Security Directory

G

GC Rieber VivoMega

gcrieber-vivomega.com

57

GC Rieber VivoMega operates in the energy sector, specializing in oils and related products. The company appears to be a medium-sized business with a professional online presence, leveraging WordPress CMS and SEO tools to reach its target industrial audience. The website is well-structured with good design and mobile optimization, supporting a positive user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the active website and social media presence mitigate some risk. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy policies. Overall, the site is functional and professional but requires improvements in compliance and security transparency.

G

GC Rieber Fortuna AS

gcrieber-fortuna.no

53

GC Rieber Fortuna AS is a family-owned industrial investment company based in Norway, focusing on sustainable and profitable business opportunities. The company actively invests in early-stage companies through its GROWIT fund and in mature growth companies through SCALEIT, emphasizing active ownership and flexible ownership structures. The website reflects a professional corporate presence with clear communication of its investment focus and business philosophy. Technically, the site is built on WordPress with modern plugins and SEO optimizations, providing a good user experience with mobile responsiveness and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies could be improved. Overall, the domain and website present a trustworthy and credible business entity with no signs of malicious activity or content blocking.

G

GC Rieber Shipping

gcrieber-shipping.com

57

GC Rieber Shipping operates in the maritime transportation sector, providing shipping services likely targeted at business clients and partners. The company has an established online presence with a website built on WordPress, utilizing modern SEO tools such as Yoast SEO and analytics via Matomo, indicating a moderate level of digital maturity. The website design is professional and mobile-optimized, offering a good user experience and clear navigation. However, explicit business descriptions and detailed service information are limited in the provided content. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie policy and consent mechanism present but no visible privacy policy or terms of service. Overall, the website reflects a legitimate and moderately mature business with room for improvement in transparency and security documentation.

K

Kochava

kochava.com

51

Kochava is a leading technology company specializing in omnichannel measurement and attribution solutions for advertisers, publishers, and platforms. Their platform offers comprehensive services including multi-touch attribution, marketing mix modeling, fraud prevention, and data analytics to enable privacy-durable growth and optimize marketing performance. The website demonstrates a mature digital presence with professional design, clear navigation, and extensive content tailored to a B2B audience. Technically, the site is built on WordPress with modern tools such as Google Tag Manager and Localize.js, providing good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trustworthiness but does not detract significantly from the overall professional presentation. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, Kochava's website reflects a reputable enterprise with strong market positioning and technical maturity.

G

GC Rieber

gcrieber.no

59

GC Rieber is a well-established Norwegian industrial investment company with a history dating back to 1879. The company operates through multiple subsidiaries in sectors such as shipping, real estate, minerals, and nutritional products, emphasizing sustainability and innovation. The website reflects a professional corporate presence with multilingual support and a focus on clear communication of their business areas and values. Technically, the site is built on WordPress with modern plugins for SEO and multilingual content, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy page found. The absence of WHOIS data limits domain legitimacy verification, though the professional site and consistent branding support trustworthiness. Strategic recommendations include enhancing privacy disclosures, implementing security headers, and publishing incident response information to improve compliance and security posture.

G

GC Rieber Minerals

gcrieber-minerals.com

58

GC Rieber Minerals is a Norwegian-based company specializing in the supply and development of mineral and salt products for diverse industrial markets including road maintenance, aquaculture, food production, and agriculture. The company emphasizes sustainability and circular economy principles by innovating in waste-to-mineral processes. Their market position is supported by strong brand ownership of Norsal and Stradasalt, targeting B2B customers in Northern Europe. The website infrastructure is built on WordPress with modern SEO and GDPR compliance tools, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain legitimacy but is mitigated by professional site content and transparency. Overall, the company presents a trustworthy and professional online presence with room for technical security enhancements.

K

Kreativní podnikání s.r.o.

kreativnipodnikani.cz

41

Kreativní podnikání s.r.o. is a Czech-based small business specializing in creating modern, functional WordPress websites tailored for small and medium enterprises, craftsmen, and consultants. With over 8 years of experience and more than 75 completed projects, the company positions itself as a reliable local web design and maintenance service provider. Their offerings include graphic design, website creation, and ongoing maintenance, emphasizing user-friendly interfaces and SEO optimization. The website reflects a professional digital presence with clear branding and client references. Technically, the site is built on WordPress using WPBakery Page Builder and integrates GDPR-compliant cookie consent and Google Analytics for tracking. Security posture is solid with HTTPS and CAPTCHA on forms, though some security headers could be enhanced. Overall, the site is well-structured, mobile-optimized, and compliant with privacy regulations, supporting a trustworthy business image.

