High-risk security reports

M

Můj život po škole - rozcestník

mujzivotposkole.cz

41

The website 'Můj život po škole' serves as a regional navigation portal aimed at students or young people finishing school in various Czech Republic regions. It provides links to subdomains dedicated to specific regions, facilitating access to localized educational or post-school resources. The business model is informational, focusing on regional educational support without direct commercial services. The site is small in scale, founded in 2019, and targets a niche audience within the Czech education sector. Technically, the website uses basic HTML5, CSS3, and JavaScript with Google Fonts integration. Hosting is provided by a Czech hosting provider (VAS Hosting). The site demonstrates moderate performance and basic mobile optimization but lacks advanced frameworks or CMS detection. SEO and accessibility features are minimal but functional. From a security perspective, the site lacks visible security headers and does not present privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is provided, and no analytics or advertising scripts are detected, indicating minimal user tracking. The domain registration data is consistent with the website's purpose and hosting location, supporting legitimacy. No WAF or blocking mechanisms are detected. Overall, the site is safe and suitable for a general audience, with no adult or questionable content. However, the lack of privacy and security policies, contact information, and security best practices lowers its security posture and privacy compliance. Strategic improvements are recommended to enhance trust and compliance.

C

Cesta k zaměstnání

cestakzamestnani.cz

49

The website 'Cesta k zaměstnání' is an educational platform primarily targeting Czech high school students to assist them in navigating the job search process. It offers modules on CV creation, job searching, interview preparation, employment contracts, and labor law basics. The site is relatively new, launched in 2022, and uses modern web technologies such as Vue.js. It is hosted on a Czech hosting provider inferred from the nameservers. The content is well-structured and relevant to its educational purpose, with a consistent branding approach and legal review noted on the site. However, it lacks explicit privacy and terms of service pages and does not provide direct contact or security policy information.

M

Moravskoslezský pakt zaměstnanosti, z.s.

infoprokarieru.cz

47

Info pro kariéru is a Czech regional non-profit organization focused on helping elementary school students choose future careers. Operated by Moravskoslezský pakt zaměstnanosti, z.s., it provides career counseling, labor market information, and organizes excursions to support career development. The website is well-branded, regionally recognized, and supported by EU funding and the city of Ostrava. Technically, the site is built on WordPress with modern web technologies, including GDPR-compliant cookie management and analytics tools like Google Analytics and Hotjar. The site is mobile-optimized and SEO-friendly, though accessibility could be improved. Security posture is good with HTTPS and consent mechanisms, but lacks some security headers and explicit security policies. Overall, the site is trustworthy, professional, and serves its educational mission effectively.

M

milota

volbakariery.cz

46

Volbakariery.cz is a regional educational and career guidance platform serving the Moravskoslezský region in the Czech Republic. It provides career counseling, educational support, and collaboration between schools and employers. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Alpine.js, and performance plugins. Security posture is solid with HTTPS and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with clear GDPR policies and cookie management. The site lacks explicit contact emails and phone numbers but maintains social media presence on Facebook and LinkedIn. Overall, the platform is a credible and trusted resource for career guidance in its region.

Ž

Ženy mohou

zenymohou.cz

43

Ženy mohou is a Czech Republic-based educational and cultural platform dedicated to showcasing the history and impact of the Czech women's movement. The website offers exhibitions, an encyclopedia, an educational scavenger game, and a digital map highlighting significant feminist historical sites in Prague. The platform is supported by EEA Grants and affiliated with Gender Studies Prague, positioning it as a niche but credible non-profit educational resource. Technically, the site is built on WordPress with modern plugins and themes, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

The website rovneprilezitosti.cz operates as a nonprofit legal advisory portal managed by Gender Studies, o.p.s., focusing on legal issues related to gender and age discrimination, family-work balance, and parental leave in the Czech Republic. It serves primarily women and men facing discrimination or seeking advice on parental leave and flexible work arrangements. The site is supported by Czech government grants and EHP funds, reinforcing its nonprofit and public service nature. The content is primarily in Czech and includes a contact form for legal inquiries, answered by qualified legal professionals within 10 days. The site also provides an archive of answered questions and legal guidance.

K

Köttermann Group

koettermanngroup.com

41

The Köttermann Group website presents a professional and coherent business focused on laboratory infrastructure solutions, encompassing manufacturing and turnkey design/build services through its subsidiaries Köttermann, Lab Concept, and Labflex. The group operates under the BHM investment firm, positioning itself as a European-based consortium serving global laboratory markets. The website content is well-structured, with clear branding and consistent messaging, targeting scientific research and commercial laboratory sectors. Technically, the site uses modern web standards with UIkit framework, delivering moderate performance and good mobile responsiveness. Hosting is provided by WEDOS Internet, a known registrar and hosting provider. However, the site lacks advanced SEO and accessibility features and does not implement DNSSEC or security headers, which are recommended for enhanced security. From a security perspective, the site uses HTTPS but lacks published privacy, cookie, or security policies, and no contact information or incident response channels are provided. No analytics or tracking scripts were detected, indicating minimal user tracking. The WHOIS data is consistent with the business founding date and shows no privacy protection, supporting legitimacy. Overall, the security posture is moderate but could be improved by adding policies, security headers, and incident response information. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy compliance, security best practices, and contact transparency would enhance trust and compliance with regulations such as GDPR.

