Security Directory

Magpie Property Management operates as a local estate and letting agency based in St Neots, Cambridgeshire, UK. The company provides property sales, lettings, and management services targeting property buyers, renters, landlords, and property owners in the local area. The website presents a professional appearance with clear branding and relevant content focused on real estate services. However, the domain WHOIS data indicates that the domain 'www.magpieproperty.co.uk' is invalid under Nominet UK naming rules, suggesting possible misconfiguration or use of a subdomain rather than a registered domain. This discrepancy warrants caution regarding domain legitimacy. Technically, the website uses modern web technologies including Bootstrap, Font Awesome 6 Pro, and various JavaScript libraries for UI enhancements. The site includes a cookie consent mechanism compliant with GDPR principles, but lacks explicit privacy policy and terms of service pages. No security headers were detected in the provided data, and no analytics or tracking beyond cookie consent were found. The site appears mobile-optimized with good design and navigation. From a security perspective, the site benefits from cookie consent but lacks visible security headers and formal privacy documentation. The absence of WHOIS registration data and domain registration issues reduce trustworthiness. No vulnerabilities or adult content were detected. Overall, the security posture is moderate but could be improved with better documentation and security best practices. The overall risk assessment suggests the business is legitimate and professional in its operations but should address domain registration clarity and enhance security and privacy compliance to improve trust and reduce potential risks.

E

ELYNDI

elyndi.lv

67

Elyndi is a newly established Latvian e-commerce retailer specializing in women's fashion, targeting ladies and girls seeking feminine, vibrant, and elegant apparel. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party marketing and analytics tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The technical infrastructure is solid with HTTPS enabled and domain registration protections in place, although DNSSEC is not enabled. Security posture is generally good but could be improved with additional HTTP security headers and privacy compliance enhancements. The absence of privacy and cookie policies, as well as contact information, represents compliance and trust gaps. Overall, the website is functional and professionally designed but requires improvements in privacy transparency and user trust elements.

F

FCPO

fcpo.ma

42

FCPO is a Moroccan digital agency based in Oujda specializing in web development, mobile applications, SEO, e-commerce, and digital marketing services. The agency positions itself as a creative and expert partner for businesses seeking to enhance their online presence and digital strategy. It serves a diverse clientele nationally and internationally, leveraging a multidisciplinary team to deliver approximately 150 digital projects annually. Technically, the website is built on WordPress, utilizing modern web technologies such as Bootstrap, Font Awesome, Google Fonts, and popular marketing analytics tools like Google Analytics and Facebook Pixel. The site is mobile-optimized with good navigation and professional design, although some accessibility features are basic. From a security perspective, the site uses HTTPS but lacks explicit security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy, although the website content and activity suggest operational status. Overall, FCPO demonstrates a solid digital presence and business credibility but should address privacy compliance and security best practices to enhance trust and reduce risk.

S

SIA "Cargomax"

cargomax.lv

48

Cargomax is a Latvian transportation company specializing in international cargo shipments via road, air, and sea. Established in 2006, it has grown to become a recognized player in the logistics sector, offering comprehensive services including customized logistics solutions, cargo insurance, and customs brokerage. The website reflects a mature digital presence built on WordPress with multilingual support and SEO optimization. Security posture is adequate with HTTPS enforced, though lacking advanced security headers and formal privacy policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy, serving business clients seeking reliable international cargo transport.

U

UofL Health

uoflhealth.org

71

UofL Health is a large, not-for-profit academic health system serving Kentucky and Indiana, operating multiple hospitals, medical centers, and physician practices. The website reflects a professional healthcare provider platform with a focus on patient services, appointments, and community engagement. The technical infrastructure is based on WordPress with modern web technologies including Bootstrap and JavaScript libraries, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and security headers, though DNSSEC is not enabled and no explicit vulnerability disclosure or incident response policies are published. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and well-positioned for its audience but could improve transparency and compliance documentation.

U

Udruga konzultantskih društava u graditeljstvu

ukdg.hr

45

UKDG is a Croatian non-profit association representing consulting companies in the construction sector. Founded in 2011, it aims to protect and enhance the business interests and reputation of its members by promoting professional standards and ethics. The website reflects a mature organization with clear business objectives, member services, and international affiliation through FIDIC membership. Technically, the site uses a modern stack including Bootstrap, jQuery, and various UI libraries, hosted under Croatian registrar CARNET with consistent domain registration data. Security posture is solid with HTTPS and cookie consent implemented, though it lacks explicit security policies and some security headers. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

Z

Zagreb Film Office

filmzagreb.hr

46

Zagreb Film Office is a municipal entity representing the city of Zagreb, Croatia, as a filming destination. The website serves as an informational and facilitation platform for film industry professionals, providing services such as location scouting and permitting. The site is built on a modern WordPress platform with WooCommerce integration, SEO optimization via Yoast, and Google Analytics tracking, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages found. Overall, the website is professional and trustworthy, suitable for its governmental role.

