Security Directory

H

Herragarðurinn

herragardurinn.is

63

Herragarðurinn is an established Icelandic menswear retailer founded in 2005, offering a wide range of branded clothing, shoes, and accessories through both physical stores and an online Shopify-based e-commerce platform. The website is professionally designed with good navigation, mobile optimization, and clear branding, targeting men interested in quality fashion apparel. The business also provides custom tailoring services under a related domain. Technically, the site leverages modern web technologies and Shopify's infrastructure, ensuring good performance and user experience. Security posture is solid with HTTPS enforcement and form protection via hCaptcha, though explicit security headers and dedicated security policies are absent. Privacy and cookie policies are present and indicate GDPR compliance. Contact information is clearly provided, including company email, phone, and social media links. Overall, the website reflects a credible and trustworthy retail business with room for security enhancements.

P

Púls

pulsmedia.is

61

Púls is a small Icelandic company founded in 2021, specializing in providing innovative advertising solutions aimed at maximizing ad impact across the advertising sector. The website presents a professional and modern design built using the Framer platform, with a focus on clear messaging targeted at advertising professionals. The technical infrastructure leverages HTTPS and Google Fonts, hosted with DNS managed by Google Domains, but lacks advanced DNS security features such as DNSSEC. Security posture is moderate with HTTPS enabled but missing important security headers and policies. No privacy or cookie policies are present, and no contact or incident response information is provided, which limits compliance and transparency. Overall, the domain registration data is consistent with the business claims, supporting legitimacy.

The website vegashero2.com appears to be related to gambling or casino services, as indicated by the domain name and website title 'Vegashero'. However, the actual website content is largely inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge, specifically the Turnstile captcha, which blocks automated access and limits content visibility. The technical infrastructure is modern, utilizing Angular framework and Cloudflare for DNS and hosting, with integration of Google Tag Manager and cookie consent mechanisms. Despite this, the absence of visible privacy policies, terms of service, and contact information significantly reduces transparency and user trust. The WHOIS data is suspicious, showing a domain creation date in the future (May 2025), which is inconsistent and undermines legitimacy. Security posture is moderate but lacks DNSSEC and security headers, which are recommended for enhanced protection. Overall, the site presents a moderate technical maturity but suffers from critical trust and compliance gaps due to limited accessible content and questionable domain registration data.

The Lancet website represents a leading global medical journal operated under Elsevier, providing high-quality scientific research and healthcare information. The site targets healthcare professionals, researchers, and policy makers, offering a subscription-based publishing model. Technically, the site employs modern JavaScript frameworks, performance monitoring tools like New Relic, and cookie consent management via OneTrust, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and privacy compliance, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

S

Společnost Hyposervis Consulting a.s.

hyposervis.cz

62

Hyposervis Consulting a.s. is a well-established mortgage intermediary in the Czech Republic, operating since 1998. The company specializes in mortgage brokerage, particularly for new development projects, and offers comprehensive services including insurance and real estate negotiation assistance. Their strong market position is supported by long-term partnerships with banks and a reputation for handling complex cases. Technically, the website is built on the Solidpixels CMS platform, utilizing modern web technologies and providing a responsive, accessible, and SEO-optimized user experience. Security posture is good with HTTPS enforced and secure form handling, though some security headers and policies could be improved. Privacy compliance is strong with clear cookie consent and GDPR-aligned privacy policies. Overall, the business credibility is high, supported by transparent contact information and trust signals. However, the absence of WHOIS data reduces domain registration trustworthiness and should be investigated further.

K

Kardiolitos klinikos

kardiolitosklinikos.lt

60

Kardiolitos klinikos is a prominent private healthcare provider in Lithuania, operating multiple clinics across major cities including Vilnius, Kaunas, Klaipėda, Šiauliai, and Utena. The website presents a professional image with comprehensive information about their medical services, targeting patients seeking private medical care. The business model focuses on offering specialist consultations, diagnostics, and rehabilitation services, positioning itself as a leading private medical center in the region. Technically, the site uses modern CMS technology (EasyWeb 4), integrates Google Tag Manager and Cookiebot for analytics and privacy compliance, and employs Google Fonts for typography. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, additional security headers could enhance protection. The absence of WHOIS data for the .lt domain limits domain trust analysis but does not detract from the site's apparent legitimacy. Overall, the site demonstrates a mature digital presence with strong privacy compliance and a secure posture appropriate for a healthcare provider.

N

Nanotrix

nanotrix.ai

29

Nanotrix is a technology company specializing in artificial intelligence solutions, originating as a spin-off from the Faculty of Mechatronics at the Technical University of Liberec. The company focuses on developing AI-powered systems such as recommendation engines and chatbots, leveraging proprietary language and vectorization models. Their market position is that of a niche AI provider with strong academic and industry partnerships, targeting businesses seeking to harness AI capabilities. Technically, the website is built on WordPress with modern themes and plugins, optimized for mobile and accessibility, though lacking some advanced security headers and privacy compliance features. Security posture is generally good with HTTPS enforced, but improvements are recommended in privacy policy visibility and security headers. Overall, the website is professional and trustworthy, with clear contact information and partner references, but could enhance compliance and security transparency.