R

Reinsberg Group

reinsberg.com

46

Reinsberg Group is a well-established European healthcare holding company managing multiple subsidiaries specializing in medical technology and hospital equipment manufacturing. The group focuses on innovation, research, and providing comprehensive healthcare solutions globally, supported by a strong parent investment firm, BHM group. The website presents detailed information about the group, its subsidiaries, and recent business developments, positioning it as a leading player in the European MedTech sector. Technically, the website uses modern frontend frameworks (UIkit), is mobile optimized, and hosted on a known provider. However, it lacks explicit privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. The domain is long-standing and consistent with the business history, enhancing trustworthiness. Overall, the website is professional and informative but could improve in privacy compliance and security best practices.

S

Slovenská správa ciest

cdb.sk

48

The website cdb.sk is the official portal for the Slovenská správa ciest (Slovak Road Administration) providing comprehensive road data and related services for Slovakia. It serves government agencies, road administrators, and the public with data collection, processing, and dissemination of road network information. The site is well-structured, professionally designed, and offers multilingual support with Slovak as the primary language. Technically, it is built on ASP.NET WebForms with AlejTech CMS, incorporating standard web technologies such as jQuery and Bootstrap CSS. The site implements HTTPS and cookie consent mechanisms, reflecting good privacy compliance. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website demonstrates a solid security posture with no detected vulnerabilities or suspicious content, supporting its role as a trusted government information source.

C

Case Tools

casecetools.com

46

The website 'Case Tools' appears to be a technology-focused platform offering tools, likely related to case management or similar services, though explicit business descriptions are absent. The domain is well-established since 2006, indicating a mature presence. The technical infrastructure is built on modern web technologies including React and Ant Design, with integration of Google Analytics and Tag Manager for user tracking. However, the site lacks comprehensive content, privacy policies, and contact information, which limits user trust and compliance. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Overall, the site is functional but requires improvements in privacy compliance, security best practices, and business transparency to strengthen its risk profile and user trust.

E

Embuild

belgianroofday.be

37

Belgian Roof Day is a well-established trade event serving the Belgian roofing sector, organized by Embuild, the Belgian Construction Association. The website presents comprehensive information about the event, including exhibitor details, visitor information, seminars, and competitions. The site is built on WordPress using Elementor and several plugins, providing a modern and responsive user experience. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data for the domain is restricted by the registry, which slightly reduces transparency but does not detract from the site's legitimacy. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

E

Embuild

dagvandeafwerking.be

37

Dag van de afwerking is a well-established Belgian trade fair event focused on finishing trades within the construction sector. The event attracts thousands of visitors and numerous exhibitors, providing a platform for product demonstrations, seminars, and networking opportunities tailored to professionals such as carpenters, painters, plasterers, and tilers. The website reflects a professional and consistent brand presence, supported by the Belgian Construction Association Embuild, which is prominently featured as the organizer. Technically, the website is built on WordPress using the Elementor page builder and several plugins including Contact Form 7 and WPML for multilingual support. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and cookie consent mechanisms to enhance GDPR compliance. The WHOIS data is restricted due to DNS Belgium's privacy policies, showing a 'NOT ALLOWED' status with no registrant details available. Despite this, the website content and business information are consistent and trustworthy, indicating a legitimate and professional operation. No signs of malicious activity or suspicious domains were detected. Overall, the website serves its business purpose effectively, providing relevant information and contact channels for visitors and exhibitors. Strategic recommendations include enhancing privacy compliance with cookie consent, implementing security headers, and publishing a security policy to further strengthen trust and security posture.

I

Install Day

installday.be

44

Install Day is a specialized trade fair event focused on the installation sector, including electrical, heating, ventilation, and sanitary technologies. Organized by industry associations Techlink and Embuild, it serves as a key platform for installers, manufacturers, and suppliers to showcase new products and network. The event is well-established with over 5000 visitors in 2024 and is positioned as a leading industry reference in Belgium. The website supports this business with clear event information, registration links, and multimedia content.

