Security Directory

T

Truck1 Sp.z.o.o.

truck1.ch

49

Truck1.ch operates as a specialized online marketplace focused on the buying and selling of used trucks and commercial vehicles primarily targeting the Swiss and broader European markets. The platform offers a wide range of vehicle categories and supports multiple languages and currencies, reflecting its international reach. The business is well-established since 2003 and is part of the Truck1 group headquartered in Poland. Technically, the website employs a modern technology stack with extensive use of third-party analytics and advertising tools, including Google Analytics, Facebook Pixel, TikTok Pixel, and Criteo, enabling robust marketing and user tracking capabilities. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, although explicit security policies are not publicly available. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to meet GDPR requirements fully. Overall, the site presents a professional and trustworthy front with good content quality and user experience.

T

Truck1 Sp.z.o.o.

truck1-fr.ch

51

Truck1 Sp.z.o.o. operates the Truck1 Suisse website, a well-established online marketplace specializing in trucks, agricultural machinery, and special vehicles. Founded in 2003, the company serves a global audience with a strong presence in Switzerland and Europe. The platform offers extensive classified listings, dealer information, and promotional services, targeting businesses and individuals in the transportation and machinery sectors. The website is multilingual and supports multiple currencies, enhancing its accessibility to diverse users. Technically, the site employs a modern tech stack with extensive use of third-party analytics and advertising tools, including Google Analytics, Facebook Pixel, TikTok Analytics, and Criteo, indicating a mature digital marketing strategy. Security-wise, the site enforces HTTPS and includes multiple security headers, reflecting good security hygiene. However, the absence of visible privacy and cookie policies, as well as incident response information, suggests areas for compliance improvement. Overall, the website is professional and trustworthy but would benefit from enhanced transparency regarding privacy and security policies.

T

Truck1 Sp.z.o.o.

truck1.bg

44

Truck1 Sp.z.o.o. operates a well-established online marketplace specializing in the sale and purchase of trucks, agricultural machinery, and construction equipment across Europe. Founded in 2003 and headquartered in Poland, the company serves a broad audience including businesses and individual buyers seeking commercial vehicles. The platform offers extensive vehicle categories and dealer services, positioning itself as a key player in the European transportation equipment market. The website is multilingual and supports various currencies, enhancing its accessibility to international users. Technically, the website employs a modern technology stack with extensive use of JavaScript and integrates multiple third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, TikTok Analytics, and Criteo. The site is mobile-optimized with good SEO practices, including structured data for enhanced search engine visibility. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks several security headers and does not provide a publicly accessible privacy or cookie policy, which are critical for GDPR compliance. No vulnerability disclosure or incident response contacts are found, indicating potential gaps in security transparency and readiness. Overall, Truck1 presents a credible and professional online marketplace with a solid business foundation and technical infrastructure. To enhance trust and compliance, the company should implement comprehensive privacy and cookie policies, improve security header configurations, and establish clear incident response channels.

T

Truck1 Sp.z.o.o.

truck1-az.com

50

Truck1-az.com is a localized version of the Truck1.eu platform, specializing in the sale and purchase of trucks, trailers, agricultural machinery, and commercial vehicles primarily targeting the Azerbaijan market with Russian language content. The platform offers a comprehensive catalog with over 170,000 listings worldwide, supporting dealers and individual sellers with promotional services, leasing options, and exhibition information. The business operates as an online marketplace with a broad international presence, supported by multiple country and language versions. The company behind the site, Truck1 Sp.z.o.o., is based in Poland and has been established since 2003, indicating a mature business with a solid market position in the transportation sector.

T

Truck1 Sp.z.o.o.

truck1.at

49

Truck1.at is a well-established online marketplace specializing in used trucks and commercial vehicles across Europe, with a strong focus on the Austrian market. Founded in 2003, the company offers a comprehensive catalog of over 150,000 listings, serving businesses and individuals seeking various types of trucks, trailers, and specialized vehicles. The platform supports multiple languages and country-specific versions, enhancing its accessibility and market reach. Technically, the website employs modern tracking and marketing technologies including Google Tag Manager, Facebook Pixel, TikTok Analytics, and others, indicating a mature digital marketing strategy. Security-wise, the site enforces HTTPS and uses standard security headers, though explicit privacy and cookie policies are not clearly linked in the provided content, which is a compliance gap. The absence of WHOIS data suggests privacy protection for the domain registration, common for commercial entities. Overall, Truck1.at presents a professional and trustworthy platform with room for improvement in privacy transparency and security disclosures.

T

Truck1 Sp.z.o.o.

truck1-ao.com

50

Truck1 Sp.z.o.o. operates an international online marketplace specializing in the buying and selling of used trucks, commercial vehicles, and construction machinery, with localized versions such as the Angola site. The platform connects sellers and buyers globally, offering extensive vehicle categories and dealer services. The company is established since 2003 and headquartered in Poland. Technically, the website employs modern tracking and advertising technologies including Google Analytics, Facebook Pixel, TikTok Analytics, and Criteo, integrated via Google Tag Manager. The site is HTTPS secured and mobile optimized, providing a good user experience and professional design. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Privacy and cookie policies are not explicitly found, indicating potential compliance gaps. Security posture is generally good with HTTPS and no visible vulnerabilities, but security headers and incident response information are lacking. Overall, the site is functional and professional but would benefit from improved transparency and compliance documentation.