T

Televize Přerov s.r.o.

tvprerov.cz

47

Televize Přerov s.r.o. is a small regional media company based in the Czech Republic, specializing in local news, video reports, and live TV streaming focused on the city of Přerov and its surroundings. The website serves residents and visitors interested in timely local information and event coverage. The business operates primarily as a media content provider with a focus on digital news delivery and community engagement through social media channels. Technically, the website is built on WordPress CMS with a modern plugin ecosystem including Jetpack and TD Composer, ensuring a good level of content management and user experience. The site is mobile optimized and uses HTTPS, but performance is moderate and accessibility features are basic. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and visible anti-CSRF protections on login forms. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk under GDPR. Overall, the domain registration data is consistent with the business claims, showing a legitimate and established local media presence. Strategic improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

R

Replica Watches - Acheter Swiss Meilleure Fausse Rolex De Luxe

wherewatches.com

55

The website www.wherewatches.com operates as an e-commerce platform specializing in the sale of replica Swiss luxury watches, particularly counterfeit Rolex models. The site targets French-speaking customers seeking low-cost alternatives to genuine luxury watches. The business model is focused on replica watch sales, positioning itself in a niche market with questionable legality due to the counterfeit nature of the products. The website uses WordPress with WooCommerce and the Astra theme, indicating a standard e-commerce technical infrastructure with moderate performance and basic mobile optimization. SEO is supported by Yoast SEO plugin, but no advanced analytics or tracking services are detected. Security posture is weak, with no detected security headers or privacy policies, and the domain WHOIS data is missing, raising concerns about legitimacy and trustworthiness. Overall, the site lacks transparency and formal compliance documentation, which may impact customer trust and regulatory compliance.

D

DVOŘÁK PAINTBALL

dvorakpaintball.cz

40

DVOŘÁK PAINTBALL is a small local entertainment business based in the Czech Republic specializing in paintball and Nerf activities. The company offers a variety of event packages including birthday parties, team building, and special celebrations, supported by equipment rental and an indoor bar. The website is professionally designed using WordPress with Elementor and WooCommerce, providing a functional online reservation system and clear contact information. Technically, the site uses modern web technologies and is hosted likely by WEDOS, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance documentation. Overall, the business appears legitimate and well-positioned in its local market niche.

T

TBS Design Gallery

tbsdesigngallery.com

55

TBS Design Gallery is a specialized luxury home design showroom located in Santa Clara, California, offering a curated selection of high-end products including custom cabinetry, windows, doors, appliances, and outdoor living solutions. The company targets architects, designers, builders, and homeowners seeking premium design elements to elevate residential spaces. Their market position is that of a boutique, multi-line showroom emphasizing quality, craftsmanship, and tailored service. The website reflects a professional and polished digital presence with rich multimedia content and clear navigation. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Tag Manager, Facebook Pixel, Klaviyo for marketing automation, and embedded video content from Vimeo and YouTube. The site is mobile-optimized, fast-loading, and SEO-friendly, demonstrating a mature digital infrastructure. However, some security best practices such as implementing security headers and cookie consent mechanisms are missing. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, which are positive indicators. No exposed sensitive data or vulnerabilities were detected in the HTML content. However, the absence of WHOIS registration data for the domain is a notable anomaly that reduces trustworthiness from a domain registration standpoint. Privacy and terms of service pages are present and comprehensive, supporting compliance efforts. Overall, the website presents a low to moderate risk profile with strong business credibility and technical maturity but with room for improvement in security headers, privacy compliance, and domain registration transparency. Strategic recommendations include enhancing security headers, adding cookie consent, publishing incident response information, and clarifying domain registration details to improve trust and compliance.

C

CCS

carnet.cz

75

CCS operates a professional website focused on advanced vehicle monitoring and fleet management solutions under the Carnet brand. The company targets businesses managing vehicle fleets, offering services such as location tracking, fuel consumption monitoring, and driving style analysis. The website content is well-structured, professionally designed, and optimized for mobile devices, reflecting a medium-sized enterprise operating primarily in the Czech Republic's transportation sector. Technically, the site uses MerlinCMS, modern web fonts, and integrates Cookiebot for cookie consent management, alongside analytics tools like Google Analytics and Hotjar. Security posture is moderate with room for improvement in security headers and explicit security policies. WHOIS data is unavailable, limiting domain trust analysis, but the website's professional presentation and partner domain references support legitimacy. Overall, the site is safe, compliant with cookie regulations, and suitable for its business audience.