The website genieservice.eu is currently inaccessible, returning a 403 Forbidden error page indicating restricted access. Due to the lack of accessible content, no metadata, forms, or business information could be extracted. The domain is registered through MarkMonitor International Limited, a reputable registrar, but no registrant details or business legitimacy indicators are available. The technical infrastructure appears to be an Apache 2.4.41 server running on Ubuntu, but no further technology stack details are available. Security posture cannot be properly assessed due to the blocked content, and no privacy or cookie policies are present. Overall, the site appears to be either under maintenance, misconfigured, or access-restricted, resulting in a very low trust and credibility score.

A

Asociace kempování a karavaningu ČR, z.s.

akkcr.cz

44

Asociace kempování a karavaningu ČR, z.s. is a Czech non-profit organization dedicated to supporting and developing the caravanning lifestyle in the Czech Republic. It collaborates closely with legislators, municipalities, media, and industry stakeholders to improve conditions for free travel and promote ethical camping practices. The association also provides expert consultations, organizes conferences, and publishes unique statistical data, positioning itself as a key player in the Czech caravanning sector with European affiliations. Technically, the website is built on WordPress with modern SEO and security plugins such as Yoast SEO and Google reCAPTCHA. It uses HTTPS and integrates social media tools like the Facebook SDK. The site demonstrates good mobile optimization and moderate performance, with clear navigation and professional design. From a security perspective, the site employs HTTPS and CAPTCHA protections, but lacks explicit advanced security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a visible cookie consent mechanism and a privacy policy page. Contact information is clearly provided, enhancing trust. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. Strategic recommendations include enhancing security headers, publishing a formal security policy, and maintaining regular updates to plugins and CMS to sustain security posture.

Studio Karavan is a Czech Republic based small media entity focused on producing podcast content related to caravaning, vanlife, and independent travel. The website serves as a hub for their podcast episodes, featuring interviews, travel tips, and technical advice for caravan enthusiasts. The business is positioned as a niche leader in the Czech caravaning podcast market, with partnerships with Vanisti.cz and CamperLIFE.cz enhancing its credibility and reach. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and YouTube Embed Plus, and it is hosted by Active24. The site is mobile optimized and SEO friendly, though performance is moderate. Security posture is good with HTTPS enforced, but lacks some security headers and formal privacy/cookie policies, which are compliance gaps. Overall, the site is professional, trustworthy, and safe for general audiences.

F

FreshCamper

freshcamper.cz

39

FreshCamper is a small Czech company specializing in environmentally friendly ventilation systems for cassette toilets in campers and RVs. Their product aims to eliminate unpleasant odors without chemicals, enhancing travel comfort. The website is professionally designed using WordPress with SEO optimization and animation libraries, providing a good user experience and clear product focus. However, the site lacks critical compliance documents such as privacy and cookie policies and does not provide direct contact emails or phone numbers on the homepage, relying on a contact form instead. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. The WHOIS data shows an unusual future creation date, which raises questions about domain registration accuracy but does not necessarily indicate illegitimacy. Overall, the site is functional and trustworthy for its niche audience but requires improvements in compliance and security transparency.

The website wyboryksiazek.pl is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge page, which blocks direct content access. The domain is registered to PERSKIMEDIA Szymon Perski since 2014, indicating a stable and legitimate registration. However, no business information, contact details, or policies are accessible on the landing page. The technical infrastructure includes Cloudflare security services, but no further technology or CMS details are available due to the blocking. Security posture is difficult to assess fully, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site lacks visible privacy and cookie policies, and no forms or data collection mechanisms are present in the accessible content.

The website podstawaprogramowa.pl is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge page, which blocks direct access to the site's content. This prevents extraction of meaningful business, security, or compliance information from the site itself. The domain is registered to PERSKIMEDIA Szymon Perski since 2017, indicating a stable registration but no further business details are available. The site appears to be a small-scale or personal project given the registrant information and lack of visible corporate data. Technically, the site uses Cloudflare's security services including Turnstile CAPTCHA, but no other technologies or CMS platforms are detectable from the challenge page. Security posture cannot be fully assessed due to lack of content access, but the presence of Cloudflare WAF indicates some level of protection. Privacy and cookie policies, contact information, and other compliance indicators are not found on the challenge page. Overall, the site is safe in terms of content but inaccessible for detailed analysis.

The website wszystkodlaszkoly.pl is currently inaccessible due to a Cloudflare Turnstile security challenge page, which blocks direct access to any business or content information. The domain is registered since 2006 to PERSKIMEDIA Szymon Perski, consistent with a Polish entity, but no further business details or contact information are available from the accessible content. The technical infrastructure relies on Cloudflare for security and performance, but no CMS or additional technologies are detectable due to the content block. Security posture cannot be fully assessed, but the lack of DNSSEC and security headers indicates room for improvement. Privacy and compliance information such as privacy policy, cookie policy, and terms of service are not found, limiting GDPR compliance assessment. Overall, the site appears to be protected by a strong WAF, but this also prevents meaningful content and security analysis.

