Security Directory

M

Ministarstvo gospodarstva

szp.hr

52

The website szp.hr is the official Croatian government consumer protection portal managed by the Ministry of Economy (Ministarstvo gospodarstva). It provides comprehensive information and guidance on consumer rights, dispute resolution, public service complaints, and relevant legislation. The portal targets Croatian consumers and serves as a central resource for consumer protection issues. Technically, the site is built on ASP.NET Web Forms, uses Bootstrap icons, and is hosted by CARNET, a reputable Croatian academic network. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and no exposed sensitive data, though security headers are not explicitly visible. Privacy and cookie policies are not found, indicating a compliance gap. Contact information is clearly provided with official emails and phone numbers. Overall, the domain registration and website content align well, indicating high legitimacy and trustworthiness.

I

Innovation Ads Croatia

iac.hr

54

Innovation Ads Croatia is a small, established digital agency based in Rijeka, Croatia, specializing in web design, graphic design, video production, and visual identity services. With over 25 years of experience, the company positions itself as a reliable partner offering professional and creative digital solutions to local businesses and individuals. The website is built on WordPress with Elementor, indicating a modern and maintainable technical infrastructure. The presence of Google Analytics and Cloudflare DNS shows a standard digital maturity level. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

H

Hrvatski zavod za mirovinsko osiguranje

mirovinsko.hr

64

Hrvatski zavod za mirovinsko osiguranje (HZMO) is a Croatian government public institution responsible for managing the pension insurance system. Established by law in 2001, it serves employees, agricultural workers, craftsmen, and other insured persons by administering pension rights and benefits based on generational solidarity. The website provides comprehensive information about pensions, child allowances, insurance registrations, and electronic services, targeting Croatian residents and pensioners. It holds a strong market position as the official national pension authority with a large organizational size and a well-established digital presence. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages and accessibility features.

M

medme

medme.pl

66

Medme is a Polish online platform specializing in pharmaceutical product reservations with local pharmacy pickup services. The website targets Polish consumers seeking convenient and quick access to medicines without queues. It operates on a Magento e-commerce platform with a modern Hyvä theme, integrating Google Maps API for location-based services and multiple tracking and marketing tools such as Google Tag Manager, GetResponse, and SalesManago. The site demonstrates a good level of digital maturity with responsive design and structured data for SEO. Security posture is solid with HTTPS enforcement and security headers, although explicit privacy and terms of service pages are not found, which impacts compliance confidence. WHOIS data is unavailable from the Polish registry, limiting domain trust assessment. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

Fundacja Onkologiczna Nadzieja is a Polish non-profit foundation established in 2006, dedicated to supporting cancer patients through financial aid, education, and psychological support. The foundation operates a website that provides information about its services, fundraising options, and contact details. The site is built on WordPress using the Avada theme and integrates Google Tag Manager and CookieYes for analytics and cookie consent management. The website is well-structured, mobile-optimized, and compliant with GDPR requirements, including a comprehensive privacy policy and cookie consent mechanism. Security posture is good with HTTPS enabled and no obvious vulnerabilities, though some security headers could be improved. WHOIS data confirms the domain's legitimacy and long-term registration consistent with the foundation's history. Overall, the website presents a trustworthy and professional digital presence for the foundation.

Stowarzyszenie Apetyt na Życie is a Polish non-profit organization established in 2012, dedicated to supporting children and adults suffering from digestive system disorders, particularly those requiring parenteral or enteral nutrition and patients with inflammatory bowel diseases. The organization provides patient support, educational resources, advocacy, and fundraising activities, positioning itself as a trusted community resource within Poland's healthcare sector. The website reflects a professional and consistent brand image, with comprehensive content including patient stories, news, and multimedia resources.

P

PRIMOPRO Sp. z o.o. Sp. k.

programedukacjionkologicznej.pl

58

The Program Edukacji Onkologicznej website is a Polish national educational platform focused on oncology, targeting patients, their families, and medical professionals. It offers comprehensive educational content including modular courses, guides, multimedia, and events. The platform is supported by numerous pharmaceutical companies and medical organizations, indicating a strong market position within healthcare education in Poland. The business operates under PRIMOPRO Sp. z o.o. Sp. k., with a clear focus on oncology education and patient support. Technically, the website employs modern JavaScript libraries such as Swiper.js and Choices.js, and integrates Google Tag Manager for analytics. The site is mobile-optimized with good navigation and content structure, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. Privacy compliance is well addressed with clear cookie and privacy policies, including a consent mechanism. From a security perspective, the site uses HTTPS (implied by external scripts loaded via HTTPS), but lacks visible HTTP security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is typical for .pl domains with privacy protection and does not raise immediate concerns given the professional nature of the site and its sponsors. Overall, the website presents a trustworthy, professional, and well-maintained educational resource with moderate technical sophistication and good privacy practices. Strategic improvements in security headers and incident response transparency would enhance its security posture and trustworthiness.

