Security Directory

J

JVAL Openair

jval.ch

46

JVAL Openair is a well-established regional music festival in Switzerland with a 20-year history, focusing on contemporary music and community engagement. The website provides detailed event programming, artist lineups, and volunteer information, targeting festival attendees and local cultural enthusiasts. Technically, the site is built on WordPress using modern plugins and themes, offering good mobile responsiveness and user experience. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies. No contact emails or phone numbers are explicitly provided, which could impact user trust and compliance. Overall, the site is professional and credible but would benefit from enhanced privacy compliance and security practices.

D

DGSV e.V.

pro-xperts.de

47

proXPERTS is a specialized German electronic magazine serving the expert and appraiser community, operated under the auspices of DGSV e.V. The website provides industry news, practical advice, and advertising opportunities tailored to professionals in various appraisal sectors. The business model is subscription-based with additional free access for association members. Technically, the site uses a modern front-end stack including Bootstrap and jQuery, with cookie consent managed by Usercentrics, ensuring GDPR compliance. The site is well-structured, mobile-optimized, and uses HTTPS with no detected security vulnerabilities in the content. However, explicit security policies and incident response contacts are not published, which could be improved. Overall, the site demonstrates a solid security posture and professional business credibility.

F

fit GmbH

fit.de

57

fit GmbH is a German manufacturing and retail company with a diversified portfolio of consumer brands focused on personal care and household products. The website presents a professional and well-structured digital presence built on TYPO3 CMS, featuring multiple brand pages, career opportunities, and press information. The company targets a general consumer audience primarily in Germany. Technically, the website employs modern JavaScript libraries and privacy-conscious analytics via Matomo, with a cookie consent mechanism that supports opt-out and revocation, indicating good privacy practices. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though explicit security policies and headers could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

ONI Temperiertechnik RHYTEMPER GmbH is a medium-sized German manufacturing company specializing in innovative and energy-efficient temperature control solutions for the plastics and metal processing industries. As part of the ONI Group, it holds a leading market position in multi-channel tempering technology, serving prominent industrial clients such as Audi, BMW, and Volkswagen. The website reflects a professional and comprehensive presentation of their products, services, and corporate history, supporting their B2B business model effectively. Technically, the site uses modern web technologies including jQuery, Leaflet.js, and slick carousel, built on the ProcessWire CMS platform, hosted likely by Oberberg-Online. The site is mobile-optimized and well-structured, though accessibility features are basic. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks security headers and incident response contact information. Privacy compliance is mostly met with a clear privacy policy but missing cookie consent mechanisms. Overall, the website is trustworthy and professional, with strong business credibility and good content quality.

S

SIGIC - The Slovenian Music Information Center

musicslovenia.si

41

Music Slovenia is a consortium of Slovenian musical institutions dedicated to promoting Slovenian music both nationally and internationally. The website serves as a platform to connect various stakeholders in the Slovenian music scene, offering news, event information, playlists, tours, and showcases. The organization targets musicians, cultural institutions, and music enthusiasts interested in Slovenian music. The business model focuses on cultural promotion and collaboration facilitation within the music industry niche. Technically, the website employs a modern but somewhat dated technology stack including jQuery 2.2.4, Bootstrap, and various UI libraries. It uses HTTPS with good SSL configuration but lacks security headers. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Analytics are handled via Plausible Analytics, indicating a privacy-conscious approach but lacking cookie consent mechanisms. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data but misses important security headers and formal security policies such as privacy, cookie, and incident response disclosures. No vulnerability disclosure or security contact information is provided, which could be improved to enhance trust and compliance. The domain registration data is consistent and appropriate for the business, supporting legitimacy. Overall, the website is professional and trustworthy with good content quality and business credibility but requires improvements in privacy compliance and security best practices to reach higher maturity levels.

S

Swiss Music Export

swiss-music-export.com

46

Swiss Music Export is a well-established platform dedicated to promoting Swiss music artists internationally. Founded in 2002, it serves as a key cultural export organization providing artist showcases, news, event information, and business support to the Swiss music industry. The website targets music professionals, artists, and fans interested in Swiss music, positioning itself as a trusted national resource. Technically, the site is built on WordPress with a moderate performance profile, leveraging common web technologies such as jQuery, Google Analytics, and Google reCAPTCHA for analytics and security. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration is consistent with the business history, supporting legitimacy. Overall, the website demonstrates a solid digital presence with room for security improvements.