E

Educational Enterprise Foundation

paii.pl

39

The Polish-American Internship Initiative (PAII) is a non-profit educational program managed by the Educational Enterprise Foundation, focused on providing summer internship opportunities in the USA for Polish students. The program also organizes the Transatlantic Future Leaders Forum, targeting young Polish candidates interested in leadership and international cooperation. The website reflects a niche educational initiative with established partnerships and a clear target audience of Polish students and companies. Technically, the site is built on WordPress with common plugins and frameworks such as Foundation and jQuery, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and comprehensive privacy documentation. The absence of WHOIS data limits domain trust assessment, but the website content and partner references support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

S

Stypendia pomostowe

stypendia-pomostowe.pl

44

The website www.stypendiapomostowe.pl represents the Stypendia Pomostowe scholarship program, a well-established non-profit initiative founded in 2002 and supported by the Polsko-Amerykańska Fundacja Wolności and Fundacja FEP. The program offers scholarships, language grants, internships, workshops, and volunteering opportunities aimed at ambitious and talented students in Poland. The site demonstrates a strong market position with strategic partnerships and media patronage, reflecting a credible and trusted educational support entity. Technically, the website is built on WordPress using Elementor and Bootstrap frameworks, incorporating modern web technologies and third-party integrations such as Google Analytics and Google Tag Manager. The site is mobile-optimized and SEO-friendly, with good performance and accessibility features, although some security headers could be improved. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating compliance with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security headers and incident response contacts suggests room for enhancement in security posture. Overall, the website is professional, trustworthy, and well-maintained, serving its target audience effectively. The lack of WHOIS data limits domain registration insights, but the business legitimacy is supported by content quality and partnerships. Strategic recommendations include strengthening security headers, maintaining up-to-date software, and enhancing contact transparency for incident response.

The website szkolaedukacji.pl is currently inaccessible, returning a 403 Forbidden error page with no visible content or metadata. This prevents any meaningful analysis of the business, services, or technical infrastructure. The domain is registered with OVH SAS since 2016 and is set to expire in early 2026, indicating a legitimate registration history consistent with a small educational entity in Poland. However, the lack of accessible content, security headers, or privacy policies severely limits the ability to assess the website's security posture or compliance status. The absence of contact information and business details further reduces trust and credibility. Overall, the site appears to be either under maintenance, misconfigured, or intentionally restricted, resulting in a low AI score and incomplete analysis.

A

AutoID Polska S.A.

entrywise.io

44

EntryWise, operated by AutoID Polska S.A., offers a modern security and attendance management platform tailored for diverse industries including manufacturing, finance, healthcare, and hospitality. The company leverages over 25 years of experience and has successfully implemented over 1000 deployments across 12 countries, positioning itself as a reliable and innovative player in the security technology market. The website reflects a professional and user-friendly approach, emphasizing comprehensive solutions and customer support. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Microsoft Clarity, and Google Tag Manager for analytics and marketing. The site is hosted by OVH SAS and employs HTTPS with good SSL configuration. Mobile optimization and accessibility are well addressed, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS, uses reCAPTCHA for form protection, and provides a detailed cookie consent mechanism compliant with GDPR. However, some security headers are not explicitly detected, and there is no public incident response or vulnerability disclosure policy. The WHOIS data aligns well with the business identity, supporting legitimacy. Overall, EntryWise demonstrates a strong security posture and business credibility with room for improvement in security header implementation and formal incident response disclosures. The website is trustworthy, well-maintained, and compliant with privacy regulations.

A

AutoID

autoid.pl

44

AutoID is a Polish technology company specializing in automation solutions for access control, employee management, and automatic identification of people, objects, and vehicles. Their offerings include hardware and software systems designed to improve operational efficiency, security, and data processing for businesses. The company positions itself as a modern, innovative provider with a medium-sized market presence in Poland, collaborating with academic institutions and serving diverse industries. Technically, the website is built on Joomla CMS with modern JavaScript libraries and tracking tools, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and visible privacy policies. WHOIS data is unavailable, which slightly impacts domain trustworthiness. Overall, the site is professional and trustworthy, with room for improvement in compliance transparency and security hardening.

E

Equity Finance s.r.o.

equityfinance.cz

49

Equity Finance s.r.o. is a Czech-based professional accounting and tax services provider established in 2020. The company offers comprehensive external accounting, payroll accounting, and tax advisory services tailored to local businesses. Their emphasis on modern technology and automation aims to streamline client operations and reduce administrative burdens. The website reflects a small but professional business with clear contact information and affiliation to the Micronix Group, enhancing credibility. Technically, the website uses a modern frontend stack including Bootstrap and jQuery, with responsive design and moderate performance. However, it lacks advanced SEO features, accessibility enhancements, and does not implement privacy or cookie policies, which are important for compliance and user trust. No CMS or analytics tools are detected, indicating a simple but effective technical setup. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks security headers and incident response information, which could improve its security posture. The absence of privacy and cookie policies is a notable compliance gap, especially under GDPR regulations. Overall, the website is safe, professional, and trustworthy for its business purpose but would benefit from improved privacy compliance and security best practices to enhance user trust and regulatory adherence.