Towarzystwo POLSPEN is a Polish non-profit professional society specializing in clinical nutrition, parenteral and enteral feeding, and metabolism. The organization provides educational courses, conferences, publications, and clinical guidelines targeting healthcare professionals and patients. The website is built on WordPress using the Divi theme, reflecting a moderate level of digital maturity with good content quality and navigation. Security posture is adequate with HTTPS enabled but lacks some advanced security headers and DNSSEC. Privacy compliance is partial with a cookie consent mechanism but no explicit privacy or terms of service pages. Overall, the domain registration data supports the legitimacy of the organization, and the website content is safe and professional.

P

Polskie Towarzystwo Żywienia Klinicznego Dzieci

ptzkd.org

59

Polskie Towarzystwo Żywienia Klinicznego Dzieci is a Polish non-profit clinical nutrition society focused on pediatric healthcare. Established in 2011, it provides educational courses, conferences, clinical nutrition standards, and membership services to healthcare professionals in Poland. The website reflects a professional and consistent brand presence targeting medical professionals and supporting members. Technically, the site is built on WordPress with Elementor and Slider Revolution, hosted on home.pl, and uses modern web technologies including Google Fonts and Google Maps API. The site is mobile-optimized and has good SEO and accessibility basics. Security posture is adequate with HTTPS and cookie consent management via Usercentrics, but lacks DNSSEC and explicit security headers. WHOIS data confirms domain legitimacy and consistency with the business. Overall, the site is trustworthy and well-maintained with minor security improvements recommended.

P

Polskie Towarzystwo Rehabilitacji

ptreh.com

50

Polskie Towarzystwo Rehabilitacji (PTReh) is a well-established Polish professional society dedicated to rehabilitation medicine. The website serves as an information hub for members and professionals, offering news, event announcements, training course details, and organizational information. The society targets medical professionals, rehabilitation specialists, and patients interested in rehabilitation services. The business model is non-profit, focusing on education, advocacy, and professional development within the healthcare sector in Poland. The domain age and content consistency support the legitimacy and established presence of the organization. Technically, the website is built on Joomla CMS, utilizing common JavaScript libraries such as jQuery and MooTools, and styled with Bootstrap. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, performance is moderate, and accessibility features are basic. SEO optimization is also basic, with no advanced metadata or structured data beyond minimal JSON script options. From a security perspective, the site uses HTTPS with a valid SSL certificate, and the domain has a clientTransferProhibited status to prevent unauthorized transfers. However, DNSSEC is not enabled, and no advanced security headers (e.g., CSP, HSTS) are detected. There is no visible privacy or cookie policy, which is a compliance gap, especially under GDPR. No incident response or vulnerability disclosure information is provided. Forms exist for user login but lack visible advanced security measures beyond Joomla's default CSRF token. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance, enhanced security headers, and better transparency regarding data protection policies. The risk level is moderate with no critical vulnerabilities detected, but compliance improvements are recommended.

P

Polskie Towarzystwo Onkologii Klinicznej

ptok.pl

57

The website ptok.pl represents the Polish Society of Clinical Oncology, a well-established professional healthcare society focused on oncology education, research, and clinical practice in Poland. The site offers a comprehensive range of resources including news, conferences, educational programs, and publications targeted primarily at oncology professionals and patients seeking oncology information. The society has a strong market position supported by a domain age of nearly two decades and partnerships with reputable organizations such as ESMO. Technically, the site is built on Drupal 8 with modern front-end libraries and integrates Google Tag Manager for analytics and cookie consent management. Security posture is adequate with HTTPS enabled and a consent mechanism in place, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is basic, lacking explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Polskie Towarzystwo Neurologiczne

ptneuro.pl

60

Polskie Towarzystwo Neurologiczne operates a professional and educational website serving neurologists, medical professionals, and patients in Poland. The site provides membership information, certifications, news, educational campaigns, and access to professional journals. The organization is well-established with a domain registered since 2006 and maintains a consistent brand presence online. Technically, the website is built on Drupal 8 with modern JavaScript libraries and integrates Google Analytics for traffic monitoring. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though improvements could be made by enabling DNSSEC and adding security headers. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a credible and trustworthy professional society with good digital maturity.

P

Polskie Stowarzyszenie Pielęgniarek Onkologicznych

pspo.pl

38

Polskie Stowarzyszenie Pielęgniarek Onkologicznych is a specialized non-profit organization focused on oncology nursing in Poland. The website serves as a professional platform providing recommendations, guidelines, consultant listings, publications, and information about conferences and training for oncology nurses. The target audience is healthcare professionals, specifically nurses interested in oncology. The organization maintains a professional web presence with consistent branding and relevant content tailored to its niche. Technically, the website is built on WordPress using the Astra theme and several plugins such as Yoast SEO and Contact Form 7, indicating a moderate level of digital maturity. The site is mobile-optimized and includes SEO best practices, but lacks some advanced accessibility features. Security posture is adequate with HTTPS enforced and use of reCAPTCHA for forms, but the absence of security headers and explicit privacy/cookie policies suggests room for improvement. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but is common for such organizations. Overall, the website is trustworthy and professional, with moderate risk primarily related to privacy compliance and security header implementation.

