Security Directory

D

DVORCE TŘEBOŇ s.r.o.

dvorce.cz

58

Penzion Dvorce is a small hospitality business located in the South Bohemian region of the Czech Republic, offering accommodation and dining services with a focus on biofarm products and family-friendly experiences. The website presents a professional and consistent brand image, targeting families, couples, and tourists interested in nature and regional cuisine. The business model integrates accommodation, restaurant services, and gift voucher sales, positioning itself as a regional eco-friendly hospitality provider. Technically, the website uses a modern tech stack including jQuery, Google Tag Manager, and Facebook SDK, with good mobile optimization and SEO practices. The site is served over HTTPS with valid SSL, but lacks some security headers and formal privacy and terms of service pages, which are areas for improvement. Cookie consent is implemented, indicating some level of privacy compliance. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of WHOIS data limits domain trust assessment. The site uses tracking pixels from Facebook and Google Analytics, with moderate user tracking levels. Overall, the website is safe, family-friendly, and professionally maintained, but could enhance compliance and security transparency. Recommendations include publishing privacy and terms policies, adding security headers, implementing a security.txt file, and verifying domain registration details to improve trust and compliance.

P

PRAGUE BOATS s.r.o.

prague-boats.cz

61

Prague Boats s.r.o. is a well-established company specializing in river cruises and boat rental services on the Vltava River in Prague. With over 30 years of experience, the company emphasizes sustainable and eco-friendly boating, operating a modern fleet including fully electric boats. Their market position is strong locally, targeting tourists and event organizers seeking sightseeing, dining, and private event cruises. The website is professionally designed, mobile-optimized, and offers multilingual support with online booking capabilities. Technically, the website employs modern JavaScript libraries such as Swiper.js and Glide.js for interactive content, integrates multiple marketing and analytics tools including Facebook Pixel and Bing UET, and uses Google Tag Manager for tag management. The site is served over HTTPS with good performance and accessibility features, though some security headers are missing. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosure, and incident response contacts. WHOIS data is unavailable, which reduces trustworthiness slightly but is mitigated by clear business registration info and professional web presence. Overall, the website and business demonstrate a mature digital presence with room for improvement in transparency of privacy and security policies. Strategic recommendations include publishing privacy and terms of service pages, enhancing security headers, and providing vulnerability disclosure information to strengthen trust and compliance.

L

Le Mode

lemode.net

57

LeMode.net is an e-commerce retailer specializing in fashion accessories including watches, jewelry, cosmetics, and related gift items. The website targets primarily Czech and Slovak customers, offering a broad catalog of branded products with a focus on exclusivity and new market introductions. The site is professionally designed with clear navigation and multi-language support, enhancing user experience and accessibility. Technically, the platform leverages the Shoptet CMS, integrates Google Analytics and Facebook SDK for marketing and analytics, and uses modern JavaScript libraries for UI components. Security posture is adequate with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are missing and no vulnerability disclosure policy is present. The absence of WHOIS registration data for the domain is a notable concern, suggesting either privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the site presents a professional and trustworthy front for online retail but should address domain registration transparency and enhance security headers to improve its security posture.

P

Profigrass s.r.o.

profigrass.cz

56

Profigrass s.r.o. is a Czech-based company specializing in the retail and service of irrigation and garden equipment, established in 1996. The company represents the American brand Toro in the Czech and Slovak markets, leveraging extensive experience in sales, service, and marketing. Their website serves both B2B and B2C customers, offering a broad range of products including control units, valves, pumps, and accessories for irrigation systems. The company targets private gardens, commercial parks, sports fields, and agricultural sectors. Technically, the website is built on the Shoptet e-commerce platform, utilizing standard web technologies and tracking tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers and updated libraries are recommended. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid digital presence with room for security and compliance enhancements.

C

Cestovní kancelář CAPRO

capro.cz

55

Cestovní kancelář CAPRO is a Czech travel agency specializing in active holidays and various travel packages including last minute and first minute offers. The company targets Czech-speaking travelers seeking both domestic and international active vacations. The website is professionally designed, mobile-optimized, and provides clear contact information, supporting a medium-sized business profile in the hospitality sector. Technically, the site employs modern JavaScript libraries, tracking tools like Google Analytics and Facebook Pixel, and enforces HTTPS with appropriate security headers, indicating a mature digital infrastructure. However, the absence of WHOIS data and explicit privacy and cookie policies suggests areas for improvement in transparency and compliance. Overall, the security posture is strong with no evident vulnerabilities, but the lack of formal security and incident response disclosures limits full security maturity assessment. Strategic recommendations include publishing comprehensive privacy and cookie policies, establishing a vulnerability disclosure process, and enhancing accessibility features to improve compliance and user trust.

L

LANDCRAFT

landcraft.cz

53

LANDCRAFT is a Czech-based craft distillery specializing in the production and online retail of premium spirits including gin, liqueurs, vermouths, and limited edition distilled products. The company targets mature consumers interested in high-quality alcoholic beverages and offers additional value through recipes, custom production, and tasting events. The website is built on the Shoptet e-commerce platform, leveraging modern web technologies and marketing tools such as Google Analytics and Facebook SDK. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness but does not detract from the professional presentation and clear contact information on the site. Overall, the website is functional, user-friendly, and professionally maintained, serving a niche market effectively.

