Security Directory

P

Poule et Toque

poule-et-toque.fr

64

Poule et Toque is a French company specializing in supplying poultry products to the professional foodservice and catering sectors. Their website presents a well-structured, professionally designed platform targeting restaurateurs and catering professionals with segmented product lines such as 'Prêt à Cuire', 'Prêt à réchauffer', and 'Prêt à Servir'. The company positions itself as an expert in French poultry, offering solutions tailored to various foodservice needs. The site includes rich content, social media integration, and a dedicated subdomain for a poultry competition, indicating active engagement in their industry. Technically, the website is built on WordPress with modern plugins like Yoast SEO and uses Matomo for analytics, showing a moderate level of digital maturity. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall professional presentation and compliance with GDPR suggest legitimacy. The site is accessible with no blocking or WAF challenges detected.

D

D'aucy

daucy.fr

51

D'aucy is a well-established French cooperative brand specializing in vegetable products including canned, frozen, and prepared foods. The website reflects a mature digital presence with a focus on sustainability, cooperative values, and consumer engagement through recipes and educational content. Technically, the site uses WordPress with modern JavaScript libraries and analytics tools such as Matomo and Microsoft Clarity, ensuring a good user experience and data-driven insights. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the domain is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and parent company association. Overall, the site is trustworthy, user-friendly, and compliant with privacy regulations.

S

Shell Privat

shellservice.dk

66

Shellservice.dk is a professionally maintained website representing Shell Privat's services in Denmark, focusing on fuel supply, electric vehicle charging, and car wash services. The site targets private vehicle owners seeking high-quality energy and transportation services. The business is well positioned in the Danish market with a clear brand presence and consistent messaging. Technically, the site is built on WordPress with modern SEO and marketing tools, including Google Tag Manager and Cookiebot for consent management. Security posture is good with HTTPS and bot protection, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is supported by a comprehensive cookie consent mechanism, but no explicit privacy policy or terms of service pages were detected in the analyzed content. Overall, the site is trustworthy, professional, and safe for general audiences.

T

The Video Game Fans

cotegamers.com

55

The Video Game Fans operates a specialized e-commerce platform focused on retro gaming books, magazines, and games. Founded in 2014 and based in France, the company targets video game enthusiasts and collectors with a curated catalog. The website is built on PrestaShop, integrating modern payment options such as Amazon Pay and PayPal, and shipping services like Mondial Relay and Boxtal Connect. Multi-language support enhances accessibility for international customers. Technically, the site is moderately performant and mobile-optimized, though there is room for improvement in security headers and SEO. Security posture is solid with HTTPS and bot protection via Google reCAPTCHA, but explicit security policies and vulnerability disclosures are absent. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and stable operation.

D

DEREZA, s.r.o.

dereza.cz

45

DEREZA, s.r.o. is a Czech construction company established in 2000, specializing in comprehensive building services including technical building equipment, earthworks, and transport. The company has a solid market position supported by references to significant projects such as Rudolfinum and Prague Castle. Their website is built on WordPress using the Avada theme, integrating modern technologies like Google Analytics and reCAPTCHA for security and analytics. While the site is professionally designed and mobile-optimized, it lacks explicit privacy and security policies. Security posture is moderate with HTTPS and reCAPTCHA implemented but missing security headers and incident response information. Overall, the website is trustworthy and functional with room for improvement in privacy compliance and security best practices.

RE/MAX Alfa is a professional real estate agency operating primarily in the Czech Republic, offering a wide range of services including property sales, rentals, appraisals, auctions, and legal support. The company is part of the international RE/MAX network and positions itself as a market leader with a strong focus on customer satisfaction and high-quality service delivery. The website is well designed, multilingual, and provides comprehensive information about services, agents, and legal policies. Technically, the site is built on WordPress with modern plugins and SEO optimizations, ensuring good performance and user experience. Security measures include HTTPS and Google reCAPTCHA, although additional security headers could enhance protection. The absence of WHOIS data is a notable gap, but the overall digital presence and business information suggest a legitimate and trustworthy operation.

R

Repair Café Graz

repaircafe-graz.at

45

Repair Café Graz is a small, community-driven non-profit initiative based in Austria focused on sustainability by promoting repair culture to reduce waste. The website serves as an informational platform for local community members interested in repair events and workshops. Technically, the site is built on WordPress using the Divi theme, incorporating standard web technologies and Google reCAPTCHA for form security. The website is accessible, mobile-optimized, and moderately performant but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS and reCAPTCHA, but missing security headers and formal policies reduce overall security maturity. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, matching the local community focus. Strategic improvements in privacy compliance, security headers, and transparency would enhance trust and security.

