Security Directory

N

Národné športové centrum

narodnesportovecentrum.sk

57

Národné športové centrum (NŠC) is a Slovak government-affiliated organization dedicated to supporting sports development, athlete diagnostics, education, and sports information systems. The website serves as a comprehensive portal for news, events, athlete profiles, educational resources, and multimedia content, targeting athletes, sports professionals, and the general public interested in Slovak sports. The organization is positioned as a key national sports authority with official backing from the Ministry of Tourism and Sports of Slovakia. Technically, the website is built using modern web technologies including Next.js and React, with integrations for Google Analytics, Facebook Pixel, and Osano CMP for cookie consent management. The site is mobile-optimized, well-structured, and uses HTTPS with good SSL configuration. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the site follows good practices such as HTTPS enforcement, use of reCAPTCHA on forms, and cookie consent mechanisms. No critical vulnerabilities or suspicious patterns were detected. Privacy compliance is good with a clear privacy policy and cookie consent. Business credibility is strong due to official government affiliation, clear contact information, and consistent branding. Overall, the website presents a professional, trustworthy, and content-rich platform with moderate to good technical and security posture. Strategic improvements could focus on enhancing security headers, publishing security policies, and improving accessibility features to further strengthen trust and compliance.

G

Grünecker GmbH

gruenecker-haustechnik.de

61

Grünecker GmbH is a small, regionally focused company based in Germany specializing in heating, sanitation, and home technology services since 1993. Their website presents a professional image with detailed service offerings, regional sponsorships, and partner collaborations, positioning them as a trusted local expert. The technical infrastructure leverages modern web technologies such as Next.js and React components, providing a responsive and user-friendly experience. However, the site lacks explicit privacy and cookie policies, security headers, and incident response information, which are important for compliance and trust. Overall, the security posture is moderate but could be improved with standard best practices. The website is safe, free from adult or questionable content, and fully accessible without WAF or blocking mechanisms.

H

Ligen, Vereine, Verbände, Hallen und News | handball.net

handball.net

69

handball.net is a German sports media platform specializing in handball-related content including leagues, clubs, live scores, and news. It targets handball fans and stakeholders primarily in Germany, offering schedules, live tickers, and news coverage. The website uses modern web technologies such as React and Next.js, integrates advertising via Smart Ad Server, and employs consent management tools to ensure GDPR compliance. Performance monitoring is handled by New Relic, and social media content is embedded via Flockler. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, no direct company contact information or detailed business registration data is publicly available on the site.

S

Slovenská volejbalová federácia

svf.sk

40

Slovenská volejbalová federácia (SVF) is the official governing body for volleyball in Slovakia, providing comprehensive information about volleyball competitions, teams, news, and events. The website serves volleyball players, fans, and the sports community in Slovakia, offering services such as competition management, ticket sales, and a fan shop. The federation holds a significant position as the national authority for volleyball, supported by partnerships with major brands and sponsors. Technically, the website is built on modern web technologies including Next.js and React, hosted by Webglobe, and optimized for mobile devices with good design and navigation. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is weak due to missing explicit privacy and cookie policies, though a cookie consent mechanism is present. WHOIS data shows an anomalous future domain creation date, which slightly reduces trust but does not detract from the overall legitimacy of the site. The content is safe, sports-focused, and suitable for a general audience.

E

EMPRESA MEDIA, a.s.

tyden.cz

60

Týden.cz is a well-established Czech media company operating since 2006, providing comprehensive news coverage across various domains including domestic and international affairs, science, economy, sports, culture, health, and lifestyle. The company operates multiple magazine brands and partners with TV Barrandov, offering both online content and subscription-based magazines. The website demonstrates a mature digital presence with modern technologies such as React and Next.js, and integrates advertising and analytics tools like Google Adsense and Google Tag Manager. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR standards. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data slightly reduces transparency but does not detract significantly from the site's legitimacy. Overall, Týden.cz presents a professional, trustworthy, and user-friendly platform for Czech news consumers.

Bistro.sk is a well-established online food delivery platform operating primarily in Slovakia, founded in 2013 and owned by the Takeaway.com Group B.V. The platform connects consumers with local restaurants and stores, offering convenient online ordering and delivery services. It holds a strong market position in Slovakia with a large network of over 2,400 partner restaurants and stores. The website is professionally designed, mobile-optimized, and provides comprehensive legal and privacy documentation, including GDPR compliance and cookie consent mechanisms. Social media presence and trust indicators such as a bug bounty program and ethics hotline further enhance its credibility. Technically, Bistro.sk leverages modern web technologies including Next.js and React, integrated with advanced analytics and marketing tools like Google Tag Manager, Snowplow, and FullStory. The platform is hosted on robust infrastructure likely managed by Just Eat Takeaway, ensuring fast performance and good accessibility. Security posture is strong with HTTPS enforced, proper security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly detailed. Overall, Bistro.sk demonstrates a mature digital presence with strong business credibility and security practices. The platform effectively balances user experience, privacy compliance, and technical sophistication, making it a trustworthy service for food delivery in Slovakia.

