Security Directory

F

Fitmin.cz

fitmin.cz

55

Fitmin.cz is a Czech-based e-commerce business specializing in manufacturing and retailing high-quality pet food and accessories for dogs, cats, horses, and rodents. The company emphasizes fresh ingredients sourced from the Orlické Mountains region and targets pet owners primarily in the Czech Republic. The website is professionally designed with clear navigation and a comprehensive product catalog, including loyalty programs and promotional offers. Technically, the site leverages modern e-commerce technologies, including the Shoptet platform, Google Analytics, Microsoft Clarity, and Facebook SDK, ensuring a robust digital presence. Security measures such as HTTPS and security headers are properly implemented, though the site lacks a dedicated security policy or incident response contact. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data limits domain legitimacy verification, posing a moderate risk. Overall, Fitmin.cz presents a trustworthy and professional online retail platform with room for improvement in transparency around security and incident response.

K

KEDGE Business School

kedge.edu

68

KEDGE Business School is a prominent French business and management school with campuses in Marseille, Bordeaux, Paris, and Toulon. It offers a range of academic programs including bachelor, master, and specialized master's degrees targeting students, professionals, companies, alumni, and candidates. The school holds triple accreditation (AACSB, EQUIS, AMBA), reinforcing its market position and reputation in higher education. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with its educational mission. Technically, the site employs modern analytics and marketing tools such as Google Tag Manager, Hotjar, Kameleoon, and Plausible Analytics, integrated with a GDPR-compliant cookie consent mechanism via OneTrust. Security posture is strong with HTTPS enforced and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response information. WHOIS data aligns well with the business claims, showing transparency and legitimacy. Overall, the website is professional, secure, and compliant, supporting KEDGE's credibility as a leading educational institution.

K

Kindermissionswerk Die Sternsinger e.V.

sternsinger.de

54

Kindermissionswerk Die Sternsinger e.V. operates a professional and well-established German non-profit website dedicated to supporting children worldwide through fundraising, educational materials, and awareness campaigns. The organization holds recognized certifications such as the DZI Spendensiegel, enhancing its credibility and trustworthiness. The website targets a broad audience including donors, schools, and children, providing clear donation pathways and educational content. Technically, the site is built on TYPO3 CMS with modern web technologies, good SEO, and mobile optimization, though some security header enhancements could be made. The security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies or incident response contacts. Privacy compliance is strong with GDPR-aligned cookie consent and privacy policies. Overall, the site presents a trustworthy and professional digital presence for a charitable organization.

K

Katholische Kirche

akademie-bistum-aachen.de

57

The Bischöfliche Akademie des Bistums Aachen is a well-established educational and cultural institution affiliated with the Catholic Church in Germany. It offers a broad range of workshops, seminars, and events focused on politics, society, theology, ethics, culture, and digital topics, targeting a diverse audience interested in societal discourse and faith-based dialogue. The institution also provides facilities for conferences and guest accommodations, supporting its educational mission. Technically, the website is built on the Alkacon Mercury CMS platform, employs modern web technologies, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks publicly available security policies or incident response contacts, which could be improved. Overall, the domain registration and hosting align with the institution's identity, indicating legitimacy and trustworthiness.

U

Utopia

utopia-lueneburg.de

41

Utopia is a social and sustainable startup incubator and co-working center based in Lüneburg, Germany. It offers a variety of services including co-working spaces, startup incubation, maker spaces, event rooms, and community events. The organization targets freelancers, entrepreneurs, and startups seeking a collaborative and inspiring environment. The website reflects a well-established local business with a strong partner and sponsor network, emphasizing community and sustainability. Technically, the site is built on WordPress with common plugins for SEO and contact forms, showing moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-positioned in its niche.

S

Sparkasse Lüneburg

sparkasse-lueneburg.de

70

Sparkasse Lüneburg is a regional financial institution based in Germany, providing a broad range of banking and financial services to private and corporate customers. The website serves as a comprehensive online banking portal offering services such as account management, loans, credit cards, investments, insurance, and real estate services. The bank positions itself as a trusted local partner with a strong emphasis on customer service and accessibility. The site is well-structured to cater to different customer segments with clear navigation and dedicated sections for private and business clients. Technically, the website is built on a modern CMS platform, likely Adobe Experience Manager, and employs standard web technologies including JavaScript and CSS. It demonstrates good mobile optimization, accessibility features, and SEO practices. The site uses HTTPS and includes cookie consent mechanisms compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses secure forms, and has a cookie consent banner indicating awareness of privacy regulations. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website is professional, trustworthy, and compliant with relevant privacy laws. It effectively supports the bank's business model and customer engagement strategies. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

A

Ausbildungsverbund Lüneburg e.V.

xn--al-yka.de

43

Ausbildungsverbund Lüneburg e.V. is a regional non-profit organization dedicated to coordinating apprenticeship training for young people in the Lüneburg area of Germany. The organization collaborates with numerous partner companies to offer up to 30 apprenticeship positions annually, providing services such as candidate pre-selection, apprentice support, and coordination with vocational schools and chambers. Their website reflects a professional and consistent brand image, targeting both prospective apprentices and companies seeking to train new talent. Technically, the website employs modern web technologies including JavaScript libraries like Swiper.js and integrates Google Analytics and Tag Manager for tracking, while maintaining GDPR compliance through cookie consent mechanisms. Security posture is adequate with HTTPS enforced and IP anonymization in analytics, though there is room for improvement in implementing security headers and publishing explicit security policies. Overall, the website is accessible, well-structured, and trustworthy, supporting the organization's mission effectively.