W

Weidmüller Lanškroun s.r.o.

weidmueller-lanskroun.com

42

Weidmüller Lanškroun s.r.o. is a manufacturing subsidiary of the multinational Weidmüller Holding Co&KGaA, specializing in the production of precise spare parts, tools, molds, and providing metal and plastic pressing along with simple automation solutions. The company targets industrial clients requiring high-quality manufacturing services. The website reflects a professional and consistent brand image with clear contact details and partner affiliations, positioning the company as a reliable manufacturing entity within its sector. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Active24 infrastructure. The site is mobile optimized with good navigation and moderate performance. However, no CMS or advanced frameworks were detected, indicating a straightforward static or custom-built site. From a security perspective, the site uses HTTPS (implied by domain status and typical practice), but lacks visible security headers and does not implement DNSSEC. There is no privacy or cookie policy present, which is a compliance gap. No incident response or security policy information is provided. No forms are present on the main page, reducing attack surface but also limiting user interaction. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its security posture and regulatory adherence.

Pomursko društvo za kakovost is a well-established Slovenian non-profit organization founded in 1993, dedicated to promoting quality management principles through education, consulting, and annual conferences. The organization targets professionals and educational institutions interested in quality assurance and management systems. Their website reflects a consistent brand and provides clear contact information and event details, supporting their role as a regional quality association. Technically, the website uses common JavaScript libraries such as jQuery and Modernizr, with a custom or unknown CMS. The site is moderately performant and mobile-optimized, though accessibility and SEO could be improved. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. Overall, the website is trustworthy and professional with no signs of malicious content or blocking mechanisms. The domain age and WHOIS data align well with the organization's history, supporting legitimacy. However, improvements in security policies, vulnerability disclosure, and analytics transparency would enhance compliance and trust. The risk level is low, but strategic security enhancements and clearer privacy documentation are recommended to maintain and improve stakeholder confidence.

A

Ace IT s.r.o.

gdpr-experts.cz

44

GDPR Experts, operated by Ace IT s.r.o., is a specialized small business based in the Czech Republic providing GDPR compliance and IT security consulting services. Their offerings include GDPR training, audits, legal documentation, and IT security assessments tailored for companies and entrepreneurs within the EU. The website is professionally designed with clear navigation and relevant content targeting businesses needing GDPR solutions. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies. Security posture is adequate with HTTPS implied but lacks visible security headers and incident response information. Overall, the domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

R

Regional Development Partnership

pomurjeregion.si

10

Pomurje Region is a regional development partnership focused on promoting tourism and investment opportunities in the Pomurje region of Slovenia. The website serves as an informational and marketing platform targeting tourists, investors, and businesses interested in the region's cultural heritage, quality of life, and economic potential. The organization positions itself as a government or non-profit entity dedicated to regional growth and sustainability. Technically, the website is built on WordPress using the Avada theme and several popular plugins such as Yoast SEO and Revolution Slider. It integrates Google Analytics and Google Maps APIs, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the website uses HTTPS and employs a cookie consent mechanism, but lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy front for the Pomurje regional development partnership, with room for improvement in security best practices and privacy documentation to enhance compliance and user trust.

G

Gibraltaz

gibraltaz.fr

10

Gibraltaz is a French technology company founded in 2020, specializing in custom digital business solutions and software services primarily serving enterprises, associations, and territorial organizations in the Grand Est region and Luxembourg. The company offers a broad range of services including consulting, software development, UX/UI design, maintenance, and digital transformation support. They are recognized partners of regional industry initiatives and have won awards for innovation. Technically, the website is built on WordPress with modern plugins and frameworks, hosted by OVH, and uses HTTPS with some security best practices but lacks explicit security headers and formal policies. Contact is primarily via email and web forms, with social media presence on LinkedIn and Facebook enhancing credibility. Privacy and cookie policies are missing, representing compliance gaps. Overall, the website is professional, content-rich, and trustworthy, with moderate technical and security maturity.

K

Krajská hygienická stanice Moravskoslezského kraje se sídlem v Ostravě

khsova.cz

50

Krajská hygienická stanice Moravskoslezského kraje se sídlem v Ostravě is a regional governmental public health authority responsible for health supervision, epidemiological monitoring, and public health support in the Moravian-Silesian region of the Czech Republic. The website serves as an official portal providing information, updates, and contact details to the public and stakeholders. It maintains a consistent and professional presence with regular updates and official publications. Technically, the site uses a modern frontend stack including Bootstrap, jQuery, and the Nette framework, delivering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS assumed but lacks explicit security headers and published security policies. Privacy compliance is partial with a clear privacy policy but no cookie consent mechanism. Overall, the site is trustworthy and credible, reflecting its governmental nature.