F

Fundacja Polska Koalicja Pacjentów Onkologicznych

pkpo.pl

45

Fundacja Polska Koalicja Pacjentów Onkologicznych is a Polish non-profit coalition that unites oncology patient organizations to provide support, advocacy, and information to cancer patients and their families. The website serves as a hub for resources, cooperation with partner organizations, and public engagement. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and a cookie consent mechanism, hosted by home.pl S.A. The security posture is solid with HTTPS enforced and secure forms, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, the website is professional, trustworthy, and well-positioned in the healthcare non-profit sector in Poland.

Kwiat Kobiecości is a Polish non-profit organization dedicated to raising awareness and providing support for women diagnosed with cervical cancer. Founded around 2021, it is driven by the personal experiences of Ida Karpińska and other women who have battled and overcome this disease. The organization focuses on education, support, and advocacy to address the alarming statistics of cervical cancer in Poland. The website serves as a platform for information dissemination and community engagement, leveraging social media channels such as Facebook, Instagram, and YouTube to extend its reach. Technically, the website is built on WordPress using the Divi theme, supplemented by plugins like WooCommerce, Responsive Lightbox, and YOP Poll. It integrates Google Analytics and Facebook Pixel for visitor tracking and marketing insights. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. The absence of visible privacy and cookie policies, as well as security headers, indicates areas for improvement in compliance and security hardening. From a security perspective, the site uses HTTPS with a good SSL configuration, but lacks advanced security headers and explicit privacy compliance mechanisms. No WHOIS data is available, likely due to privacy protection, which is justifiable given the organization's non-profit and health-related nature. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Kwiat Kobiecości presents as a legitimate and focused non-profit entity with a clear mission. Enhancements in privacy policy visibility, cookie consent, and security headers would strengthen its compliance posture and user trust. The technical infrastructure is sound but could benefit from ongoing updates and security best practices to maintain resilience.

F

Fundacja Instytut Praw Pacjenta i Edukacji Zdrowotnej

ippez.pl

55

The Fundacja Instytut Praw Pacjenta i Edukacji Zdrowotnej is a Polish non-profit organization dedicated to enhancing patient rights awareness, promoting health education, and supporting patient organizations across Poland. The website reflects a mature presence with comprehensive content about their campaigns, projects, and educational initiatives. Their market position is that of a reputable healthcare advocacy entity with strong ties to patient communities and healthcare stakeholders. Technically, the website is built on WordPress using modern frameworks like Bootstrap and Divi Builder, with SEO and accessibility considerations in place. Security posture is good with HTTPS enforced and consent management implemented, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

F

Fundacja Wygrajmy Zdrowie

wygrajmyzdrowie.pl

45

Fundacja Wygrajmy Zdrowie is a Polish non-profit foundation established in 2004, dedicated to oncology patient support, education, and advocacy. It collaborates with prominent European and global patient coalitions and Polish medical societies, positioning itself as a trusted entity in the healthcare non-profit sector. The website provides comprehensive information on patient rights, clinical trials, and health education, targeting patients, families, and healthcare professionals. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and plugins for performance and compliance. Security posture is good with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is strong with a detailed privacy policy and GDPR cookie consent. Overall, the site is professional, trustworthy, and well-maintained, supporting its mission effectively.

F

Fundacja Onkocafe - Razem Lepiej

onkocafe.pl

58

Fundacja Onkocafe - Razem Lepiej is a Polish non-profit foundation established in 2013, focused on supporting patients with breast and prostate cancer through education, psychological support, and advocacy. The website is professionally designed using WordPress and integrates modern technologies such as Google Tag Manager, Cookiebot for cookie consent, and reCAPTCHA for form security. The foundation maintains an active social media presence across Facebook, Instagram, Twitter, YouTube, and LinkedIn, enhancing its outreach and engagement with its target audience. The domain registration data aligns well with the organization's profile, indicating legitimacy and stability. Technically, the website is well-structured with good mobile optimization and SEO practices. However, there is room for improvement in security posture, as no security headers were detected, and DNSSEC is not enabled for the domain. Privacy compliance is partial; while cookie consent is implemented, a dedicated privacy policy page is missing, which is a compliance gap. Contact information is clearly presented, including a phone number and contact page link, but no verified company email addresses were found in the HTML content. Overall, the security posture is moderate with good HTTPS implementation and use of security tools like reCAPTCHA. The absence of a vulnerability disclosure policy and security.txt file suggests limited incident response transparency. The website content is safe, targeted at a general audience interested in cancer patient support, with no adult or questionable content detected.