G

Gymnázium Ladislava Jaroše Holešov

gymhol.cz

61

Gymnázium Ladislava Jaroše Holešov is a well-established secondary educational institution in the Czech Republic with a history spanning over 125 years. The school offers a blend of traditional and modern education, emphasizing digital technologies, international cooperation through Erasmus+ projects, and comprehensive student development. The website reflects a professional and consistent brand image targeting students, parents, and educational partners. Technically, the site uses common JavaScript libraries and UI frameworks, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is basic but present, with clear privacy and cookie policy pages. Overall, the site is trustworthy and serves its educational purpose effectively.

G

Gymnázium Teplice

gymtce.cz

48

Gymnázium Teplice is a secondary grammar school based in the Czech Republic, providing comprehensive secondary education with a focus on preparing students for higher education. The institution actively participates in European educational programs such as Erasmus+ and offers Cambridge Exam preparation, positioning itself as a reputable educational provider in the Ústecký kraj region. The website reflects a medium-sized educational institution with consistent branding and a good level of content quality. Technically, the website employs common JavaScript libraries including jQuery, jQuery UI, Hammer.js, and integrates Facebook SDK for social media functionality. The site is built on the eSchool.cz CMS platform, with moderate performance and basic mobile optimization. SEO and accessibility features are present but could be enhanced for better compliance and user experience. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating room for improvement in security best practices and privacy compliance. The absence of WHOIS data raises minor concerns about domain registration transparency, though the active content and partner affiliations support the site's legitimacy. Overall, the website is professional and trustworthy for its educational purpose but would benefit from enhanced privacy disclosures, security headers, and improved mobile and accessibility features to strengthen its digital maturity and compliance posture.

C

Chráněné dílny Charity Opava

kramekprotebe.cz

55

Chráněné dílny Charity Opava operates an e-commerce platform selling handcrafted ceramic and sewn products made by employees of protected workshops affiliated with Charity Opava. The website targets general consumers interested in unique, socially responsible products and offers additional services such as gift set customization and baptism-related items. The business model focuses on retail sales supporting a charitable cause, positioning itself in a niche market within the Czech Republic. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though the absence of explicit security headers is noted. Privacy compliance is strong, with clear GDPR-aligned policies and cookie consent mechanisms. However, the lack of WHOIS data for the domain reduces trustworthiness from a domain registration perspective. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security headers and domain transparency.

M

MORAVEC Kvalitní ponožky s.r.o.

moravec-cz.com

55

MORAVEC Kvalitní ponožky s.r.o. operates a professional e-commerce website specializing in high-quality socks and seamless underwear, targeting Czech consumers. The company emphasizes its 25 years of experience, Czech manufacturing, and product quality, positioning itself as a trusted local brand in the retail sector. The website is built on the Shoptet platform, leveraging modern e-commerce technologies and integrating marketing and analytics tools such as Google Analytics and Facebook SDK. Security measures include HTTPS enforcement and cookie consent mechanisms, although some improvements in security headers and library updates are recommended. Overall, the site is accessible, well-structured, and compliant with GDPR requirements, reflecting a mature digital presence for a small-sized retail business.

C

Conseil Régional de Guadeloupe

regionguadeloupe.fr

60

The website www.regionguadeloupe.fr is the official digital presence of the Regional Council of Guadeloupe, serving as a comprehensive portal for regional aids, services, news, and public transport information. It targets a broad audience including local residents, businesses, students, and public sector entities. The site leverages TYPO3 CMS and integrates common web technologies such as jQuery, Google Analytics, and social media SDKs to deliver content and track engagement. While the site is well-structured and professionally designed, it lacks a publicly accessible privacy policy and shows accessibility non-compliance, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing some security headers. WHOIS data is unavailable, which slightly impacts trust but the official .fr domain and consistent content support legitimacy.

M

Ma planète BIO

maplanetebio.com

60

Ma planète BIO is a regional event organizer focused on organic agriculture, sustainable living, and related cultural activities in South Alsace, France. The website promotes an annual event held at Parc Expo Mulhouse, targeting enthusiasts and professionals interested in organic farming and eco-friendly lifestyles. The business is relatively new, founded in 2022, and operates primarily in French. The website provides event information, exhibitor details, conference schedules, and visitor guidance, positioning itself as a key regional player in the organic agriculture event space. Technically, the website uses a combination of jQuery, Bootstrap, Owl Carousel, and cookie management via tarteaucitron.js. It integrates Google Tag Manager and Facebook SDK for analytics and marketing purposes. The site is hosted by OVH sas, a reputable hosting provider, and uses HTTPS with a valid SSL certificate. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and uses domain status protections to prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, aligning with GDPR requirements. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are found. Overall, the website presents a professional and trustworthy front for a niche event business with moderate technical maturity and good privacy compliance. Strategic improvements in security headers, DNSSEC, and published security policies would enhance its security posture and trustworthiness.

