a leading media publication and event organizer focused on the food and beverage industry across Africa and the Middle East. The website serves as a comprehensive platform providing industry news, insights, and advertising opportunities targeting business owners, CEOs, and professionals in the sector. It holds a strong market position as the No.1 food and beverage industry magazine and website in the region, supported by a consistent brand presence and professional content quality. Technically, the website is built on WordPress using the Pressbox theme and Divi Builder framework, integrating modern technologies such as Google Tag Manager, Google Analytics, Matomo Analytics, and advanced advertising plugins. The site demonstrates good performance, mobile optimization, and SEO practices, ensuring a positive user experience and accessibility. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes essential security headers. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Overall, the website presents a low-risk profile with a mature digital presence, though the lack of WHOIS data and some security policy disclosures slightly reduce trustworthiness. Strategic recommendations include publishing security and incident response policies, adding vulnerability disclosure information, and enhancing transparency around data protection officers to strengthen compliance and trust.

Q

Questex

questex.com

60

Questex is a well-established information and events company founded in 2002, focusing on the experience economy across hospitality, healthcare, technology, and wellness sectors. The company operates multiple tradeshows, newsletters, and branding programs to connect professionals and businesses. Their market position is strong, supported by acquisitions such as Affordable Housing Finance and Multifamily Executive. The website is professionally designed using WordPress and Elementor, with good mobile optimization and SEO practices. The technical infrastructure includes modern web technologies and Cloudflare DNS, though DNSSEC is not enabled. Security posture is moderate with HTTPS enabled but lacks some security headers and published security policies. Privacy compliance is good with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy and business credible, though improvements in security practices are recommended.

S

Stölting Service Group

stoelting-gruppe.de

62

Stölting Service Group is a well-established German company specializing in cleaning, security, and personnel services. With a history spanning over 125 years, it holds a strong market position as one of the leading nationwide service providers in Germany. The company offers tailored service solutions to businesses, enabling clients to focus on their core operations. The website reflects a professional and consistent brand image, supported by certifications such as VdS and Ecozert 2024, enhancing trust and credibility. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating modern technologies like Google Maps API and Borlabs Cookie for privacy compliance. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and privacy mechanisms in place, but could be improved by adding explicit security headers and publishing security policies. No WAF or blocking mechanisms were detected, allowing full content access. Contact information is clearly provided, including phone, email, and physical address. However, the absence of a visible privacy policy and terms of service on the homepage slightly impacts privacy compliance scores. Overall, the site demonstrates a strong business credibility and a secure, professional digital presence.

T

tiptop GROUP

tiptop-group.de

51

tiptop GROUP is a German-based company specializing in comprehensive building and industrial cleaning services, including facility maintenance and security services. The website presents a professional image with clear service offerings and multiple subsidiary brands, positioning itself as a regional expert in the real estate services sector. The technical infrastructure is modern, leveraging WordPress with Elementor, Google Tag Manager, and performance optimization plugins, indicating a mature digital presence. Security posture is adequate with HTTPS and anti-spam measures, but lacks published privacy policies and incident response contacts, which are critical for compliance and trust. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

B

Bonifatius Verlag

bonifatius-verlag.de

60

Bonifatius Verlag is a German publishing company specializing in socially relevant, spiritual, and biographical literature. Their website offers an e-commerce platform for book sales, targeting readers interested in life guidance, social sciences, and spirituality. The company positions itself as a niche publisher with a focus on positive and warm-hearted content. Technically, the website is built on WordPress with WooCommerce and German Market plugins, providing a solid e-commerce infrastructure. The site is mobile-optimized and features a professional design with clear navigation. Security-wise, the site uses HTTPS and some security best practices but lacks comprehensive security headers and visible security policies. Privacy compliance is minimal with no explicit privacy or cookie policies found. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

D

Der Dom

derdom.de

71

Der Dom is a German-language regional religious news magazine operated under the Bonifatius GmbH publishing group. It provides independent, high-quality journalism focused on the Erzbistum Paderborn community, offering subscription-based print and digital content, newsletters, and event information. The website demonstrates a mature digital infrastructure built on WordPress with modern SEO and accessibility features. Security posture is solid with HTTPS, cookie consent management, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

E

Event Engine CMS Ltd

eventengine.tv

66

Event Engine CMS Ltd is a specialized web development company focused on delivering custom web applications and software solutions for the events industry. Founded in 2016 and based in Great Britain, the company offers a range of products including a CMS platform (Rondayvoo CMS), live streaming and networking solutions (Rondayvoo Live), and AI-powered content assistants (Rondayvoo AI). Their market position is that of a niche provider trusted by notable event brands and professional conference organizers. The website reflects a professional and consistent brand image with excellent content quality and clear service offerings. Technically, the website is built on WordPress using modern frameworks such as the Bricks theme builder and The SEO Framework plugin. It employs standard web technologies including JavaScript, jQuery, and integrates Google Analytics and Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, though performance is moderate. Hosting appears to be via NameCheap, consistent with the registrar information. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, the contact form's Google reCAPTCHA implementation is broken due to an invalid site key, which poses a risk of spam. Additionally, security headers are not detected, and there is no visible incident response or vulnerability disclosure information. Privacy and cookie policies are present and appear GDPR compliant. Overall, the website demonstrates a solid business credibility and technical maturity with minor security and compliance gaps. Strategic improvements in security controls and transparency would enhance trust and reduce risk.