S

SIHOT Hotel Management Software

sihot.com

66

SIHOT Hotel Management Software is an established provider of hotel management software solutions, founded in 2002 and targeting the hospitality industry. The company offers tailored software to cover all hotel processes, positioning itself as a specialized and experienced player in the hotel management software market. The website reflects a professional and consistent brand image with a focus on business clients in the hospitality sector. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a modern CMS infrastructure with good SEO practices. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the domain registration data supports legitimacy and trustworthiness, with a domain age consistent with the business history. Strategic improvements in privacy compliance and security best practices would enhance the company's digital trust and regulatory adherence.

Netsite.app is a professional control panel platform operated by Netsite A/S, a Danish company specializing in domain, DNS, email, and website management services. The website serves as a login portal for customers to access and manage their digital assets. The business is positioned as a niche technology service provider with a clear focus on domain and hosting management. The platform targets existing Netsite customers requiring centralized control over their domains and hosting services. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript. The design is professional and mobile-optimized with a clear and user-friendly login interface. However, the site lacks advanced technical features such as structured data, Open Graph metadata, and visible security headers. Performance appears moderate with no evident technical debt but opportunities exist for improved accessibility and SEO. From a security perspective, the site uses secure password input fields but lacks explicit security headers and documented security policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. The absence of privacy and cookie policies indicates a gap in GDPR compliance, which is critical given the nature of the services offered. Overall, the website is trustworthy and professionally presented but would benefit from enhanced security practices, privacy compliance, and transparency measures. Strategic improvements in these areas will strengthen the platform's security posture and regulatory adherence.

N

Netsite A/S

netsite.dk

63

Netsite A/S is a Danish hosting provider established in 1998, specializing in domain registration, web hosting, DNS services, and email hosting with a strong focus on the Danish market. The company emphasizes stability, security, and customer satisfaction, offering products such as domain monitoring, WordPress hosting, and portfolio management. Their website reflects a professional and trustworthy business with clear contact channels and comprehensive service descriptions. Technically, the site uses modern web technologies including Bootstrap and Font Awesome, with responsive design and accessibility features ensuring a positive user experience across devices. Security posture is solid with HTTPS enforced, secure forms, and privacy-respecting cookie practices, although explicit security policies and incident response information are not published. The absence of WHOIS data limits transparency but does not detract significantly from the overall legitimacy. Strategic recommendations include publishing detailed security and incident response policies and enhancing WHOIS transparency to improve trust further.

P

Peleman.cz | Vazba dokumentů

peleman.cz

54

The website www.peleman.cz is hosted on the Wix platform and uses standard Wix technologies including JavaScript polyfills and LinkedIn Insight tracking for marketing analytics. The site content is accessible without any WAF or security challenge blocking access. However, the website lacks visible business information, contact details, privacy policies, and terms of service, which limits its transparency and trustworthiness. The absence of WHOIS data suggests domain privacy protection or unregistered status, which adds a moderate risk factor. The technical infrastructure is typical for a Wix site but lacks advanced security headers and compliance indicators. Overall, the site appears to be a small business or personal site with minimal content and limited digital maturity.

H

hRAJsi!

hraj-si.com

61

The website hraj-si.com represents a small Czech business focused on providing children's recreational and educational activities including sports camps, weekend events, birthday parties, and school programs. The business targets families and children primarily in Prague, offering a variety of engaging programs such as climbing, rugby, skating, swimming, and art workshops. The domain age and registration details align well with the business's operational timeline, supporting legitimacy and trustworthiness. Technically, the site is built on Drupal 11 CMS with a custom theme and uses JavaScript for dynamic UI elements. The site is mobile-optimized and accessible, with a moderate performance profile. However, there is no evidence of advanced analytics or tracking tools, and SEO optimization is basic. The hosting provider is likely Forpsi based on the nameservers. From a security perspective, the site uses domain status locks to prevent unauthorized transfers and updates, but lacks DNSSEC and visible security headers, which are recommended for improved security posture. No privacy or cookie policies are published, indicating a gap in compliance with GDPR and related regulations. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional, professional, and safe for its target audience but would benefit from enhanced security measures and privacy compliance documentation to improve trust and regulatory adherence.

E

EDITEL

editel.cz

69

EDITEL is a technology company specializing in Electronic Data Interchange (EDI) solutions and digital transformation services, primarily targeting businesses seeking to automate data exchange and optimize supply chains. The website presents a professional image with consistent branding and a clear focus on B2B services in the Czech Republic. The technical infrastructure is based on the TYPO3 CMS platform, integrating modern tools such as Google Tag Manager, Cookiebot for cookie consent, and reCAPTCHA for bot protection, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and consent mechanisms in place, but lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which should be addressed to improve trust. Overall, the website is functional, business-oriented, and safe for general audiences.

