Security Directory

W

WebMD Ignite

mercuryhealthcare.com

65

WebMD Ignite is a healthcare-focused digital marketing and engagement platform launched in 2023 as a part of the WebMD brand. It offers a suite of solutions including marketing, platform, analytics, clinical, and content services aimed at healthcare organizations such as health systems, plans, and associations. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. The technical infrastructure leverages Drupal CMS, Cloudflare DNS, and integrates multiple analytics and tracking services including Google Analytics, 6sense, and ContentSquare. Security posture is good with HTTPS enabled and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and consistency. The site lacks explicit privacy and terms of service pages, which impacts privacy compliance scoring.

W

WVRC Digital

wvrcdigital.com

51

WVRC Digital is a small digital marketing agency founded in 2021 and operating as a subsidiary of WVRC Media Company. The company specializes in a broad range of digital marketing services including consumer targeting, website development, video advertising, social media management, email marketing, SEO, pay per click, OTT media, and website chat solutions. Their target audience consists primarily of businesses seeking to establish or grow their digital presence. The website is professionally designed, consistent in branding, and provides clear service descriptions and client testimonials, positioning WVRC Digital as a credible regional player in the digital marketing sector. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, hosted on A2 Hosting. It employs modern web technologies including Google Fonts, Font Awesome, Vimeo embeds, and Google Maps API. The site is mobile optimized and performs moderately well, though accessibility and SEO optimizations are basic. Cookie consent is implemented via CookieYes, and Google Analytics is used for user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain status clientTransferProhibited to prevent unauthorized domain transfers. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content, representing areas for improvement. No privacy policy or terms of service pages were found, which are important for compliance and user trust. Tracking pixels from ZoomInfo and Pearl Diver indicate moderate user tracking. Overall, WVRC Digital presents a professional and credible digital marketing service with a solid technical foundation but requires enhancements in privacy compliance and security best practices to strengthen its security posture and regulatory adherence.

T

Troov S.A.S

troov.com

60

Troov S.A.S operates a specialized online platform focused on lost and found objects, primarily serving users in France. The website offers services to reference lost and found items, allowing users to post announcements and connect with partner locations to increase the chances of recovering lost belongings. The company was founded in 2018 and maintains a consistent brand presence with clear contact information and active social media channels. Technically, the website employs modern front-end frameworks such as Bootstrap and Vue.js, integrates Google Analytics and Facebook Pixel for tracking, and uses Cloudflare for DNS and likely CDN services. The site is mobile-optimized and provides a good user experience with relevant content and clear navigation. Security-wise, the site uses HTTPS and has a stable domain registration but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

S

StreetArtMap.eu

streetartmap.eu

54

StreetArtMap.eu is a niche community-driven platform dedicated to mapping and showcasing street art and graffiti in Strasbourg, France. It offers an interactive map, user submissions, categorized artworks, and a blog to engage local and visiting street art enthusiasts. The website leverages WordPress CMS with modern web technologies including Google Maps API and SEO optimizations. Social media integration and active content updates enhance its community presence. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and formal incident response policies. Privacy compliance is basic but present, with GDPR considerations evident in cookie management. Overall, the site is trustworthy and professionally maintained, serving a small but engaged audience.

C

Communauté de communes du Pays de Barr

paysdebarr.fr

45

The website www.paysdebarr.fr serves as the official portal for the Communauté de communes du Pays de Barr, a regional community organization in Alsace, France. It provides comprehensive information on local tourism, economic development, cultural heritage, and community services across 20 communes. The site targets residents, tourists, and local businesses, promoting the region's viticulture, heritage sites, and local economy. The business model is that of a public community portal aimed at information dissemination and regional promotion. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Maps API for interactive maps, Piwik PRO and Google Analytics for visitor tracking, and Facebook SDK for social media integration. It employs a cookie consent management system (Tarteaucitron) to comply with privacy regulations. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers could be improved. From a security perspective, the site enforces HTTPS and manages cookie consent effectively, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not present, which could be enhanced to improve transparency and trust. The WHOIS data is not publicly available, indicating privacy protection, which is typical for such public-facing community websites. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for the Pays de Barr community, with strong content quality and compliance with privacy standards. Strategic improvements could focus on enhancing security headers and publishing detailed security and incident response policies.

The website 'Kinderportal Schneverdingen' serves as a municipal children’s information portal for the town of Schneverdingen, Germany. It provides comprehensive information on leisure activities, sports, playgrounds, nature, and local government services targeted primarily at children and families. The site is positioned as a local government resource, offering public service content with a focus on community engagement and education. Technically, the website is built on the contentXXL Business CMS platform using ASP.NET Web Forms technology, with client-side libraries such as jQuery 2.1.1, Telerik UI components, and Google Maps API integration. The site demonstrates moderate performance and basic mobile optimization, with a clean and consistent design that supports good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and uses standard form protections but lacks several modern security headers such as Content-Security-Policy and X-Frame-Options. The use of an outdated jQuery version introduces potential vulnerabilities. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanism, and GDPR adherence. However, no explicit security or incident response policies are published. Overall, the website is trustworthy and safe, with no adult or questionable content detected. It is suitable for its target audience and fulfills its role as a local government information portal. Strategic improvements in security headers, library updates, and enhanced mobile accessibility would further strengthen its posture.

