Security Directory

Z

Zimbra

zimbra.com

74

Zimbra operates as a provider of cloud-hosted collaboration software and email platforms, emphasizing open standards, low-risk alternatives, and data sovereignty. The company targets enterprises and businesses seeking integrated collaboration solutions with productivity add-ons. The website reflects a medium-sized technology business with a professional online presence, offering downloadable products, documentation, and trial options. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools such as HubSpot, Google Tag Manager, and New Relic for performance monitoring. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is unavailable, which raises some trust concerns despite the professional appearance. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security documentation.

D

Die Klett Gruppe

klett-gruppe.de

60

Die Klett Gruppe is a leading European educational company operating with over 90 subsidiaries across 24 countries. The company focuses on publishing educational media, adult and continuing education, and managing kindergartens and schools. Their website reflects a professional and consistent brand image, targeting educational institutions and partners. Technically, the site is built on TYPO3 CMS and uses modern JavaScript libraries such as jQuery, lodash, and FullPage.js, providing a moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and uses a cookie consent mechanism with Matomo analytics, but lacks explicit security policies and advanced security headers. Overall, the website is trustworthy and well-maintained, though improvements in security transparency and incident response readiness are recommended.

E

EuroFire, spol. s r.o.

eurofire.cz

44

EuroFire, spol. s r.o. is a Czech-based authorized distributor specializing in personal protective equipment and firefighting gear, including products from MSA Safety and Schuberth GmbH. Founded in 2001, the company offers a comprehensive portfolio of safety products such as helmets, breathing apparatus, protective clothing, and firefighting accessories, targeting firefighters, emergency responders, police, and military sectors. The website reflects a professional e-commerce platform built on PrestaShop, featuring detailed product information and recognized brand partnerships. Technical infrastructure includes modern JavaScript libraries and Google Analytics for enhanced e-commerce tracking. Security posture is adequate with HTTPS and token usage but lacks explicit security policies and incident response information. Privacy compliance is supported by comprehensive privacy and cookie policies, though a consent mechanism is absent. Overall, the website is trustworthy, well-branded, and serves its niche market effectively.

E

Erlebniswelt Lüneburger Heide GmbH

erlebniswelt-lueneburger-heide.de

46

Erlebniswelt Lüneburger Heide GmbH operates a regional tourism and leisure website focused on promoting attractions such as amusement parks, designer outlets, and climbing gardens in the Lüneburger Heide region of Germany. The website targets tourists and visitors seeking leisure activities and provides multilingual support via Google Translate. The business model centers on information dissemination and regional promotion, positioning itself as a key regional tourism service provider. Technically, the site uses a combination of Bootstrap, jQuery, and custom CMS components hosted on infrastructure managed by UI-DNS services. Accessibility is a strong focus, with an advanced digiaccess tool integrated to support users with various disabilities. Security posture is moderate with cookie consent and privacy policies in place, but lacks explicit security headers and incident response information. Overall, the site is professional, well-structured, and compliant with GDPR requirements, though improvements in security policy transparency and contact information visibility are recommended.

T

Transtech

transtech.pt

33

Transtech is a Portuguese technology-focused company specializing in qualification, digitalization, innovation, and technological development projects. The website presents a professional and consistent brand image targeting businesses interested in technological innovation and digital transformation. The technical infrastructure uses modern front-end technologies such as Google Fonts, FontAwesome, and popular JavaScript libraries for UI components, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information, which are recommended for improvement. Privacy compliance is minimal, with no visible privacy or cookie policies, which could expose the company to regulatory risks. Overall, the website is functional and professional but would benefit from enhanced security and privacy practices to improve trust and compliance.

A

azubi.ms

azubi.ms

62

azubi.ms is a regional online apprenticeship job board focused on the Münsterland area in Germany, operated under the Zeitungsgruppe Münsterland media group. The platform offers categorized job listings, company profiles, and search filters tailored to young job seekers and students looking for vocational training opportunities. The website demonstrates a good level of digital maturity, employing modern JavaScript libraries and frameworks, and providing a responsive and accessible user experience. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is adequate with HTTPS enforced, though some common security headers are missing, which could be improved. The lack of WHOIS data raises concerns about domain registration legitimacy, but the professional presentation and association with a known media group mitigate some risk. Overall, the site is trustworthy and functional for its intended audience.

HAGS Praha, s.r.o. is a Czech company with over 33 years of experience in designing and delivering high-quality children's playgrounds, including products from the German Berliner Seilfabrik. The company targets investors, architects, public institutions, and parents, offering customized playground solutions emphasizing safety, design, and sustainability. The website reflects a medium-sized manufacturing business with a strong local market presence and multiple certifications that reinforce trust and quality. Technically, the website uses modern JavaScript libraries such as jQuery, Swiper, and Font Awesome, hosted likely on Czech infrastructure. The site is mobile-optimized with good design and navigation, though accessibility and SEO could be improved. The cookie consent mechanism is implemented, supporting GDPR compliance to some extent, but lacks a dedicated privacy policy and terms of service pages. From a security perspective, the site uses HTTPS but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration is recent, which contrasts with the company's stated long history, suggesting a new domain acquisition or rebranding. Overall, the website is professional and trustworthy but would benefit from enhanced privacy documentation, security headers, and clearer compliance disclosures to improve its security posture and regulatory adherence.