W

Wilde Ganzen

wildeganzen.nl

72

Wilde Ganzen is a Dutch non-profit organization dedicated to fighting poverty worldwide by supporting local community projects. Their website reflects a mature digital presence with clear branding, comprehensive project information, and secure donation mechanisms. The organization targets donors and partners interested in contributing to sustainable development themes such as education, healthcare, and environmental sustainability. Technically, the site is built on WordPress with modern optimization and analytics tools, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and consent-based tracking, though a formal security policy and incident response details are not publicly available. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

The website 'Poutní místa Šluknovského výběžku' serves as an informational portal dedicated to pilgrimage sites and religious landmarks in the Šluknovsko region of the Czech Republic. It provides historical and cultural descriptions of various churches, chapels, and pilgrimage locations, targeting visitors interested in religious tourism and regional heritage. The site appears to be maintained by an individual or small organization, with content authored by Tomáš Klinský as indicated in metadata. The business model is informational and promotional, focusing on niche cultural tourism without commercial transactions or services. Technically, the website employs older JavaScript libraries such as MooTools and Slimbox for image display and interactivity. The design is basic with limited mobile optimization and accessibility features. There is no detected CMS or modern framework, and no evidence of advanced hosting or performance optimization. SEO is basic with meta descriptions but no structured data or Open Graph tags. The site lacks HTTPS, security headers, and modern security best practices, exposing it to potential risks. From a security perspective, the absence of HTTPS and security headers is a critical weakness. No privacy or cookie policies are present, indicating poor compliance with GDPR or other data protection regulations. The WHOIS lookup failed to return any domain registration data, raising concerns about domain legitimacy and trustworthiness. No incident response or vulnerability disclosure information is provided. The site does not collect user data via forms or analytics, limiting exposure but also reducing business insights. Overall, the website is functional for informational purposes but suffers from significant security and compliance gaps. The lack of domain registration data and HTTPS are major red flags. Strategic improvements in security posture, privacy compliance, and domain legitimacy verification are recommended to enhance trust and protect visitors.

6

6. středisko Zlín

zlin6.cz

39

6. středisko Zlín is a local scouting organization in the Czech Republic focused on youth development through outdoor activities, skill-building, and community engagement. The website serves as an informational portal for children, parents, and scout leaders, providing details about groups, events, and support opportunities. Technically, the site is built on WordPress with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. The domain is mature and registration data aligns well with the organization's profile, supporting legitimacy. Overall, the site is trustworthy and professionally presented but could enhance compliance and security practices.

Elektrika.info is a Czech-based technical and investigative platform focused on electrical engineering topics, safety, and community discussions. It serves a niche audience of professionals and enthusiasts in the electrical engineering sector, providing technical content, discussion forums, and promotional opportunities. The platform is linked closely with related domains such as elektrika.cz and elektrika.tv, indicating a network of specialized resources. The website presents a professional design with clear navigation and relevant content, targeting a specialized technical audience in the Czech Republic. From a technical perspective, the site uses standard web technologies including HTML5, CSS3, JavaScript, and Google Tag Manager for analytics. The site is moderately optimized for performance and mobile devices, though accessibility features are basic. There is no detected CMS or advanced frameworks, suggesting a custom or lightweight implementation. Security headers and SSL configuration details are not provided, indicating potential areas for improvement. Security posture is moderate; the site implements a cookie consent banner indicating some privacy compliance efforts, but lacks visible privacy policy or terms of service pages. WHOIS data is privacy protected with minimal information, which is common but reduces transparency. No critical vulnerabilities or exposed sensitive data were detected in the content. The site does not appear to be blocked or protected by a WAF, allowing full content access. Overall, Elektrika.info is a specialized, small-scale platform with good content quality and moderate technical maturity. Security and privacy compliance can be enhanced by adding formal policies, improving security headers, and ensuring strong SSL configurations. The business credibility is supported by clear contact information and consistent branding. Strategic recommendations include improving security posture, enhancing privacy transparency, and expanding accessibility features to strengthen trust and compliance.

The website represents an educational portal for the Sdružení pro dopravní telematiku, a Czech association focused on transport telematics and intelligent transport systems. It provides information about workshops, conferences, and projects related to transport telematics, targeting professionals and stakeholders in this sector. The site content is primarily in Czech and includes extensive listings of past and upcoming events, indicating an active role in the transport telematics community. Technically, the website uses basic HTML, CSS, and JavaScript without modern frameworks or CMS, and lacks mobile optimization and advanced accessibility features. Security posture is weak due to the absence of HTTPS and security headers, and there are no visible privacy or cookie policies, which raises compliance concerns. The WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the site serves as an informational and educational resource but requires significant improvements in security, privacy compliance, and technical modernization.