M

mPulse

healthtrioconnect.com

50

HealthTrio connect operates as a healthcare portal providing secure login and registration services for multiple user types including providers, employers, brokers, and members. The platform is positioned as a niche service within the healthcare sector, facilitating access to healthcare-related resources and services. The website is professionally designed with consistent branding and clear navigation, targeting healthcare stakeholders. The domain is well-established since 2000 and registered through Cloudflare, indicating a stable and legitimate online presence. Technically, the website employs a legacy technology stack including jQuery and Dojo, alongside modern integrations such as Google Fonts and Google Maps API. Hosting and DNS services are managed by Cloudflare, providing a reliable infrastructure. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO practices. The site lacks a cookie consent mechanism and advanced privacy compliance features. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and explicit security headers such as CSP or HSTS, which are recommended to enhance security posture. The login form uses secure POST methods with autocomplete disabled, which is a positive practice. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a moderate risk profile with good business credibility but requires improvements in privacy compliance and security hardening. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and enhancing accessibility to align with best practices and regulatory requirements.

C

COLORS Urban Art Association

colors-art.eu

54

COLORS Urban Art Association is a small non-profit collective based in France focused on promoting contemporary urban art and graffiti culture. They organize urban art festivals, exhibitions, creative sessions, and sell related merchandise through an online shop. The website is professionally designed with excellent content quality and clear navigation, targeting art enthusiasts, families, and the local community in Strasbourg and surrounding areas. Technically, the site runs on WordPress 4.9.8 with integrations such as Google Maps API and YouTube embeds, showing moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though the WordPress version is outdated and lacks explicit security headers, which should be addressed. WHOIS data is privacy protected as per EURid policies, which is typical for .eu domains and does not detract from legitimacy. Overall, the site demonstrates a high level of professionalism and trustworthiness with good privacy compliance and active social media presence.

Sport & Relax Centrum Benešov operates a comprehensive hospitality and sports complex located in Benešov, Czech Republic. The business offers a wide range of services including hotel accommodation, sports facilities such as tennis, badminton, volleyball, and padel courts, a restaurant specializing in Czech and Italian cuisine, bowling lanes, wellness amenities, and conference/event spaces. The website targets a general audience including families, sports enthusiasts, and corporate clients seeking teambuilding venues. The company positions itself as a regional leader in leisure and hospitality with convenient access from Prague.

P

Praxis am Martinsberg

praxis-am-martinsberg.ch

58

Praxis am Martinsberg is a small healthcare provider specializing in general internal medicine located in Switzerland. Operated since 2025 by Rehaklinik Dussnang AG, it offers comprehensive medical services including manual medicine, ultrasound, traffic and diving medicine, and home visits. The website targets local patients in the Gemeinde Fischingen area and positions itself as a trusted local medical practice with membership in Ärztenetz Thurgau and offering the Hausarztmodell. Technically, the website is built on Umbraco CMS with modern libraries such as jQuery, Bootstrap, and Google Maps API, providing a responsive and user-friendly experience. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though explicit security headers and policies are lacking. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve by publishing security policies and enhancing accessibility.

Ú

Údolí Svratky a.s.

udolikultury.cz

50

Údolí kultury is a regional cultural and tourism information platform focused on the Svratka river valley area in the Czech Republic. It provides curated cultural event information, accommodation listings, and promotes regional projects in collaboration with local municipalities and microregions. The website targets general audiences interested in culture and tourism within this region. Technically, the site uses Google Maps API for location services, Google Fonts for typography, and appears to be built on a CMS platform likely WebSynergy, hosted by a Czech hosting provider. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with HTTPS usage and cookie consent mechanisms implemented, but lacks visible advanced security headers or explicit security policies. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and external partner links indicate a legitimate regional cultural project. Contact information including emails, phone numbers, and physical addresses are clearly provided, along with active social media channels on Facebook, Instagram, and YouTube.

Ú

Údolí Svratky a.s.

udolihistorie.cz

51

Údolí historie is a regional tourism and cultural heritage website focused on promoting the historical sites, accommodations, and cultural events in the valley of the Svratka river in the Czech Republic. The site targets tourists and history enthusiasts interested in exploring castles, historical landmarks, and local culture. It serves as an informational and promotional platform for regional tourism, supported by partner organizations and local businesses. Technically, the website uses modern web technologies including Google Fonts, Google Maps API, and a CMS likely provided by WebSynergy. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and has a cookie consent mechanism, but lacks explicit security headers and formal security or incident response policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and external references indicate a legitimate regional tourism project. Overall, the site is well-positioned for its niche but could improve security posture and transparency.

