Security Directory

O

Orne THD

ornethd.net

63

Orne THD is a local public telecommunications operator based in France, founded in 2015. The company provides fiber optic internet, TV, and telephony services primarily targeting residential and professional customers in specific French departments (54 and 57). The website presents a professional image with clear branding and consistent content focused on its key services. The domain registration data aligns well with the company's founding date and business claims, supporting its legitimacy. Technically, the website is built on WordPress using popular plugins such as LayerSlider and Revolution Slider, with jQuery and Google reCAPTCHA integrated for enhanced user experience and security. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Hosting is likely provided by OVH sas, inferred from the registrar information. From a security perspective, the website uses HTTPS and implements Google reCAPTCHA, but lacks DNSSEC and security headers, which are recommended to improve security posture. There is no visible privacy policy, cookie policy, or vulnerability disclosure information, indicating compliance gaps with GDPR and best practices. Contact information is clearly provided, but no dedicated security or incident response contacts are found. Overall, the website is trustworthy and professional but would benefit from enhanced security measures and compliance documentation to improve user trust and regulatory adherence.

C

CoronaWhy

coronawhy.org

66

CoronaWhy is a volunteer-driven, international non-profit research organization focused on leveraging artificial intelligence and data science to support the global fight against COVID-19. The organization coordinates over a thousand volunteers worldwide to analyze COVID-19 related data and provide actionable insights to the medical community. Their partnerships with reputable organizations such as NASA JPL, Google Cloud, and CGI enhance their technical capabilities and credibility. The website reflects a mature digital presence with professional design, multimedia content, and active social media engagement. Technically, the site uses modern web technologies including Webflow CMS, Google Analytics, and reCAPTCHA, ensuring good performance and security posture. However, the absence of explicit privacy policies, terms of service, and direct contact information slightly reduces privacy compliance and business credibility scores. Overall, CoronaWhy demonstrates a strong commitment to transparency, collaboration, and scientific rigor, positioning itself as a trusted resource in the COVID-19 research community.

C

College Park Tutors

collegeparktutors.com

56

College Park Tutors is a specialized tutoring service focused on providing one-on-one academic support to students at the University of Maryland (UMD). Established in 2013, the company offers expert tutoring in STEM subjects such as calculus, physics, engineering, and statistics. Their business model centers on connecting vetted tutors with students for personalized sessions, both online and in-person, emphasizing flexibility and course-specific expertise. The website reflects a strong local market position with clear branding and trust signals including testimonials and detailed course offerings. Technically, the website is built on the UserFrosting CMS framework and leverages modern web technologies including jQuery, Bootstrap, Google Analytics, Facebook Pixel, and Google reCAPTCHA for security and analytics. The site is mobile-optimized with good SEO practices and moderate performance. Hosting is inferred to be via NameCheap, consistent with the domain registrar information. From a security perspective, the site enforces HTTPS, uses CSRF tokens, and integrates reCAPTCHA to protect forms. However, it lacks DNSSEC and security headers such as Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. Privacy compliance is basic; while a privacy policy and terms of service are present, there is no cookie consent mechanism, which may be a GDPR compliance gap. Overall, the website is professional, trustworthy, and well-suited for its educational audience. The domain registration data aligns well with the business history, supporting legitimacy. Strategic recommendations include implementing DNSSEC, adding security headers, and introducing a cookie consent banner to improve privacy compliance and security posture.

M

MEDIA FACTORY Group

mfgroup.cz

60

MEDIA FACTORY Group is a Czech-based digital services company specializing in web development, system development, and tailored promotional strategies to help businesses innovate and grow online. The company positions itself as an expert in digital innovation, marketing, and analytics, targeting business clients seeking advanced digital solutions. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Webflow CMS, Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforced and security headers present, although no explicit security policy or incident response information is published. The absence of WHOIS registration data is a concern for domain legitimacy, but the website's professional presentation and privacy compliance mitigate some risk. Overall, the site demonstrates a mature digital infrastructure suitable for its business model.

I

Info-Zenter Demenz

demenz.lu

37

Info-Zenter Demenz is a national information and consultation center in Luxembourg specializing in memory disorders and dementia. The organization provides free services and resources to affected individuals, their families, healthcare professionals, and the general public. The website is professionally designed, well-structured, and offers comprehensive content in French, with multilingual support. It maintains a strong presence through social media and government support, positioning itself as a trusted resource in the healthcare non-profit sector. Technically, the website is built on WordPress with modern technologies including Google Tag Manager, reCAPTCHA, and accessibility tools. It demonstrates good mobile optimization, SEO practices, and performance. The hosting and domain registration appear professional and consistent with the organization's profile. From a security perspective, the site uses HTTPS, has implemented cookie consent mechanisms, and employs reCAPTCHA to protect forms. While explicit security policies and incident response contacts are not found, no vulnerabilities or suspicious activities are detected. Privacy compliance is well addressed with clear policies and consent management. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing a formal security policy, and maintaining regular audits of third-party scripts to further strengthen security posture.