M

Motoresanità.it

motoresanita.it

10

Motoresanità.it is a specialized Italian healthcare media platform dedicated to advancing scientific research and knowledge dissemination both nationally and internationally. The website offers a comprehensive calendar of healthcare-related events, news, and insights targeting healthcare professionals, researchers, and stakeholders. The platform positions itself as a niche player in the healthcare media sector, focusing on innovation and scientific progress. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Modern Events Calendar, ensuring good SEO and event management capabilities. The presence of Google Analytics and Facebook SDK indicates moderate user tracking for marketing and analytics purposes. Security-wise, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms, though it could enhance security headers for better protection. Overall, the website demonstrates a good balance of content quality, technical implementation, and privacy compliance, making it a trustworthy and professional resource in its domain.

P

Period28.com

period28.com

49

Period28.com is a niche healthcare service offering an online female menstrual calendar that helps users track menstrual cycles, ovulation, symptoms, moods, and weight. The platform provides email notifications and diary features to support personal and medical tracking needs. The website targets women seeking an easy and discreet way to manage their menstrual health. The business operates as a small-scale online service with user registration and multilingual support, established since 2012. Technically, the website uses legacy JavaScript libraries such as jQuery 1.8.2, Google Fonts, Facebook SDK, and Google Analytics for tracking. Hosting appears to be managed through sureserver.com with domain registration via eNom, LLC. The site shows moderate performance and basic mobile optimization. SEO and accessibility are adequately addressed, though some modernization opportunities exist. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC is not enabled. The use of outdated JavaScript libraries introduces potential vulnerabilities. No explicit security policies or incident response information is published. Cookie consent is implemented, but GDPR compliance is only basic. The domain registration is consistent and legitimate, with a long registration period and transfer protection status. Overall, the website is functional and trustworthy for its intended audience but would benefit from technical and security improvements to enhance protection and compliance. Strategic recommendations include updating libraries, enabling DNSSEC, adding security headers, and publishing comprehensive policies.

T

TV-opas - Finland - lauantai - TVListings.eu

tvlistings.eu

54

TVListings.eu is a specialized media website providing TV program listings primarily for Finland and other European countries. The site offers multi-language support and detailed channel guides, targeting general audiences interested in TV schedules. The business model appears to be advertising-supported, leveraging Google Adsense and other ad networks. The website is hosted by GoDaddy.com, LLC and uses modern frontend technologies such as Bootstrap 5, jQuery, and integrates Google Analytics and Facebook SDK for tracking and analytics. The site is mobile optimized and provides a good user experience with clear navigation and structured content. Security posture is adequate with HTTPS enforced, but lacks important security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is trustworthy and safe for general audiences but would benefit from enhanced privacy and security practices.

О

ООО "SUVAN NET"

ahost.cloud

55

aHOST is a technology company specializing in web hosting, domain registration, virtual and dedicated server rental, and SSL certificate provision primarily in Uzbekistan and Germany. The company operates servers located in the TAS-IX network in Uzbekistan and in a data center in Germany, targeting local and international customers. With over 36,000 subscribers including legal entities and government organizations, aHOST holds multiple accreditations and licenses, positioning itself as a leading hosting provider in the region. Technically, the website is built on Drupal CMS with a range of JavaScript libraries enhancing user experience. The infrastructure supports multiple hosting plans, virtual servers, and domain services with clear pricing and ordering mechanisms. The site is mobile-optimized and demonstrates good SEO practices, though some technical debt is noted in the use of an outdated jQuery version and lack of certain security headers. From a security perspective, the website enforces HTTPS and uses secure login portals for cPanel and webmail access. However, it lacks explicit security headers and a cookie consent mechanism, which impacts privacy compliance. No public WHOIS data is available for the domain, which slightly reduces trust but is mitigated by the company's visible accreditations and business presence. Overall, aHOST presents a professional and trustworthy online presence with a solid business model and technical foundation. Strategic improvements in privacy compliance, security headers, and updated libraries would enhance its security posture and regulatory alignment.

The Magyar Labdarúgó Szövetség (MLSZ) website serves as the official digital presence of the Hungarian Football Federation, providing comprehensive information on national teams, match results, news, and organizational resources. The site targets football fans, players, coaches, and officials within Hungary, positioning itself as the authoritative source for Hungarian football. The business model revolves around governance, event organization, fan engagement, and education within the sport. Technically, the website employs modern web technologies including Bootstrap for responsive design, jQuery, Font Awesome, and integrates social media SDKs from Facebook and Twitter. The site is mobile-optimized with good SEO practices and moderate performance. Privacy and cookie policies are well implemented with consent mechanisms, reflecting GDPR compliance. From a security perspective, the site enforces HTTPS, uses standard security headers, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not found, indicating room for improvement in transparency and readiness. No vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and well-maintained, with a strong focus on content quality and user experience. Strategic recommendations include enhancing security transparency, adding vulnerability disclosure mechanisms, and improving accessibility features to further strengthen compliance and user trust.

C

Club business intelligence, o.z.

prohuman.sk

56

Prohuman.sk is an established Slovak academic and professional interdisciplinary journal focused on social, societal, and humanities sciences. Founded in 2009 and operated by Club business intelligence, o.z., it offers peer-reviewed articles, podcasts created with AI, educational programs, and research survey services. The website is built on Drupal CMS with integration of common web technologies and social media. It is indexed in reputable academic databases such as EBSCO and DRJI, enhancing its credibility and visibility in the scientific community. The content is rich, professionally presented, and targeted at researchers, students, and professionals in social sciences and healthcare. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. Security headers are not detected, indicating room for improvement in security posture. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site is trustworthy, content-rich, and professionally maintained but would benefit from enhanced privacy compliance and security hardening.