G

GARNEA a.s.

garnea-stavebni.cz

63

GARNEA a.s. operates as the exclusive importer and distributor of DEVELON construction machinery in the Czech Republic, offering a comprehensive range of compact, wheeled, and tracked excavators, wheel loaders, dozers, and dump trucks. The company provides sales, rental, servicing, and financing services, targeting construction companies and equipment operators. The website reflects a professional and well-structured digital presence with clear navigation and rich content tailored to its audience. Technically, the site employs modern JavaScript libraries and tracking tools, including Google Analytics, Facebook Pixel, and retargeting services, with appropriate cookie consent mechanisms in place. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear trustworthy and consistent with a medium-sized enterprise in the transportation sector. Overall, the site demonstrates good digital maturity and compliance with privacy regulations.

K

KUHN

kuhn.fr

75

KUHN is a well-established manufacturer of agricultural machinery and equipment based in France, serving a global market with multiple localized websites. The company offers a wide range of products for large-scale farming, forage harvesting, livestock, and landscape maintenance. The website demonstrates a mature digital presence with structured navigation, professional design, and integration of analytics and marketing tools such as Piwik PRO and HubSpot. However, the absence of explicit privacy and cookie policies, as well as missing security headers, indicates areas for improvement in compliance and security posture. The WHOIS data is unavailable, likely due to privacy protection, but the website content and branding strongly support legitimacy. Overall, KUHN's website is professional and trustworthy, with moderate technical performance and good mobile optimization.

U

UXA spol. s.r.o.

uxa.cz

54

UXA spol. s.r.o. is a well-established foundry company based in Brno, Czech Republic, with a history dating back to 1886. The company specializes in the production of small and medium series castings made from gray cast iron, ductile cast iron, ADI cast iron, and high silicon cast irons. Their market position is strengthened by a strategic partnership with IUMEX S.p.A., enabling them to serve diverse industrial sectors including transportation, mining, agriculture, and heavy vehicles. The company offers comprehensive services including model making, quality control, and finishing processes such as machining and galvanizing. Technically, the website employs modern front-end technologies including Google Maps API, Toastr notifications, and CSS loading optimizations. The site is mobile responsive and provides a good user experience with clear navigation and professional design. However, there is no detected CMS or hosting provider information, and SEO and accessibility features are basic. From a security perspective, the website uses HTTPS and does not expose sensitive data. However, it lacks important security headers and privacy/cookie policies, which are critical for compliance and user trust. No incident response or vulnerability disclosure information is provided. The absence of WHOIS data reduces domain registration trustworthiness, though the business information on the site appears legitimate and professional. Overall, UXA's website is a solid representation of their business with good content quality and business credibility. Improvements in privacy compliance, security headers, and WHOIS transparency would enhance their security posture and trustworthiness.

Mapa dobra is a Czech non-profit support platform dedicated to showcasing entities supporting Linka bezpečí, a helpline for children and youth. The website serves as a public map and listing of municipalities and companies that contribute to this cause, reinforcing community engagement and awareness. The platform is modest in size and scope, targeting the Czech Republic audience with a focus on social good and public service. Technically, the website employs standard web technologies including Google Maps API for geolocation visualization, Google Tag Manager and Google Analytics for tracking, and Font Awesome for iconography. Hosting is provided by a Czech hosting provider, and the domain is registered with a Czech registrar, consistent with the website's regional focus. The site is mobile-optimized and presents a clean, professional design with clear navigation. From a security perspective, the site uses HTTPS and integrates common analytics tools but lacks explicit security headers and formal privacy or cookie policies. No contact information or incident response channels are provided, which limits transparency and user trust in security matters. The WHOIS data is consistent and transparent, indicating a legitimate and stable domain registration. Overall, the website is a trustworthy and well-intentioned platform with good content quality and business credibility but would benefit from enhanced privacy compliance, security policies, and contact transparency to improve user trust and regulatory adherence.

W

W.D.A. Czech, s.r.o.

wda.cz

40

W.D.A. Czech, s.r.o. operates as a specialized web design atelier based in the Czech Republic, offering premium and express web design services with over 18 years of experience. The company targets small to medium businesses and private clients, providing custom graphic design, SEO optimized HTML coding, and mobile responsive websites. Their market position is strong with a portfolio including reputable corporate clients and a money-back guarantee, reflecting high trust and professionalism. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Fonts, ensuring good mobile optimization and user experience. However, performance is moderate and accessibility is basic. Security posture is average with secure form handling but lacks critical security headers and explicit HTTPS enforcement details. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data supports the legitimacy and long-standing operation of the business. Strategic improvements in security headers, privacy compliance, and incident response transparency are recommended to enhance trust and compliance.

T

TTS

tts.cz

40

TTS is a Czech Republic-based multi-sector company operating primarily in energy management, real estate development, biomass engineering, and fuel supply. The website serves as a portal linking to four main business divisions, each with dedicated subdomains. The company targets businesses and individuals interested in energy solutions and property development. The website is built on WordPress and uses common web technologies including jQuery, Google Maps API, and Google Analytics. The site is well-structured with a clear navigation model and a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy or terms of service pages were found in the provided content. Security posture is moderate with HTTPS enforced but lacking security headers and updated libraries. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the website is professional and functional but would benefit from enhanced security practices and clearer compliance documentation.