P

Planeta manželství

planetamanzelstvi.cz

43

Planeta manželství is a small Czech Republic based business specializing in custom designed wedding announcements and related printed and digital materials. The company offers personalized services that allow couples to express their unique style and personality through bespoke wedding stationery. The website reflects a niche market position with a focus on quality and customization, supported by a portfolio of past work and active social media presence. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, providing a good user experience and SEO optimization. Performance is moderate with good mobile responsiveness. Security posture is adequate with HTTPS enabled and secure forms, but lacks security headers and formal privacy and cookie policies, which are compliance gaps. Overall, the domain registration data aligns well with the business information, indicating legitimacy and consistency. Recommendations include adding privacy and cookie policies, implementing security headers, and publishing a security.txt file to improve security and compliance posture.

F

Fox plan, s.r.o.

foxplan.cz

39

Fox plan, s.r.o. is a Czech architectural firm specializing in designing a variety of building projects including residential, administrative, industrial, and hospitality sectors. The company emphasizes aesthetic and functional design, aiming to create meaningful spaces for clients. Their portfolio includes projects in multiple countries, reflecting a growing market presence. The website is built on WordPress with modern plugins, offering a professional and visually appealing presentation primarily in Czech with English support. However, the site lacks explicit privacy, cookie, and security policies, and does not provide direct contact information on the homepage, which could impact user trust and compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response details.

J

JUDr. Zuzana Staňková

advokat-prague.cz

38

The website advokat-prague.cz represents JUDr. Zuzana Staňková, a Czech legal professional offering a broad range of legal services including family law, civil law, commercial law, labor law, insolvency, and litigation. The site targets individuals and companies in the Czech Republic seeking legal counsel. The business is positioned as an independent legal practitioner with a focus on personalized client service. The website content is well-structured, professionally presented, and includes detailed service descriptions and contact information, supporting a high level of business credibility. Technically, the site is built on WordPress using WPBakery Page Builder and optimized with Yoast SEO and WP Rocket plugins. Hosting and DNS are managed via WEDOS and Cloudflare respectively, ensuring good performance and availability. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. No major performance issues were detected. From a security perspective, the site uses HTTPS and benefits from Cloudflare DNS, but lacks explicit security headers such as CSP or HSTS. No privacy or cookie policies are present, which is a compliance gap under GDPR. No incident response or vulnerability disclosure mechanisms are found. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment is low, with no signs of malicious content or blocking mechanisms. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure process to enhance trust and compliance.

K

Kongregace sester Matky Božího milosrdeství

kmbm.cz

52

The website www.kmbm.cz represents the Kongregace sester Matky Božího milosrdeství, a small non-profit religious congregation based in the Czech Republic. The organization focuses on spiritual services, promotion of Divine Mercy, and social support such as providing starter apartments for people in need. The site content is well-structured, professionally designed, and targets religious community members and individuals seeking spiritual guidance or social assistance. Technically, the website runs on WordPress with a modern theme and common plugins, including Google Analytics for visitor tracking. The site is mobile-optimized and loads with moderate performance. Security posture is adequate with HTTPS enabled, but lacks security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain legitimacy verification, though the website content and presentation suggest a trustworthy non-profit entity. Overall, the site is safe, free of adult or explicit content, and provides relevant information for its audience.

N

Nodal Exchange

nodalexchange.com

65

Nodal Exchange operates as a specialized derivatives exchange focused on power, natural gas, and environmental futures and options contracts in North America. It holds a leading market position by offering the largest set of locational power and environmental contracts, supporting over 1,000 power contracts and 120 environmental products. The exchange leverages its clearing house, Nodal Clear, to provide portfolio margining and risk management advantages to participants. The website is professionally designed, content-rich, and optimized for SEO and mobile use, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and security measures such as HTTPS and Google reCAPTCHA on forms. However, the absence of WHOIS registration data and lack of explicit security headers are areas for improvement. Overall, the security posture is strong with no visible vulnerabilities, but publishing formal security policies and incident response information would enhance trust. The business credibility is high, supported by press coverage and clear service offerings.

B

Bundesverband IT-Mittelstand e.V. (BITMi)

bitmi.de

65

The Bundesverband IT-Mittelstand e.V. (BITMi) is Germany's largest professional association exclusively representing medium-sized IT companies. The organization focuses on promoting digital sovereignty 'Made in Germany' and advocates for the interests of over 2,500 IT SMEs. Their business model centers on industry representation, certification services, events, and political lobbying. The website is professionally designed, content-rich, and well-structured, targeting IT companies and stakeholders in the German digital economy. Technically, the site runs on WordPress with modern plugins and frameworks, including Yoast SEO and Events Manager, ensuring good SEO and event management capabilities. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit privacy policies are missing. Overall, the site is trustworthy, credible, and serves as a key information and networking hub for the German IT SME sector.

