Security Directory

P

fordskladom.sk

prevereneauto.sk

43

Fordskladom.sk is a Slovakian online platform specializing in the sale of used Ford vehicles. Established in 2019, the website targets consumers interested in purchasing pre-owned Ford cars within Slovakia. The business operates a niche retail model focusing on vehicle listings, comparisons, and filtering to facilitate customer decision-making. The website demonstrates consistent branding and a professional design tailored to its target audience. Technically, the site is built on a modern JavaScript framework (likely Vue.js/Nuxt.js) and integrates common marketing and tracking tools such as Google Tag Manager and Facebook Pixel. Cookie consent is managed via Usercentrics, indicating some level of privacy compliance. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit privacy and terms of service documentation. Overall, the site presents a moderate risk profile with room for improvement in compliance and security best practices.

I

IJ Willtrinken e.U.

willtrinken.at

52

IJ Willtrinken e.U. operates an e-commerce platform focused on nighttime beverage delivery in Vienna, Austria. The website offers a wide range of alcoholic and non-alcoholic drinks including beer, wine, spirits, and party packages, targeting adult consumers seeking fast delivery services. The business positions itself as a local night delivery service with a focus on convenience and quick service. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

The website www.leteckezazitky.sk offers aviation experience services across Slovakia, including hot air balloon flights, acrobatic flights, and pilot training experiences. It targets a general audience interested in unique aviation activities and gifts. The site uses modern web technologies such as Vue.js and Bootstrap, with Google Tag Manager integrated for analytics and marketing purposes. Hosting assets are served via DigitalOcean Spaces CDN, indicating a cloud-based infrastructure. Security posture is moderate but lacks critical elements such as security headers and explicit privacy and cookie policies. No contact information or incident response details are provided, which may impact user trust and compliance. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices.

S

Sviečky - zdravé sviečky zo Slovenska pre váš domov | svetlusa.sk

svetlusa.sk

59

The website svetlusa.sk is an e-commerce platform specializing in healthy candles produced in Slovakia, targeting general consumers interested in home decor and wellness products. The business appears to be a small local retailer established in 2021, with a clear focus on selling natural and healthy candles. The website uses modern web technologies including Bootstrap 5, Google Tag Manager, Microsoft Clarity, and other marketing and analytics tools, indicating a moderate level of digital maturity. Hosting is provided by websupport.sk, a Slovak hosting provider, and the domain is secured with HTTPS and DNSSEC, reflecting good technical infrastructure. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is functional and professional but could improve transparency and compliance by adding privacy and security policies and explicit contact information.

B

Bratiska

bratiska.sk

59

Bratiska.sk is an e-commerce website specializing in quality textiles and unique gifts primarily for home use, targeting a general audience in Slovakia. The business appears to be a small retail operation established in 2013, with a consistent brand presence and a focus on home-related products. The website uses modern web technologies including Bootstrap and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. Cookie consent is managed via CookieHub, indicating some level of privacy compliance. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit security policies. No contact emails or phone numbers are explicitly visible, which may affect user trust and support accessibility. Overall, the site is functional and professionally designed but could improve in privacy transparency and security best practices.

S

Sedačky na mieru a nábytok od slovenského výrobcu

sedacka.sk

59

The website sedacka.sk represents a Slovak small business specializing in custom sofa manufacturing and furniture retail. The site is designed with modern technologies such as Bootstrap 5 and integrates common marketing and tracking tools including Google Tag Manager and CookieHub for cookie consent management. The business appears to be locally focused with a domain age consistent with a company founded in 2019. The website content is relevant and professionally presented, targeting general consumers interested in custom furniture solutions. From a technical perspective, the website uses a solid tech stack with responsive design and moderate performance. Hosting is provided by SmartWeb, a known hosting provider in the region. Security posture is adequate with HTTPS and DNSSEC enabled; however, the absence of security headers and formal privacy or terms of service documents indicates room for improvement in compliance and security best practices. Security-wise, no WAF or blocking mechanisms are detected, and no vulnerabilities or suspicious patterns are evident from the data. The site uses tracking pixels from Pinterest, Facebook, and Google Ads, indicating moderate user tracking. Privacy compliance is basic, with a cookie consent mechanism present but lacking a visible privacy policy. Overall, the risk level is moderate with recommendations to enhance security headers, publish privacy and terms documents, and improve contact transparency. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, establishing a vulnerability disclosure process, and enhancing accessibility and SEO features to improve trust and compliance. These steps will strengthen the website's security posture and business credibility in the competitive furniture retail market.