M

Ministock.ch

ministock.ch

48

Ministock.ch is a small non-profit website providing evangelical Christian educational resources primarily for children, families, and church ministries in the French-speaking region of Switzerland. The site offers a variety of content including illustrated Bible verses, videos, lesson programs, and links to partner organizations. It is affiliated with La FREE - Fédération romande d'Eglises évangéliques, reinforcing its niche position within the evangelical community. The website was founded around 2016 and maintains consistent branding and content quality suitable for its target audience. Technically, the site is built on Joomla CMS with the K2 extension and uses common web technologies such as jQuery, Magnific Popup, and Google reCAPTCHA for form security. It integrates social media sharing and newsletter subscription via AcyMailing. The site is moderately optimized for performance and mobile devices, with good SEO practices but basic accessibility features. From a security perspective, the site uses HTTPS and employs reCAPTCHA to protect forms, but lacks explicit security headers which could improve its security posture. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is limited to a newsletter subscription form without direct emails or phone numbers. Overall, Ministock.ch presents a trustworthy and professional resource platform for its community but should enhance privacy compliance and security headers to improve user trust and regulatory adherence.

The Ehemaligenverein Jungwacht Therwil is a small Swiss non-profit organization dedicated to connecting former leaders and members of the Jungwacht Therwil youth group. The website serves as an informational portal to promote membership, share memories, and provide access to a summer camp archive. The organization is community-focused with a clear founding date and transparent contact information via email. Technically, the website is simple, built with basic HTML and CSS, and integrates Facebook social plugins for community engagement. However, it lacks advanced CMS, security headers, and privacy or cookie policies, indicating room for improvement in compliance and security. The security posture is basic with no visible vulnerabilities but missing standard security best practices. Overall, the site is safe, trustworthy, and serves its niche audience well but would benefit from enhanced privacy compliance and security hardening.

G

GoodPlanet Belgium

goodplanet.be

43

GoodPlanet Belgium is a well-established non-profit organization dedicated to promoting sustainability and environmental education primarily in Belgium. The organization targets schools, businesses, and the general public with educational projects, training, and awareness campaigns. The website reflects a professional and consistent brand image with active social media engagement and multimedia content. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, though some improvements in security headers and privacy compliance are recommended. Overall, the domain appears legitimate despite WHOIS privacy restrictions, and the website provides a trustworthy and informative platform for its audience.

S

Seniorentreff im Internet

seniorentreff.de

45

Seniorentreff im Internet is a well-established German-language online community platform targeting seniors aged 50 and above. It offers a broad range of services including forums, blogs, interest groups, chats, and real-life event coordination, fostering social connections among its members. The platform operates on a free-to-use model supported by advertising and partner offers, positioning itself as a trusted and comprehensive social network for seniors in Germany. The website demonstrates consistent branding and professional content quality, appealing to its mature audience effectively. Technically, the website employs a variety of modern web technologies such as Google Tag Manager, Facebook SDK, Google Adsense, and Cookiefirst for consent management. It uses HTTPS with good SSL configuration and integrates third-party services for analytics, advertising, and social login. The site is mobile-optimized with good navigation and SEO practices, although no major CMS or hosting provider details are explicitly detected. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks visible security headers and a published security policy or incident response contacts. There are no detected vulnerabilities or exposed sensitive data in the provided content. Privacy compliance is strong with clear privacy and cookie policies and a consent mechanism in place, aligning with GDPR requirements. The WHOIS data is minimal but consistent, supporting the legitimacy of the domain. Overall, Seniorentreff im Internet presents a secure, privacy-conscious, and user-friendly platform with a strong focus on community engagement for seniors. Strategic improvements in security headers, incident response transparency, and technical performance could further enhance its security posture and user trust.

S

StubHub

stubhub.com

74

StubHub is a leading global online ticket marketplace specializing in the buying and selling of tickets for sports, concerts, theater, and festivals. Owned by Viagogo, it serves a broad audience of ticket buyers and resellers with a comprehensive event catalog and user account management features. The website demonstrates a mature digital infrastructure leveraging modern web technologies such as React, Mapbox GL, and Google Maps API, hosted on AWS with integrated security measures including AWS WAF and Google reCAPTCHA for bot protection. While HTTPS is enforced and some security best practices are observed, the site lacks explicit security headers and published security or privacy policies, which are recommended for enhanced compliance and trust. The website content is professionally designed, mobile-optimized, and safe for general audiences, with extensive use of analytics and advertising networks to support marketing efforts. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, StubHub presents a strong business and technical profile with room for improvement in privacy and security transparency.