T

Truck1 Sp.z.o.o.

truck1.al

51

Truck1 Sp.z.o.o. operates an established online marketplace specializing in commercial vehicles, construction machinery, and agricultural equipment across Europe, including a localized Albanian site. Founded in 2003 and headquartered in Warsaw, Poland, the company offers a broad range of services including vehicle sales, leasing, and advertising for sellers. The website targets businesses and individuals seeking commercial vehicles and related equipment, positioning itself as a key player in the European transportation marketplace. Technically, the site employs a modern tech stack with extensive use of analytics and advertising platforms such as Google Analytics, Facebook Pixel, TikTok Analytics, and Criteo, indicating a mature digital marketing strategy. Security-wise, the site enforces HTTPS and implements multiple security headers, reflecting good security hygiene. However, the absence of explicit privacy and cookie policies represents a compliance gap that should be addressed. Overall, the site is professional, well-branded, and trustworthy, with room for improvement in privacy compliance and accessibility.

T

Truck1 Sp.z.o.o.

truck1.ae

48

Truck1 Sp.z.o.o. operates a well-established online marketplace specializing in used trucks, trailers, construction machinery, and commercial vehicles. Founded in 2003 and headquartered in Poland, the company serves a global audience with localized websites in multiple languages and countries. The platform offers services including vehicle listings, dealer promotions, leasing options, and comprehensive catalog browsing, positioning itself as a key player in the transportation equipment sector. Technically, the website employs a modern tech stack with extensive use of analytics and advertising tools, ensuring effective marketing and user tracking. Security measures such as HTTPS and multiple security headers are properly implemented, though explicit security policies and incident response contacts are not prominently published. Overall, the site demonstrates a mature digital presence with good content quality and business credibility.

Z

Základní umělecká škola Pelhřimov

zuspelhrimov.cz

45

ZUŠ Pelhřimov is a small educational institution specializing in arts education, including music, dance, visual arts, and literary-dramatic disciplines. The website targets students and parents in the Pelhřimov region of the Czech Republic, providing detailed information about courses, events, and contact options. The institution appears to be well-established locally, though no founding year or parent company information is available. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

P

Pelhřimovská vodárenská s.r.o.

pelhrimovska.cz

45

Pelhřimovská vodárenská s.r.o. is a local utility company providing water supply, sewerage, and wastewater treatment services in the Pelhřimov region of the Czech Republic. The website clearly targets residential and business customers in this area, offering essential information about services, billing, and emergency contacts. The company maintains a professional online presence with clear contact details and relevant service information. Technically, the website employs modern frontend technologies including JavaScript, Google reCAPTCHA v3 for bot protection, and Google Tag Manager for analytics. The site is mobile-optimized and uses HTTPS to secure communications. Security posture is generally good, with no visible vulnerabilities or exposed sensitive data, though the absence of security headers and explicit security policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with a small regional utility provider. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. Overall, the website is functional, secure, and professional, but the missing WHOIS data and limited security disclosures suggest a moderate risk level.

T

Technické služby města Pelhřimova, p.o.

tspe.cz

46

Technické služby města Pelhřimova, p.o. is a municipal service provider responsible for various public services in the city of Pelhřimov, Czech Republic. Their official website offers information about waste management, public greenery, road maintenance, public lighting, cemetery management, sports and playground facilities, parking, and public contracts. The site targets local residents and visitors, providing operational updates and contact channels. The business operates as a small government entity with a domain established in 2003, reflecting a stable presence in the community. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It incorporates Google services like reCAPTCHA for form security and Google Translate for multilingual support. The site is hosted likely via Forpsi, with a registrar in the Czech Republic. Performance and mobile optimization are moderate, with basic accessibility and SEO features implemented. From a security perspective, the website uses HTTPS and Google reCAPTCHA to protect forms. However, it lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic but present, with a privacy policy and cookie information available, though no active consent mechanism is implemented. Overall, the website is trustworthy and professional, serving its municipal function effectively. Recommendations include enhancing security headers, implementing cookie consent, and expanding privacy and security disclosures to improve compliance and user trust.

P

Pelhřimovská sportovní s.r.o.

sportpe.cz

46

Pelhřimovská sportovní s.r.o. operates a website dedicated to sports facilities in Pelhřimov, Czech Republic, including a swimming pool, sports hall, winter stadium, outdoor fields, and minigolf. The site serves local residents and visitors by providing information, news, and booking options for these facilities. The business is positioned as a local community sports operator with a focus on accessibility and user engagement. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA for spam protection, and Google Tag Manager for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and features a cookie consent mechanism and privacy policy, supporting GDPR compliance. Security posture is good with HTTPS enforced and secure form handling, though security headers and explicit security policies are absent. The lack of WHOIS data is a concern for domain legitimacy, but the website content and contact information appear professional and trustworthy. Overall, the site is functional, user-friendly, and secure for its purpose, with room for improvement in security transparency and domain registration clarity.