S

Supabase

supabase.in

69

Supabase is a technology company providing a comprehensive Postgres development platform that enables developers and businesses to build scalable applications with integrated backend services such as authentication, realtime data, edge functions, storage, and vector embeddings. The platform is positioned as a leading open-source alternative in the backend-as-a-service market, with a strong developer focus and growing adoption by notable companies. Technically, the website is built on modern frameworks like Next.js and React, hosted with Cloudflare DNS, and demonstrates excellent performance and mobile optimization. Security posture is good with HTTPS enforced and domain protections in place, though there is room for improvement in publishing explicit security policies and enabling DNSSEC. Privacy compliance is currently weak due to the absence of visible privacy and cookie policies. Overall, the website is professional, trustworthy, and technically mature, but should enhance transparency around privacy and security to improve compliance and user trust.

N

Národné športové centrum

sportcenter.sk

58

Národné športové centrum (NŠC) is a Slovak government-affiliated organization dedicated to supporting and developing sports activities, athletes, and sports diagnostics in Slovakia. The website serves as a comprehensive portal for news, events, athlete profiles, educational resources, and diagnostic services. It targets athletes, sports professionals, and the general public interested in sports development. The organization operates under the Ministry of Tourism and Sports of the Slovak Republic, positioning itself as a key national sports institution. Technically, the website is built using modern web technologies including React and Next.js, with integrations for Google Analytics, Facebook Pixel, and Osano for cookie consent management. The site is mobile-optimized, accessible, and performs moderately well. Hosting is provided by nichosting.sk, a Slovak hosting provider, which aligns with the local focus of the organization. From a security perspective, the site enforces HTTPS and employs reCAPTCHA to protect forms. Cookie consent is managed via a reputable CMP (Osano). While some security headers are not explicitly detected in the HTML, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy policies and terms of service are present and comprehensive, indicating good compliance with GDPR. Overall, the website is professional, trustworthy, and well-aligned with its government sports center mission. It provides a rich user experience with clear navigation and relevant content. Recommendations include enhancing security headers and publishing a dedicated security policy to further strengthen trust and compliance.

H

Headout Inc.

headout.com

55

Headout Inc. operates a sophisticated online platform that enables travelers and locals to discover and book curated tours, events, and experiences worldwide. The company positions itself as a mobile concierge service offering high-quality experiences at competitive prices with 24x7 customer support. The website demonstrates a mature digital presence with modern technologies such as Next.js and React, optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. The absence of explicit privacy and cookie policies and lack of WHOIS transparency are notable gaps. Overall, the platform is professional, trustworthy, and well-positioned in the hospitality sector.

R

RiffReporter

riffreporter.de

65

RiffReporter is a German cooperative media platform dedicated to independent journalism, focusing on topics such as climate, environment, science, society, and technology. The website presents itself as a professional and well-branded journalistic outlet with a clear target audience of general readers interested in in-depth analyses and reports. The business model revolves around cooperative journalism, providing direct reporting and analysis without intermediary publishers. Technically, the site is built on modern web technologies including React and Next.js, hosted with Cloudflare DNS and CDN services, and uses Matomo for analytics, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs standard security headers, and shows no signs of vulnerabilities or exposed sensitive data. However, it lacks explicit privacy and cookie policies and does not provide clear contact information or security incident response details, which are areas for improvement. Overall, the site is trustworthy and professional but could enhance its compliance and transparency aspects.

U

urbnups UG (haftungsbeschränkt)

urbnups.com

68

urbnups UG (haftungsbeschränkt) operates a travel and experience discovery platform that enables users to find, save, and share unique local moments and travel destinations. The company targets travelers and local explorers seeking authentic experiences, positioning itself as a niche community-driven platform with mobile app support. The website is well-designed, mobile-optimized, and uses modern web technologies such as React, Next.js, and Material-UI, hosted on Hetzner with Cloudflare DNS. Security is robust with HTTPS, security headers, and no detected vulnerabilities. Privacy policies are comprehensive and GDPR compliant, though direct contact emails and phone numbers are not publicly listed, relying on contact forms instead. Social media presence on Instagram, Facebook, and LinkedIn supports community engagement. Overall, the platform demonstrates a mature digital infrastructure and trustworthy business presence.