P

Privacy service provided by Withheld for Privacy ehf

about.me

65

About.me is a well-established technology platform founded in 2008 that provides users with the ability to create free, personalized one-page websites quickly and easily. The platform targets a general audience seeking personal branding and online presence solutions. The website demonstrates a professional design with good mobile optimization and clear navigation, supporting a positive user experience. Technically, the site leverages modern analytics and tracking technologies such as Google Analytics, Facebook SDK, and Google Tag Manager, hosted on Cloudflare infrastructure, ensuring reliable performance and security. However, the absence of explicit privacy, cookie, and terms of service pages in the analyzed content indicates gaps in privacy compliance. Security posture is generally good with HTTPS enabled and domain transfer protections, but lacks visible security headers and detailed security policies. The domain WHOIS data shows privacy protection typical for this business type, with a long registration period supporting legitimacy. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures and security headers to improve compliance and security posture.

A

AmericaTVListings.com

americatvlistings.com

53

AmericaTVListings.com is a niche media website providing comprehensive TV schedule listings for the United States and other countries. The site offers multi-language support and covers a wide range of TV categories including American, local, Spanish, movies, sports, music, documentaries, news, and children's programming. The business model appears to be advertising-supported, leveraging Google Adsense and other marketing tools. The domain is relatively new, registered in 2022, and uses GoDaddy as registrar with Cloudflare DNS services. The website is built on modern frontend technologies including Bootstrap 5 and integrates Google Analytics and Facebook SDK for tracking and analytics. Security posture is moderate with HTTPS enabled and domain locks in place, but lacks DNSSEC and some recommended security headers. Privacy compliance is minimal with no explicit privacy or cookie policies found, though a cookie consent mechanism is present. Contact and incident response information are not clearly provided, which may impact user trust and compliance. Overall, the site is functional, well-branded, and serves its target audience effectively but could improve in security and privacy transparency.

The International Gymnastics Federation (FIG) operates the official website www.gymnastics.sport, serving as the global governing body for gymnastics. The site provides comprehensive information about gymnastics disciplines, events, news, and organizational details, targeting athletes, officials, and fans worldwide. The business model is that of a non-profit international sports federation with a large global presence. Technically, the website employs modern web technologies including FontAwesome for icons, tarteaucitron.js for cookie consent management, Google Analytics, and Facebook Pixel for analytics and marketing. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Security posture is strong with HTTPS enforced and privacy policies in place, but lacks explicit security policy documentation and vulnerability disclosure mechanisms. WHOIS data is privacy protected, which is typical for such organizations, and no suspicious patterns were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve transparency around terms of service and security policies.

Smith+Nephew is a globally recognized medical technology company specializing in medical devices and advanced wound care solutions. The company offers a broad portfolio including orthopaedics, sports medicine, ENT, trauma, and surgical products. Their website reflects a mature enterprise with a strong market position and a focus on healthcare professionals and institutions worldwide. The digital presence is professional, well-branded, and content-rich, supporting their global business model. Technically, the website employs modern technologies such as Google Tag Manager, Facebook SDK, and Cookiebot for consent management, alongside Sitecore CMS. The site demonstrates good performance, mobile optimization, and accessibility standards. Comprehensive privacy and cookie policies are implemented, indicating a strong commitment to GDPR compliance and user privacy. From a security perspective, the site enforces HTTPS, uses multiple security headers, and employs best practices such as CSRF protection and cookie consent mechanisms. However, explicit security policies and incident response information are not prominently published, representing an area for improvement. No vulnerabilities or suspicious activities were detected. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. The lack of public WHOIS data is typical for corporate domains using privacy protection and does not detract from the legitimacy of the site. Strategic recommendations include publishing detailed security policies and vulnerability disclosure information to enhance transparency and trust.

2

20 Minuten

20minuten.ch

77

20 Minuten is the largest Swiss news portal offering 24/7 news coverage, videos, and community features primarily targeting the German-speaking Swiss audience. The website demonstrates a mature digital infrastructure using modern frameworks such as Next.js and React, supported by various third-party analytics and advertising technologies. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed through cookie consent mechanisms and a comprehensive privacy policy. Overall, the website presents a professional, trustworthy, and user-friendly platform with extensive content and good technical implementation.

P

Privacy service provided by Withheld for Privacy ehf

tvguide.asia

60

TVGuide.asia is a specialized online media platform offering detailed TV guide and scheduling information primarily for the Australia ACT, Canberra region, with multi-genre and multi-language support. The website targets TV viewers seeking comprehensive and up-to-date channel listings and program schedules. The business model appears to be advertising-supported, leveraging Google Adsense and other ad networks to monetize traffic. The platform also maintains partnerships with related TV guide services such as tvepg.eu and americatvguide.com. Technically, the website employs modern web technologies including Google Fonts, FontAwesome, Google Tag Manager, and Facebook SDK, hosted behind Cloudflare DNS services. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Security posture is adequate with HTTPS enforced and domain transfer protection enabled, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the website is functional and professional but could improve in security and compliance documentation.

A

AmericaTVGuide.com

americatvguide.com

51

AmericaTVGuide.com is a niche media website providing comprehensive TV guide and schedule listings primarily for the United States, with multi-language and multi-country support. The site aggregates channel and program data from various partners and sources, offering users detailed listings across genres such as movies, sports, music, and documentary. The business model appears to be content aggregation monetized through advertising. Technically, the site uses modern web technologies including FontAwesome, Google Fonts, Google Adsense, and Facebook SDK, hosted behind Cloudflare DNS and CDN services. The website is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and domain locks in place, but lacks DNSSEC and security headers, and does not provide privacy or cookie policies, which are compliance gaps. Overall, the domain registration is consistent and legitimate, supporting the business claims. The site is safe for general audiences with no adult or questionable content detected.