P

Palla Media

pallamedia.com

52

Palla Media is a small Canadian media company specializing in publishing community magazines such as Dunbar Life, Kerrisdale Insider, and Steveston Insider. The company emphasizes connecting local communities and providing affordable advertising solutions for local businesses. Their website is built on WordPress and uses common plugins for sliders and social media integration. The site is visually professional with good navigation and mobile optimization. However, the absence of WHOIS data raises concerns about domain registration legitimacy. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Overall, the business appears credible and established locally, but domain registration ambiguity and privacy compliance gaps present risks.

R

RND s.r.o.

rndoc.cz

48

RND s.r.o. is a Czech-based company specializing in railway freight transport and logistics services. With over 20 years of experience, it offers tailored logistics solutions including railway freight forwarding, dispatching, and leasing of specialized railway freight wagons. The company targets businesses requiring reliable and efficient rail transport across European and Asian networks. The website reflects a professional and well-structured digital presence, leveraging WordPress with modern plugins and SEO optimizations. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers are missing and privacy policies are not explicitly presented. The absence of WHOIS data reduces domain trustworthiness, but the detailed business information and contact channels support legitimacy. Overall, the site is well-designed, content-rich, and suitable for its business audience.

R

Roudnické městské služby

bazenroudnice.cz

40

The website www.bazenroudnice.cz serves as the official online presence for the indoor swimming pool facility in Roudnice nad Labem, operated by Roudnické městské služby. It provides visitors with comprehensive information about the pool's facilities, operating hours, ticketing options, and current news updates. The target audience primarily includes local residents and visitors interested in swimming and wellness services. The business operates as a public municipal service, focusing on community wellness and recreational activities. Technically, the website is built on the WordPress CMS platform, utilizing common plugins such as WPBakery Page Builder, jQuery, Bootstrap, and various sliders for enhanced user experience. The site is mobile-optimized and presents a professional design with clear navigation. Performance is moderate, with room for improvement in SEO and accessibility features. From a security perspective, the site benefits from HTTPS encryption but lacks important security headers and publicly available security policies. There is no evidence of tracking or analytics scripts, indicating minimal user data collection. The absence of privacy and cookie policies suggests compliance gaps with GDPR and related regulations. No vulnerabilities or malicious content were detected. Overall, the website is legitimate and trustworthy, representing a municipal service with clear contact information and consistent branding. However, improvements in privacy compliance, security headers, and accessibility would enhance its security posture and regulatory adherence.

Techfood.cz is a Czech-language website focused on manufacturing operations, likely in the food technology sector. The site is built on WordPress and uses a variety of plugins including WPBakery Page Builder and Slider Revolution to enhance content presentation. The technical infrastructure is modern but lacks some advanced security headers and privacy compliance features. The absence of WHOIS data and contact information reduces the overall trustworthiness and business credibility of the site. No privacy or cookie policies were found, indicating potential compliance gaps. The website is accessible without WAF or security challenges, and content is safe for general audiences.

T

Techfood s.r.o.

automatizacevpotravinarstvi.cz

52

The website automatizacevpotravinarstvi.cz serves as the official platform for the 'Automatizace v potravinářství' conference, a specialized event focusing on automation in the food and beverage manufacturing sector in the Czech Republic. The organizing entity, Techfood s.r.o., is a small-sized company with a stable presence since 2013. The site provides detailed conference information, including program schedules, partner listings, registration forms, and contact details, targeting industry professionals interested in technological advancements in food production automation. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Slider Revolution, and Contact Form 7, with integration of Google reCAPTCHA for form security. The hosting and domain registration are managed by REG-WEDOS, a Czech provider, ensuring regional consistency. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. From a security perspective, the site employs HTTPS and basic spam protection but lacks advanced security headers and published security policies or incident response contacts. Privacy compliance is minimal, with no dedicated privacy policy or terms of service pages, though a cookie consent banner is present. No vulnerabilities or malicious content were detected. Overall, the website is professional and trustworthy for its niche audience but would benefit from enhanced privacy documentation, security policies, and accessibility improvements to strengthen compliance and user trust.

G

GC Rieber Minerals

gcrieber-salt.com

58

GC Rieber Minerals is a Norwegian-based company specializing in the supply and development of mineral and salt products for diverse markets including road maintenance, fishery, aquaculture, industrial applications, food production, and agriculture. The company emphasizes sustainability and circular economy principles, positioning itself as a partner for businesses seeking innovative and environmentally responsible mineral solutions. Their portfolio includes well-known brands such as Norsal and Stradasalt, which cater to premium salt products and de-icing solutions respectively. The company operates across multiple Nordic countries with detailed contact points and a professional online presence. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and WPBakery Page Builder, with integrations for GDPR compliance and map services. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain is missing, which raises concerns about domain registration transparency and legitimacy. Despite this, the website content and branding are consistent and professional, mitigating some risk. Privacy and cookie policies are comprehensive and GDPR compliant, supporting the company’s commitment to data protection. Overall, GC Rieber Minerals presents a credible and professional business front with a strong focus on sustainability and customer engagement. Security and compliance practices are good but could benefit from enhanced transparency in domain registration and additional security headers.