PV Recovery, s.r.o. operates a collective system dedicated to the recycling and disposal of solar panels in the Czech Republic. Founded in 2013 by photovoltaic power plant operators and related companies, it provides a compliant and cost-effective solution for managing solar panel waste. The company collaborates with established waste processing firms to ensure efficient logistics and recycling processes. The website reflects a focused business model targeting photovoltaic operators and suppliers, emphasizing environmental compliance and cost minimization.

M

MCX Distribuce

mcxdistribuce.cz

48

MCX Distribuce is a Czech company specializing in the design, implementation, and operation of local electrical and gas distribution systems. It operates as part of the MICRONIX GROUP SE investment group, leveraging modern technology and operational expertise to serve local communities and businesses. The website presents a professional image with clear business focus and contact information, targeting the Czech energy sector. Technically, the site is built on Drupal 8 with modern frontend libraries and includes a cookie consent mechanism compliant with GDPR opt-in standards. Security posture is moderate with some best practices like IP anonymization in analytics but lacks explicit security headers and published privacy policies. Overall, the domain registration data aligns well with the business profile, supporting legitimacy. Strategic improvements include publishing privacy and security policies and enhancing security headers.

A

A+Generation

ageneration.cz

48

A+Generation is a Czech-based company specializing in the design, construction, and operation of cogeneration units that produce combined heat and power using natural gas. The company operates as part of the Micronix Group, leveraging over 30 years of experience in renewable energy solutions. Their business model focuses on turnkey energy savings solutions without requiring client investment, targeting industrial and commercial energy consumers primarily in the Czech Republic. The website presents a professional image with clear service offerings and case studies demonstrating their expertise. Technically, the website is built on Drupal 8 with modern libraries such as jQuery, Slick Carousel, and Bootstrap, ensuring a responsive and user-friendly experience. While performance is moderate and mobile optimization is good, accessibility and SEO optimizations are basic. No advanced analytics or tracking tools are detected, indicating a minimal user tracking approach. From a security perspective, the site uses HTTPS (implied), but lacks visible security headers and published security policies. There is no evidence of incident response or vulnerability disclosure mechanisms. The WHOIS data is consistent with the business claims, showing domain registration in 2020 aligned with the company's founding. No WAF or blocking mechanisms are detected, and no suspicious content is present. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident response.

P

PowerDB, Inc.

powerdb.us

42

PowerDB, Inc. operates a specialized software platform focused on acceptance and maintenance test data management for electrical testers and contractors, with strong emphasis on regulatory compliance such as NERC PRC-005-2. The company is a subsidiary of Megger, a recognized entity in the electrical testing industry. The website presents a professional and content-rich platform targeting energy sector professionals requiring efficient test data management and compliance reporting. Technically, the site is built on Joomla CMS with integration of Google Maps and common web technologies, but lacks advanced security headers and explicit privacy or cookie policies. Security posture is moderate with room for improvement in SSL verification and security best practices. Overall, the site is trustworthy and business credible, though WHOIS data for the subdomain is missing, which is not uncommon for subdomains but limits full domain trust verification.

The website mercedes-benz.si currently serves as a placeholder with minimal content, indicating that it is not configured for public use. Mercedes-Benz is a well-known global automotive brand specializing in luxury and commercial vehicles, with a strong market position and enterprise scale. The domain is long-established since 2003 and registered consistently with the expected registrar and nameservers, supporting legitimacy. However, the website lacks any meaningful content, metadata, or user engagement features, which severely limits its digital maturity and user experience. Technically, no modern frameworks, CMS, or security features are detected, and no HTTPS or security headers are present, indicating a poor security posture. There are no privacy or cookie policies, contact information, or incident response details, which further reduces compliance and trustworthiness. Overall, the site is currently non-functional and does not provide any business or security value to visitors.

The website www.ehe-wir-heiraten.de is a German non-profit initiative by the Arbeitsgemeinschaft für katholische Familienbildung e.V., affiliated with the Catholic Church. It offers a free wedding preparation app targeting couples planning to marry within the next year. The app provides weekly inspirational content, practical checklists, and information about regional events related to weddings and marriage. The website is well-structured, professionally designed, and provides clear contact information and privacy compliance mechanisms, including a cookie consent banner.