F

Fundacja EuropaColon Polska

europacolonpolska.pl

46

Fundacja EuropaColon Polska is a Polish non-profit organization dedicated to supporting patients and raising awareness about digestive system cancers, particularly colorectal cancer. Affiliated with the European organization Digestive Cancers Europe, it provides educational resources, patient support, advocacy, and participates in research initiatives. The foundation targets patients, caregivers, and the general public with a focus on prevention and quality of life improvement. The website reflects a professional and consistent brand image with comprehensive content tailored to its audience. Technically, the website is built on WordPress using modern frameworks like Bootstrap 4 and WPBakery Page Builder. It employs common plugins such as Contact Form 7 and MediaPress, and is hosted by home.pl S.A., a reputable Polish hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security practices include HTTPS enforcement and use of security-related plugins, but could be enhanced by implementing additional security headers and a cookie consent mechanism. From a security perspective, the site shows a good posture with no visible vulnerabilities or exposed sensitive data. However, the absence of DNSSEC and some security headers represents an area for improvement. Privacy compliance is mostly addressed with a comprehensive privacy policy and terms of service, but the lack of a cookie consent banner may pose GDPR compliance risks. No incident response or vulnerability disclosure policies were found. Overall, the website is trustworthy and professionally managed, with a strong alignment between domain registration data and business claims. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and establishing a vulnerability disclosure policy to further strengthen security and compliance.

B

Bajkazyl Olomouc

bajkazylolomouc.cz

48

Bajkazyl Olomouc is a small local business specializing in bicycle recycling, repair, custom bike building, and sales, serving the Olomouc community in the Czech Republic. The website presents a clear description of their services and target audience, positioning itself as a community hub for cycling enthusiasts. Technically, the site is built using modern React and Gatsby frameworks, with Google Analytics integrated for visitor tracking. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks important security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data suggests privacy protection on domain registration, which is common for small businesses. Overall, the site is professional and trustworthy but could enhance compliance and security posture.

C

Cyklus Trails

cyklustrails.com

42

Cyklus Trails is a small, specialized travel agency offering self-guided and guided cycling tours primarily in the Czech Republic and neighboring countries. Established in 2002, it targets active travelers seeking authentic outdoor adventure experiences along well-known bike paths and cultural sites. The website is built on Drupal 7 and incorporates common web technologies such as jQuery, Google Analytics, and Facebook SDK for social integration and tracking. While the site is accessible and professionally presented, it lacks critical privacy and cookie policies, which impacts compliance with GDPR and other privacy regulations. Security measures include the use of Google reCAPTCHA on contact forms, but the absence of security headers and use of outdated libraries present potential vulnerabilities. The WHOIS data for the domain is missing, raising concerns about domain registration legitimacy, although the website content and contact details appear genuine. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

T

Tourism Office Pula

pulainfo.hr

43

Tourism Office Pula operates as the official tourism promotion entity for the city of Pula, Croatia, providing comprehensive information on local attractions, events, accommodation, and visitor services. The website is well-structured, multilingual, and designed to serve tourists and visitors seeking travel-related information. The business model is government-oriented, focusing on tourism promotion and visitor engagement. The site demonstrates a good level of digital maturity with modern WordPress infrastructure, SEO optimization, and accessibility features. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but could be improved by adding security headers and incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

H

Hrvatska turistička zajednica

htz.hr

58

The website www.htz.hr is the official portal of the Croatian National Tourist Board (Hrvatska turistička zajednica), a government entity dedicated to promoting tourism in Croatia. It provides comprehensive information on tourism projects, support programs, market insights, business events, and promotional materials. The site targets tourism professionals, businesses, and stakeholders within the Croatian tourism sector. The business model is government-driven, focusing on national tourism promotion and support. The website is well-branded, consistent, and professionally maintained with a large content base and multilingual support.

H

Hobby media, s. r. o.

konceptmagazin.sk

54

KONCEPT magazín is a Slovak online media publication specializing in contemporary architecture and design. Operated by Hobby media, s. r. o., it targets Slovak-speaking audiences interested in architectural trends, events, and design culture. The website offers regularly updated articles, a newsletter subscription, and advertising opportunities, positioning itself as a niche media outlet within Slovakia's architecture and design sector. The business model centers on content publication and audience engagement through digital channels.

G

Großmarkt Rostock GmbH

rostocker-wochenmaerkte.de

44

The website www.rostocker-wochenmaerkte.de represents the Rostocker Wochenmärkte, a regional market operator in Rostock, Germany, offering weekly markets with a focus on fresh, regional products. The business also operates an online shop for merchandise and vouchers, targeting local residents and visitors interested in authentic local market experiences. The site is well-branded and consistent with the parent company Großmarkt Rostock GmbH, indicating a solid local market presence. Technically, the website uses a modern but standard tech stack including jQuery, Bootstrap, and Klaro for cookie consent, hosted by Alfahosting. It is mobile-optimized and performs moderately well. Security posture is adequate with HTTPS and cookie consent implemented, but lacks visible advanced security headers and explicit security policies. Privacy compliance is good with a privacy policy and cookie banner, including Google Analytics with IP anonymization and opt-out. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Fokus Praha

fokus-praha.cz

51

Fokus Praha is a well-established non-profit organization based in the Czech Republic, dedicated to providing social and health support to individuals facing serious mental health challenges. The organization holds a strong market position as the largest NGO in the country focused on mental health. Their website reflects a professional and consistent brand image, with clear descriptions of their mission and services targeted at affected individuals and stakeholders. Technically, the site is built on WordPress using modern themes and plugins, including Astra and Yoast SEO, ensuring good SEO and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism, although explicit privacy and security policies are not present on the homepage. Overall, the site is accessible, trustworthy, and demonstrates a moderate to good security posture.