Z

Zinnia Health

zinniahealth.com

63

Zinnia Health is a healthcare provider focused on delivering accessible and integrated care across multiple locations in the United States. The company positions itself as addressing unmet patient demand with a modern healthcare delivery model. The website reflects a medium-sized healthcare business founded in 2018, with clear contact information and a professional online presence. Technically, the site is built on modern web technologies including React and Next.js, with Cloudflare DNS and integration of analytics and tracking tools such as Microsoft Clarity and Google Tag Manager. Security posture is generally good with HTTPS enabled and domain status protections, though DNSSEC is not enabled and security headers are not evident. Privacy compliance is limited as no privacy or cookie policies were detected in the provided content. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

D

Deutsch-Ukrainische Gesellschaft

deutsch-ukrainische-gesellschaft.de

52

The Deutsch-Ukrainische Gesellschaft (DUG) is a small non-profit organization dedicated to fostering and deepening German-Ukrainian relations across politics, science, culture, and civil society. The organization offers expert dialogues, publications, cultural events, and exchange programs to promote mutual understanding and support Ukraine's integration into European and Euro-Atlantic structures. The website reflects a professional and consistent brand image, targeting stakeholders interested in German-Ukrainian cooperation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and GDPR Cookie Compliance, ensuring good SEO and privacy compliance. The site uses HTTPS with Google reCAPTCHA for form security and includes a cookie consent mechanism, indicating a mature digital infrastructure. Performance and mobile optimization are good, though some security headers could be improved. From a security perspective, the site demonstrates solid practices including HTTPS enforcement and GDPR compliance. However, no explicit security policy or incident response contacts are published, and security headers are not detected, suggesting room for enhancement. No vulnerabilities or suspicious content were found. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations, serving its niche audience effectively. Strategic improvements in security headers and transparency around security policies would further strengthen its posture.

T

Ticketportal

ticketportal.sk

53

Ticketportal.sk is a well-established Slovak ticket sales platform specializing in entertainment events such as theatre, music concerts, festivals, musicals, and sports. The website targets a general audience in Slovakia and positions itself as a leading ticketing service provider in the region. The platform leverages modern web technologies including jQuery, Google Tag Manager, Facebook SDK, and reCAPTCHA to provide a secure and user-friendly experience. Consent management is implemented to comply with GDPR requirements, although explicit privacy and terms of service documents were not found in the provided content. Security posture is strong with HTTPS enforced and anti-bot measures in place, but could be improved by adding security headers and publishing a security policy. Overall, the website is professional, trustworthy, and technically sound, serving a large user base with extensive event ticketing services.

T

The Giving Block

tgbwidget.com

58

The Giving Block website serves as a platform enabling charitable donations via cryptocurrency and card payments. The business operates in the non-profit sector, targeting donors interested in leveraging modern payment methods for philanthropy. The platform is powered by The Giving Block brand and integrates third-party services such as Shift4 for card payments and Plaid for financial data connectivity. The website's content is minimal but consistent with its purpose, focusing on donation facilitation with clear branding and loading indicators. Technically, the site employs modern web technologies including React and Material-UI, with integrations for Google Tag Manager and Google reCAPTCHA enhancing analytics and security. Hosting is supported by Amazon AWS infrastructure as indicated by DNS records. Performance and mobile optimization are moderate to good, though accessibility and SEO optimizations are basic. The absence of explicit privacy, cookie, and terms of service policies is a notable gap. From a security perspective, the site uses HTTPS and includes anti-bot measures via reCAPTCHA. However, no explicit security headers such as CSP or HSTS were detected, and no vulnerability disclosure or security policy information is present. The WHOIS data is transparent and consistent with the business, showing no privacy protection or suspicious registration patterns. Overall, the security posture is moderate but could be improved with enhanced headers and policy disclosures. The overall risk assessment indicates a functional and legitimate platform with moderate security and compliance maturity. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing vulnerability disclosure information, and improving accessibility and SEO. These steps will enhance trust, compliance, and security posture, supporting the platform's mission in the charitable donation space.

G

Gift of the Givers Foundation

giftofthegivers.org

64

Gift of the Givers Foundation is a well-established South African non-profit organization specializing in disaster response and humanitarian aid across Africa and beyond. With over 30 years of experience and operations in 45 countries, it holds a leading position as the largest African-origin disaster response NGO. The organization focuses on key services including disaster relief, hunger alleviation, water provision, healthcare, education, and human development, relying primarily on donations and partnerships to fund its activities. The website reflects a professional and consistent brand image, targeting donors, volunteers, and partners globally. Technically, the website is built on WordPress using modern plugins such as GiveWP for donations and WooCommerce components, supported by Google Analytics and Tag Manager for tracking. The site is mobile-optimized with good SEO practices and moderate performance. However, some accessibility features are basic, and there is room for improvement in security headers and DNSSEC implementation. From a security perspective, the site uses HTTPS with a valid SSL certificate and employs reCAPTCHA to protect forms. The domain is registered transparently with consistent WHOIS data matching the organization's identity and history. However, the absence of certain HTTP security headers and DNSSEC reduces the overall security posture. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is trustworthy, professionally maintained, and serves its mission effectively. Strategic improvements in security headers, DNSSEC, and privacy consent mechanisms would enhance its security and compliance standing.

E

Excited Agency

excited.agency

66

Excited Agency is a professional product design and branding agency specializing in digital products such as websites, SaaS platforms, and mobile applications. The company targets startups and established companies worldwide, offering comprehensive design services that enhance user experience and brand identity. Their portfolio includes award-winning projects, indicating a strong market position and expertise in the technology sector. Technically, the website is built on modern web technologies including Webflow CMS, Google Analytics, Microsoft Clarity, and Google reCAPTCHA, ensuring a robust digital presence with good performance and mobile optimization. Security-wise, the site uses HTTPS and implements privacy and cookie consent mechanisms, though explicit security headers and incident response information are not publicly disclosed. Overall, the website demonstrates high professionalism, good privacy compliance, and a trustworthy business model, although WHOIS data is privacy protected, which is common for agencies. Strategic recommendations include enhancing security headers, publishing security policies, and providing direct contact information for improved trust and compliance.