K

Kultura Pelhřimov

kulturape.cz

52

Kultura Pelhřimov operates as a local cultural event promoter and ticketing platform serving the Pelhřimov region in the Czech Republic. The website provides detailed event listings, ticket purchase options, and information about cultural programs, targeting local residents and visitors interested in arts and entertainment. The business model focuses on event promotion and facilitating ticket sales through a partner ecommerce platform. Technically, the site is built on modern web technologies including React and Next.js with Material UI for styling, offering a responsive and user-friendly experience. Security posture is solid with HTTPS and standard security headers implemented, though privacy compliance could be improved by adding cookie consent and more comprehensive privacy policies. The absence of WHOIS data reduces domain trust but the website content and contact information appear legitimate and professional. Overall, the site is functional and well-designed for its purpose but could benefit from enhanced privacy and security transparency.

Č

Český internet s.r.o.

prihlasse.cz

51

Přihlaš.se is a Czech-based user authentication platform operated by Český internet s.r.o., providing login services via popular social networks such as Facebook, Google, Seznam, and Apple, as well as traditional email and password methods. The service targets general internet users primarily within the Czech Republic, offering a streamlined authentication experience to reduce password management burdens. The website is professionally designed with consistent branding and clear navigation, supporting a good user experience. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and FontAwesome icons, hosted likely by Wedos based on registrar data. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance and security hardening. From a security perspective, the site demonstrates a moderate security posture with secure form inputs and encrypted connections. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests limited transparency in security governance. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a moderate risk profile with a stable domain history and consistent business information. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance trust and security posture significantly.

I

Immanuel Albertinen Diakonie

immanuel.de

58

Immanuel Albertinen Diakonie is a large non-profit organization operating in the healthcare and social services sectors primarily in Hamburg, Berlin-Brandenburg, and Südthüringen regions of Germany. The website presents a comprehensive overview of their services including hospitals, specialized medical centers, rehabilitation, nursing care, hospices, addiction and disability assistance, psychosocial counseling, educational institutions, and child day care centers. Their market position is strong regionally with multiple subsidiaries and partner institutions. The website is built on TYPO3 CMS and demonstrates good technical maturity with modern design, mobile optimization, and accessibility features. However, it lacks visible privacy and cookie policies, and no explicit security headers were detected, which are areas for improvement. Contact information is clearly provided, and the site links extensively to related domains within their organizational ecosystem.

E

Elisabeth-Klinik gGmbH

elisabeth-klinik.de

64

Elisabeth-Klinik gGmbH is a well-established medical institution in Germany specializing in orthopaedic and rheumatologic care. It operates under the church-sponsored Josefs-Gesellschaft Köln and serves a broad patient base with modern facilities and experienced staff. The website reflects a professional healthcare provider with comprehensive service offerings and a strong market position in its sector. Technically, the site is built on ASP.NET Web Forms with a CMS named TWT Publisher, hosted on Deutsche Telekom infrastructure. The site is mobile-optimized and accessible, with good SEO practices. Security posture is adequate with HTTPS and some security headers, but lacks explicit security policies and cookie consent mechanisms. Analytics are performed via etracker, indicating moderate user tracking with GDPR compliance. Overall, the site is trustworthy and professional, though improvements in privacy and security transparency are recommended.

M

Mám Dron

mamdron.sk

52

Mám Dron is a Slovak non-profit association dedicated to supporting drone users through information dissemination, insurance services, job listings, and educational courses. The website serves as a hub for drone pilots, companies, institutions, and government bodies interested in drone technology and regulation. The association appears to be well-positioned within its niche market in Slovakia, focusing on community support and technological solutions for drone operations. Technically, the website is built on WordPress using Elementor and Yoast SEO, with integration of Google Analytics and cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and formal security policies. Privacy compliance is partial due to the absence of a privacy policy and terms of service pages. Overall, the site is professional and trustworthy but could improve in transparency and security documentation.

S

Spreadshop

spreadshop.de

60

Spreadshop is a German-based e-commerce platform specializing in print-on-demand merchandising solutions tailored for creators, companies, and institutions. It offers a free online shop setup with integrated design, printing, and fulfillment services, positioning itself as a risk-free and flexible partner in the creator economy. The platform supports over 350 customizable products and integrates with popular social media and e-commerce platforms to enhance reach and sales. Technically, the website leverages modern web technologies including React and Next.js, hosted on a CDN infrastructure ensuring fast performance and excellent mobile optimization. The site demonstrates good SEO and accessibility practices, with comprehensive metadata and structured content. Security is robust with HTTPS enforcement and multiple security headers, although explicit security policies and incident response contacts are not publicly detailed. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through detailed privacy and cookie policies with active consent mechanisms, reflecting GDPR adherence. Business credibility is high, supported by certifications such as amfori and OEKO-TEX, and a consistent, professional brand presence across multiple social media channels. Overall, Spreadshop presents a trustworthy, professional, and technically mature platform with a strong market position in the print-on-demand e-commerce sector. Strategic improvements could include publishing dedicated security and incident response policies to further enhance transparency and trust.