O

Oracle Corporation

openjdk.org

60

OpenJDK.org serves as the official community site for the OpenJDK project, an open-source implementation of the Java Platform, Standard Edition. The site is maintained under the auspices of Oracle Corporation, which provides both free GPL-licensed JDK binaries and commercially licensed versions. The platform targets Java developers, open-source contributors, and the broader technology community interested in Java development and innovation. The website offers resources for downloading the JDK, learning about active projects, and contributing to the codebase, positioning itself as a central hub for Java platform collaboration. Technically, the website is built on a custom static site architecture using standard web technologies including HTML, CSS, and JavaScript. It leverages GitHub and Mercurial for source code hosting and integrates privacy-focused analytics via Fathom. Hosting is supported by Akamai CDN infrastructure, ensuring fast content delivery. The site demonstrates good SEO and basic mobile optimization, though accessibility features are moderate. No major CMS or frameworks are detected, indicating a lightweight and stable technical implementation. From a security perspective, the site enforces HTTPS and employs domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. Privacy compliance is strong with clear privacy and terms of use policies, though no cookie consent mechanism is present despite analytics usage. No direct contact information or incident response contacts are published, which could be enhanced to improve transparency and trust. Overall, OpenJDK.org is a professional, trustworthy, and well-maintained site supporting a critical open-source technology project. The security posture is solid but could benefit from additional hardening measures. Privacy practices are good but could be improved with cookie consent. The site is free of adult or questionable content and serves a general technology audience. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security.txt file, and implementing cookie consent to further strengthen compliance and security.

Anawe s.r.o. is a Czech small business specializing in comprehensive web presentation services including website creation, SEO optimization, graphic design, and corporate identity development. The company has a strong market presence with over a decade of experience and a broad portfolio of clients across various sectors. Their website reflects professionalism and a consistent brand image, targeting businesses and individuals seeking quality digital presentation solutions. Technically, the website employs standard web technologies with HTTPS and Google Analytics integration, though it lacks advanced security headers and privacy compliance mechanisms. The absence of WHOIS data limits domain trust verification, but the detailed contact and business information on the site support legitimacy. Security posture is moderate with room for improvement in headers and policy disclosures. Overall, Anawe s.r.o. presents a credible and professional digital presence with recommendations to enhance privacy compliance and security best practices.

C

CHOPOS, s.o.

chopos.cz

58

CHOPOS, s.o. is a voluntary association of municipalities in the Benešov district of the Central Bohemian Region, Czech Republic, focused on regional development and tourism. Founded in 1999, it serves 21 municipalities and operates an Information and Coordination Center to support regional management and advisory services. The website reflects a well-structured regional government/non-profit entity with clear community focus and government funding support. Technically, the site uses modern web technologies including Google Fonts, Swiper.js for sliders, and Google reCAPTCHA for form protection. The site is mobile optimized and provides a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enabled and no obvious vulnerabilities, though security headers could be improved. No explicit security or incident response policies are published. Overall, the domain registration data aligns well with the website content and business history, indicating a trustworthy and legitimate entity.

Obec Mirošovice operates an official municipal website serving the local community in the Středočeský kraj region of the Czech Republic. The site provides essential information about the municipality, including administrative contacts, local news, public services, and official documents. It targets residents and visitors seeking authoritative local government information. The business model is typical for a local government entity, focusing on transparency and public service rather than commercial activities. Technically, the website uses a custom CMS with standard web technologies such as HTML5, CSS, JavaScript, and jQuery. The site includes basic accessibility and SEO features but lacks advanced mobile optimization and modern frameworks. Performance is moderate, with no significant issues detected. The site employs a cookie consent mechanism, indicating some awareness of privacy compliance. From a security perspective, the website uses HTTPS and implements cookie consent but lacks several important security headers and explicit security policies. No incident response or vulnerability disclosure information is provided. The absence of advanced security controls and headers suggests room for improvement in security posture. However, no critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, reflecting its role as an official municipal portal. The risk level is low, but strategic improvements in security headers, mobile responsiveness, and privacy documentation would enhance its security and compliance standing.

O

Obecní úřad Čerčany

cercany.cz

55

The website cercany.cz serves as the official online presence for the municipal government of Čerčany, Czech Republic. It provides residents and visitors with timely news, event calendars, public service information, and contact details for the local government office. The site is well-structured and targets the local community, offering essential services and information relevant to municipal governance and community engagement. The business model is governmental, focusing on public service rather than commercial activities. Technically, the website employs modern web technologies including Vue.js and Mustache.js, integrated within the Vismo CMS platform. It uses HTTPS with Google reCAPTCHA v3 to secure forms and prevent spam. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site benefits from HTTPS and anti-bot measures but lacks explicit security headers and documented security policies or incident response procedures. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. Overall, cercany.cz is a trustworthy and professional municipal website with a solid foundation in content quality, technical implementation, and privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its security posture and user trust.