I

Info-Zenter Demenz

demence.lu

37

Info-Zenter Demenz is a national information and consultation center based in Luxembourg, specializing in dementia and memory disorders. It serves affected individuals, their families, healthcare professionals, and the general public by providing free consultation services, educational events, and resources. The organization positions itself as a trusted authority in dementia care and information within Luxembourg, supported by government and community partnerships. The website is professionally designed, multilingual, and accessible, reflecting a strong commitment to user experience and inclusivity. Technically, the website is built on WordPress with modern web technologies including jQuery, Google Tag Manager, and Consent Magic for privacy compliance. Hosting is managed via EuroDNS nameservers, and the site employs HTTPS with reCAPTCHA for security. Accessibility features such as an accessibility toolbar are implemented, and SEO best practices are evident through structured data and meta tags. Security posture is solid with HTTPS and privacy consent mechanisms, though explicit security headers and a formal security policy are absent. No vulnerabilities or suspicious activities were detected. Privacy compliance is robust, with clear cookie and privacy policies and user consent management. Contact information is comprehensive and clearly presented. Overall, the website demonstrates a high level of professionalism, security awareness, and compliance, making it a trustworthy resource for its target audience. Strategic improvements could include adding explicit security headers and publishing a security incident response policy to further enhance trust and resilience.

World Nuclear Association is a well-established UK-based industry association focused on the nuclear energy sector. It provides authoritative information, advocacy, events, and membership services to a global audience of industry professionals and policymakers. The website reflects a mature digital presence with comprehensive content and professional design. The technical infrastructure leverages modern web technologies including Bootstrap, jQuery, and integrates analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and domain registration protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and well-aligned with its business objectives.

O

Online Factory s.r.o.

smartform.cz

50

Smartform.cz is a Czech-based technology company operated by Online Factory s.r.o., specializing in form data validation and enrichment services. Their offerings include postal address autocompletion and validation, company data validation, email verification, name validation, and reverse geocoding. The company targets a broad audience ranging from small e-commerce shops to large enterprises, providing SaaS solutions with API integration and subscription pricing. The website demonstrates a strong market position with over 1000 companies relying on their services, including notable clients, and offers a professional, well-branded online presence.

K

Kronplatz Outdoor Service GmbH

outdoor-kronplatz.com

51

Kronplatz Outdoor Service GmbH operates the Kronplatz Outdoor Center, providing outdoor activity services such as biking, hiking, bike rental, and guided tours in the Pustertal region of South Tyrol, Italy. The company targets outdoor enthusiasts and families seeking recreational activities in a mountainous environment. Their market position is regional with a focus on tourism and outdoor sports. The website is built on TYPO3 CMS and integrates modern web technologies including jQuery, Bootstrap, and Google reCAPTCHA, reflecting a moderate level of digital maturity. The site is mobile optimized and includes cookie consent mechanisms compliant with GDPR. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though it lacks some HTTP security headers and published security policies. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration legitimacy. Overall, the website is professional and trustworthy from a user perspective but would benefit from improved transparency and security documentation.

I

ITS - SPORT & FUN GesmbH

kinder-club.info

50

Pinguin BOBO's KINDER-CLUB® is a specialized ski school service targeting children aged 3 to 13 in German-speaking countries, primarily Austria, Germany, and Switzerland. The company, ITS - SPORT & FUN GesmbH, offers pedagogically designed ski lessons with a mascot-driven brand to engage children and families. The website reflects a medium-sized educational service provider with a strong regional presence and a focus on family-friendly ski holiday experiences. Technically, the website is built on TYPO3 CMS with modern web technologies including jQuery and Google reCAPTCHA, and it incorporates a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and consistent business information support legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

B

Bikeschule Disentis Sedrun

bikedisentis-sedrun.ch

53

Bikeschule Disentis Sedrun is a small, regionally focused bike school and guiding service based in Switzerland. The company offers bike courses primarily for children during school holidays and additional guiding and technical courses for adults. The website is built on TYPO3 CMS and incorporates modern web technologies including Google reCAPTCHA and cookie consent management, reflecting a moderate level of digital maturity. The site is well-structured with clear navigation and contact information, supporting a positive user experience. Security measures include HTTPS enforcement and cookie consent, though some security headers are missing. Overall, the security posture is adequate but could be improved with additional headers and explicit security policies. The website is free from adult or explicit content and targets a general audience interested in biking activities in the Disentis-Sedrun region.

A

Arosa Bikeschool

arosa-bikeschool.ch

54

Arosa Bikeschool is a specialized local service provider offering bike lessons and guided bike experiences for children and adults in the Arosa mountain region of Switzerland. The business emphasizes family-friendly services including group and private lessons, camps, workshops, and children's animation. Their market position is that of a trusted local bike school with a family destination certification, supported by clear contact channels and online booking capabilities. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for analytics and security. The site is mobile-optimized and provides a good user experience with clear navigation and content relevance. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks some advanced security headers such as CSP and HSTS. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. WHOIS data aligns well with the business claims, showing transparency and legitimacy. Overall, the website is professional, trustworthy, and suitable for its target audience.