M

Kvalitné pletivo na plot a oplotenie domu

martinec.sk

59

The website martinec.sk is a Slovak-based business focused on providing quality fencing mesh and home fencing solutions. Established in 2004, the domain age and DNSSEC enabled status indicate a stable and legitimate online presence. The site targets homeowners or property owners interested in fencing products, with content primarily in Slovak. Technically, the website uses modern frontend technologies such as Bootstrap 5.3.3 and integrates analytics tools like Microsoft Clarity and Google Tag Manager. A cookie consent mechanism is implemented via CookieHub, indicating some level of privacy compliance. However, no explicit privacy policy or terms of service were found, which is a compliance gap. Security posture is moderate with HTTPS and DNSSEC enabled, but lacks visible security headers and explicit security policies. Contact information is not explicitly provided in the analyzed content, which may affect business credibility and user trust. Overall, the website is functional and moderately professional but would benefit from enhanced privacy disclosures, security headers, and clearer contact details.

E

Eifela

eifela.sk

53

Eifela is a newly established Slovak health-related business, as indicated by the domain registration date in early 2024 and the website title emphasizing health support. The website uses modern web technologies including Bootstrap 5 and integrates common marketing and cookie consent tools such as Google Tag Manager and CookieHub. The technical infrastructure is hosted on Websupport with DNSSEC enabled, indicating a baseline of security awareness. However, the website lacks visible privacy policies, terms of service, and contact information, which limits its compliance and trustworthiness from a user perspective. Security headers are not detected, suggesting room for improvement in hardening the web server configuration. Overall, the website is accessible without WAF or blocking mechanisms, and the content is safe and appropriate for a general audience.

A

act legal

actlegal.com

54

act legal is a German-based legal services provider established in 2014, offering legal advice and consultancy primarily to German-speaking clients. The website presents a professional design with moderate content quality and good user experience, targeting individuals and businesses seeking legal support. The technical infrastructure includes modern web technologies such as Bootstrap, Google Tag Manager, and CookieHub for cookie consent management. Hosting and domain registration are managed via GoDaddy.com, LLC, with a domain age consistent with a mature business presence. Security posture is moderate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy or terms of service pages detected. Overall, the website is functional and trustworthy but would benefit from enhanced privacy disclosures and security practices.

K

K-moto s.r.o.

chigee.sk

42

K-moto s.r.o. operates an e-commerce website specializing in motorcycle accessories and technology products under the brand Chigee. The website targets motorcycle enthusiasts primarily in Slovakia, offering a range of products including smart navigation systems, protective gear, and related accessories. The business model is retail-focused, leveraging an online platform built on PrestaShop CMS. The site demonstrates a moderate level of digital maturity with integration of modern tracking and marketing tools such as Google Tag Manager, Facebook Pixel, and Klaviyo. Security posture is solid with HTTPS enforced and secure form tokens, but lacks advanced security headers and visible privacy or cookie policies, which are compliance gaps. Overall, the website is professional and trustworthy, but could improve privacy compliance and security transparency.

G

Gaerne

gaerne.com

69

Gaerne is an established e-commerce business specializing in motorcycle boots and footwear, serving motorcycle enthusiasts and professionals. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and third-party analytics tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. Privacy and cookie policies are implemented with a consent mechanism, reflecting good compliance with GDPR standards. The domain is long-standing, created in 1997, and secured with HTTPS and domain transfer protection, indicating a trustworthy online presence. However, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and security governance.

T

Tím Zones.sk

pscpsc.cz

45

The website pscpsc.cz is a Czech Republic focused postal code search service operated by Tím Zones.sk. It provides users with the ability to search postal codes by city, street, or postal code, and offers a list of popular postal codes. The site is positioned as a niche informational service targeting the general public in the Czech Republic. Technically, the site uses a custom or unknown CMS with common web technologies such as jQuery, Google Tag Manager, Google Adsense, and Facebook SDK. Hosting is provided by Websupport, a regional hosting provider. The site is mobile optimized and has good SEO and accessibility basics. Security posture is moderate with HTTPS enabled and a consent management platform for GDPR compliance, but lacks explicit security headers and detailed privacy or terms of service pages. No direct company contact emails or phone numbers are present on the site, but contact is available via the parent company Zones.sk. Overall, the site is professional, trustworthy, and safe for general audiences.

T

Team Zones.sk

capcap.it

57

capCAP.it is a specialized Italian website offering postal code (CAP) lookup services for cities and streets across Italy. The site targets Italian residents and users needing postal code information, providing a user-friendly search interface with autocomplete features and popular city CAP listings. The business model appears to be advertising-supported, leveraging Google Adsense and Google Tag Manager for monetization and analytics. The site is relatively new, established in 2022, and operated by Team Zones.sk, a company linked via contact and copyright references.