G

G20 South Africa

g20.org

55

G20 South Africa is the official website representing the G20 international forum during South Africa's 2025 Presidency. The site provides information about the G20's role as a global economic forum, its member countries, and upcoming events related to the 2025 summit. The website targets governments, policymakers, and the general public interested in global economic governance. It is positioned as a key authoritative source for G20 South Africa activities and related information. Technically, the website is built on WordPress with Elementor and several plugins for events and multimedia content. It uses modern web technologies and is hosted with a reputable registrar. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, indicating potential compliance gaps. Social media integration is strong, linking to official G20 South Africa accounts. Overall, the website is trustworthy and professional but would benefit from improved privacy compliance and enhanced security configurations to align with best practices and regulatory requirements.

K

Kvítkovská palírna

kvitkovskapalirna.cz

45

Kvítkovská Palírna is a small local business operating since 2015 in the Czech Republic, specializing in the production of natural fruit brandies primarily for small-scale fruit growers. The website presents a clear business model focused on processing customers' own fruit into high-quality alcoholic beverages. Technically, the site uses common web technologies such as jQuery, Revolution Slider, and CookieHub for cookie consent management, with Google Analytics for visitor tracking. The site is accessible, mobile-optimized, and uses HTTPS, but lacks advanced security headers and formal privacy or terms of service documentation. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, although the website content and contact information appear consistent with a legitimate small business. Overall, the security posture is moderate with room for improvement in privacy compliance and security best practices.

F

Farma HOLANY s.r.o.

farmaholany.cz

46

Farma HOLANY s.r.o. operates an ecological farm in the Czech Republic focused on sustainable agriculture, energy production via biogas, and hospitality services including stylish accommodation. The company positions itself as a regional leader in ecological farming with diversified offerings that include conventional and organic agriculture, livestock breeding, and renewable energy production. The website reflects a professional digital presence with clear business information and user-friendly navigation. Technically, the site uses common web technologies such as jQuery, Revolution Slider, and CookieHub for cookie consent management, alongside Google Analytics for visitor tracking. Security posture is moderate with cookie consent implemented but lacks visible security headers and published privacy or terms policies. WHOIS data is unavailable, which impacts trustworthiness but the presence of verified company badges and consistent branding supports legitimacy. Overall, the website is well-structured and informative but would benefit from enhanced security and compliance documentation.

Y

YMY CL s.r.o.

ymy.cz

46

YMY CL s.r.o. is a Czech-based company specializing in interior design services including office and residential interiors, 3D visualizations, and complete realization and furnishing. Established in 1994 and operating as a limited liability company since 2010, it serves clients primarily in Prague, Liberec, Česká Lípa, and Northern Bohemia. The company positions itself as a professional and comprehensive service provider in the interior design sector with a focus on customer needs and quality execution. Technically, the website employs modern web technologies such as jQuery, Foundation CSS, and analytics tools like Google Analytics and Piwik, indicating a moderate level of digital maturity. However, the absence of WHOIS data and privacy/cookie policies reveals gaps in transparency and compliance. Security posture is moderate with HTTPS usage but lacks security headers and formal incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security measures.

D

Diamond Experts

rezani-vrtani.cz

52

Diamond Experts is a specialized service provider in the Czech Republic focusing on core drilling and concrete cutting services. With over 25 years of experience, the company serves both businesses and households primarily in Prague and the surrounding regions. Their offerings include a wide range of concrete-related services such as wall saw cutting, joint cutting, chemical anchoring, and structural reinforcement. The website reflects a mature business with clear contact information, certifications, and customer testimonials that enhance trust and credibility. Technically, the site employs modern JavaScript libraries and Google services for analytics and advertising, with a cookie consent mechanism that aligns with GDPR requirements. Security measures include the use of hCaptcha for bot protection, but there is room for improvement in security headers and incident response transparency. Overall, the website is professional, well-structured, and trustworthy, supporting the company's market position as a local expert in construction services.

E

ERGO Aktiv

ergoaktiv.cz

45

ERGO Aktiv is a specialized neurorehabilitation center based in the Czech Republic, focusing on patients with acquired brain injuries such as stroke and head trauma. The organization offers comprehensive rehabilitation services including expert consultations, tailored rehabilitation programs, home rehabilitation, and social support to help patients return to normal life and employment. Their market position is that of a niche healthcare provider with a unique rehabilitation concept and advanced equipment. Technically, the website is built on WordPress with modern plugins and multimedia integration, demonstrating a moderate to good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the credibility of the business.