T

Televize Beskyd

tvbeskyd.cz

54

Televize Beskyd is a regional media company focused on delivering news and video content primarily for the Valašsko region in the Czech Republic. The website serves as a platform for local news coverage, video broadcasting, and community engagement. It targets a regional audience interested in current events in Rožnov pod Radhoštěm, Frenštát pod Radhoštěm, Zubří, and surrounding areas. The business operates as a small-scale media outlet with a focus on regional content.

M

Machovský s.r.o.

machovsky.cz

49

Machovský s.r.o. is a well-established Czech company founded in 2002, specializing in cartography, graphic design, printing, manufacturing, and playground construction. The company offers a broad range of services including custom maps, large format printing, light advertising, CNC machining, laser cutting, and 3D printing. Their market position is that of a trusted local provider with over 21 years of experience and a significant number of completed projects. The website reflects a professional digital presence with good content quality and clear navigation, targeting businesses and organizations in the Czech Republic. Technically, the site is built on WordPress with common plugins and integrates Google Analytics for traffic monitoring. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and published security policies. Privacy compliance is basic, with no visible privacy or terms of service pages. Overall, the site is trustworthy and professionally maintained but could improve in privacy and security transparency.

A

Adimo

adimo.co

70

Adimo is a technology company specializing in making marketing shoppable by connecting content, commerce, and customers. Their platform offers scalable solutions tailored for Consumer Packaged Goods (CPG) brands to drive online sales with real-time retailer sales data integration. The website reflects a professional B2B SaaS business model targeting marketers and CPG brands, positioning itself as an enabler of frictionless eCommerce experiences. Technically, the site is built on Webflow with integrations of modern marketing and analytics tools such as Google Analytics, Pardot, Hotjar, and LinkedIn Insight Tag. The site is mobile optimized and uses secure HTTPS with strong security headers, indicating a good security posture. However, the absence of explicit privacy, cookie, and terms of service policies, as well as lack of direct contact emails or phone numbers, limits its privacy compliance and user trust. Overall, the website is well-designed and functional but could improve transparency and compliance documentation.

S

SmartAddons.Com

smartaddons.com

45

SmartAddons.Com is a well-established provider of Joomla templates, extensions, and themes for multiple CMS platforms including Joomla, OpenCart, Shopify, and WordPress. The company targets web developers and site owners seeking premium and free templates with a business model based on membership clubs and direct sales. Their market position is supported by over 10 years of experience and a large member base. Technically, the website is built on Joomla CMS with integration of popular libraries such as MooTools, jQuery, Bootstrap, and Font Awesome, and uses modern tools like Google Tag Manager and reCAPTCHA Enterprise. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The absence of WHOIS data is a notable concern, impacting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

F

Foire du Dauphiné

foire-dauphine.com

56

Foire du Dauphiné is a well-established regional event organizer hosting one of France's leading fairs in Romans-sur-Isère, Rhône-Alpes. The website presents comprehensive information about the event, including exhibitors, programming, ticketing, and a professional Club Pro membership offering. The site targets both the general public and professional exhibitors, providing a rich user experience with clear navigation and up-to-date content. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, analytics, and user interaction. Security posture is adequate with HTTPS and reCAPTCHA integration, though explicit security headers are not detected, and no visible security or incident response policies are published. The absence of WHOIS data for the domain reduces trust slightly, but the website's professional presentation and consistent branding support its legitimacy. Overall, the site is a reliable digital presence for the event, with room for improvement in security transparency and compliance documentation.

F

Foire Internationale de Marseille

foiredemarseille.com

48

Foire Internationale de Marseille is a well-established event organizer hosting the annual international fair in Marseille, France, attracting hundreds of thousands of visitors and numerous exhibitors. The website provides comprehensive information about the event, including themes, schedules, and exhibitor details, targeting a broad audience of visitors and participants. Technically, the site is built on WordPress with a modern tech stack including jQuery, Font Awesome, and Google Fonts, and integrates analytics and consent management tools. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and privacy policies are lacking. The absence of WHOIS data for the domain raises concerns about domain registration transparency, which impacts trustworthiness despite the professional presentation and content quality. Overall, the site is functional, informative, and user-friendly but would benefit from enhanced transparency and compliance documentation.

T

Tours Événements

lafoiredetours.fr

49

La Foire de Tours is a prominent regional event organizer hosting the largest commercial fair in the Centre-Val de Loire region of France. The website provides comprehensive information about the event scheduled for May 2026, including exhibition universes, gastronomic village, artist participation, and sustainability initiatives. The organization, Tours Événements, appears to be well-established with multiple certifications and a strong social media presence. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and a cookie consent framework. The site is performant, mobile-optimized, and SEO-friendly, providing a good user experience. However, some security best practices like security headers and explicit incident response policies are missing. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned cookie consent and a privacy policy. Business credibility is supported by clear contact information, certifications, and consistent branding, although the absence of WHOIS data slightly reduces trust. Overall, the website is a professional and trustworthy digital presence for the event, with recommendations to enhance security headers and publish security policies to further strengthen trust and compliance.