T

Team Zones.sk

plzplz.at

59

plzPLZ.at is a specialized online service providing postal code search functionality for cities and streets in Austria. The website is operated by Team Zones.sk and targets general users seeking postal code information. It offers autocomplete search features and lists popular postal codes, enhancing user convenience. The site is well-positioned in its niche market, focusing on Austrian postal code data with a clear and consistent branding approach. Technically, the website employs a modern tech stack including jQuery, jQuery UI, Google Fonts, Google Tag Manager, and Google Adsense for advertising and analytics. Hosting is provided by websupport.sk, a known hosting provider. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and a comprehensive consent management platform to comply with GDPR cookie and tracking regulations. However, explicit security headers are not detected, and no formal security or incident response policies are published. The site does not expose sensitive data and uses secure forms for user input. Advertising partners and tracking vendors are numerous but transparently disclosed via the consent mechanism. Overall, the website presents a moderate risk profile with good privacy compliance and a solid technical foundation. Strategic improvements in security headers, explicit privacy and security policies, and enhanced contact information would strengthen trust and compliance. The domain registration is consistent and legitimate, supporting the website's credibility.

D

Deutsch-Französischer Bürgerfonds

buergerfonds.eu

55

The Deutsch-Französischer Bürgerfonds website serves as an informational and funding platform dedicated to promoting Franco-German friendship and European cooperation through cultural and social projects. The organization operates as a non-profit entity, targeting German and French citizens and organizations interested in bilateral relations and European integration. The website content is professionally presented in German, with a French partner site linked, reflecting its bi-national focus. The business model centers on advising, networking, and financing relevant projects, positioning the organization as a niche player in the governmental and non-profit sector. Technically, the website is built on the Drupal CMS platform, utilizing modern front-end technologies such as Bootstrap, jQuery, and Google Tag Manager. Cookie consent is managed via Cookiebot, demonstrating compliance with EU privacy regulations. The site is mobile-optimized and exhibits good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this type of organization. Overall, the domain and website appear legitimate and trustworthy. The overall risk assessment is low, with recommendations to improve security headers, publish privacy and terms documents, and provide clear contact information for security incidents. These steps would enhance compliance and trustworthiness further.

F

Fundacja Centrum im. prof. Bronisława Geremka

geremek.pl

48

Fundacja Centrum im. prof. Bronisława Geremka is a Polish non-profit foundation established in 2008 to preserve and promote the legacy and public values represented by Professor Bronisław Geremek. The foundation engages in educational programs, public debates, monitoring disinformation, and publishing relevant materials. The website reflects a professional and consistent brand image targeting a general audience interested in culture, education, and European values. Technically, the site is built on WordPress with modern frameworks and includes SEO and accessibility features, though some improvements in security headers and DNSSEC could enhance its posture. The security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, well-maintained, and aligned with the foundation's mission.

T

Trivali

trivali.be

46

Trivali is a Belgian digital agency specializing in custom web design, webshop development, and marketing services primarily using Drupal and WordPress platforms. The company positions itself as an expert in tailored web solutions, targeting businesses seeking professional digital presence and marketing support. The website reflects a small-sized agency with a clear focus on quality and client collaboration. Technically, the site is built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and standard security headers present, though no explicit security policy or incident response information is published. Privacy compliance is well addressed with GDPR-compliant cookie consent and a comprehensive privacy policy. Overall, the domain WHOIS data is restricted due to .be registry policies but shows no suspicious indicators. The website is professional, trustworthy, and well-optimized for SEO and user experience.

F

Ferrit s.r.o.

ferrit.cz

59

Ferrit s.r.o. is a Czech-based company specializing in manufacturing and servicing global mining transport solutions, including suspended monorail systems, rail transport, trackless machinery, mining processing equipment, and safety devices for mining rescue operations. The company targets mining and industrial transport sectors worldwide, boasting a client base across multiple countries as evidenced by their interactive client map. Their business model focuses on providing comprehensive transport and safety solutions for underground mining operations, supported by over 25 years of industry experience and EU funding projects. The website reflects a professional and consistent brand image with multilingual support and active social media engagement. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Analytics, and Google Tag Manager, ensuring responsive design and moderate performance. The site integrates cookie consent mechanisms and secure login/registration forms, indicating attention to privacy and user security. However, some security headers are not explicitly detected, and no public security or incident response policies are found, suggesting room for improvement in transparency and security maturity. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of WHOIS data and domain registration details introduces uncertainty about domain legitimacy. The website shows GDPR compliance through privacy and cookie policies, though terms of service and vulnerability disclosure mechanisms are not evident. Overall, the site is safe, professional, and trustworthy, but would benefit from enhanced security documentation and domain registration transparency. Strategic recommendations include implementing comprehensive security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to strengthen trust and compliance.