N

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o.

nanlitomerice.cz

44

N+N – Konstrukce a dopravní stavby Litoměřice, s.r.o. is a Czech Republic-based medium-sized company specializing in construction and infrastructure projects, particularly railway construction, bridge and wall structures, and civil engineering works. Established in 2001, the company has a solid market presence and offers comprehensive project documentation and construction services. The website reflects a professional and consistent brand image, targeting construction industry clients and infrastructure developers. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder, Slider Revolution, and Complianz GDPR for compliance. It integrates Google Tag Manager and Google reCAPTCHA for analytics and security. The hosting is provided by cesky-hosting.eu, and the site shows moderate performance with good mobile optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but it lacks explicit security headers and uses an outdated jQuery version, which could pose risks. No exposed sensitive data or vulnerabilities were detected in the HTML content. Privacy compliance is strong with a comprehensive GDPR policy and cookie management. Overall, the website is trustworthy and professionally maintained, with recommendations to update JavaScript libraries and enhance security headers to improve the security posture further.

Triagonale is a small, professional design studio based in Germany specializing in product and communication design. Their services include product design, editorial design, web design, and spatial design, targeting businesses and organizations seeking tailored design solutions. The website is well-structured, visually appealing, and demonstrates a strong commitment to GDPR compliance with comprehensive privacy and cookie policies. Technically, the site is built on WordPress with modern plugins and shows good mobile optimization and SEO practices. Security posture is solid with HTTPS and email obfuscation, though additional security headers and explicit security policies could enhance protection. Overall, the site reflects a trustworthy and professional business presence with room for technical and security improvements.

O

OVRLAB GmbH

ovrlab.de

44

OVRLAB GmbH is a pioneering joint-venture network of XR experts in Germany, specializing in software development, hardware provisioning, and consulting services focused on virtual and mixed reality technologies. The company targets B2B clients seeking innovative XR solutions and digital transformation support. Their market position is strong within the German XR scene, supported by partnerships with regional technology firms. Technically, the website is built on WordPress using WPBakery and Yoast SEO, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

P

PT Jakarta International Expo

jiexpo.com

51

Jakarta International Expo (JIEXPO) is a large-scale event venue provider based in Indonesia, offering convention, exhibition, and theatre facilities. The website presents a professional and consistent brand image targeting event organizers and exhibitors in the hospitality sector. The technical infrastructure is built on WordPress with modern plugins and tracking tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies. WHOIS data is incomplete, which slightly impacts trustworthiness but the website content and branding support legitimacy. Overall, the site is functional and well-structured but could improve privacy compliance and security transparency.

A

ARGE Villacher Sozialadvent

villachersozialadvent.at

46

The Villacher Sozialadvent website represents a regional non-profit volunteer organization in Austria that coordinates social and charity events during the Advent season. The organization collaborates with local clubs and businesses to present culinary delights and event highlights aimed at community engagement and fundraising for good causes. The website is well-structured, primarily in German, and provides clear information about the organization, upcoming events, sponsors, and contact details. The presence of social media links, especially Facebook, supports community interaction and outreach. Technically, the website is built on WordPress 5.3.20 with common plugins such as WPBakery Page Builder and Google Calendar Events. It uses modern web technologies including jQuery and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile-optimized and has good SEO practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML source. However, it lacks important security headers like Content-Security-Policy and X-Frame-Options, which could improve protection against common web attacks. No vulnerability disclosures or incident response contacts are provided. Privacy compliance is partial; a GDPR privacy policy page exists, but no cookie consent mechanism is implemented, which is a compliance gap. Overall, the site is trustworthy and professional in appearance and content, but the absence of WHOIS data reduces domain registration transparency and trust. Strategic recommendations include implementing security headers, adding a cookie consent banner, maintaining up-to-date software, and considering a security.txt file for vulnerability reporting. These steps will enhance security posture, compliance, and user trust.

H

Hardware Association

hardwareassociation.ie

43

Hardware Association Ireland is a well-established industry association serving the Irish hardware retail sector. With over 400 members and 87 years of operation, it provides membership services, business support, market intelligence, training, and networking events. The website is professionally designed using WordPress and integrates e-commerce and event management functionalities. The technical infrastructure is modern but could benefit from enhanced security headers and DNSSEC implementation. Security posture is good with HTTPS enabled and no exposed sensitive data, though explicit security policies and incident response contacts are absent. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is trustworthy and serves its target audience effectively.