F

Foire internationale de Rouen

foirederouen.fr

41

The website www.foirederouen.fr represents the official online presence of the Foire internationale de Rouen, a major commercial and leisure event held annually at the Parc Expo de Rouen in France. The site provides detailed information about the event dates, exhibitors, shopping categories, food and beverage options, and visitor testimonials. It targets a broad audience interested in home, garden, decoration, cuisine, wines, and regional products. The business model centers on event organization, exhibitor space rental, and visitor engagement through entertainment and shopping experiences. Technically, the website is built on WordPress using the Elementor page builder and Astra theme, incorporating modern web technologies such as Google Fonts and YouTube embeds. The site is mobile-optimized and demonstrates good design quality and navigation clarity. Security posture is solid with HTTPS enforced and anti-spam measures in place, though some security headers could be improved. Privacy compliance is limited, with no explicit privacy or cookie policies detected, which is an area for enhancement. Overall, the site is professional, trustworthy, and content-rich, supporting the event's reputation. The absence of WHOIS data limits domain trust analysis but is common for event domains. No malicious or suspicious content was found, and the site is safe for general audiences.

D

Dijon Bourgogne Events

dijonbourgogne-events.com

55

Dijon Bourgogne Events operates the Parc des Expositions et Congrès de Dijon, providing venue services for fairs, congresses, and exhibitions in the Dijon and Bourgogne region of France. The company appears to be a regional event venue operator founded recently in 2023, with a medium-sized business profile. The website is built on WordPress using the Divi theme and incorporates SEO and user experience best practices such as Yoast SEO and Google Fonts. The site is mobile optimized and includes social media integration with LinkedIn, Facebook, and Instagram. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information such as emails and phone numbers are not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website is professional and relevant to its business domain but could benefit from enhanced security and compliance documentation.

R

Rivedroite Paris

rivedroite-paris.com

63

Rivedroite Paris operates an e-commerce website specializing in sustainable bags and accessories crafted by formerly unemployed designers using recycled and upcycled materials. The brand targets environmentally conscious consumers seeking unique fashion items. The website is built on the Shopify platform using the Impulse theme, integrating multiple marketing and analytics tools such as TikTok Pixel, Microsoft Clarity, Klaviyo, and Google Tag Manager, indicating a moderate level of digital maturity and marketing sophistication. The site is mobile-optimized and presents a professional design with clear navigation and relevant content.

C

Cellaos

cellaos.fr

47

Cellaos is a French-language online portal focused on wellness, CBD, and zero waste lifestyle topics. The website provides informational articles targeting individuals interested in natural health and sustainable living. The site uses a modern WordPress infrastructure with popular plugins such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The content is well organized and visually appealing, optimized for mobile devices, and includes recent articles relevant to its niche. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and visible privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, which slightly reduces business credibility. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security transparency.

The website teribear.cz represents Nadace Terezy Maxové dětem, a Czech non-profit foundation focused on children's welfare. The site currently displays a temporary placeholder message indicating maintenance or downtime, with minimal content. The foundation appears to have been established in 2008, consistent with the domain registration date. The website uses WordPress with the Divi theme and includes Google Analytics for visitor tracking. However, it lacks critical compliance documents such as privacy and cookie policies, as well as contact information, which reduces its overall trust and compliance posture. Technically, the website is built on a modern CMS platform with a popular theme and uses HTTPS, ensuring encrypted communications. The site loads moderate resources and is mobile optimized. However, it lacks security headers and formal privacy compliance mechanisms. No forms or data collection fields are present on the homepage, limiting exposure to input-based vulnerabilities. From a security perspective, the site shows no signs of active WAF or blocking mechanisms and no visible vulnerabilities in the HTML content. The absence of security headers and compliance policies are notable gaps. The WHOIS data is consistent and indicates a legitimate, long-standing domain registration with no privacy protection, aligning with the non-profit nature of the organization. Overall, the website is functional but minimal, with room for improvement in privacy compliance, security hardening, and contact transparency. Strategic enhancements in these areas would improve trustworthiness and regulatory adherence.

T

TRADE CENTRE PRAHA a.s.

tcp-as.cz

45

TRADE CENTRE PRAHA a.s. is a municipal real estate company based in Prague, Czech Republic, focusing on property management and municipal real estate services. The website presents basic information about the company and its services, targeting local businesses and municipal clients. The digital infrastructure is built on WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. External integrations include YouTube and Google Tag Manager for analytics and media embedding. Security posture is minimal with no advanced headers or policies detected, and WHOIS data is unavailable, which limits trust assessment. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional but lacks comprehensive security and privacy features.

T

Hledej Chorvatsko | pokoje a apartmány v Chorvatsku

travelplan.cz

48

The website www.ubytovanivchorvatsku.cz is a specialized online platform offering accommodation listings primarily focused on Croatia. It provides users with a comprehensive search interface to find private apartments and rooms across various Croatian regions, targeting tourists seeking affordable and direct bookings without intermediary commissions. The site features detailed listings with images, pricing, and location data, supporting a user-friendly experience with mobile responsiveness and clear navigation. Technically, the site employs common web technologies such as jQuery, Google Fonts, FontAwesome, Google Adsense, Facebook Pixel, and Google Analytics, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is functional and relevant for its niche but would benefit from enhanced privacy compliance and security practices.

