Security Directory

U

UFISC

ufisc.org

41

UFISC is a French non-profit organization dedicated to supporting cultural structures and promoting social economy within the arts and culture sector. The website serves as an information hub offering news, webinars, and resources primarily targeting cultural professionals and associations. The organization has an established presence since 2007, reflected in the domain age and consistent content updates. Technically, the site is built on Joomla CMS with standard web technologies including jQuery and Select2, and integrates Google Analytics and Twitter widgets for analytics and social engagement. Security posture is moderate with HTTPS enabled and domain protections in place, but lacks DNSSEC and security headers, and does not publicly disclose privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, content-rich, and safe for general audiences.

T

Tender systems s.r.o.

tenderarena.cz

50

Tender arena is a Czech Republic-based certified electronic tool designed for public procurement and e-auctions, primarily serving contracting authorities and suppliers. The platform facilitates the announcement of tenders and submission of bids, positioning itself as a specialized government sector service. The business is operated by Tender systems s.r.o., established in 2013, indicating a mature presence in the public procurement technology market. Technically, the website is built using Angular 8.2.14 and integrates Google Analytics for user tracking. Hosting is provided by Websupport, a Czech hosting provider, consistent with the domain's nameservers. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. Performance is moderate, with modern frameworks employed. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. No sensitive data exposure or vulnerable libraries were detected. However, the absence of privacy and cookie policies, as well as contact information for security incidents, represents compliance and transparency gaps. Overall, the website is professional and trustworthy within its niche but would benefit from enhanced privacy compliance and security best practices. There are no indications of malicious content or blocking mechanisms, making it accessible and functional for its intended audience.

V

vFairs

vfairs.com

74

vFairs operates a comprehensive event management platform specializing in hybrid, in-person, and virtual events. The company offers a broad suite of services including event registration, ticketing, mobile apps, virtual event hosting, and engagement tools such as gamification and networking. Their market position is strong, supported by a large user base and high customer satisfaction ratings. Technically, the website is built on WordPress with modern integrations for analytics, marketing, and multilingual support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response policies could be improved. Overall, the website is professional, user-friendly, and trustworthy, but the lack of WHOIS registration data introduces some uncertainty regarding domain legitimacy.

A

Naučná audiostezka v Teplicích

audioteplice.cz

50

Audioteplice.cz is a small-scale educational project offering an audio trail experience in Teplice, Czech Republic. It provides free downloadable MP3 audio guides and maps to visitors, spa guests, and locals, supported by donations through multiple payment gateways. The website content is primarily in Czech with options for German and English. Technically, the site uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. The design and navigation are functional but basic, with limited mobile optimization and accessibility features. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy compliance mechanisms such as cookie consent or privacy policies. WHOIS data is inconsistent, showing a domain creation date in the future, which undermines domain legitimacy confidence. Overall, the site is safe, family-friendly, and focused on cultural education.

É

Éclaireuses & Éclaireurs de France

eedf.fr

44

Éclaireuses & Éclaireurs de France (EEDF) is a French non-profit scouting association promoting secular scouting and youth development. The organization offers educational programs, camps, and volunteer opportunities aimed at children and young adults. The website is professionally designed, mobile-optimized, and provides comprehensive information about the association's mission, age groups, and activities. It is well integrated with social media and uses modern web technologies including WordPress and WooCommerce for content and e-commerce functionalities. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts domain trustworthiness. Overall, the site is trustworthy, informative, and serves its target audience effectively.

S

Střední škola řemesel a služeb, Jablonec nad Nisou

sosjbc.cz

53

Střední škola řemesel a služeb, Jablonec nad Nisou is a Czech secondary educational institution specializing in crafts and services. The website serves students, parents, and the local community by providing information about school events, study programs, and services such as student accommodation and career counseling. The school is positioned as a regional leader in vocational education with a focus on traditional crafts. Technically, the website is built on WordPress with a moderate performance profile, good mobile optimization, and accessibility features. It integrates Google Analytics for visitor insights and uses CookieYes for GDPR-compliant cookie consent management. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The domain WHOIS data is privacy protected, which is typical for such institutions, and no suspicious indicators were found. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

G

Gymnázium Zlín - Lesní čtvrť

gymzl.cz

47

Gymnázium Zlín - Lesní čtvrť is a Czech secondary educational institution providing general and language-focused education with a strong emphasis on international cooperation and language certifications. The website reflects a well-established school with active Erasmus+ participation and multiple language programs. Technically, the site uses common web technologies such as jQuery, bxSlider, and Google Analytics, with a custom or unknown CMS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data reduces domain trust slightly but does not detract from the legitimacy of the institution. Overall, the website is professional, secure, and compliant with GDPR, serving its educational audience effectively.