The website 'eefhsrv.com' represents 'Event Engine', a technology platform focused on event services. The site is built on WordPress with a basic but consistent branding and content structure. It leverages modern web technologies including Bootstrap and Google Analytics, indicating a moderate level of digital maturity. However, the content is minimal, with no privacy policy, terms of service, or contact information readily available, which limits transparency and user trust. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published policies. Overall, the site is functional but would benefit from enhanced compliance and security documentation to improve trust and regulatory adherence.

B

BlockMark Technologies Ltd

blockmarktech.com

48

BlockMark Technologies Ltd operates a specialized certificate management platform called BlockMark Registry, targeting organizations and individuals involved in certification processes. The company leverages cloud and blockchain technologies to provide secure, efficient, and user-friendly digital certificate issuance, management, and verification services. With a growing user base and extensive certificate records, BlockMark positions itself as a trusted player in the digital credential space. Technically, the website is built on WordPress with modern SEO and security plugins, including Yoast SEO and Google reCAPTCHA. The site is well-structured, mobile-optimized, and integrates analytics for performance monitoring. However, some security headers are missing, and cookie consent mechanisms are not explicitly implemented, which could be improved for better compliance. Security posture is solid with HTTPS enforced and anti-bot protections in place, but the absence of published security policies and incident response information limits transparency. The WHOIS data is unavailable, which slightly reduces trust but is mitigated by clear company registration details and active social media presence. Overall, the website and business demonstrate a professional and credible presence with room for enhancement in privacy compliance and security transparency.

E

edie

edie.net

68

edie is a UK-based media platform specializing in sustainability news, resources, and events aimed at empowering sustainable business practices. The website offers a variety of content including news articles, podcasts, case studies, and webinars, targeting business professionals interested in sustainability and net-zero initiatives. The platform is positioned as a reputable source within the sustainability sector, supported by a consistent brand presence and active social media channels. Technically, the site is built on WordPress with modern web technologies such as jQuery and Google Tag Manager, and it employs advertising and tracking services like AdvertServe and Lytics. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Security-wise, HTTPS is enforced, and cookie consent mechanisms are in place, but explicit security headers and policies are not clearly identified. WHOIS data is unavailable, likely due to privacy protection, which is common for media businesses but slightly reduces transparency. Overall, the site is professional, content-rich, and trustworthy with room for improvement in security and privacy disclosures.

T

theTribe

advenir.mobi

45

Advenir.mobi is the official website for the Advenir program, a French national initiative led by Avere-France to finance electric vehicle charging infrastructure. The program targets individuals, professionals, and public entities, providing financial incentives to accelerate the deployment of EV charging points across France. The website offers comprehensive information about the program, including eligibility, project definition, installer directories, and news updates. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses SEO best practices, accessibility features, and cookie consent mechanisms. Security posture is generally good with HTTPS and consent management, but the domain's expired status and lack of DNSSEC are notable risks. Overall, the site is professional, trustworthy, and well-positioned to serve its audience, though domain renewal is critical to maintain trust and availability.

Triagonale is a small, professional design studio based in Germany specializing in product and communication design. Their services include product design, editorial design, web design, and spatial design, targeting businesses and organizations seeking tailored design solutions. The website is well-structured, visually appealing, and demonstrates a strong commitment to GDPR compliance with comprehensive privacy and cookie policies. Technically, the site is built on WordPress with modern plugins and shows good mobile optimization and SEO practices. Security posture is solid with HTTPS and email obfuscation, though additional security headers and explicit security policies could enhance protection. Overall, the site reflects a trustworthy and professional business presence with room for technical and security improvements.

N

netzGiraffe

netz-giraffe.de

38

netzGiraffe is a German-based digital agency specializing in web development, e-commerce solutions, and online strategy consulting. The company leverages popular CMS platforms such as WordPress, Drupal, and TYPO3, alongside e-commerce systems like Prestashop, Woocommerce, and Shopware. They also develop custom portals using the Symfony framework. The website presents a professional image with clear service offerings and client references, targeting businesses seeking comprehensive online presence and digital solutions. Technically, the site is built on WordPress with modern libraries including jQuery and Bootstrap, and employs SEO best practices via Yoast SEO. Hosting is provided by a German hosting provider, consistent with the company's regional focus. Security posture is solid with HTTPS enabled and spam protection plugins in use, though some security headers and explicit policies are missing. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the website is well-structured, performant, and trustworthy, reflecting a mature small business digital presence.

Konzertbüro Leipzig, operating under the agency name SADLERMUSIC since 2002, is a small German event management company specializing in organizing live concerts across various genres. The company offers comprehensive services including event planning, PR, technical and gastronomic support, and ticketing. The website is built on WordPress with a focus on event calendar management and SEO optimization, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit privacy policies. Overall, the website is professional and functional but could improve in privacy compliance and contact transparency to enhance trust and security.