M

muensterLAND.digital e.V.

muensterhack.de

45

MÜNSTERHACK is a well-established civic technology hackathon based in Münster, Germany, focused on bringing together professionals, students, and civic activists to collaboratively develop ideas and prototypes that enhance the livability of the city and region. Supported by local government, businesses, and community organizations, it has a strong market position as a key event in the regional tech and civic engagement ecosystem. The website reflects a professional and community-driven business model emphasizing open data and sustainable urban development solutions. Technically, the website employs modern web technologies including Bootstrap, jQuery, Font Awesome, and Matomo analytics, hosted on Alfahosting infrastructure. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in security headers and cookie consent mechanisms are recommended. The use of Matomo indicates a privacy-conscious approach to user tracking. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, the absence of explicit security headers and cookie consent mechanisms suggests room for improvement in compliance and security posture. No incident response or vulnerability disclosure information is provided, which could be enhanced to build trust. Overall, the website is trustworthy, professionally maintained, and serves its community well. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and adding incident response contacts to improve compliance and security maturity.

B

bauexpert S.p.A

domusbauexpert.it

11

DOMUS bauexpert is a medium-sized Italian company specializing in high-quality interior and exterior finishing products, including flooring, coverings, bathroom furnishings, and doors. It operates primarily in the Trentino Alto Adige region, offering a comprehensive customer experience through multiple showrooms and expert consultancy services. The website reflects a strong regional market position with a focus on professional design and customer support. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Google reCAPTCHA, and Iubenda for cookie compliance, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, although some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

A

Apecita

agrorientation.com

48

Agrorientation.com is a specialized French portal operated by Apecita, focusing on careers and training in agriculture, agro-food, and environmental sectors. It serves students, professionals, and job seekers by providing comprehensive information on métiers, formations, events, and employment opportunities. The site is well-branded, consistent, and integrates partner content from Apecita and Apecita Media. Technically, the site uses modern JavaScript libraries such as jQuery, Select2, and Magnific Popup, with asynchronous script loading and cookie consent managed via axept.io, ensuring GDPR compliance. The site is mobile-optimized and accessible, with good SEO practices and structured data markup. Security posture is solid with HTTPS and cookie consent, though explicit security headers and incident response policies are absent. WHOIS data confirms legitimacy with consistent registrant information matching the business entity. Overall, the site is professional, trustworthy, and well-suited for its educational and career guidance purpose.

F

Film Association of South Tyrol (FAS)

fas-film.net

46

The Film Association of South Tyrol (FAS) is a professional organization representing film industry professionals in South Tyrol, Italy. It serves as a hub for filmmakers, actors, production companies, and service providers, promoting the region as a film-friendly location and supporting local film productions with international aspirations. The website is well-structured, bilingual (German and Italian), and provides clear information about the association's mission, membership, and news. The presence of partner logos and a newsletter subscription indicates active community engagement. Technically, the website is built on WordPress using WPBakery Page Builder and common JavaScript libraries such as jQuery and MediaElement.js. It employs HTTPS with a valid SSL certificate and includes a GDPR-compliant cookie consent mechanism. The site is moderately optimized for performance and mobile devices, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and does not provide visible security policies or incident response contacts. The WHOIS data for the domain is unavailable, which is unusual but the website content and professional presentation suggest legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site presents a trustworthy and professional front for the Film Association of South Tyrol, with minor improvements recommended in security headers and transparency around security policies. The missing WHOIS data warrants monitoring but does not currently indicate malicious intent.

I

ILGA World

ilga.org

73

ILGA World is a well-established global non-profit organization advocating for the human rights of lesbian, gay, bisexual, trans, and intersex people worldwide. Founded in 1978, it operates as a federation of over 2,000 member organizations across 170 countries, providing advocacy, research, and grassroots support. The website reflects a mature digital presence with comprehensive content, strong branding, and clear navigation targeting activists, civil society, and human rights stakeholders. Technically, the site is built on WordPress with modern plugins for SEO, accessibility, and user engagement. It uses Cloudflare DNS and integrates Google reCAPTCHA for form security. The site is mobile-optimized and accessible, with good SEO practices and cookie consent mechanisms in place. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced, clientTransferProhibited domain status, and no visible vulnerabilities or exposed sensitive data. However, DNSSEC is not enabled and security headers are not explicitly detected, indicating areas for improvement. Privacy compliance is strong with clear privacy and cookie policies and GDPR-aligned consent mechanisms. Overall, ILGA World’s website is trustworthy, professional, and secure, supporting its mission effectively. Strategic recommendations include enhancing DNS security, publishing explicit security policies, and implementing security.txt or vulnerability disclosure channels to further strengthen trust and compliance.

D

Datackathon

datackathon.com

56

Datackathon is a French digital magazine specializing in data, digital technology, cybersecurity, AI, cloud computing, SaaS, marketing, and e-commerce. It targets professionals and enthusiasts interested in these domains by providing regularly updated articles and news. The website is built on WordPress and leverages modern web technologies such as Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and user-friendly experience. Advertising is primarily managed through Google Adsense and affiliate marketing via ThirstyAffiliates. The website enforces HTTPS, ensuring secure communication, but lacks some advanced security headers and explicit cookie consent mechanisms, which are recommended for compliance and enhanced security. The WHOIS data for the domain is missing or unavailable, which raises questions about domain registration transparency, though the website content and structure appear legitimate and professional.