M

Mezinárodní Montessori škola Olomouc, z.ú.

montessoriolomouc.cz

49

Mezinárodní Montessori škola Olomouc, z.ú. is a small, specialized educational institution based in the Czech Republic, offering Montessori preschool and primary education with bilingual English-Czech instruction. The school is accredited by the Association Montessori Internationale and the Czech Ministry of Education, positioning it as a reputable niche player in the local education sector. The website provides comprehensive information about its educational philosophy, programs, and contact details, targeting parents seeking quality Montessori education for children aged 1.5 to 15 years. Technically, the site is built on WordPress with common plugins and integrates Google Analytics and Tag Manager for tracking. It is mobile-optimized and SEO-friendly with good content quality and navigation. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal security policies. The domain is aged appropriately but currently expired, which poses a risk to continuity. Overall, the site is trustworthy and professional but would benefit from improved security practices and domain renewal.

G

GSS Mikulov

gssmikulov.cz

56

Gymnázium a střední odborná škola Mikulov is a public secondary education institution in the Czech Republic offering both gymnasium and vocational training programs. The website serves students, parents, and the educational community with comprehensive information about study programs, services, and school activities. The institution maintains a solid regional presence with multiple partnerships and a clear educational mission. Technically, the website is built on WordPress with standard plugins and integrates Google Analytics for user insights. It is mobile-optimized and provides a cookie consent mechanism aligned with GDPR requirements. Security posture is adequate with HTTPS enforced, though additional security headers and explicit policies could enhance protection. Overall, the site is professional, trustworthy, and well-maintained, supporting the school's educational objectives effectively.

W

Webové aplikace s.r.o.

webap.cz

53

Webové aplikace s.r.o. is a Czech Republic based small business specializing in web development, e-commerce solutions, and graphic design services primarily serving the Ostrava, Opava, and Hlučín regions. The company offers responsive websites, custom web applications, e-shop systems, and graphic design including logos and corporate identity. Their market position is that of a regional specialized agency with a portfolio of local and international clients. The website demonstrates a professional design with good navigation and mobile responsiveness, leveraging common JavaScript libraries and Google Analytics for tracking. However, the absence of WHOIS data limits domain legitimacy verification. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. Contact information is available via a contact form and social media but lacks direct email or phone contacts. Overall, the website is safe and business-focused with no adult or questionable content.

C

Chráněné dílny Charity Opava

kramekprotebe.cz

55

Chráněné dílny Charity Opava operates an e-commerce platform selling handcrafted ceramic and sewn products made by employees of protected workshops affiliated with Charity Opava. The website targets general consumers interested in unique, socially responsible products and offers additional services such as gift set customization and baptism-related items. The business model focuses on retail sales supporting a charitable cause, positioning itself in a niche market within the Czech Republic. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though the absence of explicit security headers is noted. Privacy compliance is strong, with clear GDPR-aligned policies and cookie consent mechanisms. However, the lack of WHOIS data for the domain reduces trustworthiness from a domain registration perspective. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security headers and domain transparency.

Š

Školský komplex

skolskykomplex.cz

51

Školský komplex is an educational consortium based in Brno, Czech Republic, providing information and resources about multiple schools and related projects. The website serves as a portal for students, parents, and educators, offering contact information, building plans, and details on EU projects. The site is built on WordPress using Elementor and several Jet plugins, indicating a modern and maintainable technical infrastructure. Google Analytics is used for visitor tracking, but privacy and cookie policies are absent, which is a compliance gap. Security posture is adequate with HTTPS enabled, but lacks security headers and formal incident response or vulnerability disclosure mechanisms. The absence of WHOIS data reduces domain trustworthiness, though the site content and branding appear professional and consistent. Overall, the site is functional and serves its educational purpose well but would benefit from improved compliance and security practices.

Z

Základní škola a gymnázium Navis

zsnavis.cz

53

Základní škola a gymnázium Navis is a Czech educational institution offering preschool, primary, and gymnasium level education with a focus on intellectual, personal, and spiritual development. The school positions itself as a modern, value-based institution founded by families for children, aiming to nurture responsible freedom and comprehensive growth. The website reflects a professional and well-structured digital presence, targeting students, parents, and prospective applicants. Technically, the site uses a modern CMS (Dmp.Cms.Core) and popular JavaScript libraries such as jQuery and Bootstrap, hosted partially on Microsoft Azure Blob Storage for media assets. The site is mobile-optimized and includes standard SEO and accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. WHOIS data is unavailable, which limits domain trust verification. Overall, the site is safe, professional, and compliant with GDPR, serving its educational mission effectively.