Síť pro rodinu, z.s. is a Czech non-profit organization established in 2015 that serves as an umbrella for maternity, family, and community centers. It focuses on promoting family-friendly legislation, supporting family centers, and fostering a family-friendly climate in society and the labor market. The organization offers advocacy, networking, educational events, and family-friendly company audits and awards. The website reflects a stable market position with clear communication and trust indicators such as testimonials and social media presence. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and libraries like Modernizr and FastClick. It is hosted by a Czech hosting provider and shows good mobile optimization and SEO practices. However, it lacks some security headers and privacy compliance elements such as privacy and cookie policies. From a security perspective, the site enforces HTTPS and does not expose sensitive data. No vulnerabilities or malicious content were detected. The absence of security headers and privacy policies are notable gaps. There is no evidence of incident response or vulnerability disclosure mechanisms. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

A

Awen Amenca z.s.

awenamenca.cz

55

Awen Amenca is a small non-profit organization based in the Czech Republic focused on reducing school segregation by empowering Roma parents, advocating for equal access to education, and organizing community leadership. Their website clearly communicates their mission, activities, and impact, targeting Roma communities, parents, schools, and municipalities. The organization operates campaigns to enroll Romani children in quality mainstream schools and supports legal advocacy against discrimination. Technically, the website is built on the Webnode CMS platform, uses AWS Cloudfront CDN for hosting, and integrates Google Analytics and ShareThis for tracking and social sharing. The site is mobile optimized with good design and navigation, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published policies. WHOIS data is unavailable, which limits domain trust assessment. No privacy or cookie policies are found, indicating compliance gaps. Overall, the website is functional and professional but could improve transparency and security compliance.

D

Dobrovolnické centrum, z.s.

dcul.cz

44

Dobrovolnické centrum, z.s. is a Czech non-profit organization with a 25-year history dedicated to connecting volunteers with those in need across various sectors including sports, culture, and community support. The organization operates volunteer programs supporting children, youth, seniors, and persons with disabilities, and maintains international partnerships to promote volunteering in Europe. Their digital presence is built on a WordPress platform hosted by WEDOS Internet, a.s., featuring modern web technologies and responsive design. The website is well-structured, professionally designed, and provides clear contact information and social media links, although it lacks privacy and cookie policies which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is trustworthy and serves its community-focused mission effectively.

The website 'Spektrum rozvoje zen' serves as a platform supporting women engaged in socially beneficial activities under the organization SPIRALIS. It targets a niche audience within the Czech Republic and operates as a small non-profit entity. The site content is minimal, primarily providing a promotional message and a link to an external Weebly-hosted site, indicating limited direct engagement on the main domain. Technically, the website is built on an outdated WordPress 4.8.3 platform with the Divi theme and uses older jQuery libraries, which introduces potential security vulnerabilities. Hosting is provided by Wedos, a Czech hosting provider consistent with the website's regional focus. Security posture is moderate with HTTPS enabled but lacking security headers and updated software. Privacy compliance is weak, with no visible privacy or cookie policies and no GDPR compliance indicators. Contact information is absent, reducing business credibility and user trust. Overall, the site is functional but requires significant improvements in security, privacy, and content richness to enhance trust and compliance.

Iisii solutions GmbH operates a specialized online appointment booking platform (O-TIS) fully integrated with the EVIDENT TIS practice management system, targeting medical practices in Germany. Their solution enables real-time appointment scheduling, automated reminders, and patient self-service, enhancing operational efficiency and patient satisfaction. The company positions itself as an exclusive partner of EVIDENT, emphasizing seamless integration and automation to reduce manual workload in medical practices. Technically, the website is built on WordPress with modern plugins such as WPBakery Page Builder and Borlabs Cookie for GDPR compliance. The site is mobile-optimized and uses HTTPS with secure data transmission. While the technical stack is modern and the site performs moderately well, there is room for improvement in security headers and accessibility features. Security posture is solid with HTTPS and secure forms, but lacks published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website and business present a professional and trustworthy image with a strong focus on healthcare technology solutions. Strategic improvements in security transparency and technical hardening could further enhance trust and compliance.

P

Praxis & Klinik für Kiefer & Gesicht

praxis-und-klinik.de

46

Praxis & Klinik für Kiefer & Gesicht is a well-established oral and maxillofacial surgery and dental clinic based in Böblingen, Germany, with over 20 years of experience and a strong patient base exceeding 90,000 treated individuals. The clinic offers a comprehensive range of services including dental implants, oral surgery, pediatric dentistry, anesthesia, and aesthetic facial surgery. Their business model uniquely combines the personalized approach of a practice with the safety and capabilities of a clinic, supported by a full anesthesiology team and modern operating rooms. The website reflects a professional healthcare provider targeting patients and referring medical professionals, with multilingual support and patient convenience features such as free parking and Wi-Fi.