R

Regional Development Agency DUNEA LLC.

dubrovnik-neretva.eu

42

The website represents the official Representation Office of the Dubrovnik-Neretva Region in Brussels, serving as a liaison and promotional platform for the region within the European Union. It highlights the Regional Development Agency DUNEA, which coordinates sustainable development and project management for the region. The site targets regional stakeholders, investors, EU institutions, and the general public interested in regional development. Technically, the site is built on Joomla CMS with a modern but moderate tech stack including Bootstrap, jQuery, and Revolution Slider, offering good mobile optimization and user experience. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich but would benefit from enhanced privacy and security measures.

P

Pikant

pikant.hr

46

Pikant is a Croatian design and marketing studio providing a broad range of creative and IT services including web design, graphic design, product design, branding, IT support, and marketing consulting. The company positions itself as a regional leader with a focus on quality and client satisfaction, serving businesses primarily in Croatia and the EU. The website is professionally designed, mobile-optimized, and provides clear contact information and client references. Technically, the site uses modern web technologies such as Google Fonts, Revolution Slider, and Cognito Forms for contact management, with Google Analytics for traffic analysis. Security posture is good with HTTPS enabled and secure form handling, though some security headers and cookie consent mechanisms are missing. The WHOIS data is privacy protected due to GDPR, which is justified for this business type. Overall, the website reflects a legitimate, small-sized business with a solid digital presence.

Z

Zavod za javno zdravstvo Krapinsko-zagorske županije

zzjzkzz.hr

47

Zavod za javno zdravstvo Krapinsko-zagorske županije is a regional public health institute serving the Krapina-Zagorje County in Croatia. The organization provides a broad range of public health services including epidemiology, microbiology, health promotion, school medicine, environmental health, and mental health and addiction prevention. The website targets local residents and public health stakeholders, offering news, contact information, and resources relevant to the community. The business model is government-funded, positioning the institute as a key regional health authority. Technically, the website uses a custom ASP-based CMS with legacy JavaScript libraries such as jQuery 1.8.2 and Modernizr, alongside modern UI components like the Revolution Slider and UserWay accessibility widget. The site is moderately optimized for performance and mobile devices, with basic SEO and good accessibility features. However, some technical debt is evident due to outdated libraries and lack of advanced security headers. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, the use of outdated JavaScript libraries and absence of security headers like CSP and HSTS present potential vulnerabilities. No explicit security or incident response policies are published. Contact information is clearly provided, enhancing trust and transparency. Overall, the website is professional, trustworthy, and serves its public health mission effectively. Strategic improvements in updating technical components and enhancing security headers would strengthen its security posture and compliance. The site is safe for general audiences with no adult or questionable content detected.

P

Pomurski muzej Murska Sobota

pomurski-muzej.si

44

Pomurski muzej Murska Sobota is a regional museum dedicated to preserving and showcasing the cultural heritage of the Pomurje region in Slovenia. The website provides comprehensive information about exhibitions, events, educational programs, and digital collections, targeting a broad audience including families, schools, and cultural enthusiasts. The museum positions itself as a key cultural institution in the region with a focus on both physical and digital heritage preservation. Technically, the website is built on the WBCE CMS platform with modern web technologies such as Bootstrap, jQuery, and Revolution Slider. It is hosted under a reputable Slovenian registrar (Arnes) and uses HTTPS with a valid SSL configuration. The site is mobile-optimized and includes basic accessibility features. Google Analytics is used for visitor tracking, and a cookie consent banner with opt-in is implemented, indicating good privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks advanced security headers and does not publish explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's claims, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its cultural mission effectively. Strategic improvements in security headers, incident response transparency, and accessibility could enhance its security posture and compliance further.

E

Europe Direct Informacijski ured Split

europedirect-split.hr

43

Europe Direct Informacijski ured Split operates as an official European Union information center serving the Split region in Croatia. The website provides comprehensive information and advisory services about the EU, targeting local citizens and residents. It is part of the Europe Direct network, offering free services and acting as a trusted source for EU-related news, publications, and guidance. The business model is non-profit and government-affiliated, focusing on public information dissemination. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Revolution Slider, ensuring good SEO and user experience. The site is mobile-optimized and includes accessibility features, enhancing usability for diverse audiences. External integrations include Google Tag Manager and Facebook SDK for analytics and social media engagement. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security headers are not fully confirmed, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's claims, showing consistent registration details and domain age appropriate for the organization's history. Overall, the website demonstrates a solid security posture, good privacy compliance, and professional business credibility. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and expanding contact channels for security matters.

R

Regionalna razvojna agencija Dubrovačko-neretvanske županije - DUNEA

dunea.hr

41

Regionalna razvojna agencija Dubrovačko-neretvanske županije (DUNEA) is a government-established regional development agency founded in 2006 in Dubrovnik, Croatia. The agency focuses on promoting sustainable and balanced regional development, coordinating existing development activities, and aligning with national and EU requirements. Their key services include strategic planning, EU project management, and regional economic development initiatives. The website reflects a professional and consistent brand presence targeting regional stakeholders, local government, and businesses involved in development projects. Technically, the site is built on Joomla CMS with modern frontend frameworks and libraries, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response policies. Overall, the site is trustworthy and compliant with GDPR, providing clear contact information and partner links.