S

Střední škola grafická Brno, p.o.

ssgbrno.cz

63

Střední škola grafická Brno, p.o. is a specialized secondary educational institution located in Brno, Czech Republic, focusing on graphic arts, printing, bookbinding, and packaging design. The school offers modern equipment and training programs aimed at students interested in these creative and technical fields. The website serves prospective students, current students, parents, and the public with comprehensive information about study programs, admissions, school news, and events. The institution holds a solid regional position as a reputable educational provider in its niche. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as jQuery, Typed.js, and various analytics and tracking tools including Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is hosted with a Czech registrar and uses Cloudflare DNS services, ensuring good performance and security. The site is mobile-optimized and accessible, with structured data enhancing SEO and user experience. From a security perspective, the website enforces HTTPS, includes essential security headers, and uses security plugins like Wordfence. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit privacy policy and terms of service pages, which are important for GDPR compliance and user trust. Cookie consent mechanisms are implemented, indicating some level of privacy awareness. Overall, the website is professional, trustworthy, and well-maintained, with a strong business credibility score. Strategic recommendations include publishing comprehensive privacy and security policies, adding incident response contact information, and maintaining regular security audits to ensure ongoing compliance and protection.

P

PanoPro s.r.o.

panopro.cz

58

PanoPro s.r.o. is a Czech Republic-based company specializing in professional 3D laser scanning, virtual tours, interactive maps, and 3D modeling services. The company targets businesses and professionals requiring advanced spatial visualization solutions across the Czech Republic. Their website reflects a professional service provider with a clear focus on real estate and related industries, offering both 3D and 2D deliverables. Technically, the website is built on WordPress using the Divi theme and integrates common plugins for SEO, analytics, and form handling, indicating a moderate level of digital maturity. Security-wise, the site employs HTTPS and Google reCAPTCHA, but lacks published privacy, cookie, and security policies, which are important for compliance and trust. Overall, the website is accessible, well-structured, and professional, but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

C

Charita Opava

charitaopava.cz

53

Charita Opava is a well-established non-profit Catholic organization based in the Czech Republic, providing a broad range of social and health care services including protected housing, social rehabilitation, day care, therapeutic workshops, and senior care. The organization targets residents of the Opava region, donors, volunteers, and partners, positioning itself as a trusted regional social service provider with multiple governmental and community partnerships. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses a custom CMS named HandMade, with standard web technologies including HTML5, CSS3, and JavaScript. It integrates multiple Google Analytics and Tag Manager scripts for user tracking and analytics, and implements a cookie consent mechanism compliant with GDPR. The site is mobile optimized with moderate performance and basic accessibility features. From a security perspective, the website enforces HTTPS and uses cookie consent to manage user privacy preferences. However, it lacks explicit security headers and a vulnerability disclosure policy, which are recommended for improved security posture. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's identity. Overall, Charita Opava's website demonstrates a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security headers, accessibility, and explicit security policies would further enhance trust and resilience.

Základní škola a Praktická škola, Opava is a public educational institution located in Opava, Czech Republic, providing primary and practical school education. The website serves students, parents, and the local community with information about school events, projects, and contact details. The institution maintains a consistent brand presence and complies with GDPR regulations, reflecting a responsible approach to data privacy. Technically, the website uses a modern tech stack including jQuery, Mapy.cz API, and Owl Carousel, built on the AKTIVNÍ ŠKOLA CMS platform. It is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy and professionally maintained, supporting the institution's mission effectively.

S

Statutární město Opava

opava-city.cz

64

Statutární město Opava operates an official municipal website serving as the primary digital platform for city residents, visitors, and local businesses. The site provides comprehensive information about city governance, public services, news, events, and contact details. It targets a broad audience including citizens, municipal employees, and tourists, positioning itself as a trusted source of local government information. The business model is that of a government service portal, focusing on transparency and community engagement. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript with jQuery, Bootstrap framework, and mapping libraries like Leaflet.js. It uses WebJET CMS for content management and integrates Google Tag Manager and Google Analytics for tracking and analytics. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit privacy policy and terms of service pages, security headers, and incident response contacts, which are areas for improvement. No vulnerabilities or malicious content were detected, and the site maintains a good security posture overall. Overall, the website is a professional and trustworthy municipal portal with good content quality and technical implementation. The absence of WHOIS data limits domain transparency, but the official branding and comprehensive contact information support its legitimacy. Strategic recommendations include publishing privacy and security policies, enhancing security headers, and providing incident response contacts to strengthen compliance and trust.

D

DACTYLO communication design

dactylocommunication.com

54

DACTYLO communication design is a small Canadian agency specializing in web design, graphic design, and communication strategy services. The website is built on WordPress using the Salient theme and integrates common analytics and tracking tools such as Google Analytics, Google Tag Manager, Abralytics, and VisitorTracking. The site is primarily in French and targets businesses seeking professional communication design solutions. Technically, the website is moderately optimized with good mobile responsiveness and basic SEO features. Security posture is solid with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and published security policies. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website presents a professional image but could improve transparency and security documentation.

E

Event Online Registration

eventsonlineregister.com

59

Event Online Registration operates a WordPress-based platform focused on listing and facilitating online registration for various events. The website showcases multiple upcoming events with detailed information including dates, titles, and images, targeting event attendees and organizers. The business model centers on providing an accessible online event registration service, positioning itself as a niche player in the event management space. Technically, the site leverages WordPress CMS with plugins such as Tickera for ticketing, integrates Google Analytics, HubSpot, and Permutive for marketing and analytics, and employs Google Tag Manager for tag management. The site is moderately optimized for performance and mobile devices, with basic accessibility features and good SEO practices.