S

SchloR

schlor.org

42

SchloR is a self-managed non-profit community project based in Vienna-Simmering, Austria, focused on providing solidarity-based housing and creative workspaces. The organization operates under the umbrella of recognized entities such as habiTAT and Mietshäuser-Syndikat, emphasizing collective living and cultural engagement. Their business model includes direct loans from supporters to finance their projects, reflecting a strong community trust and engagement. The website is well-structured, content-rich, and targets local community members interested in alternative housing and cultural activities. Technically, the website is built on WordPress using modern plugins like Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. The presence of Google reCAPTCHA on forms enhances security against automated abuse. However, some security best practices such as DNSSEC and security headers are not implemented, which could be improved to strengthen the security posture. From a security perspective, the site uses HTTPS and has domain transfer protections in place, indicating a legitimate and controlled domain. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Privacy compliance is adequate with a privacy policy present, though cookie consent mechanisms are lacking. No incident response or vulnerability disclosure information is found, which could be areas for future enhancement. Overall, SchloR presents a trustworthy, community-oriented project with a solid web presence and moderate technical maturity. Strategic improvements in security headers, cookie consent, and vulnerability disclosure would enhance their security and compliance posture further.

M

Miele Center Faulmann

mielecenter-faulmann.at

63

Miele Center Faulmann is a specialized retailer and service provider for Miele household appliances located in Vienna, Austria. The company offers a comprehensive range of products including kitchen appliances, laundry care, vacuum cleaners, and accessories, supported by an online shop and repair services. The website reflects a professional e-commerce platform with clear navigation and a focus on customer service. Technically, the site is built on Magento 2, leveraging modern JavaScript libraries and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security measures include HTTPS enforcement, reCAPTCHA for form protection, and a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance trust and compliance. Overall, the website is well-structured, secure, and compliant with privacy regulations, representing a trustworthy local business.

N

Nase Media a.s.

parlamentnilisty.cz

10

ParlamentniListy.cz is a well-established Czech political news and commentary website operated by Nase Media a.s. It offers a broad range of political news, interviews, opinion pieces, and profiles of politicians and institutions. The site targets Czech-speaking audiences interested in politics and current affairs, leveraging advertising and subscription models for revenue. Technically, the site employs modern web technologies including Google services for ads and analytics, Facebook SDK, and a consent management platform to ensure GDPR compliance. The website is mobile-optimized and structured for SEO with JSON-LD data. Security-wise, the site enforces HTTPS and uses reCAPTCHA to mitigate bots, but lacks explicit security headers and published security policies. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, likely due to privacy protection.

TAC-TAC agency s.r.o. is a small Czech advertising company specializing in promotional products and client advertising services. The website presents basic information about the company and its offerings, targeting businesses seeking advertising solutions. The company has been established since 2000, indicating a stable presence in the local market. The website uses SuitableCMS and is hosted by Wedos, with integrations of common marketing and analytics tools such as Google Analytics, Google Tag Manager, Hotjar, and Google reCAPTCHA for bot protection. From a technical perspective, the website employs older technologies such as jQuery 1.7.2, which is outdated and poses security risks. The site lacks modern security headers and visible privacy or cookie policies, indicating compliance gaps with GDPR and other privacy regulations. The website is accessible without WAF or blocking mechanisms, but the security posture is moderate due to missing best practices and outdated libraries. Security-wise, the site uses HTTPS (implied by origin-trial meta tag referencing HTTPS Google services) and reCAPTCHA, but lacks explicit security headers and incident response information. No vulnerabilities such as exposed credentials or SQL injection are visible, but the outdated jQuery version is a concern. Contact information is minimal but present, with a company email and phone number displayed. Overall, the website scores moderately on AI evaluation with strengths in business credibility and basic technical implementation but weaknesses in privacy compliance and security best practices. Strategic improvements in updating technology, adding privacy and cookie policies, and enhancing security headers would significantly improve the site's security posture and compliance.

D

DreamHost

dreamhost.com

67

DreamHost is a well-established web hosting and domain registration provider offering a variety of services including managed WordPress hosting and business email solutions. The company targets small to medium businesses, developers, and enterprises seeking reliable hosting with a 100% uptime guarantee and 24/7 support. Their market position is strong within the technology sector, emphasizing growth and customer service. Technically, the website leverages modern frameworks such as React and Gatsby, ensuring fast performance, mobile optimization, and good accessibility. Integration of Google Tag Manager and OneTrust for cookie consent reflects a mature digital infrastructure. The site is hosted likely on DreamHost's own infrastructure or CDN, with excellent SSL and security headers implemented. From a security perspective, DreamHost demonstrates good practices including HTTPS enforcement, security headers, and captcha on forms. However, explicit security policies, incident response details, and vulnerability disclosure programs are not publicly available, which could be improved to enhance transparency and trust. Overall, the website is professional, trustworthy, and compliant with privacy regulations such as GDPR. The lack of WHOIS data transparency slightly impacts trust but is likely due to privacy protection or query limitations. Strategic recommendations include publishing detailed security policies and establishing a vulnerability disclosure program to further strengthen security posture.