O

Objavte

objavte.com

69

Objavte.com is a Slovak-focused platform dedicated to discovering local experiences, hidden places, and cultural insights within Slovakia. The website targets general audiences interested in travel and authentic local experiences. The business appears to be a small startup founded in 2023, leveraging modern web technologies and multilingual support to reach a broader audience. Technically, the site is built on the Bubble.io platform, integrating third-party services such as Cookiebot for cookie consent management, Weglot for translations, and Google Tag Manager for analytics. The site demonstrates good design quality and user experience with responsive and accessible features, although some SEO and accessibility improvements are possible. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is strong with a comprehensive cookie policy and GDPR-aligned consent mechanisms. However, the site lacks visible contact information, terms of service, and security policies, which impacts business credibility. Overall, the site is professional and trustworthy but could improve transparency and security documentation.

W

Wyższa Szkoła Informatyki i Zarządzania

wsiz.pl

48

Wyższa Szkoła Informatyki i Zarządzania (WSIiZ) is a Polish higher education institution specializing in computer science and management, operating since 2001. The website serves as an informational portal for prospective and current students, offering details about academic programs and institutional information. Technically, the site is built on WordPress with common plugins such as Yoast SEO and MegaMenu Pro, and uses Google Tag Manager for analytics. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and DNSSEC. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Business credibility is strong given the domain age and consistent WHOIS data. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices.

I

Ingka Centres Holding B.V.

avion.cz

64

Avion Shopping Park is a large retail shopping center located in Ostrava, Czech Republic, operated under the parent company Ingka Centres Holding B.V. The website presents a professional and well-structured digital presence showcasing a variety of retail shops, restaurants, services, and events aimed at the general public and local community. The business model focuses on providing retail space and customer services, supported by a strong brand association with IKEA. Technically, the website leverages modern web technologies including React and Gatsby, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR. Overall, the website reflects a trustworthy and professional retail business with moderate to good technical maturity and security awareness.

Vila48.cz is a professionally designed website representing a residential rental business located in Ostrava, Czech Republic. The company offers six modern, fully equipped apartments combining hotel comfort with private rental flexibility, targeting firms, managers, tourists, students, and individuals seeking transitional housing. The business has a credible market position supported by an award-winning renovation and a clear focus on premium residential services. Technically, the website is built on WordPress with Elementor, leveraging modern JavaScript libraries and Google services for analytics and marketing. The site is mobile-optimized and SEO-friendly with structured data implementation. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks security headers and formal privacy or cookie policies, indicating compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

J

JYSK

jysk.cz

58

JYSK.cz is the Czech Republic branch of the well-established JYSK retail group, specializing in furniture and home goods. The website offers a comprehensive online shopping experience complemented by physical stores, targeting general consumers in the Czech market. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on Drupal 10, leveraging modern analytics and marketing tools such as Google Tag Manager, Dynamic Yield, and Salesforce Chat, hosted on a robust CDN infrastructure via Akamai. Security posture is strong with HTTPS enforced, security headers present, and GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

G

Grunt od nowa

gruntodnowa.pl

56

Grunt od nowa is a Polish website built on WordPress, primarily targeting a Polish-speaking audience. The site appears to be a small-scale business or project launched around 2022, with basic content and SEO optimization via Yoast SEO. The presence of Cookiebot indicates an awareness of cookie consent and privacy compliance, although no explicit privacy policy or terms of service pages were found in the analyzed content. The website uses Google Analytics and Google Tag Manager for traffic analysis and marketing purposes. Technically, the site employs standard web technologies including jQuery and asynchronous script loading for performance. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and detailed security policies.

S

SCIO

scio.cz

40

SCIO is a well-established Czech education services provider specializing in entrance exams, preparatory courses, and educational testing products for students and schools. With over 30 years of experience, SCIO holds a strong market position in the Czech education sector, offering a broad portfolio of services including national comparative exams for universities and secondary schools, as well as professional tools for educators. The website reflects a professional and user-friendly digital presence with clear navigation and comprehensive content tailored to its target audience of students, parents, and educational institutions. Technically, the site employs modern web technologies, including JavaScript, Google Tag Manager, and CookieHub for privacy compliance, and is optimized for mobile devices with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. The absence of WHOIS data limits domain trust analysis, but the overall digital footprint and professional presentation support legitimacy. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and compliance.

W

Woox

woox.cz

9

WOOX.cz is a Czech-based e-commerce retailer specializing in functional clothing designed for various weather conditions and outdoor activities. The company targets outdoor enthusiasts and general consumers seeking durable and versatile apparel. Their business model includes direct online sales and a membership club (WOOX Klub) offering significant discounts. The website is professionally designed with clear navigation and supports social login options for user convenience. Technically, the site leverages the Shoptet e-commerce platform and integrates multiple modern analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Facebook SDK, and Segmentify. The site is mobile-optimized and uses HTTPS to secure user data. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the website demonstrates good practices like secure login forms and cookie consent mechanisms but lacks transparency in security policies and vulnerability disclosures. The absence of WHOIS data limits the ability to fully verify domain legitimacy, although the site content and technical setup suggest a legitimate business. Overall, WOOX.cz presents a moderate risk profile with room for improvement in privacy compliance and security transparency. Strategic recommendations include publishing a privacy policy, enhancing security headers, and providing incident response contacts to increase trust and compliance.