A

American Podiatric Medical Association

apma.org

70

The American Podiatric Medical Association (APMA) operates a comprehensive and professionally designed website serving as a central resource for podiatrists, students, residents, young physicians, and patients. The organization, founded in 1912, provides education, advocacy, practice management resources, and membership benefits, positioning itself as a leading professional association in podiatric medicine in the United States. The website content is rich, well-structured, and targets multiple audiences effectively. Technically, the site is built on Mura CMS 7.0 with Bootstrap 3 and uses modern web technologies including jQuery, Font Awesome, Google reCAPTCHA, and Slick Carousel. The site is mobile optimized with good SEO and accessibility basics. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is strong with HTTPS enforced and use of reCAPTCHA on forms, but lacks explicit security headers and a visible cookie consent mechanism. WHOIS data is unavailable due to a malformed response, which limits domain registration trust analysis, but the site’s professionalism and consistency with a legitimate association mitigate concerns. Overall, the site is trustworthy, well-maintained, and serves its professional audience well. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance further.

M

MyBookings.com

mybookings.com

51

MyBookings.com is a well-established Dutch company specializing in integrated hotel marketing services, including branding, advertising, distribution management, integration services, and analytics. With over 18 years of experience and a domain age of more than 22 years, the company holds a strong market position serving hotels aiming to optimize their customer journey and increase direct bookings. The website reflects a professional and consistent brand image targeting hotel management professionals in the hospitality sector. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and Helix Ultimate, leveraging Google Fonts, Font Awesome, and Google Analytics for enhanced user experience and tracking. Hosting and DNS are managed via Cloudflare, providing reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and implements Google reCAPTCHA for form protection. However, it lacks DNSSEC, Content Security Policy headers, and other security headers like X-Content-Type-Options, which are recommended to enhance security posture. No vulnerability disclosure or incident response policies are publicly available, indicating room for improvement in transparency and security maturity. Overall, the website is trustworthy, professional, and safe for general audiences. It collects user data via contact forms with standard protections but lacks a cookie consent mechanism, which could be improved to enhance privacy compliance. The domain registration data aligns well with the business claims, supporting legitimacy and credibility.

A

Auto klub Markéta

speedway-prague.cz

39

Speedway-prague.cz is the official website for Auto klub Markéta, a Czech organization dedicated to speedway motorcycle racing events, including the prestigious FIM Speedway Grand Prix held in Prague. The site serves as an information hub for fans, providing event schedules, ticketing information, rider details, historical results, and media resources. It targets motorsport enthusiasts primarily in the Czech Republic and surrounding regions. The business model revolves around event promotion, fan engagement, and collaboration with ticketing and local partners. Technically, the website is built on WordPress with a modern tech stack including Bootstrap for responsive design, jQuery for interactivity, and multiple plugins for SEO, performance, and user engagement. It integrates Google Analytics and Google Tag Manager for tracking, and uses Google reCAPTCHA to secure its contact forms. The site is moderately optimized for performance and mobile devices, with good SEO practices evident. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks visible security headers and a published privacy or cookie policy, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable or privacy protected, which is common for such organizations and does not raise immediate concerns given the site's professionalism and transparency. Overall, Speedway-prague.cz presents a trustworthy and professional online presence for a niche sports organization. Strategic recommendations include enhancing privacy compliance with clear policies, improving security headers, and publishing a vulnerability disclosure policy to strengthen trust and security posture.

L

LOUDA Alform, výrobní družstvo

alform.cz

63

LOUDA Alform, výrobní družstvo is a Czech manufacturing cooperative specializing in precision machining, tooling, and assembly services for various industrial sectors including automotive, glass, ceramic, and rubber industries. The website presents a professional and well-structured digital presence with clear navigation and relevant content targeting industrial clients and educational institutions. The company leverages modern web technologies such as ASP.NET WebForms, jQuery, and Bootstrap, complemented by Google services for analytics and bot protection. Cookie consent is implemented comprehensively, reflecting GDPR compliance. However, the absence of WHOIS data and security headers slightly detracts from the overall trustworthiness and security posture. The site is accessible without WAF or security challenges, indicating stable hosting and infrastructure.

L

Lietuvos hidrometeorologijos tarnyba prie Aplinkos ministerijos

meteo.lt

61

Meteo.lt is the official Lithuanian government meteorological service operated under the Ministry of Environment. It provides comprehensive weather forecasts, climate data, warnings, and meteorological monitoring services to the public and government agencies. The website is well-structured, professionally designed, and offers a wide range of meteorological information including real-time data, forecasts, and specialized services such as APIs and archival data access. The target audience includes general public users, businesses, and governmental bodies requiring accurate weather information. Technically, the website is built on WordPress and utilizes modern web technologies including jQuery and Google reCAPTCHA for form security. It implements GDPR-compliant cookie consent mechanisms with detailed user controls. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. However, it lacks visible security headers such as CSP or HSTS, which could enhance security posture. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the .lt domain is noted but likely due to registry restrictions rather than malicious intent. Overall, Meteo.lt presents a trustworthy and professional government service website with strong privacy compliance and good technical implementation. Strategic improvements in security headers and publishing a security policy would further strengthen its security posture.