Pivovar Ferdinand, s.r.o. is a Czech brewery specializing in traditional and gluten-free beers, serving both retail and hospitality sectors primarily in the Czech Republic. The website presents a professional and content-rich platform showcasing their product range, brewing philosophy, and services including direct delivery. Technically, the site uses a custom CMS with common JavaScript libraries and integrates Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with cookie consent implemented but lacks visible security headers and privacy policy pages. WHOIS data is unavailable, limiting domain trust verification. Overall, the site is mature content-wise due to alcohol products and includes age consent mechanisms.

P

Profi Press s.r.o.

agro-obchod.cz

44

AgroOBCHOD is an online agricultural classified ads portal operated by Profi Press s.r.o., targeting farmers and agricultural businesses primarily in the Czech Republic. The platform offers listings for agricultural machinery, land, livestock, and crops, facilitating trade within the agricultural sector. The website is built on WordPress and integrates common web technologies including jQuery, Isotope.js, and tracking tools such as Google Analytics and Matomo Tag Manager. It provides multilingual support via Google Translate and includes a newsletter subscription feature. Despite the professional presentation and relevant content, the absence of WHOIS registration data and lack of explicit privacy and terms of service policies represent gaps in transparency and compliance. Security posture is moderate with HTTPS enabled but missing key security headers. Overall, the site is functional and serves its niche market well but would benefit from enhanced compliance and security measures.

B

Burza filantropie

burzafilantropie.cz

46

Burza filantropie is a Czech non-profit platform that connects the non-profit, business, and public sectors to facilitate philanthropic projects and donations. The website serves as a hub for project registration, donor engagement, and regional philanthropic events. It is supported by regional partners and features up-to-date news and multimedia content. Technically, the site is built on WordPress, uses HTTPS, and integrates Google Analytics and reCAPTCHA for security and analytics. While the site demonstrates good design, navigation, and mobile optimization, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. The absence of WHOIS data reduces transparency but does not negate the site's legitimacy given its professional presentation and partner endorsements. Security posture is good but could be improved with additional HTTP security headers and clearer incident response information.

I

IT servitium Ecclesiae s.r.o.

agendafarnosti.cz

57

The website agendafarnosti.cz serves as a login portal for a specialized information system designed to manage church parish agendas. Operated by IT servitium Ecclesiae s.r.o., the platform targets church administrators and parish staff primarily in the Czech Republic. The system integrates modern web technologies and offers features such as user account management and Microsoft account login integration. The site also provides curated links to reputable religious and media resources, enhancing its value proposition for its niche audience. From a technical perspective, the website employs a robust tech stack including jQuery, Bootstrap, SmartAdmin template, and various plugins for enhanced UI/UX. Hosting is supported by Cloudflare DNS and the domain registrar REG-WEDOS, ensuring reliable infrastructure. The site is mobile-optimized and demonstrates good design and navigation clarity, although accessibility features are basic. Security posture is moderate with HTTPS enforced and client-side validation implemented. However, the absence of explicit security headers such as CSP and HSTS, as well as missing privacy and cookie policies, represent areas for improvement. No incident response or vulnerability disclosure information is provided, which could impact trust and compliance. Overall, the website is functional and professionally presented but would benefit from enhanced privacy compliance and security best practices to strengthen user trust and regulatory adherence.

O

Ocmis Irrigazione S.p.A. a Socio Unico

irtec-irrigazione.it

55

Ocmis Irrigazione S.p.A. is an Italian company specializing in irrigation technology and manufacturing, operating multiple brands including Irtec. The company offers a broad portfolio of irrigation equipment such as hose reels, pivot systems, pumps, and gearboxes, targeting agricultural businesses and irrigation professionals. The website reflects a medium-sized enterprise with a consistent brand presence and membership in industry associations like EIMA. Technically, the site is built on Drupal 8 with modern JavaScript libraries and frameworks, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published incident response policies. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the overall business credibility and website professionalism mitigate this risk. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust and compliance.

A

Atlantic Studio s.r.o.

atlantic.cz

57

Atlantic Studio s.r.o. is a Czech Republic-based marketing and internet agency specializing in branding, web design, advertising, and online marketing services. The company targets businesses seeking comprehensive marketing and communication solutions with a focus on delivering results and aligning with current trends. Their website demonstrates a professional digital presence with clear service offerings and client references, supported by active social media channels. Technically, the site is built on WordPress with a modern tech stack including jQuery, Modernizr, Video.js, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers are missing and no explicit vulnerability disclosure or incident response information is provided. The absence of WHOIS data limits domain trust assessment, but the website content and contact information appear legitimate and consistent with a small regional marketing agency. Overall, the site scores well in content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional online presence.