B

Budapest Főváros Önkormányzata

enbudapestem.hu

58

Énbudapestem is an official digital news and cultural portal operated by the Budapest municipal government, providing residents and visitors with timely news, cultural insights, and community updates about Budapest. The website is well-branded with consistent use of Budapest city logos and links to the official Budapest.hu domain, establishing strong trust and legitimacy. Technically, the site is built on modern web technologies including Next.js and React, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforced and standard security headers present, although explicit incident response and vulnerability disclosure information are absent. Privacy compliance is good, with accessible privacy and cookie policies and a consent mechanism in place. Overall, the website presents a professional, trustworthy, and user-friendly platform for Budapest-related content.

H

Hall-Wattens Tourismus

hall-wattens.at

57

Hall-Wattens Tourismus operates as the official tourism organization for the Hall-Wattens region in Tirol, Austria, providing comprehensive information and services to tourists including accommodation booking, event promotion, and activity guidance. The website is professionally designed with excellent content quality, targeting travelers interested in seasonal vacations and cultural experiences in the Austrian Alps. Technically, the site leverages modern web technologies such as Next.js and React, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and appropriate security headers, alongside a robust cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS data limits domain trust assessment, though the website's professional presentation and clear contact details support its legitimacy. Overall, the site presents a low-risk profile with strong business credibility and privacy compliance.

U

urbnups UG (haftungsbeschränkt)

urbnups.app

68

urbnups UG (haftungsbeschränkt) operates a travel and experience discovery platform focused on providing users with local insider tips, popular attractions, and personal recommendations. The platform supports community sharing of unique moments and offers AI solutions for business partners. The company is positioned as a niche player in the travel and local experience market, targeting travelers and local experience seekers primarily in Germany. The business was founded in 2021 and maintains a small company size with a consistent and professional online presence. Technically, the website is built using modern web technologies including React, Next.js, and Material-UI, hosted by Hetzner Online GmbH. The site is optimized for mobile devices, loads quickly, and incorporates privacy-conscious analytics via Matomo. The presence of comprehensive privacy and cookie policies indicates a good level of GDPR compliance. However, direct contact information such as company emails or phone numbers is not publicly listed, relying instead on a contact form. From a security perspective, the site enforces HTTPS, uses standard security headers, and shows no visible vulnerabilities or exposed sensitive data. The domain registration is transparent and consistent with the business age and profile, enhancing trustworthiness. There is no published security policy or incident response information, which could be improved to strengthen security posture. Overall, urbnups presents a trustworthy, well-implemented digital platform with good privacy and security practices. Strategic improvements in security transparency and direct contact information could further enhance trust and compliance.

K

Klassik Radio

klassikradio.de

57

Klassik Radio operates as a German-based classical music streaming and radio broadcasting service, offering curated music channels, live concert events, and premium ad-free subscriptions. The website is professionally designed with excellent content quality and user experience, targeting classical music enthusiasts and general audiences interested in cultural music content. Technically, the site leverages modern frameworks such as Next.js and React, with mobile optimization and SEO best practices well implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the domain and website present a trustworthy and mature digital presence in the media sector.

R

Rausgegangen GmbH

zentrale.events

61

Rausgegangen GmbH operates the website zentrale.events as a centralized platform for event organizers, venues, and artists primarily in Germany. The platform offers integrated services including event publishing, ticketing, and targeted marketing, positioning itself as one of the largest event recommendation platforms in Germany. The business model leverages a freemium approach with additional marketing services, targeting cultural professionals and event goers. Technically, the site is built using modern web technologies such as React and Next.js, with privacy-conscious analytics via Matomo and a comprehensive cookie consent mechanism provided by Iubenda. The website is mobile-optimized and well-structured, providing a good user experience.

N

nph Kinderhilfe Lateinamerika e.V.

nph-kinderhilfe.org

61

nph Kinderhilfe Lateinamerika e.V. is a well-established non-profit organization dedicated to improving the lives of children in Latin America and Haiti through education, protection, and family support. With a history dating back to 1954, the organization operates with a clear mission to provide safe environments and opportunities for children to grow and thrive. The website reflects a professional and consistent brand image, targeting donors, supporters, and stakeholders interested in child welfare. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Directus as a CMS. It demonstrates good performance, mobile optimization, and SEO practices. The presence of Google Tag Manager indicates moderate user tracking for analytics and marketing purposes. From a security perspective, the site uses HTTPS with strong SSL configuration and includes essential security headers. However, there is no explicit security policy or incident response information publicly available, which could be improved. The WHOIS data is unavailable due to query failure or privacy protection, which is common for non-profits but slightly reduces trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

P

Strong Random Password Generator

passwordsgenerator.com

47

The website www.passwordsgenerator.com offers a free online tool for generating strong, random passwords based on current security standards. It targets general internet users seeking to improve their password security by providing customizable password generation options. The site is built on modern web technologies including Next.js and React, hosted on Vercel, and uses PostHog for analytics. The technical infrastructure is modern and optimized for fast performance and mobile responsiveness. However, the site lacks visible privacy, cookie, or terms of service policies, and does not provide contact or company information, which limits transparency and trust. Security posture is moderate with no visible security headers and no HTTPS confirmation in the provided data, though no obvious vulnerabilities or sensitive data exposures are present. The absence of WHOIS registration data is a notable concern, reducing trustworthiness and raising questions about domain legitimacy. Overall, the site functions well as a utility but would benefit from improved compliance and transparency measures.