A

AGROSERVIS spol. s r.o.

agroservis.sk

45

AGROSERVIS spol. s r.o. is a well-established Slovak company specializing in the distribution and servicing of agricultural machinery, representing major global brands such as John Deere, KUHN, BEDNAR, and Dieci. The company targets farmers and agricultural enterprises within Slovakia, offering sales, maintenance, spare parts, and precision agriculture solutions like FarmSight. The website reflects a professional digital presence with comprehensive business information, clear navigation, and active social media engagement. Technically, the site is built on WordPress with modern plugins and tracking tools, ensuring good performance and mobile optimization. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, although some security headers could be improved. Overall, the site demonstrates a strong security posture with no critical vulnerabilities detected. The WHOIS data aligns with the business claims, reinforcing legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility. The website scores well across content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional platform in its sector.

C

Centrale Méditerranée Alumni

centraliens-marseille.fr

51

Centrale Méditerranée Alumni operates as a professional alumni network for graduates and students of Centrale Méditerranée, a French engineering school. The platform offers a comprehensive suite of services including member directories, event calendars, job boards, and news updates, fostering community engagement and career development. The website is well-branded and targets alumni, students, and recruiters within the educational sector in France. Technically, the site leverages modern web technologies such as Vue.js, Google Analytics, and Google Maps API, ensuring a responsive and interactive user experience. The presence of OAuth-based single sign-on options enhances user convenience and security. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. From a security perspective, the website enforces HTTPS and uses secure login forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no vulnerability disclosure or security.txt files are published. Privacy compliance is strong with visible privacy and cookie policies aligned with GDPR requirements. Overall, the website presents a trustworthy and professional online presence for the alumni community, with moderate technical sophistication and a solid security posture. Recommendations include enhancing security headers, publishing vulnerability disclosure information, and continuing to monitor third-party scripts for vulnerabilities.

C

Cardiometabolic Care Access

myfreehearttest.com

66

Cardiometabolic Care Access operates a comprehensive healthcare screening platform focused on cardiometabolic risk factors such as Lp(a), A1c, and kidney function markers. The organization provides no-cost blood testing across multiple US locations, targeting adults concerned about heart attack risk and related conditions. Their business model integrates clinical testing with research participation, offering stipends and contributing to medical research advancement. The website is professionally designed, mobile-optimized, and uses modern web technologies including React and Astro frameworks, supported by extensive analytics and marketing tools. Security posture is strong with HTTPS and privacy policies in place, though improvements can be made in cookie consent and security disclosures. Overall, the platform presents a trustworthy and credible healthcare service with a clear focus on accessibility and research.

T

Thüringer Koordinierungsstelle Naturwissenschaft und Technik

thueko.de

40

Thüringer Koordinierungsstelle Naturwissenschaft und Technik (Thüko) is a regional non-profit organization dedicated to supporting young women in STEM education and careers in Thüringen, Germany. The website serves as an informational and networking platform, offering workshops, events, and career guidance tailored to female students and graduates in natural sciences, technology, engineering, and mathematics. The organization collaborates with universities and Fachhochschulen across Thüringen to promote successful studies and professional development in STEM fields. Technically, the website is built on WordPress 6.1.9, utilizing the UIkit frontend framework and jQuery libraries. It integrates Google Maps API and employs deferred script loading for performance optimization. The hosting is managed via kasserver.com, as indicated by the nameservers. The site demonstrates good mobile optimization, SEO practices, and a consistent branding approach, though accessibility features are basic. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers, a formal security policy, and incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. No analytics or advertising trackers were found, indicating minimal user tracking. Overall, the security posture is adequate but could be improved with additional headers and compliance features. The website content is safe, targeted at a general audience interested in STEM education for women, with no adult or questionable content. The domain WHOIS data is limited but consistent with a legitimate educational entity. The overall risk is low, with recommendations focusing on enhancing privacy compliance, security headers, and incident response readiness to strengthen trust and regulatory adherence.

T

TrialX

trialx.com

65

TrialX operates as a healthcare technology company specializing in providing a comprehensive clinical trials listing service. Their platform enables users to search for relevant clinical research studies, updated daily, and offers additional solutions such as patient recruitment management and decentralized research. The website demonstrates a professional design with clear navigation and modern interactive features, targeting patients, volunteers, and healthcare professionals. Technically, the site leverages modern JavaScript frameworks, Google Analytics, Hotjar, and OneTrust for analytics and privacy compliance, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain is a notable anomaly that slightly impacts trust but does not detract from the overall professional presentation. Strategic recommendations include enhancing transparency with published privacy and security policies, adding vulnerability disclosure mechanisms, and improving contact information availability to bolster trust and compliance.