T

TTS

tts.cz

40

TTS is a Czech Republic-based multi-sector company operating primarily in energy management, real estate development, biomass engineering, and fuel supply. The website serves as a portal linking to four main business divisions, each with dedicated subdomains. The company targets businesses and individuals interested in energy solutions and property development. The website is built on WordPress and uses common web technologies including jQuery, Google Maps API, and Google Analytics. The site is well-structured with a clear navigation model and a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy or terms of service pages were found in the provided content. Security posture is moderate with HTTPS enforced but lacking security headers and updated libraries. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the website is professional and functional but would benefit from enhanced security practices and clearer compliance documentation.

D

Duslo, a.s.

duslo.sk

49

Duslo, a.s. is a leading chemical manufacturing company in Slovakia, specializing in mineral fertilizers, rubber chemicals, dispersions, adhesives, and other specialty chemical products. As a member of the Agrofert concern, it holds a strong market position in the Slovak chemical industry. The company also provides a range of services including waste management, energy services, analytical laboratory testing, healthcare, and research activities, targeting industrial clients and business partners. The website reflects a professional corporate presence with clear navigation and up-to-date content including news, job opportunities, and public tenders. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, and CookieHub for cookie consent management. It is mobile optimized and uses HTTPS with good SSL configuration. However, some security headers are missing, and accessibility features could be improved. The site uses Google reCAPTCHA to protect forms and complies with GDPR requirements through a comprehensive privacy policy and cookie consent mechanism. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, no visible vulnerabilities, and no exposed sensitive data. However, it lacks a published security policy or incident response contact information and does not provide a vulnerability disclosure or security.txt file. The WHOIS data confirms a long-standing domain registration consistent with the company's history and business claims, enhancing trustworthiness. Overall, Duslo's website is a well-maintained corporate site with strong business credibility, good privacy compliance, and a solid security posture. Strategic improvements in security headers, accessibility, and transparency around security policies would further enhance its security maturity and trustworthiness.

C

CAMPUSERVICE GmbH

campuservice.de

63

CAMPUSERVICE GmbH is a professional service subsidiary of Goethe-Universität Frankfurt am Main, providing a broad range of services including event management, advertising, career services, academy training, campus shop operations, and administrative support. The website reflects a well-structured and professionally designed portal targeting students, university staff, companies, and regional partners. The business model focuses on supporting university-related activities and fostering collaboration with external stakeholders. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Colibri Page Builder, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS enabled and cookie consent implemented, though explicit security policies and incident response contacts are not published. Overall, the domain registration and WHOIS data align well with the university affiliation, indicating legitimacy and trustworthiness.

H

Hansestadt Lüneburg

hansestadt-lueneburg.de

59

Hansestadt Lüneburg operates an official municipal website providing comprehensive information and services to its citizens and visitors. The site covers a broad range of topics including local government, administration, climate protection, culture, and public services. It serves as a primary communication channel for the city, offering news, event information, and access to online administrative services via a dedicated service portal. The website targets residents, local businesses, and tourists, positioning itself as a trusted and authoritative source for city-related information. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, enhanced with modern JavaScript libraries such as jQuery, Alpine.js, and Mapbox GL for interactive maps. Accessibility is a priority, demonstrated by the integration of Eye-Able tools. The site is mobile-optimized and employs standard SEO practices including structured data (JSON-LD) and Open Graph metadata. Hosting appears stable with dedicated name servers, and HTTPS is enforced ensuring secure communications. From a security perspective, the website demonstrates good practices including HTTPS, cookie consent mechanisms, and no visible sensitive data exposure. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced transparency and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, the website is professional, secure, and compliant with GDPR requirements, providing a positive user experience and reliable business credibility. Strategic recommendations include publishing a security policy, incident response details, and a vulnerability disclosure framework to further strengthen security posture and user trust.

Bürgerhaus Schortens is a local cultural center in Germany that provides a diverse range of cultural events including cabaret, exhibitions, markets, and concerts. It serves as a community hub for cultural engagement and group meetings, targeting local residents and culture enthusiasts. The website reflects a small non-profit organization with a clear focus on community and cultural enrichment. Technically, the website uses a variety of common web technologies such as jQuery, Bootstrap, and FontAwesome, likely running on the Redaxo CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and event information. Security-wise, the site implements cookie consent mechanisms and uses Google Analytics for tracking, but lacks explicit security policies or incident response information. The domain registration data is consistent with the website's public cultural mission, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with GDPR requirements, though it could improve by adding terms of service and explicit security policies.