S

Spreadshop

spreadshop.net

65

Spreadshop is a well-established e-commerce platform specializing in print-on-demand merchandise, enabling creators and businesses to design, sell, and distribute custom products without upfront inventory. The platform offers extensive product customization, integration with popular e-commerce platforms, and a user-friendly interface that supports creators in monetizing their brands. Technically, the website leverages modern frameworks such as Next.js and React, with a robust content delivery network and cookie consent mechanisms ensuring compliance and performance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site presents a professional, trustworthy, and user-centric experience with a high degree of technical maturity.

G

Gesellschaft für Informatik e.V.

ocdcpro.de

55

OCDCpro is an educational and innovation-focused project operated by the Gesellschaft für Informatik e.V., aiming to promote European sovereignty in semiconductor technology through an open-source chip design competition for students and young talents. The project leverages open-source toolchains to foster learning and collaboration among students and educators in relevant technical fields, with industry partnerships enabling practical chip fabrication opportunities. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy linked to the parent organization's domain. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site reflects a trustworthy and credible educational initiative with a moderate to high level of technical maturity.

G

Gesellschaft für Informatik e.V.

ki-hub-kunststoffverpackungen.de

54

The KI-Hub Kunststoffverpackungen website represents a government-funded initiative by the Gesellschaft für Informatik e.V., focusing on leveraging Artificial Intelligence to enhance sustainability and circular economy practices in plastic packaging. The initiative comprises two innovation labs working collaboratively to optimize the lifecycle of plastic packaging from design to recycling. The website is professionally designed, primarily in German with an English version available, and targets industry professionals, researchers, and policymakers interested in AI and sustainability. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design and Leaflet.js for interactive maps. It employs Matomo for privacy-conscious analytics and implements a cookie consent mechanism with opt-in options. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers and explicit security policies are absent. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks a published security policy and incident response contacts, which are recommended for enhanced trust and compliance. The WHOIS data is minimal but consistent with the website's institutional affiliation, indicating legitimacy. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy and professional platform for its intended audience.

F

FutuRSI

futursi.de

51

FutuRSI is a collaborative initiative supported by six partner institutions and funded by the Klaus Tschira Foundation, aiming to conceptualize a German research software institution. The website serves as an informational and advocacy platform targeting researchers, research software engineers, and academic stakeholders in Germany. The initiative focuses on fostering a sustainable future for research software and its developers through collaboration and career advancement. Technically, the website is built using the Hugo static site generator, leveraging modern web standards including HTML5, CSS, and JavaScript, with Google Fonts integration. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. No advanced CMS or dynamic backend is detected, indicating a lightweight and maintainable infrastructure. From a security perspective, the website uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks explicit security headers and formal security policies such as incident response or vulnerability disclosure. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is implemented. The absence of contact emails or phone numbers on the homepage limits direct communication channels, relying instead on a contact form. Overall, the website presents a trustworthy and professional image with a clear educational and collaborative mission. The security posture is adequate but could be improved with additional headers and policies. Privacy compliance is basic but acceptable given the nature of the site. The risk level is low, with no indications of malicious activity or content safety concerns.

G

Gesellschaft für Informatik e.V. (GI)

informatik-monitor.de

53

The website informatik-monitor.de is an educational platform operated by Gesellschaft für Informatik e.V., focusing on the state of computer science education in Germany. It provides detailed reports, comparative data across federal states, and forecasts related to informatics teaching in secondary schools. The site targets educators, policymakers, and researchers interested in informatics education. Technically, the site is built on TYPO3 CMS with Bootstrap, offering a responsive and accessible user experience. Security-wise, the site uses HTTPS (assumed), implements cookie consent with privacy-conscious defaults, and employs Piwik (Matomo) analytics with denied ad and analytics storage by default. However, no explicit privacy policy or terms of service were found, and security headers are not evident in the provided data. Overall, the site is professional, trustworthy, and safe for general audiences.

F

FERI

feri.de

71

FERI is a German-based financial services company specializing in multi-asset management and global investment solutions. With over 30 years of experience, it targets sophisticated private wealth and institutional investors, offering independent research and asset management services. The website reflects a professional and consistent brand image, emphasizing trust and expertise in the finance sector. Technically, the site uses modern web technologies including Cookiebot for consent management and Google Tag Manager for analytics, hosted on Colt's infrastructure. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website demonstrates a mature digital presence aligned with its business model and regulatory compliance requirements.