C

Coloring Labs

coloringlabs.com

57

Coloring Labs is a small technology company specializing in the development of family-friendly coloring apps for iPad users, targeting children and parents. Their market position is niche, focusing on creative and educational digital content for kids. The website presents a professional and consistent brand image with clear messaging about their app offerings. Technically, the site is built using modern frameworks such as Next.js and React, ensuring fast performance and excellent mobile optimization. However, accessibility features are basic and could be improved. From a security perspective, the website benefits from HTTPS encryption but lacks important security headers and formal security policies such as privacy or cookie policies. The use of PostHog analytics indicates moderate user tracking without visible consent mechanisms, which may raise privacy compliance concerns. No forms or sensitive data collection points were detected, reducing immediate risk exposure. Overall, the website is safe and suitable for general audiences, with no adult or questionable content. The absence of detailed business registration data and security policies suggests room for improvement in transparency and compliance. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and expanding contact information to build greater trust and compliance.

B

BotTalk

bottalk.io

60

BotTalk is a specialized AI voice solution provider targeting news publishers and media companies. Their platform aggregates multiple leading text-to-speech providers into a single audio hub, enabling easy integration, paywall support, and audio monetization through advertising partnerships. The company positions itself as a niche leader with a clear focus on enhancing user engagement and subscription value through audio content. Technically, the website is built on modern frameworks like Next.js and React, hosted with Cloudflare DNS, and integrates analytics and form services for marketing and support. Security posture is good with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

Z

Zweckverband Abfallwirtschaft Region Trier (A.R.T.)

art-trier.de

61

The Zweckverband Abfallwirtschaft Region Trier (A.R.T.) is a regional public waste management authority responsible for waste disposal services in Trier and surrounding districts in Germany. The website serves as an information and service portal offering waste collection schedules, customer portals, educational content, and contact information. The organization targets residents and businesses within its jurisdiction, providing essential public services related to waste management and recycling. The website is well-structured, professionally designed, and includes a cookie consent mechanism compliant with GDPR regulations. Technically, the site is built using modern web technologies including React, Next.js, and Material-UI, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site reflects a trustworthy and legitimate public service entity with clear contact information and transparent privacy practices. There are no indications of malicious activity or compliance issues. Strategic recommendations include enhancing security headers, publishing explicit security policies, and adding incident response contacts to improve trust and compliance further.

I

idealo

idealo.it

72

idealo.it is a well-established Italian price comparison website operated by idealo internet GmbH, a reputable company based in Germany. The platform offers consumers the ability to compare prices across thousands of online stores, access product reviews, and receive price alerts. It targets general consumers in Italy looking for the best deals across various product categories. The website demonstrates a mature digital infrastructure using modern web technologies such as React and Next.js, with strong mobile optimization and accessibility features. Security practices include HTTPS enforcement, content security policies, and GDPR-compliant consent management, though explicit security policies and incident response details are not publicly disclosed. Overall, idealo.it presents a professional, trustworthy, and user-friendly e-commerce service with a strong market position in Italy.

M

Nationales Onlineportal für berufliche Weiterbildung | mein NOW

mein-now.de

63

The website mein-now.de serves as a national online portal dedicated to vocational training and career development in Germany. It offers online tests, tools, and information on further education, funding, and consulting services. The portal targets citizens, institutions, and companies, positioning itself as a key resource for professional development within the German education sector. Technically, the site employs modern web technologies such as Next.js and web components, hosted on infrastructure linked to official German labor agency domains, indicating a robust and professional digital presence. Security-wise, the site uses HTTPS and modern JavaScript modules but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the site is trustworthy and professionally designed but would benefit from enhanced privacy compliance and security best practices.

DoNoHarm is a small US-based software company founded in 2019, specializing in niche software products such as Monocle, Kleio, and WaterCooler, targeting developers and businesses needing specialized tools. The website is built on a modern React/Next.js stack, hosted via bunny.net, and demonstrates good mobile optimization and user experience. However, the site lacks explicit contact information and comprehensive privacy or security policies. Security posture is moderate with no detected WAF or blocking mechanisms but missing security headers and DNSSEC. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

X

X-BIONIC®

x-bionic.com

68

X-BIONIC® is a technology-driven sportswear brand specializing in high-performance base layers and sports apparel, with a focus on Swiss engineering and Italian manufacturing. The company targets athletes and sports enthusiasts across multiple disciplines including trail running, cycling, triathlon, and wintersports. The website is a modern e-commerce platform built on Shopify and Next.js, featuring advanced tracking and consent management tools to comply with GDPR regulations. Security posture is strong with HTTPS and security headers implemented, though some areas such as incident response and vulnerability disclosure could be improved. The absence of WHOIS data reduces transparency but the professional presentation and comprehensive policies suggest a legitimate business. Overall, the site offers a secure, user-friendly shopping experience with good privacy compliance.