S

Startup Tech Valley

startuptechvalley.org

59

Startup Tech Valley is a small event organization focused on fostering the startup ecosystem in the Capital Region of the United States. They organize premier startup events featuring pitches, networking, and community engagement, targeting entrepreneurs, investors, and business leaders. The website is professionally designed using Squarespace, with good mobile optimization and moderate performance. Social media presence is strong, supporting community outreach and event promotion. Security posture is good with HTTPS and HSTS enabled, and Google reCAPTCHA implemented to protect forms. However, the absence of privacy and cookie policies, lack of explicit contact information, and missing WHOIS data reduce overall trust and privacy compliance. The domain's legitimacy is partially uncertain due to unavailable WHOIS records, though the website content and external event registration links suggest a legitimate business. Strategic improvements in privacy compliance, security headers, and transparency would enhance trust and compliance.

The website archive.li is a web archiving service that allows users to save and access snapshots of web pages. However, the content provided is a security check page requiring CAPTCHA completion before access, indicating the presence of a Web Application Firewall or bot mitigation system. This limits the ability to fully analyze the website's content, policies, and business information. The technical infrastructure includes the use of Google reCAPTCHA and is hosted on Hetzner Online GmbH's infrastructure. Security posture shows some best practices with CAPTCHA usage but lacks visible security headers and policies. Overall, the site is partially inaccessible, limiting trust and compliance assessments.

Mikroregion Horymír is a small, non-profit regional association of municipalities in the Czech Republic, focused on promoting local culture, tourism, and community events. The website serves as an information hub for residents and visitors, providing news, event updates, and regional information. The technical infrastructure is based on a custom CMS (IPO) with standard web technologies including jQuery, Owl Carousel, and Google reCAPTCHA, supported by Matomo analytics for user tracking. The site is mobile responsive and well-structured, though it lacks some modern security headers and formal privacy documentation. Security posture is generally good with HTTPS enforced and cookie consent implemented, but the absence of WHOIS data for the domain raises concerns about domain registration legitimacy. Overall, the website is functional and trustworthy for its intended audience but would benefit from improved compliance and transparency measures.

Obec Karlík is a small municipal government entity located in the Prague-West district of the Czech Republic. The website serves as an official portal providing residents and visitors with information about local administration, public notices, cultural heritage, and community services. The site emphasizes historical landmarks and natural surroundings, targeting local citizens and tourists interested in the municipality. Technically, the website employs a traditional web stack with jQuery, jQuery UI, Google reCAPTCHA, and Matomo analytics, managed via the IPO CMS platform. The site is mobile responsive and includes accessibility features such as font resizing and clear navigation. Security-wise, the site uses HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and a published privacy policy, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, although the website content and contact details align with a legitimate government entity. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security disclosures.

G

Game Lounge Ltd.

gamelounge.com

65

Game Lounge Ltd. operates as a global leader in the iGaming affiliate marketing sector, connecting online casino players with iGaming brands through a network of over 130 SEO-driven websites across more than 60 countries. The company emphasizes data-driven innovation and offers a range of services including SEO content marketing, unique player tools, brand exposure, lead generation, and data analytics. Their market position is strong within the media and affiliate marketing industry, targeting mature audiences interested in online gambling. Technically, the website is built on WordPress with modern JavaScript libraries and SEO plugins, delivering a professional and mobile-optimized user experience. Security posture is good with HTTPS and reCAPTCHA in place, though there is room for improvement in security headers and published policies. The absence of WHOIS registration data raises some legitimacy concerns, but the professional web presence and active social media mitigate these. Overall, the site is well-designed and functional, but lacks explicit privacy and cookie policies, which impacts compliance and trust scores.

Ladův kraj is a regional community and tourism promotion website focused on the area between Prague and the Sázava river, named after the famous painter and writer Josef Lada. The site serves as a hub for local municipalities, cultural events, and tourism services including equipment rental and event calendars. It targets tourists and local residents interested in cultural and outdoor activities. The website is positioned as a small regional government or community association platform with a clear focus on promoting local heritage and tourism. Technically, the site uses a custom CMS (IPO) with legacy JavaScript libraries such as jQuery 3.0 and jQuery UI 1.8.20, integrates Matomo analytics for privacy-conscious tracking, and employs Google reCAPTCHA for form security. The site is mobile responsive and has a good level of SEO and accessibility, though accessibility features could be improved. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and uses outdated libraries. WHOIS data is unavailable, which raises concerns about domain registration transparency, but the website content and external partner links suggest legitimacy. Overall, the site is functional and professional but would benefit from improved security practices and updated technical components.

M

MaM multimedia, s.r.o.

cistysvet.sk

10

ČistýSvet.SK is a Slovak-based e-commerce retailer specializing in cleaning machines, industrial vacuum cleaners, air humidifiers, purifiers, and food dehydrators. The company operates under MaM multimedia, s.r.o., with a business history dating back to 2005. The website targets consumers and businesses seeking quality cleaning and home care equipment, offering a range of products with clear pricing and promotional offers. The platform is positioned as a trusted regional player with a focus on customer service and reliable delivery. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and various JavaScript libraries for enhanced user experience such as PrettyPhoto and MagicZoomPlus. The site is moderately optimized for performance and mobile devices, with basic accessibility features and good SEO practices. The content is well-structured, professionally designed, and easy to navigate. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for form protection, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a publicly available security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, ČistýSvet.SK demonstrates a solid business and technical foundation with good privacy compliance and trustworthy domain registration. Strategic improvements in security headers and incident response transparency would further enhance its security posture and customer trust.