LEO Pharma is a well-established healthcare company specializing in medical dermatology and thrombosis treatments, with a history dating back to 1908. The French localized website www.leo-pharma.fr presents a professional and comprehensive digital presence, targeting patients, healthcare professionals, and potential employees. The company emphasizes patient support, research and development, and sustainable growth. The website is hosted on Microsoft Azure and uses modern technologies including Sitecore CMS and React, ensuring a robust and scalable infrastructure. Privacy and cookie compliance are well implemented, with detailed cookie declarations and GDPR-aligned privacy policies. Security posture is strong with HTTPS enforced and no evident vulnerabilities or exposed sensitive data. Overall, the website reflects a mature digital presence consistent with a large healthcare enterprise.

A

AidantK+

aidantkplus.fr

60

AidantK+ is a French healthcare support platform dedicated to informing and assisting close caregivers of cancer patients. The website offers a scientifically validated Mini-Zarit questionnaire to assess caregiver burden and provides information on available aids and support resources. The platform targets a niche audience of caregivers, positioning itself as a valuable informational resource in the healthcare non-profit sector. Technically, the website employs modern JavaScript frameworks such as Turbo-Rails and Stimulus, uses Bootstrap for responsive design, and integrates analytics tools like Matomo and Google Tag Manager. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and formal privacy policies are absent. No contact information or incident response channels are publicly available, which limits transparency. Overall, the website is professional, trustworthy, and safe for general audiences, but could improve compliance and security transparency.

Ticker Technologies is a specialized financial content provider established since 1998, offering stock tickers, charts, and financial data solutions primarily to corporate clients for web, intranet, and extranet integration. The company maintains a stable market position with long-term partnerships and a licensing business model. Technically, the website uses basic but functional technologies including JavaScript and Google Analytics, with moderate performance and basic mobile optimization. Security posture is average with domain registration protections but lacks advanced DNS security and visible security headers. Privacy compliance is minimal with no cookie consent mechanisms and only a basic privacy policy. Overall, the website is professional and trustworthy but could improve in security and privacy practices.

W

WE DO communication GmbH GWA

we-do.com

48

WE DO communication GmbH GWA is a medium-sized communication agency based in Berlin, Germany, specializing in integrated campaigns that combine creative content, PR, interactive media, and event management. The company targets businesses and organizations seeking sustainable and engaging communication strategies. Their website reflects a professional and consistent brand image with a clear presentation of services and client references. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies such as JavaScript and SVG for interactive elements. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS but lacks visible security headers and explicit incident response or security policies, which are areas for improvement. The absence of WHOIS registration data raises some concerns about domain legitimacy, although the professional web presence and contact transparency mitigate risk. Overall, the website scores well in content quality and business credibility but should enhance security and privacy compliance measures.

S

Shell plc

shell.com

74

Shell plc operates as a global energy and petrochemical company with a strong market position and a comprehensive portfolio of services including oil and natural gas production, petrochemical manufacturing, and energy retail. The website reflects a mature digital presence with professional design, clear navigation, and extensive content targeting investors, business customers, and job seekers. The company emphasizes sustainability and innovation, as seen in featured projects and strategic content. Technically, the site leverages Adobe Experience Manager CMS and modern web technologies, ensuring fast performance and mobile optimization. Security posture is solid with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates high professionalism and trustworthiness, supporting Shell's corporate brand and business objectives.

WP4you.cz is a small Czech-based service provider specializing in custom WordPress theme development and hosting solutions. The company offers a range of services including theme creation, plugin installation, WooCommerce store setup, client installation management, and migration to WordPress. Their market position is that of a niche local provider focused on WordPress technologies, targeting clients who want control over their website content and design. The website is built on WordPress 6.6.4 with Elementor page builder, indicating a modern and flexible technical infrastructure. Google Tag Manager and Google Analytics are used for tracking, showing some level of digital maturity. Security posture is moderate with HTTPS enabled but lacking advanced security headers and cookie consent mechanisms. The absence of WHOIS data reduces transparency but is likely due to privacy protection, which is common for small businesses. Overall, the website is professional, safe, and business-focused with room for improvement in security and privacy compliance.

The website automotivemag.sk operates as an online magazine focused on the automotive industry, engineering, and economic topics primarily targeting Slovak and Czech audiences. It provides industry news, articles, and advertising opportunities, positioning itself as a niche media outlet in the regional automotive sector. The business appears to be recently established in 2023, consistent with the domain registration date. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript, hosted on Hetzner servers. The site has moderate performance and basic mobile optimization. SEO practices are adequate with proper meta tags and Open Graph data. However, no CMS or advanced frameworks are detected, indicating a simple custom or static site. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. Google Analytics is used for tracking without a visible consent mechanism. No contact information or incident response channels are provided, limiting transparency and trust. The SSL status is unknown but likely present given Google Analytics usage. Overall, the site is professional and content-rich but has notable gaps in privacy compliance and security best practices. The domain registration is consistent and legitimate, supporting the business credibility. Strategic improvements in privacy policies, security headers, and contact transparency are recommended to enhance trust and compliance.