J

Junip Inc.

juniphq.com

60

Junip Inc. operates a SaaS platform focused on helping ecommerce brands collect and display customer reviews to enhance product understanding and increase conversions. The company targets online retailers and boasts over 5000 customers, positioning itself as an industry leader in ecommerce review solutions. Their services include mobile-first review collection, automated requests, review display widgets, syndication to major sales channels, moderation, tagging, analytics, and multi-store management. Founded in 2020 and based in Canada, Junip demonstrates a strong market presence with integrations to platforms like Shopify and Klaviyo.

W

Wirtschaftsbetriebe Duisburg - AöR

wb-duisburg.de

62

Wirtschaftsbetriebe Duisburg - AöR is a large municipal utility and infrastructure service provider for the city of Duisburg, Germany. The organization manages a broad range of public services including waste disposal, street cleaning, wastewater management, road and bridge construction, municipal real estate, playgrounds, green spaces, and cemeteries. The website serves as a comprehensive portal for residents and businesses to access these services, including online scheduling, information, and customer portals. The site is well structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website is built on modern frameworks such as Next.js and React, with content managed via Storyblok CMS. It integrates third-party services like Usercentrics for cookie consent management and uses legacy jQuery 1.12.4, which may pose some security risks. Performance is moderate with good SEO and accessibility features. The site uses HTTPS and has basic security best practices but lacks explicit security headers and a published security policy or incident response information. From a security perspective, the site is generally secure with no visible vulnerabilities or exposed sensitive data. However, the use of an outdated jQuery version and absence of a vulnerability disclosure mechanism are areas for improvement. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism in place, aligning with GDPR requirements. Overall, the website represents a trustworthy and professional municipal service portal with a solid business credibility score. Strategic recommendations include upgrading legacy libraries, publishing security policies, and enhancing security headers to further strengthen the security posture and compliance.

S

Solid Starts Inc

solidstarts.com

67

Solid Starts Inc operates a comprehensive digital platform focused on pediatric feeding and baby nutrition, offering a subscription-based app, a free First Foods® database, educational guides, and a published book. The company targets parents and caregivers seeking expert guidance on introducing solid foods to babies and toddlers. The website demonstrates a mature digital infrastructure leveraging modern web technologies such as React and Next.js, supported by Cloudflare DNS and CDN services. The platform integrates multiple analytics and marketing tools including Microsoft Clarity, TikTok Pixel, Facebook Pixel, and Google Tag Manager, enabling moderate user tracking with privacy compliance measures in place. Security posture is strong with HTTPS enforcement and security headers, though enabling DNSSEC would further enhance DNS security. The domain is well-established since 2014, registered through a reputable registrar with protective domain statuses, supporting the legitimacy of the business. Overall, the website is professionally designed, mobile-optimized, and provides clear navigation and rich content, fostering high trustworthiness and user engagement.

Sozialkompass.info is a German-language platform launched in 2023 that provides individuals with personalized information about social benefits they may be entitled to. The service uses a question-based approach to tailor social benefits information and offers a centralized overview of supported social benefits with relevant contact points. The website targets residents in Germany seeking guidance on social welfare programs. Technically, the site is built on a modern React and Next.js stack, hosted and DNS-managed via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and some security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Contact is primarily via email, with no phone numbers or detailed business registration info publicly available. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

S

SendOwl

sendowl.com

63

SendOwl is a mature and well-established digital commerce platform specializing in enabling businesses and individuals to sell digital products, subscriptions, memberships, and more. The platform offers a comprehensive suite of tools including payment links, storefronts, and checkout solutions, targeting a broad audience of digital sellers from solopreneurs to scale-ups. The website demonstrates strong market positioning with over $2 billion in transactions processed and a decade-long community focus. Technically, the website is built on modern frameworks such as Next.js and React, leveraging popular analytics and marketing tools like Google Analytics, Segment, and Facebook Pixel. The site is performant, mobile-optimized, and accessible, reflecting a high level of digital maturity. Hosting and CDN services appear to be provided by Cloudflare, ensuring reliability and security. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates secure payment gateways. However, there is room for improvement in cookie consent mechanisms and publishing explicit security policies or incident response contacts. The absence of WHOIS data introduces some uncertainty regarding domain registration transparency, but the overall trustworthiness is supported by the professional website and business signals. Overall, SendOwl presents a low-risk profile with strong business credibility and technical robustness. Strategic recommendations include enhancing privacy compliance with explicit cookie consent, publishing vulnerability disclosure information, and improving transparency around incident response and data retention policies.