S

Soltau-Touristik

soltau-touristik.de

44

Soltau-Touristik operates as the official tourism and visitor information service for the city of Soltau, Germany, focusing on promoting local attractions, events, accommodations, and services to tourists and visitors. The website serves as a regional tourism authority hub, providing comprehensive information and booking options, targeting travelers interested in the Lüneburger Heide region. The business model centers on destination marketing and visitor engagement, supported by official certifications and a clear contact presence. Technically, the website is built on TYPO3 CMS and leverages modern front-end technologies such as jQuery, Bootstrap, and FontAwesome. It demonstrates good mobile optimization, accessibility features, and SEO practices. The site integrates Google Analytics and Tag Manager for user tracking, balanced with GDPR-compliant cookie consent mechanisms. Multi-language support is provided via Google Translate, enhancing accessibility for international visitors. From a security perspective, the site uses HTTPS with anonymized IP tracking in analytics, includes a cookie consent banner, and employs accessibility tools. However, it lacks explicit security headers and does not provide a public security policy or incident response information. No vulnerabilities or suspicious content were detected, indicating a mature security posture appropriate for its business type. Overall, the website is professional, trustworthy, and well-aligned with its business goals. It provides a safe and user-friendly experience for visitors, with clear contact details and official trust indicators. Strategic improvements could include enhancing security headers and publishing a security policy to further strengthen trust and compliance.

D

Diit.cz | Vybráno z IT

diit.cz

55

Diit.cz is an established Czech IT news portal founded in 2009, providing news and information about hardware, software, and internet technologies. The website targets IT professionals and technology enthusiasts primarily in the Czech Republic. Its business model relies on content publishing supported by advertising revenue, as evidenced by multiple ad networks and tracking services integrated into the site. The site uses Drupal CMS with a foundation CSS framework and several JavaScript libraries, including an outdated version of jQuery, which poses potential security risks. The website is mobile optimized and offers a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score.

C

cdr.cz

cdr.cz

58

cdr.cz is a well-established Czech IT news and media website founded in 1998, providing technology news, guides, and blogs primarily for Czech-speaking IT professionals and enthusiasts. The site operates on a Drupal CMS platform with a modern technology stack including Google Analytics, Google Tag Manager, and various advertising networks. The website is monetized primarily through advertising and uses multiple ad networks and tracking services. Security posture is good with HTTPS and some security headers, but lacks explicit privacy and cookie policies, which impacts privacy compliance. No direct contact information or security incident response details are provided publicly. Overall, the website is professional, content-rich, and trustworthy, but could improve transparency and compliance with privacy regulations.

A

Aira Group s.r.o.

aira.cz

61

Aira Group s.r.o. is a Czech-based technology service provider specializing in IT outsourcing, web development, online marketing, and custom application development. The company targets businesses seeking comprehensive IT and marketing solutions, positioning itself as a reliable partner with a portfolio of notable clients across various industries. The website reflects a professional and consistent brand image with detailed service descriptions and client references, indicating a medium-sized enterprise with a solid market presence in the Czech Republic. Technically, the website employs a modern tech stack including jQuery, bxSlider, Fancybox, Font Awesome, and integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Hosting leverages AWS Cloudfront CDN for widget delivery. The site is mobile-optimized with good SEO practices but could improve accessibility and security headers. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, explicit privacy and terms of service pages are not clearly found, and WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency. No critical vulnerabilities or WAF blocking were detected, and contact information including a data protection officer contact is provided. Overall, the website presents a trustworthy and professional digital presence with moderate security and privacy compliance. Strategic improvements in security headers, explicit privacy policies, and WHOIS transparency would enhance trust and compliance.

C

CAMPUSERVICE GmbH

campuslocation-frankfurt.de

59

CAMPUSERVICE GmbH operates a professional event location service website leveraging the Goethe University Frankfurt campus as a unique venue. The site targets event organizers and private clients seeking diverse event spaces in Frankfurt. The business model focuses on venue rental and associated event services such as catering and technical support. The website is built on WordPress with modern plugins and SEO optimizations, featuring multimedia content including videos and images to enhance user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy and terms policies are missing. Contact is primarily via a web form, with no direct emails or phone numbers published. WHOIS data is minimal but not suspicious, aligning moderately with the business claims. Overall, the site is professional and trustworthy but could improve privacy transparency and security headers.

K

K2N way s.r.o.

kubota.cz

62

Kubota.cz represents the Czech Republic branch of Kubota Corporation, a globally recognized manufacturer of agricultural and industrial machinery. The website showcases a comprehensive product range including tractors, lawn mowers, and accessories, targeting agricultural professionals and municipal service providers. The company emphasizes sustainability and environmental responsibility, supported by a long corporate history and recent acquisitions such as Kverneland and Great Plains. Technically, the website employs modern frameworks like Bootstrap and jQuery, with integrated analytics and cookie consent mechanisms, reflecting moderate digital maturity. Security posture is adequate with cookie consent and no visible vulnerabilities, though security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting Kubota's strong market position in the manufacturing sector.