R

Red Monkeys GmbH

red-monkeys.de

46

Red Monkeys GmbH is an independent advertising agency based in Konstanz, Germany, specializing in brand building, communication, and activation services. Their website presents a professional and comprehensive overview of their offerings, targeting businesses seeking creative marketing solutions. The agency showcases a strong portfolio with client logos and case studies, emphasizing their regional market presence and creative expertise. Technically, the website employs modern web standards, including HTML5, CSS3, JavaScript, and integrates Vimeo for video content and analytics tools such as Google Analytics and Matomo. The site is mobile-optimized and features a cookie consent mechanism compliant with GDPR requirements. Security-wise, the website uses HTTPS with good SSL configuration and enforces cookie consent for tracking scripts, though it lacks a publicly available security policy or incident response contacts. Overall, the site is trustworthy, well-designed, and compliant with privacy standards, making it a reliable digital presence for the agency.

I

IBB Wörn Ingenieure GmbH

ibb-woern.de

58

IBB Wörn Ingenieure GmbH is a small, established engineering firm based in Germany specializing in infrastructure planning and project execution in the sectors of transportation and energy. Founded in 1996, the company offers comprehensive services including planning, construction supervision, and project management primarily in road construction, civil engineering, and water management. Their website reflects a professional and regionally focused business with detailed project references and industry memberships, indicating a solid market position within their niche. Technically, the website is built with standard modern web technologies (HTML5, CSS3, JavaScript) and hosted via INWX. It demonstrates good mobile optimization, SEO practices, and moderate performance. The site uses HTTPS with excellent SSL configuration but lacks some advanced security headers. Analytics are handled via Plausible, indicating a privacy-conscious approach with minimal user tracking. From a security perspective, the site is well-configured with no visible vulnerabilities or exposed sensitive data. However, it lacks published security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance and user trust. The WHOIS data is consistent with the business claims, showing no privacy protection or suspicious registration patterns, supporting the legitimacy of the domain. Overall, the website presents a trustworthy and professional image with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

V

VR Coaster GmbH & Co. KG

vrcoaster.com

57

VR Coaster GmbH & Co. KG is a leading provider of virtual reality solutions for real ride attractions and location-based entertainment worldwide. As part of the Mack Group, it leverages strong partnerships with industry leaders such as Mack Rides and Europa-Park to deliver advanced VR experiences integrated into theme parks and entertainment venues. The company has established a strong market position since its founding in 2014, serving a global clientele including Universal Studios and Six Flags. The website reflects a professional and modern digital presence, showcasing their VR platforms, content offerings, and client portfolio. Technically, the website is built on WordPress with modern web technologies including video backgrounds, SVG graphics, and Google reCAPTCHA for form security. The site is mobile optimized, accessible, and SEO friendly, although performance is moderate. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and a cookie consent mechanism. The contact form collects user data securely with reCAPTCHA protection. From a security and compliance perspective, the site demonstrates good practices but could improve by adding explicit security policies, incident response information, and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain is unusual and reduces trust slightly, though the strong business branding and partner ecosystem mitigate concerns. Overall, the site is trustworthy and professional with minor areas for security and privacy enhancement. Strategically, VR Coaster should focus on improving transparency around security and privacy, implement cookie consent to comply fully with GDPR, and monitor domain registration status to ensure legitimacy. Enhancing security headers and publishing a vulnerability disclosure policy would further strengthen their security posture and trustworthiness.

F

fingolex

fingolex.com

61

fingolex is a boutique law firm specializing in IT law, with a focus on cloud computing, artificial intelligence, digitalization, and data protection. The company targets technology sector clients seeking customized legal solutions optimized for their success. Founded in 2019, fingolex positions itself as a pragmatic and entrepreneurial legal partner offering modular and product-focused legal advice. The website reflects a professional and consistent brand image with detailed team profiles and insightful articles, supporting its market niche. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, and employs Matomo analytics with cookies disabled to respect user privacy. The site is mobile-optimized, fast-loading, and SEO-friendly, though it lacks explicit CMS identification and some advanced security headers. Hosting details are limited but the domain registrar is reputable. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There is no explicit security policy or incident response information published, and no cookie consent mechanism is present, which could be improved for GDPR compliance. No vulnerabilities or suspicious content were detected. Overall, fingolex presents a trustworthy and professional online presence with strong business credibility and good technical implementation. Strategic improvements in security headers, cookie consent, and published policies would enhance compliance and security posture.

B

Bagatelle Tattoo

bagatelletattoo.com

59

Bagatelle Tattoo is a small, artistic tattoo studio located in Stuttgart West, Germany. The business emphasizes tattooing as an art form and storytelling medium, offering personalized tattoo services by a team of resident artists. The website showcases artist portfolios, booking options, and studio workspace availability, positioning itself as a community-oriented gallery and tattoo studio. Technically, the site is built with modern web standards, likely using TYPO3 CMS, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS and secure form handling, though some security headers and cookie consent mechanisms are missing. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and contact information appear professional and trustworthy. Overall, the site presents a credible business with room for improvement in privacy compliance and domain registration transparency.