B

Belehrad Srbsko - história, ubytovanie, doprava

belehrad.sk

42

The website belehrad.sk is a Slovak language tourism portal focused on providing information about Belgrade, Serbia, including history, accommodation, transportation, and travel services. It targets tourists and travelers interested in visiting Belgrade and offers hotel bookings, bus tickets, flight information, and visa guidance. The site operates on a basic technical infrastructure using standard web technologies and is hosted by HostMonster. It integrates Google services such as Adsense and Analytics and implements a GDPR-compliant consent management platform. However, it lacks explicit privacy policy and terms of service pages, and no direct company contact or security incident response information is provided. The presence of an adult content link in the footer reduces the overall content safety rating. Security posture is moderate with no advanced security headers detected. Overall, the site is functional but would benefit from improvements in security, privacy transparency, and content professionalism.

A

Ad Shop AB

glasmonter.se

53

Glasmonter.se is an established Swedish e-commerce business specializing in the sale of glass showcases and cabinets primarily targeting professional customers such as companies, schools, museums, and private individuals valuing high quality and functional products. The company operates under Ad Shop AB and has been active since 2003, offering delivery and assembly services alongside standard and custom products. The website demonstrates a solid market position with trust indicators including a high credit rating and a professional online presence. Technically, the site is built on ASP.NET Web Forms with common JavaScript libraries and includes modern tracking and marketing tools with GDPR-compliant consent mechanisms. Security posture is adequate with HTTPS and reCAPTCHA usage, though it lacks advanced security headers and published security policies. The absence of WHOIS data for the domain is a notable concern that impacts trustworthiness and should be investigated further. Overall, the site provides a good user experience with clear business information and no adult or questionable content.

Sherpas TECH, s.r.o. is a Czech-based technology and marketing company specializing in retention marketing, email marketing strategies, CRM data engineering, and advanced customer analytics. The company targets B2B clients seeking to integrate technology with marketing to improve campaign performance and customer engagement. Their website reflects a professional and consistent brand image, showcasing client references and a clear service portfolio. Technically, the site employs modern tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA Enterprise, ensuring a secure and data-driven user experience. Security posture is strong with HTTPS and form protections, although explicit security policies and incident response information are absent. Overall, the website is well-structured, GDPR-compliant with cookie consent mechanisms, and provides multiple contact channels, supporting trust and credibility.

S

SMART Design | Gregic Advisory

digital-adviser.eu

49

SMART Design | Gregic Advisory operates as a specialized provider of advanced SMART web solutions based in Zagreb, Croatia. The company offers a range of services including customized web shops, web pages, and web applications designed with a focus on performance, security, and user experience. Their market position is that of a leader in SMART web solutions, targeting businesses and professionals seeking innovative digital presence. The website reflects a professional and modern approach with strong branding and client references including government entities. Technically, the site is built on WordPress using Elementor and OceanWP theme, integrating modern analytics and marketing tools such as Google Analytics, Hotjar, and HubSpot. The site is GDPR compliant with a detailed cookie consent mechanism and privacy policy. Security posture is good with HTTPS enforced and secure forms, though explicit security headers and incident response policies are not evident. The domain WHOIS data is missing, which raises some concerns about domain registration legitimacy, but the website content and business information support a credible operation. Overall, the site demonstrates a mature digital infrastructure with room for security enhancements and domain registration verification.

W

World Health Organization (WHO)

openwho.org

67

OpenWHO.org is a reputable online learning platform operated by the World Health Organization, focusing on public health emergency preparedness and response. It serves a global audience of health professionals and the public, providing authoritative training resources. The platform is well-branded, professionally designed, and leverages modern web technologies including React and Kaltura for media delivery. The domain registration is consistent with WHO ownership and the platform's founding date. Technically, the website demonstrates good digital maturity with responsive design, accessibility considerations, and integration of media analytics. However, there is room for improvement in security posture, notably the absence of DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is limited by the lack of explicit privacy and cookie policies in the analyzed content. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements in security headers and privacy disclosures would strengthen trust. The platform does not engage in advertising or affiliate marketing, focusing solely on educational content. The website is safe for general audiences with no adult or questionable content. Strategic recommendations include enabling DNSSEC, implementing comprehensive security headers, publishing clear privacy and cookie policies, and enhancing incident response contact visibility to improve compliance and security transparency.