T

TTS energo s.r.o.

ttsenergo.cz

36

TTS energo s.r.o. is a regional energy company based in Třebíč, Czech Republic, specializing in the production and distribution of heat energy primarily from biomass. The company positions itself as a pioneer in biomass heat production within the Czech Republic and emphasizes environmental responsibility and local community support. Their services include heat production, customer benefits, emergency dispatch services, and technology projects. The website reflects a medium-sized enterprise with a professional online presence and clear business focus. Technically, the website is built on WordPress using common libraries such as jQuery, Modernizr, and Google Maps API. SEO is enhanced by the Yoast SEO plugin, and performance optimizations are implemented via WP Rocket. The site is mobile-optimized and uses HTTPS with strong SSL configuration. However, some security best practices like security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site demonstrates a moderate security posture with HTTPS enforced and anonymized IP tracking in analytics. The presence of a whistleblowing directive and GDPR privacy policy indicates some compliance awareness. The absence of WHOIS data is a concern for domain legitimacy and trust, though the website content and business information appear professional and consistent. Overall, the site is trustworthy and functional with room for improvement in security headers, privacy compliance (cookie consent), and domain registration transparency. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response contacts, and verifying domain WHOIS information to strengthen trust and compliance.

S

Stadt Trier

trier.de

63

The Stadt Trier website serves as the official digital portal for the city of Trier, Germany, providing a broad range of municipal services, citizen information, cultural events, and administrative resources. It targets residents, visitors, and businesses, positioning itself as a comprehensive government resource. The site is well-branded, professionally designed, and offers extensive navigation and content coverage, reflecting a mature digital presence for a public sector entity. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, and privacy-focused analytics via Matomo, hosted on Azure Cloud infrastructure. Accessibility features such as Eye-Able tools and social share privacy plugins enhance user experience and compliance. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site uses HTTPS and privacy-respecting analytics, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website presents a low-risk profile with a high degree of trustworthiness and professionalism. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

Ε

ΕΛΕΤΑΕΝ

eletaen.gr

61

ΕΛΕΤΑΕΝ is a Greek scientific association dedicated to wind energy, providing information, advocacy, and educational resources to the public and stakeholders. The website serves as a comprehensive portal featuring news, statistics, events, and campaigns related to renewable energy in Greece. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though explicit contact details and security policies could be enhanced for better transparency and incident readiness.

A

Autopůjčovna NONSTOP

attackerci6.cz

38

Autopůjčovna NONSTOP is a Czech car rental service specializing in providing a wide range of vehicles including SUVs, luxury cars, and electric vehicles with nonstop availability in Prague, including airport and city center locations. The business operates primarily through an online reservation system, targeting both tourists and local customers seeking flexible and reliable car rental options. The website is built on WordPress CMS, utilizing common plugins such as Yoast SEO for search optimization and Smartsupp for live chat support, indicating a moderate level of digital maturity. The technical infrastructure is supported by the Czech registrar REG-WEDOS, with SSL encryption ensuring secure communications. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and published security policies, which could be improved to enhance trust and compliance. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, potentially exposing the business to GDPR compliance risks. Overall, the website presents a professional and trustworthy image with clear contact information and detailed vehicle listings, but could benefit from enhanced security and privacy practices to strengthen its risk profile.

K

Koně Hradištko

kone-hradistko.cz

52

Koně Hradištko is a specialized equestrian business based in the Czech Republic focusing on horse breeding, riding training, event hosting, and hospitality services including accommodation. The website presents a well-structured and content-rich platform targeting horse enthusiasts, riders, and tourists interested in the Kinsky horse breed and related cultural events. The business operates in a niche hospitality and equestrian sector with a small-scale footprint and regional market presence. Technically, the website is built on WordPress using common JavaScript libraries such as jQuery, Slick Carousel, and Fancybox, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and secure form handling, but lacks advanced security headers and visible privacy or cookie policies, which are compliance gaps. The absence of WHOIS data limits domain legitimacy verification, though the website content and partner ecosystem suggest a legitimate operation. Strategic improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

É

Éclaireuses & Éclaireurs de France

eedf.fr

44

Éclaireuses & Éclaireurs de France (EEDF) is a French non-profit scouting association promoting secular scouting and youth development. The organization offers educational programs, camps, and volunteer opportunities aimed at children and young adults. The website is professionally designed, mobile-optimized, and provides comprehensive information about the association's mission, age groups, and activities. It is well integrated with social media and uses modern web technologies including WordPress and WooCommerce for content and e-commerce functionalities. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts domain trustworthiness. Overall, the site is trustworthy, informative, and serves its target audience effectively.