M

MaM multimedia, s.r.o.

mojmilacik.sk

39

MôjMiláčik.SK is a Slovak e-commerce website specializing in pet supplies including food, accessories, and veterinary products for dogs, cats, and other animals. Operated by MaM multimedia, s.r.o., the site offers a broad product catalog with detailed descriptions and a loyalty program to encourage repeat purchases. The business targets pet owners primarily in Slovakia and operates as a small retail e-commerce platform with a regional focus. Technically, the website uses a custom CMS platform (MaM SHOP system) with legacy technologies such as Flash and a non-UTF-8 charset, indicating some modernization opportunities. Security posture is solid with HTTPS, DNSSEC, and Google reCAPTCHA integration, but lacks advanced security headers and modern charset standards. Privacy and cookie policies are present and GDPR compliant, supporting regulatory adherence. Overall, the site is functional and trustworthy but could benefit from technical updates and enhanced security measures.

HugeDomains operates as a leading online marketplace specializing in the sale of brandable domain names. The website offers competitive pricing, flexible payment plans, and a 30-day money back guarantee, positioning itself as a trusted intermediary for domain buyers and entrepreneurs. The platform targets businesses and individuals seeking premium domain names with a straightforward purchasing process and secure payment options. Technically, the site employs modern web technologies including jQuery, Google Analytics, and Cloudflare services to ensure performance, security, and user tracking. The presence of cookie consent mechanisms and GDPR-compliant privacy policies reflects a mature approach to privacy and regulatory compliance. Security posture is strong with HTTPS enforced, bot management, and reCAPTCHA integration, although explicit security headers could be more visible. The absence of public WHOIS data is consistent with privacy protection practices common in domain reselling, and does not detract from the site's legitimacy. Overall, HugeDomains presents a professional, secure, and user-friendly platform for domain acquisition.

Tork is a leading global brand specializing in professional hygiene products and services, targeting businesses across various sectors such as offices, hospitality, and manufacturing. The website presents a professional and consistent brand image, reflecting its position as part of the Essity group. The digital infrastructure leverages modern technologies including React and Next.js, with integrations for analytics and consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms, although explicit incident response and vulnerability disclosure information are absent. Overall, the website is trustworthy and well-maintained, but the absence of WHOIS data introduces a minor trust concern that should be investigated further.

G

GoDaddy Operating Company, LLC

owned.xyz

71

The website forsale.godaddy.com/forsale/owned.xyz is a professional domain sales landing page operated by GoDaddy Operating Company, LLC, a leading domain registrar and aftermarket platform. It offers the premium domain owned.xyz for sale with a clear call to action, secure transaction assurances, and customer support. The site targets individuals and businesses seeking premium domain names to establish or enhance their online presence. The business model is focused on domain aftermarket sales and brokerage, leveraging GoDaddy's extensive market position and infrastructure. Technically, the site is built using modern web technologies including React with Next.js framework, served via GoDaddy's hosting infrastructure. It employs HTTPS with excellent SSL configuration, uses Google reCAPTCHA for form security, and integrates third-party trust signals such as Trustpilot. The site is optimized for performance, mobile responsiveness, and accessibility, providing a good user experience. From a security perspective, the site demonstrates strong practices such as HTTPS enforcement and secure form handling. However, explicit security headers are not detected in the provided data, and no dedicated security or incident response policies are linked on the landing page. No vulnerabilities or exposed sensitive data were found. Privacy compliance is supported by GoDaddy's comprehensive privacy and cookie policies, with GDPR compliance indicated. Overall, the domain is a subdomain of godaddy.com, explaining the absence of WHOIS data for the subdomain itself. The site is legitimate, professionally maintained, and trustworthy. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and improving visibility of incident response contacts to further strengthen security posture and customer trust.

U

Umlaut Recordings

umlaut.de

40

Umlaut Recordings is a small, niche music label and artist management entity focused on the Didgeridoo player Tom Fronza and associated musicians. The company offers workshops, live performances, studio music production, and music sales through an online shop. The website is professionally designed with clear navigation and good content quality, targeting music enthusiasts and event organizers. Technically, the site is built on WordPress using modern plugins and themes, with moderate performance and good mobile optimization. Security posture is solid with HTTPS, spam protection, and reCAPTCHA, though lacking some advanced security headers and explicit security policies. Privacy compliance is basic with privacy and terms pages present but no cookie consent mechanism. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy small business in the music sector.