S

Stamen Design LLC

stamen.com

57

Stamen Design LLC is a specialized data visualization and cartography studio with over 20 years of experience delivering award-winning visualizations and custom data products. The company serves organizations seeking sophisticated data storytelling and interactive mapping solutions, positioning itself as a niche leader in the technology and design space. Their website reflects a professional and consistent brand with clear service offerings including data storytelling, interactive experiences, workshops, and open-source tools. Technically, the site is built on WordPress with modern JavaScript libraries such as D3.js and Vue.js, and integrates analytics and marketing tools like Google Analytics, LinkedIn Insight, and Crazy Egg. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and privacy compliance evidenced by comprehensive privacy and cookie policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and well-maintained digital presence.

I

Institut Européen de Coopération et de Développement

iecd.org

54

The Institut Européen de Coopération et de Développement (IECD) is a French non-profit organization established in 1988, focused on international solidarity and development projects across 18 countries. Their core mission involves supporting human, economic, and social development through education, entrepreneurship, and professional training. The organization holds public utility recognition and maintains a professional web presence with comprehensive content and clear navigation. IECD targets development partners, donors, and beneficiaries globally, positioning itself as a reputable NGO with a medium organizational size. Technically, the website is built on WordPress 6.8.3 using the Enfold theme and integrates modern plugins such as Yoast SEO and Complianz GDPR for compliance. The site employs Google Analytics and Tag Manager for analytics and tracking, with cookie consent mechanisms in place. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v2 on forms, alongside cookie consent management. However, explicit security headers like CSP and X-Frame-Options are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website demonstrates a strong compliance posture with GDPR and cookie regulations, a trustworthy business profile, and a solid technical foundation. Recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the security and compliance posture.

M

město Dobříš

mestodobris.cz

47

The website mestodobris.cz serves as the official online presence of the town of Dobříš, Czech Republic. It provides comprehensive information about the municipality, including local government activities, public services, events, and community resources. The site targets residents, visitors, and stakeholders interested in municipal affairs and local culture. The business model is that of a government entity providing public information and services digitally, with a well-established market position supported by a domain registered since 2003. Technically, the website employs a modern CMS platform (vismo), integrates Google Analytics and Google Tag Manager for analytics, and uses LimeTalk for live chat support. The site is mobile-optimized, accessible, and includes cookie consent mechanisms aligned with GDPR requirements. Hosting is provided by REG-ZONER, a reputable registrar and hosting provider. From a security perspective, the site enforces HTTPS and uses consent-based analytics tracking. However, explicit security headers are not clearly visible in the HTML source, and no published security policy or incident response contacts were found. No vulnerabilities or suspicious content were detected, and the WHOIS data confirms the domain's legitimacy and consistency with the municipal identity. Overall, the website demonstrates a solid digital presence with good privacy compliance and user engagement features. Strategic improvements could include publishing a formal security policy, enhancing security headers, and providing incident response contact information to strengthen trust and security posture further.

S

Salon professionnel medFEL

medfel.com

45

medFEL is a professional trade show and conference organizer specializing in the fruits and vegetables sector, primarily serving the French and international markets. The website promotes the annual event scheduled for April 2025, targeting industry professionals including exhibitors and visitors. The business is well-established, with a domain registered since 2008, indicating maturity and stability in the market. The company provides key services such as event hosting, exhibitor support, and conference programming, positioning itself as a key player in the agricultural trade event space in France.

S

Seafile Ltd.

seafile.com

51

Seafile Ltd. operates a professional website offering an open source, self-hosted file synchronization and sharing platform targeting teams, companies, and organizations globally. The company provides both on-premise and cloud-based solutions with advanced features such as AI-powered file property automation, collaborative document editing, and enterprise-grade security. The website demonstrates a strong market position with over one million users and notable customers including universities and cybersecurity firms. Technically, the site employs modern web technologies including Bootstrap, jQuery, and FontAwesome, with Google Analytics integrated for user tracking. The design is professional, mobile-optimized, and content-rich, supporting a positive user experience. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy but does not detract from the business credibility evidenced by the website content and customer references. Overall, the site is trustworthy and well-maintained but would benefit from enhanced security headers and clearer domain registration transparency.

M

Metaswitch Networks

opencloud.com

70

Metaswitch Networks is a cloud native communications software provider specializing in voice core, unified communications, and robocall blocking solutions primarily targeting telecommunications operators and service providers. The company is positioned as a pioneering network software vendor and is now part of the parent company Alianza, which is prominently referenced throughout the website. The business model focuses on B2B software solutions that enable operators to modernize and expand their communications services. The website content is professionally presented with clear branding and consistent messaging aligned with the telecommunications industry.