A

ASKÖ Sport GmbH

abc-ooe.at

45

ASKÖ Sport GmbH operates the ABC Bewegungscenter Oberösterreich, a regional sports and event center located in Linz, Austria. The company provides a range of services including sports activities, seminar facilities, accommodation, and restaurant services, targeting a general audience interested in sports and events. The website reflects a medium-sized regional business with consistent branding and clear contact information, supporting its market position as a trusted local service provider. Technically, the website is built on the Internetkonzepte.at CMS platform and utilizes modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security policies, incident response information, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy digital presence with moderate technical and security maturity. Strategic improvements in security policies, technical modernization, and enhanced privacy compliance would further strengthen the site's reliability and user trust.

Indiegogo is a well-established crowdfunding platform that enables creators to launch and manage fundraising campaigns globally. The platform offers comprehensive services including campaign hosting, pledge management, and performance marketing. It targets creators and backers interested in innovative projects and has a strong market position as one of the leading crowdfunding platforms worldwide. The website is professionally designed with excellent content quality and clear navigation, optimized for mobile and desktop users alike. Technically, Indiegogo employs a modern technology stack including secure payment gateways (Adyen, Stripe, Apple Pay, Google Pay), advanced analytics (Google Analytics 4, Facebook Pixel, Microsoft Clarity), and robust error tracking (Rollbar). Security best practices are observed with HTTPS enforcement, security headers, and bot protection via reCaptcha. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. Contact information is clearly provided, enhancing business credibility. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, Indiegogo demonstrates a mature digital infrastructure and a strong security posture, suitable for its large enterprise scale and global audience.

Indiegogo is a prominent global crowdfunding platform that enables creators to launch projects and manage pledges effectively. The platform targets both creators seeking funding and backers interested in supporting innovative projects. Indiegogo offers key services including crowdfunding campaign hosting, pledge management, and marketing services to help creators reach their audience. The website is professionally designed with consistent branding and clear navigation, reflecting its large enterprise status in the technology sector. From a technical perspective, Indiegogo employs a modern technology stack including JavaScript frameworks, payment integrations with Adyen, Stripe, Google Pay, and Apple Pay, and uses analytics tools such as Google Analytics 4, Facebook Pixel, and Microsoft Clarity. The site is optimized for performance and mobile responsiveness, ensuring a smooth user experience across devices. Security-wise, the platform enforces HTTPS, implements multiple security headers, and uses bot prevention mechanisms like reCAPTCHA. Payment processing is secured through trusted providers, and error tracking is managed via Rollbar. While explicit security policies and vulnerability disclosure pages are not found, the overall security posture is strong with no evident vulnerabilities. Overall, Indiegogo presents a trustworthy and professional online presence with comprehensive privacy and cookie policies, multiple contact channels, and a high level of technical and security maturity. The lack of WHOIS data is attributed to privacy protection, which is justified for this type of business. Strategic recommendations include publishing detailed security policies and vulnerability disclosure information to enhance transparency and trust.

T

TVEpg.eu

tvepg.eu

64

TVEpg.eu is a specialized online media service providing comprehensive TV program guides primarily for Finland, with additional coverage of European and other countries' channels. The website offers multi-language support and detailed channel listings, targeting TV viewers seeking up-to-date program schedules. The business model appears to be advertising-supported, leveraging Google Adsense and social media presence to engage users. The site is hosted via GoDaddy.com, LLC and uses modern web technologies including Bootstrap, Google Fonts, and JavaScript libraries for enhanced user experience. The technical infrastructure supports mobile optimization and reasonable performance, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies or incident response information. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

Ö

ÖFT - Österr. Fachverband für Turnen

turnsport.at

49

Turnsport Austria is the official Austrian gymnastics federation representing approximately 450 clubs and over 90,000 members across multiple gymnastics disciplines. The organization serves both grassroots and elite sports communities, providing event organization, trainer licensing, and promoting safe sport and anti-doping initiatives. The website is well-structured, professionally designed, and provides comprehensive information and news relevant to its audience. Technically, the site uses a modern tech stack including jQuery, Font Awesome, and Owl Carousel, and is built on the Internetkonzepte.at CMS platform. It is mobile optimized and SEO friendly. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is strong with a clear privacy and cookie policy and consent mechanism. Overall, the site is trustworthy and credible, reflecting a mature non-profit sports federation.

B

BenefitWorld

benefitworld.at

67

BenefitWorld is an Austrian cashback and discount platform offering users cashback and savings across approximately 800 partner webshops, with a strong focus on travel and shopping. The website is built on Drupal 9 and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook SDK, and Mailchimp. The platform demonstrates a good level of digital maturity with mobile optimization and a professional design. Security posture is solid with HTTPS enforced, reputable SSL certificates, and security headers, although there is room for improvement in cookie consent mechanisms and published security policies. Overall, the site is trustworthy and well-positioned in the Austrian e-commerce cashback market.