G

Gymnázium Třebíč

gtr.cz

36

Gymnázium Třebíč is a Czech educational institution providing secondary education through 8-year and 4-year gymnasium programs, including a specialized sports preparation track. The school emphasizes meaningful curriculum, critical thinking, personal development, and offers a variety of extracurricular activities including international exchanges and Erasmus+ accreditation. The website is professionally designed using WordPress CMS and integrates common web technologies such as jQuery and Google Tag Manager. It is mobile-optimized and provides clear navigation and relevant content for students and prospective applicants. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts trust but the website content and contact information appear legitimate and consistent with an educational institution.

W

whos.amung.us Inc.

amung.us

64

whos.amung.us Inc. operates a web analytics platform offering free and pro-tier real-time visitor statistics and heatmap widgets for websites and blogs. The service targets website owners and bloggers seeking immediate insights into visitor behavior without requiring account registration. The company positions itself as an established player in the web analytics market, with a business model centered on free widget usage complemented by paid Pro features. The website content is professionally designed, consistent, and supported by mentions in reputable technology media outlets, indicating moderate market trust and recognition. Technically, the website employs a modern JavaScript technology stack including jQuery, Bootstrap, Fancybox, and Google Tag Manager for analytics and marketing. The site is mobile-optimized with good SEO practices and moderate performance. However, accessibility features are basic and no CMS or hosting provider details are evident. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers are not detected and no explicit security policies are published. From a security and compliance perspective, the site lacks explicit cookie consent mechanisms and GDPR compliance indicators, which could pose privacy compliance risks. The absence of WHOIS data due to privacy protection reduces transparency but is common for this business type. No incident response or vulnerability disclosure policies are found, limiting the security maturity visibility. Overall, the site is safe with no adult or questionable content, but improvements in privacy compliance and security transparency are recommended. Strategically, whos.amung.us should enhance its privacy and security disclosures, implement cookie consent, and publish incident response and vulnerability disclosure policies to strengthen trust and compliance. Technical modernization focusing on accessibility and security headers would further improve the security posture and user experience.

D

DOBA Fakultet

doba.hr

45

DOBA Fakultet is a private, internationally accredited online higher education institution based in Slovenia, offering bachelor, master, and doctoral programs fully online. The institution targets students and working professionals seeking flexible and modern education aligned with EU standards and global trends such as sustainability and digitalization. The website demonstrates a mature digital presence with a modern tech stack including jQuery, Bootstrap, and various UI libraries, supporting a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security policies and incident response information are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a reputable educational business with a strong market position in online education in the region.

E

Elinor.bg

elinor.bg

50

Elinor.bg is a Bulgarian e-commerce website specializing in the sale of perfumes, cosmetics, and makeup products. The site targets a general audience interested in beauty products and offers a large catalog with over 30,000 items. The business model is retail-focused, leveraging online sales channels to reach customers primarily in Bulgaria. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site integrates multiple modern marketing and analytics tools such as Google Analytics, Facebook Pixel, Criteo, and SendPulse, indicating a mature digital marketing infrastructure. Mobile optimization and SEO practices are adequately implemented, contributing to a positive user experience.

S

SuperHosting.BG Ltd.

obemnibukvi.eu

43

The website obemnibukvi.eu represents a Bulgarian company specializing in the design, manufacturing, and installation of volumetric letters and advertising signage. With over 26 years of experience, the company serves clients across Bulgaria with offices in Sofia, Varna, and Veliko Tarnovo. The business is positioned as an established local player offering comprehensive services including design, production, and installation of advertising letters and related signage products. The website content is primarily in Bulgarian and targets a general audience interested in advertising and signage solutions. Technically, the website is built on WordPress CMS and utilizes common web technologies such as PHP, jQuery, FancyBox for image galleries, Google Fonts, and FontAwesome icons. The hosting provider is SuperHosting.BG Ltd., a reputable Bulgarian hosting company. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. External integrations include Google Translate and StatCounter for analytics. From a security perspective, the website uses HTTPS with a good SSL configuration but lacks advanced security headers and formal security policies. There is no privacy or cookie policy present, which indicates compliance gaps with GDPR and related privacy regulations. The contact form is present and appears to have validation, but no explicit security or incident response policies are disclosed. The domain WHOIS data is transparent and consistent with the hosting provider, with no suspicious patterns detected. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and formalized security policies to strengthen trust and regulatory adherence.

D

DIRECT MIND GmbH

sicher-helfen.org

47

DIRECT MIND GmbH operates a website cms.sicher-helfen.org which appears to be a content management system or informational site related to their business. The company is based in Vienna, Austria, and provides technology or digital services. The website is built on WordPress with common JavaScript libraries but lacks advanced SEO and security features. Contact information and legal disclosures are clearly presented, including a data protection officer, which indicates some compliance awareness. However, the absence of privacy and cookie policies and missing WHOIS data reduce trust and compliance posture. Security headers are not implemented, and no forms or analytics are present, suggesting limited user interaction and tracking. Overall, the site is functional but basic in content and security maturity.