C

C O R E 1

core1.agency

54

C O R E 1 is a Czech digital agency specializing in AI and advanced web technologies, operating since 2007. They position themselves as leaders in their field, offering services including AI integration, web design, UI/UX, and digital marketing. Their website reflects a professional and modern digital presence with strong branding and client testimonials, targeting businesses seeking innovative web solutions. Technically, the site uses modern web technologies, including Video.js for media, Google Tag Manager, and various marketing and retargeting tools, with a custom CMS named core1/BasicCMS. The site is well-optimized for performance, mobile responsiveness, and SEO. Security-wise, HTTPS is enforced and cookie consent mechanisms are implemented, but there is a lack of published security policies or incident response information. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the site demonstrates a mature digital infrastructure and credible business presence.

D

DIAKOVERE

kommunikationswerkstatt-hannover.de

39

Kommunikationswerkstatt Hannover is a communication agency service offered by DIAKOVERE, the largest non-profit social and healthcare organization in Niedersachsen, Germany. The website presents professional agency services targeted at social and healthcare sectors, emphasizing communication expertise within a non-profit framework. The business model focuses on providing specialized communication support to organizations in the social and healthcare domain, leveraging the reputation and scale of DIAKOVERE. Technically, the website is built on Joomla CMS, utilizing modern frontend technologies such as jQuery, Bootstrap, GSAP TweenMax, and LayerSlider. Hosting is managed via kasserver.com, with secure HTTPS connections and cookie consent mechanisms implemented to comply with privacy expectations. The site demonstrates moderate performance and good mobile optimization, although accessibility features are basic. From a security perspective, the site enforces HTTPS and employs cookie consent blocking scripts to limit unauthorized data storage. However, it lacks important security headers and does not provide a security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website is professional and trustworthy, with a solid business credibility score. The absence of privacy and terms of service policies, as well as security headers, slightly lowers the privacy compliance and security posture scores. Strategic enhancements in these areas would improve the site's overall security and compliance standing.

M

Mathäser Filmpalast

mathaeser.de

64

Mathäser Filmpalast is a prominent cinema located in Munich, Germany, offering a wide range of film screenings, events, and online ticketing services. The website reflects a mature digital presence with comprehensive content about current and upcoming films, events, and cinema facilities. It targets cinema-goers in Munich and surrounding areas, positioning itself as a leading entertainment venue with premium technologies such as Dolby Cinema and advanced sound and projection systems. The site integrates multiple third-party services for marketing and ticket sales, demonstrating a well-established business model within the hospitality and entertainment sectors. Technically, the site uses modern JavaScript libraries, responsive design, and structured data to enhance user experience and SEO.

E

everso | Live music experience

eversomusic.de

53

everso is a German-based live music experience provider offering an exclusive artist team of over 80 performers for successful events. The website targets event organizers seeking professional live music entertainment, positioning itself as a specialized service provider in the media sector. The business model revolves around artist booking and event services, with a focus on quality and exclusivity. Technically, the website is built on WordPress using the Divi theme, enhanced with multiple plugins for multilingual support, SEO, and interactive content. The site features modern multimedia elements such as video backgrounds and animations, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and explicit privacy or incident response policies. The absence of WHOIS registration data raises legitimacy concerns, though the professional presentation and active content mitigate some risk. Overall, the site is functional and professional but would benefit from improved transparency and security practices.

A

ANAFRA a.s.

anafra.eu

54

ANAFRA a.s. is a Czech-based IT services company specializing in IT infrastructure solutions including virtual private servers, hosting, colocation, cloud storage via Nextcloud, IT management, and hardware sales with a focus on Supermicro systems. Established in 2006, the company positions itself as a trusted system integrator and IT partner for businesses requiring tailored IT solutions. The website reflects a professional and consistent brand image with clear navigation and multilingual support, targeting business and IT professional audiences. Technically, the site employs modern tracking and marketing technologies such as Google Tag Manager, Microsoft Clarity, and MailerLite, alongside live chat support via LimeTalk. The site is mobile optimized and performs moderately well, though no explicit CMS was detected, suggesting a custom or proprietary platform. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is partial, with terms of service present but no visible cookie consent mechanism or privacy policy page. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

P

Plusnet GmbH

plusnet.de

61

Plusnet GmbH is a leading telecommunications partner in Germany, specializing in providing modular and scalable internet, telephony, and networking solutions tailored for medium to large businesses, including municipalities. The company positions itself as a driver for the digital future, serving over 40,000 customers with a strong partner network and approximately 500 employees. Their offerings include fiber optic internet, DSL, radio links, mobile access, SIP trunks, cloud telephony, VPN, and security services compliant with KRITIS standards. The website reflects a mature digital presence built on the Neos CMS and Flow PHP framework, with modern web technologies and a focus on user experience and accessibility.