Nikola Tesla Network is a small, non-profit cultural and educational project focused on promoting the legacy of Nikola Tesla through an international cultural and touristic route. The website serves as a hub for information about the network, its partners, events, and educational initiatives such as the Teslina STEM Academy. The project is supported by reputable partners including the Croatian National Tourist Board and is co-financed by the European Union, indicating a solid market position within cultural tourism and education sectors. Technically, the website employs a moderate technology stack including jQuery, Modernizr, and various UI plugins, hosted on infrastructure linked to the NETIM registrar and VIT Web Hosting. The site is mobile optimized with good SEO practices and clear navigation, though accessibility features are basic. Security posture is adequate with HTTPS enforced and CSRF protections in forms, but lacks advanced security headers and a formal security policy. Privacy compliance is partial; a cookie policy and consent mechanism are present, but no explicit privacy policy page was found, representing a compliance gap. Contact information is clearly provided, enhancing business credibility. No signs of malicious content or WAF blocking were detected, and the site content is safe for general audiences. Overall, the website is professionally maintained with good content quality and business credibility but would benefit from enhanced privacy and security policies to improve compliance and trustworthiness.

M

Muzej nematerijalne baštine "Riznica Međimurja"

riznica.hr

10

Muzej nematerijalne baštine "Riznica Međimurja" operates as a cultural heritage museum and multimedia portal dedicated to preserving and promoting the intangible cultural heritage of the Međimurje region in Croatia. The website serves as a digital gateway to museum exhibitions, educational content, virtual tours, and cultural events, targeting a general audience including tourists, students, and cultural enthusiasts. The institution holds a regional market position as a key cultural and tourism entity in Northern Croatia. Technically, the website is built on WordPress CMS with modern plugins and frameworks such as Bootstrap and Revolution Slider, ensuring a responsive and visually appealing user experience. The site is hosted by Orbis d.o.o., a Croatian registrar and hosting provider, with a domain age consistent with the museum's recent establishment in 2018. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though security headers and explicit security policies could be improved. Privacy compliance is demonstrated through a privacy policy and cookie banner, reflecting GDPR awareness. Overall, the website is professional, trustworthy, and well-structured, supporting the museum's mission effectively.

Š

Šiuolaikinių didaktikų centras VšĮ

sdcentras.lt

40

Šiuolaikinių didaktikų centras VšĮ is a Lithuanian non-profit educational organization operating since 1999, focusing on adult education, professional development, and pedagogical seminars. The organization actively participates in national and international projects and initiatives, targeting adult learners and educators. Their market position is that of an accredited non-formal education institution with a clear focus on competence development and educational research. Technically, the website is built on WordPress with modern plugins and SEO practices, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy and cookie policies are present and GDPR compliant. Overall, the website is professional, trustworthy, and well-maintained, serving its educational mission effectively.

Aura kohvik is a small local café and catering service based in Tartu, Estonia, operating since 2010. The business offers daily meals, snacks, and catering for events such as birthdays and corporate gatherings. The website is built on WordPress using common plugins like Revolution Slider and Contact Form 7, hosted by Radicenter OÜ. The site is well structured with good SEO metadata and clear contact information, targeting local customers and event organizers. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. No privacy or cookie policies are present, which is a compliance gap. Overall, the website is functional and professional but could improve in privacy and security best practices.

K

Královéhradecký kraj

stansenahradnimrodicem.cz

56

The website 'Staň se náhradním rodičem' is a regional government initiative by Královéhradecký kraj aimed at promoting foster care and supporting children without families. It serves as an informational and resource platform targeting potential foster parents and stakeholders involved in child welfare. The site provides comprehensive content about foster care processes, benefits, and related news, reflecting a well-structured and professionally maintained digital presence. Technically, the website is built on WordPress using the Avada theme, incorporating modern web technologies such as jQuery, Google Analytics, Google Recaptcha, and Cloudflare Bot Management for security and performance. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, employs bot protection mechanisms, and includes a detailed cookie consent system compliant with GDPR. While some security headers are not explicitly detected, the overall security posture is solid with no apparent vulnerabilities or exposed sensitive data. Overall, the website presents a trustworthy and credible platform with a clear mission in social welfare. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and possibly adding explicit contact emails and terms of service to improve transparency and user trust.

ALSENTA s.r.o. is a Czech Republic based technology company founded in 2008, specializing in providing digital tools and services to enhance business efficiency. Their offerings include B2B identification tools (Seeky.cz), supplier engagement and reverse auction platforms (Alsenta.com), comprehensive business data services (LightData.cz), and outsourcing of procurement activities. The company also manages several related projects such as B2Bpoptavka.CZ and iFirmy.cz, positioning itself as a multifaceted service provider in the B2B and business intelligence space. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence.