W

Web Commerce GmbH

kath-musterhausen.de

47

The website www.kath-musterhausen.de represents SESAM, a web platform service designed for church institutions within the Erzdiözese Freiburg. It is developed and hosted by Web Commerce GmbH, providing a comprehensive web-building toolkit including event management, news, forms, newsletters, and room and duty scheduling. The site targets church organizations seeking a versatile and supported online presence. Technically, the site uses Edith CMS, jQuery, and Matomo analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS and some security headers, though cookie consent mechanisms and explicit security policies are lacking. Overall, the site is professional, trustworthy, and well-aligned with its niche audience.

K

Katholische Arbeitsstelle für missionarische Pastoral

katholisch-werden.de

44

Katholisch-werden.de is a German-language website operated by the Katholische Arbeitsstelle für missionarische Pastoral, providing informational and pastoral support services focused on adult baptism, conversion, and re-entry into the Catholic Church. The site targets adults interested in deepening or renewing their Catholic faith and offers resources such as catechesis texts and literature. The business operates as a small non-profit entity within the religious sector, serving a niche community in Germany. Technically, the website is built on TYPO3 CMS, hosted on securehost.de nameservers, and employs standard web technologies including JavaScript and CSS. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were identified. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Business credibility is supported by clear branding, testimonials, and a professional presentation. Overall, the website is trustworthy, safe, and professionally maintained, though enhancements in security headers, privacy compliance, and mobile accessibility would strengthen its posture. There are no indications of malicious activity or content safety concerns.

D

Dana Petroleum

dana-petroleum.com

67

Dana Petroleum is a medium-sized exploration and production company operating primarily in the UK, Netherlands, and Egypt. It is a wholly owned subsidiary of the Korea National Oil Corporation, focusing on oil and gas extraction with significant operations in the North Sea. The website presents a professional corporate image with clear business descriptions, key service offerings, and a consistent brand presence. The company targets investors, partners, industry professionals, and potential employees through detailed sections on management, operations, and careers. Technically, the website uses modern web standards including HTML5, CSS3, and JavaScript, with integration of Google Analytics, Google Tag Manager, and Plausible Analytics for user tracking and performance monitoring. The site is mobile optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. However, no CMS or hosting provider details were detected, and accessibility features are basic. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks visible security headers and explicit incident response or vulnerability disclosure information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data reduces confidence in domain legitimacy, but the professional content and company registration details support trustworthiness. Overall, Dana Petroleum's website is a well-structured, professional corporate site with good technical implementation and privacy compliance. The main risk is the lack of WHOIS transparency and limited published security policies, which could be improved to enhance trust and compliance.

ASTUR Straškov a.s. is a medium-sized agricultural company based in the Czech Republic, specializing in both crop and livestock production. The company operates over 3,100 hectares of agricultural land and offers a range of services including mechanization and land leasing. The website reflects a well-established business with a history dating back to 2004 and a strong local presence supported by partnerships with reputable agricultural machinery and service providers. Technically, the website uses modern web technologies and frameworks, providing a good user experience with mobile optimization and clear navigation. However, there are gaps in privacy and security policies, with no visible privacy policy or incident response information, and missing security headers. The cookie consent mechanism is implemented, indicating some level of GDPR awareness. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

B

Brilo Team s.r.o.

brilo.cz

51

Brilo Team s.r.o. is a Czech Republic based digital agency specializing in web development, e-commerce solutions, marketing, and branding services. The company positions itself as a regional leader helping businesses succeed online with a focus on long-term value and client satisfaction. The website is professionally designed, mobile optimized, and rich with client references and testimonials, indicating a mature business presence. Technically, the site uses modern JavaScript frameworks, Google Tag Manager, and Facebook Pixel for analytics and marketing. Security posture is good with HTTPS and secure forms, but lacks some security headers and cookie consent mechanisms. WHOIS data is privacy protected, which is common for this business type, and no suspicious patterns were detected. Overall, the site is trustworthy and well-maintained, suitable for its target audience of businesses seeking digital agency services.

S

stredohori-podripsko.cz

stredohori-podripsko.cz

46

The website stredohori-podripsko.cz operates as an online magazine focused on the beauty and cultural richness of the Středohoří and Podřipsko regions in the Czech Republic. It offers a variety of articles covering health, economy, culture, travel, and practical advice, targeting a general audience interested in local topics. The business model centers on content publishing with monetization through Google Adsense advertising. The site is relatively new, with a domain creation date indicating 2025, which appears inconsistent and may reflect a placeholder or data anomaly. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, Matomo analytics for user tracking, and Google Adsense for advertising. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Hosting is provided via vas-hosting.com, with domain registration through REG-GRANSY. Performance is moderate, and no content blocking or WAF mechanisms were detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible security or incident response policy, nor a vulnerability disclosure mechanism. Privacy compliance is partial; a privacy policy and terms of use are published, but no cookie consent mechanism is present, which is a compliance gap under GDPR. No direct contact emails or phone numbers were found, only a contact form. Overall, the website presents a professional and trustworthy front for a small regional media outlet, but the WHOIS data anomaly and lack of some security and privacy features suggest areas for improvement. Strategic enhancements in privacy compliance, security headers, and transparency would strengthen trust and regulatory adherence.