B

Bílý kruh bezpečí, z.s.

bkb.cz

46

Bílý kruh bezpečí, z.s. is a well-established Czech non-profit organization dedicated to providing professional, free, and confidential support to victims of crime and domestic violence. With over three decades of experience, it operates multiple regional offices across the Czech Republic and offers helpline services, counseling, and prevention projects. The website reflects a mature organization with a clear mission and target audience including victims, social workers, and law enforcement. Technically, the site uses modern web technologies such as jQuery, Foundation framework, and integrates Google Analytics with IP anonymization to respect user privacy. However, the absence of explicit privacy and terms of service pages and missing WHOIS data slightly reduce trustworthiness. Security posture is moderate with HTTPS enforced but lacks visible security headers. Overall, the site is accessible, professionally designed, and provides comprehensive contact information and social media presence, supporting its credibility.

C

CENTROM z.s.

centrom.cz

51

CENTROM z.s. is a Czech non-profit organization dedicated to providing social support and assistance to families and individuals, particularly those living in socially excluded, predominantly Roma communities. The organization offers key services including low-threshold facilities for children and youth, social activation services for families with children, and outreach programs aimed at improving quality of life and supporting self-sufficient solutions to social challenges. Established in 1999, CENTROM operates primarily in the Ostrava region and maintains a strong local presence with partnerships and funding from municipal and regional authorities. Technically, the website is built on a modern WordPress platform using the Astra theme and Elementor page builder, incorporating structured data for SEO and Google Analytics for visitor tracking. The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms, reflecting a good level of digital maturity. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses cookie consent banners to comply with privacy regulations. However, it lacks explicit published security policies, incident response contacts, and security headers that could enhance its security posture. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data is consistent with the organization's claims, indicating legitimacy and trustworthiness. Overall, CENTROM z.s. presents a professional and trustworthy online presence suitable for its non-profit social service mission. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and considering a security.txt file to improve transparency and trust.

K

KAFIRA o.p.s.

kafira.cz

41

KAFIRA o.p.s. is a Czech non-profit organization dedicated to assisting people with visual impairments, with a history of over 20 years. The website reflects this mission clearly, targeting individuals with visual disabilities and offering support and community services. The organization appears to be well-established within its niche, focusing on social assistance rather than commercial activities. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is mobile-optimized and has a good design quality, though accessibility features could be enhanced further to better serve its target audience. Security-wise, the site uses HTTPS and has a basic SSL configuration, but lacks important security headers and visible privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data limits transparency but is not uncommon for non-profit entities using privacy protection services. Overall, the website is functional and professional but would benefit from improved privacy compliance and security hardening.

A

ANIMA VIVA z.s.

animaviva.cz

44

ANIMA VIVA z.s. is a Czech non-profit organization established in 2002, dedicated to providing social services and support to persons with disabilities, particularly those with mental and intellectual disabilities. The organization operates primarily in the Moravian-Silesian region and offers registered social services including social counseling, social rehabilitation, and employment opportunities through sheltered workplaces. Their mission focuses on social inclusion, improving quality of life, and destigmatizing disabilities. The website reflects this mission with relevant content and a clear target audience of disabled persons and their families. Technically, the website uses a modest technology stack including jQuery, bxSlider, lightbox, Google Analytics, and Google Tag Manager. It implements cookie consent mechanisms aligned with GDPR requirements and uses HTTPS for secure communication. However, the site lacks advanced security headers and accessibility features, and the performance and mobile optimization are basic. The absence of WHOIS data and explicit contact emails or phone numbers on the site slightly detracts from the overall trustworthiness. From a security perspective, the site shows good privacy compliance with GDPR statements and cookie consent but could improve by adding security headers and a vulnerability disclosure policy. No critical vulnerabilities or malware indicators were found. The missing WHOIS data is a concern and should be investigated to confirm domain legitimacy. Overall, ANIMA VIVA z.s. presents as a legitimate, mission-driven non-profit with a functional website that meets basic privacy and security standards. Strategic improvements in security posture, contact transparency, and technical modernization would enhance trust and user experience.

The Kraft Heinz Company website presents a comprehensive corporate presence for one of the world's largest food and beverage manufacturers. The company is positioned as a global leader with a strong portfolio of iconic brands, targeting consumers, investors, suppliers, and job seekers. The website content is professionally structured, providing detailed information about the company, its brands, investor relations, and career opportunities. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, Bootstrap, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and linked official domains appear legitimate. Overall, the site scores well on content quality, technical implementation, and security posture, with room for enhancement in transparency and security disclosures.