S

Sedlecký kaolin a.s.

sedlecky-kaolin.cz

60

Sedlecký kaolin a.s. is a leading international producer of kaolin and related mineral raw materials, with a history dating back to 1892. The company focuses on mining, processing, and supplying kaolin, bentonite, clay, and sandstone primarily for industrial clients in manufacturing and construction sectors. They emphasize innovation, environmental responsibility, and collaboration with research institutions to maintain high quality standards. The website reflects a professional and consistent brand image targeting industrial customers. Technically, the site is built on modern React and Next.js frameworks, with integrations for Google Tag Manager and reCAPTCHA, indicating a moderate level of digital maturity. Security posture is adequate but could be improved by adding explicit security headers and publishing security policies. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is trustworthy and professional, supporting the company's market position as a reputable mineral producer.

K

Kam večer? - Akce a podniky Mladá Boleslav

kamvecer.net

53

KamVecer.net is a local event listing and entertainment guide website focused on the city of Mladá Boleslav in the Czech Republic. It provides information about concerts, theaters, clubs, restaurants, and cultural events to residents and visitors. The website uses common web technologies including jQuery, Google Tag Manager, Google Analytics, Facebook Pixel, and Font Awesome for icons. It implements a cookie consent mechanism inline but lacks explicit privacy and terms of service pages. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy. Security measures such as HTTPS are assumed but security headers and policies are not evident. Overall, the site offers relevant local content with good design and user experience but has gaps in privacy compliance and business credibility due to missing contact and registration information.

E

eSports s.r.o.

pop.cz

50

POP Airport is a well-established retail and entertainment center located near Prague’s Václav Havel Airport, offering a wide range of services including outlet shopping with over 200 global brands, family amusement parks, a dinosaur museum, classic car exhibitions, and plane spotting facilities. The business targets tourists, families, and shoppers seeking discounted products and leisure activities. The website reflects a mature digital presence with consistent branding and comprehensive content that supports the business model effectively. Technically, the site employs modern web technologies such as JavaScript, Google reCAPTCHA, and font loading optimizations, ensuring good performance and mobile responsiveness. Security measures include HTTPS enforcement, cookie consent management, and use of security headers, contributing to a strong security posture. Privacy compliance is evident through a detailed privacy policy and cookie consent mechanisms. Overall, the domain’s WHOIS data aligns with the business claims, indicating legitimacy and trustworthiness.

G

Glatt GmbH

technology-training-center.com

69

Technology Training Center (TTC), a division of Glatt GmbH, specializes in providing hands-on workshops and practical training focused on the latest processing technologies for pharmaceutical, chemical, food, and cosmetic industries. The center emphasizes objective evaluation of processing techniques and fosters industry networking. The website is built on a modern WordPress platform using Elementor and WooCommerce, featuring good mobile optimization and SEO practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though DNSSEC and additional security headers could enhance protection. Overall, TTC presents a professional and trustworthy online presence aligned with its business objectives.

A

Advisio marketing s.r.o.

advisio.sk

50

Advisio marketing s.r.o. is a well-established digital marketing agency founded in 2006, specializing in comprehensive online marketing strategies, PPC campaigns, and e-commerce marketing across multiple Central European markets including Czech Republic, Slovakia, Poland, and Hungary. The company holds multiple industry certifications such as Premier Google Partner and Meta Business Partner, underscoring its expertise and market credibility. Their website reflects a professional and content-rich platform targeting local firms and established brands, with a focus on data-driven and creative marketing solutions. Technically, the site is built on WordPress with modern analytics and tracking tools integrated, including Google Analytics, Facebook Pixel, and Google Tag Manager. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though some security headers could be improved. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy. Overall, Advisio presents a trustworthy and professional digital presence with good technical and security standards.

S

Skanska a.s.

skanska.cz

70

Skanska a.s. is a leading construction and development company operating in the Czech Republic, specializing in residential and commercial real estate development, infrastructure projects, and related services such as facility management and equipment rental. The company is part of the global Skanska Group and maintains a strong market position with a focus on sustainability and innovation. The website reflects a mature digital presence with comprehensive content, clear navigation, and active social media engagement. Technically, the site uses modern frameworks and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and form protections in place, although explicit security policies and incident response details are not publicly disclosed. Overall, the domain registration and WHOIS data align well with the company's identity, supporting legitimacy and trustworthiness.

T

Michal Tučný revival

tucny-revival.cz

54

The website tucny-revival.cz represents a small Czech music band dedicated to the revival of Michal Tučný, a legend in Czech country music. The site provides information about band members, upcoming events, media galleries, and contact options primarily for fans and event organizers. The business model is focused on entertainment and local cultural promotion with a niche audience in the Czech Republic. The website is modest but functional, reflecting a small-scale operation with limited digital maturity.

O

OMEGA WEB Czech

omegaczech.cz

42

OMEGA WEB Czech is a Czech Republic-based small technology company specializing in custom web design, development, SEO, e-commerce solutions, and IT outsourcing services. Established since 1998, it serves a broad client base across the Czech Republic with a focus on professional and comprehensive web solutions. The website demonstrates a mature digital presence with Joomla CMS, modern frontend technologies, and integration of Google Analytics and reCAPTCHA for security and analytics. Security posture is solid with HTTPS and consent mechanisms, though lacking advanced security headers and formal incident response disclosures. The absence of WHOIS data reduces domain trust but the website content and contact information are consistent and professional. Overall, the company presents a trustworthy and competent profile in the local web services market.