V

Verband der Veranstaltungsorganisatoren e.V.

vdvo.de

59

The website vdvo.de represents the Verband der Veranstaltungsorganisatoren e.V., a German industry association focused on innovation within the MICE (Meetings, Incentives, Conferences, and Exhibitions) sector. The organization provides startup support, education, political advocacy, and sustainability initiatives tailored to the event industry. The site positions itself as a niche player supporting MICE innovation with a clear target audience of industry professionals and startups. The business model revolves around membership, education, and sector advocacy, with a small organizational size and a strong German regional focus. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and reCAPTCHA for security and analytics. The site demonstrates good mobile optimization, a professional design, and clear navigation, although accessibility features are basic. Performance is moderate, typical for a CMS-based site. Structured data in JSON-LD format enhances SEO and provides clear organization and local business information. From a security perspective, the site enforces HTTPS with HSTS enabled, uses Google reCAPTCHA to protect forms, and includes security headers. However, it lacks explicit security policies, vulnerability disclosure mechanisms, and comprehensive privacy and cookie consent implementations, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data is minimal but consistent enough with the website's claims, supporting legitimacy. Overall, vdvo.de is a professionally presented, secure, and credible website for a specialized industry association. Strategic recommendations include adding explicit privacy and cookie consent policies, implementing a security.txt file, enhancing accessibility, and maintaining regular security audits to uphold compliance and trust.

F

Ferro Recycling

ferrorecycling.ch

25

Ferro Recycling is a Swiss non-profit association dedicated to promoting the recycling of steel packaging. The website serves as an informational platform targeting a general audience interested in environmental sustainability and recycling practices. It positions itself as a niche player within the Swiss recycling sector, focusing on awareness and stakeholder engagement rather than commercial activities. The site is multilingual, primarily in German, with French and Italian versions, reflecting its Swiss market focus. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO for search optimization and Real Cookie Banner Pro for privacy compliance. The inclusion of WPML enables multilingual content delivery, enhancing accessibility for diverse Swiss audiences. The site integrates YouTube video content with appropriate consent mechanisms, demonstrating attention to privacy regulations.

The website nudgify.com is currently inaccessible, serving a 403 Forbidden error page protected by Cloudflare. Due to this access restriction, no substantive content, business information, or user-facing features are available for analysis. The domain is registered with Cloudflare since 2018, indicating a legitimate registration age and consistent hosting provider. However, the lack of accessible content prevents evaluation of the company's services, privacy compliance, or security policies. The presence of Cloudflare Insights indicates some level of analytics tracking, but no privacy or cookie policies are published. Overall, the site appears to be protected by a Web Application Firewall or access control, limiting visibility into its operations.

G

GECKO.DK ApS

geckobooking.dk

65

GECKO.DK ApS operates a professional and flexible online booking and administration system primarily targeting Danish businesses across various sectors. The company offers modular SaaS solutions that integrate booking, payment, marketing, and document management functionalities. With over 1000 customers and more than 20 million bookings processed, GECKO holds a solid market position in Denmark. The website reflects a mature digital presence with comprehensive content, customer testimonials, and clear contact information, supporting its credibility. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for consent management, Bootstrap for responsive design, and analytics tools such as Google Analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security best practices are observed with HTTPS enforced and cookie consent mechanisms in place, though some HTTP security headers could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with detailed privacy and cookie policies, indicating GDPR adherence. However, the absence of WHOIS data limits domain trust analysis. Overall, the website presents a low-risk profile with professional security and privacy practices. Strategically, GECKO should consider enhancing transparency by resolving WHOIS data visibility and implementing additional security headers. Continued focus on security, privacy, and customer support will sustain trust and competitive advantage in the SaaS booking market.

E

European Society for Vascular Surgery

esvs.org

10

The European Society for Vascular Surgery (ESVS) operates a professional website focused on vascular surgery education and professional development. The site targets vascular surgeons and healthcare professionals across Europe, providing resources, events, and membership services. The domain is well-established, created in 1997, and hosted by OVH sas, indicating a stable and legitimate presence in the healthcare sector. Technically, the website is built on WordPress with WooCommerce and uses modern web technologies including Google Tag Manager and reCAPTCHA for security and analytics. The site demonstrates good SEO practices and moderate performance with mobile optimization. However, there is room for improvement in accessibility and security headers. Security posture is adequate with HTTPS enabled and domain status protections, but the absence of DNSSEC and some security headers suggests potential enhancements. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the website is professional and trustworthy with a solid business model as a non-profit medical society. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, and enhancing security headers to improve trust and compliance.

S

Sisačko-moslavačka županija

smz.hr

59

Sisačko-moslavačka županija operates an official regional government website providing comprehensive information about county administration, public projects, news, tenders, and contact details. The site targets residents, businesses, and public officials within the Sisak-Moslavina County in Croatia. The website is built on Joomla CMS with Helix Ultimate framework and uses modern web technologies including Bootstrap and jQuery. It features good mobile optimization and accessibility tools, including an accessibility menu and cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is professional, trustworthy, and well-aligned with its government function.