The Pennsylvania Association of Nurse Anesthetists (PANA) is a professional membership organization representing over 3,500 certified registered nurse anesthetists and students in Pennsylvania. The association focuses on advocacy for patient safety, access to quality care, and the advancement of the nurse anesthesia profession. Their services include educational opportunities, professional development, events such as symposiums, and community giving campaigns. The website reflects a medium-sized, well-established healthcare association with a clear mission and target audience of healthcare professionals within the state. Technically, the website is built on the YourMembership CMS platform, utilizing a combination of Bootstrap, jQuery, YUI, and FontAwesome for UI and interactivity. It integrates Google Analytics, Google Tag Manager, and New Relic for performance monitoring and analytics. The site employs HTTPS with SSL encryption and includes bot protection via DataDome, indicating a moderate level of security maturity. However, some security best practices such as explicit security headers and cookie consent mechanisms are not evident. From a security perspective, the site demonstrates good baseline protections with encrypted login forms and bot mitigation. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data due to privacy protection is typical for organizations seeking to protect registrant information and does not detract from the site's legitimacy. Overall, the site maintains a professional and trustworthy presence suitable for its audience. Strategically, PANA should consider enhancing privacy compliance by implementing visible cookie consent banners and publishing detailed security and incident response policies. Improving security headers and accessibility compliance would further strengthen their security posture and user experience. These steps will help maintain trust and meet evolving regulatory requirements.

A

Association for Comprehensive NeuroTherapy

latitudes.org

47

The Association for Comprehensive NeuroTherapy operates a well-established website focused on natural and integrative approaches to neurological and behavioral problems. The organization targets parents, teachers, and individuals seeking educational resources, offering memberships, digital products, and community forums. The website is positioned as a niche non-profit with a strong content offering and active social media presence. Technically, the site is built on WordPress with a modern theme and plugins, including Bootstrap and jQuery. It is mobile-optimized and SEO-friendly, employing structured data for enhanced search visibility. The hosting provider is not explicitly identified, but the domain is registered with GoDaddy and has a long history dating back to 1997. From a security perspective, the site uses HTTPS and reCAPTCHA, but lacks DNSSEC and explicit security headers, which are recommended for improved protection. No privacy or cookie policies were found, indicating a gap in compliance with privacy regulations such as GDPR. User tracking is moderate via Google Analytics and social sharing tools. Overall, the website is credible and professional but would benefit from enhanced privacy compliance and security hardening to better protect users and improve trustworthiness.

M

Media Business Insight (MBI) Ltd

broadcastsportawards.co.uk

59

The Broadcast Sport Awards website represents a well-established event brand under Media Business Insight (MBI) Ltd, a subsidiary of GlobalData. The site focuses on celebrating excellence in sports broadcasting and production, targeting industry professionals such as broadcasters, production companies, and rights holders. It offers event information, sponsorship opportunities, and showcases past winners and shortlists, positioning itself as a leading UK and Ireland sports television awards event. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Google Tag Manager, and Permutive for tracking, built on the SHOWOFF CMS platform by ASP.events. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and consistent branding. However, some improvements could be made in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner or explicit GDPR compliance indicators. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic enhancements in privacy and security policies would further strengthen its compliance and user trust.

V

Vinofil Vinkurs

vinforedrag.no

52

Vinofil Vinkurs is a Norwegian small business specializing in wine education through in-person and digital courses, targeting both corporate and private clients. The website presents a professional and consistent brand image with clear offerings such as wine courses at workplaces, private homes, and gift cards. The business is newly established in 2023, and the domain registration aligns with this timeline. The site leverages modern web technologies and analytics tools but lacks critical privacy and security disclosures, which impacts compliance and trustworthiness. No blocking or WAF mechanisms hinder content access, allowing full analysis.

C

Conseil Régional de Guadeloupe

regionguadeloupe.fr

60

The website www.regionguadeloupe.fr is the official digital presence of the Regional Council of Guadeloupe, serving as a comprehensive portal for regional aids, services, news, and public transport information. It targets a broad audience including local residents, businesses, students, and public sector entities. The site leverages TYPO3 CMS and integrates common web technologies such as jQuery, Google Analytics, and social media SDKs to deliver content and track engagement. While the site is well-structured and professionally designed, it lacks a publicly accessible privacy policy and shows accessibility non-compliance, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing some security headers. WHOIS data is unavailable, which slightly impacts trust but the official .fr domain and consistent content support legitimacy.

R

Réseau Entreprendre®

reseau-entreprendre.org

63

Réseau Entreprendre® is a well-established non-profit organization focused on supporting entrepreneurs and business leaders through personalized mentoring and community engagement. The organization operates internationally with a strong presence in France and partners with numerous reputable companies and institutions. The website reflects a professional and comprehensive digital presence, leveraging WordPress and modern web technologies to deliver content effectively. Privacy and cookie policies are in place, indicating GDPR compliance. Security posture is good with HTTPS and recaptcha protections, though some security headers and explicit incident response information are absent. The lack of WHOIS data limits domain registration trust assessment, but the website's content and partner ecosystem support legitimacy. Overall, the site is a credible resource for entrepreneurship support and community building.