I

Immodera

immodera.de

54

Immodera is a small, regionally focused real estate brokerage and property development company based in Germany, specifically serving the Zollernalbkreis region. The company offers services including property valuation, sales, rentals, and exclusive condominium development. The website reflects a professional and consistent brand image with clear contact information and customer testimonials, indicating a trustworthy market position. Technically, the website uses modern web standards with HTTPS and Matomo analytics for privacy-conscious tracking. However, it lacks some security headers and a cookie consent mechanism, which are important for GDPR compliance. No security policies or incident response contacts are published, which could be improved to enhance trust and compliance. Overall, the site is accessible, well-structured, and safe, with no signs of malicious content or blocking mechanisms.

C

Chefstidningen

chefstidningen.se

46

Chefstidningen is a Swedish media company specializing in leadership and HR content targeted at academics and professionals. The website offers a mix of free and premium subscription content, including articles, newsletters, and a printed magazine. It is owned by Individ & Samhälle Sverige AB, affiliated with Akademikerförbundet SSR, indicating a strong institutional backing. The site is well-branded and consistent with its niche market positioning. Technically, the website is built on WordPress with WooCommerce for subscription management, leveraging modern web technologies such as Bootstrap and jQuery. It integrates multiple third-party analytics and advertising services, including Google Analytics, Google Tag Manager, and LinkedIn Insight. The site is mobile-optimized and SEO-friendly, though performance is moderate. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. There is no visible security policy or incident response information, and no cookie consent mechanism was detected, which may pose GDPR compliance risks. The domain is long-standing and registered with a reputable registrar, supporting the site's legitimacy. Overall, Chefstidningen presents a professional and credible online presence with room for improvement in privacy compliance and security hardening to better protect user data and enhance trust.

P

Plantredo

lala-plants.com

65

Plantredo is a Swedish e-commerce retailer specializing in plants, seeds, and gardening accessories sourced from selected growers. The website is built on the Shopify platform and integrates multiple marketing and analytics tools such as Trustpilot, Klaviyo, Google Analytics, and Facebook Pixel, indicating a mature digital marketing approach. The site is professionally designed with good navigation and mobile optimization, targeting consumers interested in indoor and outdoor plants in Sweden. However, the WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy. The website lacks visible privacy and terms of service pages and does not provide direct contact information, which impacts trust and compliance perception. Security posture is generally good with HTTPS and standard Shopify protections, but security headers could be improved. Overall, the site appears functional and professional but would benefit from enhanced transparency and compliance documentation.

Corniche Watches is a niche luxury watch e-commerce brand founded in 2013, focusing on combining traditional watchmaking art with modern design inspired by the Côte d’Azur. The website presents a professional and consistent brand image, targeting fashion-conscious consumers and watch enthusiasts. The business model centers on direct online sales of watches, bracelets, and straps, supported by marketing efforts such as newsletters and social media engagement. Technically, the site is built on WordPress with WooCommerce, leveraging modern frameworks and third-party services for analytics, marketing, and customer support. The website is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and domain registration secured, though some security headers are missing and no explicit security policies are published. Privacy compliance is well addressed with a detailed cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site is trustworthy and professionally managed, with room for improvement in security transparency and direct contact information availability.

E

EYTYS

eytys.com

68

EYTYS is a Swedish contemporary fashion brand specializing in unisex footwear and ready-to-wear apparel, operating primarily through an e-commerce platform hosted on Shopify. The brand emphasizes craftsmanship and bold design, targeting a general audience interested in modern fashion. The website is professionally designed with consistent branding and good content quality, supporting a medium-sized business established since 2012. Technically, the site leverages Shopify's robust infrastructure, modern JavaScript, and CSS technologies, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could enhance protection. Privacy compliance is well addressed with clear policies and consent banners. Overall, the site presents a trustworthy and professional online retail presence with moderate user tracking for analytics and marketing purposes.

S

SeenThis AB

joinapart.co

59

Sitestream, operated by SeenThis AB, is a technology company specializing in optimizing website image delivery to reduce data transfer and improve user experience while contributing to sustainability by lowering internet carbon emissions. The company targets website owners and developers seeking efficient image streaming solutions, offering a SaaS model with easy integration options including a WordPress plugin and script implementation. The website is professionally designed with consistent branding and clear navigation, reflecting a small but focused technology provider based in Sweden. Technically, the website leverages modern frameworks such as Svelte and employs a fast, mobile-optimized infrastructure with CDN usage for content delivery. While the site uses HTTPS and some security headers, there is room for improvement in security policies and headers such as Content-Security-Policy. No analytics or advertising scripts were detected, indicating a privacy-conscious approach. The site provides basic privacy and cookie policies but lacks a cookie consent mechanism. From a security perspective, the site demonstrates good practices with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit incident response information and vulnerability disclosure policies suggests areas for enhancement. The WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, Sitestream presents a credible and professional online presence with a strong focus on sustainability and web performance. Strategic improvements in security policy transparency, cookie consent, and accessibility would further strengthen its security posture and compliance standing.