M

MM Kwidzyn sp. z o.o.

polpapierybiurowe.pl

44

The website polpapierybiurowe.pl represents MM Kwidzyn sp. z o.o., a medium-sized Polish company specializing in manufacturing and retailing office paper products under the POL brand. Established in 2010, the company emphasizes product quality, environmental sustainability, and social responsibility, including support for mental health initiatives. The website is professionally designed using WordPress with Elementor and Slider Revolution, providing a good user experience and mobile optimization. The technical infrastructure includes modern tracking and analytics tools such as Google Analytics, Google Tag Manager, and Adform, with DNSSEC enabled and HTTPS enforced, indicating a solid security foundation. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the site is trustworthy, business-focused, and safe for general audiences.

The website online-ringvorlesung.de serves as an academic platform hosting a nationwide online lecture series organized by BAG WiWA, focusing on the societal role and impact of sciences. It targets academics, students, and individuals interested in interdisciplinary discussions on science and society. The platform operates on WordPress, leveraging Cloudflare for DNS and CDN services, and employs common plugins for SEO and cookie consent, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, but lacks direct contact information and detailed security or incident response policies.

S

Sächsische Landesmedienanstalt (SLM)

slm-online.de

47

The Sächsische Landesmedienanstalt (SLM) operates as the official regulatory authority for private broadcasting and new media in the German state of Saxony. The website serves as a comprehensive information portal for media professionals, broadcasters, journalists, and the general public interested in media regulation, licensing, funding, and media competence initiatives. The organization provides key services including licensing of private radio and TV broadcasters, media funding programs, educational projects, and public transparency. The site is well-structured, professionally designed, and accessible, reflecting its government affiliation and target audience.

N

NLM – Portal Medienkompetenz Niedersachsen

medienkompetenz-niedersachsen.de

49

The website www.medienkompetenz-niedersachsen.de serves as an official educational portal focused on media literacy and competence in the German state of Niedersachsen. It aggregates and networks various regional media education offerings and institutions, targeting a broad audience including educators, parents, and learners. The site is built on TYPO3 CMS and hosted by VisionConnect GmbH, reflecting a modern and stable technical infrastructure. The content is well-structured, professionally presented, and optimized for mobile devices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious patterns were detected, and the WHOIS data is consistent and transparent, supporting the site's legitimacy. Overall, the website demonstrates a solid digital presence with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security headers would further strengthen its posture. The absence of terms of service and vulnerability disclosure policies suggests areas for future enhancement to meet best practices comprehensively.

M

Media Night Hannover

medianighthannover.de

46

Media Night Hannover is a regional event focused on the media industry, showcasing highlights from the 2025 event including film, photos, and press coverage. The website serves as a platform to promote the event, its partners, and sponsors, primarily targeting media professionals and event attendees in Germany. The site is built on WordPress with modern plugins and technologies, including a GDPR-compliant cookie consent mechanism. The technical infrastructure is solid with HTTPS enabled and a moderate performance profile. Security posture is adequate but could be improved by adding security headers and formal security policies. Privacy compliance is good with clear cookie and privacy policies, though contact information and incident response details are lacking. Overall, the website is professional, trustworthy, and well-branded, reflecting a legitimate media event with strong partner support.

N

Neuron Medical s.r.o.

cnpbrno.cz

40

Centrum nutriční péče Brno is a specialized healthcare provider focusing on nutritional therapy for children, adults, elite athletes, and clients with cardiological issues. It operates as part of the Neuron Medical group, offering comprehensive services including psychological care, EEG biofeedback, and sports nutrition. The website reflects a professional and trustworthy healthcare service with clear business information and a strong local presence in the Czech Republic. The online booking system and detailed team profiles enhance user engagement and service accessibility. Technically, the site is built on WordPress with Oxygen builder, leveraging modern web technologies and GDPR-compliant cookie management. Security posture is good with HTTPS and consent mechanisms, though improvements in security headers and explicit security policies are recommended. Overall, the site is well-optimized for SEO, mobile-friendly, and provides a positive user experience with clear navigation and relevant content.

A

Arbeitskreis deutscher Bildungsstätten e.V.

adb.de

37

The Arbeitskreis deutscher Bildungsstätten e.V. (AdB) is a German non-profit association specializing in political education for youth and adults. It operates nationally and internationally, providing networking, publications, events, and advocacy services. The website reflects a professional and consistent brand presence targeting educators, members, and stakeholders in political education. Technically, the site is built on Drupal 10 with modern frontend technologies, offering good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is mostly met with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and serves its educational mission effectively.