F

Folie'Flore

folieflore.fr

46

Folie'Flore is a well-established cultural event organizer specializing in an annual floral show held in Mulhouse, France. The event is unique in Europe and has a 25-year history, attracting a large audience with its ephemeral gardens and light shows. The website effectively communicates the event details, history, and partnerships, targeting visitors and cultural enthusiasts. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and Facebook Pixel, ensuring good SEO and user experience with mobile optimization. Security posture is adequate with HTTPS and basic security practices, though improvements in security headers are recommended. Privacy compliance is addressed with a cookie consent banner and a privacy policy, but no explicit GDPR or data protection officer information is found. Overall, the site is professional, trustworthy, and serves its business purpose well.

J

Journées d'Octobre

journees-octobre.fr

46

Journées d'Octobre is a regional event organizer based in Mulhouse, France, specializing in hosting an annual artisan and creator fair alongside the Folie'Flore floral show. The event attracts a large audience and features numerous exhibitors, restaurants, and entertainment stages, positioning itself as a key cultural and commercial event in the Alsace region. The website effectively promotes the event with detailed information, imagery, and structured data for enhanced search engine visibility. Technically, the site uses modern JavaScript libraries like jQuery, integrates Google Analytics and Facebook Pixel for marketing, and employs HTTPS with a valid SSL certificate, ensuring secure user connections. However, the absence of explicit security headers and limited contact information slightly reduce the security posture. The WHOIS data is unavailable, which is common for .fr domains but reduces transparency. Overall, the site is professional, accessible, and trustworthy, with room for improvement in security policies and contact transparency.

M

Mulhouse Expo S.A.E.M.L

foiredemulhouse.fr

40

Foire de Mulhouse is a well-established regional event organizer in France, hosting an annual fair with cultural themes and exhibitions. The website presents the 79th edition scheduled for May 2026, highlighting Italy as the thematic focus. The business operates primarily in the hospitality and event sector, targeting general public visitors interested in fairs and cultural events. The company behind the event is Mulhouse Expo S.A.E.M.L, a medium-sized entity with a long history since 2011. The website content is professionally presented in French, with clear navigation and relevant event information. Social media integration and partner links enhance its market presence. Technically, the website uses a traditional tech stack including jQuery 1.11.2, Bootstrap, and Google Analytics. Hosting is provided by OCI CLOUD as per WHOIS data. The site is mobile-optimized with good design quality, though some technical improvements are possible, such as updating libraries and enhancing accessibility. SEO is basic but functional. From a security perspective, the site uses HTTPS (assumed from domain and modern standards), but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. The contact form collects user data but lacks visible anti-spam protections. No incident response or security policy information is provided. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website is trustworthy and professional but would benefit from improved privacy compliance and security hardening to reduce risk and enhance user trust.

F

Salon FestiVitas (Mulhouse, 68) | FestiVitas, le salon de toutes vos passions

festivitas.fr

45

The website www.festivitas.fr represents a regional event organizer for the FestiVitas salon held in Mulhouse, France, focusing on gastronomy, wines, and travel. The site provides event information, thematic sections, and visual content targeting epicureans and travelers seeking new experiences. The business model centers on event management and exhibition services, positioning itself as a unique concept in the hospitality sector. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and Facebook Pixel, ensuring good mobile optimization and SEO practices. However, the absence of a CMS indication and limited hosting details suggest a custom or static site approach. Security-wise, the site uses HTTPS and standard analytics tools but lacks critical security headers and published security policies, which could be improved to enhance trust and compliance. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and structure appear legitimate and professional. Overall, the site is functional and well-designed but would benefit from enhanced privacy, security, and transparency measures.

S

Sencyb

sencyb.com

43

Sencyb is a small French web agency specializing in website creation, updating, SEO, and multimedia services primarily targeting clients in the Nièvre (58) and Cher (18) regions. The company offers a range of web solutions from static sites to e-commerce platforms, emphasizing tailored solutions to client needs and budgets. Their website is professionally designed using WordPress with Elementor and Astra theme, incorporating modern web technologies and analytics tools such as Google Analytics and Matomo. The presence of a client portal and blog subdomains indicates a structured service offering and client engagement strategy. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit privacy policies and security headers, which are areas for improvement. The absence of WHOIS registration data is a notable anomaly that impacts trustworthiness, though the overall digital presence suggests a legitimate business. Strategic recommendations include publishing privacy and security policies, enhancing security headers, and improving transparency around data protection and incident response.

E

Eiffage Sénégal

eiffage.sn

54

Eiffage Sénégal is a subsidiary of the multinational Eiffage Group, operating primarily in the construction, civil engineering, and energy sectors within Senegal. The company positions itself as a key player in infrastructure development, offering services such as road construction, building, and energy systems. The website reflects a professional corporate presence with clear branding and comprehensive information about its business activities and social commitments. Technically, the site is built on the Jahia CMS platform, uses modern web technologies including Typekit fonts and Google Analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. The absence of explicit contact details and security policies on the homepage suggests areas for enhancement in transparency and user engagement. Overall, the website demonstrates a mature digital presence aligned with the company's market position in Senegal.