W

Wolters Kluwer ČR, a. s.

rizeniskoly.cz

64

Řízení školy is a Czech educational platform operated by Wolters Kluwer ČR, a. s., providing comprehensive resources, legal guidance, and management tools for school directors and educational staff. The website offers subscription-based access to magazines, articles, calendars, and training events tailored to the Czech education sector. The platform is well-positioned as a trusted mentor for school administration, supported by a professional design and consistent branding. Technically, the site leverages modern web technologies including React and Cream CMS, with integrations for Google Tag Manager and consent management to ensure privacy compliance. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers are not detected. The absence of WHOIS domain registration data limits domain legitimacy verification, but the website's content and affiliation with Wolters Kluwer indicate a credible business. Overall, the site provides a safe, professional, and user-friendly experience for its target audience.

K

Květiny family flowers

kvetinyfamilyflowers.cz

58

Květiny Family Flowers is a Czech Republic-based small retail business specializing in flower sales and floral services including bouquets, wedding arrangements, plants, and funeral floral products. The company emphasizes a long-standing tradition of 44 years and offers delivery services with video recording for customer assurance. The website is built on the Shoptet e-commerce platform and integrates standard marketing and analytics tools such as Google Analytics and Facebook Pixel. The digital infrastructure is moderately modern with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and CSRF protections, though some security headers could be improved and the jQuery library is outdated. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the site presents a professional and trustworthy online presence for a local flower retailer.

L

Livesport Company

livesport.eu

68

Livesport Company is a Czech technology firm specializing in delivering instant sports information to a global audience of approximately 100 million fans. The website reflects a mature digital presence with a modern technical infrastructure based on Nuxt.js and integration of Google Tag Manager for analytics and marketing. The company positions itself as a significant player in the sports information technology sector, targeting sports enthusiasts worldwide. The website design is professional and consistent, optimized for mobile devices with good SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented; however, there is room for improvement in security headers and transparency regarding privacy and incident response policies. Overall, the site is safe, trustworthy, and well-maintained, though it lacks explicit privacy and terms of service documentation.

S

Sport Schreiner Tischtennis

sport-schreiner-tischtennis.de

53

Sport Schreiner Tischtennis operates a specialized e-commerce platform focused on table tennis equipment and apparel, targeting German-speaking customers. The website offers a broad range of products including blades, rubbers, tables, clothing, and accessories, positioning itself as a niche retailer within the sports retail sector. The business model is primarily online retail with a focus on quality and trusted brands. Technically, the site is built on the Shopware platform, leveraging modern web technologies and integrating analytics tools such as Matomo and Google Tag Manager. The site demonstrates good mobile optimization and user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and privacy-conscious analytics configurations, but lacks explicit security headers and visible privacy or cookie policies. Contact information is limited to a service hotline phone number, with no email or physical address found in the analyzed content. Overall, the website is functional, professional, and trustworthy but could improve transparency and compliance aspects.

B

brandstalentsrights

create-success.net

62

brandstalentsrights is a specialized sports marketing and branding agency based in Germany, focusing on leveraging data-driven insights to create compelling media formats with sports personalities. The company targets athletes and sports-related businesses aiming to enhance their brand presence and storytelling. The website is professionally designed using Squarespace, featuring clear navigation and relevant content that highlights their services and team. Technically, the site uses modern web technologies and integrates Google Analytics for tracking, but lacks some advanced security headers and a public WHOIS record, which slightly impacts trustworthiness. The cookie consent mechanism is implemented, but no privacy policy or terms of service pages were found, indicating room for compliance improvement. Overall, the security posture is moderate with HTTPS enforced but missing some best practices. The domain WHOIS data is unavailable, which raises minor concerns but does not negate the professional appearance and functionality of the site.

The domain trusty.report currently serves a 403 Forbidden error page, indicating that access to the website content is blocked or restricted. Due to this, no business-related content, contact information, or policies are available for analysis. The website's technical footprint is minimal, with only Google Fonts loaded. The lack of WHOIS data due to unsupported TLD further limits the ability to assess domain legitimacy or business credibility. Overall, the site appears inaccessible and lacks publicly available information, which severely restricts any meaningful security, compliance, or business analysis.

J

JAKO AG

jako.com

69

JAKO AG operates a professional e-commerce platform specializing in sportswear and equipment for men, women, and children, primarily targeting sports teams and individual consumers in Germany and surrounding regions. The website presents a well-structured, content-rich shopping experience with clear navigation and product categorization. The company leverages modern technologies such as Algolia for search, Google Tag Manager, and analytics tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforced and consent-based cookie management, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Despite the absence of WHOIS registration details, the site shows strong trust indicators including a high Trusted Shops rating and consistent branding. Overall, the site is professional, secure, and user-friendly, supporting JAKO's position as a reputable sportswear retailer.