L

Ličko-senjska županija

licko-senjska.hr

52

Ličko-senjska županija is the official regional government entity for the Ličko-senjska County in Croatia. The website serves as the primary digital platform for disseminating public administration information, news, official documents, tenders, and transparency reports. It targets residents, businesses, and stakeholders within the county, providing comprehensive access to government services and updates. The site reflects a medium-sized government organization with a focus on regional development, public services, and community engagement. Technically, the website employs a modern tech stack including jQuery, Modernizr, Owl Carousel, and Google Fonts, built on a CMS platform by VIT. It is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security is robust with HTTPS enforced and a Content-Security-Policy header, although some additional security headers could enhance protection. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. The security posture is strong, with no detected vulnerabilities or exposed sensitive data. The site lacks a security.txt file and explicit incident response contacts, which are recommended for improved security transparency. The domain registration is consistent with the official government entity, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-maintained, serving its public sector role effectively.

K

Krapinsko-zagorska županija

kzz.hr

58

Krapinsko-zagorska županija operates as the official regional government authority for the Krapinsko-zagorska County in Croatia. The website serves as a comprehensive portal providing residents, businesses, and visitors with access to administrative information, news, public tenders, official documents, and cultural and tourism promotion. The site targets a broad audience including local citizens and stakeholders interested in regional governance and services. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Fonts, Font Awesome, and various plugins enhancing user experience and functionality. The site is well-optimized for SEO, mobile responsiveness, and accessibility, reflecting a mature digital presence. Security posture is solid with HTTPS enforced, use of Google reCAPTCHA for form protection, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not publicly available, which could be improved. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable source of regional government information.

Z

Zadarska županija

zadarska-zupanija.hr

47

Zadarska županija is the official regional government website for the Zadar County in Croatia, providing public administration and citizen services. The website serves as an information portal targeting residents and visitors of the region. It is built on Joomla CMS with the Helix Ultimate framework, utilizing modern web technologies such as Bootstrap, jQuery, and Font Awesome, ensuring a responsive and accessible user experience. The site demonstrates good technical maturity with HTTPS enforced and security headers implemented, reflecting a solid security posture. However, it lacks critical compliance documents such as a privacy policy and terms of service, which are essential for GDPR compliance and user trust. No contact emails or phone numbers were explicitly found, which may hinder user communication. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and compliance transparency.

A

ALSENTA s.r.o.

seeky.cz

36

Seeky.cz is a Czech-based B2B service operated by ALSENTA s.r.o. that specializes in identifying and converting website visitors into potential customers. The company targets businesses seeking to enhance their lead generation and sales conversion through visitor monitoring, targeted offers, and direct customer engagement. The website demonstrates a professional presence with a clear value proposition, client testimonials, and a multi-country reach across 40 countries with over 2000 users. Technically, the site employs modern web technologies including Bootstrap, jQuery, and multiple analytics tools such as Google Analytics and Matomo, alongside live chat support for customer engagement. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, indicating room for compliance improvement. WHOIS data is unavailable, which slightly impacts trust but does not detract from the overall professional presentation. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and regulatory adherence.

A

American Chamber of Commerce in Croatia

amcham.hr

69

The American Chamber of Commerce in Croatia is a well-established non-profit organization founded in 1999, serving as the leading international business advocacy group in Croatia. The website reflects its role as a membership organization providing advocacy, networking events, business delegations, and public policy representation. The content is professionally presented in Croatian and English, targeting business professionals and international companies. The organization maintains a strong market position as a trusted voice for international businesses in Croatia.

P

PROFIREAL GROUP

profirealgroup.com

41

PROFIREAL GROUP is an international financial services provider with over 25 years of experience, operating primarily in Europe and Asia. The company offers consumer and business lending, investment development, and fintech-related financial solutions. Their market presence spans six countries with a large client base and extensive loan disbursement history. Technically, the website is built on WordPress with standard SEO and font technologies, delivering a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the professional content and social media presence support business credibility. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security transparency.

The website www.umbjournal.org serves as the official online presence for the academic journal 'Ultrasound in Medicine and Biology', published by Elsevier. It targets medical researchers, healthcare professionals, and academics interested in ultrasound technology and its applications in medicine and biology. The site provides access to scientific articles and related resources, supporting Elsevier's subscription-based academic publishing model. The branding and content quality are consistent with a professional academic publisher, reflecting a strong market position in healthcare publishing. Technically, the website employs modern web technologies including SPA frameworks, New Relic monitoring, and OneTrust for cookie consent management. The site is well-optimized for mobile devices and demonstrates good SEO practices. Hosting details are not explicitly available, but the infrastructure supports moderate performance and accessibility. From a security perspective, the site enforces HTTPS and integrates monitoring tools to track performance and errors. However, explicit security headers are not evident, and there is no public security policy or vulnerability disclosure program. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy linked to Elsevier's main site. No contact information or incident response details are directly available on the homepage. Overall, the website presents a low-risk profile with high legitimacy and professional standards. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving transparency around vulnerability disclosures to further strengthen trust and compliance.