U

Univerzita Hradec Králové

mojeuhk.cz

44

Univerzita Hradec Králové operates a well-structured and professionally designed website targeting prospective and current students interested in higher education in the Czech Republic. The site presents multiple faculties and study programs, enriched with student testimonials and social media integration, reflecting a strong engagement with its audience. The business model is that of a public university providing educational services with a medium-sized presence in the regional education sector. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and Laravel framework, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and reCAPTCHA integration, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is trustworthy, safe, and professionally maintained.

T

TTC Technology Training Center

ttc-binzen.de

69

Technology Training Center (TTC) is a specialized provider of hands-on workshops and technology evaluation services primarily targeting the pharmaceutical, chemical, food, and cosmetic manufacturing industries. The company operates as a division of Glatt GmbH, based in Germany, and focuses on bridging the gap between theoretical knowledge and practical application through interactive training sessions. TTC positions itself as a niche leader offering objective assessments of processing technologies, enabling industry professionals to make informed decisions for their product development and manufacturing processes. The website reflects a professional and well-structured digital presence with clear branding and comprehensive content tailored to its target audience. From a technical perspective, the website is built on WordPress using Elementor and WooCommerce, supplemented by Gravity Forms for data collection and Brevo for marketing automation. The site demonstrates good SEO practices, mobile optimization, and accessibility features, although performance is moderate. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms, but could benefit from enhanced DNS security and additional HTTP security headers. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. However, the WHOIS data presents inconsistencies, notably a domain creation date in the future relative to the website content, which warrants further verification to confirm domain legitimacy. Overall, TTC's website is a trustworthy and professional platform supporting its business objectives, with recommendations to improve domain security and WHOIS data accuracy to enhance trustworthiness further.

H

Hostinec U Hubálků

uhubalku.cz

49

Hostinec U Hubálků is a Czech hospitality business specializing in traditional Czech cuisine, accommodation, event hosting, and catering services. The website presents a professional and comprehensive digital presence, showcasing menus, events, booking options, and an e-shop for homemade products. The business targets local and regional customers seeking quality dining and event experiences. Technically, the site is built on WordPress with the Divi theme and WooCommerce, integrating modern tools like Google Tag Manager and Facebook SDK for analytics and marketing. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policies. The absence of WHOIS data reduces domain trust but the website content and certifications support legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy for its business domain.

O

Obecní úřad Přepychy

prepychy.cz

58

The website prepychy.cz serves as the official online presence of the municipal government of Přepychy, a small community in the Czech Republic. It provides comprehensive information about the village, local organizations, cultural events, municipal services, and contact details for the local government office. The site targets residents and visitors seeking official and community-related information. The business model is that of a government information portal, focusing on transparency and community engagement. Technically, the site is built on WordPress using the Divi theme, supplemented by plugins for GDPR compliance, cookie management, email subscriptions, and polls. The infrastructure is hosted likely by WEDOS, a Czech hosting provider, consistent with the domain registrar. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. From a security perspective, the site uses HTTPS and Google reCAPTCHA to protect forms and implements cookie consent mechanisms aligned with GDPR. However, it uses an outdated jQuery version which may expose it to known vulnerabilities, and lacks explicit security headers. No incident response or security policy pages are published. Overall, the security posture is moderate but could be improved with updates and additional hardening. The overall risk assessment is low given the nature of the site as a municipal information portal with no sensitive transactions or personal data collection beyond newsletter subscriptions. Strategic recommendations include updating JavaScript libraries, implementing security headers, and publishing security and incident response policies to enhance trust and compliance.

The website www.rychnov-city.cz serves as the official municipal portal for the city of Rychnov nad Kněžnou in the Czech Republic. It provides residents and visitors with comprehensive information about city life, administration, social and technical services, cultural events, and public utilities. The site is well-structured and targets local citizens and stakeholders seeking official city information and services. The business model is that of a government entity providing public services and information dissemination. Technically, the website is built on the Vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It integrates Google services including reCAPTCHA for form security and Google Translate for multilingual support. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers could be made. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, no explicit security policies or incident response contacts are published, and no security.txt file is present. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, though the presence of official contact information and consistent branding supports trustworthiness. Overall, the website is a reliable and professional municipal portal with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and improving WHOIS transparency to strengthen trust and compliance.

Sdružení obcí Orlicko is a regional association of municipalities in the Czech Republic focused on supporting tourism, transportation, and regional development across 28 communities. The website serves as an information hub for residents and visitors, providing event calendars, news updates, and regional resources. The organization positions itself as a local government partner fostering community growth and tourism promotion. Technically, the website is built on the IPO CMS platform, utilizing jQuery, Owl Carousel, Google reCAPTCHA, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and includes accessibility considerations, though some improvements could be made. Security posture is adequate with HTTPS and form protections but lacks advanced security headers and explicit security policies. The absence of WHOIS data reduces domain trust slightly but the professional presentation and official contact details support legitimacy. Overall, the site is a reliable regional government resource with room for enhanced security and compliance documentation.