K

Korbball in Bayern

korbball-bayern.de

38

The website 'Korbball in Bayern' serves as an informational platform dedicated to the sport of Korbball in the Bavaria region of Germany. It provides news, event updates, and community information targeted at Korbball players and enthusiasts. The site is built on Joomla CMS and incorporates modern web technologies such as jQuery and Bootstrap, with Usercentrics managing cookie consent and Facebook SDK integrated for social media features. Hosting is provided by a German hosting provider, agenturserver, as indicated by the nameservers. The website is accessible without any WAF or security challenges, indicating no blocking or content restrictions. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and does not provide visible security or incident response policies. Privacy compliance is partially addressed through the Usercentrics cookie consent mechanism; however, no dedicated privacy policy or terms of service pages were found. Contact information such as emails or phone numbers is absent, which limits direct communication channels for users or security incident reporting. Overall, the website presents a basic but functional digital presence for a niche regional sports community. The security posture is moderate but could be improved by implementing security headers, publishing privacy and security policies, and providing clear contact information. The content is safe for general audiences with no adult or explicit material detected.

V

Volvo Car Switzerland

volvocars-news.ch

51

Volvo Cars News Switzerland operates as an official or semi-official digital platform providing news, model information, and event updates related to Volvo Cars in Switzerland. The website targets automotive enthusiasts and customers interested in Volvo's innovations and sustainable mobility solutions. The business is positioned as a trusted source within the transportation sector, leveraging Volvo's brand and parent company association. Technically, the site is built on WordPress with a modern plugin ecosystem including Yoast SEO and Elementor Pro, ensuring good SEO and content management capabilities. The site is mobile optimized and uses HTTPS with a good SSL configuration, though some security headers are not explicitly detected. The security posture is solid but could be improved by adding explicit security policies and cookie consent mechanisms. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and trustworthy but should enhance privacy and security transparency to meet higher compliance standards.

T

Tablet LLC

tablethotels.com

65

Tablet Hotels operates as a specialized online booking platform focusing on boutique and luxury hotels worldwide. Affiliated with the MICHELIN Guide since 2018, it offers curated hotel selections, verified reviews, concierge-level service, and exclusive member benefits through its Tablet Plus program. The website targets discerning travelers seeking unique and memorable lodging experiences. Technically, the site leverages a modern React-based single-page application architecture, supported by a headless CMS (Strapi) and CDN hosting via Amazon CloudFront. It integrates multiple third-party analytics and marketing tools including Google Tag Manager, Facebook SDK, and Kameleoon for A/B testing. Security posture is strong with HTTPS enforced and tokenization for payment data, though explicit security headers and published security policies are absent. Privacy compliance is partial, lacking visible privacy and cookie policies despite consent mechanisms being present. Overall, the site demonstrates high professionalism, good performance, and strong branding consistency.

N

Nettvett.no

nettvett.no

54

Nettvett.no is a Norwegian internet safety information portal providing guidance, advice, and educational courses on safer internet usage. It is positioned as a trusted resource in Norway, supported by partnerships with recognized governmental and security organizations such as NorSIS, NSM, and NKOM. The website targets a general audience seeking to improve their digital security awareness. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and SEO tools like Yoast. It integrates Google Analytics and Facebook SDK for analytics and tracking, and employs Google reCAPTCHA for form security. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks explicit security headers and published incident response policies. Privacy compliance is basic with a privacy policy and cookie consent mechanism present. WHOIS data shows an anomalous future creation date, which slightly impacts trust but does not detract from the site's legitimacy given its content and partnerships.

T

The Twentieth Century Society

c20society.org.uk

55

The Twentieth Century Society is a UK-based non-profit organization dedicated to campaigning for the preservation and appreciation of outstanding 20th-century buildings. The website serves as a comprehensive platform offering news, resources, membership services, and event information, positioning the society as a reputable and established entity within the heritage conservation sector. The site demonstrates a consistent brand identity and strong partnerships with notable architectural firms and grant funders, reinforcing its credibility and influence. Technically, the website is built on WordPress and employs a modern technology stack including Google reCAPTCHA, Google Maps API, and social media integrations. The site is moderately performant with good mobile optimization and basic accessibility features. Analytics and tracking are implemented responsibly with Jetpack, Google Analytics, and Hotjar, balanced with privacy compliance measures. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, some security headers could be improved to enhance protection. Privacy and cookie policies are present and GDPR compliant, supporting a strong privacy posture. Overall, the website is professional, trustworthy, and well-maintained, with a high legitimacy score based on domain age and registration data. There are no critical security or compliance issues detected, making it a low-risk digital presence for the organization.

T

Tollkirsch AG

tollkirsch.ch

46

Tollkirsch AG is a creative marketing and branding agency based in Winterthur, Switzerland, specializing in branding, corporate identity, corporate design, SEO, web design, and digital marketing. The company positions itself as a boutique agency delivering tailored, bold, and effective brand strategies and communications to businesses seeking to enhance their market presence. The website reflects a professional and consistent brand image with clear service offerings and a portfolio of references, targeting companies looking for comprehensive marketing solutions. Technically, the website is built on the Cmsbox CMS platform, integrating modern web technologies including Google reCAPTCHA for security and Mailchimp for marketing automation. The site is mobile-optimized, SEO-friendly, and uses analytics tools such as Piwik/Matomo for user tracking. Performance is moderate with good accessibility and navigation clarity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong with GDPR-aligned policies and transparent data collection practices. Overall, the website demonstrates a high level of professionalism, trustworthiness, and digital maturity, with minor recommendations to enhance security headers and publish formal security policies to further strengthen its posture.