F

FlowChief GmbH

flowchief.de

50

FlowChief GmbH is a German-based software company specializing in industrial automation, process control, SCADA systems, and energy management solutions. The company offers a scalable software platform built entirely on web technologies, enabling remote access and control across devices. Their key offerings include the FlowChief platform, e-Gem energy management software, and remote control solutions. The company holds ISO 27001 certification, underscoring its commitment to information security. The website demonstrates a mature digital presence with modern technologies, comprehensive content, and strong customer references. Security practices are robust, including HTTPS, reCAPTCHA, and adherence to recognized standards. Overall, FlowChief presents as a credible and professional entity with a strong market position in the energy and industrial automation sectors.

N

netgrade GmbH

netgrade.de

51

netgrade GmbH is a well-established German digital agency specializing in full-service online marketing and web development. With over 10 years of experience and a team of more than 70 employees, they provide comprehensive services including SEO, SEA, social media marketing, multi-channel marketing, conversion rate optimization, and strategy consulting. Their market position is strengthened by reputable client testimonials and a consistent, professional online presence. The company targets businesses seeking to enhance their online visibility and e-commerce success. Technically, the website is built on WordPress with Elementor and Astra theme, leveraging modern plugins and local hosting of Google Fonts for performance and compliance. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates high professionalism, good SEO, and user experience, with minor gaps in privacy documentation.

S

STURM Isotech GmbH & Co. KG

sturm-isotech.de

57

STURM Isotech GmbH & Co. KG is a specialized service provider in the energy sector, focusing on district heating pipeline planning and network monitoring. The company positions itself as a trusted partner for comprehensive support in the construction and operation of district heating infrastructure. Their website reflects a professional and consistent brand image, targeting businesses and professionals involved in energy infrastructure. Technically, the website is built on WordPress with a modern theme and integrates essential Google services such as Analytics, Maps, Fonts, and reCAPTCHA for spam protection. The site is GDPR compliant with a detailed cookie consent mechanism and a comprehensive privacy policy. Security posture is solid with HTTPS enforced and spam protection in place, though some security headers could be improved. Overall, the website is well-structured, performant, and trustworthy, supporting the company's market position as a niche energy service provider.

K

Kraftanlagen Energies & Services SE

kraftanlagen.com

46

Kraftanlagen Energies & Services SE is a German-based integrated solutions provider specializing in decarbonization and energy transition services across energy, industrial, and building technology sectors. The company operates as part of the Equans Group and offers comprehensive services including consulting, engineering, construction, and maintenance. Their market position is strong within the DACH region, supported by a network of subsidiaries and a professional digital presence. The website demonstrates a mature technical infrastructure leveraging WordPress CMS, modern plugins, and consent management tools, reflecting a good level of digital maturity. Security posture is solid with HTTPS, reCAPTCHA, and consent mechanisms, though some security headers and incident response details could be improved. Overall, the site is professional, well-branded, and compliant with GDPR, but the absence of WHOIS registration data introduces some uncertainty about domain legitimacy that should be verified.

B

BEW - Das Bildungszentrum für die Ver- und Entsorgungswirtschaft gGmbH

bew.de

56

BEW - Das Bildungszentrum für die Ver- und Entsorgungswirtschaft gGmbH is a well-established non-profit educational institution based in Germany, specializing in training and continuing education in environmental protection, waste management, energy, and related sectors. The organization offers a broad range of services including seminars, workshops, online live trainings, e-learning, and inhouse training, targeting professionals and organizations within the environmental and utility industries. Their market position is strong regionally, supported by certifications such as ISO 9001 and Ökoprofit, and a consistent brand presence across multiple digital channels. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Bootstrap and jQuery, with integrated analytics via Matomo and Google Analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, alongside a comprehensive cookie consent mechanism. However, the site lacks explicit security policies and incident response contact information. The security posture is solid with no visible vulnerabilities or exposed sensitive data, but could be enhanced by implementing additional HTTP security headers and publishing a formal security policy. Privacy compliance is strong, with clear privacy and cookie policies in German, and GDPR compliance indicators. The business credibility is high, supported by detailed contact information, certifications, and a professional content presentation. Overall, BEW demonstrates a mature digital presence with a focus on education and sustainability, though improvements in security transparency and incident response readiness are recommended to further strengthen trust and compliance.

A

Agrokor

agrokor.hr

63

Agrokor Nagodba website serves as an official communication platform for the Agrokor group’s extraordinary administration and financial restructuring process. It provides detailed information about settlement plans, legal proceedings, and updates for creditors and investors. The site targets stakeholders involved in or affected by Agrokor's complex debt restructuring. Technically, the website is built on WordPress with modern JavaScript libraries and plugins, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers could be enhanced. Privacy compliance is strong, with GDPR-aligned cookie consent mechanisms and clear privacy and terms of service pages. Overall, the site is professional, trustworthy, and well-maintained, reflecting the serious nature of the business restructuring.