M

Městský úřad Dobrovice

dobrovice.cz

49

The website dobrovice.cz serves as the official municipal portal for the town of Dobrovice in the Czech Republic. It provides residents and visitors with comprehensive information about local government services, contacts, public notices, events, and community resources. The site is well-structured and targets local citizens and stakeholders interested in municipal affairs. The business model is that of a government service portal, focusing on transparency and public communication. The domain age and WHOIS data confirm the legitimacy and long-standing presence of the site as a trusted local government resource. Technically, the website uses a CMS platform called vismo, with standard web technologies including HTML5, CSS3, and JavaScript. It incorporates Google reCAPTCHA for form security and includes a smart app banner for mobile users. The site is mobile-optimized and accessible, with good SEO practices evident. Performance is moderate, with room for optimization. No major technical risks or vulnerabilities were detected. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were found. Privacy compliance is basic but present, with a privacy policy and cookie policy linked clearly. Contact information is prominently displayed, enhancing trust. Overall, the site scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility. It is a safe, professional, and trustworthy municipal website with minor areas for improvement in security policy transparency and technical headers. No adult or questionable content is present, making it suitable for a general audience.

Zvířetice.cz is a website dedicated to promoting the historic Zvířetice castle ruins and associated tourist information center located in the Czech Republic. The site offers visitors detailed information about the castle's history, 3D reconstruction projects, guided tours, seasonal events, and visitor services such as refreshments and souvenirs. The business is municipally owned by Město Bakov nad Jizerou and supported by regional funding, positioning it as a local cultural heritage and tourism entity focused on education and family-friendly activities. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support. It uses modern JavaScript libraries like jQuery and Slick Carousel for interactive elements and includes Google reCAPTCHA for form security. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and security headers. Performance is moderate with caching and minification evident. From a security perspective, the site enforces HTTPS and uses reCAPTCHA but does not implement key security headers such as Content-Security-Policy or X-Frame-Options. There is no visible privacy or cookie policy, indicating compliance gaps with GDPR. WHOIS data is missing or unavailable, which reduces domain trustworthiness, although the website content and municipal references support legitimacy. Overall, the site is a well-structured, content-rich platform serving its cultural tourism mission effectively but would benefit from improved privacy compliance, enhanced security headers, and transparency in domain registration to strengthen trust and security posture.

D

Digitální a informační agentura

identitaobcana.cz

72

The website www.identita.gov.cz is an official Czech government portal managed by the Digitální a informační agentura, providing digital identity services to Czech citizens. It facilitates secure login and identity management for multiple government and public service portals, including Mobilní klíč eGovernmentu, NIA ID, and bankovní identita. The portal is well-positioned as a central hub for digital identity in the Czech Republic, offering comprehensive services and user support.

E

E-GO, s.r.o.

webhouse.family

61

WebHouse, operated by E-GO, s.r.o., is a reputable Slovakian hosting and domain registration provider managing over 56,000 domains. The company offers a range of hosting plans, including shared hosting, virtual and dedicated servers, and business email services, targeting both individual and business customers. Their market position is solid within the regional technology sector, emphasizing reliability and customer care with a 100% uptime guarantee. Technically, the website employs a mature technology stack including Bootstrap, jQuery, Google reCAPTCHA, and Cookiebot for consent management. The site is mobile-optimized with good SEO and accessibility features, though some accessibility aspects could be improved. Performance is moderate, with external dependencies on Google and Facebook services for analytics and social media integration. Security posture is good with HTTPS enforced and use of reCAPTCHA to protect forms. Cookie consent is managed comprehensively via Cookiebot, ensuring GDPR compliance. However, explicit security headers like CSP and X-Frame-Options are not clearly detected and could be enhanced. No critical vulnerabilities or exposed sensitive data were found. Overall, WebHouse presents a trustworthy and professional online presence with strong privacy compliance and business credibility. Strategic recommendations include enhancing security headers, publishing a formal security policy, and maintaining up-to-date third-party libraries to further strengthen security and compliance.

M

MERIMEX s.r.o.

merimex.cz

52

MERIMEX s.r.o. is a Czech Republic based company specializing in the sale and servicing of forestry and material handling machinery, representing major global brands such as John Deere, Sennebogen, and Waratah. The company targets professional customers in forestry and related industries, offering new and used equipment through its main website and dedicated bazaar platform. The website reflects a medium-sized business with a consistent brand presence and a focus on product offerings and service information. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics and security. The site is mobile optimized with a good user experience and clear navigation. However, some technical improvements such as enhanced security headers and more comprehensive SEO and accessibility features could be implemented. From a security perspective, the site uses HTTPS and has cookie consent mechanisms in place, but lacks visible security headers and explicit privacy or security policies. The absence of WHOIS data reduces domain trustworthiness, although the website content and branding suggest a legitimate business. No critical vulnerabilities or adult content were detected. Overall, the website presents a professional and functional digital presence with moderate security and privacy compliance. Strategic improvements in transparency, security headers, and policy disclosures would enhance trust and compliance.

M

M2M Communication Holding / M2MC LLC / M2MC LTD

miotiq.com

63

Miotiq is a specialized B2B IoT integration platform focusing on NB-IoT and LTE-M connectivity solutions. It offers SIM card plans and SaaS platform services that enable hardware producers, software developers, mobile operators, and solution partners to connect IoT devices seamlessly to cloud services such as AWS, Azure, and Google. The company operates internationally with offices in Czechia, the USA, and the UK, emphasizing a global reach in the IoT telecommunications sector. The website is professionally designed, mobile-optimized, and provides clear information about its offerings and contact channels. Technically, the website leverages modern web technologies including Webflow CMS, Google Tag Manager, Google Analytics, and Google reCAPTCHA for security on forms. The site is hosted on Webflow's CDN, ensuring fast performance and good SEO practices. However, it lacks certain security headers and a cookie consent mechanism, which are important for enhanced security and privacy compliance. From a security perspective, the site uses HTTPS and secure form handling but does not implement advanced HTTP security headers. The absence of WHOIS registration data raises concerns about domain legitimacy and age, which could impact trust. No incident response or security policy pages are present, and GDPR compliance indicators are minimal. Overall, the security posture is moderate but could be improved with additional controls and transparency. The overall risk assessment suggests that while the website is functional, professional, and safe for general users, the missing WHOIS data and limited privacy compliance features warrant caution. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and verifying domain registration details to enhance trust and compliance.