The website workspace-solution.com represents a small French technology company named Addona Editions offering customizable web management solutions including CRM, invoicing, email marketing, websites, and mobile/web applications. The business targets organizations seeking modular ERP and management tools tailored to their specific needs. The site is professionally designed with consistent branding and clear navigation, providing good user experience and relevant content for its audience. Technically, the site uses a variety of modern front-end libraries such as Bootstrap, jQuery, Font Awesome, and Ionicons, but lacks evidence of a CMS or backend framework. Performance is moderate with good mobile optimization but basic accessibility and SEO features. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is missing or inaccessible, raising concerns about domain registration legitimacy. Overall, the site is functional and business-focused but requires improvements in security, compliance, and domain registration transparency.

B

BNI Osmose & Co

meetsuo.com

61

Meetsuo is a French technology company founded in 2023 that offers a SaaS platform designed to enhance the efficiency and quality of professional business meetings. Their solution targets professional networking groups and meeting organizers, providing tools such as attendance tracking, badge generation, QR code stands, photo directories, PowerPoint generation, satisfaction surveys, guest tracking, and payment management. The company positions itself as a niche provider with clear subscription pricing and positive customer testimonials, indicating a growing presence in its market segment. Technically, the website is built on a modern stack including Bootstrap, jQuery, and various UI libraries, hosted by OVH with DNS managed via Cloudflare. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and Google reCAPTCHA is used on the contact form, but DNSSEC is not enabled and no explicit security headers are detected, representing areas for improvement. Privacy compliance is basic with a privacy policy present but lacking explicit GDPR details. Overall, the website is trustworthy and functional but could benefit from enhanced security and privacy practices.

J

Jez Koncept

jezkoncept.cz

47

Jez Koncept is a Czech hospitality and catering company with a history dating back to the 1990s. The company operates multiple gastronomic outlets including restaurants, canteens, cafes, catering services, and fine dining concepts. Their market position is that of an established regional player offering a wide range of food services targeting both corporate clients and general consumers. The website presents a professional image with clear branding and multiple service brands linked from the main site. Technically, the website is built on WordPress and uses modern JavaScript libraries such as jQuery, Slick Carousel, and Magnific Popup. Security measures include HTTPS enforcement and Google reCAPTCHA on the contact form, along with GDPR consent mechanisms. However, the absence of WHOIS data and some missing security headers slightly reduce the overall trust score. The site is fully accessible with no blocking or WAF challenges detected.

C

Curated Capital & Planning LLC

curatedcp.com

58

Curated Capital & Planning LLC is a specialized financial advisory firm focusing on remarried baby boomers with blended families. The company offers fee-only, fiduciary financial planning and investment management services, operating virtually across the United States. The website is professionally designed, with clear branding and trust indicators such as CFP certification and industry memberships. Technically, the site uses modern web technologies including Bootstrap, jQuery, and MailerLite for marketing and forms, hosted on Zephyr CMS. The site is mobile optimized and performs moderately well. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and cookie consent mechanisms, which are recommended for compliance and enhanced protection. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the site is safe, professional, and trustworthy for its target audience. Recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing terms of service and incident response policies, and verifying domain registration details to improve legitimacy and trust.

A

Artisan Financial Planning

artisanfinancialplanning.com

60

Artisan Financial Planning is a specialized financial advisory firm offering flat-fee financial planning and investment management services tailored specifically for musicians, performing artists, and creatives. The company positions itself as an affordable, transparent, and client-aligned alternative to traditional asset-based fee advisors, emphasizing simplicity and empathy in its service delivery. The website content is professionally crafted, targeting a niche market segment with clear messaging and trust signals such as professional certifications and media features. Technically, the website is built on a modern stack including jQuery, Bootstrap, Font Awesome, and Zephyr CMS. It integrates marketing and analytics tools such as Google Tag Manager, MailerLite, and Plausible Analytics, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several recommended security headers and does not provide a cookie consent mechanism, which could impact privacy compliance. The absence of WHOIS registration data is a notable anomaly that reduces trustworthiness, though the professional presentation and certifications mitigate some concerns. Overall, the website presents a low-risk profile with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response policies, and clarifying domain registration details to enhance trust and compliance.

O

Objective Wealth

objectivewealthfp.com

63

Objective Wealth is a small financial advisory firm specializing in tax-conscious comprehensive financial planning and investment management. The website presents a professional image with clear descriptions of services including financial and retirement planning, investment management, tax planning and preparation, and small business retirement plans. The firm targets individuals and small businesses seeking personalized financial guidance. The website is built on a modern technical stack including jQuery, Bootstrap, FontAwesome, and uses Zephyr CMS. Tracking technologies such as Google Tag Manager and Facebook Pixel are implemented for analytics and marketing purposes. Security posture is moderate with HTTPS usage implied, but lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy and reduces overall trust. No forms or direct contact information were found in the provided content, limiting user engagement options. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and verified domain registration information.