D

Deutsche Ordensobernkonferenz e.V.

orden.de

41

The website www.orden.de serves as the official internet portal for the Deutsche Ordensobernkonferenz e.V., providing comprehensive information about religious orders in Germany. It targets members of religious communities and the interested public, offering news, educational resources, and organizational information. The site holds a strong position as a leading informational resource in its niche. Technically, the site is built on TYPO3 CMS, employs Matomo for analytics, and is hosted via domaincontrol.com nameservers. The site is moderately optimized for performance and mobile devices, with good SEO practices and clear navigation. Security-wise, HTTPS is enforced and spam-protection for emails is implemented via JavaScript obfuscation, but lacks advanced security headers and explicit cookie consent mechanisms. No direct contact emails or phone numbers are visible, with contact likely managed through forms. Overall, the site is professional, trustworthy, and safe for general audiences.

M

MLP Finanzberatung SE

mlp-bielefeld.de

69

MLP Finanzberatung SE operates a professional financial advisory website for its Bielefeld location, offering a broad range of financial services including asset management, retirement planning, insurance, financing, and real estate investment. The website targets private customers and emphasizes a networked advisory approach. The company is positioned as a large, established player in the German financial advisory market with a consistent brand presence and comprehensive service offerings. Technically, the website employs modern JavaScript libraries, Google Tag Manager for analytics, and Usercentrics for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. No major CMS is detected, suggesting a custom or proprietary platform. From a security perspective, the site uses HTTPS with good SSL configuration and implements consent management. However, explicit security headers are not detected, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were identified in the HTML content. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

M

MLP Finanzberatung SE

mlp-hamburg.de

69

MLP Finanzberatung SE operates a professional financial advisory website focused on the Hamburg region, offering a broad range of financial services including asset management, retirement planning, insurance, financing, and real estate investment. The site targets private customers, medical professionals, students, and corporate clients, positioning itself as a trusted partner in financial decision-making. The business model centers on personalized, networked financial consulting supported by an expert team. Technically, the website employs modern JavaScript libraries, Google Tag Manager for analytics, and a GDPR-compliant cookie consent mechanism via Usercentrics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a published security policy are absent. Privacy compliance is strong with clear links to privacy and cookie policies. Overall, the site presents a professional, trustworthy, and user-friendly experience with clear navigation and high-quality content.

U

UNIFER alfa a.s.

unifer.cz

45

UNIFER alfa a.s. is a Czech-based design and digital agency established in 2012, offering a broad range of services including web and digital marketing, design and video production, marketing and advertising, and strategic planning and consulting. The company targets businesses seeking professional digital and creative solutions and maintains a strong market position supported by a portfolio of reputable clients and references. Their website reflects a high level of professionalism, with excellent content quality, clear navigation, and mobile optimization. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools, demonstrating digital maturity. Security posture is strong with HTTPS enforcement, reCAPTCHA integration, and cookie consent management, though explicit security headers could be further verified and enhanced. Overall, the website and business exhibit high credibility and compliance with GDPR, with clear contact information and transparent cookie policies.

G

Gesellschaft für Informatik e.V.

gi.de

55

Gesellschaft für Informatik e.V. (GI) is a well-established German non-profit association dedicated to the field of informatics. The organization provides a broad range of services including membership, publications, events, and educational projects aimed at informatics professionals, academics, and students. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the site is built on TYPO3 CMS with Bootstrap, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. WHOIS data aligns with the website's legitimacy, showing consistent domain registration without privacy protection, appropriate for a professional association. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and professional online presence for the GI association.

G

GETPIONEERS

getpioneers.com

45

GETPIONEERS is a German-based technology service provider specializing in visual and interactive digital solutions for B2B communication. Their offerings include interactive applications, AR/VR training, high-end visualization and design, film and video production, virtual events, and consulting services. The company positions itself as an innovative partner enabling clients to enhance their marketing, sales, and training through cutting-edge digital experiences. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service descriptions. The domain registration aligns well with the company's founding date and business claims, indicating legitimacy and transparency. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for animations and interactive elements. Hosting is provided by Hetzner Online GmbH, a reputable German hosting provider. Performance is moderate with good mobile optimization, though accessibility and SEO could be improved. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and explicit security policies on the site. Privacy compliance is partial; a privacy policy is present and GDPR compliant, but no cookie consent mechanism or terms of service are found. Contact information including phone and email is clearly provided, along with active social media profiles. No analytics or tracking scripts were detected in the provided HTML content, indicating minimal user tracking. Overall, GETPIONEERS presents a trustworthy and professional digital presence with room for improvement in security headers, privacy compliance, and SEO. The business is well-positioned in the technology visualization sector with a clear focus on B2B clients.

S

Spreadshop

spreadshop.com

61

Spreadshop is a well-established e-commerce platform specializing in print-on-demand merchandise creation and sales, targeting creators, influencers, and small to medium businesses. The platform offers a comprehensive suite of services including custom merch shop creation, product printing, shipping, and integration with major social media and e-commerce platforms. The website demonstrates a high level of digital maturity with modern technologies such as React and Next.js, optimized for performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms. The absence of WHOIS data for the domain is a notable concern but does not detract significantly from the overall legitimacy and professionalism of the site. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance trust and transparency.