B

Brillinger Orthopädie

brillinger.de

49

Brillinger Orthopädie is a well-established German healthcare provider specializing in orthopaedic and rehabilitation technologies. Recently acquired by Ottobock, it benefits from being part of a large global network, enhancing its market position and service capabilities. The website reflects a professional healthcare business with a clear focus on patient care and quality. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS and privacy tools in place, though explicit security headers and policies could be improved. Overall, the site is trustworthy, accessible, and well-structured, serving its target audience effectively.

B

Barbican Centre

barbican.org.uk

70

The Barbican Centre is a leading non-profit arts and learning institution based in London, UK, offering a wide range of cultural events including theatre, music, dance, cinema, and visual arts. The website reflects a mature digital presence with comprehensive event information, membership options, venue hire services, and educational programs. Technically, the site is built on Drupal CMS, integrates modern technologies such as Google Tag Manager and Spektrix ticketing, and demonstrates good performance and accessibility standards. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be explicitly verified and enhanced. Privacy compliance is robust, with clear policies and GDPR adherence. Overall, the site projects high business credibility and trustworthiness, supported by consistent branding and clear contact information. WHOIS data for the 'www' subdomain is unavailable due to domain naming rules but does not detract from the legitimacy of the main domain.

T

Teatro alla Scala

teatroallascala.org

65

Teatro alla Scala is a prestigious cultural institution based in Milan, Italy, renowned globally for its opera, ballet, and concert performances. The website serves as a comprehensive portal for ticket sales, event calendars, educational programs, and streaming content via LaScalaTV. The site targets a broad audience including opera enthusiasts, families, and young audiences, offering rich multimedia content and detailed event information. The business model revolves around live performances, cultural education, and digital media distribution, supported by prominent sponsors such as Intesa San Paolo and Rolex. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Bootstrap, and Swiper.js for interactive elements. It integrates analytics tools like Matomo and Google Tag Manager, ensuring data-driven insights while maintaining user privacy through a clear cookie consent mechanism. The site is mobile-optimized and accessible, with good SEO practices and a professional design that enhances user experience. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements cookie consent for compliance with GDPR. However, explicit security headers and published security policies are absent, representing areas for improvement. The WHOIS data is unavailable due to a malformed query, but the domain appears legitimate and active, consistent with the institution's reputation. Overall, Teatro alla Scala's website is a high-quality, trustworthy platform that effectively supports its cultural mission. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving transparency around security practices to further strengthen trust and compliance.

B

Baumüller Nürnberg GmbH

baumueller.com

57

Baumüller Nürnberg GmbH is a leading manufacturer specializing in electric automation and drive systems, serving industrial and mobility sectors. Established in 1930, the company holds a strong market position with a comprehensive portfolio including servo drives, control platforms, motors, and engineering tools. Their business model focuses on B2B engagements, supporting customers throughout the entire lifecycle from engineering to predictive maintenance. The website reflects a mature digital presence with multi-language support and detailed industry-specific content. Technically, the website is built on Joomla CMS with modern frameworks like UIkit and jQuery, enhanced by Google Tag Manager and CookieFirst for analytics and consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. Security posture is robust with HTTPS enforced, secure forms, and cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly visible, suggesting room for improvement in transparency. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for Baumüller, though the absence of WHOIS data due to privacy protection slightly impacts domain trust analysis. Strategic recommendations include publishing security policies, adding vulnerability disclosure channels, and enhancing direct security contact information.

V

VertiGIS

topographics.de

61

VertiGIS is a German-based technology company specializing in geospatial software solutions for sectors including utilities, infrastructure, telecommunications, and construction. The company recently integrated TOPO graphics into its portfolio, enhancing its product offerings such as the VertiGIS Data Converter and VertiGIS Studio. The website demonstrates a professional presence with clear branding and targeted content for business clients in relevant industries. Technically, the site is built on WordPress with modern plugins for SEO, cookie management, and user experience, delivering good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and compliance with GDPR indicate legitimacy. Overall, VertiGIS presents a credible and well-maintained digital presence aligned with its business objectives.

E

Enovis

enovis.com

67

Enovis is a well-established healthcare technology company specializing in clinically differentiated medical devices and solutions aimed at improving patient outcomes and workflow efficiencies. Their portfolio includes multiple recognized brands such as DonJoy, Aircast, and Enovis Surgical, targeting patients, medical professionals, and investors. The website reflects a mature digital presence built on Drupal 10, integrating modern marketing and analytics tools like Google Tag Manager and HubSpot, alongside a robust cookie consent mechanism via Osano. Security posture is solid with HTTPS and domain transfer protections, though there is room for improvement in security headers and incident response transparency. Overall, the site demonstrates professionalism and trustworthiness appropriate for a large healthcare entity.