P

Phototendance

phototendance.com

49

Phototendance is a French language website focused on photography trends or related content, built on WordPress using the Divi theme and several plugins. The site appears to target French-speaking photography enthusiasts or professionals, offering informational content without explicit business descriptions or commercial services. Technically, the site uses modern web technologies and SEO plugins but lacks visible security headers and privacy compliance documentation. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content is accessible and professional in design. Security posture is moderate but could be improved with better header configurations and documented policies. Overall, the site is functional and moderately trustworthy but lacks critical compliance and contact transparency.

B

BLOOM'UP

bloomup.net

51

Bloom'Up is a French accredited domain registrar specializing in the acquisition and resale of recently expired domain names with strong SEO potential. The company offers services such as dropcatching, backorder programming, immediate domain purchase, and auctions, targeting SEO professionals and digital marketers seeking to leverage domain authority and traffic. The website is professionally designed, mobile-optimized, and provides clear business information including contact details and accreditation by AFNIC, enhancing trustworthiness. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, and Owl Carousel, ensuring a responsive and visually appealing user experience. While the site uses HTTPS and secure transfer codes for domains, it lacks visible security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site demonstrates a good baseline with HTTPS and secure domain transfer processes. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy or recent registration status. No critical vulnerabilities or exposed sensitive data were identified. The site would benefit from enhanced security headers, explicit incident response policies, and GDPR-compliant cookie consent. Overall, Bloom'Up presents a credible and professional business with a niche market focus. The main risk lies in the missing WHOIS data which impacts domain trustworthiness. Strategic recommendations include improving security headers, implementing cookie consent, and publishing detailed security and incident response policies to bolster compliance and user trust.

A

ATX-DYNO LTD.

atx-dyno.com

55

ATX-DYNO LTD. is a Czech-based manufacturing company founded in 2015 specializing in precision metrological devices and control systems integration for automotive and agricultural machinery sectors. The company serves notable clients such as New Holland, John Deere, and Fendt, positioning itself as a niche player with customized dynamometer solutions. The website is professionally designed, mobile-optimized, and provides comprehensive contact information, including multiple physical locations and social media presence. Technically, the site uses modern frameworks like Bootstrap and integrates marketing and analytics tools such as Google Tag Manager and Pipedrive CRM forms. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. WHOIS data is unavailable, which reduces domain trustworthiness, though website content and business information appear legitimate. Overall, the site scores well on content quality and business credibility but should improve privacy transparency and security practices.

X

XTUNING s.r.o.

dpf-xtuning.cz

49

XTUNING s.r.o. operates the website dpf-xtuning.cz, providing specialized cleaning services for diesel particulate filters (DPF) primarily targeting vehicle owners with diesel engines in the Czech Republic. The company positions itself as a niche service provider focusing on emission compliance and vehicle inspection readiness through professional DPF cleaning. The website is well-structured, with clear service descriptions and a professional design that supports user engagement and conversion via contact forms and ordering options. The business model revolves around service delivery with partnerships in related automotive performance sectors.

X

XTUNING LTD. - pobočka

xtuning.cz

50

XTuning is a professional automotive tuning company specializing in chip tuning services for passenger cars, agricultural machinery, and trucks. Established since 1999, the company operates primarily in the Czech Republic and neighboring countries, offering performance optimization and fuel consumption reduction services. The website reflects a mature digital presence with certifications from the Ministry of Transport and TÜV SÜD, enhancing trust and credibility. Technically, the site uses modern frameworks like Bootstrap and integrates multiple marketing and analytics tools with proper consent mechanisms. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data limits domain trust verification but does not detract from the professional presentation and business legitimacy. Overall, XTuning demonstrates a solid market position with clear service offerings and customer engagement channels.

NRW Partner Zoo is a consortium of 12 major zoos and animal parks in North Rhine-Westphalia, Germany, focused on conservation, education, and providing visitor benefits such as discounted entry. The website is well-structured, informative, and targets families, zoo visitors, and conservation enthusiasts. Technically, it uses modern front-end frameworks like Bootstrap and jQuery, with responsive design and conditional Google Analytics tracking respecting user consent. Security posture is moderate with cookie consent implemented and anonymized analytics, but lacks explicit security headers and incident response policies. Overall, the site is trustworthy, professional, and compliant with GDPR, with clear contact information and strong partner representation.

Gočárova Galerie is a regional cultural institution based in Pardubice, Czech Republic, focused on art and architecture exhibitions, educational programs, and community engagement. The gallery operates under the auspices of the Pardubice regional government and offers a variety of exhibitions, workshops for children and adults, and event space rentals. The website is professionally designed, primarily in Czech, with clear navigation and a modern technical stack including jQuery, Foundation, and Google Tag Manager for analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are not evident. The domain registration aligns well with the gallery's founding date, supporting legitimacy. Overall, the site presents a trustworthy and well-maintained digital presence for a government-supported cultural entity.