S

Spreadshop

spreadconnect.app

63

Spreadshop operates a print-on-demand ecommerce platform branded as Spreadconnect, enabling merchants to create and sell custom merchandise integrated with major ecommerce platforms and marketplaces such as Shopify, WooCommerce, TikTok, Amazon, and eBay. The business emphasizes fast fulfillment within 48 hours, high-quality printing, and worldwide shipping, targeting growing brands and seasoned sellers. The website is professionally designed with clear navigation, mobile optimization, and comprehensive content including FAQs and testimonials. Technically, the site uses modern frameworks like Next.js and React, with integrations for cookie consent and analytics. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. However, the domain WHOIS data is missing, which slightly reduces trustworthiness. Overall, the platform presents a mature, reliable ecommerce service with room for improvement in transparency and security communication.

M

Marthy’s Kitchen

marthyskitchen.cz

57

Marthy’s Kitchen is a small hospitality business based in Prague, Czech Republic, specializing in high-quality breakfasts and brunches served in a cozy French-style interior. The website reflects a local restaurant with a focus on quality ingredients, home-style preparation, and friendly service. The business targets general audiences seeking elegant dining experiences. Technically, the website is built on the Wix platform, leveraging modern web technologies and providing a mobile-optimized experience. However, the site lacks comprehensive privacy and cookie policies, which are important for GDPR compliance. Security-wise, HTTPS is enabled, but security headers are missing, and no incident response or vulnerability disclosure information is provided. The use of Facebook Pixel indicates moderate user tracking for marketing purposes. Overall, the website is professional and trustworthy but could improve in privacy compliance and security best practices.

B

BREDFORD Consulting, s.r.o.

bredford.cz

49

BREDFORD Consulting, s.r.o. is a well-established Czech boutique consulting firm specializing in tax advisory, accounting, payroll, and recruitment services. With over 20 years of market presence and a team of more than 20 professionals, the company targets small to medium-sized businesses primarily in the Czech Republic. Their service offerings are comprehensive, covering legal tax minimization, accounting accuracy, payroll management, and recruitment support, positioning them as a trusted partner for business clients seeking reliable financial and HR services. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 for analytics and security. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and CSRF tokens on forms, though some security headers are missing. From a security posture perspective, the site demonstrates good practices with encrypted connections and anti-bot protections. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in transparency and readiness. The lack of WHOIS data reduces domain trust slightly but is offset by the professional presentation and business registration details displayed on the site. Overall, BREDFORD Consulting's website is professional, trustworthy, and compliant with GDPR and cookie regulations. It effectively communicates its business services and contact information, making it a credible online presence for their consulting business.

S

Staroměstská brána - Nový městský prostor v srdci Prahy

staromestskabrana.cz

53

The website staromestskabrana.cz represents a real estate and hospitality development project located in Prague, focusing on urban revitalization and the operation of the Fairmont Golden Prague Hotel. It also promotes an international architectural competition named RaumScape. The site targets a general audience interested in urban development and hospitality services. The business model centers on real estate development combined with hospitality offerings, positioning itself as an emerging player in the Prague market. Technically, the website employs modern frontend technologies including Bootstrap for responsive design, FontAwesome for icons, Google Fonts for typography, and JavaScript libraries such as lazysizes for lazy loading images and scrollFX for scroll animations. The site is mobile optimized with good SEO practices but lacks backend or CMS indicators. Performance is moderate with no evident critical technical issues. From a security perspective, the site uses HTTPS (implied by canonical URLs) but lacks visible security headers and explicit privacy or cookie policies. No contact emails or phone numbers are provided, and no incident response or security policies are disclosed. The WHOIS data is missing, which raises concerns about domain legitimacy and trustworthiness. No vulnerabilities or malware indicators were detected in the provided content. Overall, the website is professionally designed and content-rich but lacks transparency in privacy, contact, and domain registration data. Strategic improvements in security posture, privacy compliance, and business credibility are recommended to enhance trust and compliance.

N

NetFronts Inc.

zeonhost.com

44

NetFronts Inc. is a small US-based web hosting provider established since 1996, offering shared, reseller, dedicated, and VPS hosting services along with domain registration and SSL certificates. The company targets small to medium businesses and resellers seeking affordable and scalable hosting solutions. Their market position is supported by a long domain age and claims of hosting over 30,000 domains. Technically, the website uses basic legacy technologies with JavaScript and Hsphere control panel references, and includes Google reCAPTCHA for form security. However, the site lacks modern CMS or frameworks and shows only basic mobile and accessibility optimizations. Security posture is moderate with no DNSSEC, no visible HTTPS enforcement, and absence of security headers, though reCAPTCHA is used to mitigate spam. Privacy compliance is limited with a privacy policy present but no cookie consent mechanism or GDPR indicators. Overall, the site is functional but could benefit from modernization and enhanced security practices.