M

Metropolia Ammattikorkeakoulu

metropolia.fi

72

Metropolia Ammattikorkeakoulu is a large, multidisciplinary university of applied sciences based in the Helsinki metropolitan area, Finland. It offers a wide range of degree programs, continuous learning opportunities, and research and development services, targeting students, researchers, and corporate partners. The institution holds a strong market position as one of Finland's leading applied sciences universities, emphasizing innovation and international collaboration. The website reflects this with comprehensive content, clear navigation, and a professional design. Technically, the website is built on Drupal 11, leveraging modern web technologies including Google Tag Manager and Enzuzo for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured content. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, includes essential security headers, and uses secure cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy policy and terms of service pages, as well as lack of direct contact emails or phone numbers, slightly reduces privacy compliance and user trust. Overall, the website is trustworthy, professional, and safe for general audiences. Strategic improvements in privacy transparency and contact information would enhance compliance and user confidence.

V

VELA EU

vela.eu

64

VELA EU is a well-established company specializing in manufacturing and providing safety and self-reliance chairs for children and adults, particularly targeting seniors and disabled individuals. The company has a long history dating back to 1935 and operates primarily in the healthcare sector, focusing on mobility aids. Their website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress and leverages modern technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is hosted likely behind Cloudflare CDN, ensuring good performance and security. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Privacy compliance is strong with a comprehensive privacy policy and GDPR-aligned cookie consent. Overall, the website and business appear legitimate and trustworthy, with no signs of malicious activity or content safety concerns.

H

Human Care Group

humancaregroup.com

54

Human Care Group operates a professional website offering safe patient handling products and walking aids targeted at clients and caregivers within the healthcare sector. The company appears to be established since 2019 and positions itself as a reliable supplier in this niche. The website is built on WordPress with modern SEO and consent tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit security policies and WHOIS transparency. Overall, the site is trustworthy but would benefit from enhanced compliance and transparency measures.

F

Fillauer

fillauer.com

65

Fillauer is a medium-sized healthcare company specializing in prosthetic and orthotic devices, serving both healthcare professionals and patients. The company has an established market presence since 1998 and operates an e-commerce platform built on WordPress and WooCommerce. The website employs modern technologies including jQuery, Font Awesome, and Google Tag Manager, indicating a moderate level of digital maturity. While the site is functional and professionally designed with good navigation and mobile optimization, it lacks visible privacy and cookie policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS enabled and domain registration protections in place, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is safe and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Ortho Baltic is a Lithuanian company specializing in the development and production of high-quality custom-made orthopedic products, including footwear and orthoses. The company targets individuals requiring personalized orthopedic solutions and operates within the healthcare sector. Their website presents a professional image with clear navigation and relevant content focused on their niche market. Technically, the site uses legacy technologies such as jQuery 1.6.4 and integrates Google Analytics and Tag Manager for tracking. While HTTPS is enabled, the absence of modern security headers and the use of outdated libraries present moderate security risks. Privacy compliance is addressed through a visible privacy policy and cookie consent mechanism, though terms of service and security policies are missing. Overall, the website is accessible, safe, and moderately optimized for mobile and SEO.

R

Respecta Oy

respecta.fi

55

Respecta Oy is a Finnish healthcare company specializing in assistive devices, prosthetics, and health technology solutions. The company serves both individual consumers and organizations, offering products, rental services, rehabilitation, and ergonomic solutions. The website reflects a mature market position with comprehensive service offerings and a strong local presence in Finland. Technically, the website uses modern JavaScript libraries and third-party tools such as Usercentrics for cookie consent and Google Tag Manager for analytics, indicating a good level of digital maturity. Security posture is strong with HTTPS enforced, privacy compliance evident, and no critical vulnerabilities detected. The website is professionally designed with excellent content quality and navigation, supporting a high trustworthiness rating. Overall, the site demonstrates a well-managed online presence aligned with business goals and regulatory requirements.

V

Vigo

vigogroup.eu

55

Vigo is a healthcare-focused company specializing in orthopedic aids such as prostheses, orthoses, wheelchairs, bicycles, scooters, insoles, and orthopedic shoes, primarily serving the Belgian market. The website is professionally designed, targeting Dutch and French speaking audiences, and provides a comprehensive cookie consent mechanism reflecting GDPR compliance efforts. Technically, the site employs modern web technologies including Google Tag Manager, Cookiebot for consent management, and reCAPTCHA for bot protection. Security posture is moderate with HTTPS usage and cookie consent but lacks visible advanced security headers or published security policies. The absence of WHOIS registrant data is consistent with EURid's privacy policies for .eu domains, and the domain appears legitimate based on website content and tracking disclosures. Overall, the site presents a trustworthy and professional digital presence for its healthcare business.