O

Otipass

otipass.com

57

Otipass is a French company specializing in the digitization of territorial and cultural passes, including tourist and multiservice passes. The company positions itself as a market leader in France with a strong presence in public procurement catalogs and a network of city clients. The website is built on Joomla CMS using modern frameworks and includes integrations with analytics and marketing tools such as Matomo and Google Tag Manager. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy policies and terms of service are not clearly found. WHOIS data is missing, which raises concerns about domain registration legitimacy, but the website content and client testimonials support a credible business presence. Overall, the site is professional, well-branded, and targets local governments and tourism sectors.

S

SELA Immo

sela-immo.fr

50

SELA Immo is a regional real estate company specializing in the sale and rental of land, houses, and apartments primarily in the Loire-Atlantique region of France. The website serves both individual consumers and professional clients, offering property listings, advice, and partnership opportunities with construction companies. The company positions itself as a trusted local real estate developer with a focus on sustainable and community-oriented projects. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Google Analytics, providing a modern and responsive user experience. However, some technical improvements are possible, including better security header implementation and full configuration of analytics tools. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security policies and incident response information. The absence of WHOIS data for the domain reduces trustworthiness and warrants further investigation. Overall, the website is professional, content-rich, and compliant with GDPR privacy requirements, making it a credible platform for real estate services in its market niche.

B

Brain Behind Ltd

brain-behind.com

53

Brain Behind Ltd is a UK-based medium-sized company founded in 2005, specializing in high-volume loyalty and mission-critical loyalty solutions integrated with existing payment terminals. The company serves a diverse B2B audience including financial institutions, retailers, tourism operators, and urban mobility planners. Their product suite includes enterprise vouchers, loyalty programs for banks, tourism solutions, and contract farming administration systems. The website reflects a mature business with a consistent brand and strong partner ecosystem. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Maps API, hosted on UKFast infrastructure. Security posture is moderate with room for improvement in DNSSEC and HTTP security headers. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company's market position as a reliable provider of payment and loyalty solutions.

L

LED MULTIMEDIA s.r.o.

ledmultimedia.cz

47

LED MULTIMEDIA s.r.o. operates the largest independent network of large-format LED screens in the Czech Republic, specializing in digital outdoor advertising. The company focuses on leveraging modern LED technology to provide high-visibility advertising solutions adaptable to various weather conditions and client needs. Their business model centers on owning and managing LED advertising spaces, offering clients flexible campaign options and comprehensive service support. The website reflects a professional and consistent brand image, targeting business clients and advertisers within the Czech market. Technically, the site employs modern web technologies including JavaScript libraries, Google Fonts, and tracking via Google Analytics, hosted on VAS Hosting infrastructure. While the site is mobile-optimized and well-structured, it lacks a dedicated privacy policy and explicit security headers, which are areas for improvement. Security posture is moderate with HTTPS usage and cookie consent implemented, but no published security or incident response policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

Générations Futures

shaketonpolitique.org

64

Shake Ton Politique is a French non-profit civic engagement platform operated by Générations Futures, focused on enabling citizens to participate in public health and environmental policy discussions. The website offers consultations, petitions, and interpellations to government officials and elected representatives at various levels. The platform is well-positioned in the niche of environmental advocacy and public policy engagement in France. Technically, the site is built on WordPress with modern plugins for SEO and cookie consent, hosted with OVH and using Cloudflare DNS for performance and security. The security posture is solid with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and enhanced security headers are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR, providing clear contact information and active social media presence. No adult or explicit content is present, making it safe for general audiences.

G

Générations Futures

generations-futures.fr

68

Générations Futures is a well-established French non-profit organization founded in 1996, dedicated to protecting future generations from pesticides and other chemical pollutants. The association is accredited by the Ministry of Ecology and recognized as a public interest organization. It operates primarily through advocacy, public awareness campaigns, scientific publications, and support for victims of pesticides. The website reflects a mature digital presence with comprehensive content, active social media engagement, and clear calls to action such as donations and volunteer recruitment. Technically, the website is built on WordPress with modern JavaScript libraries and CSS frameworks like Bootstrap. It employs cookie consent management via Tarteaucitron and integrates Google Analytics for traffic analysis. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are not explicitly detected in the HTML source. HTTPS is enforced, ensuring secure communications. From a security perspective, the site demonstrates good practices including encrypted connections and privacy compliance with GDPR. However, the absence of WHOIS data limits domain trust verification, and no explicit security or incident response policies are published. No critical vulnerabilities or exposed sensitive data were found in the content. Overall, Générations Futures presents a trustworthy and professional online presence consistent with its mission as an environmental NGO. Strategic improvements in security headers, incident response transparency, and domain registration visibility would further enhance its security posture and trustworthiness.