The Wasser- und Bodenverband "Untere Tollense / Mittlere Peene" is a regional government-related organization based in Jarmen, Germany, focused on water and soil management. Their website provides comprehensive information about their tasks, organizational structure, and current activities, targeting local stakeholders and the public interested in environmental and water management issues. The site is professionally designed with clear navigation and relevant content, reflecting a small-sized public service entity. Technically, the website is built on TYPO3 CMS 6.2 with common web technologies such as Bootstrap, jQuery, and Font Awesome. While the site is mobile-optimized and performs moderately well, it uses an outdated CMS version which may pose security risks. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and incident response information. Privacy compliance is limited, with no cookie consent mechanism and only a basic privacy policy present. Overall, the website is trustworthy and serves its informational purpose effectively but would benefit from modernization and enhanced security and privacy practices.

R

Regionaler Entwicklungsträger Sursee-Mittelland

sursee-mittelland.ch

55

Regionaler Entwicklungsträger Sursee-Mittelland is a regional development organization focused on fostering economic growth and quality of life in the Sursee-Mittelland region of Switzerland. The organization supports regional actors, initiates projects, and promotes networking across various sectors including politics, economy, environment, and culture. The website reflects a professional and consistent brand presence targeting local stakeholders and the community. Technically, the site is built on Silverstripe CMS with modern JavaScript libraries and includes embedded multimedia content. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published incident response policies. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

E

ENTTEC

enttec.co.uk

57

ENTTEC is a technology company specializing in the design and manufacture of LED pixel lighting and control equipment. The company positions itself as a world leader in this niche, operating globally with an Australian origin. Their website reflects a professional and modern digital presence built on WordPress with WooCommerce for e-commerce capabilities. The technical infrastructure includes modern web technologies and tracking tools such as Google Tag Manager, indicating a mature digital marketing approach. Security posture is solid with HTTPS and security headers implemented, though explicit privacy and cookie policies are not clearly presented, which is a compliance gap. The WHOIS data for the domain is unavailable due to domain naming rule violations, which raises concerns about domain legitimacy and registration consistency. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in privacy and domain registration details.

A

A&A KG

ox-linz.at

56

OX Steaks & Grill Linz is a well-established hospitality business located in Pasching, Austria, offering a premium dining experience focused on steaks, grill dishes, sushi, brunch, and breakfast buffet. The website reflects a medium-sized restaurant with a strong local market position and a clear business model centered on dine-in services, online reservations, and gift voucher sales. The company is legally registered as A&A KG with transparent contact and legal information provided. Technically, the website is built on TYPO3 CMS with modern web technologies including jQuery, Google Analytics, and Google Tag Manager, ensuring a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some HTTP security headers could be improved. Privacy compliance is comprehensive with detailed GDPR-aligned policies and cookie management. Overall, the website is professional, trustworthy, and well-maintained, supporting the business's credibility and customer engagement.

G

Golfclub Gastein

golfclub-gastein.com

48

Golfclub Gastein is a well-established golf club located in Salzburg, Austria, with a history dating back to 2000. The club offers an 18-hole golf course, golf school, partner hotel bookings, tournaments, and related hospitality services. The website reflects a professional and consistent brand image targeting golf enthusiasts and tourists in the region. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and incident response information. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website is functional, secure, and compliant with GDPR, providing a positive user experience.

F

FRCI

frci.net

66

FRCI is a Mauritius-based IT consultancy specializing in Microsoft technologies, digital transformation, and training services. The company positions itself as a trusted partner enabling business success through people and technology, serving clients across multiple continents. Their key offerings include Microsoft licensing, project delivery, change management, technical support, business and digital solutions, and comprehensive IT training programs. The website reflects a professional and modern digital presence with clear navigation and relevant content targeting business clients seeking IT expertise. Technically, the website is built on the Umbraco CMS platform and leverages modern JavaScript libraries such as Swiper.js, Fancybox, GSAP, and jQuery. It uses Google Fonts and integrates Google Analytics for visitor tracking. The site is mobile-optimized with good design quality and user experience, though accessibility features are basic. The presence of a privacy policy is noted, but cookie consent mechanisms and detailed security policies are lacking. From a security perspective, the site uses HTTPS and employs email obfuscation to protect contact information. However, no explicit security headers were detected in the HTML content, and there is no published incident response or vulnerability disclosure information. The WHOIS data for the domain is missing or indicates the domain may be unregistered or expired, which raises concerns about domain legitimacy despite the professional website content. Overall, the website demonstrates a solid business and technical foundation but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