I

IMK Ltd.

imk.ch

54

IMK Ltd. is a Swiss-based company specializing in organizing congresses and facilitating communication within the healthcare sector. Established in 1993 and headquartered in Basel, it serves as an intermediary promoting exchange between doctors, patients, and industry stakeholders. The company maintains a professional online presence with detailed event listings and active engagement in healthcare-related activities. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries and ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response information are absent. Privacy policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Overall, the website and business demonstrate high credibility and trustworthiness within their niche.

T

TESTIMA, spol. s r.o.

testima.cz

44

Testima, spol. s r.o. is a Czech company specializing in nondestructive testing equipment and services, including sales, training, calibration, and servicing. With over 30 years of experience and ISO 9001 certification, it holds a stable market position serving industrial clients. The website is professionally designed, mobile-optimized, and provides clear contact and GDPR compliance information. Technically, it uses modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA to secure user interactions. Security posture is good with HTTPS and CSRF protections, though some security headers and policies could be improved. Overall, the site is trustworthy, compliant, and well-maintained.

W

Webgaleria.sk

webgaleria.sk

42

Webgaleria.sk is a Slovak-based company specializing in custom web development, e-commerce solutions, and software programming. With over 150 successful projects across diverse sectors such as medicine, gastronomy, and manufacturing, they position themselves as a reliable provider of tailored digital services. Their offerings include website and e-shop creation, software applications, SEO services, professional photography, and corporate identity design. The website demonstrates a solid technical infrastructure utilizing modern frameworks like Bootstrap and jQuery, with responsive design and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and formal privacy policies. Contact information is clearly presented, enhancing business credibility. Overall, the site reflects a professional small business with a moderate market presence in Slovakia.

A

Aurora Colapis

aurora-experience.com

56

Aurora Colapis operates the Aurora River Experience, offering unique cultural and historic river boat tours on the traditional Žitna lađa Zora in Croatia. The business targets tourists and local groups seeking authentic river experiences, team building events, and private parties. The website is professionally designed using WordPress with WooCommerce and Elementor, integrating booking and e-commerce functionalities. The technical infrastructure is modern and includes Google Analytics and Ads for marketing and tracking. Security posture is adequate with HTTPS and reCAPTCHA, but lacks DNSSEC and some security headers. Privacy compliance is good with GDPR-aligned policies and cookie consent mechanisms. Overall, the business presents a trustworthy and niche tourism offering with solid digital presence.

B

B&S Sławomir Nowak

stabilny.net

51

Stabilny.net is a Polish internet services provider specializing in hosting, domain registration, virtual and dedicated servers, and backup solutions. Established in 2013, the company targets individuals and businesses seeking reliable and secure web hosting services within Poland. Their website reflects a professional and consistent brand image, emphasizing security, technical support, and infrastructure quality. The company maintains a local data center with 24/7 administration and advanced environmental controls, positioning itself as a trustworthy provider in the local market. Technically, the website is built on WordPress using popular plugins such as Visual Composer, LayerSlider, and Contact Form 7. It integrates multiple analytics and marketing tools including Google Analytics, Smartlook, and Salesmanago. The site is mobile-optimized with good SEO practices but lacks some accessibility features. Performance is moderate, and SSL is properly configured, ensuring secure communications. From a security perspective, the site uses HTTPS and reCAPTCHA for form protection but lacks published security policies, vulnerability disclosure, and security headers. DNSSEC is not enabled, which is a recommended improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, stabilny.net presents a credible and professional business with a solid technical foundation and good market positioning. To enhance trust and compliance, the company should publish comprehensive privacy and cookie policies, implement security headers, and provide incident response information. These steps will improve their security posture and regulatory compliance, reducing risk and increasing customer confidence.

V

Vinařství pod Hradem s.r.o.

vinarstvipodhradem.cz

45

Vinařství pod Hradem s.r.o. is a small family-owned winery located in the Pálava region of the Czech Republic, specializing in wine production, hospitality services including unique accommodation in wooden barrels and cottages, and online sales of wine and gift vouchers. The company positions itself as a premium local winery offering experiential tourism and wine tasting in the highest wine-growing village in Pálava. The website reflects a professional and consistent brand image with good content quality and clear navigation aimed at wine enthusiasts and tourists. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by popular plugins such as WPBakery Page Builder and Revolution Slider. It integrates modern analytics and tracking tools including Google Tag Manager, Hotjar, and Microsoft Clarity, indicating a mature digital marketing approach. The site is mobile optimized and uses HTTPS, but lacks explicit security headers and documented security policies. Security posture is moderate with no visible critical vulnerabilities or exposed sensitive data, but the absence of security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. The WHOIS data is unavailable, which limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the website presents a trustworthy and well-maintained online presence for a small winery business, with recommendations to enhance security headers, maintain plugin updates, and improve transparency around security and privacy practices.