Z

Zephyr

zephyrcms.com

61

Zephyr is a specialized service provider focused on delivering beautiful websites and marketing solutions exclusively for fee-only Registered Investment Advisors (RIAs). The company positions itself as a niche expert helping independent fiduciary financial advisors enhance their brand identity and marketing effectiveness through tailored digital solutions. Their website showcases a professional design with clear navigation, client testimonials, and featured client case studies, reinforcing their credibility in the financial advisory sector. From a technical perspective, the website leverages modern web technologies including Bootstrap, jQuery, FontAwesome, and integrates marketing and analytics tools such as Google Tag Manager, MailerLite, Plausible, and Fathom Analytics. The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure. However, some security best practices like explicit security headers and cookie consent mechanisms are missing. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain raises some concerns about domain legitimacy or recent registration status, but the professional content and consistent branding mitigate immediate trust issues. No incident response or vulnerability disclosure information is provided, which could be improved to enhance security transparency. Overall, Zephyr presents a trustworthy and professional online presence with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen their security posture and regulatory alignment, supporting their business credibility and client trust.

S

Sodovkárna Kolín

sodo-kolin.cz

57

Sodovkárna Kolín is a Czech beverage manufacturer specializing in traditional non-alcoholic sodas with over 100 years of history. The company offers a variety of flavors and targets both general consumers and horeca businesses through a gastro partner program. The website reflects a well-established local brand with consistent branding and clear contact information. Technically, the site uses modern web technologies such as Bootstrap and jQuery, with tracking via Google Tag Manager and Leady. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers and policies could enhance protection. The absence of WHOIS data limits domain trust assessment but does not detract from the business legitimacy evident on the site.

C

Czech Film Center

filmcenter.cz

53

Czech Film Center is a government-affiliated organization dedicated to promoting Czech audiovisual production globally. It serves as a key resource for film industry professionals, providing information on films, filmmakers, festivals, and industry news. The website is professionally designed with consistent branding and clear navigation, targeting the international film community and industry stakeholders. Technically, the site employs a modern JavaScript stack including jQuery, Bootstrap, and Google services, ensuring a good user experience with moderate performance and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit security policies. Privacy compliance is strong, featuring a comprehensive privacy policy and a granular cookie consent mechanism. The absence of WHOIS data reduces domain trust assessment, but the official affiliations and content quality support legitimacy. Overall, the site is a reliable and professional platform for Czech film promotion.

M

Město Kutná Hora

kutnahora.cz

64

Město Kutná Hora operates an official municipal information portal serving citizens, entrepreneurs, and tourists. The website provides comprehensive information about city administration, cultural events, tourism, and local services. It holds a strong market position as the authoritative source for Kutná Hora city information, leveraging official branding and UNESCO heritage association. The portal supports multiple languages and integrates social media channels to enhance engagement. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and various JavaScript libraries for UI components and analytics. The CMS identified is Marwel, a specialized platform. The site is mobile optimized with good SEO and accessibility features, though some improvements in security headers and incident response transparency are recommended. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with GDPR-aligned cookie management and privacy policy presence. Overall, the website is a trustworthy, well-maintained municipal portal with moderate technical sophistication and good user experience. The absence of WHOIS data slightly reduces domain trust but does not detract from the legitimacy of the site. Strategic improvements in security policy publication and header implementation would enhance the security posture further.

Divadlo na Vinohradech is a prominent repertory drama theatre located in Prague, Czech Republic, with a rich history dating back to the early 20th century. The theatre offers a wide range of Czech and international plays, focusing on quality dramatic works and strong storytelling. It serves a general audience interested in cultural and theatrical experiences, providing ticket sales, subscriptions, club memberships, and gift vouchers as part of its business model. The website reflects a well-established cultural institution with consistent branding and professional content.

A

Active Citizens Fund

activecitizensfund.cz

10

Active Citizens Fund is a Czech Republic-based non-profit grant program focused on strengthening civil society, promoting openness, tolerance, and citizen participation in public policy. The website presents a professional and consistent brand image, targeting NGOs, vulnerable groups, and civic activists. The program is supported by EEA and Norway Grants, indicating a reputable funding source. Technically, the site is built on WordPress with common plugins for GDPR compliance and user experience enhancements. The presence of Google Tag Manager indicates moderate analytics and tracking capabilities. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data is a concern for domain transparency but does not detract significantly from the site's legitimacy given the content and social media presence. Overall, the site is well-structured, accessible, and trustworthy for its intended audience.