H

hoster.by

hoster.by

65

hoster.by is a Belarus-based technology company specializing in domain registration, web hosting, and cloud infrastructure services. Established in 2004, it offers a comprehensive platform for businesses to start and grow online, including free SSL certificates and promotional offers for domain purchases. The company targets businesses and individuals seeking reliable hosting and IT infrastructure solutions. The website demonstrates a solid technical foundation using Bitrix CMS and integrates multiple communication channels such as live chat and social media. Security posture is generally good with HTTPS and Let’s Encrypt SSL usage; however, the absence of explicit privacy and cookie policies indicates compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Computer-L.A.N. GmbH

lansoftware.de

51

Computer-L.A.N. GmbH operates LAN Software, a specialized software house based in Fulda, Germany, focusing on software solutions for education institutions, seminar houses, authorities, and group accommodations. Their offerings include cloud-based seminar management (LANcloud), house and academy management (AkademieManager), group house management (HausManager), and ERP and HCM solutions via Sage partnerships. The company positions itself as an experienced, regional provider with a strong focus on tailored business software and customer support including workshops and training. Technically, the website is built on WordPress with modern plugins and frameworks, including Yoast SEO, Bootstrap, and Borlabs Cookie for privacy compliance. The site is well-optimized for SEO and mobile devices, with moderate performance and good accessibility. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some HTTP security headers could be improved. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

I

Il Giornale d'Italia

ilgiornaleditalia.it

69

Il Giornale d'Italia is a national Italian news media outlet providing real-time news and video content covering politics, economy, culture, sports, and more. The website targets Italian-speaking audiences interested in comprehensive news coverage. It operates primarily on an advertising revenue model with a strong presence on major social media platforms. Technically, the site uses a mix of modern and legacy web technologies including jQuery, Bootstrap 3, and Google Analytics, indicating moderate digital maturity. The site is mobile responsive to a basic degree and implements cookie consent mechanisms to comply with GDPR. Security posture is good with HTTPS enforced and no major vulnerabilities detected, though some legacy libraries and lack of advanced security headers suggest room for improvement. Overall, the website is safe, professional, and trustworthy with moderate business credibility and good content quality.

C

Captury

captury.com

57

Captury is a technology company specializing in advanced markerless motion capture solutions that enable precise tracking of full-body, finger, and facial movements for multiple actors simultaneously. Their offerings include real-time processing and post-processing software, targeting industries such as 3D game development, VFX, virtual reality, live entertainment, in-game player tracking, and life sciences research. The company is positioned as a versatile and innovative player in the motion capture market, trusted by major clients like Airbus, Audi, and Rockstar Games. Technically, the website is built on WordPress and employs modern libraries such as jQuery, CSS3 Animate It, and Slick Carousel. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Hosting and domain registration are consistent with the company's European and US presence. No WAF or blocking mechanisms were detected, allowing full content access. From a security perspective, the site uses HTTPS with good SSL configuration but lacks DNSSEC and security headers. There is no visible security policy or incident response information, and no cookie consent mechanism is implemented, which may impact privacy compliance. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, Captury's website presents a professional and trustworthy digital presence with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen their security posture and regulatory adherence.

D

DARI Motion

darimotion.com

61

DARI Motion is a specialized healthcare technology company offering the world's only FDA-cleared markerless human motion analysis system. Their solution enables healthcare providers, wellness centers, and sports facilities to capture and analyze motion health data quickly and accurately, improving patient outcomes and athletic performance. The company has established a strong market position with patented technology and scientific validation, serving a medium-sized business footprint primarily in the United States. Technically, the website is built on WordPress hosted on WP Engine, leveraging modern libraries and SEO best practices, though performance is moderate and accessibility is basic. Security posture is adequate with HTTPS and domain protections but lacks DNSSEC and explicit security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Business credibility is high with clear contact information, trust signals, and professional content. Overall, the website is professional, trustworthy, and well-branded, with room for improvement in security and privacy practices.

Z

Zimmer MedizinSysteme GmbH

zimmer.de

48

Zimmer MedizinSysteme GmbH is a well-established German medical technology company with over 50 years of experience, specializing in physical therapy, diagnostics, and aesthetic medical devices. The company serves healthcare professionals worldwide, offering innovative products such as therapy devices, diagnostic systems, and cryotherapy solutions. Their market position is strong, supported by a professional website, active participation in industry events, and partnerships with educational institutions. Technically, the website is built on WordPress with modern JavaScript libraries and includes consent management for GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

H

Holzmann Medien GmbH & Co. KG

holzmann-medien.de

52

Holzmann Medien GmbH & Co. KG is a well-established German family-owned media publishing company founded in 1936. It specializes in economic and specialist media across sectors such as construction, cleaning, meat industry, craftsmanship, and hospitality. The company offers a broad portfolio including print publications, digital products, audio, video, events, and corporate publishing. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to industry professionals and entrepreneurs. Technically, the site is built on WordPress with modern plugins and frameworks, hosted likely by Deutsche Telekom, and includes a consent management platform for GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting Holzmann Medien's market position as a leading specialist publisher in Germany.