T

Teo via Donace s.r.o.

donace.cz

47

DONACE.CZ is a Czech-based non-profit platform operated by Teo via Donace s.r.o., founded in 2022, that facilitates charitable donations and supports the development of various social and community projects. The platform connects donors with project creators, providing transparent tracking of donations and project progress. It holds a strong market position within the Czech and Slovak charitable sectors, supported by partnerships with reputable organizations. The website is professionally designed, mobile-optimized, and offers a rich content experience with detailed project information and updates. Technically, the website is built on modern technologies including React and Next.js, hosted on Forpsi servers, and demonstrates good performance and SEO practices. Security posture is strong with HTTPS enforced and appropriate security headers present, although there is room for improvement in publishing explicit security policies and incident response contacts. Privacy compliance is generally good, with a comprehensive privacy policy available, but lacks a visible cookie consent mechanism. Overall, the website is trustworthy, transparent, and well-maintained, with no detected vulnerabilities or suspicious content. The domain registration data aligns well with the business information, supporting legitimacy. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing direct contact information to further improve trust and compliance.

A

Able.

able.cz

59

Able. is a Czech-based digital product development company specializing in creating sophisticated digital products for experienced managers and entrepreneurs. With over 12 years of experience and a team of more than 40 members, Able. positions itself as a medium-sized, reputable player in the technology sector. Their services encompass analysis, branding, UX/UI design, mobile and web app development, custom development, DevOps, integrations, and quality assurance. The company has a strong portfolio featuring notable clients such as AAA Auto, BMW, and Avast, and has received media coverage from respected outlets like Forbes and CzechCrunch. Technically, the website employs modern JavaScript frameworks and integrates Google Tag Manager, Snitcher Radar, and cookie consent mechanisms to ensure compliance and analytics. Hosting is provided by websupport.cz, a Czech hosting provider, and the site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with a professional and consistent branding approach. From a security perspective, the site uses HTTPS with an excellent SSL configuration and implements cookie consent with granular categories. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, showing a legitimate and trustworthy online presence. Overall, Able. presents a professional, secure, and privacy-conscious digital presence suitable for its target audience. Strategic recommendations include publishing detailed security policies, incident response contacts, and vulnerability disclosure mechanisms to further enhance trust and compliance.

G

Web design - Glips.eu

glips.eu

57

The website glips.eu serves as an informational resource focused on web design principles and tips, primarily targeting a general audience interested in creating quality websites. The content is presented in Czech and includes educational text, images, and embedded video content. The site appears to be a small-scale informational platform without commercial transactions or direct contact information. Technically, the site uses standard web technologies such as HTML5, CSS3, Google Fonts, and embedded YouTube videos. It includes a third-party tracking script from redistats.com but lacks privacy or cookie consent mechanisms, which may raise compliance concerns. Security posture is minimal with no evident security headers or HTTPS status visible from the data provided. WHOIS data is not publicly available due to EURid privacy policies, which is typical for .eu domains, and no suspicious patterns were detected. Overall, the site is functional and informative but lacks key compliance and security features.

C

Centrum pro rodinný život Olomouc

rodinnyzivot.eu

40

Rodinný život is a Czech family and spiritual magazine published by Centrum pro rodinný život Olomouc, with a 35-year tradition. The website offers rich content focused on family life, Christian spirituality, and related cultural topics. It provides subscription options, digital editions, and a newsletter signup. The site is well-designed, mobile-optimized, and uses modern web technologies such as React and Next.js. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. No security headers or incident response information are published, representing areas for improvement. The website links to reputable partner domains related to Christian media and cultural organizations, enhancing its credibility.

N

NewDefinition GmbH

newdefinition.de

48

NewDefinition GmbH is a specialized software solutions provider focusing on niche markets of Alumni Management and Politics Management. Their flagship products, ND Alumni and ND Politik, offer comprehensive management systems tailored for alumni organizations and political entities respectively. The company positions itself as a leading solution provider in the German-speaking market, emphasizing complete software solutions combined with consulting and support services. The website content is professionally crafted in German, targeting B2B clients in education, politics, and related sectors. Technically, the website uses standard web technologies with custom CMS elements, is mobile-optimized, and performs moderately well. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site reflects a trustworthy and professional business with room for improvement in security transparency and privacy practices.

K

Kampanile

kampanile.de

41

Kampanile is a small creative communication agency based in Münster, Germany, specializing in strategy, corporate design, editorial design, web design, and audio-visual services. The agency targets clients who value sustainability, authenticity, and social engagement, with a strong focus on churches, associations, and educational institutions. Their website is built on TYPO3 CMS and uses Matomo for analytics, reflecting a moderate level of digital maturity and privacy awareness. The site is well-designed, mobile-optimized, and accessible, providing a professional user experience. Security posture is adequate with HTTPS assumed, but lacks advanced security headers and cookie consent mechanisms. No forms are present on the main page, reducing attack vectors. WHOIS data is minimal but consistent with the business location and hosting provider. Overall, the website is trustworthy and professionally maintained, though improvements in privacy compliance and security best practices are recommended.

D

Dialog Medien Verwaltungsgesellschaft mbH

dialog-medien.de

45

Dialog Medien Verwaltungsgesellschaft mbH operates as a media and publishing company affiliated with the Bistum Münster and related ecclesiastical institutions. The company provides a range of services including media agency solutions, travel arrangements focused on pilgrimage and cultural trips, an online magazine and newspaper focused on church life, a specialized publishing house, and a book shipping service. Their market position is niche and regionally focused, targeting church organizations, educational institutions, and Christian communities. The website is built on TYPO3 CMS, reflecting a mature technical infrastructure with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and content-rich, supporting the company's credibility and business goals.