S

Stadt Soltau

soltau.de

58

Stadt Soltau operates an official municipal government website providing comprehensive citizen services, tourism information, event calendars, and online services tailored to residents and visitors of Soltau, Germany. The website is well-branded, consistent, and targets a general audience seeking local government and community information. The business model is focused on public service delivery with a medium-sized municipal scope. Technically, the site uses a mature ASP.NET Web Forms platform with contentXXL CMS, integrating modern JavaScript libraries and accessibility tools, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response contacts are missing. Privacy policies are comprehensive and GDPR compliant. Overall, the site is trustworthy and professionally maintained, with strong legitimacy supported by consistent WHOIS data and official contact information.

E

ESSEC Alumni

essecalumni.com

57

ESSEC Alumni operates as the official alumni network for ESSEC Business School, providing a comprehensive platform for graduates, students, faculty, and recruiters to connect, engage, and access career and lifelong learning services. The website is well-branded, professionally designed, and offers a variety of services including event management, job boards, mentoring, and community clubs. Technically, the site leverages modern web technologies such as Vue.js, Google Tag Manager, and Matomo analytics, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and secure login mechanisms, although some security headers could be improved. Privacy compliance is evident with clear privacy and cookie policies and GDPR considerations. However, the absence of WHOIS data for the domain introduces a trust concern that should be addressed. Overall, the site is a credible and valuable resource for the ESSEC community.

E

emlyon alumni

emlyonforever.com

61

emlyon alumni is a professional community platform dedicated to the members of emlyon business school, providing networking, career support, events, and mentoring services. The website is well-branded, bilingual (French and English), and offers a variety of resources to alumni and partners. Technically, it uses modern web technologies including Vue.js, Google Analytics, and Google Maps API, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and SSO authentication, though some security headers and explicit policies are not evident. The absence of WHOIS data reduces transparency but the site content and branding suggest legitimacy. Overall, the platform supports a medium-sized educational community with a focus on engagement and career development.

H

HEC Alumni

hecalumni.fr

53

HEC Alumni operates as the official alumni network for HEC Paris, serving over 80,000 graduates worldwide. The website provides a comprehensive platform for networking, career development, events, and lifelong learning, targeting alumni, students, and recruiters. The digital infrastructure leverages modern web technologies including Vue.js, Google Analytics, and various social media integrations, reflecting a mature digital presence. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are absent. The lack of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the website's professional content and affiliation with HEC Paris support its credibility. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a trusted resource for its community.

Ú

Údolí Svratky a.s.

udolisportu.cz

51

Údolí sportu is a regional tourism and sports promotion website focused on the Vír area in the Czech Republic. It offers comprehensive information about over twenty sports activities including climbing, kayaking, mountain biking, and via ferratas, targeting active tourists and sports enthusiasts. The website also provides accommodation options and publishes articles and event information to support regional tourism. The business operates as a small entity under Údolí Svratky a.s., with a clear focus on hospitality and outdoor activities. Technically, the website uses a modern tech stack including Google Maps API for interactive location services, Google Fonts for typography, and jQuery for scripting. The site appears to be built on a CMS platform likely WebSynergy, with good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is moderate; HTTPS is implied but security headers are not explicitly detected. The site implements a cookie consent mechanism and a basic privacy policy indicating GDPR compliance. However, no explicit security policies or incident response contacts are found. The absence of WHOIS data reduces domain trustworthiness, but the website content and partner references suggest a legitimate regional tourism project. Overall, the site is professional and trustworthy for its target audience, but improvements in security best practices and transparency could enhance its credibility and resilience against threats.

G

GYMIFY

gymify.cz

64

GYMIFY.cz is a Czech-based fitness software provider specializing in online reservation systems, membership management, and integrated tools for gyms and sports centers. The company offers a SaaS model with mobile applications for Android and iOS, targeting fitness centers, yoga studios, wellness centers, and other sports facilities primarily in the Czech Republic and Slovakia. The website demonstrates a professional digital presence with modern technologies such as Nuxt.js, Vue.js, and Vuetify, and integrates third-party services like Stripe for payments and Microsoft Clarity for analytics. Customer testimonials and Trustpilot reviews indicate a positive market reputation. However, the site lacks explicit privacy and cookie policies, which impacts compliance and user trust.

A

ADREX BASE CAMP

adrex.cz

44

Adrex Base Camp is a small outdoor sports business located in Vír, Czech Republic, specializing in year-round sports equipment rental, test centre services, and organizing company and group events focused on adventure and outdoor activities. The website presents a professional and consistent brand image with clear contact information and active social media presence. The business targets outdoor enthusiasts and corporate groups seeking organized sports and adventure experiences in the Svratka Valley region. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and MonsterInsights for analytics and SEO optimization. It employs HTTPS with a valid SSL certificate and integrates Google Maps API for location services. The site is moderately optimized for performance and mobile devices, with basic accessibility features. However, some security best practices like security headers are missing. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, but lacks a published privacy policy, terms of service, and security policy pages. WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is functional, professional, and safe for general audiences but would benefit from enhanced privacy compliance documentation and improved security headers. The absence of WHOIS data is a notable gap in trust assessment and should be addressed to improve domain transparency and credibility.