V

VOTTA LAB

votta.co

55

VOTTA LAB is a Latvia-based digital marketing agency specializing in branding, high-performing websites, and results-driven marketing services. The company targets businesses seeking to grow through impactful digital presence and marketing strategies. The website is professionally designed using WordPress and Elementor, with modern technologies such as Bootstrap and Google Analytics integrated. The technical infrastructure is solid with good mobile optimization and SEO practices, although performance is moderate. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business appears legitimate and credible, but could improve transparency and security practices.

W

WAME s.r.o.

ukraineslovakia.sk

65

Welcome to Slovakia is an informational website primarily aimed at supporting people arriving in Slovakia, including refugees and migrants. The site provides comprehensive guidance on legal, health, education, and social services to facilitate integration. The business behind the site is WAME s.r.o., a Slovak entity, and the site is presented in Slovak language with professional design and consistent branding. The target audience is clearly defined as newcomers to Slovakia seeking assistance and information. Technically, the website is built on WordPress using Elementor page builder and several plugins including GDPR compliance tools and Google reCAPTCHA for form security. The site uses HTTPS and integrates Google Analytics and Tag Manager for analytics and marketing purposes. The site is mobile optimized and has good SEO practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, which could be improved. No vulnerabilities or exposed sensitive data were found. The WHOIS data is consistent with the business entity, indicating legitimacy. No incident response or security policies are published, which is a gap. Overall, the website is a trustworthy and professional information portal with good privacy compliance and moderate security posture. Strategic improvements in security headers, explicit contact information, and published security policies would enhance trust and compliance.

T

Turistické informačné centrum Nitra

nitra.eu

65

The website www.nitra.eu serves as the official tourism information center for the city of Nitra, Slovakia. Established in 1993, it provides comprehensive local information including guided tours, cultural events, practical visitor services, and sales of souvenirs. The site targets tourists and visitors interested in exploring Nitra and its surroundings, positioning itself as a trusted public service entity affiliated with local government. The content is well-structured, professionally presented, and rich in relevant information, supporting a positive user experience. From a technical perspective, the website employs modern web technologies such as Google Analytics, Google reCAPTCHA, Facebook SDK, and FontAwesome icons. It uses HTTPS for secure communication and demonstrates good mobile optimization and accessibility features. However, explicit security headers like Content-Security-Policy are not detected, and no CMS or hosting provider details are evident. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. The site uses reCAPTCHA to protect forms, but lacks published security policies or incident response contacts. Privacy compliance is basic; while a cookie consent mechanism is present, no dedicated privacy or cookie policy pages are found, which is a compliance gap. WHOIS data is privacy protected, limiting transparency but common for such domains. Overall, the website is trustworthy and professional, serving its public service role effectively. Strategic improvements include publishing clear privacy and cookie policies, enhancing security headers, and providing incident response information to strengthen compliance and security posture.

C

CENTRO Nitra

centronitra.sk

41

CENTRO Nitra operates as a modern retail shopping center located in Nitra, Slovakia, established since 2004. The website presents a professional and well-structured digital presence, targeting families and local shoppers with services including retail shops, events, gift vouchers, and space rental. The business positions itself as the first modern shopping center in the region, emphasizing convenience and community engagement. Technically, the website is built on WordPress with common libraries such as jQuery and Swiper.js, enhanced by SEO tools like Yoast and security features including Google reCAPTCHA and cookie consent mechanisms. The site is mobile-optimized and demonstrates good performance and accessibility standards. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though additional security headers and a formal security policy could improve resilience. Privacy compliance is well addressed with a clear privacy policy and cookie consent. Overall, the website reflects a trustworthy and credible business with a strong local market presence.

P

Psychosociálne centrum Košice

pscentrum.sk

47

Psychosociálne centrum Košice is a Slovak non-profit organization specializing in mental health and social services, with a strong regional presence and over 30 years of operational history. The website provides comprehensive information about their psychiatric, psychological, and social support services, targeting patients and community members. Technically, the site is built on WordPress with common plugins and integrates Google reCAPTCHA for form security. The site is mobile-optimized and presents content in Slovak with good quality and navigation. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and cookie consent mechanisms are missing. WHOIS data confirms domain legitimacy and consistency with the organization's claims.

M

myComm s.r.o.

hasicovo.cz

63

Hasičovo is a Czech Republic based media and community platform operated by myComm s.r.o., focusing on firefighting news, events, and resources. The website serves the firefighting community with news updates, event calendars, legislative information, and offers free website creation for fire brigades. It maintains a strong market position within its niche, supported by partnerships and an active social media presence. Technically, the site uses modern web technologies including Google Tag Manager, Google reCAPTCHA, and Google Maps API, with good mobile optimization and accessibility. Security posture is solid with HTTPS and reCAPTCHA protections, though some HTTP security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and GDPR adherence. The lack of WHOIS data limits domain trust assessment, but the website content and business information appear professional and trustworthy.