S

Stadtwerke Böhmetal

swbt.de

65

Stadtwerke Böhmetal is a regional utility company based in Germany, providing essential energy services including electricity, gas, and water supply to residential and commercial customers in the Böhmetal region. The company positions itself as a reliable local energy provider with a focus on customer service and regional presence. Their website is built on the Neos CMS platform using the Flow PHP framework, indicating a modern and maintainable technical infrastructure. The site is well-optimized for mobile devices and accessibility, with good SEO practices and clear navigation. Security measures include HTTPS enforcement, standard security headers, and a GDPR-compliant cookie consent mechanism powered by Cookiebot. However, there is no publicly available security policy or incident response information, which could be improved to enhance trust and transparency. Overall, the website reflects a professional and trustworthy business with moderate technical maturity and compliance with privacy regulations.

S

Schuberth

schuberth.com

58

Schuberth is a well-established manufacturer specializing in high-quality helmets for motorsports, industrial safety, and military applications. The company targets consumers and professionals requiring protective headgear, operating primarily in the manufacturing sector with a medium-sized business footprint based in Germany. The website uses modern web technologies including Nuxt.js and integrates marketing and bot protection tools such as Google reCAPTCHA and Facebook Pixel. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. The domain is long-standing and registered with a reputable hosting provider, indicating legitimacy. Overall, the website is professional but could improve in privacy compliance and security best practices.

D

Danone

danone.com

78

Danone is a globally recognized food and beverage company operating in over 120 countries, focusing on essential business lines such as Waters and Early Life Nutrition. The website reflects a mature digital presence with a professional design, comprehensive content, and clear navigation. Technically, the site leverages Adobe Experience Manager and modern technologies, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. The absence of WHOIS data limits domain registration trust verification but the overall branding and external links strongly support legitimacy. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site demonstrates a high level of digital maturity and business credibility.

C

CV-Library Ltd

jobs-graduate.co.uk

60

JobsGraduate is a UK-focused graduate job search platform operated under the CV-Library Ltd brand. It offers a comprehensive service for graduates to search thousands of jobs, register CVs, and receive job alerts. The platform targets recent graduates and entry-level job seekers across various academic disciplines and industries within the UK. The website is professionally designed with good navigation and mobile optimization, providing a positive user experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and custom clickstream analytics to track user behavior and optimize marketing efforts. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and detailed security policies. The WHOIS data for the domain is unavailable due to domain naming rules, but the strong association with CV-Library Ltd supports legitimacy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

C

CV-Library Ltd

marketing-jobs.co.uk

60

Marketing Jobs is a UK-focused online job board specializing in marketing sector roles, powered by CV-Library Ltd. The platform offers job search, alerts, CV registration, and recruiter services, targeting marketing professionals and recruiters. The website is professionally designed with good mobile optimization and accessibility, providing a user-friendly experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and clickstream analytics, with cookie consent mechanisms in place. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit security policies. WHOIS data for the domain is unavailable due to domain naming rules, indicating the domain is likely a subdomain or alias, which slightly impacts trust but does not detract from the site's legitimacy given its association with CV-Library Ltd.

C

CV-Library Ltd

it-jobs.co.uk

60

IT Jobs (www.it-jobs.co.uk) is a UK-focused online job board specializing in IT and technology roles, operated by CV-Library Ltd. The platform offers job seekers the ability to search and apply for thousands of IT jobs across the UK, while providing recruiters with advertising and CV database access services. The website is professionally designed with good content quality, clear navigation, and mobile optimization, targeting IT professionals and employers in the UK market. Technically, the site uses modern JavaScript libraries, Google Analytics, Bing UET, and Google Tag Manager for analytics and marketing, with asynchronous script loading to optimize performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. WHOIS data is unavailable due to domain registration query issues, but the domain and website appear legitimate and consistent with the business claims. Overall, the site demonstrates a mature digital presence with moderate tracking and good privacy compliance.

C

CV-Library Ltd

engineeringjobs.co.uk

62

EngineeringJobs.co.uk is a UK-focused online job board specializing in engineering roles across various disciplines and seniority levels. It provides job search functionality, CV registration, job alerts, and recruitment services targeting engineering professionals and recruiters. The platform is operated by CV-Library Ltd, a recognized player in the UK recruitment market. The website is professionally designed with consistent branding and good content relevance, targeting engineering job seekers and recruiters in the UK market. Technically, the site uses modern JavaScript libraries, Google Analytics, and Bing tracking, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. WHOIS data for the domain is unavailable due to domain naming restrictions, indicating the domain is likely a subdomain or alias rather than a standalone registered domain, which slightly reduces trust. Overall, the site is a credible and functional job board with moderate risk due to domain registration inconsistencies.

C

CV-Library Ltd

education-jobs.co.uk

61

Education Jobs is a specialized UK recruitment platform focused on education sector employment opportunities for teachers, lecturers, and administrative staff. Operated by CV-Library Ltd, it offers job search, CV upload, job alerts, and recruitment advertising services. The platform targets education professionals and recruiters, positioning itself as a niche job board within the UK education recruitment market. The website features a professional design, clear navigation, and mobile optimization, supporting a positive user experience.