R

Redback Solutions

rb.com.au

55

Redback Solutions is a well-established digital marketing and web design agency based in Newcastle, Australia, operating since 1999. The company offers a comprehensive range of services including web design and development, ecommerce solutions, SEO, digital marketing, and creative content production. Their market position is strong, supported by multiple industry partnerships and awards such as the 2025 Australian Web Awards. The website reflects a professional and trustworthy digital presence targeting businesses seeking digital growth and online results. Technically, the site is built on WordPress with modern integrations including Google Tag Manager, Facebook Pixel, and live chat services, demonstrating a mature digital infrastructure. Performance and mobile optimization are good, with SEO best practices well implemented. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is limited due to absence of privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is professional and credible with room for improvement in privacy and security transparency.

P

PlanetHoster

planethoster.live

57

PlanetHoster Forums is an official community platform supporting PlanetHoster's web hosting services. It serves as a hub for customers to discuss maintenance, outages, reviews, tutorials, and technical support. The forum is well-structured, bilingual (primarily French), and actively maintained with thousands of discussions and messages. The website uses modern web technologies including XenForo CMS, jQuery, FontAwesome, and integrates Google Analytics and Tag Manager for analytics. HTTPS is enforced with a valid SSL certificate, and forms include CSRF tokens, indicating a good security baseline. However, some security headers are missing, and no explicit security or incident response policies are published on the forum site. Privacy and terms of service pages are present and linked, showing attention to compliance. The WHOIS data is privacy protected but consistent with an active and legitimate domain. Overall, the site demonstrates a professional and trustworthy presence with a strong community focus.

C

ChatVusyon | Der einfache KI-Chatbot für deine Webseite

chatvusyon.ai

61

ChatVusyon.ai is a small technology company offering an AI chatbot solution designed to enhance website customer support, lead generation, and ensure GDPR compliance. The website is professionally designed using modern tools such as Framer and integrates multiple third-party analytics and marketing technologies including Google Analytics, Hotjar, Facebook Pixel, and LinkedIn Insight Tag. While the technical infrastructure is modern and the website is mobile optimized with good SEO practices, there are notable gaps in privacy compliance and security best practices. No privacy or cookie policies are present, and no contact information or security policies are published, which may impact user trust and regulatory compliance. The domain registration uses privacy protection, which is common for startups but reduces transparency. Overall, the website presents a functional and professional front but requires improvements in privacy, security headers, and contact transparency to enhance trust and compliance.

D

DTScout

dtscout.com

61

DTScout is a small technology company based in Israel specializing in audience discovery and data aggregation for marketers and publishers. Their platform aggregates large-scale audience data to enable targeted advertising and improved monetization for publishers. The website demonstrates a professional design with clear navigation and a strong emphasis on privacy compliance, including opt-out mechanisms and user data request forms. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and integrates analytics and advertising tools like Google Analytics and AdRoll. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trust. Security practices are moderate with room for improvement in headers and incident response transparency. Overall, the site is functional and business-focused but requires domain registration verification and enhanced security policies to improve credibility.

I

Iskra d.d.

iskra.eu

10

Iskra d.d. is a well-established industrial company specializing in intelligent industrial solutions and electrotechnical products. With over 80 years of history and a workforce of approximately 1650 employees, Iskra serves a broad international market across energy, transportation, manufacturing, and telecommunications sectors. Their product portfolio includes capacitors, low voltage switchgear, measuring instruments, power automation, batteries, antenna systems, and traffic solutions. The company maintains a strong market position supported by subsidiaries and partnerships across Europe, including Croatia and North Macedonia. Technically, the website is built on a modern CMS platform (BCMS) with integration of popular technologies such as Bootstrap, Google Analytics, and JivoSite chat. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. However, some technical improvements are recommended, particularly in security headers and accessibility compliance. From a security perspective, the site uses HTTPS and anonymizes IP addresses in analytics, but lacks visible security headers and explicit security or incident response policies. Cookie consent mechanisms are implemented, indicating awareness of privacy compliance, though a dedicated privacy policy page was not found. The domain WHOIS data is privacy protected, which is typical for European companies, and no suspicious patterns were detected. Overall, Iskra presents a credible and professional online presence with moderate technical maturity and room for security enhancements. Strategic recommendations include strengthening security headers, publishing comprehensive privacy and security policies, and enhancing accessibility features to align with best practices and regulatory requirements.

I

Impol

impol.si

33

Impol is a well-established Slovenian aluminum manufacturing group with a strong presence in Europe and the USA. The company specializes in producing a wide range of aluminum products serving diverse industries such as automotive, pharmaceutical, food, transport, and aerospace. Their market position is strong, being the 6th largest Slovenian exporter and a leader in aluminum rod production in Europe. The website reflects a mature digital presence with multilingual support, detailed product and industry information, and a focus on sustainability and innovation. Technically, the site uses WordPress with modern libraries and integrates Google Analytics and Tag Manager for tracking, alongside a comprehensive cookie consent mechanism. Security posture is good with HTTPS and reCAPTCHA in place, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.