W

World Patients Alliance

worldpatientsalliance.org

10

World Patients Alliance is a global non-profit umbrella organization advocating for patient rights, safety, and access to quality healthcare worldwide. The organization hosts educational events, webinars, and campaigns to empower patients and patient organizations globally. Their website reflects a professional digital presence built on WordPress, leveraging modern plugins and SEO tools to engage their audience effectively. The technical infrastructure is solid with HTTPS, domain locking, and integration of analytics and event management tools. Security posture is good but could be improved by enabling DNSSEC and adding advanced security headers. Privacy compliance is basic, lacking cookie consent mechanisms and explicit terms of service. Overall, the website is trustworthy, well-branded, and serves its mission effectively.

Apartmány Ralsko is a small hospitality business based in the Czech Republic offering accommodation in a private apartment complex with facilities for weddings, family events, and corporate training. The website presents a professional and well-structured digital presence built on WordPress with modern plugins such as Revolution Slider and WPBakery Page Builder. The technical infrastructure is adequate for a small business, hosted likely with WEDOS, a Czech hosting provider. Security posture is moderate with HTTPS enabled but lacking important security headers and proper analytics configuration. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is safe and trustworthy but would benefit from enhanced security and compliance measures.

T

Teatar uz more

teataruzmore.com

49

Teatar uz more is a cultural theater festival based in Croatia, established in 2021, focusing on organizing theater events and performances primarily in Split and surrounding regions. The website serves as a platform for event scheduling, ticket sales, and festival information targeting theater enthusiasts and the general public interested in cultural events. The business operates on a small scale with a clear regional focus. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, Contact Form 7, and Revolution Slider, indicating a mature but standard digital infrastructure. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and some advanced security headers, suggesting room for improvement. Privacy compliance is well addressed with a comprehensive cookie policy and consent mechanism in Croatian language, aligning with GDPR requirements. Overall, the site is trustworthy, professional, and well-positioned within its niche cultural sector.

T

Thomastik-Infeld GmbH

thomastik-infeld.com

71

Thomastik-Infeld GmbH is a well-established Austrian company specializing in the development and production of high-quality music strings since 1919. The company targets musicians and music professionals worldwide, offering a broad portfolio including orchestral, guitar, and folk strings. Their website reflects a mature digital presence with professional design, multilingual support, and integrated e-commerce and consulting tools. Technically, the site employs modern frameworks such as Bootstrap and jQuery, enhanced with Google Tag Manager and reCAPTCHA for security. The security posture is solid with HTTPS and consent management, though explicit security headers and incident response policies are absent. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further investigation. Overall, the website is trustworthy, professional, and compliant with GDPR, serving as a strong digital asset for the company.

A

Arbeiterwohlfahrt Rostock

awo-rostock.de

49

Arbeiterwohlfahrt Rostock is a well-established non-profit social welfare organization based in Germany, providing a wide range of social services including care for the elderly, child and youth support, social psychiatry, migration assistance, and volunteer opportunities. The organization operates with a clear mission to promote social justice and community support in the Rostock region. Their website reflects a professional and consistent brand presence, with comprehensive information about their services and career opportunities. Technically, the site is built on WordPress with modern plugins for SEO, cookie consent, and interactive content, demonstrating a mature digital infrastructure. Security-wise, the site uses HTTPS and cookie consent management, but lacks a formal published security policy or vulnerability disclosure, which could be improved. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements, making it a reliable source for users seeking social services or employment with AWO Rostock.

B

BerlinerLuft. México S. De R.L. de C.V.

berlinerluft.mx

51

BerlinerLuft. México S. De R.L. de C.V. is a medium-sized manufacturing company specializing in HVAC equipment, components, and duct systems with a global footprint including production plants in Mexico and Brazil. The website presents a professional image with clear business descriptions, product portfolios, and case studies targeting B2B clients in the HVAC and industrial sectors. The digital infrastructure is built on WordPress with modern plugins and technologies, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS and Google reCAPTCHA implemented, though it lacks advanced security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but could improve in compliance and security transparency.