Valley Health is a large, not-for-profit healthcare system serving communities in Virginia and West Virginia. The organization provides a comprehensive range of healthcare services including hospitals, urgent care, physician practices, and specialty care such as cancer and heart services. The website reflects a strong regional market position with a patient-first approach and community engagement. Technically, the website is built on Scorpion CMS with modern JavaScript libraries and integrates Google Tag Manager and AudioEye for accessibility compliance. The site is mobile optimized and well-structured with clear navigation and rich content. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though security headers are not explicitly detected and incident response/contact security policies are not published. Privacy compliance is partially addressed with a privacy policy present but lacking a cookie consent mechanism. WHOIS data is unavailable, which limits domain legitimacy verification, but the website content and branding strongly indicate a legitimate healthcare provider. Overall, the site is professional, trustworthy, and accessible, with room for improvement in security headers and privacy compliance.

T

Tower Health

mytowerhealth.org

65

Tower Health operates the MyTowerHealth patient portal, providing secure online access to healthcare services such as appointment scheduling, prescription refills, test results, and billing management. The portal is built on the Epic MyChart platform, a widely used healthcare IT solution, indicating a mature and robust technical infrastructure. The website demonstrates good digital maturity with responsive design, accessibility features, and integration of modern JavaScript libraries such as React and Handlebars. Security measures include HTTPS enforcement, anti click-jacking scripts, and CSRF tokens, though some security headers are not explicitly detected. Privacy compliance is partially addressed with clear privacy and cookie policies, but lacks an explicit cookie consent mechanism. The absence of WHOIS registrant data suggests privacy protection, which is appropriate for a healthcare service. Overall, the site is professional, trustworthy, and well-positioned to serve its patient audience.

C

Conseil supérieur du notariat

notaires.fr

66

The website www.notaires.fr is the official portal for Notaires de France, managed by the Conseil supérieur du notariat. It serves as a comprehensive resource for legal and notarial information, targeting the general public, businesses, and government entities in France. The site offers extensive content on donations, successions, real estate, family law, and business-related legal services, supported by interactive tools and online services such as apostille processing and mediation. The website is well-branded, professionally designed, and consistent with its official government affiliation. Technically, the site is built on the Drupal CMS platform, utilizing modern JavaScript libraries and SVG icons for a responsive and accessible user experience. Performance is moderate with good mobile optimization and SEO practices. Security posture is strong, with HTTPS enforced and multiple security headers implemented. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements. Overall, the site demonstrates a mature digital infrastructure suitable for a government-affiliated entity, with strong trust indicators and a high level of professionalism. The lack of public WHOIS data is consistent with AFNIC privacy norms for French domains and does not detract from the site's legitimacy. Contact is primarily via secure forms rather than direct emails or phone numbers, aligning with best practices for public service websites.

M

MetroNews Television

wvmetronewstv.com

68

MetroNews Television is a media streaming platform dedicated to providing comprehensive news, talk, and sports coverage for West Virginia. It offers a variety of programming including live and archived shows, sports broadcasts, and exclusive interviews, positioning itself as the only true statewide medium for the Mountain State. The platform targets West Virginia residents and sports enthusiasts, delivering content accessible across multiple devices without requiring a traditional TV provider. Technically, the website leverages modern web technologies such as React, Google Analytics 4, Google Tag Manager, and Google reCAPTCHA Enterprise for security and analytics. It is hosted likely on AWS infrastructure using Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site includes proper meta tags, SEO elements, and accessibility features, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. While explicit security headers are not fully confirmed, the site demonstrates good security hygiene with CSRF tokens and no exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR and related regulations. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency. Overall, MetroNews Television presents a professional and trustworthy media service with strong technical and security foundations. The main risk lies in the lack of publicly available domain registration information, which should be addressed to enhance trust and credibility.

A

Agence Pan !

pan-lesite.com

52

Agence Pan ! is a French digital communication agency founded in 2011, specializing in bespoke website design, digital strategy, branding, and social media management. The agency targets a broad range of clients from small to large enterprises seeking creative and personalized digital solutions. Their market position is that of a creative and experimental agency with a recognized reputation for excellence. Technically, the website is built using modern frameworks such as Nuxt.js and Vue.js, hosted by OVH sas, and integrates WordPress CMS for content management. The site demonstrates good performance, mobile optimization, and SEO practices. Security-wise, the site uses HTTPS with domain protections but lacks some security headers and DNSSEC. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained.