P

Positive Activities z.s.

trailyvir.cz

41

Trails in Vír is a small regional business operating a biking resort in the Vysočina region of the Czech Republic. The company, Positive Activities z.s., offers groomed and wilderness biking trails, bike rental, servicing, and shuttle services through partnerships. The website is professionally designed with good content quality and clear navigation, targeting biking enthusiasts and tourists interested in outdoor activities. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Analytics integration, providing a solid digital infrastructure. However, the absence of WHOIS data limits domain trust assessment. Security posture is adequate with HTTPS enabled but lacks some security headers and privacy compliance mechanisms such as cookie consent. Overall, the site is functional and trustworthy for its niche audience but could improve privacy and security transparency.

A

ABADIA a.s.

abadia.cz

50

ABADIA a.s. is a Czech manufacturing and trading company specializing in steel constructions, locksmith elements, suspended balconies, and technological equipment. Established in 2006, the company has a medium-sized team and a strong market presence in the Czech Republic and neighboring countries. Their website reflects a professional business with clear service offerings and client testimonials. Technically, the site is built on Drupal CMS, uses modern JavaScript libraries, and integrates Google Analytics and other tracking tools with a compliant cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's credibility and business goals.

Ú

Údolí Svratky a.s.

udolisvratky.cz

51

Údolí Svratky a.s. operates as a regional tourism promoter focused on the Vysočina region of the Czech Republic, offering a broad range of services including accommodation, dining, sports activities, cultural events, and e-commerce for local edible souvenirs. The company targets tourists and visitors interested in nature, culture, and active leisure in this region. The website is professionally designed with good content quality and clear navigation, supporting the business model effectively. Technically, the site uses modern web technologies including Google Fonts, YouTube API, and Google Maps API, hosted likely by a Czech hosting provider. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. WHOIS data is unavailable, which reduces domain trustworthiness and warrants further verification. Overall, the website presents a trustworthy and professional front for the company with room for security and compliance improvements.

T

TTS energo s.r.o.

ttsenergo.cz

36

TTS energo s.r.o. is a regional energy company based in Třebíč, Czech Republic, specializing in the production and distribution of heat energy primarily from biomass. The company positions itself as a pioneer in biomass heat production within the Czech Republic and emphasizes environmental responsibility and local community support. Their services include heat production, customer benefits, emergency dispatch services, and technology projects. The website reflects a medium-sized enterprise with a professional online presence and clear business focus. Technically, the website is built on WordPress using common libraries such as jQuery, Modernizr, and Google Maps API. SEO is enhanced by the Yoast SEO plugin, and performance optimizations are implemented via WP Rocket. The site is mobile-optimized and uses HTTPS with strong SSL configuration. However, some security best practices like security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site demonstrates a moderate security posture with HTTPS enforced and anonymized IP tracking in analytics. The presence of a whistleblowing directive and GDPR privacy policy indicates some compliance awareness. The absence of WHOIS data is a concern for domain legitimacy and trust, though the website content and business information appear professional and consistent. Overall, the site is trustworthy and functional with room for improvement in security headers, privacy compliance (cookie consent), and domain registration transparency. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing incident response contacts, and verifying domain WHOIS information to strengthen trust and compliance.

O

Olomoucká Jízdárna s.r.o.

olomouckajizdarna.cz

37

Olomoucká Jízdárna s.r.o. operates a restaurant and event venue located in Olomouc, Czech Republic, specializing in Czech and international cuisine with a focus on quality ingredients and fresh food. The business targets local residents and event organizers, offering services such as dining, birthday celebrations, weddings, and corporate parties. The website is built on WordPress with modern plugins like LayerSlider and Slider Revolution, hosted likely by Webglobe. The site is well-designed, mobile-optimized, and provides clear contact information and social media links, supporting moderate trustworthiness. However, it lacks privacy and cookie policies, which impacts GDPR compliance and privacy posture.

R

Rehaklinik Tschugg AG

rehaklinik-tschugg.ch

59

Rehaklinik Tschugg AG is a specialized healthcare provider in Switzerland focusing on neurorehabilitation, Parkinson's disease, and epilepsy treatment. The clinic offers comprehensive inpatient and outpatient services, leveraging modern technologies such as the myReha digital therapy platform. It operates under the VAMED Schweiz group, indicating a strong organizational backing and network of related rehabilitation clinics. The website reflects a professional and patient-centered approach with clear communication channels and detailed service descriptions. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Matomo analytics, and is built on the Umbraco CMS platform. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. Overall, the website is well-designed, accessible, and trustworthy, serving its target audience effectively.

V

VAMED Management und Service Schweiz AG

vamed-rehazentrum.ch

59

VAMED Management und Service Schweiz AG operates two innovative outpatient rehabilitation centers in Switzerland, located in Seefeld and Zurich Airport. The centers provide a broad range of therapies including physiotherapy, medical training therapy, robotics, ergotherapy, speech therapy, and neurological and psychiatric consultations. The business targets patients requiring ambulatory rehabilitation and leverages modern technology and scientific methods to deliver effective treatments. The company is positioned as an innovative healthcare provider within the Swiss rehabilitation market, supported by its parent company VAMED. Technically, the website is built on the Umbraco CMS and uses a modern JavaScript stack including jQuery, Bootstrap, and Matomo analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. Overall, the domain registration details align well with the business claims, indicating legitimacy and trustworthiness.