J

JC Bordelet

bordelet.com

45

JC Bordelet is a French company specializing in the design and manufacture of contemporary metal fireplaces and stoves, with over 40 years of experience. The company holds a strong market position as a recognized leader in designer fireplaces, supported by awards such as the Janus design award and international trade show presence. Their product range includes suspended, wall, corner, and central fireplaces, targeting homeowners, architects, and interior designers. The website supports multiple languages and offers digital tools such as a 3D augmented reality app to enhance customer experience. Technically, the website is built on WordPress with modern plugins and tracking tools including Google Analytics, Facebook Pixel, and Google Tag Manager. It employs HTTPS and uses invisible reCAPTCHA for form security. However, the site lacks some advanced security headers and does not publish explicit security or incident response policies, which could be improved to enhance trust and compliance. The security posture is moderate with good SSL configuration but missing some best practices like security headers and vulnerability disclosure mechanisms. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and consent mechanisms in place. Business credibility is supported by consistent branding, professional content, and social media presence, although no direct company emails or phone numbers are publicly listed. Overall, the site is professional, user-friendly, and content-rich, but the absence of WHOIS data and domain registration information raises some legitimacy concerns. Strategic recommendations include improving security headers, publishing security policies, and clarifying domain registration details to strengthen trust and compliance.

J

JUMP Park Senica, s.r.o.

jumpparksenica.sk

42

JumpPark Senica is a family-oriented entertainment venue located in Senica, Slovakia, offering trampoline activities, a play jungle for children, refreshments, and event hosting services. The business targets families and individuals seeking active leisure and fun across all age groups. The website supports online booking and e-commerce for tickets and gift vouchers, positioning itself as a local leader in recreational services. Technically, the site is built on WordPress with WooCommerce, leveraging modern analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and secure forms, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the domain registration data aligns well with the business information, indicating legitimacy and trustworthiness.

C

Connecte FINANCE

connectefinance.cz

46

Connecte FINANCE is a Czech Republic based financial services company specializing in non-bank business loans, including operational, development, restructuring, and startup financing. The company positions itself as a flexible and experienced lender with a focus on supporting entrepreneurs and businesses with tailored financial solutions. Their website reflects a professional and modern digital presence built on WordPress with Breakdance builder, featuring detailed product information, interactive loan calculators, and investor portals. Privacy and cookie compliance are well implemented, with clear GDPR documentation and consent mechanisms. Security posture is good with HTTPS and standard best practices, though some security headers could be improved. Overall, the site is trustworthy and well-structured, supporting the company's credibility in the finance sector.

C

Connecte CREDIT

connectecredit.cz

44

Connecte CREDIT SE is a Czech financial services company specializing in non-bank consumer loans secured by real estate collateral. Established since 2012, the company offers solutions for clients with negative credit records, consolidates debts, and provides short-term loans. The website is professionally designed using WordPress with the Breakdance builder, featuring clear navigation, GDPR compliance, and a cookie consent mechanism. Contact information is readily available including phone, email, and a privacy-compliant contact form. The technical infrastructure includes modern JavaScript libraries and Google Analytics for user insights. Security posture is good with HTTPS and consent management but lacks explicit security policies and incident response details. The domain is recently registered in 2024, which may indicate a new web presence or rebranding. Overall, the site is trustworthy, compliant, and well-positioned in the Czech finance market.

I

Institut für Pastorale Bildung der Erzdiözese Freiburg KdöR

theologischer-kurs.de

44

Theologischer Kurs Freiburg is an educational initiative operated by the Institut für Pastorale Bildung der Erzdiözese Freiburg, offering a specialized theological course for adults and church volunteers. The course has a strong market position as the only diocesan theological course in Germany with a 50-year history, providing foundational theological knowledge and pathways to academic qualifications such as a Bachelor in Practical Theology. The website reflects a professional and consistent brand image aligned with its religious and educational mission. Technically, the website is built on the W-Commerce CMS platform, leveraging modern JavaScript libraries like jQuery and AblePlayer, and employs Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and performs moderately well. Hosting and DNS are managed by W-Commerce GmbH, consistent with the website's author metadata. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and restricts third-party content until user consent is given, demonstrating good privacy compliance. However, explicit security policies and incident response contacts are not found, representing areas for improvement. Overall, the website is trustworthy, safe, and well-suited for its target audience. Strategic recommendations include adding a security.txt file, incident response information, and enhancing security headers to further strengthen the security posture.

G

Geistliches Zentrum St. Peter

geistliches-zentrum.org

49

Geistliches Zentrum St. Peter is a German non-profit spiritual center offering a variety of programs including spiritual retreats, exercises, contemplations, training, and monastery tours. The website targets individuals interested in spiritual growth and religious education, positioning itself as a regional center for contemplative and educational services. Technically, the site is built on Edith CMS, uses jQuery and Bootstrap frameworks, and integrates Matomo for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which limits domain trust verification. Overall, the site is professional and trustworthy for its intended audience but could improve in privacy compliance and security best practices.