S

STUDIO MAX MEDIA SK, s.r.o.

maxmedia.sk

53

STUDIO MAX MEDIA SK, s.r.o. is a small Slovak technology company specializing in comprehensive web solutions, graphic design, and content management services. Founded in 2005, the company has a strong portfolio including localization and management of websites for major automotive brands and public institutions. Their expertise centers around the MODX CMS platform, multimedia production, and integration of data services. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to a broad audience. Technically, the website employs modern web technologies including HTML5, CSS, JavaScript with jQuery, and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with asynchronous loading of scripts enhancing user experience. However, no explicit hosting provider or advanced frameworks beyond MODX CMS are identified. From a security perspective, the site uses HTTPS (assumed from domain and modern standards though not explicitly confirmed in data), but lacks visible security headers and published security or privacy policies. No forms or sensitive data collection points are present, reducing immediate risk. The absence of privacy and cookie policies is a compliance gap, especially under GDPR. No vulnerability disclosures or incident response contacts are provided. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in privacy compliance, security headers, and transparency would enhance the security posture and regulatory adherence, supporting long-term business credibility.

O

OlivaCreativeFactory

olivacreativefactory.com

54

Oliva Creative Factory is a small business incubator based in São João da Madeira, Portugal, focused on supporting creative talents and proven market projects to build sustainable businesses. The website is built on the Wix platform, leveraging standard Wix technologies and polyfills to ensure compatibility and performance. The site content is primarily in Portuguese and targets entrepreneurs and startups in the creative sector. Technically, the site demonstrates moderate performance and mobile optimization but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS implied and some JavaScript security measures, but lacks explicit security headers and privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy, impacting overall trust. No contact information or social media presence is evident, limiting direct engagement opportunities. Strategic recommendations include improving transparency with privacy and cookie policies, enhancing security headers, and providing clear contact channels to boost credibility and compliance.

S

Sanjotec

sanjotec.com

56

Sanjotec is a technology and science park based in São João da Madeira, Portugal, focused on supporting entrepreneurship and accelerating technology and creative projects. Positioned in a strongly industrial region, it aims to foster an ecosystem linked to Industry 4.0 and new product development. The website is professionally designed with good content quality and mobile optimization, but lacks critical compliance and security documentation such as privacy policies, cookie consent, and terms of service. The absence of WHOIS registration data raises concerns about domain legitimacy, which should be verified. Technically, the site uses modern web standards but lacks visible security headers and analytics tools. Overall, the security posture is moderate with room for improvement in compliance and transparency.

T

Turismo Industrial S. João da Madeira

turismoindustrialsjm.pt

50

Turismo Industrial S. João da Madeira is a small tourism promotion entity focused on industrial heritage tourism in São João da Madeira, Portugal. The website serves as a portal to promote the city's industrial past and cultural tourism offerings, targeting tourists interested in industrial and cultural experiences. The business operates primarily as a local/regional tourism promoter with a focus on heritage and visitor engagement. Technically, the website is built on WordPress using Bootstrap and Font Awesome, with moderate performance and good mobile optimization. It integrates Google Analytics and Facebook tracking for visitor insights but lacks comprehensive privacy and cookie policies, which impacts GDPR compliance. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

P

Prometeus

iperweb.com

44

IperWeb is a small, established hosting provider founded in 1997, offering a variety of hosting solutions including cloud infrastructure, virtual private servers, and business web hosting. The company emphasizes customer satisfaction, performance, and scalability. The website is professionally designed with clear navigation and relevant content targeting businesses and individuals seeking reliable hosting services. Technically, the site uses standard web technologies including jQuery and Flickity for UI components, and employs Google Analytics and Piwik for visitor tracking. However, there is no visible cookie consent mechanism, and privacy policies are hosted on a related domain rather than the main site. Security posture is moderate; the domain is protected with clientTransferProhibited status but lacks DNSSEC and visible security headers. WHOIS data is consistent with the business claims, showing a long domain age and no privacy protection, supporting legitimacy. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

The domain webb.se is registered since 2001 and is currently protected behind a Cloudflare security challenge page (Turnstile captcha), which blocks direct access to website content. Due to this, no business information, contact details, or policies are publicly accessible. The website appears to rely on Cloudflare for security and bot mitigation. The WHOIS data is consistent and indicates a legitimate registration with no privacy protection, suggesting transparency in ownership. However, the lack of accessible content and policies limits the ability to assess the business model, services, or compliance posture. The technical infrastructure is modern in terms of security tooling but lacks visible SEO and accessibility features. Overall, the site is currently inaccessible for full analysis and scores low on content quality and privacy compliance.

O

otris software AG

otris.com

66

otris software AG is a German-based technology company specializing in digital solutions for legal, compliance, contract, and data protection management. Founded in 1998, the company offers a comprehensive suite of software products designed to help organizations act legally compliant, minimize risks, and create transparency through digital processes. Their market position is supported by a broad customer base including large corporations and SMEs across various industries. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the website is built on WordPress CMS with modern plugins and performance optimizations such as WP Rocket and Borlabs Cookie for consent management. The tech stack includes JavaScript libraries like jQuery and Slick Carousel, and the site integrates Google Tag Manager and Matomo for analytics. Mobile optimization and SEO practices are good, contributing to a fast and user-friendly experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not fully detected, and no public security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data is consistent with the company’s claims, showing a legitimate and appropriately aged domain. Overall, otris software AG demonstrates a strong business and technical foundation with good security and privacy compliance. Strategic improvements could include publishing a dedicated security policy, enhancing security headers, and providing incident response information to further strengthen trust and compliance.