I

Inbound Back Office

inboundbackoffice.com

45

Inbound Back Office is a service provider specializing in white-label virtual assistant and marketing support services tailored for marketing agencies, fractional CMOs, and small businesses. The company positions itself as a scalable and seamless support partner, trusted by hundreds of teams globally to handle marketing execution and administrative tasks without the complexities of hiring. Their website reflects a professional and consistent brand image with clear messaging and client testimonials that reinforce trust. Technically, the website leverages modern front-end technologies including Bootstrap, Tailwind CSS, jQuery, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and HubSpot. The site is built on Zephyr CMS and demonstrates good mobile optimization and user experience. However, some areas such as accessibility and SEO could be improved. Security-wise, HTTPS is properly implemented, but the absence of security headers and privacy/cookie policies indicates room for enhancement in compliance and protection. The security posture is moderate with no immediate vulnerabilities detected in the visible content, but the lack of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. This discrepancy between professional website content and missing domain registration information suggests the need for further verification. Overall, the site is functional and credible from a business perspective but requires improvements in privacy compliance and security best practices. Strategically, the company should prioritize establishing clear privacy and cookie policies, implement security headers, and resolve WHOIS registration transparency to strengthen trust and compliance. Enhancing accessibility and SEO will also improve user reach and satisfaction.

A

Akademie klasické homeopatie, spol. s r.o.

studujtehomeopatii.cz

42

Akademie klasické homeopatie, spol. s r.o. is a Czech Republic-based educational organization specializing in professional homeopathy training for medical professionals and the general public. The website offers detailed information about courses, seminars, congresses, and online lectures led by an experienced homeopath. The company has a clear market position with over 32 years of experience in the field. Technically, the website uses a modern JavaScript and CSS stack with responsive design and integrates common analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS and secure login forms, but lacks advanced security headers and explicit privacy policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and company registration details support legitimacy. Overall, the site is professional, informative, and trustworthy for its target audience.

D

DOC.DREAM services s. r. o.

ji-hlava.cz

47

MFDF Ji.hlava is a prominent international documentary film festival based in the Czech Republic, operated by DOC.DREAM services s. r. o. The organization focuses on promoting creative documentary cinema through annual festivals, industry events, and year-round activities including publications and forums. The website reflects a mature digital presence with extensive content, multimedia integration, and clear navigation targeting documentary film enthusiasts and industry professionals. Technically, the site employs a modern JavaScript stack with popular libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data is a notable gap, slightly impacting trust assessment, but the presence of reputable partners and GDPR compliance supports legitimacy. Overall, the site is professional, content-rich, and well-positioned within its cultural niche.

N

Next mind s.r.o.

nextmind.cz

44

Next mind s.r.o. is a Czech technology company specializing in artificial intelligence implementation, consulting, and training services for businesses, cities, and institutions. The company positions itself as a practical AI partner, offering tailored solutions from analysis to deployment and change communication. The website is bilingual (Czech and English), professionally designed, and provides detailed service and career information, reflecting a focused business model in the AI technology sector.

Shen Yun Performing Arts is a globally recognized performing arts company specializing in classical Chinese dance and music performances. The company tours extensively, reaching audiences in over 20 countries and 200 cities annually. Their business model centers on ticket sales for live shows that celebrate and revive traditional Chinese culture. The website is professionally designed, mobile-optimized, and rich in content, providing comprehensive information about performances, ticketing, and audience reviews. Technically, the site employs modern web technologies including React, Google Tag Manager, and multiple analytics platforms, ensuring good performance and user experience. Security posture is strong with HTTPS enforcement and security headers, though the absence of public WHOIS data slightly reduces domain trustworthiness. Overall, the site demonstrates a mature digital presence with effective marketing and analytics integration, supporting a reputable cultural enterprise.

Č

České modelky s.r.o.

brigadyhostesky.eu

43

České modelky s.r.o. operates the website brigadyhostesky.eu, providing an online platform for event staffing, specifically offering job opportunities for hostesses and promoters across the Czech Republic. Established since 2006, the company positions itself as a professional service provider in organizing commercial and social events. The website features detailed job listings, profiles of hostesses, and client references, targeting individuals seeking temporary work in promotional roles. The business model revolves around connecting clients with suitable event staff and managing registrations and communications online. Technically, the website employs a modern frontend stack including jQuery, Bootstrap 5, FontAwesome, and Google reCAPTCHA for form security. The site is mobile-optimized with good navigation and content structure, although some advanced security headers and cookie consent mechanisms are missing. External resources and partner domains are well integrated, indicating a mature digital presence. However, the lack of WHOIS data limits domain trust verification. From a security perspective, HTTPS is used, and spam protection is implemented via reCAPTCHA. The absence of security headers like CSP and HSTS, and missing cookie consent, represent areas for improvement. No critical vulnerabilities or adult content were detected, and privacy policy compliance with GDPR is indicated. Overall, the site demonstrates a moderate security posture suitable for its business scope but would benefit from enhanced security controls. The overall risk assessment is moderate with a trust score of 75 out of 100. Strategic recommendations include implementing security headers, adding cookie consent, improving WHOIS transparency, and maintaining up-to-date software. These steps will enhance user trust, compliance, and security resilience.