D

Dream Technologies Group doo

jadranje.rs

44

Jadranje.rs is a professionally developed website offering unique sailing adventure travel experiences in the Adriatic region. The business focuses on providing immersive sailing vacations combining adventure, relaxation, and cultural experiences. The website is built on WordPress with modern tools such as WPBakery Page Builder and integrates analytics and marketing technologies like Google Analytics and Facebook Pixel. Contact information is clearly presented, enhancing business credibility. However, the site lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the website is well-positioned in its niche with good content quality and user experience but should improve privacy compliance and security practices.

S

SHIP Music Festival

ship.hr

47

SHIP Music Festival is a Croatian-based event organizer specializing in a showcase music festival and conference scheduled for 2025 in Šibenik, Croatia. The website presents a professional and visually appealing platform targeting music fans and industry professionals, offering event information, schedules, and ticket sales via a trusted third-party platform. The technical infrastructure is built on WordPress with a commercial theme and page builder, hosted by a Croatian hosting provider, reflecting a modern and maintainable digital presence. Security posture is strong with HTTPS and standard security headers implemented, though privacy compliance could be improved by adding cookie consent and detailed GDPR policies. Overall, the site is trustworthy and well-positioned within its niche market.

U

Umjetnička organizacija Elemental

elemental.hr

38

Elemental.hr is the official website of the Croatian music band 'Elemental', providing comprehensive information about their music, concerts, news, and merchandise. The site targets fans and music enthusiasts, offering a well-structured platform for engagement and sales. The business operates primarily in the media sector with a small company size and a history dating back over a decade. Technically, the website is built on WordPress with modern plugins and integrations such as Google Analytics and Mailchimp, ensuring a good digital presence and marketing capability. Security posture is solid with HTTPS and secure forms, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable source for fans and customers.

C

ConnectIN

connectinapartments.com

48

ConnectIN is a small hospitality business offering deluxe rooms and apartments near the Jahorina ski resort in Bosnia and Herzegovina. The website presents a boutique luxury accommodation service with various themed rooms and amenities such as a lobby bar, ski storage, free parking, and breakfast. The business targets tourists seeking a high-quality, characterful stay near Jahorina. Technically, the website is built on WordPress using WPBakery Page Builder, with modern technologies like Font Awesome and jQuery. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with privacy and cookie policies present, though no active cookie consent mechanism is implemented. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and safe for general audiences.

M

MemberSuite, Inc.

membersuite.com

53

MemberSuite, Inc. is a provider of configurable association management software (AMS) and event technology solutions tailored for non-profit organizations and associations. The company positions itself as a premier software provider focused on streamlining processes, centralizing data, and engaging members through a highly configurable SaaS platform. Their offerings include AMS software, implementation, data migration, customer training, success, support, and advisory services. The website demonstrates a professional and modern digital presence with strong SEO and user experience features. Technically, the website is built on WordPress CMS with a robust tech stack including Google Analytics, Facebook Pixel, HubSpot, and Visual Website Optimizer for marketing and analytics. The site is mobile optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks some explicit security headers and published security policies. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism aligned with GDPR. The absence of WHOIS data limits domain trust verification, but the professional website content, business information, and customer testimonials support legitimacy. No critical security vulnerabilities were detected in the visible content. Overall, the site reflects a mature business with a solid digital footprint but could improve transparency in security policies and incident response. Strategic recommendations include implementing comprehensive security headers, publishing a security policy and incident response contacts, adding vulnerability disclosure mechanisms, and continuing to monitor third-party scripts for security risks.

M

Marc Navarro

marcnavarro.com

48

Marc Navarro is a specialized consultancy focused on coworking and flexible workspace solutions, offering services such as space creation, business analysis, operations optimization, sector research, and policy design. The company targets coworking space owners, landlords, corporations, hotels, and public entities, primarily operating in Spain with an international footprint. The website is built on WordPress with a professional design and good mobile optimization, though it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Contact is mainly via forms and scheduling links, with no direct emails or phone numbers publicly listed. Overall, the site presents a credible and professional business presence with room for compliance and security enhancements.

4

4toStay GmbH

chronuu.de

53

Chronuu is a German-based digital platform specializing in estate and legacy management, operated by 4toStay GmbH. The company offers a secure, user-friendly service that enables individuals to manage their digital and material estate, document their life story, and provide access to heirs in a compliant and encrypted environment. The platform is positioned as a niche provider in the German market, leveraging modern web technologies and mobile app availability to reach its target audience. Technically, the website is built on WordPress with a robust tech stack including Bootstrap, Slider Revolution, and Matomo analytics, hosted behind Cloudflare DNS services. Security posture is strong with HTTPS enforced, data stored in Germany, and no provider access to user data, complemented by GDPR-compliant privacy and cookie policies. No critical vulnerabilities or suspicious patterns were detected, and the site demonstrates good design, navigation, and content quality. Overall, Chronuu presents a trustworthy and professional digital service with room for improvement in security headers and incident response transparency.