B

Bildungswerk der Erzdiözese Freiburg

bwerk.de

43

Bildungswerk der Erzdiözese Freiburg is a state-recognized institution specializing in Catholic adult education within the Erzdiözese Freiburg region in Germany. The organization provides open adult education services, including workshops, seminars, and community engagement programs, primarily targeting adults and volunteers in the Catholic community. The website reflects a professional and consistent brand presence with clear navigation and relevant content in German. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and employs HTTPS with good security headers, although some improvements in privacy compliance and security disclosures are recommended. Overall, the website is trustworthy and well-positioned in its niche educational sector.

I

Institut für Religionspädagogik der Erzdiözese Freiburg

irp-freiburg.de

43

The Institut für Religionspädagogik der Erzdiözese Freiburg operates as a regional educational and consulting center supporting Catholic religious education across various school types and kindergartens within the Erzdiözese Freiburg region in Germany. The website serves as an information hub offering educational materials, news, and training opportunities tailored to educators and institutions involved in religious pedagogy. The business model focuses on educational support and resource provision, positioning itself as a trusted regional institute affiliated with the Erzdiözese Freiburg. Technically, the website is built on the Edith CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, and Matomo analytics for user tracking. The site is mobile-optimized with good SEO practices and accessibility basics in place. Hosting and domain management appear professional, with consistent use of web commerce services for site management. From a security perspective, the site employs HTTPS with a good SSL configuration and respects user tracking preferences by disabling analytics if the user denies consent. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies, and no visible incident response or vulnerability disclosure information. Security headers are minimal, and accessibility could be improved. Overall, the website presents a low-risk profile with a solid business credibility and technical foundation but would benefit from enhanced privacy compliance and security best practices to strengthen trust and regulatory adherence.

F

Fachstelle Geistliche Begleitung

geistliche-begleitung-ebfr.de

44

The website geistliche-begleitung-ebfr.de serves as the official online presence of the Diocesan Office for Spiritual Guidance within the Archdiocese of Freiburg, Germany. It provides comprehensive information about spiritual accompaniment services, including FAQs, step-by-step guidance, and a directory of spiritual guides categorized by region. The target audience is primarily German-speaking individuals seeking spiritual guidance within the Roman Catholic tradition. The business operates as a non-profit religious service affiliated with the Archdiocese, positioning itself as a niche provider in the regional religious sector. Technically, the website is built on the Edith CMS platform and hosted on infrastructure associated with w-commerce.de. It employs modern web technologies including jQuery, Bootstrap, and AOS for animations, with Matomo analytics integrated for user tracking while disabling cookies to respect privacy. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO optimization is present but could be enhanced. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several recommended security headers and does not implement a cookie consent mechanism, which is important for GDPR compliance. No explicit security or incident response policies are published. The WHOIS data indicates a consistent domain registration aligned with the hosting provider, supporting legitimacy. Overall, the website is professional, trustworthy, and well-structured, serving its informational and community role effectively. Strategic improvements in privacy compliance, security headers, and transparency policies would enhance its security posture and regulatory adherence.

B

Beratungsdienst Familie & Betrieb der KLB Freiburg

familie-und-betrieb.de

44

Beratungsdienst Familie & Betrieb der KLB Freiburg is a non-profit agricultural family advisory service affiliated with the Catholic Land Movement in the Freiburg Archdiocese. It provides confidential, cost-free counseling to agricultural families facing challenges such as succession, family conflicts, financial difficulties, and health issues. The website offers detailed information about its services, partners, publications, and contact options, primarily targeting German-speaking agricultural communities in Germany, Austria, and Switzerland. Technically, the site is built on Edith CMS, uses jQuery and Bootstrap frameworks, and integrates Matomo analytics with privacy-conscious settings. Security posture is good with HTTPS and some security headers, though improvements like cookie consent and security.txt are recommended. The domain registration and hosting align well with the business profile, indicating legitimacy and consistency.

R

Referat Ehe-Familie-Diversität im Erzbistum Freiburg

eintagfueruns.de

46

The website 'Heiraten in der Erzdiözese Freiburg' serves as an official informational platform managed by the Referat Ehe-Familie-Diversität within the Archdiocese of Freiburg. It provides comprehensive resources, event listings, and guidance for couples preparing for a church wedding, focusing on the Catholic and ecumenical communities in Germany. The site is well-positioned as a niche regional service provider with a clear target audience and a consistent brand identity aligned with the Archdiocese's mission. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and the Edith CMS platform, hosted likely by w-commerce.de. It integrates Matomo analytics with privacy-conscious configurations, though it lacks a cookie consent mechanism. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in security headers and privacy compliance are recommended. From a security perspective, the site uses HTTPS with a solid SSL configuration and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data aligns well with the website's purpose and hosting, indicating a legitimate and trustworthy domain. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic enhancements in privacy compliance and security best practices would further strengthen its posture.