D

Deutsche Bahn AG

bahnhof.de

63

bahnhof.de is the official platform operated by Deutsche Bahn AG providing comprehensive information about passenger train stations across Germany. It offers live departure and arrival times, station facilities, accessibility information, and local services to travelers. The website is well-positioned as a leading national transportation information portal, serving a broad audience of train passengers and mobility users. Technically, the site leverages modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security policies and incident response information are absent. Overall, bahnhof.de demonstrates a mature digital presence with high trustworthiness and professional content.

C

Centre national de la musique

cnmwork.fr

49

CNMwork is a professional portal operated by the Centre national de la musique (CNM) focused on providing a directory and job, internship, and service offers within the French music sector. It serves as a national platform connecting music industry professionals and job seekers, positioning itself as a key resource in the French music employment ecosystem. The website is well-branded with official logos and government affiliation, enhancing its credibility. Technically, the site is built using modern web technologies including React, Next.js, and Material-UI, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although accessibility compliance could be improved. Performance is moderate, with no blocking or WAF detected, indicating reliable availability. Security posture is solid with HTTPS enforced and secure cookie settings, but lacks explicit security headers and documented security policies or incident response information. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. Overall, CNMwork presents a trustworthy and professional digital presence for the French music sector, though improvements in security headers and accessibility would enhance its posture. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its official backing.

K

Kino Star

kinostar.sk

55

Kino Star is a local cinema portal website targeting audiences in Slovak towns Zvolen and Lučenec. It provides a simple interface for users to select their preferred cinema location. The website is built using modern web technologies including React and Next.js, indicating a contemporary technical infrastructure. However, the content is minimal and primarily serves as a navigation gateway to subdomains for each cinema location. Security posture is basic with no detected security headers or privacy policies, and no contact information is provided on the main page. The site does not appear to use tracking or analytics services, which reduces privacy concerns but also limits business intelligence capabilities. Overall, the website is functional for its purpose but lacks comprehensive compliance and security features.

D

Divadlo Astorka Korzo '90

astorka.sk

57

Divadlo Astorka Korzo '90 is a Slovak theatre company offering unique theatrical productions with a rich history. The website serves as a portal for program information, ticket sales, and contact details, targeting theatre enthusiasts and the general public in Slovakia. The business operates primarily in the hospitality and cultural sector, focusing on live performances and audience engagement. Technically, the website is built on modern frameworks such as React and Next.js, with Material UI for styling, providing a responsive and user-friendly experience. However, performance is moderate and accessibility features are basic, indicating room for improvement. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response contacts, which could enhance trust and protection. Privacy compliance is addressed with visible privacy and cookie policies, though a consent mechanism is absent. Overall, the website is professional and trustworthy but could benefit from enhanced security and privacy features to align with best practices.

S

Sterio Kino

stercentury.sk

53

Sterio Kino is a regional cinema chain operating multiple locations across Slovakia, offering cinema screenings, online ticket sales, and special event programming. The website serves as a portal for customers to access cinema programs and purchase tickets online, targeting general cinema-going audiences. Technically, the site is built using modern web technologies including React and Next.js, with integrations for analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features and security headers. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is professional and trustworthy, with a moderate risk profile primarily due to privacy and security policy gaps.

T

Tero Radio

teroradio.com

47

Tero Radio is a Thai-based online radio and entertainment platform offering multiple radio stations, podcasts, music charts, event promotions, and video content. The website targets a general Thai audience interested in contemporary hits, Asian music, and entertainment news. The platform is moderately mature with a domain age of approximately 3.5 years and a consistent brand presence across social media and partner subdomains. Technically, the site uses modern web technologies such as Next.js and React, with integrations for Google Tag Manager and advertising via Google DoubleClick. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and domain status protections, but lacks DNSSEC and visible security headers. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Overall, the site is legitimate and professionally maintained but would benefit from enhanced security and privacy transparency.

M

Musée du Louvre

louvre.fr

73

The Louvre Museum's official website serves as a comprehensive digital portal for visitors, researchers, and art enthusiasts worldwide. It offers detailed information on exhibitions, events, collections, ticketing, and educational programs. The site is well-branded, professionally designed, and optimized for mobile devices, reflecting the institution's global prominence and commitment to accessibility. Technically, the site uses modern web technologies including React and Next.js, ensuring a responsive and performant user experience. Security measures such as HTTPS and robust security headers are in place, although explicit security policies and incident response information are not publicly disclosed. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. Overall, the website demonstrates high business credibility and trustworthiness, consistent with a major government cultural institution.