P

pechschwarz®

pechschwarzmedia.de

51

pechschwarz® is a well-established digital agency specializing in strategy, design, and digital transformation with a strong focus on holistic brand consulting and creating impactful brand experiences. Founded in 2000 and based in Germany, the company serves a diverse clientele including B2B companies, e-commerce brands, tech startups, and medical practices. Their comprehensive service portfolio includes branding, web development, online marketing, content production, and CRM solutions, positioning them as a leading player in the digital marketing and branding sector. Technically, the website is built on WordPress with modern technologies such as jQuery, HubSpot integrations, Google reCAPTCHA, and performance optimizations via WP Rocket. The site demonstrates excellent mobile optimization, SEO practices, and fast performance. Hosting is provided by Hetzner Online GmbH, a reputable provider, and the domain is long-established, enhancing credibility. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. While some security headers are not explicitly detected, the site employs anti-fraud tools like ClickCease and Google reCAPTCHA, indicating a proactive security posture. No critical vulnerabilities or WAF blocking were detected. Overall, pechschwarz® presents a professional, trustworthy, and technically mature online presence with strong compliance and security practices. Strategic recommendations include enabling DNSSEC, enhancing security headers, and publishing a formal security policy to further strengthen trust and security posture.

G

GenoHotel

genohotels.com

61

GenoHotel operates a group of business and conference hotels located in Germany, specifically near Cologne, Kassel, and Karlsruhe. The company emphasizes cooperative values such as community, openness, honesty, and trust, integrating these into their hospitality services. Their offerings include modern conference technology, hybrid event capabilities, wellness amenities, and dining options, targeting business travelers and corporate clients. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the website uses modern web technologies including Google Tag Manager for analytics, ConsentManager.net for cookie consent, and Slick Carousel for image sliders. The site is built on a CMS platform inferred as SiteHub and includes Google Maps integration. Performance and mobile optimization are good, though accessibility features are basic. The site enforces HTTPS and includes CAPTCHA on its contact form, enhancing security. Security posture is solid with encrypted connections and privacy compliance, including GDPR-aligned privacy and cookie policies. However, the absence of explicit security headers and published security policies or incident response plans indicates room for improvement. The WHOIS data is unavailable, which slightly reduces trust but the active, professional website and certifications like GreenSign support legitimacy. Overall, GenoHotel's digital presence is well-structured and trustworthy for its hospitality business, with recommendations to enhance security headers, publish security policies, and monitor domain registration status to strengthen trust and compliance.

P

Philharmonie de Paris

philharmoniedeparis.fr

61

Philharmonie de Paris is a prominent cultural institution in France dedicated to music in all its forms, including concerts, exhibitions, educational activities, and publishing. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting a broad audience including families, professionals, and music enthusiasts. The institution holds a strong market position as a leading music and cultural venue in Paris. Technically, the site is built on Drupal 10, leveraging modern web technologies and third-party services such as Google Tag Manager and Didomi for consent management, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and GDPR compliance mechanisms in place, though some security headers could be improved and explicit security policies are not publicly found. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, supporting the institution's credibility and user trust.

R

Royal Ballet and Opera

roh.org.uk

66

The Royal Ballet and Opera website serves as a digital platform for promoting and selling tickets to ballet and opera performances, as well as streaming and cinema screenings. It targets cultural audiences and performing arts enthusiasts, providing detailed event information and a professional user experience. The site leverages modern web technologies including React, Google Analytics, and Google Tag Manager, and uses Prismic CMS for content management. The design is visually appealing, mobile-optimized, and accessible, reflecting a mature digital presence. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though security headers and explicit privacy policies are absent. The WHOIS data for the domain www.rbo.org.uk is unavailable and indicates the domain is invalid or unregistered, suggesting a possible misconfiguration or placeholder domain. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security disclosures.

C

Carnegie Hall

carnegiehall.org

51

The analyzed URL is a queue/waiting room page powered by Queue-it for Carnegie Hall, designed to manage high traffic volume and control access to the main website. The page itself contains minimal content focused on queue status and instructions, with no direct business or contact information. The technical infrastructure relies on modern JavaScript libraries and multiple third-party analytics and marketing pixels, indicating a mature digital marketing setup. However, the page lacks visible privacy, cookie, or terms of service policies, and no contact or incident response information is provided. Security posture is moderate due to HTTPS usage and Queue-it's anti-bot mechanisms, but absence of security headers and policies reduces overall security confidence. The domain WHOIS data is unavailable due to privacy protection or query failure, which is common for large organizations but slightly reduces trust. Overall, the page is functional for its purpose but limited in content and compliance transparency.