D

Danone

danone.no

71

Danone.no is the Norwegian localized website for Danone, a large multinational food and beverage corporation. The site serves as a corporate and product information portal targeting Norwegian consumers. The website is built on WordPress and incorporates modern technologies such as Google Tag Manager for analytics, Google reCAPTCHA for bot protection, and OneTrust for cookie consent management. Performance monitoring is implemented via New Relic Browser scripts. However, the site lacks explicit privacy policy and terms of service pages, as well as visible contact information, which are important for compliance and user trust. Security practices include HTTPS enforcement and bot protection, but additional security headers and policies could enhance the security posture.

D

Danone

danone.lt

65

Danone.lt is the Lithuanian regional website of Danone, a global leader in the food and beverage industry specializing in dairy, plant-based products, water, and specialized nutrition. The site serves as a corporate and consumer information portal tailored to the Lithuanian market. The website is built on WordPress and incorporates modern web technologies including Google Tag Manager, Google reCAPTCHA, and OneTrust for cookie consent, reflecting a mature digital infrastructure. Performance and mobile optimization are adequate, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced and use of anti-bot mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is strong, with GDPR-aligned cookie consent and a comprehensive privacy policy. Overall, the site projects a professional and trustworthy image consistent with a large multinational enterprise.

Z

Zaklada GNK Dinamo Nema Predaje

zakladanemapredaje.hr

48

Zaklada GNK Dinamo Nema Predaje is a Croatian non-profit foundation officially affiliated with the GNK Dinamo football club. The foundation focuses on promoting equality, social inclusion, and providing humanitarian aid, particularly targeting persons with disabilities, socially vulnerable groups, and young talented athletes. The website serves as a platform to communicate the foundation's mission, programs, and events, and facilitates donations and community engagement. It maintains a strong presence on social media and provides comprehensive contact and legal information.

Promoprint d.o.o. is a Croatian small business specializing in graphic design and printing services, including digital and offset printing, large format printing, and promotional materials such as business cards, brochures, and rollup banners. The company has an established market presence since 2008 and targets businesses and individuals seeking promotional printing solutions. The website is built on WordPress with WooCommerce and Elementor, indicating a modern and flexible technical infrastructure. It includes e-commerce capabilities and uses popular plugins for SEO and cookie consent management. Security posture is adequate with HTTPS, Google reCAPTCHA, and cookie consent mechanisms, but lacks explicit privacy policy, terms of service, and incident response information, which are important for compliance and trust. Overall, the website is professional and functional with moderate performance and good mobile optimization.

D

Datalab

datalab.hr

58

Datalab is a regional technology company specializing in business management software, prominently featuring their PANTHEON ERP solution. The website targets businesses seeking efficient and organized business operations, positioning itself as a trusted software provider in Croatia and neighboring countries. The digital infrastructure is built on WordPress with a professional theme and includes modern tracking and consent technologies such as Google Analytics, Facebook Pixel, and Cookiebot. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements are recommended in security headers and explicit privacy documentation. Overall, the site reflects a mature digital presence with good SEO and user experience, but lacks visible direct contact information and comprehensive privacy disclosures.

C

CADMAP Consulting Ingenieurgesellschaft mbH

cadmap.de

49

CADMAP Consulting Ingenieurgesellschaft mbH is a well-established German company specializing in canal management and operational management systems. Founded in 1989, it holds a leading position in the German-speaking market, offering tailored software solutions, consulting, system support, and training services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting municipal and engineering clients. Technically, the site is built on WordPress with modern plugins and integrates Google analytics and consent management, ensuring GDPR compliance. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site demonstrates a trustworthy and professional business with solid technical and security foundations.

8

8.2 Group e.V.

8p2.de

60

8.2 Group e.V. is a German-based expert organization specializing in consulting, technical inspections, certifications, and expert reports for renewable energy installations including wind, photovoltaic, energy storage, and green hydrogen technologies. With over 30 years of experience and a global presence, they serve operators of renewable energy assets to ensure safe and economical operation. The website is professionally designed using modern web technologies such as Webflow CMS, Google reCAPTCHA, and Plausible Analytics, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no exposed sensitive data, though explicit security headers and published security policies are absent. Privacy compliance is limited due to missing privacy and cookie policies and no consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

M

M.O.S.S. Computer Grafik Systeme GmbH

moss.de

49

M.O.S.S. Computer Grafik Systeme GmbH is a German-based company specializing in intelligent Geo-IT solutions primarily serving public administration, industry, and renewable energy sectors. Their product portfolio centers around the moGI software family, complemented by consulting, system support, training, and custom software development services. The company positions itself as a specialist in energy park planning, environmental management, and smart city solutions, with a medium-sized market presence and a focus on sustainable geoinformation management. Technically, the website is built on WordPress with modern plugins and frameworks, including WPBakery Page Builder and Contact Form 7, enhanced with Google reCAPTCHA and Google Tag Manager for analytics and consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms, and implements cookie consent mechanisms, indicating good security hygiene. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no dedicated security or incident response policies are published, suggesting room for improvement. Overall, the website and domain appear legitimate and professionally managed, with no signs of blocking or malicious activity. The company maintains clear contact channels and demonstrates GDPR compliance. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