R

Rescuetrade OHG

rescuetrade.com

54

Rescue Trade OHG is a German-based manufacturer and global distributor specializing in disposable medical bedding products such as blankets, pillows, sheets, and transport sheets. Established in 2004, the company positions itself as a pioneer in the disposable bedding market with a strong focus on hygiene and patient safety. Their products serve a broad audience including hospitals, emergency medical services, ambulances, fire departments, and other public institutions. The company emphasizes compliance with international medical device regulations, holding ISO 13485 certification and FDA registration, which underscores their commitment to quality and regulatory adherence. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI plugins to deliver a responsive and user-friendly experience. The site is well-structured with clear navigation and professional design, although some accessibility features could be enhanced. Performance is moderate with no major issues detected. However, the absence of explicit security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data in its HTML content. The contact form redirects users to a contact page rather than processing data directly, reducing immediate risk. Nevertheless, the lack of published incident response policies, vulnerability disclosure mechanisms, and security.txt files suggests limited transparency in security operations. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and consistency with the business claims. This discrepancy warrants further investigation to confirm domain ownership and trustworthiness. Overall, Rescue Trade OHG presents a professional and credible online presence with strong business and regulatory credentials. The main risks lie in the missing WHOIS data and some gaps in security best practices. Addressing these issues would enhance trust and compliance, supporting the company’s market position as a reliable medical device manufacturer.

R

Rescuetrade OHG

rescuetrade.de

53

Rescue Trade OHG is a German-based manufacturer and distributor specializing in medical disposable products, particularly single-use bedding sets, transfer sheets, and transport cloths for patient care. Established in 2004, the company serves a broad clientele including emergency services, hospitals, care facilities, and governmental agencies worldwide. Their products are certified under ISO 13485 and comply with FDA and MDR regulations, positioning them as a trusted provider in the healthcare sector. The website reflects a professional and consistent brand image with clear business information and downloadable resources for customers. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI plugins, delivering a responsive and user-friendly experience. While performance is moderate, the site is well-structured with good SEO practices and mobile optimization. However, no CMS or hosting provider details are explicitly detected. Security-wise, HTTPS is implied, and forms use validation scripts, but the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and security hardening. Overall, the security posture is adequate but could benefit from enhanced HTTP security headers and explicit privacy controls. The lack of an incident response contact or vulnerability disclosure reduces transparency. The domain WHOIS data is minimal but consistent with the business claims, supporting legitimacy. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

UN-Habitats operates as a small non-profit organization dedicated to the conservation of wildlife and natural habitats globally. Their website serves as an educational platform providing information, articles, and galleries about diverse natural environments and species. The organization targets nature enthusiasts and the general public interested in environmental conservation. The website is built on WordPress using popular plugins and themes, indicating a moderate level of technical maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professionally presented but would benefit from enhanced privacy and security transparency.

K

Kulturni centar Travno

kuctravno.hr

50

Kulturni centar Travno is a well-established cultural and educational center based in Zagreb, Croatia, founded in 2013. It organizes a variety of cultural events, workshops, exhibitions, and community inclusion projects, particularly focusing on youth and migrant integration through Erasmus+ funded initiatives. The website reflects a professional and community-focused organization with active event promotion and educational content. Technically, the site is built on WordPress with modern plugins and SEO tools, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS and some security best practices, though explicit security headers and policies could be improved. Privacy compliance is basic, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the domain registration and website content are consistent and trustworthy, supporting the legitimacy of the organization.

B

bontempo GmbH & Co. KG

bontempo.de

41

Bontempo GmbH & Co. KG is a medium-sized German agency and manufactory specializing in retail design, exhibition construction, shopfitting, and event services across Europe. The company positions itself as a creative partner turning spaces into brand experiences, serving a diverse clientele including notable brands in retail and events. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and uses Matomo for analytics with device fingerprinting. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, additional security headers and a formal security policy or incident response contact are absent. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with comprehensive privacy and cookie policies aligned with GDPR. Overall, the website presents a trustworthy and professional digital presence with minor areas for security and technical enhancement. The domain WHOIS data supports legitimacy and transparency, reinforcing business credibility.

G

Growatt European Distributor

growatt.tech

52

Growatt.tech operates as a European distributor specializing in photovoltaic inverters and energy storage solutions under the Growatt brand. The company targets European customers, installers, and businesses seeking reliable and innovative solar energy products. Their online presence includes a comprehensive e-commerce platform with product categories, downloads, training resources, and account management features. The business is relatively young, founded in 2022, with a domain age consistent with this timeline. The website demonstrates a professional and consistent brand image with good content quality and user experience.

E

Ernst & Young BKK

ey-bkk.de

66

Ernst & Young BKK operates as a specialized company health insurance fund (Betriebskrankenkasse) exclusively serving employees of Ernst & Young GmbH and their families in Germany. The website presents a professional and well-structured digital presence, emphasizing personalized health insurance services, bonus programs, and additional health benefits. The company positions itself as a reliable and attractive insurer with exclusive offerings tailored to its target audience. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and integrates translation and analytics services, reflecting a mature digital infrastructure. Security practices include HTTPS enforcement, anonymized analytics tracking, and GDPR-compliant cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is trustworthy, compliant, and user-friendly, supporting the company's market position as a dedicated health insurer for Ernst & Young employees.