A

AXA Prévention

axaprevention.fr

66

AXA Prévention is a well-established prevention platform under the AXA Group umbrella, focusing on climate risk adaptation, health, safety, and cybersecurity awareness for the French public and professionals. The website offers a broad range of free services, guides, and campaigns to educate and protect its audience. Technically, the site is built on modern web technologies including React and Next.js, with good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site reflects a mature, trustworthy, and professional digital presence aligned with AXA's corporate standards.

P

Prisme.ai

gogowego.com

61

Prisme.ai is a technology platform offering scalable AI and automation solutions primarily targeting developers and enterprises. The platform provides tools for workspace creation, app development, and API integrations, positioning itself as an innovative player in the AI platform market. The website is professionally designed using modern web technologies such as Next.js and React, indicating a mature digital infrastructure. However, some technical aspects such as security headers and explicit HTTPS enforcement are not clearly visible in the provided data, suggesting room for improvement in security posture. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR adherence, though cookie consent mechanisms are lacking. Overall, the website presents a trustworthy and professional image but would benefit from enhanced security and contact transparency.

P

Prisme.ai

prisme.ai

61

Prisme.ai is a technology company offering a scalable AI platform designed to empower developers and enterprises with customizable AI and automation workspaces. The platform emphasizes flexibility and user control, positioning itself as an innovative player in the AI SaaS market. The website reflects a modern, professional digital presence built on contemporary web technologies such as Next.js and React, indicating a mature technical infrastructure. However, some aspects like hosting provider details and CMS usage remain undisclosed. Security posture is moderate; while HTTPS is implied, explicit security headers and policies are absent, and no contact information for incident response is provided. Privacy compliance is partially addressed with a comprehensive privacy policy, but cookie consent and terms of service are missing. Overall, the website is trustworthy and professional but could improve transparency and security practices to enhance user trust and compliance.

TeroAsia is a Thai media company operating a digital news and entertainment portal focused on delivering timely content related to news, sports, entertainment, and cultural programming, particularly associated with Channel 7HD. The website demonstrates a moderate level of digital maturity, leveraging modern web technologies such as Next.js and React, and integrates advertising and tracking tools like Google Tag Manager and Google Ad Manager. While the site is well-structured and mobile-optimized, it lacks critical privacy and cookie policies, which impacts its compliance posture. Security measures such as HTTPS and domain protection are in place, but additional security headers and vulnerability disclosures are absent, indicating room for improvement in security maturity. Overall, the site is legitimate and serves a broad Thai-speaking audience with relevant media content.

EDEKA is a leading German supermarket chain with a strong online presence offering weekly offers, recipes, nutrition information, and sustainability initiatives. The website reflects a mature digital infrastructure using modern technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and aligned with the business's market position.

Č

Česká televize

ct24.cz

66

ČT24 is the official news portal of Česká televize, the Czech Republic's public television broadcaster. It provides trusted, up-to-date news, live broadcasts, weather updates, and podcasts primarily targeting the Czech-speaking general audience. The website is professionally designed with consistent branding and high-quality content, positioning it as a leading national news source. Technically, the site leverages modern web technologies including React and Next.js, with integrations for analytics and user tracking via Google Tag Manager and Microsoft Clarity. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the site demonstrates a mature digital presence with good performance and accessibility, supporting its role as a trusted media outlet.

M

MOIN Filmförderung Hamburg Schleswig-Holstein

ffhsh.de

59

MOIN Filmförderung Hamburg Schleswig-Holstein is a regional film funding organization supporting cinema films, high-end series, and innovative audiovisual formats across genres. The organization targets filmmakers and producers primarily in Northern Germany, offering funding and industry support from project inception through production and distribution. The website reflects a mature digital presence with a modern tech stack based on Next.js and React, optimized for performance and mobile devices. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements could be made by adding security headers and explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

M

MOIN Filmförderung Hamburg Schleswig-Holstein

moin-filmfoerderung.de

60

MOIN Filmförderung Hamburg Schleswig-Holstein is a regional film funding organization supporting cinema films, high-end series, and innovative audiovisual formats across genres. The website reflects a mature digital presence with a modern tech stack based on Next.js and React, delivering excellent performance and mobile optimization. The organization maintains a strong market position in northern Germany's media sector, providing comprehensive funding programs and industry support. Security posture is robust with HTTPS, security headers, and secure form handling, though some improvements in cookie consent and incident response transparency are recommended. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

S

SPM MEDIA a.s.

spmmedia.cz

55

SPM MEDIA a.s. is a Czech media company founded in 2023, serving as the umbrella organization for several media brands including Echo Media, HROT MEDIA a.s, Radio Prostor, and the blogging platform Blogosvět. The company targets a general Czech audience with independent news and media content. Their business model focuses on media publishing and advertising, leveraging multiple platforms and brands to reach a broad audience. The website is professionally designed using modern web technologies such as Next.js and React, with good mobile optimization and SEO practices. Security measures include HTTPS and Google reCAPTCHA for form protection, though some security headers and policies are missing. The WHOIS data is unavailable, which limits domain trust verification, but the website content and business information appear consistent and professional. Overall, the company presents itself as a credible media group with a growing presence in the Czech media market.