M

Mensch Digital

mensch.rs

43

Mensch Digital is a Serbian-based digital agency specializing in web development, graphic design, 3D design, live streaming, multimedia production, and digital security services. Established in 2016, the company has built a solid market presence with clients across multiple continents and countries, emphasizing innovation, creativity, and quality in digital solutions. Their website reflects a professional and modern digital infrastructure built on WordPress with a strong focus on user experience and mobile optimization. Security posture is good with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, Mensch Digital demonstrates a credible and trustworthy business with a well-maintained online presence.

F

Flotation Energy

flotationenergy.com

69

Flotation Energy is a specialized global offshore wind developer focusing on pioneering floating wind projects in deep waters. The company aims to accelerate the transition to renewable energy by delivering large-scale offshore wind farms, with a strong track record in project development, consenting, construction, and operations. Their market position is that of a leader at the forefront of floating offshore wind technology, targeting international markets with a medium-sized organizational footprint. Technically, the website is built on WordPress with modern optimization tools such as NitroPack and uses Google Analytics for tracking. The site is well-structured, mobile-optimized, and performs well, reflecting a mature digital infrastructure. However, some security best practices like DNSSEC and security headers could be improved. From a security perspective, the site uses HTTPS with a secure domain registration status but lacks published security policies or incident response contacts. Cookie consent is implemented, indicating basic GDPR compliance, but privacy and terms of service pages are missing, which could be improved for better compliance and user trust. Overall, the website presents a professional and trustworthy image with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and improving transparency around incident response and data protection roles.

N

NUTRICIA

enteraledomicile.fr

63

The website 'Entérale à domicile' serves as an informational and support platform dedicated to patients undergoing enteral nutrition at home, their caregivers, and healthcare providers. It is affiliated with Nutricia, a recognized nutrition company, and provides educational content, practical advice, video testimonials, and specialized resources for children and polyhandicap patients. The site targets the French healthcare market and aims to facilitate better management of enteral nutrition in a home setting. Technically, the website is built on WordPress, utilizing modern libraries such as jQuery, Google Tag Manager, Google Analytics, and reCAPTCHA for security and analytics. The site is mobile-optimized with good SEO practices and structured data for enhanced search engine visibility. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analysis. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website presents a professional and trustworthy digital presence with a strong focus on patient education and support. The absence of WHOIS data limits domain registration insights, but the affiliation with Nutricia and the quality of content support a high legitimacy score. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the site's security posture and user trust.

C

CSC crewing

csc-crewing.com

53

CSC Crewing is a well-established certified manning agency specializing in crew management, recruitment, and payroll services for the energy, maritime, and project staffing sectors. With over 27 years of history in maritime manning and a membership in the Oceanwide group, the company holds a strong market position in the Netherlands and internationally. Their website reflects a professional and business-focused approach, targeting companies requiring qualified personnel for offshore and onshore operations. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder and Yoast SEO, ensuring good SEO and user experience. The site is mobile-optimized, fast-loading, and integrates Google Tag Manager and Google reCAPTCHA for analytics and security. However, some security best practices like DNSSEC and security headers are missing, and there is no visible cookie consent mechanism. The security posture is solid with HTTPS enforced and form protections in place, but improvements are recommended in DNS security and HTTP headers. The WHOIS data aligns well with the business claims, showing a consistent and legitimate domain registration without privacy protection, which supports transparency. Overall, CSC Crewing presents a trustworthy and professional online presence with moderate to high digital maturity. Strategic enhancements in privacy compliance and security headers would further strengthen their posture and compliance with evolving regulations.

M

Møllerodden AS

mollerodden.no

56

Møllerodden AS is a well-established Norwegian company specializing in quality lifting equipment for onshore and offshore applications. Founded in 1960, the company offers a broad range of products including blocks, sheaves, hooks, and swivels, with a focus on custom solutions and certified load testing. Their market position is strong within the energy and transportation sectors, supported by recognized certifications such as Achilles and DNVGL. The website reflects a professional business with clear contact information and product offerings, targeting industrial clients globally. Technically, the website is built on WordPress with WooCommerce, utilizing modern plugins like WPBakery Page Builder and Slider Revolution. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks advanced security headers and formal security policies. Privacy compliance is a notable gap, with no visible privacy or cookie policies or consent mechanisms, which could pose regulatory risks especially under GDPR. The absence of a vulnerability disclosure policy and incident response contacts also limits transparency and security readiness. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security governance. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing a vulnerability disclosure policy, and improving accessibility and SEO. These steps will strengthen compliance, security posture, and user trust.