R

Rehaklinik Zihlschlacht AG

rehaklinik-zihlschlacht.ch

61

Rehaklinik Zihlschlacht AG is a leading neurological rehabilitation clinic based in Switzerland, specializing in advanced therapies including robot-assisted rehabilitation, Parkinson's disease treatment, multiple sclerosis care, and early neurological rehabilitation. The clinic operates under the parent company VAMED Schweiz and maintains a strong market position with specialized centers and a comprehensive interdisciplinary approach. The website reflects a mature digital infrastructure with modern technologies such as jQuery, Bootstrap, Matomo analytics, and Google reCAPTCHA, ensuring a professional and user-friendly experience. Privacy and cookie policies are well implemented with clear consent mechanisms, supporting GDPR compliance. Security posture is strong with HTTPS enforcement and no critical vulnerabilities detected, though some improvements in security headers and incident response information are recommended. Overall, the website and business demonstrate high credibility, trustworthiness, and technical maturity suitable for their healthcare audience.

R

Rehaklinik Dussnang AG

rehaklinik-dussnang.ch

58

Rehaklinik Dussnang AG is a specialized healthcare provider in Switzerland focusing on geriatric and musculoskeletal rehabilitation. The clinic offers a comprehensive range of services including inpatient rehabilitation, cure stays, wellness, and telemedicine programs. It operates under the parent company VAMED Schweiz and maintains a strong market position with over 135 years of history and recognized certifications such as the Fracture Liaison Service (FLS). The website is professionally designed, multilingual, and provides clear navigation and detailed service information. Technically, the site uses modern frameworks and libraries, including Umbraco CMS, Bootstrap, jQuery, and Matomo analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, cookie consent mechanisms, and reCAPTCHA integration, though some security headers and policies could be improved. Overall, the site demonstrates high trustworthiness and compliance with GDPR, supported by transparent WHOIS data consistent with the business identity.

R

Rehaklinik Seewis AG

rehaklinik-seewis.ch

61

Rehaklinik Seewis AG is a well-established rehabilitation clinic located in Switzerland, specializing in cardiological, psychiatric-psychosomatic, and internistic-oncological rehabilitation services. The clinic operates within a familial atmosphere and is part of the VAMED Schweiz network, which enhances its market position and trustworthiness. The website reflects a professional healthcare service provider with clear communication of services, patient focus, and career opportunities. The target audience primarily includes patients requiring specialized rehabilitation and healthcare professionals seeking employment. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Umbraco CMS, with integrations such as Matomo analytics and Google Maps API, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, although some security headers and explicit security policies are absent. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained.

V

VAMED Management und Service Schweiz AG

vamed.ch

61

VAMED Management und Service Schweiz AG operates as a leading provider of rehabilitation services in Switzerland, managing multiple specialized clinics and ambulatory centers. The company positions itself as a comprehensive healthcare service provider with a strong focus on neurological, musculoskeletal, cardiological, and oncological rehabilitation. Their website reflects a professional and well-structured digital presence, targeting patients, healthcare professionals, and partners within the Swiss healthcare market. The business model centers on delivering specialized rehabilitation care with an emphasis on innovation and patient-centered services. Technically, the website employs modern web technologies including jQuery, Bootstrap, Matomo analytics, and Google Maps API, integrated within an Umbraco CMS environment. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. The cookie consent mechanism is robust and GDPR compliant, reflecting a mature approach to privacy and user consent. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers and a published security policy or incident response contacts. No critical vulnerabilities or suspicious content were detected. Overall, the security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing vulnerability disclosure information. The domain registration data aligns well with the business claims, showing consistency and legitimacy. The website is free from WAF blocking or content restrictions, allowing full content access and analysis. Social media and partner links further reinforce the company's credibility and market presence.

R

Rodinný svaz ČR, z.s.

tydenprorodinu.cz

52

Týden pro rodinu is a well-established non-profit initiative organized by Rodinný svaz ČR, z.s., focused on promoting family values and community engagement through annual events across the Czech Republic. The website reflects a mature digital presence with a clear focus on family-oriented content and partnerships with regional governments and organizations. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and social media SDKs to enhance user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements in security headers and privacy policy transparency are recommended. The absence of WHOIS data limits domain trust verification, but the overall content and partner ecosystem support legitimacy. Strategic recommendations include enhancing security headers, publishing a privacy policy, and establishing a vulnerability disclosure channel to strengthen compliance and trust.