A

Anthropic

anthropic.com

62

Anthropic is a public benefit corporation specializing in AI safety research and the development of reliable, interpretable, and steerable AI systems. The company positions itself as a leader in AI safety, offering both research insights and commercial AI products such as Claude. The website reflects a professional and modern digital presence, targeting AI researchers, developers, and enterprises interested in safe AI technologies. Technically, the site leverages modern web technologies including Webflow CMS, advanced analytics platforms, and interactive Lottie animations, indicating a mature and well-maintained infrastructure. Security posture is strong with HTTPS enforcement and no visible vulnerabilities, though some improvements in security headers and cookie consent mechanisms are recommended. Overall, the site demonstrates high professionalism and trustworthiness, though the absence of WHOIS data introduces a minor uncertainty in domain legitimacy. Strategic recommendations include enhancing privacy compliance, publishing terms of service, and providing clearer contact channels for incident response.

M

Medworld AG

scs-congress.ch

61

The Swiss College of Surgeons Annual Meeting 2026 website is a professionally designed platform promoting a major surgical congress in Luzern, Switzerland. It targets medical professionals and surgeons, providing comprehensive event information, registration, and program details. The site is multilingual and well-structured, reflecting a mature digital presence for a specialized healthcare event. The business behind the site, Medworld AG, is a recognized professional congress organizer, enhancing the site's credibility. Technically, the website employs modern web technologies including Bootstrap 5, Font Awesome 6, and October CMS, ensuring responsive design and good user experience across devices. SEO is supported by structured data and proper meta tags. Analytics are implemented via Google Tag Manager with IP anonymization, indicating moderate user tracking. Security posture is solid with HTTPS enforced and secure form handling, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partial; a privacy policy is present but no cookie consent mechanism is detected, which is a gap for GDPR compliance. Contact information is clearly provided, supporting business credibility. Overall, the site is trustworthy, professional, and suitable for its audience, with recommendations to enhance privacy compliance and security headers to further strengthen its posture.

A

AFS Intercultural Programs

globalup.com

60

The Global Up website represents the AFS Intercultural Programs' Global Competence Certificate (GCC) initiative, a well-established non-profit educational program focused on developing global skills through blended learning. The site is professionally designed, content-rich, and targets students, educators, and professionals worldwide. It leverages modern web technologies including WordPress, Gravity Forms, and Google reCAPTCHA to provide a secure and user-friendly experience. The presence of multiple contact channels, social media integration, and downloadable resources enhances engagement and trust. However, the absence of WHOIS registration data for the domain www.globalup.com raises transparency concerns, although the website content and branding strongly align with the reputable AFS organization. Security posture is solid with HTTPS and CAPTCHA protections, but could be improved by implementing explicit security headers and formal incident response policies. Overall, the website is a credible and valuable resource for global competence education with moderate risk due to domain registration opacity.

P

platforma.one - Changing the way e-commerce is made

platforma.one

9

platforma.one is an e-commerce platform focused on enabling small businesses such as cafes, florists, and ceramic studios to easily set up online stores with a pay-when-you-sell model. The platform offers key services including digital gift cards, selling physical and digital products, paid bookings, and scheduling delivery slots. The website is professionally designed with good content quality and targets a niche market of small business owners seeking accessible e-commerce solutions. Technically, the site uses modern JavaScript modules, Google Fonts, and Google Tag Manager for analytics, hosted on Google Cloud DNS infrastructure. The site is mobile optimized and SEO friendly but lacks some accessibility features and security headers. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is supported by domain age and consistent content, though contact information is not provided on the homepage. Overall, the site is functional and professional but would benefit from improved privacy and security practices.

A

Atlaseek

atlaseek.com

9

Atlaseek hub is a specialized online marketplace platform designed to connect travel destinations with travel creators and influencers to facilitate marketing collaborations. The platform targets travel brands and tourism marketing teams seeking to leverage influencer marketing to reach Gen Z and millennial travelers. It offers verified metrics, campaign management, and a travel calendar to streamline collaboration scheduling. Technically, the website uses modern JavaScript modules, Vue.js framework, Google Fonts, Stripe for pricing, and Google Tag Manager for analytics. The site is mobile optimized and presents a professional design with good user experience. Security posture is moderate with HTTPS likely enabled but lacks visible security headers and explicit privacy or cookie policies. No WHOIS data is available for the subdomain hub.atlaseek.com, which is typical for subdomains, but limits domain registration trust signals. Overall, the site is safe, professional, and credible within its niche but would benefit from improved privacy compliance and security best practices.

C

Creative Heads

creativeheads.pl

9

Creative Heads is a small, Poland-based creative agency specializing in graphic design, web development, marketing, and multimedia services primarily serving the Trójmiasto region. The website presents a professional and visually appealing digital presence with a clear focus on creative solutions and client engagement. The technical infrastructure is built on WordPress with modern JavaScript libraries and tracking tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security measures.