Jítravský Dvorec is a Czech hospitality business offering a wide range of services including apartment-hotel accommodation, wellness, restaurant and pub dining, equestrian facilities, conference rooms, and a bakery. The company targets tourists, families, corporate clients, and wellness seekers, positioning itself as a regional provider of comprehensive leisure and event services. The website is built on WordPress with modern plugins and technologies, featuring good design, mobile optimization, and clear navigation. Security posture is strong with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data limits full trust assessment of the domain registration, but the website content and contact information indicate a legitimate business. Strategic recommendations include improving security headers, adding vulnerability disclosure mechanisms, and enhancing accessibility compliance.

M

Montenegro Chess Federation and the European Chess Union

eycc25.me

46

The European Youth Chess Championship 2025 website serves as the official online presence for a major youth chess event organized by the Montenegro Chess Federation and the European Chess Union. It provides comprehensive event details including registration, official information, venue, accommodation, travel, rules, prizes, and contact pages. The site targets youth chess players and national federations across Europe, positioning itself as a key resource for participants and stakeholders. Technically, the site is built on WordPress with popular plugins like Slider Revolution and WPBakery Page Builder, delivering a modern and responsive user experience with good SEO practices. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic with a privacy policy and cookie consent banner present, but lacks detailed GDPR compliance indicators or terms of service. Overall, the site is professional, trustworthy, and well-aligned with its event purpose, though it could benefit from enhanced security and compliance transparency.

E

European Chess Union

eccc2025.com

43

The European Chess Club Cup 2025 website serves as the official information portal for the 40th European Chess Club Cup and the 29th European Women’s Chess Club Cup, scheduled in Rhodes, Greece. It targets European chess federations, clubs, players, and enthusiasts by providing event details, prize fund information, live results, news, and media content. The site is affiliated with the European Chess Union and uses official branding and external links to ECU resources, reinforcing its legitimacy and market position within the chess sports event domain. Technically, the site is built on WordPress with common plugins and libraries, including WPBakery Page Builder and Google Analytics, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. The domain WHOIS data shows an unusual future creation date, which slightly undermines trust but does not negate the site's apparent legitimacy. Overall, the website is professional, functional, and trustworthy for its purpose but would benefit from enhanced privacy and security disclosures.

V

VWI Verband Deutscher Wirtschaftsingenieure e.V.

vwi.org

48

The VWI Verband Deutscher Wirtschaftsingenieure e.V. is a well-established professional association representing Wirtschaftsingenieure (industrial engineers) in the German-speaking region. With over 6,000 members, 20 regional groups, and 40 university groups, the association focuses on personal networking, quality education, and political advocacy for its members. The website serves as an information hub for members and interested parties, presenting a professional and consistent brand image. Technically, the website is built on WordPress, utilizing popular plugins such as LayerSlider and WPBakery Page Builder. It employs Matomo for analytics and Cookiebot for cookie consent management, reflecting a moderate level of digital maturity and compliance with privacy regulations. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent with granular user controls. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a long-standing domain registration consistent with the association's history, enhancing trustworthiness. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements in security headers, explicit privacy and security policies, and clearer contact information would further strengthen its posture.

H

Hvozdnice

hvozdnice.eu

42

Hvozdnice.eu is the official municipal website for the village of Hvozdnice in the Czech Republic. It serves as a community portal providing news updates, official documents, contact information, and public service announcements relevant to residents and visitors. The website is positioned as a local government informational resource with a focus on transparency and community engagement. The content is primarily in Czech and includes sections on urban planning, local governance, cultural events, and infrastructure projects. Technically, the site is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, indicating a moderate level of digital maturity. The site is mobile responsive and optimized for search engines, though accessibility features are basic. Security posture is good with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response information. Overall, the website is trustworthy and professionally maintained, suitable for its purpose as a municipal information portal.

W

WVRC Digital

wvrcdigital.com

51

WVRC Digital is a small digital marketing agency founded in 2021 and operating as a subsidiary of WVRC Media Company. The company specializes in a broad range of digital marketing services including consumer targeting, website development, video advertising, social media management, email marketing, SEO, pay per click, OTT media, and website chat solutions. Their target audience consists primarily of businesses seeking to establish or grow their digital presence. The website is professionally designed, consistent in branding, and provides clear service descriptions and client testimonials, positioning WVRC Digital as a credible regional player in the digital marketing sector. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, hosted on A2 Hosting. It employs modern web technologies including Google Fonts, Font Awesome, Vimeo embeds, and Google Maps API. The site is mobile optimized and performs moderately well, though accessibility and SEO optimizations are basic. Cookie consent is implemented via CookieYes, and Google Analytics is used for user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain status clientTransferProhibited to prevent unauthorized domain transfers. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content, representing areas for improvement. No privacy policy or terms of service pages were found, which are important for compliance and user trust. Tracking pixels from ZoomInfo and Pearl Diver indicate moderate user tracking. Overall, WVRC Digital presents a professional and credible digital marketing service with a solid technical foundation but requires enhancements in privacy compliance and security best practices to strengthen its security posture and regulatory adherence.