I

Institute of Documentary Film

kinedok.net

67

KineDok is a cultural media project operated by the Institute of Documentary Film, specializing in the distribution and screening of documentary films from Central and Eastern Europe in alternative venues such as cafes, galleries, and open-air cinemas. The project also offers online streaming and educational programs, targeting documentary enthusiasts and cultural communities across multiple European countries. The website is well designed, mobile optimized, and uses modern web technologies including React and Next.js, hosted on Websupport.cz. Privacy and cookie policies are present and GDPR compliant, with active social media engagement. Security posture is good with HTTPS and standard security headers, though DNSSEC is not enabled and no explicit security policy or vulnerability disclosure is published. WHOIS data shows a stable domain registration since 2014, consistent with the project's history and legitimacy. Overall, the website demonstrates a mature digital presence with strong content quality and business credibility.

C

CleevioX

cleeviox.com

63

CleevioX is a specialized technology company focusing on blockchain and Web3 product development, AI integrations, and consulting services. Positioned as a recognized expert in the Web3 space, the company serves a global clientele including notable brands such as Animoca Brands and SatoshiLabs. Their service offerings encompass end-to-end product builds, Web3 strategy, AI-enhanced crypto products, and scaling solutions. The website reflects a mature digital presence with excellent design, clear navigation, and comprehensive content tailored to blockchain and AI project stakeholders. Technically, the website leverages a modern tech stack including Ethereum, Solana, React.js, Next.js, and cloud platforms like Google Cloud and AWS. It is hosted on Webflow with fast performance and excellent mobile optimization. The site integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, and LinkedIn Insight, balanced with a robust cookie consent mechanism supporting GDPR compliance. From a security perspective, the site enforces HTTPS and uses CAPTCHA protections on forms, but lacks explicit security headers and published security policies or incident response contacts. The absence of WHOIS domain registration data is a notable concern, reducing transparency and trustworthiness despite the professional business presentation. Overall, CleevioX demonstrates a strong market position and digital maturity with minor security and transparency gaps. Strategic improvements in domain registration disclosure, security policy publication, and enhanced security headers would further strengthen their security posture and business credibility.

C

Culture Amp

whereshouldwebeginatwork.com

58

The website 'At Work - Esther Perel x Culture Amp' presents a collaborative product combining Esther Perel's relational expertise with Culture Amp's workplace research to offer a 100-question game aimed at transforming workplace culture. The site targets team leaders and managers seeking to foster meaningful relationships at work. Technically, the site is built with modern frameworks such as Next.js and React, hosted on Vercel, and uses Sanity CMS for content management. It includes marketing and analytics tools like Facebook Pixel and LinkedIn Insight Tag, indicating moderate user tracking. Security posture is adequate with HTTPS enabled and domain status protections, but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. The WHOIS data shows inconsistencies, notably a future domain creation date, which raises trust concerns despite the professional and consistent branding on the site. Overall, the site is functional and professionally designed but would benefit from improved transparency in privacy, security policies, and domain registration details.

L

LabRulez s.r.o.

gcms.cz

57

LabRulez GCMS is a specialized Czech online portal dedicated to the field of gas chromatography and mass spectrometry, offering a comprehensive range of resources including news, scientific articles, webinars, job listings, and a marketplace for analytical instruments. The portal serves a niche audience of analytical chemists, researchers, and laboratory professionals, positioning itself as a trusted information and commerce hub within the analytical chemistry community. The business operates under LabRulez s.r.o., established in 2012, and maintains a consistent brand presence across related domains such as lcms.cz and icpms.cz. Technically, the website is built using modern web technologies including React and Next.js, hosted and secured via Cloudflare CDN. It employs advanced tracking and analytics tools such as Google Tag Manager, Fathom Analytics, and Leady for user behavior insights while maintaining GDPR-compliant cookie consent mechanisms. The site demonstrates good performance, mobile optimization, and accessibility standards, supported by structured data for enhanced SEO. From a security perspective, the site enforces HTTPS with strong SSL configuration and benefits from Cloudflare's security headers. However, explicit security policies and incident response information are not publicly disclosed, representing an area for improvement. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, LabRulez GCMS presents a professional, trustworthy, and well-maintained digital presence with strong business credibility and technical maturity. Strategic enhancements in security transparency and incident response readiness could further strengthen its security posture and user trust.