D

Diochi

diochi.cz

48

Diochi.cz is an established Czech company specializing in the development, manufacturing, and sale of natural bioinformational dietary supplements. The website reflects a mature e-commerce platform with a membership club, targeting health-conscious consumers interested in natural products. The company has a long-standing domain since 2003, indicating stability and market presence. Technically, the site is built on Joomla CMS with modern JavaScript libraries and frameworks, supporting responsive design and accessibility at a basic level. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and advanced login options including WebAuthn, though some security headers could be improved. Advertising and analytics are implemented with user consent, reflecting GDPR compliance. Overall, the site is professional, trustworthy, and well-positioned in its niche.

U

UA Consultants

uaconsultants.net

48

UA Consultants is a small-sized environmental consulting firm based in India, established in 2010. They specialize in providing expert consulting services to help businesses achieve regulatory compliance and sustainability goals, with a strong focus on certifications such as FSC, PEFC, Carbon Neutral, and ESG. The website reflects a professional and consistent brand image, supported by client testimonials and accreditation claims. Technically, the site uses modern frameworks like Bootstrap and jQuery, integrates Google Analytics for tracking, and is hosted on reputable providers. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and well-positioned in its niche but could improve compliance and security practices.

T

The Knowledge Online

theknowledgeonline.com

67

The Knowledge Online is a well-established media production directory serving the UK film, television, and commercials industry. It provides comprehensive contact information for crew and companies, available in both print and digital formats. The website reflects a professional and trusted resource with a long history dating back to 1986, positioning itself as a key industry directory. Technically, the website is built on WordPress with a modern tech stack including WooCommerce, Google Tag Manager, and various JavaScript libraries, ensuring a good user experience and moderate performance. Security-wise, the site employs HTTPS, security headers, and monitoring tools like New Relic, though there is room for improvement in CSP implementation and incident response transparency. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, though the lack of WHOIS data slightly reduces domain trust. Strategic recommendations include enhancing security policies, improving accessibility, and publishing vulnerability disclosure information.

R

REGIO AUTO, spol. s r.o.

regioauto.cz

58

REGIO AUTO, spol. s r.o. is an authorized automotive dealership specializing in Fiat, Jeep, Alfa Romeo, and Fiat Professional vehicles, operating primarily in the Hradec Králové region of the Czech Republic. The company offers new and used car sales, financial services, authorized servicing, and original spare parts, positioning itself as a trusted regional dealer with a professional online presence. The website reflects a medium-sized business with a clear focus on automotive retail and service, targeting general consumers interested in these vehicle brands. Technically, the website employs a modern technology stack including jQuery, Font Awesome, Google Fonts, and various JavaScript libraries for galleries and popups. It uses the EasyWeb CMS platform and integrates tracking tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security or incident response policies. Cookie consent mechanisms are implemented, indicating some privacy compliance, but no terms of service or vulnerability disclosure information is present. The absence of WHOIS data for the domain reduces trust in domain legitimacy, though the website content and business information appear professional and consistent. Overall, the website is functional, professional, and safe for general audiences, but improvements in security posture, domain transparency, and compliance documentation are recommended to enhance trust and resilience.

M

Media Business Insight Ltd (MBI)

screenfilmsummit.com

58

The Screen Film Summit website represents a professional event platform focused on the UK independent film industry, organized by Media Business Insight Ltd, a subsidiary of GlobalData. The site provides detailed information about the annual summit, including event descriptions, partners, speakers, and galleries, targeting producers, financiers, and distributors within the film sector. The business model centers on industry networking and knowledge sharing through events. Technically, the website is built on the SHOWOFF CMS by ASP.events, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and Magnific Popup. The site is mobile-optimized, accessible, and employs HTTPS with good performance. However, some security best practices like security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. Tracking is done via Permutive, indicating moderate user tracking. The absence of WHOIS registration data is a concern, though the association with a reputable parent company supports legitimacy. No critical vulnerabilities or adult content were found, and privacy compliance is basic but present. Overall, the website is a credible and professional platform with room for improvement in security headers, privacy compliance, and transparency of contact information. The lack of WHOIS data should be investigated further to confirm domain legitimacy.

F

Ferrino

ferrino.sk

51

Ferrino is a well-established outdoor equipment retailer with a rich history dating back to 1870. The company offers a comprehensive range of products including backpacks, sleeping bags, tents, clothing, and accessories for outdoor enthusiasts. Their market position is strong in Slovakia and the Czech Republic, supported by a professional e-commerce platform and physical store pickup options. The website demonstrates a good level of digital maturity with modern technologies and responsive design, catering well to their target audience of hikers, climbers, and outdoor lovers. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.