Swiss Sailing operates the Swiss eSailing Championship, a national-level virtual sailing competition leveraging the Virtual Regatta Inshore platform. The website serves as an informational and promotional portal for the 2025 season, targeting Swiss citizens interested in eSailing. The organization collaborates with recognized partners such as World Sailing and Virtual Regatta, and benefits from sponsorship by Allianz, enhancing its market credibility. The business model focuses on event organization, participant engagement, and partnership-driven promotion within the niche eSports sailing community. Technically, the website uses a modern but straightforward tech stack including Bootstrap, jQuery, and FontAwesome, with integration of social media SDKs for Facebook. The site is mobile optimized and provides clear navigation and relevant content. Hosting and domain registration are consistent with the Swiss focus, though DNSSEC is not enabled. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are recommended to enhance protection. No cookie consent mechanism or detailed privacy compliance features are present, which could be improved to meet GDPR standards more fully. The WHOIS data shows privacy protection but aligns with the Swiss entity and domain age is appropriate, supporting legitimacy. Overall, the website is professional and trustworthy with good business credibility but could benefit from enhanced security practices and privacy compliance measures to reduce risk and improve user trust.

G

Gemini.no

gemini.no

62

Gemini.no is a well-established Norwegian research news portal jointly operated by NTNU and SINTEF, providing comprehensive and accessible scientific news across multiple disciplines including technology, health, environment, and society. The website demonstrates a mature digital infrastructure built on WordPress with modern analytics and tracking tools, ensuring good user experience and SEO optimization. Security posture is strong with HTTPS enforcement and privacy-conscious analytics configurations. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Contact information is available, though phone numbers are not explicitly listed. Overall, Gemini.no presents a professional, trustworthy, and content-rich platform serving a broad audience interested in research and science news.

T

Tag der Demokratie

democracyday.ch

49

The website democracyday.ch serves as an informational and campaign platform dedicated to promoting democracy awareness in Switzerland. It targets the general public interested in civic engagement and democratic participation. The site provides multilingual content, event mapping, idea sharing, and partnership information, positioning itself as a niche non-profit campaign platform. Technically, the site is built on WordPress with modern JavaScript libraries such as jQuery, Foundation, and Isotope for layout and interactivity. It integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized and shows moderate performance with basic SEO and accessibility features. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information and incident response details are absent, which limits user trust and compliance. Overall, the site is functional and professional but could improve in privacy, security, and user engagement aspects.

Jugend im Berggebiet is a Swiss non-profit initiative under the Schweizerische Arbeitsgemeinschaft für die Berggebiete (SAB) focused on promoting youth-friendly mountain villages. The website serves as an informational and community platform to support youth engagement and counteract depopulation in mountain regions. It offers a label program, organizes youth forums, and provides media and agenda information relevant to its target audience of youth and municipalities in Swiss mountain areas. Technically, the site is built on WordPress with a professional theme and multilingual support, integrating common social media and analytics tools. Security posture is adequate with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy linked via the SAB parent site but no cookie consent mechanism. Overall, the site is trustworthy, well-branded, and professionally maintained, serving a niche non-profit community purpose.

O

okaj zürich

okaj.ch

47

okaj zürich is a well-established non-profit umbrella organization dedicated to coordinating and supporting open, associative, and church-based child and youth work in the canton of Zürich, Switzerland. With a history spanning 100 years, it serves approximately 600 member organizations and operates under a mandate from the canton government. The website effectively communicates its mission, projects, and events, targeting professionals in youth work, government officials, and member organizations. The organization emphasizes education, networking, and advocacy through various projects and publications.

T

Ticino Turismo

ticino.ch

65

Ticino Turismo operates the official regional tourism website for Ticino, Switzerland, providing comprehensive travel and holiday information including accommodations, events, excursions, and cultural highlights. The website targets tourists and travelers seeking to explore the Mediterranean soul of Switzerland, positioning itself as a trusted and authoritative source in the hospitality and government tourism sector. Technically, the site employs a modern technology stack including Google Tag Manager, Facebook and Pinterest SDKs, and Leaflet.js for interactive maps, likely built on Adobe Experience Manager CMS. The website is well-optimized for mobile devices and SEO, with good performance and accessibility features. Security posture is strong with HTTPS enforced, appropriate security headers, and a robust cookie consent mechanism via iubenda, although no explicit security policy or vulnerability disclosure page was found. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable resource for visitors.

B

BSA Bund Schweizer Architekten

bsa-fas.ch

55

The Federation of Swiss Architects (BSA Bund Schweizer Architekten) is a prominent membership organization uniting over 950 members recognized for their achievements in architecture and urban development in Switzerland. The website serves as a comprehensive platform offering information about the federation, its local groups, awards, research grants, publications, and events. It targets architects, urban planners, and related professionals within Switzerland, providing multilingual support to cater to the diverse linguistic regions of the country. The business model is centered on membership services, professional networking, and advocacy within the architectural sector.