C

Centrale Nantes Alumni

centraliens-nantes.org

55

Centrale Nantes Alumni operates a comprehensive digital platform serving the alumni, students, faculty, and recruiters associated with Centrale Nantes engineering school. The website offers a rich set of services including an alumni directory, event calendars, job board, mentoring, and community engagement tools. It is well-positioned as a key network facilitator for its target audience in France and internationally. The platform leverages modern web technologies such as Vue.js, Google Analytics, and Google Maps API to deliver a responsive and interactive user experience. Security posture is solid with HTTPS enforced and secure login options, though some security headers could be improved. Privacy policies and cookie consent mechanisms are present and GDPR compliant, reflecting good privacy practices. The domain WHOIS data is unavailable likely due to privacy protection, which is common for such organizations. Overall, the website is professional, trustworthy, and well-maintained, supporting its role as a vital alumni network hub.

C

Centrale Lille Alumni

centraliens-lille.org

55

Centrale Lille Alumni is a professional alumni association website dedicated to graduates and students of Ecole Centrale de Lille. It provides resources, networking opportunities, career development services, event information, and a job board tailored to its community. The site is well-branded and targets primarily French-speaking alumni and recruiters, with English language support available. The business model centers on membership and community engagement, positioning itself as a key player in alumni relations for the institution.

C

Centrale Méditerranée Alumni

centraliens-mediterranee.fr

51

Centrale Méditerranée Alumni operates as a regional alumni network for graduates and students of Centrale Méditerranée, providing a platform for networking, career development, and community engagement. The website serves as a hub for members to access news, events, job opportunities, and group activities, positioning itself as a key resource for its alumni community in France. Technically, the site employs modern web technologies including Vue.js, Google Analytics, and Google Maps API, ensuring a responsive and interactive user experience. Security measures include HTTPS enforcement and OAuth-based authentication with major providers, enhancing user trust and data protection. However, the absence of WHOIS data limits domain registration transparency, though the site’s professional presentation and official branding support its legitimacy. Overall, the site demonstrates a mature digital presence with good content quality and security posture, suitable for its educational and non-profit sector audience.

S

Smart4City

smart4city.cz

59

Smart4City operates a mobile application platform enabling cashless parking payments across multiple Czech cities. The service targets drivers seeking convenient, paperless parking solutions, leveraging modern payment methods such as Apple Pay and Google Pay. The company has established a solid regional presence since its domain registration in 2016, reflecting a mature and stable business model focused on transportation technology. Technically, the website is built on a modern stack including Next.js and React, with integration of Google Maps API for location services, hosted and secured via Cloudflare. The site demonstrates good performance, mobile optimization, and accessibility standards. Security posture is strong with HTTPS enforcement and appropriate security headers, though there is room for improvement in privacy compliance with the addition of cookie consent mechanisms and published security policies. Overall, the website and business exhibit high professionalism and trustworthiness, with clear service offerings and user-friendly design.

U

Mapa uzavírek v Benešově – Uzavírky, havárie,…

uzavirky-city.cz

53

The website www.uzavirky-city.cz serves as a local informational platform focused on providing real-time and planned road closure and traffic incident data for the city of Benešov, Czech Republic. It targets residents and visitors who need up-to-date traffic information to navigate the city effectively. The site leverages Google Maps API to deliver an interactive map experience, enhancing usability and engagement. The business model appears to be a public or municipal service, offering essential transportation-related updates without commercial intent. From a technical perspective, the site is built on WordPress with custom theming and uses modern web technologies including JavaScript and CSS. The integration of Google Maps API is a key feature, though no advanced frameworks or analytics tools are detected. The site performs moderately well with good mobile optimization and basic accessibility features, but lacks comprehensive SEO and privacy compliance elements. Security posture is adequate with HTTPS enabled, but the absence of security headers and privacy policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were found, but the lack of WHOIS data and registrant information reduces domain trustworthiness. The site does not display contact information or incident response details, which could impact user trust and compliance with data protection regulations. Overall, the website is a functional and useful local service with a safe content profile. However, it would benefit from enhanced privacy compliance, improved security headers, and clearer business and contact information to strengthen trust and regulatory adherence.

STUDIO ERIGO, s.r.o. is a small Czech advertising agency based in Brno specializing in branding, marketing, graphic design, web design, and advertising services. The company targets businesses and organizations seeking comprehensive branding solutions both online and offline. Their website demonstrates a professional presence with a portfolio of clients and projects, indicating an established market position in the regional advertising sector. Technically, the website runs on TYPO3 CMS version 6.1, uses jQuery, Google Tag Manager, and Google Maps API, reflecting a moderately modern digital infrastructure. The site is accessible, mobile responsive to a basic degree, and includes cookie consent and privacy policy mechanisms, showing awareness of privacy compliance requirements. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. WHOIS data is not publicly available, likely due to privacy protection, which is common for small businesses. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve technical and security aspects.

W

WellSpan Health

wellspan.org

73

WellSpan Health is a nationally recognized healthcare system serving South Central Pennsylvania and northern Maryland, providing a wide range of hospital and outpatient services. The organization targets patients and community members seeking comprehensive healthcare solutions. The website reflects a mature and professional digital presence with modern technologies such as React and Next.js, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly detailed. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the website demonstrates a high level of business credibility and technical maturity, suitable for a large healthcare provider.