B

BREITZMANN Edelmetalle & Diamanten GmbH & Co. KG

breitzmann-edelmetalle.de

9

BREITZMANN Edelmetalle & Diamanten GmbH & Co. KG operates as a local precious metals and diamond trading business based in Bayreuth, Germany. The company offers services including buying and selling gold, silver, diamonds, jewelry, and watches, with a focus on immediate cash payments and free valuations. Their market position is that of a trusted local partner for individuals and investors interested in precious metals and stones. The website content is primarily in German and targets local customers seeking reliable precious metal transactions. Technically, the website employs a modern tech stack including HTML5, CSS3, JavaScript, jQuery, Google Tag Manager, Facebook SDK, and Cookiebot for cookie consent management. The site is served over HTTPS, uses Google reCAPTCHA for form security, and integrates tracking tools for analytics and marketing. However, it lacks advanced security headers and comprehensive privacy and security policies, indicating room for improvement in compliance and security posture. From a security perspective, the site benefits from HTTPS encryption and anti-bot measures but does not publish incident response contacts or security policies. No vulnerabilities or suspicious content were detected. The absence of privacy and terms of service pages represents a compliance gap, especially under GDPR. Overall, the site demonstrates a moderate security maturity level with good business credibility but requires enhancements in privacy and security transparency. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing security headers, publishing privacy and terms of service documents, establishing incident response contacts, and improving accessibility and compliance features to enhance trust and security culture.

C

Creator Hero

creator-hero.com

57

Creator Hero is a technology-driven influencer storefront platform that enables content creators to build custom storefronts, monetize their influence through affiliate marketing, and establish valuable brand partnerships. The platform offers a comprehensive suite of tools including storefront builders, affiliate marketing programs with high commission rates, brand partnership management, and analytics. Positioned as a leading solution in the influencer marketing space, Creator Hero targets influencers and brands seeking streamlined monetization and partnership opportunities. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as Google Tag Manager and Google reCAPTCHA for analytics and security. The site demonstrates excellent design quality, mobile responsiveness, and SEO optimization, providing a smooth user experience. However, some security headers are missing, and there is no explicit cookie consent mechanism, which are areas for improvement. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, indicating a good baseline security posture. The absence of detailed WHOIS data slightly reduces trust but is mitigated by the professional website and clear contact information. No critical vulnerabilities or exposed sensitive data were detected. Overall, Creator Hero presents a trustworthy and professional online presence with strong business credibility and technical maturity. Strategic enhancements in security headers, privacy compliance, and WHOIS transparency would further strengthen its security posture and user trust.

K

Klein Building s.r.o.

kleinbuilding.cz

41

Klein Building s.r.o. is a Czech Republic-based small construction and engineering company specializing in building family houses, reconstruction projects, and energy-efficient building solutions including passive and low-energy homes. The company also provides energy consulting services and assists clients with subsidy programs such as Nová zelená úsporám. The website is professionally designed using WordPress and includes modern technologies like Google reCAPTCHA and Contact Form 7 for user interaction. Privacy and cookie policies are present, indicating awareness of GDPR compliance. However, the absence of WHOIS registrant data and explicit contact emails or phone numbers on the website reduces transparency and trustworthiness. Security posture is moderate with HTTPS enforced but lacking advanced security headers. Overall, the website presents a credible small business with room for improvement in security and contact transparency.

A

ATELIÉR Klein

atelierklein.cz

44

ATELIÉR Klein is a Czech architectural design firm specializing in low-energy and passive family houses as well as commercial buildings. Their services include interior design, project documentation, and energy consulting, with a strong focus on energy efficiency and subsidy program support. The website reflects a small but professional business with consistent branding and a clear market position in the Czech Republic's real estate and energy sectors. Technically, the site is built on WordPress with modern scripts and integrations such as Google reCAPTCHA and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is good with HTTPS and some security best practices, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, GDPR compliant, and provides clear privacy and cookie policies, but lacks explicit contact details and terms of service. The domain WHOIS data is unavailable, likely due to privacy protection, but the website content and partner references support legitimacy.

P

Proweby.cz

proweby.cz

65

Proweby.cz is a Czech-based small business specializing in creating custom websites, e-shops, and SEO services primarily for small and medium-sized enterprises, including real estate professionals. The company emphasizes personalized service, human-centric client relationships, and delivering quality digital marketing solutions tailored to client needs. Their market position is niche-focused with a strong presence in the Czech Republic and Slovak markets, supported by client testimonials and references from reputable partners such as RE/MAX Alfa. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by Yoast SEO for search engine optimization and Google reCAPTCHA for form security. The site demonstrates good mobile responsiveness, modern design, and SEO best practices, although some security headers are missing. Cookie consent mechanisms comply with GDPR, providing users granular control over cookie categories. Security posture is solid with HTTPS enforced and anti-bot measures in place, but lacks explicit published security policies or incident response contacts. The absence of WHOIS data is a minor concern but does not significantly detract from the site's legitimacy given the professional content and active social media presence. Overall, Proweby.cz presents a trustworthy, professional digital presence with strong business credibility and technical maturity. Strategic improvements in security headers and transparency around incident response would further enhance trust and compliance.