D

Dobráci s.r.o.

dobraci.sk

60

Dobráci s.r.o. is a specialized Slovak company focused on distributing firefighting vehicles and equipment primarily for volunteer firefighters in Slovakia and Czechia. The company offers comprehensive services including vehicle sales, customization, equipment installation, training, and after-sales support. Their market position is niche but well-established with over 16 years of experience. The website serves both informational and e-commerce purposes, targeting firefighting units and related organizations. Technically, the site is built on WordPress with a modern tech stack including WPBakery, Slider Revolution, and various UI libraries. Performance and mobile optimization are adequate, though accessibility is basic. Security posture is moderate with HTTPS enabled but lacking some important security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with phone numbers and active social media channels, enhancing business credibility. Overall, the site is professional and trustworthy but could improve in privacy and security compliance.

S

Soltau Therme

soltau-therme-online.de

69

Soltau Therme is a German regional wellness and leisure center offering a variety of services including sole baths, sauna, wellness treatments, swimming pools, and children's activities. The website reflects a well-structured and professionally maintained WordPress platform with modern plugins such as Yoast SEO, Events Manager, and Captcha EU, indicating a good level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content for its target audience. Security posture is solid with HTTPS enforced and captcha protection on forms, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Business credibility is supported by clear contact information and social media presence. Overall, the website is trustworthy and suitable for its hospitality sector audience.

E

EGroupware

egroupware.org

64

EGroupware is a German-based software company specializing in online collaboration and groupware solutions. Their offerings include a comprehensive suite of business applications such as calendar, contacts, tasks, project management, timesheets, and e-invoicing. The company targets businesses and organizations seeking efficient collaboration tools, providing both SaaS and on-premises deployment options. The website reflects a mature market position with a focus on privacy and German hosting standards. Technically, the website is built on WordPress with modern plugins and frameworks, ensuring good performance, mobile responsiveness, and SEO optimization. The use of Borlabs Cookie for consent management and WPML for multilingual support indicates a commitment to privacy and international reach. The site employs HTTPS with strong security headers, contributing to a robust security posture. Security-wise, while the site demonstrates good practices such as HTTPS enforcement and cookie consent, it lacks a publicly visible security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is privacy protected, which is typical for this business type and does not detract from legitimacy. Overall, EGroupware presents a professional, trustworthy, and secure online presence suitable for its business model. Strategic improvements could include publishing a dedicated security policy and incident response contacts to enhance transparency and trust.

L

Lukáš Pavelec

lukaspavelec.cz

52

Lukáš Pavelec is a seasoned web designer and UX specialist based in the Czech Republic, offering professional web design and user experience services with over 14 years of experience and a portfolio exceeding 250 projects. The website showcases a well-structured, visually appealing, and mobile-optimized WordPress-based platform, leveraging popular plugins such as Yoast SEO, Contact Form 7, and Google Analytics for enhanced functionality and tracking. Security measures include HTTPS enforcement and Google reCAPTCHA integration on the contact form, although explicit security headers and privacy policies are absent, indicating areas for improvement. Overall, the site presents a credible and professional business presence with clear contact information and a strong portfolio, but lacks formal privacy and cookie compliance documentation.

A

Arcibiskupství olomoucké

ado.cz

56

Arcibiskupství olomoucké is the official website of the Olomouc archdiocese, a religious non-profit organization serving the Catholic community in the Czech Republic. The site provides comprehensive information about the archdiocese's structure, events, pastoral activities, and spiritual resources. It targets parishioners, clergy, and the general public interested in the church's activities in the region. The website is well-branded, consistent, and offers clear navigation and relevant content.

The website www.loretarumburk.cz serves as the official online presence for the Loreto Chapel in Rumburk, a significant Baroque cultural and religious site in northern Bohemia, Czech Republic. It provides detailed information about the chapel's history, visitor services including tours, exhibitions, and religious ceremonies, targeting families, tourists, and pilgrims. The site is managed by the Roman Catholic Parish Rumburk and offers multilingual content to accommodate international visitors. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Slider Revolution and WPBakery Page Builder. It employs HTTPS for secure communication and integrates Google Analytics for visitor tracking. The site demonstrates moderate performance and good mobile optimization but lacks advanced security headers and privacy compliance mechanisms. From a security perspective, the site has a good baseline with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, it lacks privacy and cookie policies, which are critical for GDPR compliance. There is no evidence of an incident response policy or vulnerability disclosure mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is a trustworthy and professional cultural heritage portal with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.