Byty Jahodnice is a real estate project offering modern residential apartments in Prague, Czech Republic. The website serves as a sales and informational platform for potential buyers, showcasing apartment options, pricing, construction progress, and contact details. The business targets individuals and families seeking new housing in a natural and well-connected location. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and Google Tag Manager, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent management, though explicit security headers could be enhanced. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given the professional presentation and clear contact information. Overall, the site is well-structured, compliant with GDPR, and provides a trustworthy channel for real estate sales.

G

G-PROJECT, s. r. o.

g-project.cz

10

G-PROJECT, s. r. o. is a Czech-based consulting company specializing in processing applications for European and state grants, project management, and sustainability oversight. The company has a strong market presence with over 7 billion CZK secured for more than 700 projects, targeting municipalities, schools, hospitals, sports clubs, and non-profit organizations. Their business model focuses on success-based payment, enhancing client trust and engagement. Technically, the website is built on WordPress using the Enfold theme and integrates common plugins such as Contact Form 7 and Google reCAPTCHA, though Google Analytics plugins are installed but not configured. The site is mobile-optimized with good SEO practices and clear navigation. Security posture is solid with HTTPS and reCAPTCHA, but lacks some advanced security headers and a vulnerability disclosure policy. WHOIS data is unavailable, which slightly reduces trustworthiness, but the professional content and client testimonials support legitimacy. Privacy and terms policies are missing, which is a compliance gap. Overall, the site is professional, secure, and business credible with room for privacy and security improvements.

E

Enado s.r.o.

enado.cz

11

Enado s.r.o. is a Czech-based company specializing in renewable energy solutions, primarily photovoltaic systems, battery storage, and heat pumps. With 25 years of experience and a significant installed capacity, the company serves a diverse clientele including residential homes, apartment buildings, businesses, and municipalities. Their business model encompasses project design, installation, and ongoing service, positioning them as a trusted expert in the Czech energy market. The website reflects a professional and comprehensive digital presence, leveraging WordPress with modern SEO and user experience practices. Security posture is strong with HTTPS, security headers, and CAPTCHA protections on forms, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-branded, and compliant with GDPR, supporting effective customer engagement and lead generation.

O

Obec Pržno

przno.cz

10

The website przno.cz serves as the official online presence of the municipality of Pržno in the Czech Republic. It provides residents and visitors with essential information about local government activities, news, events, and public services. The site is well-structured, with clear navigation and relevant content tailored to its community audience. It integrates modern web technologies including Google Analytics with user consent and Google reCAPTCHA for form security. The website demonstrates a good level of digital maturity for a small municipal government portal, balancing usability and compliance with privacy regulations. Security posture is adequate with HTTPS enforced and basic protections in place, though there is room for enhancement in security headers and formal policies. Overall, the site is trustworthy, professional, and serves its intended purpose effectively.

M

Město Ostrov

ostrov.cz

10

Město Ostrov operates an official municipal website serving the residents and stakeholders of the town Ostrov in the Czech Republic. The site provides comprehensive information about city governance, news updates, legal documents, event calendars, and contact details for various municipal departments. It targets local citizens, businesses, and visitors seeking official information and services. The website is well-branded and consistent with government standards, reflecting a medium-sized municipal entity founded in 1998. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Swiper.js for UI components, Google reCAPTCHA for bot protection, and Google Translate for multilingual support. It is hosted by WEDOS, a known Czech hosting provider, and uses HTTPS with good SSL configuration. The site is mobile-optimized and includes accessibility features, though some improvements are possible. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and integrates Google Analytics with user consent. However, explicit security headers like CSP and X-Frame-Options are not visibly configured, and no public security or incident response policies are published. No vulnerabilities or suspicious patterns were detected. WHOIS data confirms domain legitimacy and long-term registration consistent with municipal use. Overall, the website demonstrates a good balance of content quality, technical implementation, security posture, privacy compliance, and business credibility. It is a trustworthy and professional government portal with room for minor security and accessibility enhancements.

M

Místní akční skupina Bobrava

masbobrava.cz

43

Místní akční skupina Bobrava is a Czech regional non-profit organization focused on supporting local municipalities, schools, entrepreneurs, non-profits, and the general public within the Bobrava region. The organization provides information on funding opportunities, promotes regional products and services, and engages the community through news updates and events. Their website reflects a professional and community-oriented approach with clear navigation and relevant content. Technically, the site is built on WordPress with common plugins and frameworks such as Bootstrap, and it employs Google reCAPTCHA for form security and a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's content and structure suggest legitimacy. Overall, the site is well-maintained, user-friendly, and compliant with privacy regulations.